mysql-server/plugin/x/src/native_plain_verification.cc at trunk · mysql/mysql-server · GitHub

Name: mysql-server/plugin/x/src/native_plain_verification.cc at trunk · mysql/mysql-server · GitHub
Rating: 4.4 (8901 reviews)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
/*
 * Copyright (c) 2017, 2025, Oracle and/or its affiliates.
 *
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License, version 2.0,
 * as published by the Free Software Foundation.
 *
 * This program is designed to work with certain software (including
 * but not limited to OpenSSL) that is licensed under separate terms,
 * as designated in a particular file or component or in included license
 * documentation. The authors of MySQL hereby grant you an additional
 * permission to link the program and your derivative works with the
 * separately licensed software that they have either included with
 * the program or referenced in the documentation.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
 * GNU General Public License, version 2.0, for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
*/

#include"plugin/x/src/native_plain_verification.h"
#include"plugin/x/src/helper/generate_hash.h"

namespacexpl {

const std::string Native_plain_verification::k_empty_salt;

boolNative_plain_verification::verify_authentication_string(
const std::string &user, const std::string &host,
const std::string &client_string, const std::string &db_string) const {
// There is no need to perform additional authentication if the given
// credentials are already in the cache.
if (m_sha256_password_cache &&
 m_sha256_password_cache->contains(user, host, client_string)) {
returntrue;
 }

bool client_string_matches = client_string.empty() && db_string.empty();

 std::string const hash_string{"*" + generate_hash(client_string)};
if (!client_string_matches && hash_string == db_string) {
 client_string_matches = true;
 }

if (client_string_matches && m_sha256_password_cache) {
 m_sha256_password_cache->upsert(user, host, client_string);
 }

return client_string_matches;
}

} // namespace xpl