Home > mailing lists

Re: Adding support for SSLKEYLOGFILE in the frontend - Mailing list pgsql-hackers

From	Jacob Champion
Subject	Re: Adding support for SSLKEYLOGFILE in the frontend
Date	January 9 23:36:16
Msg-id	CAOYmi+=mQpiEE0_qo-4Q5FtZ3wC2Jp-a9kPr_aUN2L6hhsncbA@mail.gmail.com Whole thread Raw
In response to	Re: Adding support for SSLKEYLOGFILE in the frontend (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-hackers

Tree view

On Wed, Jan 8, 2025 at 5:17 PM Tom Lane <tgl@sss.pgh.pa.us> wrote:
> I think it might be safer if we only accepted it as a connection
> parameter and not via an environment variable.

Making it a connection parameter also keeps us from colliding with any
other linked libraries' use of SSLKEYLOGFILE (I'm thinking about
libcurl at the moment, but I think maybe NSS used it too?).

--Jacob

pgsql-hackers by date:

From: Alvaro Herrera
Date: 09 January, 22:52:43
Subject: Re: why there is not VACUUM FULL CONCURRENTLY?

From: Daniel Gustafsson
Date: 09 January, 23:40:04
Subject: Re: [PoC] Federated Authn/z with OAUTHBEARER

Re: Adding support for SSLKEYLOGFILE in the frontend - Mailing list pgsql-hackers

Previous

Next