From 81f3e109b704f41e32d06519fbcb47ebe1497167 Mon Sep 17 00:00:00 2001 From: Magnus Hagander Date: Fri, 24 Oct 2008 12:24:35 +0000 Subject: [PATCH] Remove a "TODO-list" structure at the top of the file, referring back to the old set of SSL patches. Hasn't been updated since, and we keep the TODOs in the "real" TODO list, really... --- src/backend/libpq/be-secure.c | 28 +--------------------------- 1 file changed, 1 insertion(+), 27 deletions(-) diff --git a/src/backend/libpq/be-secure.c b/src/backend/libpq/be-secure.c index d036947176..bae9fe8464 100644 --- a/src/backend/libpq/be-secure.c +++ b/src/backend/libpq/be-secure.c @@ -11,7 +11,7 @@ * * * IDENTIFICATION - * $PostgreSQL: pgsql/src/backend/libpq/be-secure.c,v 1.84 2008/03/31 02:43:14 tgl Exp $ + * $PostgreSQL: pgsql/src/backend/libpq/be-secure.c,v 1.85 2008/10/24 12:24:35 mha Exp $ * * Since the server static private key ($DataDir/server.key) * will normally be stored unencrypted so that the database @@ -45,32 +45,6 @@ * amounts of data are sent with the same session key, the * session keys are periodically renegotiated. * - * PATCH LEVEL - * milestone 1: fix basic coding errors - * [*] existing SSL code pulled out of existing files. - * [*] SSL_get_error() after SSL_read() and SSL_write(), - * SSL_shutdown(), default to TLSv1. - * - * milestone 2: provide endpoint authentication (server) - * [*] client verifies server cert - * [*] client verifies server hostname - * - * milestone 3: improve confidentially, support perfect forward secrecy - * [ ] use 'random' file, read from '/dev/urandom?' - * [*] emphermal DH keys, default values - * [*] periodic renegotiation - * [*] private key permissions - * - * milestone 4: provide endpoint authentication (client) - * [*] server verifies client certificates - * - * milestone 5: provide informational callbacks - * [*] provide informational callbacks - * - * other changes - * [ ] tcp-wrappers - * [ ] more informative psql - * *------------------------------------------------------------------------- */ -- 2.40.0