| From: | Peter Eisentraut <peter(dot)eisentraut(at)2ndquadrant(dot)com> |
|---|---|
| To: | Florin Asavoaie <florin(dot)asavoaie(at)gmail(dot)com>, pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: Introducing SNI in TLS handshake for SSL connections |
| Date: | 2017-05-19 23:44:34 |
| Message-ID: | 9af47a45-f92d-7ede-2d71-222ba24447eb@2ndquadrant.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On 4/24/17 22:26, Florin Asavoaie wrote:
> If there's nobody against this, I can try to do the patch myself,
> doesn't look too difficult (I expect it to simply work by
> calling SSL_set_tlsext_host_name(SSL_context, PQhost(conn))) somewhere
> in initialize_SSL in fe-secure-openssl.c.
I had to look up what SNI is:
https://en.wikipedia.org/wiki/Server_Name_Indication
This seems useful.
If you have a patch, please add it here:
https://commitfest.postgresql.org/14/
--
Peter Eisentraut http://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Remote DBA, Training & Services
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Thomas Munro | 2017-05-20 00:01:08 | Re: transition table behavior with inheritance appears broken (was: Declarative partitioning - another take) |
| Previous Message | Peter Eisentraut | 2017-05-19 23:06:07 | Re: TAP tests - installcheck vs check |