| From: | "Alex Hunsaker" <badalex(at)gmail(dot)com> |
|---|---|
| To: | "Magnus Hagander" <magnus(at)hagander(dot)net> |
| Cc: | "PG Hackers" <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: patch: Client certificate requirements |
| Date: | 2008-11-15 22:30:07 |
| Message-ID: | 34d269d40811151430i3c680740o94459cea1e1022f5@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Sat, Nov 15, 2008 at 15:20, Alex Hunsaker <badalex(at)gmail(dot)com> wrote:
> we do something like:
>
> + if (access(ROOT_CERT_FILE, R_OK))
> + {
> + ssl_loaded_verify_locations = false;
> +
> + /*
> + * If root certificate file simply not found. Don't log
> an error here, because
> + * it's quite likely the user isn't planning on using
> client certificates.
> + *
> + * Anything else gets logged (permission errors etc)
> + */
> + if (errno != ENOENT)
> + ereport(LOG,
> + (errmsg("could not load root
> certificate file \"%s\": %s",
> + ROOT_CERT_FILE,
> strerror(errno)),
> + errdetail("Will not be able to verify
> client certificates.")));
Err that really should be ereport(FATAL,
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Oleg Serov | 2008-11-15 22:36:12 | Pl/Perl function: Speed of the First time executing pl/perl function in connection; |
| Previous Message | Alex Hunsaker | 2008-11-15 22:26:44 | Re: pgsql: Enable script to generate preproc.y in build process. |