Uploaded image for project: 'MariaDB Connector/C'
  1. MariaDB Connector/C
  2. CONC-229

SHA256 authentication plugin

    XMLWordPrintable

    Details

    • Type: Task
    • Status: Closed (View Workflow)
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 3.0.2
    • Labels:
      None

      Description

      Provide an authentication plugin which supports authentication via SHA256 password.
      SHA256 authentication is not used if a TLS connection was established before, or if the password is empty.

      Protocol for sha256 authentication.

      1. server sends 2nd scramble packet to client (length = SCRAMBLE_LENGTH)
      2. if server public key was not specified via mysql_options, client will send 0x01 to server
      3. server will return it's public key in pem format.
      4. client xors password with scramble packet
      5. client encrypts the xored password with server public key (server requires OAEP padding)
      6. client sends encrypted password to server

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              georg Georg Richter
              Reporter:
              georg Georg Richter
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: