| From: | Peter Eisentraut <peter_e(at)gmx(dot)net> |
|---|---|
| To: | pgsql-committers(at)lists(dot)postgresql(dot)org |
| Subject: | pgsql: Add settings to control SSL/TLS protocol version |
| Date: | 2018-11-20 21:22:09 |
| Message-ID: | E1gPDTF-0000ID-4B@gemulon.postgresql.org |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-committers |
Add settings to control SSL/TLS protocol version
For example:
ssl_min_protocol_version = 'TLSv1.1'
ssl_max_protocol_version = 'TLSv1.2'
Reviewed-by: Steve Singer <steve(at)ssinger(dot)info>
Discussion: https://www.postgresql.org/message-id/flat/1822da87-b862-041a-9fc2-d0310c3da173(at)2ndquadrant(dot)com
Branch
------
master
Details
-------
https://git.postgresql.org/pg/commitdiff/e73e67c719593c1c16139cc6c516d8379f22f182
Modified Files
--------------
doc/src/sgml/config.sgml | 44 +++++++++
src/backend/libpq/be-secure-openssl.c | 123 +++++++++++++++++++++++++-
src/backend/libpq/be-secure.c | 3 +
src/backend/utils/misc/guc.c | 33 +++++++
src/backend/utils/misc/postgresql.conf.sample | 2 +
src/include/libpq/libpq.h | 11 +++
6 files changed, 214 insertions(+), 2 deletions(-)
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Peter Eisentraut | 2018-11-20 22:02:12 | pgsql: Make detection of SSL_CTX_set_min_proto_version more portable |
| Previous Message | Peter Eisentraut | 2018-11-20 12:33:25 | pgsql: Make WAL description output more consistent |