Julien Riou

I'm trying to learn how to parse SANs in C thanks to the source code of curl https://github.com/curl/curl/blob/935e1f9963a12ac1a880df538b23b824d2fea7bb/lib/vtls/openssl.c#L2073

Why? I would like pgBackRest to parse SANs before CN because CNs are deprecated for years and they are optional.

The problem is that no matter how hard I try to learn and write C, I fail.

I tried to implement Proxy Protocol for PGbouncer and PostgreSQL, failed.

I could open an issue, wait for a fix and cross my fingers or pray the gods, but I don't want to overload the project. My issue is not that important. What's important to me is the personal reward of contributing to open source. I want to learn. I want to contribute. I want to be a little part of the movement.

You should ask Claude they say. It will be fun they say. I'm not ready for that. I don't want to bypass everything for one of my side projects. But in the meantime, I'm frustated of failing. This is very tempting I must admit.

#opensource #curl #pgbackrest #pgbouncer #postgresql #ai

curl/lib/vtls/openssl.c at 935e1f9963a12ac1a880df538b23b824d2fea7bb 路 curl/curl

A command line tool and library for transferring data with URL syntax, supporting DICT, FILE, FTP, FTPS, GOPHER, GOPHERS, HTTP, HTTPS, IMAP, IMAPS, LDAP, LDAPS, MQTT, MQTTS, POP3, POP3S, RTMP, RTMP...

GitHub
Apr 11 at 5:22amWeb
Show threadJulien Riou1d ago
I have contributed to Python and Go projects. I have started my own projects from the grown up in both languages. I don't know why I struggle with C.
Show threadJulien Riou1d ago

It seems that it's already supported in pgbackrest 馃檹

https://github.com/pgbackrest/pgbackrest/blob/7f82fb6635c1e3e9dd285d53076e9aee3fbf1ca2/src/common/io/tls/client.c#L207

pgbackrest/src/common/io/tls/client.c at 7f82fb6635c1e3e9dd285d53076e9aee3fbf1ca2 路 pgbackrest/pgbackrest

Reliable PostgreSQL Backup & Restore. Contribute to pgbackrest/pgbackrest development by creating an account on GitHub.

GitHub
Show threadJulien Riou1d ago
But not in the server auth https://github.com/pgbackrest/pgbackrest/blob/7f82fb6635c1e3e9dd285d53076e9aee3fbf1ca2/src/common/io/tls/server.c#L204
pgbackrest/src/common/io/tls/server.c at 7f82fb6635c1e3e9dd285d53076e9aee3fbf1ca2 路 pgbackrest/pgbackrest

Reliable PostgreSQL Backup & Restore. Contribute to pgbackrest/pgbackrest development by creating an account on GitHub.

GitHub
Show threadJulien Riou1d ago
Issue opened https://github.com/pgbackrest/pgbackrest/issues/2765
Support SANs for TLS server authentication 路 Issue #2765 路 pgbackrest/pgbackrest

Hello folks, I use certbot and step-ca to manage a private PKI. I'm planning to use those certificates for pgBackRest instead of using manual commands for generation and renewal. According to the R...

GitHub
Show threadSomeAnoTooter1d ago
@jriou I think you can still open an issue about it. From there you can work on it. If you don't want llm than state that and I'm sure people will try to help you figure it out and solve your issue. Keep it up, c it's not that easy.
Show threadSomeAnoTooter1d ago
@jriou you could also fork it first and make an issue on your fork, to not make noise on their repo?