upstream/postgresql
1
0
Fork 0
mirror of https://github.com/postgres/postgres.git synced 2026-03-02 05:13:42 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
postgresql/src/backend/libpq
History
Tom Lane c9b0cbe98b Support having multiple Unix-domain sockets per postmaster. 
Replace unix_socket_directory with unix_socket_directories, which is a list
of socket directories, and adjust postmaster's code to allow zero or more
Unix-domain sockets to be created.

This is mostly a straightforward change, but since the Unix sockets ought
to be created after the TCP/IP sockets for safety reasons (better chance
of detecting a port number conflict), AddToDataDirLockFile needs to be
fixed to support out-of-order updates of data directory lockfile lines.
That's a change that had been foreseen to be necessary someday anyway.

Honza Horak, reviewed and revised by Tom Lane
2012-08-10 17:27:15 -04:00
..
auth.c Remove duplicate, unnecessary, variable declaration 2012-07-04 16:17:30 +02:00
be-fsstubs.c Clean up compiler warnings from unused variables with asserts disabled 2012-03-21 23:33:10 +02:00
be-secure.c Remove unreachable code 2012-07-16 22:15:03 +03:00
crypt.c Remove useless cast 2012-02-26 15:31:16 +02:00
hba.c Run pgindent on 9.2 source tree in preparation for first 9.3 2012-06-10 15:20:04 -04:00
ip.c Update copyright notices for year 2012. 2012-01-01 18:01:58 -05:00
Makefile Remove cvs keywords from all files. 2010-09-20 22:08:53 +02:00
md5.c Update copyright notices for year 2012. 2012-01-01 18:01:58 -05:00
pg_hba.conf.sample initdb: Add options --auth-local and --auth-host 2012-02-01 21:18:55 +02:00
pg_ident.conf.sample Reformat the comments in pg_hba.conf and pg_ident.conf 2010-01-26 06:58:39 +00:00
pqcomm.c Support having multiple Unix-domain sockets per postmaster. 2012-08-10 17:27:15 -04:00
pqformat.c Update copyright notices for year 2012. 2012-01-01 18:01:58 -05:00
pqsignal.c Update copyright notices for year 2012. 2012-01-01 18:01:58 -05:00
README.SSL Remove useless whitespace at end of lines 2010-11-23 22:34:55 +02:00

README.SSL 

src/backend/libpq/README.SSL

SSL
===

>From the servers perspective:


  Receives StartupPacket
           |
           |
 (Is SSL_NEGOTIATE_CODE?) -----------  Normal startup
           |                  No
           |
           | Yes
           |
           |
 (Server compiled with USE_SSL?) ------- Send 'N'
           |                       No        |
           |                                 |
           | Yes                         Normal startup
           |
           |
        Send 'S'
           |
           |
      Establish SSL
           |
           |
      Normal startup





>From the clients perspective (v6.6 client _with_ SSL):


      Connect
         |
         |
  Send packet with SSL_NEGOTIATE_CODE
         |
         |
  Receive single char  ------- 'S' -------- Establish SSL
         |                                       |
         | '<else>'                              |
         |                                  Normal startup
         |
         |
   Is it 'E' for error  ------------------- Retry connection
         |                  Yes             without SSL
         | No
         |
   Is it 'N' for normal ------------------- Normal startup
         |                  Yes
         |
   Fail with unknown

---------------------------------------------------------------------------