Added clear_text plugin for pam authentication. To use the clear text plugin

pam-use-cleartext-plugin setting must be enabled in MariaDB server.

Author: 9EOR9

plugins/auth/CMakeLists.txt

@@ -11,3 +11,20 @@ INSTALL(TARGETS
           RUNTIME DESTINATION "${PLUGIN_INSTALL_DIR}"
           LIBRARY DESTINATION "${PLUGIN_INSTALL_DIR}"
           ARCHIVE DESTINATION "${PLUGIN_INSTALL_DIR}")
+
+# Cleartext
+# Dialog plugin
+SET(CTEXT_SOURCES mariadb_cleartext.c)
+IF(WIN32)
+  SET(CTEXT ${CTEXT_SOURCES} ${CMAKE_SOURCE_DIR}/plugins/plugin.def)
+ENDIF()
+ADD_LIBRARY(mysql_clear_password SHARED ${CTEXT_SOURCES})
+SET_TARGET_PROPERTIES(mysql_clear_password PROPERTIES PREFIX "")
+
+INSTALL(TARGETS
+          mysql_clear_password
+          RUNTIME DESTINATION "${PLUGIN_INSTALL_DIR}"
+          LIBRARY DESTINATION "${PLUGIN_INSTALL_DIR}"
+          ARCHIVE DESTINATION "${PLUGIN_INSTALL_DIR}")
+
+# Cleartext

plugins/auth/dialog.c

@@ -15,9 +15,6 @@
    License along with this library; if not see <http://www.gnu.org/licenses>
    or write to the Free Software Foundation, Inc., 
    51 Franklin St., Fifth Floor, Boston, MA 02110, USA
-
-   Part of this code includes code from the PHP project which
-   is freely available from http://www.php.net
 *************************************************************************************/
 #ifndef _WIN32
 #define _GNU_SOURCE 1

plugins/auth/mariadb_cleartext.c

@@ -0,0 +1,65 @@
+/************************************************************************************
+   Copyright (C) 2014 MariaDB Corporation AB
+   
+   This library is free software; you can redistribute it and/or
+   modify it under the terms of the GNU Library General Public
+   License as published by the Free Software Foundation; either
+   version 2 of the License, or (at your option) any later version.
+   
+   This library is distributed in the hope that it will be useful,
+   but WITHOUT ANY WARRANTY; without even the implied warranty of
+   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+   Library General Public License for more details.
+   
+   You should have received a copy of the GNU Library General Public
+   License along with this library; if not see <http://www.gnu.org/licenses>
+   or write to the Free Software Foundation, Inc., 
+   51 Franklin St., Fifth Floor, Boston, MA 02110, USA
+*************************************************************************************/
+#include <my_global.h>
+#include <mysql.h>
+#include <mysql/client_plugin.h>
+#include <string.h>
+
+/* clear text plugin submits the password without opening a dialog.
+   This will be the case if pam-use-cleartext-plugin option is
+   enabled on server side */
+
+/* {{{ auth_send_plain_password() */
+/*
+   sends an unencrypted password to server
+
+   SYNOPSIS
+     auth_send_plain_password()
+     vio             pointer to vio structure
+     mysql           connection handle
+
+   DESCRIPTION
+     sends an unencrypted password (which was specified either in
+     mysql_real_connect or mysql_change_user) to server.
+
+   RETURN
+     CR_OK
+     CR_ERROR        if an error occured
+*/
+static int clear_password_auth_client(MYSQL_PLUGIN_VIO *vio, MYSQL *mysql)
+{
+  if (!vio || !mysql || !mysql->passwd)
+    return CR_ERROR;
+
+  return vio->write_packet(vio, (const unsigned char *) mysql->passwd, strlen(mysql->passwd)) ?
+         CR_ERROR : CR_OK;
+}
+/* }}} */
+
+mysql_declare_client_plugin(AUTHENTICATION)
+  "mysql_clear_password",
+  "Georg Richter",
+  "MariaDB clear password authentication plugin",
+  {0,1,0},
+  NULL,
+  NULL,
+  clear_password_auth_client
+mysql_end_client_plugin;
+
+

win/packaging/CMakeLists.txt

@@ -40,9 +40,12 @@ IF (WITH_SIGNCODE)
     COMMAND signtool sign ${SIGN_OPTIONS} ${CLIENT_DBG_DIR}/mariadbclient.lib)
   EXECUTE_PROCESS(
     COMMAND signtool sign ${SIGN_OPTIONS} ${CMAKE_BINARY_DIR}/plugins/auth/${CMAKE_BUILD_TYPE}/dialog.dll)
+  EXECUTE_PROCESS(
+    COMMAND signtool sign ${SIGN_OPTIONS} ${CMAKE_BINARY_DIR}/plugins/auth/${CMAKE_BUILD_TYPE}/mysql_clear_password.dll)
 ENDIF()
 
 SET(MARIADB_PLUGINS "${MARIADB_PLUGINS} <File Id=\"dialog.dll\" Name=\"dialog.dll\" DiskId=\"1\" Source=\"${CMAKE_BINARY_DIR}/plugins/auth/${CMAKE_BUILD_TYPE}/dialog.dll\"/>\n")
+SET(MARIADB_PLUGINS "${MARIADB_PLUGINS} <File Id=\"mysql-clear-password.dll\" Name=\"mysql-clear-password.dll\" DiskId=\"1\" Source=\"${CMAKE_BINARY_DIR}/plugins/auth/${CMAKE_BUILD_TYPE}/mysql-clear-password.dll\"/>\n")
 
 
 FOREACH(src ${MARIADB_CLIENT_INCLUDES})