Commit2fddd23

committed

On second thought, keep SSL CRL as a log, and wait for feedback from 8.2.

1 parentd440c5b commit2fddd23Copy full SHA for 2fddd23

File tree

-3

lines changed

-3

lines changed

Lines changed: 3 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -11,7 +11,7 @@`
`11`	`11`	`*`
`12`	`12`	`*`
`13`	`13`	`* IDENTIFICATION`
`14`		`- * $PostgreSQL: pgsql/src/backend/libpq/be-secure.c,v 1.65 2006/04/27 15:25:04 momjian Exp $`
	`14`	`+ * $PostgreSQL: pgsql/src/backend/libpq/be-secure.c,v 1.66 2006/04/27 15:35:15 momjian Exp $`
`15`	`15`	`*`
`16`	`16`	`* Since the server static private key ($DataDir/server.key)`
`17`	`17`	`* will normally be stored unencrypted so that the database`
`@@ -810,8 +810,8 @@ initialize_SSL(void)`
`810`	`810`	`else`
`811`	`811`	`{`
`812`	`812`	`/* Not fatal - we do not require CRL */`
`813`		`-ereport(DEBUG1,`
`814`		`-(errmsg("SSL Certificate Revocation List (CRL) file \"%s\" not found: %s",`
	`813`	`+ereport(LOG,`
	`814`	`+(errmsg("SSL Certificate Revocation List (CRL) file \"%s\" not found, skipping: %s",`
`815`	`815`	`ROOT_CRL_FILE,SSLerrmessage()),`
`816`	`816`	`errdetail("Will not check certificates against CRL.")));`
`817`	`817`	`}`

Comments

(0)