| From: | Daniel Gustafsson <daniel(at)yesql(dot)se> |
|---|---|
| To: | Zsolt Parragi <zsolt(dot)parragi(at)percona(dot)com> |
| Cc: | Jacob Champion <jacob(dot)champion(at)enterprisedb(dot)com>, Jelte Fennema-Nio <postgres(at)jeltef(dot)nl>, Heikki Linnakangas <hlinnaka(at)iki(dot)fi>, Dewei Dai <daidewei1970(at)163(dot)com>, "li(dot)evan(dot)chao" <li(dot)evan(dot)chao(at)gmail(dot)com>, Michael Paquier <michael(at)paquier(dot)xyz>, Andres Freund <andres(at)anarazel(dot)de>, Pgsql Hackers <pgsql-hackers(at)lists(dot)postgresql(dot)org> |
| Subject: | Re: Serverside SNI support in libpq |
| Date: | 2026-03-16 14:24:28 |
| Message-ID: | 23D19F69-A8DE-4F89-99F6-5FC48762CE4D@yesql.se |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
The attached rebase brings a few more tests by Jacob for ensuring that a) CA's
entirely replace when a host config is matched; b) that CRL's work as intended
for certificates configured in pg_hosts.conf; and c) ssl_sni and TLS init
aren't configured at the same time.
This concludes all TODOs in the code, unless there are review objections I plan
to go ahead with this version within a few days.
--
Daniel Gustafsson
| Attachment | Content-Type | Size |
|---|---|---|
| v19-0002-ssl-Serverside-SNI-support-for-libpq.patch | application/octet-stream | 84.6 KB |
| v19-0001-ssl-Add-tests-for-client-CA.patch | application/octet-stream | 4.8 KB |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Andrey Borodin | 2026-03-16 14:27:58 | Re: Vacuum statistics |
| Previous Message | Matthias van de Meent | 2026-03-16 14:21:18 | Re: Adding REPACK [concurrently] |