Class CachingSha2PasswordPlugin

    • Method Summary

      All Methods Static Methods Instance Methods Concrete Methods 
      Modifier and Type Method Description
      static byte[] encrypt​(java.security.PublicKey publicKey, java.lang.String password, byte[] seed)
      Encode password with seed and public key.
      static java.security.PublicKey generatePublicKey​(byte[] publicKeyBytes)
      Read public pem key from String.
      void initialize​(java.lang.String authenticationData, byte[] seed, Configuration conf)
      Initialized data.
      ReadableByteBuf process​(PacketWriter out, PacketReader in, Context context)
      Process native password plugin authentication.
      static java.security.PublicKey readPublicKeyFromFile​(java.lang.String serverRsaPublicKeyFile)
      Read public Key from file.
      static byte[] sha256encryptPassword​(java.lang.CharSequence password, byte[] seed)
      Send an SHA-2 encrypted password.
      java.lang.String type()
      Authentication plugin type.
      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
    • Field Detail

      • authenticationData

        private java.lang.String authenticationData
      • seed

        private byte[] seed
    • Constructor Detail

      • CachingSha2PasswordPlugin

        public CachingSha2PasswordPlugin()
    • Method Detail

      • sha256encryptPassword

        public static byte[] sha256encryptPassword​(java.lang.CharSequence password,
                                                   byte[] seed)
        Send an SHA-2 encrypted password. encryption XOR(SHA256(password), SHA256(seed, SHA256(SHA256(password))))
        Parameters:
        password - password
        seed - seed
        Returns:
        encrypted pwd
      • type

        public java.lang.String type()
        Description copied from interface: AuthenticationPlugin
        Authentication plugin type.
        Specified by:
        type in interface AuthenticationPlugin
        Returns:
        authentication plugin type. ex: mysql_native_password
      • initialize

        public void initialize​(java.lang.String authenticationData,
                               byte[] seed,
                               Configuration conf)
        Initialized data.
        Specified by:
        initialize in interface AuthenticationPlugin
        Parameters:
        authenticationData - authentication data (password/token)
        seed - server provided seed
        conf - Connection string options
      • process

        public ReadableByteBuf process​(PacketWriter out,
                                       PacketReader in,
                                       Context context)
                                throws java.io.IOException,
                                       java.sql.SQLException
        Process native password plugin authentication. see https://mariadb.com/kb/en/library/authentication-plugin-mysql_native_password/
        Specified by:
        process in interface AuthenticationPlugin
        Parameters:
        out - out stream
        in - in stream
        context - connection context
        Returns:
        response packet
        Throws:
        java.io.IOException - if socket error
        java.sql.SQLException - if plugin exception
      • readPublicKeyFromFile

        public static java.security.PublicKey readPublicKeyFromFile​(java.lang.String serverRsaPublicKeyFile)
                                                             throws java.sql.SQLException
        Read public Key from file.
        Parameters:
        serverRsaPublicKeyFile - RSA public key file
        Returns:
        public key
        Throws:
        java.sql.SQLException - if having an error reading file or file content is not a public key.
      • generatePublicKey

        public static java.security.PublicKey generatePublicKey​(byte[] publicKeyBytes)
                                                         throws java.sql.SQLException
        Read public pem key from String.
        Parameters:
        publicKeyBytes - public key bytes value
        Returns:
        public key
        Throws:
        java.sql.SQLException - if key cannot be parsed
      • encrypt

        public static byte[] encrypt​(java.security.PublicKey publicKey,
                                     java.lang.String password,
                                     byte[] seed)
                              throws java.sql.SQLException
        Encode password with seed and public key.
        Parameters:
        publicKey - public key
        password - password
        seed - seed
        Returns:
        encoded password
        Throws:
        java.sql.SQLException - if cannot encode password