2008-10-24 13:48:29 +02:00
|
|
|
$PostgreSQL: pgsql/src/backend/libpq/README.SSL,v 1.7 2008/10/24 11:48:29 mha Exp $
|
2008-03-21 14:23:29 +01:00
|
|
|
|
|
|
|
SSL
|
|
|
|
===
|
|
|
|
|
1999-09-27 05:16:09 +02:00
|
|
|
>From the servers perspective:
|
|
|
|
|
|
|
|
|
|
|
|
Receives StartupPacket
|
|
|
|
|
|
|
|
|
|
|
|
|
|
(Is SSL_NEGOTIATE_CODE?) ----------- Normal startup
|
|
|
|
| No
|
|
|
|
|
|
|
|
|
| Yes
|
|
|
|
|
|
|
|
|
|
|
|
|
|
(Server compiled with USE_SSL?) ------- Send 'N'
|
|
|
|
| No |
|
|
|
|
| |
|
|
|
|
| Yes Normal startup
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Send 'S'
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Establish SSL
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Normal startup
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
>From the clients perspective (v6.6 client _with_ SSL):
|
|
|
|
|
|
|
|
|
|
|
|
Connect
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Send packet with SSL_NEGOTIATE_CODE
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Receive single char ------- 'S' -------- Establish SSL
|
|
|
|
| |
|
|
|
|
| '<else>' |
|
|
|
|
| Normal startup
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Is it 'E' for error ------------------- Retry connection
|
|
|
|
| Yes without SSL
|
|
|
|
| No
|
|
|
|
|
|
|
|
|
Is it 'N' for normal ------------------- Normal startup
|
|
|
|
| Yes
|
|
|
|
|
|
|
|
|
Fail with unknown
|
2002-09-29 06:06:54 +02:00
|
|
|
|
2002-10-03 19:26:14 +02:00
|
|
|
---------------------------------------------------------------------------
|