Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Skip to content

Commit 8dd1511

Browse files
committed
Improve GSSAPI Encryption startup comment in libpq
The original comment was a bit confusing, pointed out by Alvaro Herrera. Thread: https://postgr.es/m/20191224151520.GA16435%40alvherre.pgsql
1 parent 4ac8aaa commit 8dd1511

File tree

1 file changed

+6
-4
lines changed

1 file changed

+6
-4
lines changed

src/interfaces/libpq/fe-connect.c

+6-4
Original file line numberDiff line numberDiff line change
@@ -2800,10 +2800,12 @@ PQconnectPoll(PGconn *conn)
28002800
#ifdef ENABLE_GSS
28012801

28022802
/*
2803-
* If GSSAPI is enabled and we have a credential cache, try to
2804-
* set it up before sending startup messages. If it's already
2805-
* operating, don't try SSL and instead just build the startup
2806-
* packet.
2803+
* If GSSAPI encryption is enabled, then call
2804+
* pg_GSS_have_cred_cache() which will return true if we can
2805+
* acquire credentials (and give us a handle to use in
2806+
* conn->gcred), and then send a packet to the server asking
2807+
* for GSSAPI Encryption (and skip past SSL negotiation and
2808+
* regular startup below).
28072809
*/
28082810
if (conn->try_gss && !conn->gctx)
28092811
conn->try_gss = pg_GSS_have_cred_cache(&conn->gcred);

0 commit comments

Comments
 (0)