Quick Links

pgsql: Simplify the way OpenSSL renegotiation is initiated in server.

From:	Heikki Linnakangas <heikki(dot)linnakangas(at)iki(dot)fi>
To:	pgsql-committers(at)postgresql(dot)org
Subject:	pgsql: Simplify the way OpenSSL renegotiation is initiated in server.
Date:	2015-02-13 19:51:56
Message-ID:	E1YMMHM-0004JQ-2h@gemulon.postgresql.org
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-committers

Simplify the way OpenSSL renegotiation is initiated in server.

At least in all modern versions of OpenSSL, it is enough to call
SSL_renegotiate() once, and then forget about it. Subsequent SSL_write()
and SSL_read() calls will finish the handshake.

The SSL_set_session_id_context() call is unnecessary too. We only have
one SSL context, and the SSL session was created with that to begin with.

Branch
------
master

Details
-------
http://git.postgresql.org/pg/commitdiff/272923a0a6956187471df4f032eee06559520390

Modified Files
--------------
src/backend/libpq/be-secure-openssl.c | 23 -----------------------
1 file changed, 23 deletions(-)

Browse pgsql-committers by date

	From	Date	Subject
Next Message	Heikki Linnakangas	2015-02-13 21:59:09	pgsql: Fix broken #ifdef for __sparcv8
Previous Message	Bruce Momjian	2015-02-12 03:22:30	pgsql: pg_upgrade: improve checksum mismatch error message