Home > mailing lists

Re: [DOCS] gen_random_uuid security not explicit in documentation - Mailing list pgsql-docs

From	Michael Paquier
Subject	Re: [DOCS] gen_random_uuid security not explicit in documentation
Date	January 3, 2017 18:47:37
Msg-id	CAB7nPqQuvGF=fqmSUnDZ6-qmCR_w0GygcaztFfDxVg05wk0k8w@mail.gmail.com Whole thread Raw
In response to	[DOCS] gen_random_uuid security not explicit in documentation (rightfold@gmail.com)
Responses	Re: [DOCS] gen_random_uuid security not explicit in documentation
List	pgsql-docs

Tree view

(Adding Heikki in CC who committed this code)

On Mon, Jan 2, 2017 at 8:20 AM,  <rightfold@gmail.com> wrote:
> The C source code of gen_random_uuid reads:
>
>     /*
>     * Generate random bits. pg_backend_random() will do here, we don't
>     * promis UUIDs to be cryptographically random, when built with
>     * --disable-strong-random.
>     */
>
> However, the pgcrypto documentation does not mention
> --disable-strong-random
> at all. I think the documentation should mention under which conditions
> the function returns secure data.

That's actually a good idea. But as it does not only apply to
get_random_uuid(), I would think that a notice at the top of the
pgcrypto documentation would make the most sense. Something like:
"If PostgreSQL is built with --disable-strong-random, the data
generated by the functions is not guaranteed to be cryptographically
random."

> P.S. there is also a typo in the C comment: "promis" should be "promise".

Indeed.
--
Michael

pgsql-docs by date:

From: rightfold@gmail.com
Date: 02 January 2017, 05:20:54
Subject: [DOCS] gen_random_uuid security not explicit in documentation

From: Tatsuo Ishii
Date: 05 January 2017, 05:40:28
Subject: [DOCS] Questionable tag usage

Re: [DOCS] gen_random_uuid security not explicit in documentation - Mailing list pgsql-docs

Previous

Next