From 680513ab79c7e12e402a2aad7921b95a25a4bcc8 Mon Sep 17 00:00:00 2001 From: Heikki Linnakangas Date: Mon, 11 Aug 2014 11:54:19 +0300 Subject: Break out OpenSSL-specific code to separate files. This refactoring is in preparation for adding support for other SSL implementations, with no user-visible effects. There are now two #defines, USE_OPENSSL which is defined when building with OpenSSL, and USE_SSL which is defined when building with any SSL implementation. Currently, OpenSSL is the only implementation so the two #defines go together, but USE_SSL is supposed to be used for implementation-independent code. The libpq SSL code is changed to use a custom BIO, which does all the raw I/O, like we've been doing in the backend for a long time. That makes it possible to use MSG_NOSIGNAL to block SIGPIPE when using SSL, which avoids a couple of syscall for each send(). Probably doesn't make much performance difference in practice - the SSL encryption is expensive enough to mask the effect - but it was a natural result of this refactoring. Based on a patch by Martijn van Oosterhout from 2006. Briefly reviewed by Alvaro Herrera, Andreas Karlsson, Jeff Janes. --- src/bin/psql/command.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'src/bin/psql/command.c') diff --git a/src/bin/psql/command.c b/src/bin/psql/command.c index 741a72d925..e27ff8c650 100644 --- a/src/bin/psql/command.c +++ b/src/bin/psql/command.c @@ -30,7 +30,7 @@ #include /* for umask() */ #include /* for stat() */ #endif -#ifdef USE_SSL +#ifdef USE_OPENSSL #include #endif @@ -1791,7 +1791,7 @@ connection_warnings(bool in_startup) static void printSSLInfo(void) { -#ifdef USE_SSL +#ifdef USE_OPENSSL int sslbits = -1; SSL *ssl; -- cgit v1.2.1