On Mon, Jan 06, 2020 at 03:53:08AM +0000, Michael Paquier wrote: > Remove support for OpenSSL 0.9.8 and 1.0.0 > > Support is out of scope from all the major vendors for these versions > (for example RHEL5 uses a version based on 0.9.8, and RHEL6 uses 1.0.1), > and it created some extra maintenance work. Upstream has stopped > support of 0.9.8 in December 2015 and of 1.0.0 in February 2016. > > Since b1abfec, note that the default SSL protocol version set with > ssl_min_protocol_version is TLSv1.2, whose support was added in OpenSSL > 1.0.1, so there is no point to enforce ssl_min_protocol_version to TLSv1 > in the SSL tests.
So the buildfarm is not that bad, I have spotted one failure from nightjar: https://buildfarm.postgresql.org/cgi-bin/show_log.pl?nm=nightjar&dt=2020-01-06%2003%3A54%3A10 /pgbuild/root/HEAD/pgsql.build/../pgsql/src/interfaces/libpq/fe-secure-openssl.c: In function 'initialize_SSL': /pgbuild/root/HEAD/pgsql.build/../pgsql/src/interfaces/libpq/fe-secure-openssl.c:1198: error: 'SSL_OP_NO_COMPRESSION' undeclared (first use in this function) /pgbuild/root/HEAD/pgsql.build/../pgsql/src/interfaces/libpq/fe-secure-openssl.c:1198: error: (Each undeclared identifier is reported only once /pgbuild/root/HEAD/pgsql.build/../pgsql/src/interfaces/libpq/fe-secure-openssl.c:1198: error: for each function it appears in.) And this means that the version likely used here should be 0.9.8. FreeBSD 9 is EOL since March 2013 based on Wikipedia-Sensei's data: https://en.wikipedia.org/wiki/FreeBSD -- Michael
signature.asc
Description: PGP signature
