Quick Links

Inconsistent error handling in the openssl init code

From:	Daniel Gustafsson <daniel(at)yesql(dot)se>
To:	Postgres hackers <pgsql-hackers(at)lists(dot)postgresql(dot)org>
Subject:	Inconsistent error handling in the openssl init code
Date:	2019-02-06 22:18:22
Message-ID:	E1CDFE88-4A96-4A74-BA3F-473BBC0E9611@yesql.se
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

The errorhandling in be_tls_init(), and functions called from it, set the
appropriate elevel by the isServerStart. ssl_protocol_version_to_openssl() is
however erroring out unconditionally with ERROR on invalid TLS versions. The
attached patch adds isServerStart handling to the TLS version handling as well,
to make be_tls_init() consistent in its errorhandling.

cheers ./daniel

Attachment	Content-Type	Size
openssl_tlsver.patch	application/octet-stream	2.9 KB

Responses

Re: Inconsistent error handling in the openssl init code at 2019-02-07 04:12:23 from Michael Paquier

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Peter Eisentraut	2019-02-06 22:46:29	Re: insensitive collations
Previous Message	Peter Eisentraut	2019-02-06 22:15:59	Re: Fix optimization of foreign-key on update actions