Home > mailing lists

Re: BUG #17522: While using --with-ssl=openssl and PG_TEST_EXTRA='ssl' options, SSL test fails on OpenBSD 7.1 - Mailing list pgsql-bugs

From	Jacob Champion
Subject	Re: BUG #17522: While using --with-ssl=openssl and PG_TEST_EXTRA='ssl' options, SSL test fails on OpenBSD 7.1
Date	June 22, 2022 19:28:56
Msg-id	CAAWbhmjdPS7A76gUXVPis8Zhmztk3c3Gbe94bUyqK-Qu=0utMA@mail.gmail.com Whole thread Raw
In response to	Re: BUG #17522: While using --with-ssl=openssl and PG_TEST_EXTRA='ssl' options, SSL test fails on OpenBSD 7.1 (Tom Lane <tgl@sss.pgh.pa.us>)
Responses	Re: BUG #17522: While using --with-ssl=openssl and PG_TEST_EXTRA='ssl' options, SSL test fails on OpenBSD 7.1 (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-bugs

Tree view

On Wed, Jun 22, 2022 at 9:16 AM Tom Lane <tgl@sss.pgh.pa.us> wrote:
> Jacob Champion <jchampion@timescale.com> writes:
>
> > That's certainly an option. Do you think it's still early enough in
> > the cycle to make that change for 15?
>
> Why not?  We're still in beta, and pretty early at that.

Mostly just that the test failure isn't new behavior in 15, and a user
would only see that if they deliberately shoved nonsense into the host
while built against LibreSSL -- in which case they could also disable
SNI to move forward. Moving from lax to strict validation means plenty
of IETF spec reading to make sure we don't throw away useful hostnames
by accident. But I really don't have a strong opinion here, if I'm
honest.

--Jacob

pgsql-bugs by date:

From: Nathan Bossart
Date: 22 June 2022, 19:25:50
Subject: Re: Extension pg_trgm, permissions and pg_dump order

From: Tom Lane
Date: 22 June 2022, 19:31:45
Subject: Re: BUG #17522: While using --with-ssl=openssl and PG_TEST_EXTRA='ssl' options, SSL test fails on OpenBSD 7.1

Re: BUG #17522: While using --with-ssl=openssl and PG_TEST_EXTRA='ssl' options, SSL test fails on OpenBSD 7.1 - Mailing list pgsql-bugs

Previous

Next