int tcp_keepalives_interval;
int tcp_keepalives_count;
+/*
+ * SSL renegotiation was been removed in PostgreSQL 9.5, but we tolerate it
+ * being set to zero (meaning never renegotiate) for backward compatibility.
+ * This avoids breaking compatibility with clients that have never supported
+ * renegotiation and therefore always try to zero it.
+ */
+int ssl_renegotiation_limit;
+
/*
* This really belongs in pg_shmem.c, but is defined here so that it doesn't
* need to be duplicated in all the different implementations of pg_shmem.c.
NULL, assign_tcp_keepalives_interval, show_tcp_keepalives_interval
},
+ {
+ {"ssl_renegotiation_limit", PGC_USERSET, CONN_AUTH_SECURITY,
+ gettext_noop("SSL regenotiation is no longer supported; this can only be 0"),
+ NULL,
+ GUC_NO_SHOW_ALL | GUC_NOT_IN_SAMPLE | GUC_DISALLOW_IN_FILE,
+ },
+ &ssl_renegotiation_limit,
+ 0, 0, 0,
+ NULL, NULL, NULL
+ },
+
{
{"tcp_keepalives_count", PGC_USERSET, CLIENT_CONN_OTHER,
gettext_noop("Maximum number of TCP keepalive retransmits."),
projects / postgresql.git / commitdiff