Re: Add ssl_(supported|shared)_groups to sslinfo
Dmitry Dolgov <9erthalion6@gmail.com>
From: Dmitry Dolgov <9erthalion6@gmail.com>
To: Zsolt Parragi <zsolt.parragi@percona.com>
Cc: Jacob Champion <jacob.champion@enterprisedb.com>, Daniel Gustafsson <daniel@yesql.se>,
PostgreSQL Hackers <pgsql-hackers@postgresql.org>
Date: 2026-05-13T18:08:02Z
Lists: pgsql-hackers
Attachments
- v6-0001-contrib-sslinfo-Add-ssl_group_info.patch (text/plain)
> On Tue, May 12, 2026 at 10:48:20PM +0100, Zsolt Parragi wrote: > +#define HAVE_SSL_GROUPS \ > + defined(HAVE_DECL_SSL_GET1_GROUPS) && \ > + defined(HAVE_DECL_SSL_GET_NEGOTIATED_GROUP) && \ > + defined(HAVE_SSL_GROUP_TO_NAME) > > I don't think this check works properly > 1. autoconf/meson always defines HAVE_DECL to 0/1, so defined() always > returns true > 2. in practice it should work, but using defined() in a macro > expansion is undefined behavior That's indeed a faux pas. I was testing this on openssl 1.1.1w, which was lacking both SSL_get_negotiated_group and SSL_group_to_name, and this was hiding the problem. The new version should address this problem, and includes documentation fix from Cary.