Re: BUG #12769: SSL-Renegotiation failures
| От | Arne Scheffer |
|---|---|
| Тема | Re: BUG #12769: SSL-Renegotiation failures |
| Дата | |
| Msg-id | alpine.DEB.2.02.1505281237000.2052@zivarne обсуждение исходный текст |
| Ответ на | Re: BUG #12769: SSL-Renegotiation failures (Heikki Linnakangas <hlinnakangas@vmware.com>) |
| Список | pgsql-bugs |
Hi, On Thu, 19 Feb 2015, Heikki Linnakangas wrote: > On 02/19/2015 05:06 PM, Arne Scheffer wrote: >> Retried my test suite after commit >> >> 1c2b7c0879d83ff79e4adf2c0a883df92b713da4 Restore the >> SSL_set_session_id_context() call to OpenSS... >> >> Cloned again from 9.5devel master. >> Now the two patches work as expected (Means: errors without patch, no >> errors >> with patch (I can't see, whether the code is really performing >> renegotiation)). >> That seems promising. >> >> As already mentioned: >> I would also test the two patches for 9.3 >> in a production near environment to prove them fixing the reported Bug. >> If that isn't desired, >> I will clone them from REL9_3_STABLE branch once they are committed. > > Thanks, and sorry for not responding sooner. I investigated this on Tuesday, > and committed that fix. I was able to reproduce the problem you saw on a > Centos 6 VM, and also concluded that it now works on master with those two > patches applied. I tried backpatching them to 9.4, but I still saw some > errors on 9.4 even with the patches. I ran out of time to dig deepeer, but it > seems that some of the other changes done in master are needed to fully fix > this. There has been a lot of changes between 9.4 and master, and some > changes between 9.3 and 9.4 as well, so it's probably going to take some time > to come up with correct fixes for all the back-branches. Any progress fixing this bug? If not, wouldn't it make sense to (at least) include the Fixes into 9.5? VlG Arne Scheffer
В списке pgsql-bugs по дате отправления: