On 3/20/18 04:03, Daniel Gustafsson wrote:
> If we test for SSL_clear_options(), and use the sk_SSL_COMP_zero() where not
> available, we should be able to keep backwards compatibility with older OpenSSL
> revisions even if the distros have patched them AFAICT. Unless you’re already
> working on it I can take a stab at it.
I don't think we need to go out of our way to deal with such old
versions (> 8 years AFAICT), especially since we have no way to test it.
--
Peter Eisentraut http://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Remote DBA, Training & Services