From: | Jacob Champion <pchampion(at)vmware(dot)com> |
---|---|
To: | "tgl(at)sss(dot)pgh(dot)pa(dot)us" <tgl(at)sss(dot)pgh(dot)pa(dot)us>, "michael(at)paquier(dot)xyz" <michael(at)paquier(dot)xyz> |
Cc: | "pgsql-committers(at)lists(dot)postgresql(dot)org" <pgsql-committers(at)lists(dot)postgresql(dot)org> |
Subject: | Re: pgsql: Add some information about authenticated identity via log_connec |
Date: | 2021-04-07 16:20:18 |
Message-ID: | fa8dbbb58c20b1d1adf0082769f80d5466eaf485.camel@vmware.com |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-committers |
On Wed, 2021-04-07 at 10:27 -0400, Tom Lane wrote:
> Michael Paquier <michael(at)paquier(dot)xyz> writes:
> > On Wed, Apr 07, 2021 at 01:17:34AM +0000, Michael Paquier wrote:
> > > Add some information about authenticated identity via log_connections
> > So, fairywren, that is able to run the SSL tests on Windows, has been
> > complaining here:
>
> prairiedog is also not happy, apparently for a different reason.
> Let me know if you need help debugging that one.
That one's failing because older OpenSSL doesn't support channel
binding, and the new test I wrote forgot to check to make sure channel
binding was supported... sorry.
But the test doesn't truly *need* channel binding anyway; it just needs
to check the interaction between SCRAM and verify-full, to ensure that
the correct authn_id is set. Patch attached, tested locally with
OpenSSL 1.0.1 and 1.1.1.
--Jacob
Attachment | Content-Type | Size |
---|---|---|
fix-prariedog.patch | text/x-patch | 811 bytes |
From | Date | Subject | |
---|---|---|---|
Next Message | Tom Lane | 2021-04-07 16:22:15 | pgsql: Comment cleanup for a1115fa07. |
Previous Message | Robert Haas | 2021-04-07 16:11:52 | pgsql: amcheck: Remove duplicate XID/MXID bounds checks. |