[MDEV-9059] protocol: bundle first command with the authentication packet - Jira

Details

Type: Task
Status: Stalled (View Workflow)
Priority: Major
Resolution: Unresolved
Fix Version/s: None
Component/s: None
Labels:
- Connectors

Sprint:
10.2.0-10, 10.2.0-11, 10.2.1-1, 10.2.1-3, 10.2.1-4, 10.2.1-5, 10.2.3-2

Description

The idea is to store the command in separate buffer (or just make new network buffer) before authentication, then in case of success of the authentication execute it (auth itself can cause exchange of the packet that is why storing is requited).

Attachments

Issue Links

blocks

CONJ-463 faster connection with bundle first commands in authentication packet

Closed

is blocked by

CONC-149 protocol: bundle first command with the authentication packet

Closed

relates to

MXS-1574 Add support for bundled first command

Closed

Activity

Ascending order - Click to sort in descending order

Sergei Golubchik created issue - 2015-11-02 13:56

Sergei Golubchik made changes - 2015-11-17 21:06

Field	Original Value	New Value
Fix Version/s		10.2 [ 14601 ]

Rasmus Johansson (Inactive) made changes - 2016-03-30 06:50

Sprint

10.2.0-10 [ 46 ]

Rasmus Johansson (Inactive) made changes - 2016-03-30 06:53

Assignee

Oleksandr Byelkin [ sanja ]

Oleksandr Byelkin made changes - 2016-04-04 05:39

Status

Open [ 1 ]

In Progress [ 3 ]

Oleksandr Byelkin made changes - 2016-04-04 10:07

Description

Optimistically assuming that the authentication was successful, the client doesn't need to wait for the ok packet from the server, but can send the first command right away, including it in the authentication packet.

The idea is to store the command in separate buffer (or just make new network buffer) before authentication, then in case of success of the authentication execute it (auth itself can cause exchange of the packet that is why storing is requited).

Rasmus Johansson (Inactive) made changes - 2016-04-06 07:55

Sprint

10.2.0-10 [ 46 ]

10.2.0-10, 10.2.0-11 [ 46, 47 ]

Rasmus Johansson (Inactive) made changes - 2016-05-04 13:31

Sprint

10.2.0-10, 10.2.0-11 [ 46, 47 ]

10.2.0-10, 10.2.0-11, 10.2.1-1 [ 46, 47, 56 ]

Rasmus Johansson (Inactive) made changes - 2016-05-04 13:31

Rank

Ranked higher

Rasmus Johansson (Inactive) made changes - 2016-05-11 07:08

Sprint

10.2.0-10, 10.2.0-11, 10.2.1-1 [ 46, 47, 56 ]

10.2.0-10, 10.2.0-11, 10.2.1-1, 10.2.1-2 [ 46, 47, 56, 63 ]

Rasmus Johansson (Inactive) made changes - 2016-05-18 09:35

Sprint

10.2.0-10, 10.2.0-11, 10.2.1-1, 10.2.1-2 [ 46, 47, 56, 63 ]

10.2.0-10, 10.2.0-11, 10.2.1-1, 10.2.1-3 [ 46, 47, 56, 65 ]

Rasmus Johansson (Inactive) made changes - 2016-05-18 09:35

Rank

Ranked lower

Rasmus Johansson (Inactive) made changes - 2016-05-25 08:39

Sprint

10.2.0-10, 10.2.0-11, 10.2.1-1, 10.2.1-3 [ 46, 47, 56, 65 ]

10.2.0-10, 10.2.0-11, 10.2.1-1, 10.2.1-3, 10.2.1-4 [ 46, 47, 56, 65, 66 ]

Rasmus Johansson (Inactive) made changes - 2016-06-01 08:05

Sprint

10.2.0-10, 10.2.0-11, 10.2.1-1, 10.2.1-3, 10.2.1-4 [ 46, 47, 56, 65, 66 ]

10.2.0-10, 10.2.0-11, 10.2.1-1, 10.2.1-3, 10.2.1-4, 10.2.1-5 [ 46, 47, 56, 65, 66, 68 ]

Diego Dupin made changes - 2016-10-11 08:42

Link

This issue relates to ~~CONJ-366~~ [ ~~CONJ-366~~ ]

Oleksandr Byelkin added a comment - 2016-10-11 13:58

revision-id: e52317b01a50ee51d703913fb046f5419432dc2f (mariadb-10.2.2-35-ge52317b)
parent(s): 553ca406cd44946d454d84c08a7247ef595378f5
committer: Oleksandr Byelkin
timestamp: 2016-10-11 15:56:54 +0200
message:

MDEV-9059: protocol: bundle first command with the authentication packet

—

Oleksandr Byelkin added a comment - 2016-10-11 13:58 revision-id: e52317b01a50ee51d703913fb046f5419432dc2f (mariadb-10.2.2-35-ge52317b) parent(s): 553ca406cd44946d454d84c08a7247ef595378f5 committer: Oleksandr Byelkin timestamp: 2016-10-11 15:56:54 +0200 message: MDEV-9059 : protocol: bundle first command with the authentication packet —

Oleksandr Byelkin made changes - 2016-10-11 13:58

Assignee	Oleksandr Byelkin [ sanja ]	Sergei Golubchik [ serg ]
Status	In Progress [ 3 ]	In Review [ 10002 ]

Rasmus Johansson (Inactive) made changes - 2016-10-13 06:25

Sprint

10.2.0-10, 10.2.0-11, 10.2.1-1, 10.2.1-3, 10.2.1-4, 10.2.1-5 [ 46, 47, 56, 65, 66, 68 ]

10.2.0-10, 10.2.0-11, 10.2.1-1, 10.2.1-3, 10.2.1-4, 10.2.1-5, 10.2.3-2 [ 46, 47, 56, 65, 66, 68, 105 ]

Rasmus Johansson (Inactive) made changes - 2016-10-13 06:25

Rank

Ranked lower

Sergei Golubchik added a comment - 2016-11-30 11:50

does Connector/C support it?

Sergei Golubchik added a comment - 2016-11-30 11:50 does Connector/C support it?

Rasmus Johansson (Inactive) made changes - 2016-12-21 14:54

Sprint

10.2.0-10, 10.2.0-11, 10.2.1-1, 10.2.1-3, 10.2.1-4, 10.2.1-5, 10.2.3-2 [ 46, 47, 56, 65, 66, 68, 105 ]

10.2.0-10, 10.2.0-11, 10.2.1-1, 10.2.1-3, 10.2.1-4, 10.2.1-5, 10.2.3-2, 10.2.4-5 [ 46, 47, 56, 65, 66, 68, 105, 125 ]

Rasmus Johansson (Inactive) made changes - 2016-12-21 14:54

Rank

Ranked lower

Sergei Golubchik made changes - 2016-12-27 16:46

Link

This issue is blocked by ~~CONC-149~~ [ ~~CONC-149~~ ]

Sergei Golubchik added a comment - 2016-12-27 16:46

waiting for ~~CONC-149~~

Sergei Golubchik added a comment - 2016-12-27 16:46 waiting for CONC-149

Sergei Golubchik made changes - 2016-12-27 16:47

Sprint

10.2.0-10, 10.2.0-11, 10.2.1-1, 10.2.1-3, 10.2.1-4, 10.2.1-5, 10.2.3-2, 10.2.4-5 [ 46, 47, 56, 65, 66, 68, 105, 125 ]

10.2.0-10, 10.2.0-11, 10.2.1-1, 10.2.1-3, 10.2.1-4, 10.2.1-5, 10.2.3-2 [ 46, 47, 56, 65, 66, 68, 105 ]

Diego Dupin made changes - 2017-04-24 16:48

Link

This issue relates to ~~CONJ-366~~ [ ~~CONJ-366~~ ]

Diego Dupin made changes - 2017-04-25 13:20

Link

This issue relates to ~~CONJ-463~~ [ ~~CONJ-463~~ ]

Sergei Golubchik made changes - 2017-06-27 12:14

Fix Version/s		10.3 [ 22126 ]
Fix Version/s	10.2 [ 14601 ]

Diego Dupin made changes - 2017-10-30 14:00

Comment

[ not relevant anymore.
This was develop mainly for java connector.

After different discussion, comparaison was asked versus pipelining (send-send-send, and then read results one after the other).
based on the assumption that authentication plugins are not often used.

So, implementation with pipeline ask for all results, asuming authentication plugin is not used. If used, server close the connection immediatly and client recreate socket without using pipelining.

Results are on ~~CONJ-366~~ : connection take 349ms (±3ms) using pipelining, (= 40% faster than previous implementation)
this take 354ms (± 4ms). Since this is slower and doesn't work on previous mariadb server / mysql servers. better to cancel this task.

(for information, mysql java driver take 1183ms !)
]

Diego Dupin made changes - 2017-10-30 14:00

Comment

[
After different of tests, pipelining with assumption is not a viable solution.
- pipelining break with maxscale
- pipelining make socket close strange issue when using SSL.
- if CONNECT_WITH_DB flag is not set (no db in url), then authentication plugin is asked, so authentication may have more used than imagined.

Cancel previous comment. this task is still relevant. ]

Diego Dupin added a comment - 2017-11-01 10:09 - edited

protocol change :

new capability :

(number has now to change since 34 has been used for MARIADB_CLIENT_STMT_BULK_OPERATIONS, but that's what is implemented in branch)
MARIADB_CLIENT_COM_IN_AUTH = 1L << 34; /* support bundle first command with the authentication packet*/

Handshake response packet

int<4> client capabilities
int<4> max packet size
int<1> client character collation
string<19> reserved
if not (server_capabilities & CLIENT_MYSQL)
- int<4> extended client capabilities
else
- string<4> reserved
string<NUL> username
if (server_capabilities & PLUGIN_AUTH_LENENC_CLIENT_DATA)
- string<lenenc> authentication data
else if (server_capabilities & CLIENT_SECURE_CONNECTION)
- int<1> length of authentication response
- string<fix> authentication response (length is indicated by previous field)
else
- int<1> 0x00
if (server_capabilities & CLIENT_CONNECT_WITH_DB)
- string<NUL> default schema name
if (server_capabilities & CLIENT_PLUGIN_AUTH)
- string<NUL> authentication plugin name
if (server_capabilities & CLIENT_CONNECT_ATTRS)
- int<lenenc> size of connection attributes
- loop {
  - string<lenenc> key
  - string<lenenc> value
if (server_capabilities & MARIADB_CLIENT_COM_IN_AUTH)
- int<lenenc> COM_MULTI command length
- byte<xxx> COM_MULTI command, with xxx equal to command length

The result of this COM_MULTI command (if MARIADB_CLIENT_COM_IN_AUTH will be received after authentication is complete

COM_MULTI command

int<1> 0xfe (COM_MULTI header)
loop
- byte<1> command header
- string<xxx> command

Diego Dupin added a comment - 2017-11-01 10:09 - edited protocol change : new capability : (number has now to change since 34 has been used for MARIADB_CLIENT_STMT_BULK_OPERATIONS, but that's what is implemented in branch) MARIADB_CLIENT_COM_IN_AUTH = 1L << 34; /* support bundle first command with the authentication packet*/ Handshake response packet int<4> client capabilities int<4> max packet size int<1> client character collation string<19> reserved if not (server_capabilities & CLIENT_MYSQL) int<4> extended client capabilities else string<4> reserved string<NUL> username if (server_capabilities & PLUGIN_AUTH_LENENC_CLIENT_DATA) string<lenenc> authentication data else if (server_capabilities & CLIENT_SECURE_CONNECTION) int<1> length of authentication response string<fix> authentication response (length is indicated by previous field) else int<1> 0x00 if (server_capabilities & CLIENT_CONNECT_WITH_DB) string<NUL> default schema name if (server_capabilities & CLIENT_PLUGIN_AUTH) string<NUL> authentication plugin name if (server_capabilities & CLIENT_CONNECT_ATTRS) int<lenenc> size of connection attributes loop { string<lenenc> key string<lenenc> value if (server_capabilities & MARIADB_CLIENT_COM_IN_AUTH) int<lenenc> COM_MULTI command length byte<xxx> COM_MULTI command, with xxx equal to command length The result of this COM_MULTI command (if MARIADB_CLIENT_COM_IN_AUTH will be received after authentication is complete COM_MULTI command int<1> 0xfe (COM_MULTI header) loop byte<1> command header string<xxx> command

Oleksandr Byelkin added a comment - 2017-11-06 10:25

github tree is bb-10.3-MDEV-9059

Oleksandr Byelkin added a comment - 2017-11-06 10:25 github tree is bb-10.3- MDEV-9059

Oleksandr Byelkin added a comment - 2017-11-07 16:42

revision-id: d62ea85e6f6c273a712f951da907ced06f01bc03 (mariadb-10.3.2-39-gd62ea85e6f6)
parent(s): 2ba1616e5d0f7008d5f6bf2c6cbc439935f6138b
author: Oleksandr Byelkin
committer: Oleksandr Byelkin
timestamp: 2017-11-07 17:39:29 +0100
message:

MDEV-9059: protocol: bundle first command with the authentication packet

—

Oleksandr Byelkin added a comment - 2017-11-07 16:42 revision-id: d62ea85e6f6c273a712f951da907ced06f01bc03 (mariadb-10.3.2-39-gd62ea85e6f6) parent(s): 2ba1616e5d0f7008d5f6bf2c6cbc439935f6138b author: Oleksandr Byelkin committer: Oleksandr Byelkin timestamp: 2017-11-07 17:39:29 +0100 message: MDEV-9059 : protocol: bundle first command with the authentication packet —

Oleksandr Byelkin added a comment - 2017-11-07 16:43

Now Georg add tests to connector C

Oleksandr Byelkin added a comment - 2017-11-07 16:43 Now Georg add tests to connector C

markus makela made changes - 2017-12-08 13:12

Link

This issue relates to ~~MXS-1574~~ [ ~~MXS-1574~~ ]

Sergei Golubchik made changes - 2018-05-07 12:45

Fix Version/s		10.4 [ 22408 ]
Fix Version/s	10.3 [ 22126 ]

Julien Fritsch made changes - 2018-07-05 14:22

Epic Link

PT-79 [ 68560 ]

Diego Dupin made changes - 2018-10-24 11:34

Assignee

Sergei Golubchik [ serg ]

Vladislav Vaintroub [ wlad ]

Ralf Gebhardt made changes - 2018-11-14 09:33

Rank

Ranked higher

Ralf Gebhardt made changes - 2018-11-14 11:33

Rank

Ranked higher

Vladislav Vaintroub added a comment - 2018-11-21 19:14

Review done : commented on https://github.com/mariadb/server/commit/d62ea85e6f6c273a712f951da907ced06f01bc03

Vladislav Vaintroub added a comment - 2018-11-21 19:14 Review done : commented on https://github.com/mariadb/server/commit/d62ea85e6f6c273a712f951da907ced06f01bc03

Vladislav Vaintroub made changes - 2018-11-21 19:15

Status

In Review [ 10002 ]

Stalled [ 10000 ]

Vladislav Vaintroub made changes - 2018-11-21 19:15

Assignee

Vladislav Vaintroub [ wlad ]

Oleksandr Byelkin [ sanja ]

Ralf Gebhardt made changes - 2019-03-08 16:24

Epic Link

PT-79 [ 68560 ]

Ralf Gebhardt made changes - 2019-03-08 16:24

Fix Version/s		10.5 [ 23123 ]
Fix Version/s	10.4 [ 22408 ]

Ralf Gebhardt made changes - 2019-04-10 12:32

Labels

Connectors

Sergei Golubchik made changes - 2020-02-18 11:07

Fix Version/s

10.5 [ 23123 ]

Diego Dupin made changes - 2021-04-08 20:31

Link

This issue blocks ~~CONJ-463~~ [ ~~CONJ-463~~ ]

Diego Dupin made changes - 2021-04-08 20:31

Link

This issue relates to ~~CONJ-463~~ [ ~~CONJ-463~~ ]

Sergei Golubchik made changes - 2021-12-06 21:22

Workflow

MariaDB v3 [ 72409 ]

MariaDB v4 [ 131653 ]

People

Assignee:: Oleksandr Byelkin

Reporter:: Sergei Golubchik

Votes:: 0 Vote for this issue

Watchers:: 9 Start watching this issue

Dates

Created:: 2015-11-02 13:56

Updated:: 2022-04-25 11:24

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.

MariaDB Server

Details

Description

Attachments

Issue Links

Activity

protocol change :

new capability :

Handshake response packet

COM_MULTI command

People

Dates

Git Integration