From: Daniele Varrazzo <daniele.varrazzo@gmail.com>
Date: Mon, 4 Sep 2023 00:16:35 +0000 (+0100)
Subject: chore(binary): bump depending libraries
X-Git-Tag: pool-3.1.8~16
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=d424be88f63ee0d56088bcbc85904cdcc4fc48b8;p=thirdparty%2Fpsycopg.git

chore(binary): bump depending libraries

Bump to libpq 15.4, OpenSSL 1.1.1v, OpenLDAP 2.6.6.

Particularly important is the libpq bump because the library, since
15.2, allows group access to the SSL certificate. See
https://github.com/psycopg/psycopg/discussions/528
---

diff --git a/docs/news.rst b/docs/news.rst
index 12d57e5e5..6b577e028 100644
--- a/docs/news.rst
+++ b/docs/news.rst
@@ -18,6 +18,8 @@ Psycopg 3.1.11 (unreleased)
 - Fix possible lack of critical section guard in async
   `~AsyncCursor.executemany()`.
 - Fix missing pipeline fetch in async `~AsyncCursor.scroll()`.
+- Build binary packages with libpq 15.4, which allows group-readable
+  permissions on the SSL certificate on the client (:ticket:`#528`).
 
 
 Current release
diff --git a/tools/build/build_libpq.sh b/tools/build/build_libpq.sh
index 4cc79af2d..7e9cf9a93 100755
--- a/tools/build/build_libpq.sh
+++ b/tools/build/build_libpq.sh
@@ -7,13 +7,13 @@ set -x
 
 # Last release: https://www.postgresql.org/ftp/source/
 # IMPORTANT! Change the cache key in packages.yml when upgrading libraries
-postgres_version="${LIBPQ_VERSION:-15.0}"
+postgres_version="${LIBPQ_VERSION:-15.4}"
 
 # last release: https://www.openssl.org/source/
-openssl_version="${OPENSSL_VERSION:-1.1.1r}"
+openssl_version="${OPENSSL_VERSION:-1.1.1v}"
 
 # last release: https://openldap.org/software/download/
-ldap_version="2.6.3"
+ldap_version="2.6.6"
 
 # last release: https://github.com/cyrusimap/cyrus-sasl/releases
 sasl_version="2.1.28"