Inicio Explorar Ayuda
Registro Iniciar sesión
josh
/
mysql-binlog-filter
1
0
Fork 0
Archivos
Árbol: 379a4dd6cb
Ramas Etiquetas
mysql-binlog-fi...
/
binlog
/
authentication.go

authentication.go 1.5 KB
Histórico Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768 
  1. package binlog
    2. 

  2. 

  3. import (
    4. 

  4. 	"crypto/sha1"
    5. 

  5. 	"crypto/sha256"
    6. 

  6. )
    7. 

  7. 

  8. func (c *Conn) authenticate(hr *HandshakeResponse) {
    9. 

  9. 	switch c.Handshake.AuthPluginName {
    10. 

  10. 	case "mysql_native_password" :
    11. 

  11. 		c.doSha1Auth(hr)
    12. 

  12. 	case "caching_sha2_password":
    13. 

  13. 		c.doSha2Auth(hr)
    14. 

  14. 	}
    15. 

  15. }
    16. 

  16. 

  17. func (c *Conn) doSha1Auth(hr *HandshakeResponse) {
    18. 

  18. }
    19. 

  19. 

  20. func (c *Conn) doSha2Auth(hr *HandshakeResponse) {
    21. 

  21. 	salt := append(c.Handshake.AuthPluginDataPart1.Bytes(), c.Handshake.AuthPluginDataPart2.Bytes()...)
    22. 

  22. 	ar := c.cachingSha2Auth(salt, []byte(hr.AuthResponse))
    23. 

  23. 	hr.AuthResponseLength = uint64(len(ar))
    24. 

  24. 	if hr.ClientFlag.PluginAuthLenEncClientData {
    25. 

  25. 		c.putInt(TypeLenEncInt, hr.AuthResponseLength, 0)
    26. 

  26. 		c.putBytes(ar)
    27. 

  27. 	} else if hr.ClientFlag.SecureConnection {
    28. 

  28. 		c.putInt(TypeFixedInt, hr.AuthResponseLength, 1)
    29. 

  29. 		c.putBytes(ar)
    30. 

  30. 	} else {
    31. 

  31. 		c.putString(TypeNullTerminatedString, string(ar))
    32. 

  32. 	}
    33. 

  33. }
    34. 

  34. 

  35. func (c *Conn) nativeSha1Auth() {
    36. 

  36. 	// SHA1(password) XOR SHA1("20-bytes random data from server" <concat> SHA1(SHA1(password)))
    37. 

  37. 

  38. }
    39. 

  39. 

  40. func (c *Conn) cachingSha2Auth(salt []byte, password []byte) []byte {
    41. 

  41. 	if len(password) < 1 {
    42. 

  42. 		return nil
    43. 

  43. 	}
    44. 

  44. 

  45. 	pHash := c.sha256Hash(password)
    46. 

  46. 	pHashHash := c.sha256Hash(pHash)
    47. 

  47. 	pHashHashHash := c.sha256Hash(pHashHash)
    48. 

  48. 	authData := c.sha256Hash(append(pHashHashHash, salt...))
    49. 

  49. 

  50. 	for i := range pHash {
    51. 

  51. 		pHash[i] ^= authData[i]
    52. 

  52. 	}
    53. 

  53. 

  54. 	return pHash
    55. 

  55. }
    56. 

  56. 

  57. func (c *Conn) sha1Hash(word []byte) []byte {
    58. 

  58. 	s := sha1.New()
    59. 

  59. 	s.Write(word)
    60. 

  60. 	return s.Sum(nil)
    61. 

  61. }
    62. 

  62. 

  63. func (c *Conn) sha256Hash(word []byte) []byte {
    64. 

  64. 	s := sha256.New()
    65. 

  65. 	s.Write(word)
    66. 

  66. 	return s.Sum(nil)
    67. 

  67. }
    68. 

  68.