projects / users / bernd / postgres.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: dc01efa) | patch
Simplify the way OpenSSL renegotiation is initiated in server.
authorHeikki Linnakangas <heikki.linnakangas@iki.fi>
Fri, 13 Feb 2015 19:46:08 +0000 (21:46 +0200)
committerHeikki Linnakangas <heikki.linnakangas@iki.fi>
Fri, 13 Feb 2015 19:46:08 +0000 (21:46 +0200)
commit272923a0a6956187471df4f032eee06559520390
treeecdec58a0f5485366ab61b36d4f9301883227cdftree
parentdc01efa5ccdd9804b0c97d4d9b651ba9360ebb11commit | diff
Simplify the way OpenSSL renegotiation is initiated in server.

At least in all modern versions of OpenSSL, it is enough to call
SSL_renegotiate() once, and then forget about it. Subsequent SSL_write()
and SSL_read() calls will finish the handshake.

The SSL_set_session_id_context() call is unnecessary too. We only have
one SSL context, and the SSL session was created with that to begin with.
src/backend/libpq/be-secure-openssl.c diff | blob | blame | history
Bernd Helmle's repository