Details
-
New Feature
-
Status: Closed (View Workflow)
-
Blocker
-
Resolution: Fixed
-
None
-
None
Description
mysql_old_password should be by default disabled, as if all other plugins were in the the restricted-auth list. Something like
--- a/plugins/auth/my_auth.c
|
+++ b/plugins/auth/my_auth.c
|
@@ -658,11 +658,11 @@ int run_plugin_auth(MYSQL *mysql, char *data, uint data_len,
|
retry:
|
mpvio.plugin= auth_plugin;
|
|
- if (auth_plugin_name &&
|
- mysql->options.extension &&
|
- mysql->options.extension->restricted_auth)
|
+ if (auth_plugin_name)
|
{
|
- if (!strstr(mysql->options.extension->restricted_auth, auth_plugin_name))
|
+ if ((mysql->options.extension && mysql->options.extension->restricted_auth)
|
+ ? !strstr(mysql->options.extension->restricted_auth, auth_plugin_name)
|
+ : !strcmp("mysql_old_password", auth_plugin_name))
|
{
|
my_set_error(mysql, CR_PLUGIN_NOT_ALLOWED, SQLSTATE_UNKNOWN, 0, data_plugin);
|
return 1; |
Attachments
Issue Links
- relates to
-
MDEV-32617 deprecate secure_auth=0
-
- Closed
-