mirror of https://github.com/sgoudham/Enso-Bot.git
You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
181 lines
5.6 KiB
Python
181 lines
5.6 KiB
Python
5 years ago
|
# Copyright (c) 2016, 2018, Oracle and/or its affiliates. All rights reserved.
|
||
|
#
|
||
|
# This program is free software; you can redistribute it and/or modify
|
||
|
# it under the terms of the GNU General Public License, version 2.0, as
|
||
|
# published by the Free Software Foundation.
|
||
|
#
|
||
|
# This program is also distributed with certain software (including
|
||
|
# but not limited to OpenSSL) that is licensed under separate terms,
|
||
|
# as designated in a particular file or component or in included license
|
||
|
# documentation. The authors of MySQL hereby grant you an
|
||
|
# additional permission to link the program and your derivative works
|
||
|
# with the separately licensed software that they have included with
|
||
|
# MySQL.
|
||
|
#
|
||
|
# Without limiting anything contained in the foregoing, this file,
|
||
|
# which is part of MySQL Connector/Python, is also subject to the
|
||
|
# Universal FOSS Exception, version 1.0, a copy of which can be found at
|
||
|
# http://oss.oracle.com/licenses/universal-foss-exception.
|
||
|
#
|
||
|
# This program is distributed in the hope that it will be useful, but
|
||
|
# WITHOUT ANY WARRANTY; without even the implied warranty of
|
||
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
|
||
|
# See the GNU General Public License, version 2.0, for more details.
|
||
|
#
|
||
|
# You should have received a copy of the GNU General Public License
|
||
|
# along with this program; if not, write to the Free Software Foundation, Inc.,
|
||
|
# 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
|
||
|
|
||
|
"""Implementation of MySQL Authentication Plugin."""
|
||
|
|
||
|
import hashlib
|
||
|
import struct
|
||
|
|
||
|
from .compat import PY3, UNICODE_TYPES, hexlify
|
||
|
|
||
|
|
||
|
def xor_string(hash1, hash2, hash_size):
|
||
|
"""Encrypt/Decrypt function used for password encryption in
|
||
|
authentication, using a simple XOR.
|
||
|
|
||
|
Args:
|
||
|
hash1 (str): The first hash.
|
||
|
hash2 (str): The second hash.
|
||
|
|
||
|
Returns:
|
||
|
str: A string with the xor applied.
|
||
|
"""
|
||
|
if PY3:
|
||
|
xored = [h1 ^ h2 for (h1, h2) in zip(hash1, hash2)]
|
||
|
else:
|
||
|
xored = [ord(h1) ^ ord(h2) for (h1, h2) in zip(hash1, hash2)]
|
||
|
return struct.pack("{0}B".format(hash_size), *xored)
|
||
|
|
||
|
|
||
|
class BaseAuthPlugin(object):
|
||
|
"""Base class for implementing the authentication plugins."""
|
||
|
def __init__(self, username=None, password=None):
|
||
|
self._username = username
|
||
|
self._password = password
|
||
|
|
||
|
def name(self):
|
||
|
"""Returns the plugin name.
|
||
|
|
||
|
Returns:
|
||
|
str: The plugin name.
|
||
|
"""
|
||
|
raise NotImplementedError
|
||
|
|
||
|
def auth_name(self):
|
||
|
"""Returns the authentication name.
|
||
|
|
||
|
Returns:
|
||
|
str: The authentication name.
|
||
|
"""
|
||
|
raise NotImplementedError
|
||
|
|
||
|
|
||
|
class MySQL41AuthPlugin(BaseAuthPlugin):
|
||
|
"""Class implementing the MySQL Native Password authentication plugin."""
|
||
|
def name(self):
|
||
|
"""Returns the plugin name.
|
||
|
|
||
|
Returns:
|
||
|
str: The plugin name.
|
||
|
"""
|
||
|
return "MySQL 4.1 Authentication Plugin"
|
||
|
|
||
|
def auth_name(self):
|
||
|
"""Returns the authentication name.
|
||
|
|
||
|
Returns:
|
||
|
str: The authentication name.
|
||
|
"""
|
||
|
return "MYSQL41"
|
||
|
|
||
|
def auth_data(self, data):
|
||
|
"""Hashing for MySQL 4.1 authentication.
|
||
|
|
||
|
Args:
|
||
|
data (str): The authentication data.
|
||
|
|
||
|
Returns:
|
||
|
str: The authentication response.
|
||
|
"""
|
||
|
if self._password:
|
||
|
password = self._password.encode("utf-8") \
|
||
|
if isinstance(self._password, UNICODE_TYPES) else self._password
|
||
|
hash1 = hashlib.sha1(password).digest()
|
||
|
hash2 = hashlib.sha1(hash1).digest()
|
||
|
xored = xor_string(hash1, hashlib.sha1(data + hash2).digest(), 20)
|
||
|
return "{0}\0{1}\0*{2}\0".format("", self._username, hexlify(xored))
|
||
|
return "{0}\0{1}\0".format("", self._username)
|
||
|
|
||
|
|
||
|
class PlainAuthPlugin(BaseAuthPlugin):
|
||
|
"""Class implementing the MySQL Plain authentication plugin."""
|
||
|
def name(self):
|
||
|
"""Returns the plugin name.
|
||
|
|
||
|
Returns:
|
||
|
str: The plugin name.
|
||
|
"""
|
||
|
return "Plain Authentication Plugin"
|
||
|
|
||
|
def auth_name(self):
|
||
|
"""Returns the authentication name.
|
||
|
|
||
|
Returns:
|
||
|
str: The authentication name.
|
||
|
"""
|
||
|
return "PLAIN"
|
||
|
|
||
|
def auth_data(self):
|
||
|
"""Returns the authentication data.
|
||
|
|
||
|
Returns:
|
||
|
str: The authentication data.
|
||
|
"""
|
||
|
password = self._password.encode("utf-8") \
|
||
|
if isinstance(self._password, UNICODE_TYPES) and not PY3 \
|
||
|
else self._password
|
||
|
return "\0{0}\0{1}".format(self._username, password)
|
||
|
|
||
|
|
||
|
class Sha256MemoryAuthPlugin(BaseAuthPlugin):
|
||
|
"""Class implementing the SHA256_MEMORY authentication plugin."""
|
||
|
def name(self):
|
||
|
"""Returns the plugin name.
|
||
|
|
||
|
Returns:
|
||
|
str: The plugin name.
|
||
|
"""
|
||
|
return "SHA256_MEMORY Authentication Plugin"
|
||
|
|
||
|
def auth_name(self):
|
||
|
"""Returns the authentication name.
|
||
|
|
||
|
Returns:
|
||
|
str: The authentication name.
|
||
|
"""
|
||
|
return "SHA256_MEMORY"
|
||
|
|
||
|
def auth_data(self, data):
|
||
|
"""Hashing for SHA256_MEMORY authentication.
|
||
|
|
||
|
The scramble is of the form:
|
||
|
SHA256(SHA256(SHA256(PASSWORD)),NONCE) XOR SHA256(PASSWORD)
|
||
|
|
||
|
Args:
|
||
|
data (str): The authentication data.
|
||
|
|
||
|
Returns:
|
||
|
str: The authentication response.
|
||
|
"""
|
||
|
password = self._password.encode("utf-8") \
|
||
|
if isinstance(self._password, UNICODE_TYPES) else self._password
|
||
|
hash1 = hashlib.sha256(password).digest()
|
||
|
hash2 = hashlib.sha256(hashlib.sha256(hash1).digest() + data).digest()
|
||
|
xored = xor_string(hash2, hash1, 32)
|
||
|
return "\0{0}\0{1}".format(self._username, hexlify(xored))
|