aboutsummaryrefslogtreecommitdiff
path: root/src/backend/utils/activity/backend_status.c
diff options
context:
space:
mode:
authorDaniel Gustafsson <dgustafsson@postgresql.org>2023-07-20 17:07:32 +0200
committerDaniel Gustafsson <dgustafsson@postgresql.org>2023-07-20 17:07:32 +0200
commit75ec5e7bec700577d39d653c316e3ae6c505842c (patch)
treeef80345f4dd87eaa35745fafb11a7efe808b6c8a /src/backend/utils/activity/backend_status.c
parent40fad96530caf190a3babf322ca705e744c393bb (diff)
downloadpostgresql-75ec5e7bec700577d39d653c316e3ae6c505842c.tar.gz
postgresql-75ec5e7bec700577d39d653c316e3ae6c505842c.zip
Add notBefore and notAfter to SSL cert info display
This adds the X509 attributes notBefore and notAfter to sslinfo as well as pg_stat_ssl to allow verifying and identifying the validity period of the current client certificate. Author: Cary Huang <cary.huang@highgo.ca> Discussion: https://postgr.es/m/182b8565486.10af1a86f158715.2387262617218380588@highgo.ca
Diffstat (limited to 'src/backend/utils/activity/backend_status.c')
-rw-r--r--src/backend/utils/activity/backend_status.c2
1 files changed, 2 insertions, 0 deletions
diff --git a/src/backend/utils/activity/backend_status.c b/src/backend/utils/activity/backend_status.c
index 38f91a495b8..02dc9d7931f 100644
--- a/src/backend/utils/activity/backend_status.c
+++ b/src/backend/utils/activity/backend_status.c
@@ -367,6 +367,8 @@ pgstat_bestart(void)
be_tls_get_peer_subject_name(MyProcPort, lsslstatus.ssl_client_dn, NAMEDATALEN);
be_tls_get_peer_serial(MyProcPort, lsslstatus.ssl_client_serial, NAMEDATALEN);
be_tls_get_peer_issuer_name(MyProcPort, lsslstatus.ssl_issuer_dn, NAMEDATALEN);
+ be_tls_get_peer_not_before(MyProcPort, &lsslstatus.ssl_not_before);
+ be_tls_get_peer_not_after(MyProcPort, &lsslstatus.ssl_not_after);
}
else
{
generated by cgit v1.2.3 (git 2.25.1) at 2025-05-23 02:46:03 +0000