Re: Fix error handling in be_tls_open_server()

Daniel Gustafsson <daniel@yesql.se>

From: Daniel Gustafsson <daniel@yesql.se>
To: Sergey Shinderuk <s.shinderuk@postgrespro.ru>
Cc: Jacob Champion <jchampion@timescale.com>, Michael Paquier <michael@paquier.xyz>, PostgreSQL Hackers <pgsql-hackers@postgresql.org>
Date: 2023-09-18T12:35:28Z
Lists: pgsql-hackers
> On 28 Aug 2023, at 19:39, Sergey Shinderuk <s.shinderuk@postgrespro.ru> wrote:

> I'll try to add a client certificate lacking a CN to the SSL test suite.

Certificates can be regenerated with the buildsystem, which ideally would apply
to this cert as well, but if that's not feasible we can perhaps accept a static
one with build information detailed in the README.  Having such a cert could
for sure be interesting for testing.

Awaiting resolution on this, I propose we go ahead with the original patch from
this thread. Any objections to that?

--
Daniel Gustafsson




Commits

  1. Avoid potential pfree on NULL on OpenSSL errors