pgsql-hackers
❮
Follow-up on OpenSSL "engines" and "providers"
- Jump to comment-1Bear Giles<bgiles@coyotesong.com>Jan 29, 2026, 5:15 PM UTCI've been doing a lot of thought about how my prior and current work could
be useful, not just intellectual exercises that might be useful to some
people, and keep coming back to the idea that my focus should probably be
other server-side extensions and not the SQL user. They won't be excluded -
far from it - but the emphasis should be providing an open source solution
that can handle much of the encryption and authentication required by other
extensions.
Most importantly - giving them a way to avoid knowing their private keys.
They can't expose what they don't have.