| From: | Nathan Mueller <nmueller(at)cs(dot)wisc(dot)edu> |
|---|---|
| To: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
| Cc: | pgsql-bugs(at)postgresql(dot)org |
| Subject: | Re: Bug #838: SSL problems in 7.3 |
| Date: | 2002-12-10 20:09:50 |
| Message-ID: | 200212102009.OAA02627@norm.cs.wisc.edu |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-bugs |
> There was a conscious decision in 7.3 to require only 7.3 clients when
> using SSL. I don't remember how many people were involved in that
> discussion, but I know it was made. In fact, there was so much new SSL
> code in 7.3, I suspected we couldn't even make it work with pre-7.2
> clients. I am surprised it works with your small change.
Fair enough. Let me test the other patch with TLSv1 to make sure it
still works.
> On the issue of checking if SSL_read() has returned -1, is that
> standard
> OpenSSL coding practice that even if SSL_get_error() returns an error,
> you have to check the SSL_read() return value too?
From looking at the SSL_get_error man page I think you only need to do
it in the case of SSL_ERROR_SYSCALL.
--Nate
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Nathan Mueller | 2002-12-10 20:52:38 | Re: Bug #838: SSL problems in 7.3 |
| Previous Message | Bruce Momjian | 2002-12-10 19:25:03 | Re: PostgreSQL 7.3 Installation on SCO |