sslutils

Extensions

sslutils

sslutils : A Postgres extension for managing SSL certificates through SQL

Overview

ID	Extension	Package	Version	Category	License	Language
7410	sslutils	sslutils	`1.4`	SEC	PostgreSQL	C

Attribute	Has Binary	Has Library	Need Load	Has DDL	Relocatable	Trusted
--s-d--	No	Yes	No	Yes	no	no

Relationships
See Also	sslinfo pgsodium pgsmcrypto pgcryptokey pgcrypto pg_tde passwordcheck_cracklib supautils

no pg15,14 on el9, no pg18 on el8

Packages

Type	Repo	Version	PG Major Compatibility	Package Pattern	Dependencies
EXT	PIGSTY	`1.4`	18 17 16 15 14	`sslutils`	-
RPM	PIGSTY	`1.4`	18 17 16 15 14	`sslutils_$v`	-
DEB	PIGSTY	`1.4`	18 17 16 15 14	`postgresql-$v-sslutils`	-

Linux / PG	PG18	PG17	PG16	PG15	PG14
el8.x86_64	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4
el8.aarch64	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4
el9.x86_64	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4
el9.aarch64	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4
el10.x86_64	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4
el10.aarch64	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4
d12.x86_64	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4
d12.aarch64	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4
d13.x86_64	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4
d13.aarch64	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4
u22.x86_64	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4
u22.aarch64	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4
u24.x86_64	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4
u24.aarch64	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4	PIGSTY 1.4

Package	Version	OS	ORG	SIZE	File URL
`sslutils_18`	`1.4`	el8.x86_64	pigsty	24.4 KiB	sslutils_18-1.4-1PIGSTY.el8.x86_64.rpm
`sslutils_18`	`1.4`	el8.aarch64	pigsty	23.5 KiB	sslutils_18-1.4-1PIGSTY.el8.aarch64.rpm
`sslutils_18`	`1.4`	el9.x86_64	pigsty	24.8 KiB	sslutils_18-1.4-2PIGSTY.el9.x86_64.rpm
`sslutils_18`	`1.4`	el9.x86_64	pgdg	24.5 KiB	sslutils_18-1.4-2PGDG.rhel9.x86_64.rpm
`sslutils_18`	`1.4`	el9.aarch64	pigsty	23.8 KiB	sslutils_18-1.4-2PIGSTY.el9.aarch64.rpm
`sslutils_18`	`1.4`	el9.aarch64	pgdg	23.2 KiB	sslutils_18-1.4-2PGDG.rhel9.aarch64.rpm
`sslutils_18`	`1.4`	el10.x86_64	pigsty	25.8 KiB	sslutils_18-1.4-2PIGSTY.el10.x86_64.rpm
`sslutils_18`	`1.4`	el10.x86_64	pgdg	25.6 KiB	sslutils_18-1.4-2PGDG.rhel10.x86_64.rpm
`sslutils_18`	`1.4`	el10.aarch64	pigsty	24.7 KiB	sslutils_18-1.4-2PIGSTY.el10.aarch64.rpm
`sslutils_18`	`1.4`	el10.aarch64	pgdg	24.4 KiB	sslutils_18-1.4-2PGDG.rhel10.aarch64.rpm
`postgresql-18-sslutils`	`1.4`	d12.x86_64	pigsty	37.2 KiB	postgresql-18-sslutils_1.4-2PIGSTY~bookworm_amd64.deb
`postgresql-18-sslutils`	`1.4`	d12.aarch64	pigsty	35.6 KiB	postgresql-18-sslutils_1.4-2PIGSTY~bookworm_arm64.deb
`postgresql-18-sslutils`	`1.4`	d13.x86_64	pigsty	37.8 KiB	postgresql-18-sslutils_1.4-2PIGSTY~trixie_amd64.deb
`postgresql-18-sslutils`	`1.4`	d13.aarch64	pigsty	36.1 KiB	postgresql-18-sslutils_1.4-2PIGSTY~trixie_arm64.deb
`postgresql-18-sslutils`	`1.4`	u22.x86_64	pigsty	40.1 KiB	postgresql-18-sslutils_1.4-2PIGSTY~jammy_amd64.deb
`postgresql-18-sslutils`	`1.4`	u22.aarch64	pigsty	38.9 KiB	postgresql-18-sslutils_1.4-2PIGSTY~jammy_arm64.deb
`postgresql-18-sslutils`	`1.4`	u24.x86_64	pigsty	39.4 KiB	postgresql-18-sslutils_1.4-2PIGSTY~noble_amd64.deb
`postgresql-18-sslutils`	`1.4`	u24.aarch64	pigsty	38.1 KiB	postgresql-18-sslutils_1.4-2PIGSTY~noble_arm64.deb

Package	Version	OS	ORG	SIZE	File URL
`sslutils_17`	`1.4`	el8.x86_64	pigsty	24.5 KiB	sslutils_17-1.4-2PIGSTY.el8.x86_64.rpm
`sslutils_17`	`1.4`	el8.x86_64	pgdg	24.5 KiB	sslutils_17-1.4-1PGDG.rhel8.x86_64.rpm
`sslutils_17`	`1.4`	el8.aarch64	pigsty	23.6 KiB	sslutils_17-1.4-2PIGSTY.el8.aarch64.rpm
`sslutils_17`	`1.4`	el8.aarch64	pgdg	23.4 KiB	sslutils_17-1.4-1PGDG.rhel8.aarch64.rpm
`sslutils_17`	`1.4`	el9.x86_64	pigsty	24.8 KiB	sslutils_17-1.4-2PIGSTY.el9.x86_64.rpm
`sslutils_17`	`1.4`	el9.x86_64	pgdg	24.4 KiB	sslutils_17-1.4-1PGDG.rhel9.x86_64.rpm
`sslutils_17`	`1.4`	el9.aarch64	pigsty	23.8 KiB	sslutils_17-1.4-2PIGSTY.el9.aarch64.rpm
`sslutils_17`	`1.4`	el9.aarch64	pgdg	23.3 KiB	sslutils_17-1.4-1PGDG.rhel9.aarch64.rpm
`sslutils_17`	`1.4`	el10.x86_64	pigsty	25.8 KiB	sslutils_17-1.4-2PIGSTY.el10.x86_64.rpm
`sslutils_17`	`1.4`	el10.x86_64	pgdg	25.6 KiB	sslutils_17-1.4-2PGDG.rhel10.x86_64.rpm
`sslutils_17`	`1.4`	el10.aarch64	pigsty	24.7 KiB	sslutils_17-1.4-2PIGSTY.el10.aarch64.rpm
`sslutils_17`	`1.4`	el10.aarch64	pgdg	24.4 KiB	sslutils_17-1.4-2PGDG.rhel10.aarch64.rpm
`postgresql-17-sslutils`	`1.4`	d12.x86_64	pigsty	36.9 KiB	postgresql-17-sslutils_1.4-2PIGSTY~bookworm_amd64.deb
`postgresql-17-sslutils`	`1.4`	d12.aarch64	pigsty	35.5 KiB	postgresql-17-sslutils_1.4-2PIGSTY~bookworm_arm64.deb
`postgresql-17-sslutils`	`1.4`	d13.x86_64	pigsty	37.5 KiB	postgresql-17-sslutils_1.4-2PIGSTY~trixie_amd64.deb
`postgresql-17-sslutils`	`1.4`	d13.aarch64	pigsty	36.1 KiB	postgresql-17-sslutils_1.4-2PIGSTY~trixie_arm64.deb
`postgresql-17-sslutils`	`1.4`	u22.x86_64	pigsty	42.8 KiB	postgresql-17-sslutils_1.4-2PIGSTY~jammy_amd64.deb
`postgresql-17-sslutils`	`1.4`	u22.aarch64	pigsty	41.7 KiB	postgresql-17-sslutils_1.4-2PIGSTY~jammy_arm64.deb
`postgresql-17-sslutils`	`1.4`	u24.x86_64	pigsty	39.4 KiB	postgresql-17-sslutils_1.4-2PIGSTY~noble_amd64.deb
`postgresql-17-sslutils`	`1.4`	u24.aarch64	pigsty	38.1 KiB	postgresql-17-sslutils_1.4-2PIGSTY~noble_arm64.deb

Package	Version	OS	ORG	SIZE	File URL
`sslutils_16`	`1.4`	el8.x86_64	pigsty	24.5 KiB	sslutils_16-1.4-2PIGSTY.el8.x86_64.rpm
`sslutils_16`	`1.4`	el8.x86_64	pgdg	24.5 KiB	sslutils_16-1.4-1PGDG.rhel8.x86_64.rpm
`sslutils_16`	`1.4`	el8.aarch64	pigsty	23.6 KiB	sslutils_16-1.4-2PIGSTY.el8.aarch64.rpm
`sslutils_16`	`1.4`	el8.aarch64	pgdg	23.4 KiB	sslutils_16-1.4-1PGDG.rhel8.aarch64.rpm
`sslutils_16`	`1.4`	el9.x86_64	pigsty	24.8 KiB	sslutils_16-1.4-2PIGSTY.el9.x86_64.rpm
`sslutils_16`	`1.4`	el9.x86_64	pgdg	24.4 KiB	sslutils_16-1.4-1PGDG.rhel9.x86_64.rpm
`sslutils_16`	`1.4`	el9.aarch64	pigsty	23.8 KiB	sslutils_16-1.4-2PIGSTY.el9.aarch64.rpm
`sslutils_16`	`1.4`	el9.aarch64	pgdg	23.3 KiB	sslutils_16-1.4-1PGDG.rhel9.aarch64.rpm
`sslutils_16`	`1.4`	el10.x86_64	pigsty	25.8 KiB	sslutils_16-1.4-2PIGSTY.el10.x86_64.rpm
`sslutils_16`	`1.4`	el10.x86_64	pgdg	25.7 KiB	sslutils_16-1.4-2PGDG.rhel10.x86_64.rpm
`sslutils_16`	`1.4`	el10.aarch64	pigsty	24.7 KiB	sslutils_16-1.4-2PIGSTY.el10.aarch64.rpm
`sslutils_16`	`1.4`	el10.aarch64	pgdg	24.4 KiB	sslutils_16-1.4-2PGDG.rhel10.aarch64.rpm
`postgresql-16-sslutils`	`1.4`	d12.x86_64	pigsty	37.1 KiB	postgresql-16-sslutils_1.4-2PIGSTY~bookworm_amd64.deb
`postgresql-16-sslutils`	`1.4`	d12.aarch64	pigsty	35.5 KiB	postgresql-16-sslutils_1.4-2PIGSTY~bookworm_arm64.deb
`postgresql-16-sslutils`	`1.4`	d13.x86_64	pigsty	37.5 KiB	postgresql-16-sslutils_1.4-2PIGSTY~trixie_amd64.deb
`postgresql-16-sslutils`	`1.4`	d13.aarch64	pigsty	36.1 KiB	postgresql-16-sslutils_1.4-2PIGSTY~trixie_arm64.deb
`postgresql-16-sslutils`	`1.4`	u22.x86_64	pigsty	42.8 KiB	postgresql-16-sslutils_1.4-2PIGSTY~jammy_amd64.deb
`postgresql-16-sslutils`	`1.4`	u22.aarch64	pigsty	41.7 KiB	postgresql-16-sslutils_1.4-2PIGSTY~jammy_arm64.deb
`postgresql-16-sslutils`	`1.4`	u24.x86_64	pigsty	39.4 KiB	postgresql-16-sslutils_1.4-2PIGSTY~noble_amd64.deb
`postgresql-16-sslutils`	`1.4`	u24.aarch64	pigsty	38.1 KiB	postgresql-16-sslutils_1.4-2PIGSTY~noble_arm64.deb

Package	Version	OS	ORG	SIZE	File URL
`sslutils_15`	`1.4`	el8.x86_64	pigsty	24.6 KiB	sslutils_15-1.4-2PIGSTY.el8.x86_64.rpm
`sslutils_15`	`1.3`	el8.x86_64	pgdg	49.4 KiB	sslutils_15-1.3-4.rhel8.x86_64.rpm
`sslutils_15`	`1.4`	el8.aarch64	pigsty	23.6 KiB	sslutils_15-1.4-2PIGSTY.el8.aarch64.rpm
`sslutils_15`	`1.4`	el9.x86_64	pigsty	24.8 KiB	sslutils_15-1.4-2PIGSTY.el9.x86_64.rpm
`sslutils_15`	`1.4`	el9.aarch64	pigsty	23.9 KiB	sslutils_15-1.4-2PIGSTY.el9.aarch64.rpm
`sslutils_15`	`1.4`	el10.x86_64	pigsty	25.8 KiB	sslutils_15-1.4-2PIGSTY.el10.x86_64.rpm
`sslutils_15`	`1.4`	el10.x86_64	pgdg	25.7 KiB	sslutils_15-1.4-2PGDG.rhel10.x86_64.rpm
`sslutils_15`	`1.4`	el10.aarch64	pigsty	24.8 KiB	sslutils_15-1.4-2PIGSTY.el10.aarch64.rpm
`sslutils_15`	`1.4`	el10.aarch64	pgdg	24.5 KiB	sslutils_15-1.4-2PGDG.rhel10.aarch64.rpm
`postgresql-15-sslutils`	`1.4`	d12.x86_64	pigsty	37.0 KiB	postgresql-15-sslutils_1.4-2PIGSTY~bookworm_amd64.deb
`postgresql-15-sslutils`	`1.4`	d12.aarch64	pigsty	35.6 KiB	postgresql-15-sslutils_1.4-2PIGSTY~bookworm_arm64.deb
`postgresql-15-sslutils`	`1.4`	d13.x86_64	pigsty	37.5 KiB	postgresql-15-sslutils_1.4-2PIGSTY~trixie_amd64.deb
`postgresql-15-sslutils`	`1.4`	d13.aarch64	pigsty	36.1 KiB	postgresql-15-sslutils_1.4-2PIGSTY~trixie_arm64.deb
`postgresql-15-sslutils`	`1.4`	u22.x86_64	pigsty	42.9 KiB	postgresql-15-sslutils_1.4-2PIGSTY~jammy_amd64.deb
`postgresql-15-sslutils`	`1.4`	u22.aarch64	pigsty	41.7 KiB	postgresql-15-sslutils_1.4-2PIGSTY~jammy_arm64.deb
`postgresql-15-sslutils`	`1.4`	u24.x86_64	pigsty	39.5 KiB	postgresql-15-sslutils_1.4-2PIGSTY~noble_amd64.deb
`postgresql-15-sslutils`	`1.4`	u24.aarch64	pigsty	38.2 KiB	postgresql-15-sslutils_1.4-2PIGSTY~noble_arm64.deb

Package	Version	OS	ORG	SIZE	File URL
`sslutils_14`	`1.4`	el8.x86_64	pigsty	24.5 KiB	sslutils_14-1.4-2PIGSTY.el8.x86_64.rpm
`sslutils_14`	`1.3`	el8.x86_64	pgdg	48.9 KiB	sslutils_14-1.3-4.rhel8.x86_64.rpm
`sslutils_14`	`1.4`	el8.aarch64	pigsty	23.6 KiB	sslutils_14-1.4-2PIGSTY.el8.aarch64.rpm
`sslutils_14`	`1.4`	el9.x86_64	pigsty	24.8 KiB	sslutils_14-1.4-2PIGSTY.el9.x86_64.rpm
`sslutils_14`	`1.4`	el9.aarch64	pigsty	23.8 KiB	sslutils_14-1.4-2PIGSTY.el9.aarch64.rpm
`sslutils_14`	`1.4`	el10.x86_64	pigsty	25.8 KiB	sslutils_14-1.4-2PIGSTY.el10.x86_64.rpm
`sslutils_14`	`1.4`	el10.x86_64	pgdg	25.8 KiB	sslutils_14-1.4-2PGDG.rhel10.x86_64.rpm
`sslutils_14`	`1.4`	el10.aarch64	pigsty	24.8 KiB	sslutils_14-1.4-2PIGSTY.el10.aarch64.rpm
`sslutils_14`	`1.4`	el10.aarch64	pgdg	24.5 KiB	sslutils_14-1.4-2PGDG.rhel10.aarch64.rpm
`postgresql-14-sslutils`	`1.4`	d12.x86_64	pigsty	37.0 KiB	postgresql-14-sslutils_1.4-2PIGSTY~bookworm_amd64.deb
`postgresql-14-sslutils`	`1.4`	d12.aarch64	pigsty	35.5 KiB	postgresql-14-sslutils_1.4-2PIGSTY~bookworm_arm64.deb
`postgresql-14-sslutils`	`1.4`	d13.x86_64	pigsty	37.5 KiB	postgresql-14-sslutils_1.4-2PIGSTY~trixie_amd64.deb
`postgresql-14-sslutils`	`1.4`	d13.aarch64	pigsty	36.0 KiB	postgresql-14-sslutils_1.4-2PIGSTY~trixie_arm64.deb
`postgresql-14-sslutils`	`1.4`	u22.x86_64	pigsty	42.8 KiB	postgresql-14-sslutils_1.4-2PIGSTY~jammy_amd64.deb
`postgresql-14-sslutils`	`1.4`	u22.aarch64	pigsty	41.6 KiB	postgresql-14-sslutils_1.4-2PIGSTY~jammy_arm64.deb
`postgresql-14-sslutils`	`1.4`	u24.x86_64	pigsty	39.5 KiB	postgresql-14-sslutils_1.4-2PIGSTY~noble_amd64.deb
`postgresql-14-sslutils`	`1.4`	u24.aarch64	pigsty	38.2 KiB	postgresql-14-sslutils_1.4-2PIGSTY~noble_arm64.deb

Source

Repository

github.com/EnterpriseDB/sslutils

Source Tarball

sslutils-1.4.tar.gz

pig build pkg sslutils;		# build rpm/deb

Install

Make sure PGDG and PIGSTY repo available:

pig repo add pgsql -u   # add both repo and update cache

Install this extension with pig:

pig install sslutils;		# install via package name, for the active PG version

pig install sslutils -v 18;   # install for PG 18
pig install sslutils -v 17;   # install for PG 17
pig install sslutils -v 16;   # install for PG 16
pig install sslutils -v 15;   # install for PG 15
pig install sslutils -v 14;   # install for PG 14

Create this extension with:

CREATE EXTENSION sslutils;

Usage

sslutils: Manage SSL certificates through SQL

sslutils is a PostgreSQL extension for managing SSL certificates through SQL commands. It provides functions to generate, inspect, and manage SSL/TLS certificates directly within the database.

CREATE EXTENSION sslutils;

Functions

The extension provides SQL functions for SSL certificate management:

Function	Description
`openssl_rsa_generate_key(bits int)`	Generate an RSA private key
`openssl_rsa_key_to_csr(key text, cn text, ...)`	Generate a Certificate Signing Request
`openssl_csr_to_crt(csr text, ca_key text, ca_crt text)`	Sign a CSR to produce a certificate
`openssl_rsa_generate_crl(ca_key text, ca_crt text)`	Generate a Certificate Revocation List
`ssl_is_init_fn()`	Check if SSL is initialized
`ssl_get_cipher_fn()`	Get current SSL cipher
`ssl_get_version_fn()`	Get current SSL version

Typical Workflow

-- Generate a CA private key
SELECT openssl_rsa_generate_key(2048);

-- Create a self-signed CA certificate
-- Generate server key and CSR
-- Sign the CSR with the CA

This extension is useful for automating SSL certificate provisioning in managed PostgreSQL environments.

Last updated on 2026-03-24

pgextwlist noset