| From: | "Gunnar \"Nick\" Bluth" <gunnar(dot)bluth(at)pro-open(dot)de> |
|---|---|
| To: | Michael Paquier <michael(at)paquier(dot)xyz>, Heikki Linnakangas <hlinnaka(at)iki(dot)fi> |
| Cc: | Jacob Champion <jchampion(at)timescale(dot)com>, pgsql-bugs(at)lists(dot)postgresql(dot)org |
| Subject: | Re: BUG #17760: SCRAM authentication fails with "modern" (rsassaPss signature) server certificate |
| Date: | 2023-02-13 12:54:46 |
| Message-ID: | 29c8e8cb-d476-727e-c257-3f9cfa6ed527@pro-open.de |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-bugs |
Am 13.02.23 um 02:58 schrieb Michael Paquier:
[...]
>> Agreed, if we have an easy solution for RSA-PSS, that's good enough
>> for now.
>
> Indeed.
>
> With all that in mind, I am finishing with the attached with the
> tests, the meson tweaks and the MSVC tweaks. I have tested it on
> HEAD, with OpenSSL down to 1.0.1 which is the minimum version of this
> branch. Making sure that this mostly works with 1.0.0 and 0.9.8 on
> older branches would not be an issue here.
FWIW:
I only understand a fraction of the underlying crypto, but the patch LGTM!
Much appreciated, thanks for the effort (and sorry for causing it ;-)!
--
Gunnar "Nick" Bluth
Eimermacherweg 106
D-48159 Münster
Mobil +49 172 8853339
Email: gunnar(dot)bluth(at)pro-open(dot)de
__________________________________________________________________________
"Ceterum censeo SystemD esse delendam" - Cato
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Jacob Champion | 2023-02-13 17:44:03 | Re: BUG #17760: SCRAM authentication fails with "modern" (rsassaPss signature) server certificate |
| Previous Message | Alexander Lakhin | 2023-02-13 12:00:00 | Re: array_agg(DISTINCT) caused a segmentation fault |