Home > mailing lists

Re: Support for NSS as a libpq TLS backend - Mailing list pgsql-hackers

From	Daniel Gustafsson
Subject	Re: Support for NSS as a libpq TLS backend
Date	October 20, 2020 15:24:24
Msg-id	B1ADEE76-3E33-4E9D-B830-3AA89B1C42D2@yesql.se Whole thread Raw
In response to	Re: Support for NSS as a libpq TLS backend (Daniel Gustafsson <daniel@yesql.se>)
Responses	Re: Support for NSS as a libpq TLS backend (Andres Freund <andres@anarazel.de>)
List	pgsql-hackers

Tree view

The attached v12 adds support for pgcrypto as well as pg_strong_random, which I
believe completes the required subsystems where we have OpenSSL support today.
I opted for not adding code to handle the internal shaXXX implementations until
the dust settles around the proposal to change the API there.

Blowfish is not supported by NSS AFAICT, even though the cipher mechanism is
defined, so the internal implementation is used there instead.  CAST5 is
supported, but segfaults inside NSS on most inputs so support for that is not
included for now.

cheers ./daniel

Attachment

0001-Support-for-NSS-as-a-TLS-backend-v12.patch

pgsql-hackers by date:

From: Masahiko Sawada
Date: 20 October 2020, 15:23:52
Subject: Re: Resetting spilled txn statistics in pg_stat_replication

From: Dilip Kumar
Date: 20 October 2020, 15:29:39
Subject: Re: Is Recovery actually paused?

Re: Support for NSS as a libpq TLS backend - Mailing list pgsql-hackers

Attachment

Previous

Next