Home > mailing lists

Re: pgsql: Don't try to compile SSL CRL support if - Mailing list pgsql-committers

From	Kris Jurka
Subject	Re: pgsql: Don't try to compile SSL CRL support if
Date	May 5, 2006 00:14:33
Msg-id	Pine.BSO.4.63.0605041903060.19909@leary2.csoft.net Whole thread Raw
In response to	pgsql: Don't try to compile SSL CRL support if local SSL installation (tgl@postgresql.org (Tom Lane))
Responses	Re: pgsql: Don't try to compile SSL CRL support if local SSL installation
List	pgsql-committers

Tree view

On Thu, 4 May 2006, Tom Lane wrote:

> Log Message:
> -----------
> Don't try to compile SSL CRL support if local SSL installation hasn't
> got it.  Per buildfarm failure on 'canary'.
>

It seems a little bit dangerous to just not check the CRL without so much
as a warning message.  CRL support came around in openssl 0.9.7 which was
quite some time ago.  Last time we discussed[1] this it looked like the
0.9.6 branch was still being maintained, but it's been over two years
since the last 0.9.6 release[2].  I'd suggest de-supporting 0.9.6 or some
sort of log message if there is a CRL file that we're not going to check.

Kris Jurka

[1] http://archives.postgresql.org/pgsql-committers/2005-07/msg00194.php
[2] http://www.openssl.org/news/

pgsql-committers by date:

From: tgl@postgresql.org (Tom Lane)
Date: 04 May 2006, 22:18:44
Subject: pgsql: Don't try to compile SSL CRL support if local SSL installation

From: Tom Lane
Date: 05 May 2006, 01:16:24
Subject: Re: pgsql: Don't try to compile SSL CRL support if local SSL installation

Re: pgsql: Don't try to compile SSL CRL support if - Mailing list pgsql-committers

Previous

Next