Quick Links

Re: Password identifiers, protocol aging and SCRAM protocol

From:	Heikki Linnakangas <hlinnaka(at)iki(dot)fi>
To:	Michael Paquier <michael(dot)paquier(at)gmail(dot)com>
Cc:	David Steele <david(at)pgmasters(dot)net>, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Robert Haas <robertmhaas(at)gmail(dot)com>, David Fetter <david(at)fetter(dot)org>, Alvaro Herrera <alvherre(at)2ndquadrant(dot)com>, Magnus Hagander <magnus(at)hagander(dot)net>, Peter Eisentraut <peter(dot)eisentraut(at)2ndquadrant(dot)com>, Julian Markwort <julian(dot)markwort(at)uni-muenster(dot)de>, Stephen Frost <sfrost(at)snowman(dot)net>, PostgreSQL mailing lists <pgsql-hackers(at)postgresql(dot)org>, Valery Popov <v(dot)popov(at)postgrespro(dot)ru>
Subject:	Re: Password identifiers, protocol aging and SCRAM protocol
Date:	2016-09-28 10:03:31
Message-ID:	f28a48ef-cc89-3de6-131e-3d32e7267d4c@iki.fi
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

On 09/28/2016 12:53 PM, Heikki Linnakangas wrote:
> On 09/26/2016 09:02 AM, Michael Paquier wrote:
>>> * [PATCH 2/8] Move encoding routines to src/common/
>>>>
>>>> I wonder if it is confusing to have two of encode.h/encode.c. Perhaps
>>>> they should be renamed to make them distinct?
>> Yes it may be a good idea to rename that, like encode_utils.[c|h] for
>> the new files.
>
> Looking at these encoding functions, the SCRAM protocol actually uses
> base64 for everything.

Oh, one more thing. The SCRAM spec says:

> The use of base64 in SCRAM is restricted to the canonical form with
> no whitespace.

Our b64_encode routine does use whitespace, so we can't use it as is for
SCRAM. As the patch stands, we might never output anything long enough
to create linefeeds, but let's be tidy. The base64 implementation is
about 100 lines of code, so perhaps we should just leave
src/backend/utils/encode.c alone, and make a new copy of the base64
routines in src/common.

- Heikki

In response to

Re: Password identifiers, protocol aging and SCRAM protocol at 2016-09-28 09:53:52 from Heikki Linnakangas

Responses

Re: Password identifiers, protocol aging and SCRAM protocol at 2016-09-28 11:55:49 from Michael Paquier

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Heikki Linnakangas	2016-09-28 10:03:36	Re: Password identifiers, protocol aging and SCRAM protocol
Previous Message	Heikki Linnakangas	2016-09-28 09:53:52	Re: Password identifiers, protocol aging and SCRAM protocol