Skip to content

Commit 99095d2

Browse files
ndosschekamil-tekiela
authored and
bon
committed
Fix phpGH-11438: mysqlnd fails to authenticate with sha256_password accounts using passwords longer than 19 characters
https://dev.mysql.com/doc/dev/mysql-server/latest/page_caching_sha2_authentication_exchanges.html tells us that the nonce used in this authentication method is 20 bytes long. However, we might receive additional scramble data in php_mysqlnd_greet_read not used in this method. On my test setup, I received 21 bytes (20 bytes + '\0'). This resulted in the xor computation to incorrectly include the NUL byte. Every password of at least 20 characters therefore failed to authenticate using this method. Looking at mysql-server source code also seems to reveal that it always uses a fixed number of scramble bytes [1]. [1] https://github.com/mysql/mysql-server/blob/ea7087d885006918ad54458e7aad215b1650312c/sql/auth/sha2_password.cc#L1078-L1079 Closes phpGH-11445. Co-authored-by: Kamil Tekiela <tekiela246@gmail.com>
1 parent ddac230 commit 99095d2

File tree

2 files changed

+88
-1
lines changed

2 files changed

+88
-1
lines changed

ext/mysqli/tests/gh11438.phpt

Lines changed: 84 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,84 @@
1+
--TEST--
2+
GH-11438 (mysqlnd fails to authenticate with sha256_password accounts using passwords longer than 19 characters)
3+
--EXTENSIONS--
4+
mysqli
5+
--SKIPIF--
6+
<?php
7+
require_once 'skipifconnectfailure.inc';
8+
9+
ob_start();
10+
phpinfo(INFO_MODULES);
11+
$tmp = ob_get_contents();
12+
ob_end_clean();
13+
if (!stristr($tmp, "auth_plugin_sha256_password"))
14+
die("skip SHA256 auth plugin not built-in to mysqlnd");
15+
16+
if (!$link = my_mysqli_connect($host, $user, $passwd, $db, $port, $socket))
17+
die(printf("skip: [%d] %s\n", mysqli_connect_errno(), mysqli_connect_error()));
18+
19+
if (mysqli_get_server_version($link) < 50606)
20+
die("skip: SHA-256 requires MySQL 5.6.6+");
21+
22+
if (!($res = $link->query("SHOW PLUGINS"))) {
23+
die(sprintf("skip [%d] %s\n", $link->errno, $link->error));
24+
}
25+
26+
$found = false;
27+
while ($row = $res->fetch_assoc()) {
28+
if (($row['Name'] == 'sha256_password') && ($row['Status'] == 'ACTIVE')) {
29+
$found = true;
30+
break;
31+
}
32+
}
33+
if (!$found)
34+
die("skip SHA-256 server plugin unavailable");
35+
36+
// Ignore errors because this variable exists only in MySQL 5.6 and 5.7
37+
$link->query("SET @@session.old_passwords=2");
38+
39+
$link->query('DROP USER shatest');
40+
$link->query("DROP USER shatest@localhost");
41+
42+
if (!$link->query('CREATE USER shatest@"%" IDENTIFIED WITH sha256_password') ||
43+
!$link->query('CREATE USER shatest@"localhost" IDENTIFIED WITH sha256_password')) {
44+
die(sprintf("skip CREATE USER failed [%d] %s", $link->errno, $link->error));
45+
}
46+
47+
// Password of length 52, more than twice the length of the scramble data to ensure scramble is repeated correctly
48+
if (!$link->query('SET PASSWORD FOR shatest@"%" = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ"') ||
49+
!$link->query('SET PASSWORD FOR shatest@"localhost" = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ"')) {
50+
die(sprintf("skip SET PASSWORD failed [%d] %s", $link->errno, $link->error));
51+
}
52+
53+
echo "nocache";
54+
?>
55+
--FILE--
56+
<?php
57+
require_once 'connect.inc';
58+
59+
$link = new mysqli($host, 'shatest', 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ', null, $port, $socket);
60+
if ($link->connect_errno) {
61+
printf("[001] [%d] %s\n", $link->connect_errno, $link->connect_error);
62+
} else {
63+
if (!$res = $link->query("SELECT USER()"))
64+
printf("[002] [%d] %s\n", $link->errno, $link->error);
65+
66+
if (!$row = mysqli_fetch_assoc($res)) {
67+
printf("[003] [%d] %s\n", $link->errno, $link->error);
68+
}
69+
70+
if (!is_string($row['USER()']) || !str_starts_with($row['USER()'], 'shatest')) {
71+
printf("[004] Expecting 1 got %s/'%s'", gettype($row['USER()']), $row['USER()']);
72+
}
73+
}
74+
75+
print "done!";
76+
?>
77+
--CLEAN--
78+
<?php
79+
require_once 'connect.inc';
80+
$link->query('DROP USER shatest');
81+
$link->query('DROP USER shatest@localhost');
82+
?>
83+
--EXPECTF--
84+
done!

ext/mysqlnd/mysqlnd_auth.c

Lines changed: 4 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -927,7 +927,10 @@ mysqlnd_sha256_auth_get_auth_data(struct st_mysqlnd_authentication_plugin * self
927927
char *xor_str = do_alloca(passwd_len + 1, use_heap);
928928
memcpy(xor_str, passwd, passwd_len);
929929
xor_str[passwd_len] = '\0';
930-
mysqlnd_xor_string(xor_str, passwd_len, (char *) auth_plugin_data, auth_plugin_data_len);
930+
/* https://dev.mysql.com/doc/dev/mysql-server/latest/page_caching_sha2_authentication_exchanges.html
931+
* This tells us that the nonce is 20 (==SCRAMBLE_LENGTH) bytes long.
932+
* In a 5.5+ server we might get additional scramble data in php_mysqlnd_greet_read, not used by this authentication method. */
933+
mysqlnd_xor_string(xor_str, passwd_len, (char *) auth_plugin_data, SCRAMBLE_LENGTH);
931934
ret = mysqlnd_sha256_public_encrypt(conn, server_public_key, passwd_len, auth_data_len, xor_str);
932935
free_alloca(xor_str, use_heap);
933936
}

0 commit comments

Comments
 (0)