Home > mailing lists

Re: Modern SHA2- based password hashes for pgcrypto - Mailing list pgsql-hackers

From	Daniel Gustafsson
Subject	Re: Modern SHA2- based password hashes for pgcrypto
Date	January 2 21:28:50
Msg-id	0967A746-3CB8-4195-916D-5E1B29D0AD36@yesql.se Whole thread Raw
In response to	Re: Modern SHA2- based password hashes for pgcrypto (Bernd Helmle <mailings@oopsware.de>)
List	pgsql-hackers

Tree view

> On 2 Jan 2025, at 16:17, Bernd Helmle <mailings@oopsware.de> wrote:
> 
> Am Donnerstag, dem 02.01.2025 um 15:57 +0100 schrieb Daniel Gustafsson:
>>> I adapted the code from the publicly available reference
>>> implementation
>>> at [1]. It's based on our existing OpenSSL infrastructure in
>>> pgcrypto
>>> and produces compatible password hashes with crypt() and "openssl
>>> passwd" with "-5" and "-6" switches.
>> 
>> Potentially daft question, but since we require OpenSSL to build
>> pgcrypto, why
>> do we need to include sha2 code instead of using the sha2
>> implementation in
>> libcrypto? How complicated would it be to use the OpenSSL API
>> instead?
> 
> Not sure i got you, but i use OpenSSL and the SHA2 implementation
> there. See the pgcrypto px_* API (px.h and openssl.c respectively) i am
> using to create the digests.

Sorry, skimming the patch I misread it, nevermind.

--
Daniel Gustafsson

pgsql-hackers by date:

From: Bernd Helmle
Date: 02 January, 21:17:40
Subject: Re: Modern SHA2- based password hashes for pgcrypto

From: Tom Lane
Date: 02 January, 21:38:29
Subject: Re: Strange issue with NFS mounted PGDATA on ugreen NAS

Re: Modern SHA2- based password hashes for pgcrypto - Mailing list pgsql-hackers

Previous

Next