Re: scram-sha-256 broken with FIPS and OpenSSL 1.0.2
Daniel Gustafsson <daniel@yesql.se>
From: Daniel Gustafsson <daniel@yesql.se>
To: Michael Paquier <michael@paquier.xyz>
Cc: Heikki Linnakangas <hlinnaka@iki.fi>,
Tom Lane <tgl@sss.pgh.pa.us>,
Postgres hackers <pgsql-hackers@lists.postgresql.org>
Date: 2020-12-03T21:58:39Z
Lists: pgsql-hackers
> On 3 Dec 2020, at 02:47, Michael Paquier <michael@paquier.xyz> wrote: > > On Wed, Dec 02, 2020 at 12:03:49PM +0900, Michael Paquier wrote: >> Thanks. 0001 has been applied and the buildfarm does not complain, so >> it looks like we are good (I'll take care of any issues, like the one >> Fujii-san has just reported). Attached are new patches for 0002, the >> EVP switch. One thing I noticed is that we need to free the backup >> manifest a bit earlier once we begin to use resource owner in >> basebackup.c as there is a specific step that may do a double-free. >> This would not happen when not using OpenSSL or on HEAD. It would be >> easy to separate the resowner and cryptohash portions of the patch >> here, but both are tightly linked, so I'd prefer to keep them >> together. > > Attached is a rebased version to take care of the conflicts introduced > by 91624c2f. This version looks good to me, and builds/tests without any issues. While I didn't try to adapt the libnss patch to the resowner machinery, I don't see any reasons off the cuff why it wouldn't work with the scaffolding provided here. My only question is: +#ifndef FRONTEND + elog(ERROR, "out of memory"); Shouldn't that be an ereport using ERRCODE_OUT_OF_MEMORY? cheers ./daniel
Commits
-
Change SHA2 implementation based on OpenSSL to use EVP digest routines
- 4f48a6fbe2b2 14.0 landed
- e21cbb4b893b 14.0 landed
-
Move SHA2 routines to a new generic API layer for crypto hashes
- 87ae9691d253 14.0 landed
-
Use OpenSSL EVP API for symmetric encryption in pgcrypto.
- 5ff4a67f63fd 10.0 cited