diff options
| author | Daniel Gustafsson <dgustafsson@postgresql.org> | 2024-07-26 11:09:45 +0200 |
|---|---|---|
| committer | Daniel Gustafsson <dgustafsson@postgresql.org> | 2024-07-26 11:09:45 +0200 |
| commit | 274bbced85383e831ddeb9d83a8af74c4992e7a1 (patch) | |
| tree | 7b7a04600b2860482263a6fd140f38963fdb4b6a /configure | |
| parent | 6f9a62b454e8d36f57d54efa141c464f69ce9206 (diff) | |
| download | postgresql-274bbced85383e831ddeb9d83a8af74c4992e7a1.tar.gz postgresql-274bbced85383e831ddeb9d83a8af74c4992e7a1.zip | |
Disable all TLS session tickets
OpenSSL supports two types of session tickets for TLSv1.3, stateless
and stateful. The option we've used only turns off stateless tickets
leaving stateful tickets active. Use the new API introduced in 1.1.1
to disable all types of tickets.
Backpatch to all supported versions.
Reviewed-by: Heikki Linnakangas <hlinnaka@iki.fi>
Reported-by: Andres Freund <andres@anarazel.de>
Discussion: https://postgr.es/m/20240617173803.6alnafnxpiqvlh3g@awork3.anarazel.de
Backpatch-through: v12
Diffstat (limited to 'configure')
| -rwxr-xr-x | configure | 9 |
1 files changed, 5 insertions, 4 deletions
diff --git a/configure b/configure index 062d40e1ab2..ea5514fab1a 100755 --- a/configure +++ b/configure @@ -12591,12 +12591,13 @@ fi done # Function introduced in OpenSSL 1.1.1. - for ac_func in X509_get_signature_info + for ac_func in X509_get_signature_info SSL_CTX_set_num_tickets do : - ac_fn_c_check_func "$LINENO" "X509_get_signature_info" "ac_cv_func_X509_get_signature_info" -if test "x$ac_cv_func_X509_get_signature_info" = xyes; then : + as_ac_var=`$as_echo "ac_cv_func_$ac_func" | $as_tr_sh` +ac_fn_c_check_func "$LINENO" "$ac_func" "$as_ac_var" +if eval test \"x\$"$as_ac_var"\" = x"yes"; then : cat >>confdefs.h <<_ACEOF -#define HAVE_X509_GET_SIGNATURE_INFO 1 +#define `$as_echo "HAVE_$ac_func" | $as_tr_cpp` 1 _ACEOF fi |