Home > mailing lists

Re: Modern SHA2- based password hashes for pgcrypto - Mailing list pgsql-hackers

From	Bernd Helmle
Subject	Re: Modern SHA2- based password hashes for pgcrypto
Date	January 2 21:17:40
Msg-id	aac1015d45ec98b2cf0ed1fdd2e05a2ee7b07736.camel@oopsware.de Whole thread Raw
In response to	Re: Modern SHA2- based password hashes for pgcrypto (Daniel Gustafsson <daniel@yesql.se>)
Responses	Re: Modern SHA2- based password hashes for pgcrypto
List	pgsql-hackers

Tree view

Am Donnerstag, dem 02.01.2025 um 15:57 +0100 schrieb Daniel Gustafsson:
> > I adapted the code from the publicly available reference
> > implementation
> > at [1]. It's based on our existing OpenSSL infrastructure in
> > pgcrypto
> > and produces compatible password hashes with crypt() and "openssl
> > passwd" with "-5" and "-6" switches.
>
> Potentially daft question, but since we require OpenSSL to build
> pgcrypto, why
> do we need to include sha2 code instead of using the sha2
> implementation in
> libcrypto? How complicated would it be to use the OpenSSL API
> instead?

Not sure i got you, but i use OpenSSL and the SHA2 implementation
there. See the pgcrypto px_* API (px.h and openssl.c respectively) i am
using to create the digests.

Thanks,
    Bernd

pgsql-hackers by date:

From: Daniel Gustafsson
Date: 02 January, 20:57:49
Subject: Re: Modern SHA2- based password hashes for pgcrypto

From: Daniel Gustafsson
Date: 02 January, 21:28:50
Subject: Re: Modern SHA2- based password hashes for pgcrypto

Re: Modern SHA2- based password hashes for pgcrypto - Mailing list pgsql-hackers

Previous

Next