sha256_password plugin
SHA256 authentication possible exchanges:
- if connection use SSL (SSLRequest Packet sent)
- client send a clear password answer
- else
- if client doesn't know server RSA public key
- client sends a public key request
- server sends a public key response
- client sends an RSA encrypted password
- ends with server sending either OK_Packet , ERR_Packet
- if client doesn't know server RSA public key
Client clear password answer
- string<NUL> password without encryption
Public key request
- byte<1> fixed 0x01 value
Public key response
RSA encrypted password
- byte<256> RSA encrypted password
RSA encrypted value of XOR(password, seed) using server public key (RSA_PKCS1_OAEP_PADDING).
Comments
Comments loading...
Content reproduced on this site is the property of its respective owners,
and this content is not reviewed in advance by MariaDB. The views, information and opinions
expressed by this content do not necessarily represent those of MariaDB or any other party.