git.postgresql.org Git - postgresql.git/commit

author	Michael Paquier <michael@paquier.xyz>
	Fri, 17 Jan 2020 01:06:17 +0000 (10:06 +0900)
committer	Michael Paquier <michael@paquier.xyz>
	Fri, 17 Jan 2020 01:06:17 +0000 (10:06 +0900)
commit	f7cd5896a69621818189fbdd209fb2e1fc008102
tree	dace04fa5faa78aca98ef79204fe67776d6139c4	tree
parent	5afaa2e42655811461044c4216e2f821cadc766d	commit \| diff

Move OpenSSL routines for min/max protocol setting to src/common/

Two routines have been added in OpenSSL 1.1.0 to set the protocol bounds
allowed within a given SSL context:
- SSL_CTX_set_min_proto_version
- SSL_CTX_set_max_proto_version

As Postgres supports OpenSSL down to 1.0.1 (as of HEAD), equivalent
replacements exist in the tree, which are only available for the
backend. A follow-up patch is planned to add control of the SSL
protocol bounds for libpq, so move those routines to src/common/ so as
libpq can use them.

Author: Daniel Gustafsson
Discussion: https://postgr.es/m/4F246AE3-A7AE-471E-BD3D-C799D3748E03@yesql.se

src/backend/libpq/be-secure-openssl.c		diff \| blob \| blame \| history
src/common/Makefile		diff \| blob \| blame \| history
src/common/protocol_openssl.c	[new file with mode: 0644]	blob
src/include/common/openssl.h	[new file with mode: 0644]	blob
src/tools/msvc/Mkvcbuild.pm		diff \| blob \| blame \| history