rdelaage
/
postgresql
mirror of https://git.postgresql.org/git/postgresql.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
postgresql/src/backend/libpq
History
Heikki Linnakangas 5d8a894e30 Cancel running query if it is detected that the connection to the client is 
lost. The only way we detect that at the moment is when write() fails when
we try to write to the socket.

Florian Pflug with small changes by me, reviewed by Greg Jaskiewicz.
 		2011-12-09 14:21:36 +02:00
..
Makefile Remove cvs keywords from all files. 2010-09-20 22:08:53 +02:00
README.SSL Remove useless whitespace at end of lines 2010-11-23 22:34:55 +02:00
auth.c Use consistent format for reporting GetLastError() 2011-08-23 22:00:52 +03:00
be-fsstubs.c Remove unnecessary #include references, per pgrminclude script. 2011-09-01 10:04:27 -04:00
be-secure.c Use OpenSSL's SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER flag. 2011-07-24 15:17:51 -04:00
crypt.c Move Timestamp/Interval typedefs and basic macros into datatype/timestamp.h. 2011-09-09 13:23:41 -04:00
hba.c Do not treat a superuser as a member of every role for HBA purposes. 2011-11-03 12:45:02 -04:00
ip.c Remove many -Wcast-qual warnings 2011-09-11 21:54:32 +03:00
md5.c Remove many -Wcast-qual warnings 2011-09-11 21:54:32 +03:00
pg_hba.conf.sample Don't include local line on platforms without support 2011-05-30 20:21:06 +02:00
pg_ident.conf.sample Reformat the comments in pg_hba.conf and pg_ident.conf 2010-01-26 06:58:39 +00:00
pqcomm.c Cancel running query if it is detected that the connection to the client is 2011-12-09 14:21:36 +02:00
pqformat.c Stamp copyrights for year 2011. 2011-01-01 13:18:15 -05:00
pqsignal.c Use "backend process" rather than "backend server", where appropriate. 2011-03-12 09:38:56 -05:00

README.SSL 

src/backend/libpq/README.SSL

SSL
===

>From the servers perspective:


  Receives StartupPacket
           |
           |
 (Is SSL_NEGOTIATE_CODE?) -----------  Normal startup
           |                  No
           |
           | Yes
           |
           |
 (Server compiled with USE_SSL?) ------- Send 'N'
           |                       No        |
           |                                 |
           | Yes                         Normal startup
           |
           |
        Send 'S'
           |
           |
      Establish SSL
           |
           |
      Normal startup





>From the clients perspective (v6.6 client _with_ SSL):


      Connect
         |
         |
  Send packet with SSL_NEGOTIATE_CODE
         |
         |
  Receive single char  ------- 'S' -------- Establish SSL
         |                                       |
         | '<else>'                              |
         |                                  Normal startup
         |
         |
   Is it 'E' for error  ------------------- Retry connection
         |                  Yes             without SSL
         | No
         |
   Is it 'N' for normal ------------------- Normal startup
         |                  Yes
         |
   Fail with unknown

---------------------------------------------------------------------------