Re: Allow root ownership of client certificate key

Tom Lane <tgl@sss.pgh.pa.us>

From: Tom Lane <tgl@sss.pgh.pa.us>
To: David Steele <david@pgmasters.net>
Cc: Stephen Frost <sfrost@snowman.net>, PostgreSQL Developers <pgsql-hackers@lists.postgresql.org>
Date: 2022-03-01T00:12:06Z
Lists: pgsql-hackers
David Steele <david@pgmasters.net> writes:
> Any thoughts on back-patching at least the client portion of this? 
> Probably hard to argue that it's a bug, but it is certainly painful.

I'd be more eager to do that if we had some field complaints
about it.  Since we don't, my inclination is not to, but I'm
only -0.1 or so; anybody else want to vote?

			regards, tom lane



Commits

  1. Allow root-owned SSL private keys in libpq, not only the backend.

  2. Doc: update libpq.sgml for root-owned SSL private keys.