MXS-862: Do first part of authentication in MySQLBackend

The first message exchange between the server and the client will almost always contain the same data. If the server is going to change authentication methods, it will send an AuthSwitchRequest packet instead of the OK/ERR packet that it would normally send. Only after this point the authenticator modules actually need to do something. In the case of the default 'mysql_native_password' plugin, the only thing that the plugin needs to do is to check whether the server responded with an OK packet.
2016-10-05 21:16:57 +03:00
parent cb7c112764
commit 239b53e156
4 changed files with 66 additions and 85 deletions
--- a/server/modules/protocol/MySQL/MySQLBackend/mysql_backend.c
+++ b/server/modules/protocol/MySQL/MySQLBackend/mysql_backend.c
@ -580,10 +580,25 @@ gw_read_backend_event(DCB *dcb)
                log_error_response(dcb, readbuf);
            }

-            if (proto->protocol_auth_state == MXS_AUTH_STATE_CONNECTED ||
-                proto->protocol_auth_state == MXS_AUTH_STATE_RESPONSE_SENT)
+            if (proto->protocol_auth_state == MXS_AUTH_STATE_CONNECTED)
            {
-                /** Read the first message from the server */
+                mxs_auth_state_t state = MXS_AUTH_STATE_FAILED;
+
+                /** Read the server handshake and send the standard response */
+                if (gw_read_backend_handshake(dcb, readbuf))
+                {
+                    state = gw_send_backend_auth(dcb);
+                }
+
+                proto->protocol_auth_state = state;
+                gwbuf_free(readbuf);
+            }
+            else if (proto->protocol_auth_state == MXS_AUTH_STATE_RESPONSE_SENT)
+            {
+                /** Read the message from the server. This will be the first
+                 * packet that can contain authenticator specific data from the
+                 * backend server. For 'mysql_native_password' it'll be an OK
+                 * packet */
                proto->protocol_auth_state = handle_server_response(dcb, readbuf);
            }

--- a/server/modules/protocol/MySQL/mysql_common.c
+++ b/server/modules/protocol/MySQL/mysql_common.c
@ -1540,3 +1540,22 @@ bool gw_read_backend_handshake(DCB *dcb, GWBUF *buffer)

    return rval;
 }
+
+/**
+ * @brief Check if the buffer contains an OK packet
+ *
+ * @param buffer Buffer containing a complete MySQL packet
+ * @return True if the buffer contains an OK packet
+ */
+bool mxs_mysql_is_ok_packet(GWBUF *buffer)
+{
+    bool rval = false;
+    uint8_t cmd;
+
+    if (gwbuf_copy_data(buffer, MYSQL_HEADER_LEN, 1, &cmd) &&  cmd == MYSQL_REPLY_OK)
+    {
+        rval = true;
+    }
+
+    return rval;
+}