Home > mailing lists

Re: Password identifiers, protocol aging and SCRAM protocol - Mailing list pgsql-hackers

From	Michael Paquier
Subject	Re: Password identifiers, protocol aging and SCRAM protocol
Date	December 7, 2016 09:39:32
Msg-id	CAB7nPqRF=kVxqtC+Ei_t7eTrMti_0P+xUugSOd_7-rcLvREYzw@mail.gmail.com Whole thread Raw
In response to	Re: Password identifiers, protocol aging and SCRAM protocol (Michael Paquier <michael.paquier@gmail.com>)
Responses	Re: Password identifiers, protocol aging and SCRAM protocol
List	pgsql-hackers

Tree view

On Tue, Nov 29, 2016 at 1:36 PM, Michael Paquier
<michael.paquier@gmail.com> wrote:
> Nothing more will likely happen in this CF, so I have moved it to
> 2017-01 with the same status of "Needs Review".

Attached is a new set of patches using the new routines
pg_backend_random() and pg_strong_random() to handle the randomness in
SCRAM:
- 0001 refactors the SHA2 routines. pgcrypto uses raw files from
src/common when compiling with this patch. That works on any platform,
and this is the simplified version of upthread.
- 0002 adds base64 routines to src/common.
- 0003 does some refactoring regarding the password encryption in
ALTER/CREATE USER queries.
- 0004 adds the clause PASSWORD (val USING method) in CREATE/ALTER USER.
- 0005 is the code patch for SCRAM. Note that this switches pgcrypto
to link to libpgcommon as SHA2 routines are used by the backend.
- 0006 adds some regression tests for passwords.
- 0007 adds some TAP tests for authentication.
This is added to the upcoming CF.

Thanks,
--
Michael

Attachment

pgsql-hackers by date:

From: Ashutosh Bapat
Date: 07 December 2016, 09:39:07
Subject: Re: Push down more full joins in postgres_fdw

From: Craig Ringer
Date: 07 December 2016, 09:39:51
Subject: Re: WIP: Faster Expression Processing and Tuple Deforming (including JIT)

Re: Password identifiers, protocol aging and SCRAM protocol - Mailing list pgsql-hackers

Attachment

Previous

Next