first commit

python3-vckonline/lib/python3.8/site-packages/mysqlx/authentication.py

@@ -0,0 +1,180 @@
+# Copyright (c) 2016, 2018, Oracle and/or its affiliates. All rights reserved.
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License, version 2.0, as
+# published by the Free Software Foundation.
+#
+# This program is also distributed with certain software (including
+# but not limited to OpenSSL) that is licensed under separate terms,
+# as designated in a particular file or component or in included license
+# documentation.  The authors of MySQL hereby grant you an
+# additional permission to link the program and your derivative works
+# with the separately licensed software that they have included with
+# MySQL.
+#
+# Without limiting anything contained in the foregoing, this file,
+# which is part of MySQL Connector/Python, is also subject to the
+# Universal FOSS Exception, version 1.0, a copy of which can be found at
+# http://oss.oracle.com/licenses/universal-foss-exception.
+#
+# This program is distributed in the hope that it will be useful, but
+# WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
+# See the GNU General Public License, version 2.0, for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software Foundation, Inc.,
+# 51 Franklin St, Fifth Floor, Boston, MA 02110-1301  USA
+
+"""Implementation of MySQL Authentication Plugin."""
+
+import hashlib
+import struct
+
+from .compat import PY3, UNICODE_TYPES, hexlify
+
+
+def xor_string(hash1, hash2, hash_size):
+    """Encrypt/Decrypt function used for password encryption in
+    authentication, using a simple XOR.
+
+    Args:
+        hash1 (str): The first hash.
+        hash2 (str): The second hash.
+
+    Returns:
+        str: A string with the xor applied.
+    """
+    if PY3:
+        xored = [h1 ^ h2 for (h1, h2) in zip(hash1, hash2)]
+    else:
+        xored = [ord(h1) ^ ord(h2) for (h1, h2) in zip(hash1, hash2)]
+    return struct.pack("{0}B".format(hash_size), *xored)
+
+
+class BaseAuthPlugin(object):
+    """Base class for implementing the authentication plugins."""
+    def __init__(self, username=None, password=None):
+        self._username = username
+        self._password = password
+
+    def name(self):
+        """Returns the plugin name.
+
+        Returns:
+            str: The plugin name.
+        """
+        raise NotImplementedError
+
+    def auth_name(self):
+        """Returns the authentication name.
+
+        Returns:
+            str: The authentication name.
+        """
+        raise NotImplementedError
+
+
+class MySQL41AuthPlugin(BaseAuthPlugin):
+    """Class implementing the MySQL Native Password authentication plugin."""
+    def name(self):
+        """Returns the plugin name.
+
+        Returns:
+            str: The plugin name.
+        """
+        return "MySQL 4.1 Authentication Plugin"
+
+    def auth_name(self):
+        """Returns the authentication name.
+
+        Returns:
+            str: The authentication name.
+        """
+        return "MYSQL41"
+
+    def auth_data(self, data):
+        """Hashing for MySQL 4.1 authentication.
+
+        Args:
+            data (str): The authentication data.
+
+        Returns:
+            str: The authentication response.
+        """
+        if self._password:
+            password = self._password.encode("utf-8") \
+                if isinstance(self._password, UNICODE_TYPES) else self._password
+            hash1 = hashlib.sha1(password).digest()
+            hash2 = hashlib.sha1(hash1).digest()
+            xored = xor_string(hash1, hashlib.sha1(data + hash2).digest(), 20)
+            return "{0}\0{1}\0*{2}\0".format("", self._username, hexlify(xored))
+        return "{0}\0{1}\0".format("", self._username)
+
+
+class PlainAuthPlugin(BaseAuthPlugin):
+    """Class implementing the MySQL Plain authentication plugin."""
+    def name(self):
+        """Returns the plugin name.
+
+        Returns:
+            str: The plugin name.
+        """
+        return "Plain Authentication Plugin"
+
+    def auth_name(self):
+        """Returns the authentication name.
+
+        Returns:
+            str: The authentication name.
+        """
+        return "PLAIN"
+
+    def auth_data(self):
+        """Returns the authentication data.
+
+        Returns:
+            str: The authentication data.
+        """
+        password = self._password.encode("utf-8") \
+            if isinstance(self._password, UNICODE_TYPES) and not PY3 \
+               else self._password
+        return "\0{0}\0{1}".format(self._username, password)
+
+
+class Sha256MemoryAuthPlugin(BaseAuthPlugin):
+    """Class implementing the SHA256_MEMORY authentication plugin."""
+    def name(self):
+        """Returns the plugin name.
+
+        Returns:
+            str: The plugin name.
+        """
+        return "SHA256_MEMORY Authentication Plugin"
+
+    def auth_name(self):
+        """Returns the authentication name.
+
+        Returns:
+            str: The authentication name.
+        """
+        return "SHA256_MEMORY"
+
+    def auth_data(self, data):
+        """Hashing for SHA256_MEMORY authentication.
+
+        The scramble is of the form:
+            SHA256(SHA256(SHA256(PASSWORD)),NONCE) XOR SHA256(PASSWORD)
+
+        Args:
+            data (str): The authentication data.
+
+        Returns:
+            str: The authentication response.
+        """
+        password = self._password.encode("utf-8") \
+            if isinstance(self._password, UNICODE_TYPES) else self._password
+        hash1 = hashlib.sha256(password).digest()
+        hash2 = hashlib.sha256(hashlib.sha256(hash1).digest() + data).digest()
+        xored = xor_string(hash2, hash1, 32)
+        return "\0{0}\0{1}".format(self._username, hexlify(xored))