Class CachingSha2PasswordPlugin

    • Field Detail

      • authenticationData

        private java.lang.String authenticationData
      • seed

        private byte[] seed
    • Constructor Detail

      • CachingSha2PasswordPlugin

        public CachingSha2PasswordPlugin()
    • Method Detail

      • sha256encryptPassword

        public static byte[] sha256encryptPassword​(java.lang.CharSequence password,
                                                   byte[] seed)
        Send an SHA-2 encrypted password. encryption XOR(SHA256(password), SHA256(seed, SHA256(SHA256(password))))
        Parameters:
        password - password
        seed - seed
        Returns:
        encrypted pwd
      • readPublicKeyFromFile

        public static java.security.PublicKey readPublicKeyFromFile​(java.lang.String serverRsaPublicKeyFile)
                                                             throws java.sql.SQLException
        Read public Key from file.
        Parameters:
        serverRsaPublicKeyFile - RSA public key file
        Returns:
        public key
        Throws:
        java.sql.SQLException - if having an error reading file or file content is not a public key.
      • generatePublicKey

        public static java.security.PublicKey generatePublicKey​(byte[] publicKeyBytes)
                                                         throws java.sql.SQLException
        Read public pem key from String.
        Parameters:
        publicKeyBytes - public key bytes value
        Returns:
        public key
        Throws:
        java.sql.SQLException - if key cannot be parsed
      • encrypt

        public static byte[] encrypt​(java.security.PublicKey publicKey,
                                     java.lang.String password,
                                     byte[] seed)
                              throws java.sql.SQLException
        Encode password with seed and public key.
        Parameters:
        publicKey - public key
        password - password
        seed - seed
        Returns:
        encoded password
        Throws:
        java.sql.SQLException - if cannot encode password
      • type

        public java.lang.String type()
        Description copied from interface: AuthenticationPlugin
        Authentication plugin type.
        Specified by:
        type in interface AuthenticationPlugin
        Returns:
        authentication plugin type. ex: mysql_native_password
      • initialize

        public void initialize​(java.lang.String authenticationData,
                               byte[] seed,
                               Configuration conf,
                               HostAddress hostAddress)
        Initialized data.
        Specified by:
        initialize in interface AuthenticationPlugin
        Parameters:
        authenticationData - authentication data (password/token)
        seed - server provided seed
        conf - Connection string options
        hostAddress - host information
      • process

        public ReadableByteBuf process​(Writer out,
                                       Reader in,
                                       Context context)
                                throws java.io.IOException,
                                       java.sql.SQLException
        Process native password plugin authentication. see https://mariadb.com/kb/en/library/authentication-plugin-mysql_native_password/
        Specified by:
        process in interface AuthenticationPlugin
        Parameters:
        out - out stream
        in - in stream
        context - connection context
        Returns:
        response packet
        Throws:
        java.io.IOException - if socket error
        java.sql.SQLException - if plugin exception