RethinkDB 2.3.0 handshake and authentication support

danielmewes · danielmewes · commit 1a8d1d33b740 · 2016-05-04T22:17:59.000-07:00
diff --git a/pb4php/ql2.proto b/pb4php/ql2.proto
@@ -48,6 +48,7 @@ message VersionDummy { // We need to wrap it like this for some
         V0_2      = 0x723081e1; // Authorization key during handshake
         V0_3      = 0x5f75e83e; // Authorization key and protocol during handshake
         V0_4      = 0x400c2d20; // Queries execute in parallel
+        V1_0      = 0x34c2bdc3; // Users and permissions
     }
 
     // The protocol to use after the handshake, specified in V0_3
diff --git a/rdb/Connection.php b/rdb/Connection.php
@@ -3,6 +3,7 @@
 namespace r;
 
 use r\DatumConverter;
+use r\Handshake;
 use r\Queries\Dbs\Db;
 use r\ProtocolBuffer\QueryQueryType;
 use r\ProtocolBuffer\ResponseResponseType;
@@ -17,7 +18,8 @@ class Connection extends DatumConverter
     private $host;
     private $port;
     private $defaultDb;
-    private $apiKey;
+    private $user;
+    private $password;
     private $activeTokens;
     private $timeout;
     private $ssl;
@@ -40,6 +42,8 @@ public function __construct(
         }
 
         $ssl = null;
+        $user = null;
+        $password = null;
 
         if (isset($opts)) {
             if (isset($opts['host'])) {
@@ -54,6 +58,12 @@ public function __construct(
             if (isset($opts['apiKey'])) {
                 $apiKey = $opts['apiKey'];
             }
+            if (isset($opts['user'])) {
+                $user = $opts['user'];
+            }
+            if (isset($opts['password'])) {
+                $password = $opts['password'];
+            }
             if (isset($opts['timeout'])) {
                 $timeout = $opts['timeout'];
             }
@@ -65,7 +75,25 @@ public function __construct(
         if (isset($apiKey) && !is_string($apiKey)) {
             throw new RqlDriverError("The API key must be a string.");
         }
+        if (isset($user) && !is_string($user)) {
+            throw new RqlDriverError("The user name must be a string.");
+        }
+        if (isset($password) && !is_string($password)) {
+            throw new RqlDriverError("The password must be a string.");
+        }
 
+        if (!isset($user)) {
+            $user = "admin";
+        }
+        if (isset($apiKey) && isset($password)) {
+            throw new RqlDriverError("Either user or apiKey can be specified, but not both.");
+        }
+        if (isset($apiKey) && !isset($password)) {
+            $password = $apiKey;
+        }
+        if (!isset($password)) {
+            $password = "";
+        }
         if (!isset($host)) {
             $host = "localhost";
         }
@@ -75,10 +103,8 @@ public function __construct(
 
         $this->host = $host;
         $this->port = $port;
-        if (!isset($apiKey)) {
-            $apiKey = "";
-        }
-        $this->apiKey = $apiKey;
+        $this->user = $user;
+        $this->password = $password;
         $this->timeout = null;
         $this->ssl = $ssl;
 
@@ -436,51 +462,39 @@ private function connect()
             $this->applyTimeout($this->timeout);
         }
 
-        $this->sendHandshake();
-        $this->receiveHandshakeResponse();
-    }
-
-    private function sendHandshake()
-    {
-        if (!$this->isOpen()) {
-            throw new RqlDriverError("Not connected");
-        }
-
-        $binaryVersion = pack("V", VersionDummyVersion::PB_V0_3); // "V" is little endian, 32 bit unsigned integer
-        $handshake = $binaryVersion;
-
-        $binaryKeyLength = pack("V", strlen($this->apiKey));
-        $handshake .= $binaryKeyLength . $this->apiKey;
-
-        $binaryProtocol = pack("V", VersionDummyProtocol::PB_JSON);
-        $handshake .= $binaryProtocol;
-
-        $this->sendStr($handshake);
-    }
-
-    private function receiveHandshakeResponse()
-    {
-        if (!$this->isOpen()) {
-            throw new RqlDriverError("Not connected");
-        }
-
-        $response = "";
+        $handshake = new Handshake($this->user, $this->password);
+        $handshakeResponse = null;
         while (true) {
-            $ch = stream_get_contents($this->socket, 1);
-            if ($ch === false || strlen($ch) < 1) {
+            if (!$this->isOpen()) {
+                throw new RqlDriverError("Not connected");
+            }
+            try {
+                $msg = $handshake->nextMessage($handshakeResponse);
+            } catch (Exception $e) {
                 $this->close(false);
-                throw new RqlDriverError("Unable to read from socket during handshake. Disconnected.");
+                throw $e;
             }
-            if ($ch === chr(0)) {
+            if ($msg === null) {
+                // Handshake is complete
                 break;
-            } else {
-                $response .= $ch;
             }
-        }
-
-        if ($response != "SUCCESS") {
-            $this->close(false);
-            throw new RqlDriverError("Handshake failed: $response Disconnected.");
+            if ($msg != "") {
+                $this->sendStr($msg);
+            }
+            // Read null-terminated response
+            $handshakeResponse = "";
+            while (true) {
+                $ch = stream_get_contents($this->socket, 1);
+                if ($ch === false || strlen($ch) < 1) {
+                    $this->close(false);
+                    throw new RqlDriverError("Unable to read from socket during handshake. Disconnected.");
+                }
+                if ($ch === chr(0)) {
+                    break;
+                } else {
+                    $handshakeResponse .= $ch;
+                }
+            }
         }
     }
 
diff --git a/rdb/Handshake.php b/rdb/Handshake.php
@@ -0,0 +1,130 @@
+<?php
+
+namespace r;
+
+use r\ProtocolBuffer\VersionDummyVersion;
+use r\Exceptions\RqlServerError;
+use r\Exceptions\RqlDriverError;
+
+class Handshake
+{
+    private $username;
+    private $password;
+    private $protocol_version = 0;
+    private $state;
+    private $myR;
+    private $clientFirstMessage;
+    private $serverSignature;
+
+    public function __construct($username,$password) {
+        $this->username = str_replace(",", "=2C", str_replace("=", "=3D", $username));
+        $this->password = $password;
+        $this->state = 0;
+    }
+
+    public function nextMessage($response) {
+        if ($this->state == 0) {
+            $response == null or die("Illegal handshake state");
+
+            $this->myR = base64_encode(openssl_random_pseudo_bytes(18));
+            $this->clientFirstMessage = "n=" . $this->username . ",r=" . $this->myR;
+
+            $binaryVersion = pack("V", VersionDummyVersion::PB_V1_0); // "V" is little endian, 32 bit unsigned integer
+
+            $this->state = 1;
+            return
+                $binaryVersion
+                . json_encode(array("protocol_version" => $this->protocol_version,
+                                     "authentication_method" => "SCRAM-SHA-256",
+                                     "authentication" => "n,," . $this->clientFirstMessage))
+                . chr(0);
+        } else if ($this->state == 1) {
+            if (strpos($response, "ERROR") === 0) {
+                throw new RqlDriverError("Received an unexpected reply. You may be attempting to connect to "
+                                          . "a RethinkDB server that is too old for this driver. The minimum "
+                                          . "supported server version is 2.3.0.");
+            }
+
+            $json = json_decode($response, true);
+            if ($json["success"] === false) {
+                throw new RqlDriverError("Handshake failed: " . $json["error"]);
+            }
+            if ($this->protocol_version > $json["max_protocol_version"]
+                || $this->protocol_version < $json["min_protocol_version"]) {
+                throw new RqlDriverError("Unsupported protocol version.");
+            }
+
+            $this->state = 2;
+            return "";
+        } else if ($this->state == 2) {
+            $json = json_decode($response, true);
+            if ($json["success"] === false) {
+                throw new RqlDriverError("Handshake failed: " . $json["error"]);
+            }
+            $serverFirstMessage = $json["authentication"];
+            $authentication = array();
+            foreach (explode(",", $json["authentication"]) as $var) {
+                $pair = explode("=", $var);
+                $authentication[$pair[0]] = $pair[1];
+            }
+            $serverR = $authentication["r"];
+            if (strpos($serverR, $this->myR) !== 0) {
+                throw new RqlDriverError("Invalid nonce from server.");
+            }
+            $salt = base64_decode($authentication["s"]);
+            $iterations = (int)$authentication["i"];
+
+            $clientFinalMessageWithoutProof = "c=biws,r=" . $serverR;
+            $saltedPassword = $this->pkbdf2Hmac($this->password, $salt, $iterations);
+            $clientKey = hash_hmac("sha256", "Client Key", $saltedPassword, true);
+            $storedKey = hash("sha256", $clientKey, true);
+
+            $authMessage = $this->clientFirstMessage . "," . $serverFirstMessage . "," . $clientFinalMessageWithoutProof;
+
+            $clientSignature = hash_hmac("sha256", $authMessage, $storedKey, true);
+
+            $clientProof = $clientKey ^ $clientSignature;
+
+            $serverKey = hash_hmac("sha256", "Server Key", $saltedPassword, true);
+
+            $this->serverSignature = hash_hmac("sha256", $authMessage, $serverKey, true);
+
+            $this->state = 3;
+            return
+                json_encode(array("authentication" => $clientFinalMessageWithoutProof . ",p=" . base64_encode($clientProof)))
+                . chr(0);
+        } else if ($this->state == 3) {
+            $json = json_decode($response, true);
+            if ($json["success"] === false) {
+                throw new RqlDriverError("Handshake failed: " . $json["error"]);
+            }
+            $authentication = array();
+            foreach (explode(",", $json["authentication"]) as $var) {
+                $pair = explode("=", $var);
+                $authentication[$pair[0]] = $pair[1];
+            }
+
+            $v = base64_decode($authentication["v"]);
+
+            // TODO: Use cryptographic comparison
+            if ($v != $this->serverSignature) {
+                throw new RqlDriverError("Invalid server signature.");
+            }
+
+            $this->state = 4;
+            return null;
+        } else {
+            die("Illegal handshake state");
+        }
+    }
+
+    private function pkbdf2Hmac($password, $salt, $iterations) {
+        $t = hash_hmac("sha256", $salt . "\x00\x00\x00\x01", $password, true);
+        $u = $t;
+        for ($i = 0; $i < $iterations - 1; ++$i) {
+            $t = hash_hmac("sha256", $t, $password, true);
+            $u = $u ^ $t;
+        }
+        return $u;
+    }
+}
diff --git a/rdb/ProtocolBuffer/VersionDummyVersion.php b/rdb/ProtocolBuffer/VersionDummyVersion.php
@@ -8,4 +8,5 @@ class VersionDummyVersion
     const PB_V0_2  = 0x723081e1;
     const PB_V0_3  = 0x5f75e83e;
     const PB_V0_4  = 0x400c2d20;
+    const PB_V1_0  = 0x34c2bdc3;
 }

Original file line number	Diff line number	Diff line change
`@@ -48,6 +48,7 @@ message VersionDummy { // We need to wrap it like this for some`
`48`	`48`	`V0_2 = 0x723081e1; // Authorization key during handshake`
`49`	`49`	`V0_3 = 0x5f75e83e; // Authorization key and protocol during handshake`
`50`	`50`	`V0_4 = 0x400c2d20; // Queries execute in parallel`
	`51`	`+ V1_0 = 0x34c2bdc3; // Users and permissions`
`51`	`52`	`}`
`52`	`53`
`53`	`54`	`// The protocol to use after the handshake, specified in V0_3`
Original file line number	Diff line number	Diff line change
`@@ -8,4 +8,5 @@ class VersionDummyVersion`
`8`	`8`	`const PB_V0_2 = 0x723081e1;`
`9`	`9`	`const PB_V0_3 = 0x5f75e83e;`
`10`	`10`	`const PB_V0_4 = 0x400c2d20;`
	`11`	`+ const PB_V1_0 = 0x34c2bdc3;`
`11`	`12`	`}`