Re: Is ssl_crl_file "SSL server cert revocation list"?
Daniel Gustafsson <daniel@yesql.se>
From: Daniel Gustafsson <daniel@yesql.se>
To: Kyotaro Horiguchi <horikyota.ntt@gmail.com>
Cc: PostgreSQL Hackers <pgsql-hackers@lists.postgresql.org>
Date: 2021-12-02T09:42:02Z
Lists: pgsql-hackers
Attachments
- fix_crl_doc-v2.diff (application/octet-stream) patch v2
> On 2 Dec 2021, at 06:07, Kyotaro Horiguchi <horikyota.ntt@gmail.com> wrote: > > At Thu, 02 Dec 2021 13:54:41 +0900 (JST), Kyotaro Horiguchi <horikyota.ntt@gmail.com> wrote in >> As discussed in the thread [1], I find the wording "SSL server >> certificate revocation list" as misleading or plain wrong. > > FWIW, I'm convinced that that's plain wrong after finding some > occurances of "(SSL) client certificate" in the doc. I agree with this, the concepts have been a bit muddled. While in there I noticed that we omitted mentioning sslcrldir in a few cases. The attached v2 adds these and removes the whitespace changes from your patch for easier review. -- Daniel Gustafsson https://vmware.com/
Commits
-
Doc: Fix misleading wording of CRL parameters
- fadac33bb8de 15.0 landed
- e2ebc90eb809 13.6 landed
- b6360aa46ce9 14.2 landed
- 7d0229e89f4f 10.20 landed
- 7b0643c77b46 11.15 landed
- 386d97781d17 12.10 landed