Re: OpenSSL 1.1 breaks configure and more
Andreas Karlsson <andreas@proxel.se>
From: Andreas Karlsson <andreas@proxel.se>
To: Heikki Linnakangas <hlinnaka@iki.fi>, Tom Lane <tgl@sss.pgh.pa.us>,
Peter Eisentraut <peter.eisentraut@2ndquadrant.com>
Cc: Victor Wagner <vitus@wagner.pp.ru>, pgsql-hackers@postgresql.org,
Christoph Berg <myon@debian.org>
Date: 2016-08-27T01:26:01Z
Lists: pgsql-hackers
Attachments
- remove-openssl-pre-0.9.8-v1.patch (text/x-patch) patch v1
On 08/26/2016 07:04 PM, Heikki Linnakangas wrote: > On 08/26/2016 07:44 PM, Tom Lane wrote: >> Peter Eisentraut <peter.eisentraut@2ndquadrant.com> writes: >>> On 8/26/16 5:31 AM, Heikki Linnakangas wrote: >>>> I think now would be a good time to drop support for OpenSSL versions >>>> older than 0.9.8. OpenSSL don't even support 0.9.8 anymore, although >>>> there are probably distributions out there that still provide patches >>>> for it. But OpenSSL 0.9.7 and older are really not interesting for >>>> PostgreSQL 10 anymore, I think. >> >>> CentOS 5 currently ships 0.9.8e. That's usually the oldest OS we want >>> to support eagerly. >> >> Also, I get this on fully-up-to-date OS X (El Capitan): >> >> $ openssl version >> OpenSSL 0.9.8zh 14 Jan 2016 > > Ok, sold, let's remove support for OpenSSL < 0.9.8. I have attached a patch which removes the < 0.9.8 compatibility code. Should we also add a version check to configure? We do not have any such check currently. Andreas
Commits
-
Back-patch 9.4-era SSL renegotiation code into 9.3 and 9.2.
- fbfeceb25362 9.3.17 landed
- 58384149bdbd 9.2.21 landed