Received: from malur.postgresql.org ([217.196.149.56]) by arkaria.postgresql.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1pP9Y3-000247-TG for pgsql-hackers@arkaria.postgresql.org; Mon, 06 Feb 2023 22:01:15 +0000 Received: from localhost ([127.0.0.1] helo=malur.postgresql.org) by malur.postgresql.org with esmtp (Exim 4.92) (envelope-from ) id 1pP9Y2-00047Q-Pe for pgsql-hackers@arkaria.postgresql.org; Mon, 06 Feb 2023 22:01:14 +0000 Received: from makus.postgresql.org ([2001:4800:3e1:1::229]) by malur.postgresql.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1pP9Y2-000457-GJ for pgsql-hackers@lists.postgresql.org; Mon, 06 Feb 2023 22:01:14 +0000 Received: from sss.pgh.pa.us ([66.207.139.130]) by makus.postgresql.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1pP9Xz-0002J2-6a for pgsql-hackers@lists.postgresql.org; Mon, 06 Feb 2023 22:01:13 +0000 Received: from sss1.sss.pgh.pa.us (localhost [127.0.0.1]) by sss.pgh.pa.us (8.15.2/8.15.2) with ESMTP id 316M18n92840052; Mon, 6 Feb 2023 17:01:08 -0500 From: Tom Lane To: Andrew Dunstan cc: PostgreSQL Hackers Subject: Re: OpenSSL 3.0.0 vs old branches In-reply-to: References: <73e646d3-8653-1a1c-0a39-739872b591b0@dunslane.net> <2676333.1675700037@sss.pgh.pa.us> Comments: In-reply-to Andrew Dunstan message dated "Mon, 06 Feb 2023 16:19:30 -0500" MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-ID: <2840050.1675720868.1@sss.pgh.pa.us> Date: Mon, 06 Feb 2023 17:01:08 -0500 Message-ID: <2840051.1675720868@sss.pgh.pa.us> List-Id: List-Help: List-Subscribe: List-Post: List-Owner: List-Archive: Archived-At: Precedence: bulk Andrew Dunstan writes: > On 2023-02-06 Mo 11:13, Tom Lane wrote: >> So presumably, changing this test would break it for OpenSSL 0.9.8, >> which is still nominally supported in those branches. On the other >> hand, this test isn't run by default, so users would likely never >> notice anyway. > Presumably we don't have any buildfarm animals running with such old > versions of openssl, or they would be failing the same test on release > >= 13. That test isn't run by default in the buildfarm either, no? But indeed, probably nobody in the community is testing such builds at all. I did have such setups on my old dinosaur BF animals, but they bit the dust last year for unrelated reasons. I wonder how realistic it is to claim that we still support those old OpenSSL versions. regards, tom lane