| From: | Daniel Gustafsson <dgustafsson(at)postgresql(dot)org> |
|---|---|
| To: | pgsql-committers(at)lists(dot)postgresql(dot)org |
| Subject: | pgsql: Add alternative output for OpenSSL 3 without legacy loaded |
| Date: | 2021-09-25 09:46:00 |
| Message-ID: | E1mU4Fs-00039M-6z@gemulon.postgresql.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-committers |
Add alternative output for OpenSSL 3 without legacy loaded
OpenSSL 3 introduced the concept of providers to support modularization,
and moved the outdated ciphers to the new legacy provider. In case it's
not loaded in the users openssl.cnf file there will be a lot of regress
test failures, so add alternative outputs covering those.
Also document the need to load the legacy provider in order to use older
ciphers with OpenSSL-enabled pgcrypto.
This will be backpatched to all supported version once there is sufficient
testing in the buildfarm of OpenSSL 3.
Reviewed-by: Michael Paquier
Discussion: https://postgr.es/m/FEF81714-D479-4512-839B-C769D2605F8A@yesql.se
Branch
------
REL_14_STABLE
Details
-------
https://git.postgresql.org/pg/commitdiff/6d0001aabf2a49180a236d9c2a7ecdf24e0cdb37
Modified Files
--------------
contrib/pgcrypto/expected/blowfish_1.out | 95 +++
contrib/pgcrypto/expected/cast5_1.out | 48 ++
contrib/pgcrypto/expected/des_1.out | 31 +
contrib/pgcrypto/expected/pgp-decrypt_1.out | 421 +++++++++++++
contrib/pgcrypto/expected/pgp-pubkey-decrypt_1.out | 652 +++++++++++++++++++++
doc/src/sgml/pgcrypto.sgml | 7 +
6 files changed, 1254 insertions(+)
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Daniel Gustafsson | 2021-09-25 09:47:32 | pgsql: pgcrypto: Check for error return of px_cipher_decrypt() |
| Previous Message | Michael Paquier | 2021-09-25 06:13:31 | pgsql: doc: Improve description of index vacuuming with GUCs |