Re: OpenSSL 3.0.0 vs old branches

Tom Lane <tgl@sss.pgh.pa.us>

From: Tom Lane <tgl@sss.pgh.pa.us>
To: Erik Rijkers <er@xs4all.nl>
Cc: Michael Paquier <michael@paquier.xyz>, Andrew Dunstan <andrew@dunslane.net>, Peter Eisentraut <peter.eisentraut@enterprisedb.com>, PostgreSQL Hackers <pgsql-hackers@lists.postgresql.org>
Date: 2023-02-08T16:02:24Z
Lists: pgsql-hackers
Erik Rijkers <er@xs4all.nl> writes:
> Op 08-02-2023 om 05:37 schreef Tom Lane:
>> Question: is anybody around here still testing with 0.9.8 (or 1.0.x)
>> at all?  The systems I had that had that version on them are dead.

> I've hoarded an old centos 6.1 system that I don't really use anymore 
> but sometimes (once every few weeks, I guess) start up and build master 
> on, for instance to test with postgres_fdw/replication. Such a build 
> would include a make check, and I think I would have noticed any fails.
> That system says:
> OpenSSL> OpenSSL 1.0.1e-fips 11 Feb 2013
> FWIW, just now I built & ran check-world for 15 and 16 with 
> PG_TEST_EXTRA=ssl (which I didn't use before).  Both finished ok.

Oh, that's good to know.  That means that the newer form of this
test works with 1.0.1, which means that we'd only lose test
compatibility with 0.9.x OpenSSL.  That bothers me not at all
in 2023.

			regards, tom lane



Commits

  1. Backpatch OpenSSL 3.0.0 compatibility in tests

  2. OpenSSL 3.0.0 compatibility in tests

  3. Remove support for OpenSSL 0.9.8 and 1.0.0