Thread: pgsql: Add alternative output for OpenSSL 3 without legacy loaded

pgsql: Add alternative output for OpenSSL 3 without legacy loaded

From

Daniel Gustafsson

Date:

25 September 2021, 12:47:32

Add alternative output for OpenSSL 3 without legacy loaded

OpenSSL 3 introduced the concept of providers to support modularization,
and moved the outdated ciphers to the new legacy provider. In case it's
not loaded in the users openssl.cnf file there will be a lot of regress
test failures, so add alternative outputs covering those.

Also document the need to load the legacy provider in order to use older
ciphers with OpenSSL-enabled pgcrypto.

This will be backpatched to all supported version once there is sufficient
testing in the buildfarm of OpenSSL 3.

Reviewed-by: Michael Paquier
Discussion: https://postgr.es/m/FEF81714-D479-4512-839B-C769D2605F8A@yesql.se
Backpatch-through: 9.6

Branch
------
REL_13_STABLE

Details
-------
https://git.postgresql.org/pg/commitdiff/8e7199453bf9fe142f3f4a5e17010320c24867e7

Modified Files
--------------
contrib/pgcrypto/expected/blowfish_1.out           |  95 +++
contrib/pgcrypto/expected/cast5_1.out              |  48 ++
contrib/pgcrypto/expected/des_1.out                |  31 +
contrib/pgcrypto/expected/pgp-decrypt_1.out        | 421 +++++++++++++
contrib/pgcrypto/expected/pgp-pubkey-decrypt_1.out | 652 +++++++++++++++++++++
doc/src/sgml/pgcrypto.sgml                         |   7 +
6 files changed, 1254 insertions(+)