Re: Support tls-exporter as channel binding for TLSv1.3

From: Michael Paquier <michael(at)paquier(dot)xyz>
To: Jacob Champion <jchampion(at)timescale(dot)com>
Cc: Postgres hackers <pgsql-hackers(at)lists(dot)postgresql(dot)org>
Subject: Re: Support tls-exporter as channel binding for TLSv1.3
Date: 2022-11-30 06:52:20
Message-ID: Y4b9pEgf855TkElA@paquier.xyz
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-hackers

On Fri, Oct 14, 2022 at 11:00:10AM +0900, Michael Paquier wrote:
> Oh, okay. That's an argument in favor of not doing that, then.
> Perhaps we'd better revisit the introduction of tls-exporter once we
> know more about all that, and it looks like we would need a way to be
> able to negotiate which channel binding to use (I recall that the
> surrounding RFCs allowed some extra negotiation, vaguely, but my
> impression may be wrong).

I am not sure what can be done for that now, so I have marked the
patch as returned with feedback.
--
Michael

In response to

Browse pgsql-hackers by date

  From Date Subject
Next Message Simon Riggs 2022-11-30 06:53:19 Re: Slow standby snapshot
Previous Message Amit Kapila 2022-11-30 06:50:25 Re: Perform streaming logical transactions by background workers and parallel apply