Received: from malur.postgresql.org ([217.196.149.56]) by arkaria.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.96) (envelope-from ) id 1w2ovU-000dWb-31 for pgsql-hackers@arkaria.postgresql.org; Wed, 18 Mar 2026 11:19:01 +0000 Received: from localhost ([127.0.0.1] helo=malur.postgresql.org) by malur.postgresql.org with esmtp (Exim 4.96) (envelope-from ) id 1w2ovT-009sx1-1e for pgsql-hackers@arkaria.postgresql.org; Wed, 18 Mar 2026 11:18:59 +0000 Received: from magus.postgresql.org ([2a02:c0:301:0:ffff::29]) by malur.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.96) (envelope-from <9erthalion6@gmail.com>) id 1w2ovT-009swt-0b for pgsql-hackers@lists.postgresql.org; Wed, 18 Mar 2026 11:18:59 +0000 Received: from mail-ej1-x62f.google.com ([2a00:1450:4864:20::62f]) by magus.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.98.2) (envelope-from <9erthalion6@gmail.com>) id 1w2ovQ-00000000v3x-2WZM for pgsql-hackers@postgresql.org; Wed, 18 Mar 2026 11:18:58 +0000 Received: by mail-ej1-x62f.google.com with SMTP id a640c23a62f3a-b97f9587e6eso87493066b.3 for ; Wed, 18 Mar 2026 04:18:56 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1773832736; x=1774437536; darn=postgresql.org; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:cc:to:from:date:from:to:cc:subject:date:message-id:reply-to; bh=UsmnEWCJK/wE90f/LK6U8Zw5eWv/4ISK0YXRIObpyLU=; b=QpPoCOPJUC4lheaX+sRYUKooFCZckpoTw9KYgZXNtOl09Nytc9r11uiM7/UCQgDlsx 1fhMLpxxJc+CGC3r1wAHcr0yn42GLFMfHflwa336ly56gla1ZVVJvLdSNcJltLHbcYNJ DWyGL1IIxn77QnCXhh0CnMr7UDfVQrpqScGbXG1NeGEK+SjctqJ2AR0+7k39/dvZT8WW cGDYCCIvSPZuRPiRPLETXfStkoViRoAzAtZylcp21Jz0MyPjXi+HGleRiRAiqJZXoLEt aN81A6/mJcjZ0C1CL2lrNMUTX2kCiMHC8edxjg6AyfpBl0IyxrK8IDRXUyD+LktM+/4c Ad3A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1773832736; x=1774437536; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:cc:to:from:date:x-gm-gg:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=UsmnEWCJK/wE90f/LK6U8Zw5eWv/4ISK0YXRIObpyLU=; b=F5ytZlqJ4pKcT83M1tawMLs4ZAYrtzLRraxozSMMI2mfuvJhM5QevTDmfaNmE+EuWo 7E7kLJ8Mh+jIVIAar8X6rWHEfeT9blzK+24eB4G9CFecGJOPalh6xN0UwM4VUnG8vGC6 h5NzHHdg5dAa7nH3g8+STGwxMUplf0MQkZF61+//t34lRGUgzwceW9/t1wAqlJiJhEVB 5GXrvJ0JXVHw7W2eXPhPCB79CVLOuAyszEXDb0iU5JowR/jS8DTJqXszxnwlaRlYhm5d 2sNem8W3v/X1pllYj6+idz05V0b/Xx2U7XBztQT6We7oMfKD3z8BeesbQNXKDCNQMzvP vwqg== X-Forwarded-Encrypted: i=1; AJvYcCVNn05nvXEpaVJydw74aJdFHiTyZMT92g0URNF3rIqLxy1bVHvKsOTqd6yyMiPOaBJ1Vi+NzEhn35aQBA3+@postgresql.org X-Gm-Message-State: AOJu0Yy+ppauNsO8HhqKXuIMmWL1rUDL1bTv5/URNYYGsJK3l+8EYSxi nOa8Xul5RfQgfZsUcPBji870nXpTSmNegN0e6rQo3QOCI/pgoeJwmZPs X-Gm-Gg: ATEYQzyx5VFnTXCsCWUDpzvn0Dhqq9jzYs9+gGx7u7VZKd3ErsMYmp7oIbqZgBR3H8h 2s7oujeQwLlHLf/0GZsNl3JNPpiyUEXqgX0Zzh0TLJJ3IHSNVyzG+a7MoNRbhjAFRzdv68uyY0p VsGbICyy4Y1ZjKQkTGEuskU+SVZ7rxgUadLSzeWiR/OxvneIHwP+Ggb1FI6jcQMxwIpYzJciMIi WcBEfyjwx3yq9IPkRn3QlB2MrjPk3w8fNSzZX2Rgagyg/ragIghD+Wstb4/IyQgLsNqWyA7yns2 2tUMXAlPoDiX9vQLf4Y1VeWa6svOwIEqcjyPeKEe7x52NHC26+CiWMRO+mMNFIO9rpVH8nee7w4 RMnicWBngFlkKc0NatQPFwbBiK/YBCGtE57gZF33JeAIHns2IXirC+ahtQlKJzoOuu48foFT4eS F1Jptjge9LMsbKsdplBy6DqBXM4zqJVyIz9kh2lbi4BmEX09/Xe9jYKjSDgt1W5ejl9wlKDaPHr KjhkrcjUybz/M8J4II4Tk6xmAFssDQHWd1i5A== X-Received: by 2002:a17:907:960f:b0:b97:a0a4:b89f with SMTP id a640c23a62f3a-b97f4801bbbmr179479266b.17.1773832735439; Wed, 18 Mar 2026 04:18:55 -0700 (PDT) Received: from ddolgov-thinkpadt14sgen1.rmtde.csb (dslb-002-202-135-061.002.202.pools.vodafone-ip.de. [2.202.135.61]) by smtp.gmail.com with ESMTPSA id a640c23a62f3a-b97f13e9941sm190160866b.3.2026.03.18.04.18.54 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 18 Mar 2026 04:18:54 -0700 (PDT) Date: Wed, 18 Mar 2026 12:18:52 +0100 From: Dmitry Dolgov <9erthalion6@gmail.com> To: Jacob Champion Cc: Daniel Gustafsson , PostgreSQL Hackers Subject: Re: Add ssl_(supported|shared)_groups to sslinfo Message-ID: References: MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="fucpmbwjcehrmjf7" Content-Disposition: inline In-Reply-To: List-Id: List-Help: List-Subscribe: List-Post: List-Owner: List-Archive: Archived-At: Precedence: bulk --fucpmbwjcehrmjf7 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline > On Tue, Mar 03, 2026 at 11:43:10AM +0100, Dmitry Dolgov wrote: > Naming is hard of course, but my plan was to stick to short names like > those above, and unwrap them in the documentation: > > * Supported: list of named groups supported by the client for key > exchange in the form of "supported_groups" extension. > > Supported group is the exact terminology used in the TLS spec. > > * Shared: lisf of named groups shared with the server side. > > This one actually doesn't appear in the spec. The closest name > featured is "selected_groups", but only in the context of the retry > requests. Thus I took this form the OpenSSL docs. > > * Negotiated: the group used for the handshake key exchange process. > > Surprsingly, I don't see any exact terminology for this in the TLS > spec, it just says "the named group for the key being exchanged". The > name is taken from the OpenSSL documentation. > > How does it sound? Added those into the documentation, will create a CF item. --fucpmbwjcehrmjf7 Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="v3-0001-contrib-sslinfo-Add-ssl_group_info.patch"