rdelaage
/
postgresql
mirror of https://git.postgresql.org/git/postgresql.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
postgresql/src/backend/libpq
History
Bruce Momjian e4cd7c315f Rename DEBUG to DEBUG1 in SSL code. 2002-06-17 07:33:25 +00:00
..
Makefile UPDATED PATCH: 2002-06-14 04:23:17 +00:00
README.SSL Add README.SSL 1999-09-27 03:16:09 +00:00
auth.c Create an internal semaphore API that is not tied to SysV semaphores. 2002-05-05 00:03:29 +00:00
be-fsstubs.c Change made to elog: 2002-03-06 06:10:59 +00:00
be-secure.c Rename DEBUG to DEBUG1 in SSL code. 2002-06-17 07:33:25 +00:00
crypt.c Remove pfrees of cached pg_pwd file, per Tom Lane. 2002-06-15 00:52:23 +00:00
hba.c Fix problem with new pg_hba.conf code where the same comparison function 2002-04-28 22:49:07 +00:00
md5.c Improve comments about duplicate files. 2001-11-18 23:02:19 +00:00
pg_hba.conf.sample Authentication improvements: 2002-04-04 04:25:54 +00:00
pg_ident.conf.sample Add mention of SIGHUP for pg_ident.conf. 2001-08-01 00:52:19 +00:00
pqcomm.c UPDATED PATCH: 2002-06-14 04:23:17 +00:00
pqformat.c Further work on elog cleanup: fix some bogosities in elog's logic about 2002-03-04 01:46:04 +00:00
pqsignal.c New pgindent run with fixes suggested by Tom. Patch manually reviewed, 2001-11-05 17:46:40 +00:00

README.SSL 

>From the servers perspective:


  Receives StartupPacket
           |
           |
 (Is SSL_NEGOTIATE_CODE?) -----------  Normal startup
           |                  No
           |
           | Yes
           |
           |
 (Server compiled with USE_SSL?) ------- Send 'N'
           |                       No        |
           |                                 |
           | Yes                         Normal startup
           |
           |
        Send 'S'
           |
           |
      Establish SSL
           |
           |
      Normal startup
     




>From the clients perspective (v6.6 client _with_ SSL):


      Connect
         |
         |
  Send packet with SSL_NEGOTIATE_CODE
         |
         |
  Receive single char  ------- 'S' -------- Establish SSL
         |                                       |
         | '<else>'                              |
         |                                  Normal startup
         |
         |
   Is it 'E' for error  ------------------- Retry connection
         |                  Yes             without SSL
         | No
         |
   Is it 'N' for normal ------------------- Normal startup
         |                  Yes
         |
   Fail with unknown