Home > mailing lists

Re: OpenSSL randomness seeding - Mailing list pgsql-hackers

From	Noah Misch
Subject	Re: OpenSSL randomness seeding
Date	August 2, 2020 09:48:23
Msg-id	20200802064823.GB2207@rfd.leadboat.com Whole thread Raw
In response to	Re: OpenSSL randomness seeding (Daniel Gustafsson <daniel@yesql.se>)
Responses	Re: OpenSSL randomness seeding
List	pgsql-hackers

Tree view

On Thu, Jul 30, 2020 at 11:42:16PM +0200, Daniel Gustafsson wrote:
> Somewhat on topic though, 1.1.1 adds a RAND_priv_bytes function for random
> numbers that are supposed to be private and extra protected via it's own DRBG.
> Maybe we should use that for SCRAM salts etc in case we detect 1.1.1?

Maybe.  Would you have a separate pg_private_random() function, or just use
RAND_priv_bytes() for pg_strong_random()?  No pg_strong_random() caller is
clearly disinterested in privacy; gen_random_uuid() may come closest.

pgsql-hackers by date:

From: Noah Misch
Date: 02 August 2020, 09:11:42
Subject: Re: SimpleLruTruncate() mutual exclusion

From: Michael Paquier
Date: 02 August 2020, 10:05:03
Subject: Re: OpenSSL randomness seeding

Re: OpenSSL randomness seeding - Mailing list pgsql-hackers

Previous

Next