Support for ed25519 in mysql::password #1692
Description
Use Case
MariaDB support the ed25519 elliptic curve hashing algorithm for password storage.
Nowadays SHA-1 is no longer considered as secure as it was in 2001. That's why the ed25519 authentication plugin was created.
https://mariadb.com/docs/server/reference/plugins/authentication-plugins/authentication-plugin-ed25519
There is a support for importing an ed25519 hash (#1292), but there is no way to generate this hash directly in the puppet code.
Describe the Solution You Would Like
The function mysql::password should support creating an ed25519 hash.
Describe Alternatives You've Considered
I tried to implement it, but I’m not a good enough ruby developer to succeed…
Additional Context
I’m opening an issue to document the problem, but I understand this might not be so simple to resolve!
In my dabling, I found that it is required to build the ed25519 library as native extension, which require the entire development tools to be installed on the server, and even on the client because the Deferred() function is used. It might be best to ask for inclusion of ed25519 library in the puppet codebase before even trying to implement this?