On 02/06/18 17:09, Tom Lane wrote:
Michael Paquier <mich...@paquier.xyz> writes:
... Making HAVE_X509_GET_SIGNATURE_NID a hard requirement bumps the
minimal version of OpenSSL supported to 1.0.2, which is something I
would not feel much sorry about either like Heikki, as I have heard of
many vendors maintaining OpenSSL past versions on Linux, but not yet on
Windows. It is easy to be wrong when it comes to any company policies
though.
I have assorted pet dinosaurs using 0.9.8x or 0.9.8y, but I'm not
sure that any of those still represent credible real-world cases.
More concerning is that RHEL6 is on 1.0.1e:
I was only thinking of requiring 1.0.2 on Windows. On other platforms,
the configure tests work fine, and there's no problem supporting older
versions. You just won't get tls-server-end-point channel binding
support on older versions.
- Heikki
