Skip RSA-PSS ssl test when using LibreSSL.

author Tom Lane <tgl@sss.pgh.pa.us>

Fri, 9 May 2025 16:29:01 +0000 (12:29 -0400)

committer Tom Lane <tgl@sss.pgh.pa.us>

Fri, 9 May 2025 16:29:01 +0000 (12:29 -0400)
author Tom Lane <tgl@sss.pgh.pa.us>
Fri, 9 May 2025 16:29:01 +0000 (12:29 -0400)
committer Tom Lane <tgl@sss.pgh.pa.us>
Fri, 9 May 2025 16:29:01 +0000 (12:29 -0400)
diff --git a/src/test/ssl/t/002_scram.pl b/src/test/ssl/t/002_scram.pl

index 9e4947f4e3c98bd210083f2507c5a65433e5dd9a..60b60b286570b2f661f2a5a4a6adb6aeb692d3a6 100644 (file)
--- a/src/test/ssl/t/002_scram.pl
+++ b/src/test/ssl/t/002_scram.pl
@@ -44,11 +44,17 @@ my $SERVERHOSTADDR = '127.0.0.1';
  # This is the pattern to use in pg_hba.conf to match incoming connections.
  my $SERVERHOSTCIDR = '127.0.0.1/32';
  
+# Determine whether this build uses OpenSSL or LibreSSL.
+my $libressl = $ssl_server->is_libressl;
+
  # Determine whether build supports detection of hash algorithms for
  # RSA-PSS certificates.
  my $supports_rsapss_certs =
    check_pg_config("#define HAVE_X509_GET_SIGNATURE_INFO 1");
  
+# As of 5/2025, LibreSSL doesn't actually work for RSA-PSS certificates.
+$supports_rsapss_certs = 0 if $libressl;
+
  # Allocation of base connection string shared among multiple tests.
  my $common_connstr;
author	Tom Lane <tgl@sss.pgh.pa.us>
	Fri, 9 May 2025 16:29:01 +0000 (12:29 -0400)
committer	Tom Lane <tgl@sss.pgh.pa.us>
	Fri, 9 May 2025 16:29:01 +0000 (12:29 -0400)