diff options
| author | Peter Eisentraut | 2018-02-26 18:28:38 +0000 |
|---|---|---|
| committer | Peter Eisentraut | 2018-03-17 12:28:51 +0000 |
| commit | 8a3d9425290ff5f6434990349886afae9e1c6008 (patch) | |
| tree | 47dd8b09381f019eba35cd060d8af8f93af44c01 /src/backend/libpq/be-secure.c | |
| parent | 7a50bb690b4837d29e715293c156cff2fc72885c (diff) | |
Add ssl_passphrase_command setting
This allows specifying an external command for prompting for or
otherwise obtaining passphrases for SSL key files. This is useful
because in many cases there is no TTY easily available during service
startup.
Also add a setting ssl_passphrase_command_supports_reload, which allows
supporting SSL configuration reload even if SSL files need passphrases.
Reviewed-by: Daniel Gustafsson <[email protected]>
Diffstat (limited to 'src/backend/libpq/be-secure.c')
| -rw-r--r-- | src/backend/libpq/be-secure.c | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/src/backend/libpq/be-secure.c b/src/backend/libpq/be-secure.c index 76c0a9e39b5..fb1f6b5bbe7 100644 --- a/src/backend/libpq/be-secure.c +++ b/src/backend/libpq/be-secure.c @@ -45,6 +45,8 @@ char *ssl_key_file; char *ssl_ca_file; char *ssl_crl_file; char *ssl_dh_params_file; +char *ssl_passphrase_command; +bool ssl_passphrase_command_supports_reload; #ifdef USE_SSL bool ssl_loaded_verify_locations = false; |