-
Notifications
You must be signed in to change notification settings - Fork 4k
/
Copy pathqa_auth_server.cc
119 lines (100 loc) · 3.89 KB
/
qa_auth_server.cc
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
/* Copyright (c) 2010, 2025, Oracle and/or its affiliates.
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License, version 2.0,
as published by the Free Software Foundation.
This program is designed to work with certain software (including
but not limited to OpenSSL) that is licensed under separate terms,
as designated in a particular file or component or in included license
documentation. The authors of MySQL hereby grant you an additional
permission to link the program and your derivative works with the
separately licensed software that they have either included with
the program or referenced in the documentation.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License, version 2.0, for more details.
You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA */
#include <mysql/client_plugin.h>
#include <mysql/plugin_auth.h>
#include <cstdio>
#include <cstdlib>
#include <cstring>
#include "my_compiler.h"
/**
first byte of the question string is the question "type".
It can be a "ordinary" or a "password" question.
The last bit set marks a last question in the authentication exchange.
*/
#define ORDINARY_QUESTION "\2"
#define LAST_QUESTION "\3"
#define LAST_PASSWORD "\4"
#define PASSWORD_QUESTION "\5"
/********************* SERVER SIDE ****************************************/
static int qa_auth_interface(MYSQL_PLUGIN_VIO *vio,
MYSQL_SERVER_AUTH_INFO *info) {
unsigned char *pkt;
int pkt_len, err = CR_OK;
/* send a password question */
if (vio->write_packet(vio, (const unsigned char *)PASSWORD_QUESTION, 1))
return CR_ERROR;
/* read the answer */
if ((pkt_len = vio->read_packet(vio, &pkt)) < 0) return CR_ERROR;
info->password_used = PASSWORD_USED_YES;
/* fail if the password is wrong */
if (strcmp((const char *)pkt, info->auth_string) != 0) return CR_ERROR;
/* Test of default_auth */
if (strcmp(info->user_name, "qa_test_11_user") == 0) {
strcpy(info->authenticated_as, "qa_test_11_dest");
} else
err = CR_ERROR;
return err;
}
static int generate_auth_string_hash(char *outbuf, unsigned int *buflen,
const char *inbuf, unsigned int inbuflen) {
/*
if buffer specified by server is smaller than the buffer given
by plugin then return error
*/
if (*buflen < inbuflen) return 1;
strncpy(outbuf, inbuf, inbuflen);
*buflen = strlen(inbuf);
return 0;
}
static int validate_auth_string_hash(char *const inbuf [[maybe_unused]],
unsigned int buflen [[maybe_unused]]) {
return 0;
}
static int set_salt(const char *password [[maybe_unused]],
unsigned int password_len [[maybe_unused]],
unsigned char *salt [[maybe_unused]],
unsigned char *salt_len) {
*salt_len = 0;
return 0;
}
static struct st_mysql_auth qa_auth_test_handler = {
MYSQL_AUTHENTICATION_INTERFACE_VERSION,
"qa_auth_interface", /* requires test_plugin client's plugin */
qa_auth_interface,
generate_auth_string_hash,
validate_auth_string_hash,
set_salt,
AUTH_FLAG_PRIVILEGED_USER_FOR_PASSWORD_CHANGE,
nullptr};
mysql_declare_plugin(test_plugin){
MYSQL_AUTHENTICATION_PLUGIN,
&qa_auth_test_handler,
"qa_auth_server",
PLUGIN_AUTHOR_ORACLE,
"plugin API test plugin",
PLUGIN_LICENSE_GPL,
nullptr, /* Init */
nullptr, /* Check uninstall */
nullptr, /* Deinit */
0x0101,
nullptr,
nullptr,
nullptr,
0,
} mysql_declare_plugin_end;