sslutils

使用SQL管理SSL证书

概览

扩展包名	版本	分类	许可证	语言
`sslutils`	`1.4`	SEC	PostgreSQL	C

ID	扩展名	Bin	Lib	Load	Create	Trust	Reloc	模式
7410	`sslutils`	否	是	否	是	否	否	-

相关扩展	`sslinfo` `pgsodium` `pgsmcrypto` `pgcryptokey` `pgcrypto` `pg_tde` `passwordcheck_cracklib` `supautils`

no pg15,14 on el9, no pg18 on el8

版本

类型	仓库	版本	PG 大版本	包名	依赖
EXT	PIGSTY	`1.4`	1817161514	`sslutils`	-
RPM	PIGSTY	`1.4`	1817161514	`sslutils_$v`	-
DEB	PIGSTY	`1.4`	1817161514	`postgresql-$v-sslutils`	-

OS / PG	PG18	PG17	PG16	PG15	PG14
el8.x86_64	PIGSTY 1.4 el8.x86_64.pg18 : sslutils_18 sslutils_18-1.4-1PIGSTY.el8.x86_64.rpm PIGSTY · 1.4 · 24.4KiB	PIGSTY 1.4 el8.x86_64.pg17 : sslutils_17 sslutils_17-1.4-2PIGSTY.el8.x86_64.rpm PIGSTY · 1.4 · 24.5KiB sslutils_17-1.4-1PGDG.rhel8.x86_64.rpm PGDG · 1.4 · 24.5KiB	PIGSTY 1.4 el8.x86_64.pg16 : sslutils_16 sslutils_16-1.4-2PIGSTY.el8.x86_64.rpm PIGSTY · 1.4 · 24.5KiB sslutils_16-1.4-1PGDG.rhel8.x86_64.rpm PGDG · 1.4 · 24.5KiB	PIGSTY 1.4 el8.x86_64.pg15 : sslutils_15 sslutils_15-1.4-2PIGSTY.el8.x86_64.rpm PIGSTY · 1.4 · 24.6KiB sslutils_15-1.3-4.rhel8.x86_64.rpm PGDG · 1.3 · 49.4KiB	PIGSTY 1.4 el8.x86_64.pg14 : sslutils_14 sslutils_14-1.4-2PIGSTY.el8.x86_64.rpm PIGSTY · 1.4 · 24.5KiB sslutils_14-1.3-4.rhel8.x86_64.rpm PGDG · 1.3 · 48.9KiB
el8.aarch64	PIGSTY 1.4 el8.aarch64.pg18 : sslutils_18 sslutils_18-1.4-1PIGSTY.el8.aarch64.rpm PIGSTY · 1.4 · 23.5KiB	PIGSTY 1.4 el8.aarch64.pg17 : sslutils_17 sslutils_17-1.4-2PIGSTY.el8.aarch64.rpm PIGSTY · 1.4 · 23.6KiB sslutils_17-1.4-1PGDG.rhel8.aarch64.rpm PGDG · 1.4 · 23.4KiB	PIGSTY 1.4 el8.aarch64.pg16 : sslutils_16 sslutils_16-1.4-2PIGSTY.el8.aarch64.rpm PIGSTY · 1.4 · 23.6KiB sslutils_16-1.4-1PGDG.rhel8.aarch64.rpm PGDG · 1.4 · 23.4KiB	PIGSTY 1.4 el8.aarch64.pg15 : sslutils_15 sslutils_15-1.4-2PIGSTY.el8.aarch64.rpm PIGSTY · 1.4 · 23.6KiB	PIGSTY 1.4 el8.aarch64.pg14 : sslutils_14 sslutils_14-1.4-2PIGSTY.el8.aarch64.rpm PIGSTY · 1.4 · 23.6KiB
el9.x86_64	PIGSTY 1.4 el9.x86_64.pg18 : sslutils_18 sslutils_18-1.4-2PIGSTY.el9.x86_64.rpm PIGSTY · 1.4 · 24.8KiB sslutils_18-1.4-2PGDG.rhel9.x86_64.rpm PGDG · 1.4 · 24.5KiB	PIGSTY 1.4 el9.x86_64.pg17 : sslutils_17 sslutils_17-1.4-2PIGSTY.el9.x86_64.rpm PIGSTY · 1.4 · 24.8KiB sslutils_17-1.4-1PGDG.rhel9.x86_64.rpm PGDG · 1.4 · 24.4KiB	PIGSTY 1.4 el9.x86_64.pg16 : sslutils_16 sslutils_16-1.4-2PIGSTY.el9.x86_64.rpm PIGSTY · 1.4 · 24.8KiB sslutils_16-1.4-1PGDG.rhel9.x86_64.rpm PGDG · 1.4 · 24.4KiB	PIGSTY 1.4 el9.x86_64.pg15 : sslutils_15 sslutils_15-1.4-2PIGSTY.el9.x86_64.rpm PIGSTY · 1.4 · 24.8KiB	PIGSTY 1.4 el9.x86_64.pg14 : sslutils_14 sslutils_14-1.4-2PIGSTY.el9.x86_64.rpm PIGSTY · 1.4 · 24.8KiB
el9.aarch64	PIGSTY 1.4 el9.aarch64.pg18 : sslutils_18 sslutils_18-1.4-2PIGSTY.el9.aarch64.rpm PIGSTY · 1.4 · 23.8KiB sslutils_18-1.4-2PGDG.rhel9.aarch64.rpm PGDG · 1.4 · 23.2KiB	PIGSTY 1.4 el9.aarch64.pg17 : sslutils_17 sslutils_17-1.4-2PIGSTY.el9.aarch64.rpm PIGSTY · 1.4 · 23.8KiB sslutils_17-1.4-1PGDG.rhel9.aarch64.rpm PGDG · 1.4 · 23.3KiB	PIGSTY 1.4 el9.aarch64.pg16 : sslutils_16 sslutils_16-1.4-2PIGSTY.el9.aarch64.rpm PIGSTY · 1.4 · 23.8KiB sslutils_16-1.4-1PGDG.rhel9.aarch64.rpm PGDG · 1.4 · 23.3KiB	PIGSTY 1.4 el9.aarch64.pg15 : sslutils_15 sslutils_15-1.4-2PIGSTY.el9.aarch64.rpm PIGSTY · 1.4 · 23.9KiB	PIGSTY 1.4 el9.aarch64.pg14 : sslutils_14 sslutils_14-1.4-2PIGSTY.el9.aarch64.rpm PIGSTY · 1.4 · 23.8KiB
el10.x86_64	PIGSTY 1.4 el10.x86_64.pg18 : sslutils_18 sslutils_18-1.4-2PIGSTY.el10.x86_64.rpm PIGSTY · 1.4 · 25.8KiB sslutils_18-1.4-2PGDG.rhel10.x86_64.rpm PGDG · 1.4 · 25.6KiB	PIGSTY 1.4 el10.x86_64.pg17 : sslutils_17 sslutils_17-1.4-2PIGSTY.el10.x86_64.rpm PIGSTY · 1.4 · 25.8KiB sslutils_17-1.4-2PGDG.rhel10.x86_64.rpm PGDG · 1.4 · 25.6KiB	PIGSTY 1.4 el10.x86_64.pg16 : sslutils_16 sslutils_16-1.4-2PIGSTY.el10.x86_64.rpm PIGSTY · 1.4 · 25.8KiB sslutils_16-1.4-2PGDG.rhel10.x86_64.rpm PGDG · 1.4 · 25.7KiB	PIGSTY 1.4 el10.x86_64.pg15 : sslutils_15 sslutils_15-1.4-2PIGSTY.el10.x86_64.rpm PIGSTY · 1.4 · 25.8KiB sslutils_15-1.4-2PGDG.rhel10.x86_64.rpm PGDG · 1.4 · 25.7KiB	PIGSTY 1.4 el10.x86_64.pg14 : sslutils_14 sslutils_14-1.4-2PIGSTY.el10.x86_64.rpm PIGSTY · 1.4 · 25.8KiB sslutils_14-1.4-2PGDG.rhel10.x86_64.rpm PGDG · 1.4 · 25.8KiB
el10.aarch64	PIGSTY 1.4 el10.aarch64.pg18 : sslutils_18 sslutils_18-1.4-2PIGSTY.el10.aarch64.rpm PIGSTY · 1.4 · 24.7KiB sslutils_18-1.4-2PGDG.rhel10.aarch64.rpm PGDG · 1.4 · 24.4KiB	PIGSTY 1.4 el10.aarch64.pg17 : sslutils_17 sslutils_17-1.4-2PIGSTY.el10.aarch64.rpm PIGSTY · 1.4 · 24.7KiB sslutils_17-1.4-2PGDG.rhel10.aarch64.rpm PGDG · 1.4 · 24.4KiB	PIGSTY 1.4 el10.aarch64.pg16 : sslutils_16 sslutils_16-1.4-2PIGSTY.el10.aarch64.rpm PIGSTY · 1.4 · 24.7KiB sslutils_16-1.4-2PGDG.rhel10.aarch64.rpm PGDG · 1.4 · 24.4KiB	PIGSTY 1.4 el10.aarch64.pg15 : sslutils_15 sslutils_15-1.4-2PIGSTY.el10.aarch64.rpm PIGSTY · 1.4 · 24.8KiB sslutils_15-1.4-2PGDG.rhel10.aarch64.rpm PGDG · 1.4 · 24.5KiB	PIGSTY 1.4 el10.aarch64.pg14 : sslutils_14 sslutils_14-1.4-2PIGSTY.el10.aarch64.rpm PIGSTY · 1.4 · 24.8KiB sslutils_14-1.4-2PGDG.rhel10.aarch64.rpm PGDG · 1.4 · 24.5KiB
d12.x86_64	PIGSTY 1.4 d12.x86_64.pg18 : postgresql-18-sslutils postgresql-18-sslutils_1.4-2PIGSTY~bookworm_amd64.deb PIGSTY · 1.4 · 37.2KiB	PIGSTY 1.4 d12.x86_64.pg17 : postgresql-17-sslutils postgresql-17-sslutils_1.4-2PIGSTY~bookworm_amd64.deb PIGSTY · 1.4 · 36.9KiB	PIGSTY 1.4 d12.x86_64.pg16 : postgresql-16-sslutils postgresql-16-sslutils_1.4-2PIGSTY~bookworm_amd64.deb PIGSTY · 1.4 · 37.1KiB	PIGSTY 1.4 d12.x86_64.pg15 : postgresql-15-sslutils postgresql-15-sslutils_1.4-2PIGSTY~bookworm_amd64.deb PIGSTY · 1.4 · 37.0KiB	PIGSTY 1.4 d12.x86_64.pg14 : postgresql-14-sslutils postgresql-14-sslutils_1.4-2PIGSTY~bookworm_amd64.deb PIGSTY · 1.4 · 37.0KiB
d12.aarch64	PIGSTY 1.4 d12.aarch64.pg18 : postgresql-18-sslutils postgresql-18-sslutils_1.4-2PIGSTY~bookworm_arm64.deb PIGSTY · 1.4 · 35.6KiB	PIGSTY 1.4 d12.aarch64.pg17 : postgresql-17-sslutils postgresql-17-sslutils_1.4-2PIGSTY~bookworm_arm64.deb PIGSTY · 1.4 · 35.5KiB	PIGSTY 1.4 d12.aarch64.pg16 : postgresql-16-sslutils postgresql-16-sslutils_1.4-2PIGSTY~bookworm_arm64.deb PIGSTY · 1.4 · 35.5KiB	PIGSTY 1.4 d12.aarch64.pg15 : postgresql-15-sslutils postgresql-15-sslutils_1.4-2PIGSTY~bookworm_arm64.deb PIGSTY · 1.4 · 35.6KiB	PIGSTY 1.4 d12.aarch64.pg14 : postgresql-14-sslutils postgresql-14-sslutils_1.4-2PIGSTY~bookworm_arm64.deb PIGSTY · 1.4 · 35.5KiB
d13.x86_64	PIGSTY 1.4 d13.x86_64.pg18 : postgresql-18-sslutils postgresql-18-sslutils_1.4-2PIGSTY~trixie_amd64.deb PIGSTY · 1.4 · 37.8KiB	PIGSTY 1.4 d13.x86_64.pg17 : postgresql-17-sslutils postgresql-17-sslutils_1.4-2PIGSTY~trixie_amd64.deb PIGSTY · 1.4 · 37.5KiB	PIGSTY 1.4 d13.x86_64.pg16 : postgresql-16-sslutils postgresql-16-sslutils_1.4-2PIGSTY~trixie_amd64.deb PIGSTY · 1.4 · 37.5KiB	PIGSTY 1.4 d13.x86_64.pg15 : postgresql-15-sslutils postgresql-15-sslutils_1.4-2PIGSTY~trixie_amd64.deb PIGSTY · 1.4 · 37.5KiB	PIGSTY 1.4 d13.x86_64.pg14 : postgresql-14-sslutils postgresql-14-sslutils_1.4-2PIGSTY~trixie_amd64.deb PIGSTY · 1.4 · 37.5KiB
d13.aarch64	PIGSTY 1.4 d13.aarch64.pg18 : postgresql-18-sslutils postgresql-18-sslutils_1.4-2PIGSTY~trixie_arm64.deb PIGSTY · 1.4 · 36.1KiB	PIGSTY 1.4 d13.aarch64.pg17 : postgresql-17-sslutils postgresql-17-sslutils_1.4-2PIGSTY~trixie_arm64.deb PIGSTY · 1.4 · 36.1KiB	PIGSTY 1.4 d13.aarch64.pg16 : postgresql-16-sslutils postgresql-16-sslutils_1.4-2PIGSTY~trixie_arm64.deb PIGSTY · 1.4 · 36.1KiB	PIGSTY 1.4 d13.aarch64.pg15 : postgresql-15-sslutils postgresql-15-sslutils_1.4-2PIGSTY~trixie_arm64.deb PIGSTY · 1.4 · 36.1KiB	PIGSTY 1.4 d13.aarch64.pg14 : postgresql-14-sslutils postgresql-14-sslutils_1.4-2PIGSTY~trixie_arm64.deb PIGSTY · 1.4 · 36.0KiB
u22.x86_64	PIGSTY 1.4 u22.x86_64.pg18 : postgresql-18-sslutils postgresql-18-sslutils_1.4-2PIGSTY~jammy_amd64.deb PIGSTY · 1.4 · 40.1KiB	PIGSTY 1.4 u22.x86_64.pg17 : postgresql-17-sslutils postgresql-17-sslutils_1.4-2PIGSTY~jammy_amd64.deb PIGSTY · 1.4 · 42.8KiB	PIGSTY 1.4 u22.x86_64.pg16 : postgresql-16-sslutils postgresql-16-sslutils_1.4-2PIGSTY~jammy_amd64.deb PIGSTY · 1.4 · 42.8KiB	PIGSTY 1.4 u22.x86_64.pg15 : postgresql-15-sslutils postgresql-15-sslutils_1.4-2PIGSTY~jammy_amd64.deb PIGSTY · 1.4 · 42.9KiB	PIGSTY 1.4 u22.x86_64.pg14 : postgresql-14-sslutils postgresql-14-sslutils_1.4-2PIGSTY~jammy_amd64.deb PIGSTY · 1.4 · 42.8KiB
u22.aarch64	PIGSTY 1.4 u22.aarch64.pg18 : postgresql-18-sslutils postgresql-18-sslutils_1.4-2PIGSTY~jammy_arm64.deb PIGSTY · 1.4 · 38.9KiB	PIGSTY 1.4 u22.aarch64.pg17 : postgresql-17-sslutils postgresql-17-sslutils_1.4-2PIGSTY~jammy_arm64.deb PIGSTY · 1.4 · 41.7KiB	PIGSTY 1.4 u22.aarch64.pg16 : postgresql-16-sslutils postgresql-16-sslutils_1.4-2PIGSTY~jammy_arm64.deb PIGSTY · 1.4 · 41.7KiB	PIGSTY 1.4 u22.aarch64.pg15 : postgresql-15-sslutils postgresql-15-sslutils_1.4-2PIGSTY~jammy_arm64.deb PIGSTY · 1.4 · 41.7KiB	PIGSTY 1.4 u22.aarch64.pg14 : postgresql-14-sslutils postgresql-14-sslutils_1.4-2PIGSTY~jammy_arm64.deb PIGSTY · 1.4 · 41.6KiB
u24.x86_64	PIGSTY 1.4 u24.x86_64.pg18 : postgresql-18-sslutils postgresql-18-sslutils_1.4-2PIGSTY~noble_amd64.deb PIGSTY · 1.4 · 39.4KiB	PIGSTY 1.4 u24.x86_64.pg17 : postgresql-17-sslutils postgresql-17-sslutils_1.4-2PIGSTY~noble_amd64.deb PIGSTY · 1.4 · 39.4KiB	PIGSTY 1.4 u24.x86_64.pg16 : postgresql-16-sslutils postgresql-16-sslutils_1.4-2PIGSTY~noble_amd64.deb PIGSTY · 1.4 · 39.4KiB	PIGSTY 1.4 u24.x86_64.pg15 : postgresql-15-sslutils postgresql-15-sslutils_1.4-2PIGSTY~noble_amd64.deb PIGSTY · 1.4 · 39.5KiB	PIGSTY 1.4 u24.x86_64.pg14 : postgresql-14-sslutils postgresql-14-sslutils_1.4-2PIGSTY~noble_amd64.deb PIGSTY · 1.4 · 39.5KiB
u24.aarch64	PIGSTY 1.4 u24.aarch64.pg18 : postgresql-18-sslutils postgresql-18-sslutils_1.4-2PIGSTY~noble_arm64.deb PIGSTY · 1.4 · 38.1KiB	PIGSTY 1.4 u24.aarch64.pg17 : postgresql-17-sslutils postgresql-17-sslutils_1.4-2PIGSTY~noble_arm64.deb PIGSTY · 1.4 · 38.1KiB	PIGSTY 1.4 u24.aarch64.pg16 : postgresql-16-sslutils postgresql-16-sslutils_1.4-2PIGSTY~noble_arm64.deb PIGSTY · 1.4 · 38.1KiB	PIGSTY 1.4 u24.aarch64.pg15 : postgresql-15-sslutils postgresql-15-sslutils_1.4-2PIGSTY~noble_arm64.deb PIGSTY · 1.4 · 38.2KiB	PIGSTY 1.4 u24.aarch64.pg14 : postgresql-14-sslutils postgresql-14-sslutils_1.4-2PIGSTY~noble_arm64.deb PIGSTY · 1.4 · 38.2KiB

构建

您可以使用 pig build 命令构建 sslutils 扩展的 RPM / DEB 包：

pig build pkg sslutils         # 构建 RPM / DEB 包

安装

您可以直接安装 sslutils 扩展包的预置二进制包，首先确保 PGDG 和 PIGSTY 仓库已经添加并启用：

pig repo add pgsql -u          # 添加仓库并更新缓存

使用 pig 或者是 apt/yum/dnf 安装扩展：

pig install sslutils;          # 当前活跃 PG 版本安装

pig ext install -y sslutils -v 18  # PG 18
pig ext install -y sslutils -v 17  # PG 17
pig ext install -y sslutils -v 16  # PG 16
pig ext install -y sslutils -v 15  # PG 15
pig ext install -y sslutils -v 14  # PG 14

dnf install -y sslutils_18       # PG 18
dnf install -y sslutils_17       # PG 17
dnf install -y sslutils_16       # PG 16
dnf install -y sslutils_15       # PG 15
dnf install -y sslutils_14       # PG 14

apt install -y postgresql-18-sslutils   # PG 18
apt install -y postgresql-17-sslutils   # PG 17
apt install -y postgresql-16-sslutils   # PG 16
apt install -y postgresql-15-sslutils   # PG 15
apt install -y postgresql-14-sslutils   # PG 14

创建扩展：

CREATE EXTENSION sslutils;

用法

sslutils: 通过 SQL 管理 SSL 证书

sslutils 是一个通过 SQL 命令管理 SSL 证书的 PostgreSQL 扩展。它提供直接在数据库内生成、检查和管理 SSL/TLS 证书的函数。

CREATE EXTENSION sslutils;

函数

该扩展提供以下 SSL 证书管理的 SQL 函数：

函数	描述
`openssl_rsa_generate_key(bits int)`	生成 RSA 私钥
`openssl_rsa_key_to_csr(key text, cn text, ...)`	生成证书签名请求
`openssl_csr_to_crt(csr text, ca_key text, ca_crt text)`	签署 CSR 生成证书
`openssl_rsa_generate_crl(ca_key text, ca_crt text)`	生成证书吊销列表
`ssl_is_init_fn()`	检查 SSL 是否已初始化
`ssl_get_cipher_fn()`	获取当前 SSL 密码套件
`ssl_get_version_fn()`	获取当前 SSL 版本

典型工作流程

-- 生成 CA 私钥
SELECT openssl_rsa_generate_key(2048);

-- 创建自签名 CA 证书
-- 生成服务器密钥和 CSR
-- 使用 CA 签署 CSR

该扩展适用于在托管 PostgreSQL 环境中自动化 SSL 证书配置。

意见反馈

这个页面对您有帮助吗？

感谢反馈！请告诉我们如何改进。

抱歉给您带来不便。请告诉我们如何改进。

最后修改 2026-03-14: update extension metadata (953cbd0)