mirror of
https://github.com/postgres/postgres.git
synced 2025-07-30 11:03:19 +03:00
Don't try to compile SSL CRL support if local SSL installation hasn't
got it. Per buildfarm failure on 'canary'.
This commit is contained in:
@ -11,7 +11,7 @@
|
|||||||
*
|
*
|
||||||
*
|
*
|
||||||
* IDENTIFICATION
|
* IDENTIFICATION
|
||||||
* $PostgreSQL: pgsql/src/backend/libpq/be-secure.c,v 1.66 2006/04/27 15:35:15 momjian Exp $
|
* $PostgreSQL: pgsql/src/backend/libpq/be-secure.c,v 1.67 2006/05/04 22:18:38 tgl Exp $
|
||||||
*
|
*
|
||||||
* Since the server static private key ($DataDir/server.key)
|
* Since the server static private key ($DataDir/server.key)
|
||||||
* will normally be stored unencrypted so that the database
|
* will normally be stored unencrypted so that the database
|
||||||
@ -795,6 +795,7 @@ initialize_SSL(void)
|
|||||||
}
|
}
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
|
#ifdef X509_V_FLAG_CRL_CHECK
|
||||||
/*
|
/*
|
||||||
* Check the Certificate Revocation List (CRL) if file exists.
|
* Check the Certificate Revocation List (CRL) if file exists.
|
||||||
* http://searchsecurity.techtarget.com/sDefinition/0,,sid14_gci803160,00.html
|
* http://searchsecurity.techtarget.com/sDefinition/0,,sid14_gci803160,00.html
|
||||||
@ -816,6 +817,7 @@ initialize_SSL(void)
|
|||||||
errdetail("Will not check certificates against CRL.")));
|
errdetail("Will not check certificates against CRL.")));
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
#endif /* X509_V_FLAG_CRL_CHECK */
|
||||||
|
|
||||||
SSL_CTX_set_verify(SSL_context,
|
SSL_CTX_set_verify(SSL_context,
|
||||||
(SSL_VERIFY_PEER |
|
(SSL_VERIFY_PEER |
|
||||||
|
Reference in New Issue
Block a user