Home > mailing lists

Re: Replace current implementations in crypt() and gen_salt() to OpenSSL - Mailing list pgsql-hackers

From	Daniel Gustafsson
Subject	Re: Replace current implementations in crypt() and gen_salt() to OpenSSL
Date	January 20 10:54:04
Msg-id	99C509A7-901C-46DC-AFE3-ED76DCE6364A@yesql.se Whole thread Raw
In response to	RE: Replace current implementations in crypt() and gen_salt() to OpenSSL ("Koshi Shibagaki (Fujitsu)" <shibagaki.koshi@fujitsu.com>)
List	pgsql-hackers

Tree view

> On 20 Jan 2025, at 01:26, Koshi Shibagaki (Fujitsu) <shibagaki.koshi@fujitsu.com> wrote:
>
> Thank you for moving this discussion forward.
>
>> Maybe we could document that the test should fail if fips is enabled?
>>
>> FWIW I have not tested at all on a fips enabled machine. I will see about doing
>> that...
> I tested all on a fips enabled machine and test failed.
> Since all tests have been made to run even with FIPS enabled in PostgreSQL 17,
> it would be ideal for this test to follow suit.
> Following the modification that made the citext tests compatible with FIPS mode[1],
> how about make multiple expected output?

Agreed, I'll roll that into the next version of the patch.

--
Daniel Gustafsson

pgsql-hackers by date:

From: Mats Kindahl
Date: 20 January, 10:33:12
Subject: Re: Coccinelle for PostgreSQL development [1/N]: coccicheck.py

From: Pavel Stehule
Date: 20 January, 11:26:11
Subject: Re: Re: proposal: schema variables

Re: Replace current implementations in crypt() and gen_salt() to OpenSSL - Mailing list pgsql-hackers

Previous

Next