Uploaded image for project: 'MariaDB Connector/J'
  1. MariaDB Connector/J
  2. CONJ-394

Wrong salt used when calculating scramble after authentication switch

    XMLWordPrintable

    Details

      Description

      https://dev.mysql.com/doc/internals/en/connection-phase-packets.html#packet-Protocol::AuthSwitchRequest

      The last zero byte should not be included in the salt when re-calculating the scramble responding to auth switch request.

      Check attached before.png (current code, 0x00 included) and after.png (after fix, 0x00 excluded).

      I have created a PR to fix this, please help to verify and review.
      https://github.com/MariaDB/mariadb-connector-j/pull/93

        Attachments

        1. after.PNG
          after.PNG
          30 kB
        2. before.PNG
          before.PNG
          32 kB

          Activity

            People

            Assignee:
            diego dupin Diego Dupin
            Reporter:
            xiangyhu xiangyhu
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Git Integration

                Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.