| From: | Peter Eisentraut <peter(dot)eisentraut(at)2ndquadrant(dot)com> |
|---|---|
| To: | Julian Markwort <julian(dot)markwort(at)uni-muenster(dot)de>, Magnus Hagander <magnus(at)hagander(dot)net> |
| Cc: | PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org>, arne(dot)scheffer(at)uni-muenster(dot)de |
| Subject: | Re: [PATCH] pg_hba.conf : new auth option : clientcert=verify-full |
| Date: | 2018-04-10 12:28:29 |
| Message-ID: | 152733e9-b28c-46fd-cffe-ab1e7712bc27@2ndquadrant.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On 4/10/18 08:10, Julian Markwort wrote:
>> Attached is an updated patch with these changes. I'd appreciate it if
>> you can run it through your tests to confirm that it didn't break any
>> of those usecases.
> I've tested a couple of things with this and it seems to work as
> expected. Unforunately, there are no tests for libpq, afaik. But testing
> such features would become complicated quite quickly, with the need to
> generate certificates and such...
There are tests in src/test/ssl/ that would probably be a good fit to
extend for this.
--
Peter Eisentraut http://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Remote DBA, Training & Services
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bernd Helmle | 2018-04-10 12:34:39 | Re: Bugs in TOAST handling, OID assignment and redo recovery |
| Previous Message | Craig Ringer | 2018-04-10 12:15:15 | Re: PostgreSQL's handling of fsync() errors is unsafe and risks data loss at least on XFS |