#include #include "proxysql.h" #include "cpp.h" #include "re2/re2.h" #include "re2/regexp.h" #include "MySQL_PreparedStatement.h" #include "MySQL_Data_Stream.h" #include "MySQL_Authentication.hpp" #include "MySQL_LDAP_Authentication.hpp" #include "MySQL_Variables.h" #include //#include extern MySQL_Authentication *GloMyAuth; extern MySQL_LDAP_Authentication *GloMyLdapAuth; extern MySQL_Threads_Handler *GloMTH; #ifdef PROXYSQLCLICKHOUSE extern ClickHouse_Authentication *GloClickHouseAuth; #endif /* PROXYSQLCLICKHOUSE */ #ifdef max_allowed_packet #undef max_allowed_packet #endif //#define RESULTSET_BUFLEN 16300 #ifndef CLIENT_PLUGIN_AUTH_LENENC_CLIENT_DATA #define CLIENT_PLUGIN_AUTH_LENENC_CLIENT_DATA 0x00200000 #endif #include "proxysql_find_charset.h" #ifdef DEBUG static void __dump_pkt(const char *func, unsigned char *_ptr, unsigned int len) { if (GloVars.global.gdbg==0) return; if (GloVars.global.gdbg_lvl[PROXY_DEBUG_MYSQL_PROTOCOL].verbosity < 8 ) return; unsigned int i; fprintf(stderr,"DUMP %d bytes FROM %s\n", len, func); for(i = 0; i < len; i++) { if(isprint(_ptr[i])) fprintf(stderr,"%c", _ptr[i]); else fprintf(stderr,"."); if (i>0 && (i%16==15 || i==len-1)) { unsigned int j; if (i%16!=15) { j=15-i%16; while (j--) fprintf(stderr," "); } fprintf(stderr," --- "); for (j=(i==len-1 ? ((int)(i/16))*16 : i-15 ) ; j<=i; j++) { fprintf(stderr,"%02x ", _ptr[j]); } fprintf(stderr,"\n"); } } fprintf(stderr,"\n\n"); } #endif char *sha1_pass_hex(char *sha1_pass) { if (sha1_pass==NULL) return NULL; char *buff=(char *)malloc(SHA_DIGEST_LENGTH*2+2); buff[0]='*'; buff[SHA_DIGEST_LENGTH*2+1]='\0'; int i; uint8_t a = 0; for (i=0;iseed1= (rand_st->seed1*3+rand_st->seed2) % rand_st->max_value; rand_st->seed2= (rand_st->seed1+rand_st->seed2+33) % rand_st->max_value; return (((double) rand_st->seed1) / rand_st->max_value_dbl); } void proxy_create_random_string(char *_to, uint length, struct rand_struct *rand_st) { unsigned char * to = (unsigned char *)_to; int rc = 0; uint i; rc = RAND_bytes((unsigned char *)to,length); #ifdef DEBUG if (rc==1) { // For code coverage (to test the following code and other function) // in DEBUG mode we pretend that RAND_bytes() fails 1% of the time if(rand()%100==0) { rc=0; } } #endif // DEBUG if (rc!=1) { for (i=0; i 127) { *to -= 128; } if (*to == 0) { *to = 'a'; } to++; } } *to= '\0'; } static inline int write_encoded_length(unsigned char *p, uint64_t val, uint8_t len, char prefix) { if (len==1) { *p=(char)val; return 1; } *p=prefix; p++; memcpy(p,&val,len-1); return len; } static inline int write_encoded_length_and_string(unsigned char *p, uint64_t val, uint8_t len, char prefix, char *string) { int l=write_encoded_length(p,val,len,prefix); if (val) { memcpy(p+l,string,val); } return l+val; } void proxy_compute_sha1_hash_multi(uint8_t *digest, const char *buf1, int len1, const char *buf2, int len2) { PROXY_TRACE(); const EVP_MD *evp_digest = EVP_get_digestbyname("sha1"); assert(evp_digest != NULL); EVP_MD_CTX *ctx = EVP_MD_CTX_new(); EVP_MD_CTX_init(ctx); EVP_DigestInit_ex(ctx, evp_digest, NULL); EVP_DigestUpdate(ctx, buf1, len1); EVP_DigestUpdate(ctx, buf2, len2); unsigned int olen = 0; EVP_DigestFinal(ctx, digest, &olen); EVP_MD_CTX_free(ctx); } void proxy_compute_sha1_hash(uint8_t *digest, const char *buf, int len) { PROXY_TRACE(); const EVP_MD *evp_digest = EVP_get_digestbyname("sha1"); assert(evp_digest != NULL); EVP_MD_CTX *ctx = EVP_MD_CTX_new(); EVP_MD_CTX_init(ctx); EVP_DigestInit_ex(ctx, evp_digest, NULL); EVP_DigestUpdate(ctx, buf, len); unsigned int olen = 0; EVP_DigestFinal(ctx, digest, &olen); EVP_MD_CTX_free(ctx); } void proxy_compute_two_stage_sha1_hash(const char *password, size_t pass_len, uint8_t *hash_stage1, uint8_t *hash_stage2) { proxy_compute_sha1_hash(hash_stage1, password, pass_len); proxy_compute_sha1_hash(hash_stage2, (const char *) hash_stage1, SHA_DIGEST_LENGTH); } void proxy_my_crypt(char *to, const uint8_t *s1, const uint8_t *s2, uint len) { const uint8_t *s1_end= s1 + len; while (s1 < s1_end) *to++= *s1++ ^ *s2++; } unsigned char decode_char(char x) { if (x >= '0' && x <= '9') return (x - 0x30); else if (x >= 'A' && x <= 'F') return(x - 0x37); else if (x >= 'a' && x <= 'f') return(x - 0x57); else { proxy_error("Invalid char"); return 0; } } void unhex_pass(uint8_t *out, const char *in) { int i=0; for (i=0;i(); proxy_info("%d:%s(): Attributes for user %s: %s . Spiffe_id: %s\n" , __line, __func, user, attributes, spiffe_val.c_str()); } else { proxy_info("%d:%s(): Attributes for user %s: %s\n" , __line, __func, user, attributes); } } } #endif MySQL_Prepared_Stmt_info::MySQL_Prepared_Stmt_info(unsigned char *pkt, unsigned int length) { pkt += 5; statement_id = CPY4(pkt); pkt += sizeof(uint32_t); num_columns = CPY2(pkt); pkt += sizeof(uint16_t); num_params = CPY2(pkt); pkt += sizeof(uint16_t); pkt++; // reserved_1 warning_count = CPY2(pkt); // fprintf(stderr,"Generating prepared statement with id=%d, cols=%d, params=%d, warns=%d\n", statement_id, num_columns, num_params, warning_count); pending_num_columns=num_columns; pending_num_params=num_params; } void MySQL_Protocol::init(MySQL_Data_Stream **__myds, MySQL_Connection_userinfo *__userinfo, MySQL_Session *__sess) { myds=__myds; userinfo=__userinfo; sess=__sess; current_PreStmt=NULL; } static unsigned char protocol_version=10; static uint16_t server_status=SERVER_STATUS_AUTOCOMMIT; bool MySQL_Protocol::generate_statistics_response(bool send, void **ptr, unsigned int *len) { // FIXME : this function generates a not useful string. It is a placeholder for now char buf1[1000]; unsigned long long t1=monotonic_time(); sprintf(buf1,"Uptime: %llu Threads: %d Questions: %llu Slow queries: %llu", (t1-GloVars.global.start_time)/1000/1000, MyHGM->status.client_connections , GloMTH->get_status_variable(st_var_queries,p_th_counter::questions) , GloMTH->get_status_variable(st_var_queries_slow,p_th_counter::slow_queries) ); unsigned char statslen=strlen(buf1); mysql_hdr myhdr; myhdr.pkt_id=1; myhdr.pkt_length=statslen; unsigned int size=myhdr.pkt_length+sizeof(mysql_hdr); unsigned char *_ptr=(unsigned char *)l_alloc(size); memcpy(_ptr, &myhdr, sizeof(mysql_hdr)); int l=sizeof(mysql_hdr); memcpy(_ptr+l,buf1,statslen); if (send==true) { (*myds)->PSarrayOUT->add((void *)_ptr,size); } if (len) { *len=size; } if (ptr) { *ptr=(void *)_ptr; } #ifdef DEBUG if (dump_pkt) { __dump_pkt(__func__,_ptr,size); } #endif return true; } bool MySQL_Protocol::generate_pkt_EOF(bool send, void **ptr, unsigned int *len, uint8_t sequence_id, uint16_t warnings, uint16_t status, MySQL_ResultSet *myrs) { if ((*myds)->sess->mirror==true) { return true; } mysql_hdr myhdr; myhdr.pkt_id=sequence_id; myhdr.pkt_length=5; unsigned int size=myhdr.pkt_length+sizeof(mysql_hdr); unsigned char *_ptr = NULL; if (myrs == NULL) { _ptr = (unsigned char *)l_alloc(size); } else { _ptr = myrs->buffer + myrs->buffer_used; myrs->buffer_used += size; } memcpy(_ptr, &myhdr, sizeof(mysql_hdr)); int l=sizeof(mysql_hdr); _ptr[l]=0xfe; l++; int16_t internal_status = status; if (sess) { switch (sess->session_type) { case PROXYSQL_SESSION_SQLITE: case PROXYSQL_SESSION_ADMIN: case PROXYSQL_SESSION_STATS: internal_status |= SERVER_STATUS_NO_BACKSLASH_ESCAPES; break; default: break; } } if (*myds && (*myds)->myconn) { if ((*myds)->myconn->options.no_backslash_escapes) { internal_status |= SERVER_STATUS_NO_BACKSLASH_ESCAPES; } (*myds)->pkt_sid=sequence_id; } memcpy(_ptr+l, &warnings, sizeof(uint16_t)); l+=sizeof(uint16_t); memcpy(_ptr+l, &internal_status, sizeof(uint16_t)); if (send==true) { (*myds)->PSarrayOUT->add((void *)_ptr,size); switch ((*myds)->DSS) { case STATE_COLUMN_DEFINITION: (*myds)->DSS=STATE_EOF1; break; case STATE_ROW: (*myds)->DSS=STATE_EOF2; break; default: //assert(0); break; } } if (len) { *len=size; } if (ptr) { *ptr=(void *)_ptr; } #ifdef DEBUG if (dump_pkt) { __dump_pkt(__func__,_ptr,size); } #endif if (*myds) { (*myds)->pkt_sid=sequence_id; } return true; } bool MySQL_Protocol::generate_pkt_ERR(bool send, void **ptr, unsigned int *len, uint8_t sequence_id, uint16_t error_code, char *sql_state, const char *sql_message, bool track) { if ((*myds)->sess->mirror==true) { return true; } mysql_hdr myhdr; uint32_t sql_message_len=( sql_message ? strlen(sql_message) : 0 ); myhdr.pkt_id=sequence_id; myhdr.pkt_length=1+sizeof(uint16_t)+1+5+sql_message_len; unsigned int size=myhdr.pkt_length+sizeof(mysql_hdr); unsigned char *_ptr=(unsigned char *)l_alloc(size); memcpy(_ptr, &myhdr, sizeof(mysql_hdr)); int l=sizeof(mysql_hdr); _ptr[l]=0xff; l++; memcpy(_ptr+l, &error_code, sizeof(uint16_t)); l+=sizeof(uint16_t); _ptr[l]='#'; l++; memcpy(_ptr+l, sql_state, 5); l+=5; if (sql_message) memcpy(_ptr+l, sql_message, sql_message_len); if (send==true) { (*myds)->PSarrayOUT->add((void *)_ptr,size); switch ((*myds)->DSS) { case STATE_CLIENT_HANDSHAKE: case STATE_QUERY_SENT_DS: case STATE_QUERY_SENT_NET: case STATE_ERR: (*myds)->DSS=STATE_ERR; break; case STATE_OK: break; case STATE_SLEEP: if ((*myds)->sess->session_fast_forward==true) { // see issue #733 break; } default: // LCOV_EXCL_START assert(0); // LCOV_EXCL_STOP } } if (len) { *len=size; } if (ptr) { *ptr=(void *)_ptr; } #ifdef DEBUG if (dump_pkt) { __dump_pkt(__func__,_ptr,size); } #endif if (track) if (*myds) if ((*myds)->sess) if ((*myds)->sess->thread) (*myds)->sess->thread->status_variables.stvar[st_var_generated_pkt_err]++; if (*myds) { (*myds)->pkt_sid=sequence_id; } return true; } bool MySQL_Protocol::generate_pkt_OK(bool send, void **ptr, unsigned int *len, uint8_t sequence_id, unsigned int affected_rows, uint64_t last_insert_id, uint16_t status, uint16_t warnings, char *msg, bool eof_identifier) { if ((*myds)->sess->mirror==true) { return true; } char affected_rows_prefix; uint8_t affected_rows_len=mysql_encode_length(affected_rows, &affected_rows_prefix); char last_insert_id_prefix; uint8_t last_insert_id_len=mysql_encode_length(last_insert_id, &last_insert_id_prefix); uint32_t msg_len=( msg ? strlen(msg) : 0 ); char msg_prefix; uint8_t msg_len_len=mysql_encode_length(msg_len, &msg_prefix); bool client_session_track=false; //char gtid_buf[128]; char gtid_prefix; uint8_t gtid_len=0; uint8_t gtid_len_len=0; mysql_hdr myhdr; myhdr.pkt_id=sequence_id; myhdr.pkt_length=1+affected_rows_len+last_insert_id_len+sizeof(uint16_t)+sizeof(uint16_t)+msg_len; if (msg_len) myhdr.pkt_length+=msg_len_len; if (*myds && (*myds)->myconn) { if ((*myds)->myconn->options.client_flag & CLIENT_SESSION_TRACKING) { if (mysql_thread___client_session_track_gtid) { if (sess) { if (sess->gtid_hid >= 0) { if (msg_len == 0) { myhdr.pkt_length++; } client_session_track=true; gtid_len = strlen(sess->gtid_buf); gtid_len_len = mysql_encode_length(gtid_len, >id_prefix); myhdr.pkt_length += gtid_len_len; myhdr.pkt_length += gtid_len; myhdr.pkt_length += 4; // headers related to GTID } } } } } unsigned int size=myhdr.pkt_length+sizeof(mysql_hdr); unsigned char *_ptr=(unsigned char *)l_alloc(size); memcpy(_ptr, &myhdr, sizeof(mysql_hdr)); int l=sizeof(mysql_hdr); /* * Use 0xFE packet header if eof_identifier is true. * OK packet with 0xFE replaces EOF packet for clients * supporting CLIENT_DEPRECATE_EOF flag */ if (eof_identifier) _ptr[l]=0xFE; else _ptr[l]=0x00; l++; l+=write_encoded_length(_ptr+l, affected_rows, affected_rows_len, affected_rows_prefix); l+=write_encoded_length(_ptr+l, last_insert_id, last_insert_id_len, last_insert_id_prefix); int16_t internal_status = status; if (sess) { switch (sess->session_type) { case PROXYSQL_SESSION_SQLITE: case PROXYSQL_SESSION_ADMIN: case PROXYSQL_SESSION_STATS: internal_status |= SERVER_STATUS_NO_BACKSLASH_ESCAPES; break; default: break; } if (sess->session_type == PROXYSQL_SESSION_MYSQL) { sess->CurrentQuery.have_affected_rows = true; // if affected rows is set, last_insert_id is set too sess->CurrentQuery.affected_rows = affected_rows; sess->CurrentQuery.last_insert_id = last_insert_id; } } if (*myds && (*myds)->myconn) { if ((*myds)->myconn->options.no_backslash_escapes) { internal_status |= SERVER_STATUS_NO_BACKSLASH_ESCAPES; } } if (gtid_len == 0) { // Remove 'SERVER_SESSION_STATE_CHANGED', since we don't track this info unless GTID related internal_status &= ~SERVER_SESSION_STATE_CHANGED; } memcpy(_ptr+l, &internal_status, sizeof(uint16_t)); l+=sizeof(uint16_t); memcpy(_ptr+l, &warnings, sizeof(uint16_t)); l+=sizeof(uint16_t); if (msg && strlen(msg)) { l+=write_encoded_length(_ptr+l, msg_len, msg_len_len, msg_prefix); memcpy(_ptr+l, msg, msg_len); } l+=msg_len; if (client_session_track == true) { if (msg_len == 0) { _ptr[l]=0x00; l++; } if (gtid_len) { unsigned char gtid_prefix_h1 = gtid_len+2; unsigned char state_change_prefix = gtid_prefix_h1+2; _ptr[l] = state_change_prefix; l++; _ptr[l]=0x03; l++; // SESSION_TRACK_GTIDS _ptr[l] = gtid_prefix_h1; l++; _ptr[l]=0x00; l++; // l+=write_encoded_length(_ptr+l, gtid_len, gtid_len_len, gtid_prefix); // overcomplicated _ptr[l] = gtid_len; l++; memcpy(_ptr+l, sess->gtid_buf, gtid_len); } } if (send==true) { (*myds)->PSarrayOUT->add((void *)_ptr,size); switch ((*myds)->DSS) { case STATE_CLIENT_HANDSHAKE: case STATE_QUERY_SENT_DS: case STATE_QUERY_SENT_NET: (*myds)->DSS=STATE_OK; break; case STATE_OK: break; case STATE_ROW: if (eof_identifier) (*myds)->DSS=STATE_EOF2; else // LCOV_EXCL_START assert(0); // LCOV_EXCL_STOP break; default: // LCOV_EXCL_START assert(0); // LCOV_EXCL_STOP } } if (len) { *len=size; } if (ptr) { *ptr=(void *)_ptr; } #ifdef DEBUG if (dump_pkt) { __dump_pkt(__func__,_ptr,size); } #endif if (*myds) { (*myds)->pkt_sid=sequence_id; } return true; } bool MySQL_Protocol::generate_pkt_column_count(bool send, void **ptr, unsigned int *len, uint8_t sequence_id, uint64_t count, MySQL_ResultSet *myrs) { if ((*myds)->sess->mirror==true) { return true; } char count_prefix=0; uint8_t count_len=mysql_encode_length(count, &count_prefix); mysql_hdr myhdr; myhdr.pkt_id=sequence_id; myhdr.pkt_length=count_len; unsigned int size=myhdr.pkt_length+sizeof(mysql_hdr); // unsigned char *_ptr=(unsigned char *)l_alloc(size); unsigned char *_ptr = NULL; if (myrs) { if ( size<=(RESULTSET_BUFLEN-myrs->buffer_used) ) { // there is space in the buffer, add the data to it _ptr = myrs->buffer + myrs->buffer_used; myrs->buffer_used += size; } else { // there is no space in the buffer, we flush the buffer and recreate it myrs->buffer_to_PSarrayOut(); // now we can check again if there is space in the buffer if ( size<=(RESULTSET_BUFLEN-myrs->buffer_used) ) { // there is space in the NEW buffer, add the data to it _ptr = myrs->buffer + myrs->buffer_used; myrs->buffer_used += size; } else { // a new buffer is not enough to store the new row _ptr=(unsigned char *)l_alloc(size); } } } else { _ptr=(unsigned char *)l_alloc(size); } memcpy(_ptr, &myhdr, sizeof(mysql_hdr)); int l=sizeof(mysql_hdr); l+=write_encoded_length(_ptr+l, count, count_len, count_prefix); if (send==true) { (*myds)->PSarrayOUT->add((void *)_ptr,size); } if (len) { *len=size; } if (ptr) { *ptr=(void *)_ptr; } #ifdef DEBUG if (dump_pkt) { __dump_pkt(__func__,_ptr,size); } #endif if (myrs) { if (_ptr >= myrs->buffer && _ptr < myrs->buffer+RESULTSET_BUFLEN) { // we are writing within the buffer, do not add to PSarrayOUT } else { // we are writing outside the buffer, add to PSarrayOUT myrs->PSarrayOUT.add(_ptr,size); } } return true; } // this is an optimized version of generate_pkt_field() that uses MYSQL_FIELD // in order to avoid recomputing the length of the various fields // it also cannot handle field_list bool MySQL_Protocol::generate_pkt_field2(void **ptr, unsigned int *len, uint8_t sequence_id, MYSQL_FIELD *field, MySQL_ResultSet *myrs) { if ((*myds)->sess->mirror==true) { return true; } //char *def=(char *)"def"; //uint32_t def_strlen = field->catalog_length; char def_prefix; uint8_t def_len=mysql_encode_length(field->catalog_length, &def_prefix); //uint32_t schema_strlen=strlen(schema); char schema_prefix; uint8_t schema_len=mysql_encode_length(field->db_length, &schema_prefix); //uint32_t table_strlen=strlen(table); char table_prefix; uint8_t table_len=mysql_encode_length(field->table_length, &table_prefix); //uint32_t org_table_strlen=strlen(org_table); char org_table_prefix; uint8_t org_table_len=mysql_encode_length(field->org_table_length, &org_table_prefix); //uint32_t name_strlen=strlen(name); char name_prefix; uint8_t name_len=mysql_encode_length(field->name_length, &name_prefix); //uint32_t org_name_strlen=strlen(org_name); char org_name_prefix; uint8_t org_name_len=mysql_encode_length(field->org_name_length, &org_name_prefix); /* char defvalue_length_prefix; uint8_t defvalue_length_len=0; if (field_list) { defvalue_length_len=mysql_encode_length(field->def_length, &defvalue_length_prefix); } */ mysql_hdr myhdr; myhdr.pkt_id=sequence_id; myhdr.pkt_length = def_len + field->catalog_length + schema_len + field->db_length + table_len + field->table_length + org_table_len + field->org_table_length + name_len + field->name_length + org_name_len + field->org_name_length + 1 // filler + sizeof(uint16_t) // charset + sizeof(uint32_t) // column_length + sizeof(uint8_t) // type + sizeof(uint16_t) // flags + sizeof(uint8_t) // decimals + 2; // filler /* if (field_list) { myhdr.pkt_length += defvalue_length_len + strlen(defvalue); } */ unsigned int size=myhdr.pkt_length+sizeof(mysql_hdr); unsigned char *_ptr = NULL; /* myrs always passed if (myrs) { */ if ( size<=(RESULTSET_BUFLEN-myrs->buffer_used) ) { // there is space in the buffer, add the data to it _ptr = myrs->buffer + myrs->buffer_used; myrs->buffer_used += size; } else { // there is no space in the buffer, we flush the buffer and recreate it myrs->buffer_to_PSarrayOut(); // now we can check again if there is space in the buffer if ( size<=(RESULTSET_BUFLEN-myrs->buffer_used) ) { // there is space in the NEW buffer, add the data to it _ptr = myrs->buffer + myrs->buffer_used; myrs->buffer_used += size; } else { // a new buffer is not enough to store the new row _ptr=(unsigned char *)l_alloc(size); } } /* myrs always passed } else { _ptr=(unsigned char *)l_alloc(size); } */ memcpy(_ptr, &myhdr, sizeof(mysql_hdr)); int l=sizeof(mysql_hdr); l+=write_encoded_length_and_string(_ptr+l, field->catalog_length, def_len, def_prefix, field->catalog); l+=write_encoded_length_and_string(_ptr+l, field->db_length, schema_len, schema_prefix, field->db); l+=write_encoded_length_and_string(_ptr+l, field->table_length, table_len, table_prefix, field->table); l+=write_encoded_length_and_string(_ptr+l, field->org_table_length, org_table_len, org_table_prefix, field->org_table); l+=write_encoded_length_and_string(_ptr+l, field->name_length, name_len, name_prefix, field->name); l+=write_encoded_length_and_string(_ptr+l, field->org_name_length, org_name_len, org_name_prefix, field->org_name); _ptr[l]=0x0c; l++; memcpy(_ptr+l,&field->charsetnr,sizeof(uint16_t)); l+=sizeof(uint16_t); memcpy(_ptr+l,&field->length,sizeof(uint32_t)); l+=sizeof(uint32_t); _ptr[l]=field->type; l++; memcpy(_ptr+l,&field->flags,sizeof(uint16_t)); l+=sizeof(uint16_t); _ptr[l]=field->decimals; l++; _ptr[l]=0x00; l++; _ptr[l]=0x00; l++; if (len) { *len=size; } if (ptr) { *ptr=(void *)_ptr; } #ifdef DEBUG if (dump_pkt) { __dump_pkt(__func__,_ptr,size); } #endif /* myrs always passed if (myrs) { */ if (_ptr >= myrs->buffer && _ptr < myrs->buffer+RESULTSET_BUFLEN) { // we are writing within the buffer, do not add to PSarrayOUT } else { // we are writing outside the buffer, add to PSarrayOUT myrs->PSarrayOUT.add(_ptr,size); } /* myrs always passed } */ return true; } bool MySQL_Protocol::generate_pkt_field(bool send, void **ptr, unsigned int *len, uint8_t sequence_id, char *schema, char *table, char *org_table, char *name, char *org_name, uint16_t charset, uint32_t column_length, uint8_t type, uint16_t flags, uint8_t decimals, bool field_list, uint64_t defvalue_length, char *defvalue, MySQL_ResultSet *myrs) { if ((*myds)->sess->mirror==true) { return true; } char *def=(char *)"def"; uint32_t def_strlen=strlen(def); char def_prefix; uint8_t def_len=mysql_encode_length(def_strlen, &def_prefix); uint32_t schema_strlen=strlen(schema); char schema_prefix; uint8_t schema_len=mysql_encode_length(schema_strlen, &schema_prefix); uint32_t table_strlen=strlen(table); char table_prefix; uint8_t table_len=mysql_encode_length(table_strlen, &table_prefix); uint32_t org_table_strlen=strlen(org_table); char org_table_prefix; uint8_t org_table_len=mysql_encode_length(org_table_strlen, &org_table_prefix); uint32_t name_strlen=strlen(name); char name_prefix; uint8_t name_len=mysql_encode_length(name_strlen, &name_prefix); uint32_t org_name_strlen=strlen(org_name); char org_name_prefix; uint8_t org_name_len=mysql_encode_length(org_name_strlen, &org_name_prefix); char defvalue_length_prefix; uint8_t defvalue_length_len=mysql_encode_length(defvalue_length, &defvalue_length_prefix); mysql_hdr myhdr; myhdr.pkt_id=sequence_id; myhdr.pkt_length = def_len + def_strlen + schema_len + schema_strlen + table_len + table_strlen + org_table_len + org_table_strlen + name_len + name_strlen + org_name_len + org_name_strlen + 1 // filler + sizeof(uint16_t) // charset + sizeof(uint32_t) // column_length + sizeof(uint8_t) // type + sizeof(uint16_t) // flags + sizeof(uint8_t) // decimals + 2; // filler if (field_list) { myhdr.pkt_length += defvalue_length_len + strlen(defvalue); } //else myhdr.pkt_length++; unsigned int size=myhdr.pkt_length+sizeof(mysql_hdr); unsigned char *_ptr = NULL; if (myrs) { if ( size<=(RESULTSET_BUFLEN-myrs->buffer_used) ) { // there is space in the buffer, add the data to it _ptr = myrs->buffer + myrs->buffer_used; myrs->buffer_used += size; } else { // there is no space in the buffer, we flush the buffer and recreate it myrs->buffer_to_PSarrayOut(); // now we can check again if there is space in the buffer if ( size<=(RESULTSET_BUFLEN-myrs->buffer_used) ) { // there is space in the NEW buffer, add the data to it _ptr = myrs->buffer + myrs->buffer_used; myrs->buffer_used += size; } else { // a new buffer is not enough to store the new row _ptr=(unsigned char *)l_alloc(size); } } } else { _ptr=(unsigned char *)l_alloc(size); } memcpy(_ptr, &myhdr, sizeof(mysql_hdr)); int l=sizeof(mysql_hdr); l+=write_encoded_length_and_string(_ptr+l, def_strlen, def_len, def_prefix, def); l+=write_encoded_length_and_string(_ptr+l, schema_strlen, schema_len, schema_prefix, schema); l+=write_encoded_length_and_string(_ptr+l, table_strlen, table_len, table_prefix, table); l+=write_encoded_length_and_string(_ptr+l, org_table_strlen, org_table_len, org_table_prefix, org_table); l+=write_encoded_length_and_string(_ptr+l, name_strlen, name_len, name_prefix, name); l+=write_encoded_length_and_string(_ptr+l, org_name_strlen, org_name_len, org_name_prefix, org_name); _ptr[l]=0x0c; l++; memcpy(_ptr+l,&charset,sizeof(uint16_t)); l+=sizeof(uint16_t); memcpy(_ptr+l,&column_length,sizeof(uint32_t)); l+=sizeof(uint32_t); _ptr[l]=type; l++; memcpy(_ptr+l,&flags,sizeof(uint16_t)); l+=sizeof(uint16_t); _ptr[l]=decimals; l++; _ptr[l]=0x00; l++; _ptr[l]=0x00; l++; if (field_list) { l+=write_encoded_length_and_string(_ptr+l, strlen(defvalue), defvalue_length_len, defvalue_length_prefix, defvalue); } //else _ptr[l]=0x00; //else fprintf(stderr,"current deflen=%d, defstrlen=%d, namelen=%d, namestrlen=%d, l=%d\n", def_len, def_strlen, name_len, name_strlen, l); if (send==true) { (*myds)->PSarrayOUT->add((void *)_ptr,size); } if (len) { *len=size; } if (ptr) { *ptr=(void *)_ptr; } #ifdef DEBUG if (dump_pkt) { __dump_pkt(__func__,_ptr,size); } #endif if (myrs) { if (_ptr >= myrs->buffer && _ptr < myrs->buffer+RESULTSET_BUFLEN) { // we are writing within the buffer, do not add to PSarrayOUT } else { // we are writing outside the buffer, add to PSarrayOUT myrs->PSarrayOUT.add(_ptr,size); } } return true; } // FIXME FIXME function not completed yet! // see https://dev.mysql.com/doc/internals/en/com-stmt-prepare-response.html bool MySQL_Protocol::generate_STMT_PREPARE_RESPONSE(uint8_t sequence_id, MySQL_STMT_Global_info *stmt_info, uint32_t _stmt_id) { uint8_t sid=sequence_id; uint16_t i; char *okpack=(char *)malloc(16); // first packet mysql_hdr hdr; hdr.pkt_id=sid; hdr.pkt_length=12; memcpy(okpack,&hdr,sizeof(mysql_hdr)); // copy header okpack[4]=0; okpack[13]=0; okpack[15]=0; pthread_rwlock_rdlock(&stmt_info->rwlock_); if (_stmt_id) { memcpy(okpack+5,&_stmt_id,sizeof(uint32_t)); } else { memcpy(okpack+5,&stmt_info->statement_id,sizeof(uint32_t)); } memcpy(okpack+9,&stmt_info->num_columns,sizeof(uint16_t)); memcpy(okpack+11,&stmt_info->num_params,sizeof(uint16_t)); memcpy(okpack+14,&stmt_info->warning_count,sizeof(uint16_t)); (*myds)->PSarrayOUT->add((void *)okpack,16); sid++; int setStatus = SERVER_STATUS_AUTOCOMMIT; if (myds) { setStatus = 0; unsigned int Trx_id = (*myds)->sess->FindOneActiveTransaction(); setStatus = (Trx_id >= 0 ? SERVER_STATUS_IN_TRANS : 0 ); if ((*myds)->sess->autocommit) setStatus += SERVER_STATUS_AUTOCOMMIT; } bool deprecate_eof_active = false; if (*myds && (*myds)->myconn) { if ((*myds)->myconn->options.client_flag & CLIENT_DEPRECATE_EOF) { deprecate_eof_active = true; } } if (stmt_info->num_params) { for (i=0; inum_params; i++) { generate_pkt_field(true,NULL,NULL,sid, (char *)"", (char *)"", (char *)"", (char *)"?", (char *)"", 63,0,253,128,0,false,0,NULL); // NOTE: charset is 63 = binary ! sid++; } if (!deprecate_eof_active) { generate_pkt_EOF(true,NULL,NULL,sid,0,setStatus); sid++; } } if (stmt_info->num_columns) { for (i=0; inum_columns; i++) { MYSQL_FIELD *fd=stmt_info->fields[i]; generate_pkt_field(true,NULL,NULL,sid, fd->db, fd->table, fd->org_table, fd->name, fd->org_name, fd->charsetnr, fd->length, fd->type, fd->flags, fd->decimals, false,0,NULL); sid++; } if (!deprecate_eof_active) { generate_pkt_EOF(true,NULL,NULL,sid,0,setStatus); sid++; } } pthread_rwlock_unlock(&stmt_info->rwlock_); return true; } bool MySQL_Protocol::generate_pkt_row(bool send, void **ptr, unsigned int *len, uint8_t sequence_id, int colnums, unsigned long *fieldslen, char **fieldstxt) { int col=0; int rowlen=0; for (col=0; colPSarrayOUT->add((void *)_ptr,size); } if (len) { *len=size; } if (ptr) { *ptr=(void *)_ptr; } #ifdef DEBUG if (dump_pkt) { __dump_pkt(__func__,_ptr,size); } #endif return true; } uint8_t MySQL_Protocol::generate_pkt_row3(MySQL_ResultSet *myrs, unsigned int *len, uint8_t sequence_id, int colnums, unsigned long *fieldslen, char **fieldstxt, unsigned long rl) { if ((*myds)->sess->mirror==true) { return true; } int col=0; unsigned long rowlen=0; uint8_t pkt_sid=sequence_id; if (rl == 0) { // if rl == 0 , we are using text protocol (legacy) therefore we need to compute the size of the row for (col=0; colbuffer_used) ) { // there is space in the buffer, add the data to it pkt.ptr = myrs->buffer + myrs->buffer_used; myrs->buffer_used += pkt.size; } else { // there is no space in the buffer, we flush the buffer and recreate it myrs->buffer_to_PSarrayOut(); // now we can check again if there is space in the buffer if ( pkt.size<=(RESULTSET_BUFLEN-myrs->buffer_used) ) { // there is space in the NEW buffer, add the data to it pkt.ptr = myrs->buffer + myrs->buffer_used; myrs->buffer_used += pkt.size; } else { // a new buffer is not enough to store the new row pkt.ptr=l_alloc(pkt.size); } } int l=sizeof(mysql_hdr); if (rl == 0) { for (col=0; col= myrs->buffer && pkt.ptr < myrs->buffer+RESULTSET_BUFLEN) { // we are writing within the buffer, do not add to PSarrayOUT } else { // we are writing outside the buffer, add to PSarrayOUT myrs->PSarrayOUT.add(pkt.ptr,pkt.size); } } else { unsigned int left=pkt.size; unsigned int copied=0; while (left>=(0xFFFFFF+sizeof(mysql_hdr))) { PtrSize_t pkt2; pkt2.size=0xFFFFFF+sizeof(mysql_hdr); pkt2.ptr=l_alloc(pkt2.size); memcpy((char *)pkt2.ptr+sizeof(mysql_hdr), (char *)pkt.ptr+sizeof(mysql_hdr)+copied, 0xFFFFFF); mysql_hdr myhdr; myhdr.pkt_id=pkt_sid; pkt_sid++; myhdr.pkt_length=0xFFFFFF; memcpy(pkt2.ptr, &myhdr, sizeof(mysql_hdr)); // we are writing a large packet (over 16MB), we assume we are always outside the buffer myrs->PSarrayOUT.add(pkt2.ptr,pkt2.size); copied+=0xFFFFFF; left-=0xFFFFFF; } PtrSize_t pkt2; pkt2.size=left; pkt2.ptr=l_alloc(pkt2.size); memcpy((char *)pkt2.ptr+sizeof(mysql_hdr), (char *)pkt.ptr+sizeof(mysql_hdr)+copied, left-sizeof(mysql_hdr)); mysql_hdr myhdr; myhdr.pkt_id=pkt_sid; myhdr.pkt_length=left-sizeof(mysql_hdr); memcpy(pkt2.ptr, &myhdr, sizeof(mysql_hdr)); // we are writing a large packet (over 16MB), we assume we are always outside the buffer myrs->PSarrayOUT.add(pkt2.ptr,pkt2.size); } if (len) { *len=pkt.size+(pkt_sid-sequence_id)*sizeof(mysql_hdr); } if (pkt.size >= (0xFFFFFF+sizeof(mysql_hdr))) { l_free(pkt.size,pkt.ptr); } return pkt_sid; } bool MySQL_Protocol::generate_pkt_auth_switch_request(bool send, void **ptr, unsigned int *len) { proxy_debug(PROXY_DEBUG_MYSQL_CONNECTION, 7, "Generating auth switch request pkt\n"); mysql_hdr myhdr; myhdr.pkt_id=2; if ((*myds)->encrypted) { myhdr.pkt_id++; } // Check if a 'COM_CHANGE_USER' Auth Switch is being performed in session if ((*myds)->sess->change_user_auth_switch) { myhdr.pkt_id=1; } switch((*myds)->switching_auth_type) { case 1: myhdr.pkt_length=1 // fe + (strlen("mysql_native_password")+1) + 20 // scramble + 1; // 00 break; case 2: myhdr.pkt_length=1 // fe + (strlen("mysql_clear_password")+1) + 1; // 00 break; default: // LCOV_EXCL_START assert(0); // LCOV_EXCL_STOP break; } unsigned int size=myhdr.pkt_length+sizeof(mysql_hdr); unsigned char *_ptr=(unsigned char *)malloc(size); memset(_ptr,0,size); memcpy(_ptr, &myhdr, sizeof(mysql_hdr)); int l; l=sizeof(mysql_hdr); _ptr[l]=0xfe; l++; //0xfe switch((*myds)->switching_auth_type) { case 1: memcpy(_ptr+l,"mysql_native_password",strlen("mysql_native_password")); l+=strlen("mysql_native_password"); _ptr[l]=0x00; l++; memcpy(_ptr+l, (*myds)->myconn->scramble_buff+0, 20); l+=20; break; case 2: memcpy(_ptr+l,"mysql_clear_password",strlen("mysql_clear_password")); l+=strlen("mysql_clear_password"); _ptr[l]=0x00; l++; break; default: // LCOV_EXCL_START assert(0); // LCOV_EXCL_STOP break; } _ptr[l]=0x00; //l+=1; //0x00 if (send==true) { (*myds)->PSarrayOUT->add((void *)_ptr,size); (*myds)->DSS=STATE_SERVER_HANDSHAKE; (*myds)->sess->status=CONNECTING_CLIENT; } if (len) { *len=size; } if (ptr) { *ptr=(void *)_ptr; } #ifdef DEBUG if (dump_pkt) { __dump_pkt(__func__,_ptr,size); } #endif return true; } bool MySQL_Protocol::generate_pkt_initial_handshake(bool send, void **ptr, unsigned int *len, uint32_t *_thread_id, bool deprecate_eof_active) { proxy_debug(PROXY_DEBUG_MYSQL_CONNECTION, 7, "Generating handshake pkt\n"); mysql_hdr myhdr; myhdr.pkt_id=0; myhdr.pkt_length=sizeof(protocol_version) + (strlen(mysql_thread___server_version)+1) + sizeof(uint32_t) // thread_id + 8 // scramble1 + 1 // 0x00 //+ sizeof(glovars.server_capabilities) //+ sizeof(glovars.server_language) //+ sizeof(glovars.server_status) + sizeof(mysql_thread___server_capabilities)/2 + sizeof(uint8_t) // charset in handshake is 1 byte + sizeof(server_status) + 3 // unknown stuff + 10 // filler + 12 // scramble2 + 1 // 0x00 + (strlen("mysql_native_password")+1); unsigned int size=myhdr.pkt_length+sizeof(mysql_hdr); unsigned char *_ptr=(unsigned char *)malloc(size); memset(_ptr,0,size); memcpy(_ptr, &myhdr, sizeof(mysql_hdr)); int l; l=sizeof(mysql_hdr); uint32_t thread_id=__sync_fetch_and_add(&glovars.thread_id,1); if (thread_id==0) { thread_id=__sync_fetch_and_add(&glovars.thread_id,1); // again! } *_thread_id=thread_id; rand_struct rand_st; //randominit(&rand_st,rand(),rand()); rand_st.max_value= 0x3FFFFFFFL; rand_st.max_value_dbl=0x3FFFFFFFL; rand_st.seed1=rand()%rand_st.max_value; rand_st.seed2=rand()%rand_st.max_value; memcpy(_ptr+l, &protocol_version, sizeof(protocol_version)); l+=sizeof(protocol_version); memcpy(_ptr+l, mysql_thread___server_version, strlen(mysql_thread___server_version)); l+=strlen(mysql_thread___server_version)+1; memcpy(_ptr+l, &thread_id, sizeof(uint32_t)); l+=sizeof(uint32_t); //#ifdef MARIADB_BASE_VERSION // proxy_create_random_string(myds->myconn->myconn.scramble_buff+0,8,(struct my_rnd_struct *)&rand_st); //#else proxy_create_random_string((*myds)->myconn->scramble_buff+0,8,(struct rand_struct *)&rand_st); //#endif int i; // for (i=0;i<8;i++) { // if ((*myds)->myconn->scramble_buff[i]==0) { // (*myds)->myconn->scramble_buff[i]='a'; // } // } memcpy(_ptr+l, (*myds)->myconn->scramble_buff+0, 8); l+=8; _ptr[l]=0x00; l+=1; //0x00 if (mysql_thread___have_compress) { mysql_thread___server_capabilities |= CLIENT_COMPRESS; } else { mysql_thread___server_capabilities &= ~CLIENT_COMPRESS; } if (mysql_thread___have_ssl) { mysql_thread___server_capabilities |= CLIENT_SSL; } else { mysql_thread___server_capabilities &= ~CLIENT_SSL; } mysql_thread___server_capabilities |= CLIENT_LONG_FLAG; mysql_thread___server_capabilities |= CLIENT_MYSQL | CLIENT_PLUGIN_AUTH | CLIENT_RESERVED; if (mysql_thread___enable_client_deprecate_eof) { mysql_thread___server_capabilities |= CLIENT_DEPRECATE_EOF; } else { mysql_thread___server_capabilities &= ~CLIENT_DEPRECATE_EOF; } (*myds)->myconn->options.server_capabilities=mysql_thread___server_capabilities; memcpy(_ptr+l,&mysql_thread___server_capabilities, sizeof(mysql_thread___server_capabilities)/2); l+=sizeof(mysql_thread___server_capabilities)/2; const MARIADB_CHARSET_INFO *ci = NULL; ci = proxysql_find_charset_collate(mysql_thread___default_variables[SQL_COLLATION_CONNECTION]); if (!ci) { // LCOV_EXCL_START proxy_error("Cannot find character set for name [%s]. Configuration error. Check [%s] global variable.\n", mysql_thread___default_variables[SQL_CHARACTER_SET], mysql_tracked_variables[SQL_CHARACTER_SET].internal_variable_name); assert(0); // LCOV_EXCL_STOP } uint8_t uint8_charset = ci->nr & 255; memcpy(_ptr+l,&uint8_charset, sizeof(uint8_charset)); l+=sizeof(uint8_charset); memcpy(_ptr+l,&server_status, sizeof(server_status)); l+=sizeof(server_status); uint32_t extended_capabilities = CLIENT_MULTI_RESULTS | CLIENT_MULTI_STATEMENTS | CLIENT_PS_MULTI_RESULTS | CLIENT_PLUGIN_AUTH | CLIENT_SESSION_TRACKING | CLIENT_REMEMBER_OPTIONS; // we conditionally reply the client specifying in 'server_capabilities' that // 'CLIENT_DEPRECATE_EOF' is available if explicitly enabled by 'mysql-enable_client_deprecate_eof' // variable. This is the first step of ensuring that client connections doesn't // enable 'CLIENT_DEPRECATE_EOF' unless explicitly stated by 'mysql-enable_client_deprecate_eof'. // Second step occurs during client handshake response (process_pkt_handshake_response). if (deprecate_eof_active && mysql_thread___enable_client_deprecate_eof) { extended_capabilities |= CLIENT_DEPRECATE_EOF; } // Copy the 'capability_flags_2' uint16_t upper_word = static_cast(extended_capabilities >> 16); memcpy(_ptr+l, static_cast(&upper_word), sizeof(upper_word)); l += sizeof(upper_word); // Copy the 'auth_plugin_data_len'. Hardcoded due to 'CLIENT_PLUGIN_AUTH' always enabled and reported // as 'mysql_native_password'. uint8_t auth_plugin_data_len = 21; memcpy(_ptr+l, &auth_plugin_data_len, sizeof(auth_plugin_data_len)); l += sizeof(auth_plugin_data_len); for (i=0;i<10; i++) { _ptr[l]=0x00; l++; } //filler //create_random_string(mypkt->data+l,12,(struct my_rnd_struct *)&rand_st); l+=12; //#ifdef MARIADB_BASE_VERSION // proxy_create_random_string(myds->myconn->myconn.scramble_buff+8,12,(struct my_rnd_struct *)&rand_st); //#else proxy_create_random_string((*myds)->myconn->scramble_buff+8,12,(struct rand_struct *)&rand_st); //#endif //create_random_string(scramble_buf+8,12,&rand_st); // for (i=8;i<20;i++) { // if ((*myds)->myconn->scramble_buff[i]==0) { // (*myds)->myconn->scramble_buff[i]='a'; // } // } memcpy(_ptr+l, (*myds)->myconn->scramble_buff+8, 12); l+=12; l+=1; //0x00 memcpy(_ptr+l,"mysql_native_password",strlen("mysql_native_password")); if (send==true) { (*myds)->PSarrayOUT->add((void *)_ptr,size); (*myds)->DSS=STATE_SERVER_HANDSHAKE; (*myds)->sess->status=CONNECTING_CLIENT; } if (len) { *len=size; } if (ptr) { *ptr=(void *)_ptr; } #ifdef DEBUG if (dump_pkt) { __dump_pkt(__func__,_ptr,size); } #endif return true; } bool MySQL_Protocol::process_pkt_auth_swich_response(unsigned char *pkt, unsigned int len) { bool ret=false; char *password=NULL; #ifdef DEBUG if (dump_pkt) { __dump_pkt(__func__,pkt,len); } #endif if (len!=sizeof(mysql_hdr)+20) { return ret; } mysql_hdr hdr; memcpy(&hdr,pkt,sizeof(mysql_hdr)); int default_hostgroup=-1; bool transaction_persistent; bool _ret_use_ssl=false; unsigned char pass[128]; memset(pass,0,128); pkt+=sizeof(mysql_hdr); memcpy(pass, pkt, 20); char reply[SHA_DIGEST_LENGTH+1]; reply[SHA_DIGEST_LENGTH]='\0'; void *sha1_pass=NULL; enum proxysql_session_type session_type = (*myds)->sess->session_type; if (session_type == PROXYSQL_SESSION_CLICKHOUSE) { #ifdef PROXYSQLCLICKHOUSE password=GloClickHouseAuth->lookup((char *)userinfo->username, USERNAME_FRONTEND, &_ret_use_ssl, &default_hostgroup, NULL, NULL, &transaction_persistent, NULL, NULL, &sha1_pass); #endif /* PROXYSQLCLICKHOUSE */ } else { password=GloMyAuth->lookup((char *)userinfo->username, USERNAME_FRONTEND, &_ret_use_ssl, &default_hostgroup, NULL, NULL, &transaction_persistent, NULL, NULL, &sha1_pass, NULL); } // FIXME: add support for default schema and fast forward , issues #255 and #256 // FIXME: not sure if we should also handle user_attributes *here* . For now we pass NULL (no change) if (password==NULL) { ret=false; } else { if (password[0]!='*') { // clear text password proxy_scramble(reply, (*myds)->myconn->scramble_buff, password); if (memcmp(reply, pass, SHA_DIGEST_LENGTH)==0) { ret=true; } } else { ret=proxy_scramble_sha1((char *)pass,(*myds)->myconn->scramble_buff,password+1, reply); if (ret) { if (sha1_pass==NULL) { // currently proxysql doesn't know any sha1_pass for that specific user, let's set it! GloMyAuth->set_SHA1((char *)userinfo->username, USERNAME_FRONTEND,reply); } if (userinfo->sha1_pass) free(userinfo->sha1_pass); userinfo->sha1_pass=sha1_pass_hex(reply); } } } if (sha1_pass) { free(sha1_pass); sha1_pass=NULL; } return ret; } bool MySQL_Protocol::verify_user_pass( enum proxysql_session_type session_type, const char* password, const char* user, const char* pass, int pass_len, const char* sha1_pass, const char* auth_plugin ) { bool ret = false; char reply[SHA_DIGEST_LENGTH+1]; reply[SHA_DIGEST_LENGTH]='\0'; int auth_plugin_id = 0; if (strncmp((char *)auth_plugin,(char *)"mysql_native_password",strlen((char *)"mysql_native_password"))==0) { auth_plugin_id = 1; } if (strncmp((char *)auth_plugin,(char *)"mysql_clear_password",strlen((char *)"mysql_clear_password"))==0) { auth_plugin_id = 2; } if (password[0]!='*') { // clear text password if (auth_plugin_id == 1) { // mysql_native_password proxy_scramble(reply, (*myds)->myconn->scramble_buff, password); if (memcmp(reply, pass, SHA_DIGEST_LENGTH)==0) { ret=true; } } else { // mysql_clear_password if (strncmp(password,(char *)pass,strlen(password))==0) { ret=true; } } } else { if (auth_plugin_id == 1) { if (session_type == PROXYSQL_SESSION_MYSQL || session_type == PROXYSQL_SESSION_SQLITE) { ret=proxy_scramble_sha1((char *)pass,(*myds)->myconn->scramble_buff,password+1, reply); if (ret) { if (sha1_pass==NULL) { GloMyAuth->set_SHA1((char *)user, USERNAME_FRONTEND,reply); } if (userinfo->sha1_pass) free(userinfo->sha1_pass); userinfo->sha1_pass=sha1_pass_hex(reply); } } } else { if (session_type == PROXYSQL_SESSION_MYSQL || session_type == PROXYSQL_SESSION_SQLITE || session_type == PROXYSQL_SESSION_ADMIN || session_type == PROXYSQL_SESSION_STATS) { proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , username='%s' , session_type=%d\n", (*myds), (*myds)->sess, user, session_type); uint8_t hash_stage1[SHA_DIGEST_LENGTH]; uint8_t hash_stage2[SHA_DIGEST_LENGTH]; SHA_CTX sha1_context; SHA1_Init(&sha1_context); SHA1_Update(&sha1_context, pass, pass_len); SHA1_Final(hash_stage1, &sha1_context); SHA1_Init(&sha1_context); SHA1_Update(&sha1_context,hash_stage1,SHA_DIGEST_LENGTH); SHA1_Final(hash_stage2, &sha1_context); // note that sha1_pass_hex() returns a new buffer char *double_hashed_password = sha1_pass_hex((char *)hash_stage2); if (strcasecmp(double_hashed_password,password)==0) { ret = true; if (sha1_pass==NULL) { GloMyAuth->set_SHA1((char *)user, USERNAME_FRONTEND,hash_stage1); } if (userinfo->sha1_pass) free(userinfo->sha1_pass); userinfo->sha1_pass=sha1_pass_hex((char *)hash_stage1); } else { ret = false; } free(double_hashed_password); } } } return ret; } bool MySQL_Protocol::process_pkt_COM_CHANGE_USER(unsigned char *pkt, unsigned int len) { bool ret=false; int cur=sizeof(mysql_hdr); unsigned char *user=NULL; char *password=NULL; char *db=NULL; char* user_attributes=NULL; mysql_hdr hdr; memcpy(&hdr,pkt,sizeof(mysql_hdr)); int default_hostgroup=-1; bool transaction_persistent = true; bool _ret_use_ssl=false; cur++; user=pkt+cur; cur+=strlen((const char *)user); cur++; unsigned char pass_len=pkt[cur]; cur++; unsigned char pass[128]; memset(pass,0,128); //pkt+=sizeof(mysql_hdr); memcpy(pass, pkt+cur, pass_len); cur+=pass_len; db=(char *)pkt+cur; // Move to field after 'database' cur += strlen(db) + 1; // Skipt field 'character-set' (size 2) cur += 2; // Check and get 'Client Auth Plugin' if capability is supported char* client_auth_plugin = nullptr; if (pkt + len > pkt + cur) { int capabilities = (*myds)->sess->client_myds->myconn->options.client_flag; if (capabilities & CLIENT_PLUGIN_AUTH) { client_auth_plugin = reinterpret_cast(pkt + cur); } } // Default to 'mysql_native_password' in case 'auth_plugin' is not found. if (client_auth_plugin == nullptr) { client_auth_plugin = const_cast("mysql_native_password"); } if (pass_len) { if (pass[pass_len-1] == 0) { pass_len--; // remove the extra 0 if present } } void *sha1_pass=NULL; enum proxysql_session_type session_type = (*myds)->sess->session_type; if (session_type == PROXYSQL_SESSION_CLICKHOUSE) { #ifdef PROXYSQLCLICKHOUSE password=GloClickHouseAuth->lookup((char *)user, USERNAME_FRONTEND, &_ret_use_ssl, &default_hostgroup, NULL, NULL, &transaction_persistent, NULL, NULL, &sha1_pass); #endif /* PROXYSQLCLICKHOUSE */ } else { password=GloMyAuth->lookup((char *)user, USERNAME_FRONTEND, &_ret_use_ssl, &default_hostgroup, NULL, NULL, &transaction_persistent, NULL, NULL, &sha1_pass, &user_attributes); } // FIXME: add support for default schema and fast forward, see issue #255 and #256 (*myds)->sess->default_hostgroup=default_hostgroup; (*myds)->sess->transaction_persistent=transaction_persistent; (*myds)->sess->user_attributes=user_attributes; if (password==NULL) { ret=false; } else { if (pass_len==0 && strlen(password)==0) { ret=true; } else { // If pass not sent within 'COM_CHANGE_USER' packet, an 'Auth Switch Request' // is required. We default to 'mysql_native_password'. See #3504 for more context. if (pass_len == 0) { // mysql_native_password (*myds)->switching_auth_type = 1; // started 'Auth Switch Request' for 'CHANGE_USER' in MySQL_Session. (*myds)->sess->change_user_auth_switch = true; generate_pkt_auth_switch_request(true, NULL, NULL); (*myds)->myconn->userinfo->set((char *)user, NULL, db, NULL); ret = false; } else { // If pass is sent with 'COM_CHANGE_USER', we proceed trying to use // it to authenticate the user. See #3504 for more context. ret = verify_user_pass( session_type, password, reinterpret_cast(user), reinterpret_cast(pass), pass_len, static_cast(sha1_pass), client_auth_plugin ); } } //if (_ret_use_ssl==true) { // if we reached here, use_ssl is false , but _ret_use_ssl is true // it means that a client is required to use SSL , but it is not // ret=false; //} } if (userinfo->username) free(userinfo->username); if (userinfo->password) free(userinfo->password); if (ret==true) { (*myds)->DSS=STATE_CLIENT_HANDSHAKE; userinfo->username=strdup((const char *)user); userinfo->password=strdup((const char *)password); if (db) userinfo->set_schemaname(db,strlen(db)); } else { // we always duplicate username and password, or crashes happen userinfo->username=strdup((const char *)user); /*if (pass_len) */ userinfo->password=strdup((const char *)""); } if (password) { free(password); password=NULL; } if (sha1_pass) { free(sha1_pass); sha1_pass=NULL; } userinfo->set(NULL,NULL,NULL,NULL); // just to call compute_hash() if (ret) { // we need to process charset if present in CHANGE_USER uint16_t charset=0; int bytes_processed = (db-(char *)pkt); bytes_processed += strlen(db) + 1; int bytes_left = len - bytes_processed; if (bytes_left > 2) { char *p = db; p += strlen(db); p++; // null byte memcpy(&charset, p, sizeof(charset)); } // see bug #810 if (charset==0) { const MARIADB_CHARSET_INFO *ci = NULL; ci = proxysql_find_charset_name(mysql_thread___default_variables[SQL_CHARACTER_SET]); if (!ci) { // LCOV_EXCL_START proxy_error("Cannot find charset [%s]\n", mysql_thread___default_variables[SQL_CHARACTER_SET]); assert(0); // LCOV_EXCL_STOP } charset=ci->nr; } // reject connections from unknown charsets const MARIADB_CHARSET_INFO * c = proxysql_find_charset_nr(charset); if (!c) { proxy_error("Client %s:%d is trying to use unknown charset %u. Disconnecting\n", (*myds)->addr.addr, (*myds)->addr.port, charset); proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , user='%s' . Client %s:%d is trying to use unknown charset %u. Disconnecting\n", (*myds), (*myds)->sess, user, (*myds)->addr.addr, (*myds)->addr.port, charset); ret = false; return ret; } // set the default charset for this session (*myds)->sess->default_charset = charset; if ((*myds)->sess->user_attributes) { if (user_attributes_has_spiffe(__LINE__, __func__, user)) { // if SPIFFE was used, CHANGE_USER is not allowed. // This because when SPIFFE is used, the password it is not relevant, // as it could be a simple "none" , or "123456", or "password" // The whole idea of using SPIFFE is that this is responsible for // authentication, and not the password. // Therefore CHANGE_USER is not allowed proxy_error("Client %s:%d is trying to run CHANGE_USER , but this is disabled because it previously used SPIFFE ID. Disconnecting\n", (*myds)->addr.addr, (*myds)->addr.port); ret = false; return ret; } char* user_attributes = (*myds)->sess->user_attributes; if (strlen(user_attributes)) { nlohmann::json j_user_attributes = nlohmann::json::parse(user_attributes); auto default_transaction_isolation = j_user_attributes.find("default-transaction_isolation"); if (default_transaction_isolation != j_user_attributes.end()) { std::string def_trx_isolation_val = j_user_attributes["default-transaction_isolation"].get(); mysql_variables.client_set_value((*myds)->sess, SQL_ISOLATION_LEVEL, def_trx_isolation_val.c_str()); } } } assert(sess); assert(sess->client_myds); MySQL_Connection *myconn=sess->client_myds->myconn; assert(myconn); myconn->set_charset(charset, CONNECT_START); std::stringstream ss; ss << charset; /* We are processing handshake from client. Client sends us a character set it will use in communication. * we store this character set in the client's variables to use later in multiplexing with different backends */ mysql_variables.client_set_value(sess, SQL_CHARACTER_SET_RESULTS, ss.str().c_str()); mysql_variables.client_set_value(sess, SQL_CHARACTER_SET_CLIENT, ss.str().c_str()); mysql_variables.client_set_value(sess, SQL_CHARACTER_SET_CONNECTION, ss.str().c_str()); mysql_variables.client_set_value(sess, SQL_COLLATION_CONNECTION, ss.str().c_str()); } return ret; } bool MySQL_Protocol::process_pkt_handshake_response(unsigned char *pkt, unsigned int len) { #ifdef DEBUG if (dump_pkt) { __dump_pkt(__func__,pkt,len); } #endif bool ret = false; unsigned int charset; uint32_t capabilities = 0; uint32_t max_pkt; uint32_t pass_len; unsigned char *user = NULL; char *db = NULL; char *db_tmp = NULL; unsigned char *pass = NULL; MySQL_Connection *myconn = NULL; char *password = NULL; bool use_ssl = false; bool _ret_use_ssl = false; unsigned char *auth_plugin = NULL; int auth_plugin_id = 0; char reply[SHA_DIGEST_LENGTH+1] = { 0 }; int default_hostgroup=-1; char *default_schema = NULL; char *attributes = NULL; bool schema_locked; bool transaction_persistent = true; bool fast_forward = false; int max_connections; enum proxysql_session_type session_type = (*myds)->sess->session_type; void *sha1_pass=NULL; //#ifdef DEBUG unsigned char *_ptr=pkt; //#endif mysql_hdr hdr; memcpy(&hdr,pkt,sizeof(mysql_hdr)); //Copy4B(&hdr,pkt); pkt += sizeof(mysql_hdr); // NOTE: 'mysqlsh' sends a 'COM_INIT_DB' as soon as the connection is openned // before ProxySQL has sent 'Server Greeting' messsage. Because this packet is // unexpected, we simple return 'false' and exit. if (hdr.pkt_id == 0 && *pkt == 2) { ret = false; proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , user='%s' . Client is disconnecting\n", (*myds), (*myds)->sess, user); goto __exit_process_pkt_handshake_response; } if ((*myds)->myconn->userinfo->username) { (*myds)->switching_auth_stage=2; if (len==5) { ret = false; user = (unsigned char *)(*myds)->myconn->userinfo->username; proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , user='%s' . Client is disconnecting\n", (*myds), (*myds)->sess, user); proxy_error("User '%s'@'%s' is disconnecting during switch auth\n", user, (*myds)->addr.addr); goto __exit_process_pkt_handshake_response; } auth_plugin_id = (*myds)->switching_auth_type; if (auth_plugin_id==1) { pass_len = len - sizeof(mysql_hdr); } else { pass_len=strlen((char *)pkt); } pass = (unsigned char *)malloc(pass_len+1); memcpy(pass, pkt, pass_len); pass[pass_len] = 0; user = (unsigned char *)(*myds)->myconn->userinfo->username; db = (*myds)->myconn->userinfo->schemaname; //(*myds)->switching_auth_stage=2; charset=(*myds)->tmp_charset; proxy_debug(PROXY_DEBUG_MYSQL_PROTOCOL,2,"Session=%p , DS=%p . Encrypted: %d , switching_auth: %d, auth_plugin_id: %d\n", (*myds)->sess, (*myds), (*myds)->encrypted, (*myds)->switching_auth_stage, auth_plugin_id); capabilities = (*myds)->myconn->options.client_flag; goto __do_auth; } capabilities = CPY4(pkt); // see bug #2916. If CLIENT_MULTI_STATEMENTS is set by the client // we enforce setting CLIENT_MULTI_RESULTS, this is the proper and expected // behavior (refer to 'https://dev.mysql.com/doc/c-api/8.0/en/c-api-multiple-queries.html'). // Don't enforcing this would cause a mismatch between client and backend // connections flags. if (capabilities & CLIENT_MULTI_STATEMENTS) { capabilities |= CLIENT_MULTI_RESULTS; } // we enforce disabling 'CLIENT_DEPRECATE_EOF' from the supported capabilities // in case it's explicitly disabled by global variable 'mysql_thread___enable_client_deprecate_eof'. // This is because further checks to actually threat the connection as a connection // supporting 'CLIENT_DEPRECATE_EOF' rely in 'client_flag' field from // 'MySQL_Connection::options'. // This is the second step for ensuring that the connection is being handling // in both ProxySQL and client side as a connection without 'CLIENT_DEPRECATE_EOF' support. // First step is replying to client during initial handshake (in 'generate_pkt_initial_handshake') // specifying no 'CLIENT_DEPRECATE_EOF' support in 'server_capabilities'. if (!mysql_thread___enable_client_deprecate_eof) { capabilities &= ~CLIENT_DEPRECATE_EOF; } (*myds)->myconn->options.client_flag = capabilities; pkt += sizeof(uint32_t); max_pkt = CPY4(pkt); (*myds)->myconn->options.max_allowed_pkt = max_pkt; pkt += sizeof(uint32_t); charset = *(uint8_t *)pkt; if ( (*myds)->encrypted == false ) { // client wants to use SSL if (len == sizeof(mysql_hdr)+32) { (*myds)->encrypted = true; use_ssl = true; ret = false; proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , user='%s' . goto __exit_process_pkt_handshake_response\n", (*myds), (*myds)->sess, user); goto __exit_process_pkt_handshake_response; } } // see bug #810 if (charset==0) { const MARIADB_CHARSET_INFO *ci = NULL; ci = proxysql_find_charset_name(mysql_thread___default_variables[SQL_CHARACTER_SET]); if (!ci) { // LCOV_EXCL_START proxy_error("Cannot find charset [%s]\n", mysql_thread___default_variables[SQL_CHARACTER_SET]); assert(0); // LCOV_EXCL_STOP } charset=ci->nr; } (*myds)->tmp_charset=charset; pkt += 24; // if (len==sizeof(mysql_hdr)+32) { // (*myds)->encrypted=true; // use_ssl=true; // } else { user = pkt; pkt += strlen((char *)user) + 1; if (capabilities & CLIENT_PLUGIN_AUTH_LENENC_CLIENT_DATA) { uint64_t passlen64; int pass_len_enc=mysql_decode_length(pkt,&passlen64); pass_len = passlen64; pkt += pass_len_enc; if (pass_len > (len - (pkt - _ptr))) { ret = false; proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , user='%s' . goto __exit_process_pkt_handshake_response\n", (*myds), (*myds)->sess, user); goto __exit_process_pkt_handshake_response; } } else { pass_len = (capabilities & CLIENT_SECURE_CONNECTION ? *pkt++ : strlen((char *)pkt)); if (pass_len > (len - (pkt - _ptr))) { ret = false; proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , user='%s' . goto __exit_process_pkt_handshake_response\n", (*myds), (*myds)->sess, user); goto __exit_process_pkt_handshake_response; } } pass = (unsigned char *)malloc(pass_len+1); memcpy(pass, pkt, pass_len); pass[pass_len] = 0; pkt += pass_len; if (capabilities & CLIENT_CONNECT_WITH_DB) { unsigned int remaining = len - (pkt - _ptr); db_tmp = strndup((const char *)pkt, remaining); if (db_tmp) { db = db_tmp; } pkt++; if (db) { pkt+=strlen(db); } } else { db = NULL; } if (pass_len) { if (pass[pass_len-1] == 0) { pass_len--; // remove the extra 0 if present } } if (_ptr+len > pkt) { if (capabilities & CLIENT_PLUGIN_AUTH) { auth_plugin = pkt; } } if (auth_plugin == NULL) { auth_plugin = (unsigned char *)"mysql_native_password"; // default auth_plugin_id = 1; } proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , user='%s' , auth_plugin_id=%d\n", (*myds), (*myds)->sess, user, auth_plugin_id); if (auth_plugin_id == 0) { if (strncmp((char *)auth_plugin,(char *)"mysql_native_password",strlen((char *)"mysql_native_password"))==0) { auth_plugin_id = 1; } } if (auth_plugin_id == 0) { if (strncmp((char *)auth_plugin,(char *)"mysql_clear_password",strlen((char *)"mysql_clear_password"))==0) { auth_plugin_id = 2; } } //__switch_auth_plugin: proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , user='%s' , auth_plugin_id=%d\n", (*myds), (*myds)->sess, user, auth_plugin_id); if (auth_plugin_id == 0) { if ((*myds)->switching_auth_stage == 0) { (*myds)->switching_auth_stage = 1; // check if user exists bool user_exists = true; if (GloMyLdapAuth) { // we check if user exists only if GloMyLdapAuth is enabled #ifdef PROXYSQLCLICKHOUSE if (session_type == PROXYSQL_SESSION_CLICKHOUSE) { //user_exists = GloClickHouseAuth->exists((char *)user); // for clickhouse, we currently do not support clear text or LDAP user_exists = true; } else { #endif /* PROXYSQLCLICKHOUSE */ user_exists = GloMyAuth->exists((char *)user); proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , user_exists=%d , user='%s'\n", (*myds), (*myds)->sess, user_exists, user); //password=GloMyAuth->lookup((char *)user, USERNAME_FRONTEND, &_ret_use_ssl, &default_hostgroup, &default_schema, &schema_locked, &transaction_persistent, &fast_forward, &max_connections, &sha1_pass); #ifdef PROXYSQLCLICKHOUSE } #endif /* PROXYSQLCLICKHOUSE */ } if (user_exists) { (*myds)->switching_auth_type = 1; // mysql_native_password } else { (*myds)->switching_auth_type = 2; // mysql_clear_password } proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , user_exists=%d , user='%s' , setting switching_auth_type=%d\n", (*myds), (*myds)->sess, user_exists, user, (*myds)->switching_auth_type); generate_pkt_auth_switch_request(true, NULL, NULL); (*myds)->myconn->userinfo->set((char *)user, NULL, db, NULL); ret = false; goto __exit_process_pkt_handshake_response; } } else { if (auth_plugin_id == 1) { if (GloMyLdapAuth) { if ((*myds)->switching_auth_stage == 0) { bool user_exists = true; #ifdef PROXYSQLCLICKHOUSE if (session_type == PROXYSQL_SESSION_CLICKHOUSE) { //user_exists = GloClickHouseAuth->exists((char *)user); // for clickhouse, we currently do not support clear text or LDAP user_exists = true; } else { #endif /* PROXYSQLCLICKHOUSE */ user_exists = GloMyAuth->exists((char *)user); //password=GloMyAuth->lookup((char *)user, USERNAME_FRONTEND, &_ret_use_ssl, &default_hostgroup, &default_schema, &schema_locked, &transaction_persistent, &fast_forward, &max_connections, &sha1_pass); #ifdef PROXYSQLCLICKHOUSE } #endif /* PROXYSQLCLICKHOUSE */ if (user_exists == false) { (*myds)->switching_auth_type = 2; // mysql_clear_password (*myds)->switching_auth_stage = 1; generate_pkt_auth_switch_request(true, NULL, NULL); (*myds)->myconn->userinfo->set((char *)user, NULL, db, NULL); ret = false; proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , user='%s' . goto __exit_process_pkt_handshake_response. User does not exist\n", (*myds), (*myds)->sess, user); goto __exit_process_pkt_handshake_response; } } } } } if (auth_plugin_id == 0) { // unknown plugin ret = false; proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , user='%s' . goto __exit_process_pkt_handshake_response . Unknown auth plugin\n", (*myds), (*myds)->sess, user); goto __exit_process_pkt_handshake_response; } //char reply[SHA_DIGEST_LENGTH+1]; //reply[SHA_DIGEST_LENGTH]='\0'; //int default_hostgroup=-1; //char *default_schema=NULL; //bool schema_locked; //bool transaction_persistent = true; //bool fast_forward = false; //int max_connections; //enum proxysql_session_type session_type = (*myds)->sess->session_type; __do_auth: { // reject connections from unknown charsets const MARIADB_CHARSET_INFO * c = proxysql_find_charset_nr(charset); if (!c) { proxy_error("Client %s:%d is trying to use unknown charset %u. Disconnecting\n", (*myds)->addr.addr, (*myds)->addr.port, charset); proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , user='%s' . Client %s:%d is trying to use unknown charset %u. Disconnecting\n", (*myds), (*myds)->sess, user, (*myds)->addr.addr, (*myds)->addr.port, charset); ret = false; goto __exit_do_auth; } // set the default session charset (*myds)->sess->default_charset = charset; } if (session_type == PROXYSQL_SESSION_CLICKHOUSE) { #ifdef PROXYSQLCLICKHOUSE password=GloClickHouseAuth->lookup((char *)user, USERNAME_FRONTEND, &_ret_use_ssl, &default_hostgroup, &default_schema, &schema_locked, &transaction_persistent, &fast_forward, &max_connections, &sha1_pass); #endif /* PROXYSQLCLICKHOUSE */ } else { password=GloMyAuth->lookup((char *)user, USERNAME_FRONTEND, &_ret_use_ssl, &default_hostgroup, &default_schema, &schema_locked, &transaction_persistent, &fast_forward, &max_connections, &sha1_pass, &attributes); } //assert(default_hostgroup>=0); if (password) { #ifdef DEBUG char *tmp_pass=strdup(password); int lpass = strlen(tmp_pass); for (int i=2; isess, user, tmp_pass); free(tmp_pass); #endif // debug (*myds)->sess->default_hostgroup=default_hostgroup; (*myds)->sess->default_schema=default_schema; // just the pointer is passed (*myds)->sess->user_attributes = attributes; // just the pointer is passed #ifdef DEBUG debug_spiffe_id(user,attributes, __LINE__, __func__); #endif (*myds)->sess->schema_locked=schema_locked; (*myds)->sess->transaction_persistent=transaction_persistent; (*myds)->sess->session_fast_forward=false; // default if ((*myds)->sess->session_type == PROXYSQL_SESSION_MYSQL) { (*myds)->sess->session_fast_forward=fast_forward; } (*myds)->sess->user_max_connections=max_connections; } if (password == NULL) { // this is a workaround for bug #603 if ( ((*myds)->sess->session_type == PROXYSQL_SESSION_ADMIN) || ((*myds)->sess->session_type == PROXYSQL_SESSION_STATS) //#if defined(TEST_AURORA) || defined(TEST_GALERA) || defined(TEST_GROUPREP) || ((*myds)->sess->session_type == PROXYSQL_SESSION_SQLITE) //#endif // TEST_AURORA || TEST_GALERA ) { if (strcmp((const char *)user,mysql_thread___monitor_username)==0) { proxy_scramble(reply, (*myds)->myconn->scramble_buff, mysql_thread___monitor_password); if (memcmp(reply, pass, SHA_DIGEST_LENGTH)==0) { (*myds)->sess->default_hostgroup=STATS_HOSTGROUP; (*myds)->sess->default_schema=strdup((char *)"main"); // just the pointer is passed (*myds)->sess->schema_locked=false; (*myds)->sess->transaction_persistent=false; (*myds)->sess->session_fast_forward=false; (*myds)->sess->user_max_connections=0; password=l_strdup(mysql_thread___monitor_password); ret=true; } } else { ret=false; } } else { ret=false; // by default, assume this will fail // try LDAP if (auth_plugin_id==2) { if (GloMyLdapAuth) { #ifdef DEBUG { char *tmp_pass=strdup((const char *)pass); int lpass = strlen(tmp_pass); for (int i=2; isess, user, tmp_pass); free(tmp_pass); } #endif // debug char *backend_username = NULL; (*myds)->sess->use_ldap_auth = true; password = GloMyLdapAuth->lookup((char *) user, (char *) pass, USERNAME_FRONTEND, &_ret_use_ssl, &default_hostgroup, &default_schema, &schema_locked, &transaction_persistent, &fast_forward, &max_connections, &sha1_pass, &attributes, &backend_username); if (password) { #ifdef DEBUG char *tmp_pass=strdup(password); int lpass = strlen(tmp_pass); for (int i=2; isess, backend_username, tmp_pass); free(tmp_pass); #endif // debug (*myds)->sess->default_hostgroup=default_hostgroup; (*myds)->sess->default_schema=default_schema; // just the pointer is passed (*myds)->sess->user_attributes = attributes; // just the pointer is passed, LDAP returns empty string #ifdef DEBUG debug_spiffe_id(user,attributes, __LINE__, __func__); #endif (*myds)->sess->schema_locked=schema_locked; (*myds)->sess->transaction_persistent=transaction_persistent; (*myds)->sess->session_fast_forward=fast_forward; (*myds)->sess->user_max_connections=max_connections; if (strcmp(password, (char *) pass) == 0) { if (backend_username) { free(password); password=NULL; password=GloMyAuth->lookup(backend_username, USERNAME_BACKEND, &_ret_use_ssl, &default_hostgroup, &default_schema, &schema_locked, &transaction_persistent, &fast_forward, &max_connections, &sha1_pass, &attributes); if (password) { (*myds)->sess->default_hostgroup=default_hostgroup; // Free the previously set 'default_schema' by 'GloMyLdapAuth' if ((*myds)->sess->default_schema) { free((*myds)->sess->default_schema); } (*myds)->sess->default_schema=default_schema; // just the pointer is passed // Free the previously set 'user_attributes' by 'GloMyLdapAuth' if ((*myds)->sess->user_attributes) { free((*myds)->sess->user_attributes); } (*myds)->sess->user_attributes = attributes; // just the pointer is passed #ifdef DEBUG proxy_info("Attributes for user %s: %s\n" , user, attributes); #endif (*myds)->sess->schema_locked=schema_locked; (*myds)->sess->transaction_persistent=transaction_persistent; (*myds)->sess->session_fast_forward=fast_forward; (*myds)->sess->user_max_connections=max_connections; char *tmp_user=strdup((const char *)user); userinfo->set(backend_username, NULL, NULL, NULL); // 'MySQL_Connection_userinfo::set' duplicates the supplied information, 'free' is required. free(backend_username); if (sha1_pass==NULL) { // currently proxysql doesn't know any sha1_pass for that specific user, let's set it! GloMyAuth->set_SHA1((char *)userinfo->username, USERNAME_FRONTEND,reply); } if (userinfo->sha1_pass) free(userinfo->sha1_pass); userinfo->sha1_pass=sha1_pass_hex(reply); userinfo->fe_username=strdup((const char *)tmp_user); free(tmp_user); ret=true; } else { proxy_error("Unable to load credentials for backend user %s , associated to LDAP user %s\n", backend_username, user); } } else { proxy_error("Unable to find backend user associated to LDAP user '%s'\n", user); ret=false; } } } } } } } else { if (pass_len==0 && strlen(password)==0) { ret=true; proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , username='%s' , password=''\n", (*myds), (*myds)->sess, user); } else { #ifdef DEBUG char *tmp_pass=strdup(password); int lpass = strlen(tmp_pass); for (int i=2; isess, user, tmp_pass, auth_plugin_id); free(tmp_pass); #endif // debug if (password[0]!='*') { // clear text password if (auth_plugin_id == 1) { // mysql_native_password proxy_scramble(reply, (*myds)->myconn->scramble_buff, password); if (pass_len != 0 && memcmp(reply, pass, SHA_DIGEST_LENGTH)==0) { ret=true; } } else { // mysql_clear_password if (strcmp(password, (char *) pass) == 0) { ret = true; } } } else { if (auth_plugin_id == 1) { if (session_type == PROXYSQL_SESSION_MYSQL || session_type == PROXYSQL_SESSION_SQLITE || session_type == PROXYSQL_SESSION_ADMIN || session_type == PROXYSQL_SESSION_STATS) { ret=proxy_scramble_sha1((char *)pass,(*myds)->myconn->scramble_buff,password+1, reply); if (ret) { if (sha1_pass==NULL) { // currently proxysql doesn't know any sha1_pass for that specific user, let's set it! GloMyAuth->set_SHA1((char *)user, USERNAME_FRONTEND,reply); } if (userinfo->sha1_pass) free(userinfo->sha1_pass); userinfo->sha1_pass=sha1_pass_hex(reply); } } } else { // mysql_clear_password if (session_type == PROXYSQL_SESSION_MYSQL || session_type == PROXYSQL_SESSION_SQLITE || session_type == PROXYSQL_SESSION_ADMIN || session_type == PROXYSQL_SESSION_STATS) { /* char sha1_2[SHA_DIGEST_LENGTH+1]; sha1_2[SHA_DIGEST_LENGTH]='\0'; proxy_compute_sha1_hash((unsigned char *)reply,(char *)pass,pass_len); proxy_compute_sha1_hash((unsigned char *)sha1_2,reply,strlen(reply)); uint8 hash_stage2[SHA_DIGEST_LENGTH]; unhex_pass(hash_stage2,sha1_2); */ proxy_debug(PROXY_DEBUG_MYSQL_AUTH, 5, "Session=%p , DS=%p , username='%s' , session_type=%d\n", (*myds), (*myds)->sess, user, session_type); unsigned char md1_buf[SHA_DIGEST_LENGTH]; unsigned char md2_buf[SHA_DIGEST_LENGTH]; SHA1(pass,pass_len,md1_buf); SHA1(md1_buf,SHA_DIGEST_LENGTH,md2_buf); char *double_hashed_password = sha1_pass_hex((char *)md2_buf); // note that sha1_pass_hex() returns a new buffer if (strcasecmp(double_hashed_password,password)==0) { ret = true; if (sha1_pass==NULL) { // currently proxysql doesn't know any sha1_pass for that specific user, let's set it! GloMyAuth->set_SHA1((char *)user, USERNAME_FRONTEND,md1_buf); } if (userinfo->sha1_pass) free(userinfo->sha1_pass); userinfo->sha1_pass=sha1_pass_hex((char *)md1_buf); } else { ret = false; } free(double_hashed_password); } } } } } __exit_do_auth: if (_ret_use_ssl==true) { (*myds)->sess->use_ssl = true; } // if (_ret_use_ssl==true) { // // if we reached here, use_ssl is false , but _ret_use_ssl is true // // it means that a client is required to use SSL , but it is not // ret=false; // } // } #ifdef DEBUG { char *tmp_pass= NULL; if (password) { tmp_pass = strdup(password); int lpass = strlen(tmp_pass); for (int i=2; i, capabilities:%u char:%u, use_ssl:%s\n", (capabilities & CLIENT_SECURE_CONNECTION ? "new" : "old"), user, tmp_pass, db, (*myds)->myconn->options.max_allowed_pkt, capabilities, charset, ((*myds)->encrypted ? "yes" : "no")); free(tmp_pass); } #endif assert(sess); assert(sess->client_myds); myconn=sess->client_myds->myconn; assert(myconn); myconn->set_charset(charset, CONNECT_START); { std::stringstream ss; ss << charset; /* We are processing handshake from client. Client sends us a character set it will use in communication. * we store this character set in the client's variables to use later in multiplexing with different backends */ mysql_variables.client_set_value(sess, SQL_CHARACTER_SET_RESULTS, ss.str().c_str()); mysql_variables.client_set_value(sess, SQL_CHARACTER_SET_CLIENT, ss.str().c_str()); mysql_variables.client_set_value(sess, SQL_CHARACTER_SET_CONNECTION, ss.str().c_str()); mysql_variables.client_set_value(sess, SQL_COLLATION_CONNECTION, ss.str().c_str()); } // enable compression if (capabilities & CLIENT_COMPRESS) { if (myconn->options.server_capabilities & CLIENT_COMPRESS) { myconn->options.compression_min_length=50; //myconn->set_status_compression(true); // don't enable this here. It needs to be enabled after the OK is sent } } #ifdef DEBUG if (dump_pkt) { __dump_pkt(__func__,_ptr,len); } #endif if (use_ssl) { ret=true; goto __exit_process_pkt_handshake_response; } if (ret==true) { (*myds)->DSS=STATE_CLIENT_HANDSHAKE; if (!userinfo->username) // if set already, ignore userinfo->username=strdup((const char *)user); userinfo->password=strdup((const char *)password); if (db) userinfo->set_schemaname(db,strlen(db)); } else { // we always duplicate username and password, or crashes happen if (!userinfo->username) // if set already, ignore userinfo->username=strdup((const char *)user); if (pass_len) userinfo->password=strdup((const char *)""); } userinfo->set(NULL,NULL,NULL,NULL); // just to call compute_hash() __exit_process_pkt_handshake_response: free(pass); if (password) { free(password); password=NULL; } if (sha1_pass) { free(sha1_pass); sha1_pass=NULL; } if (db_tmp) { free(db_tmp); db_tmp=NULL; } if (ret == true) { ret = verify_user_attributes(__LINE__, __func__, user); } return ret; } bool MySQL_Protocol::verify_user_attributes(int calling_line, const char *calling_func, const unsigned char *user) { bool ret = true; if ((*myds)->sess->user_attributes) { char *a = (*myds)->sess->user_attributes; // no copy, just pointer if (strlen(a)) { json j = nlohmann::json::parse(a); auto spiffe_id = j.find("spiffe_id"); if (spiffe_id != j.end()) { // at this point, we completely ignore any password specified so far // we assume authentication failure so far ret = false; std::string spiffe_val = j["spiffe_id"].get(); if ((*myds)->x509_subject_alt_name) { if (spiffe_val.rfind("!", 0) == 0 && spiffe_val.size() > 1) { string str_spiffe_regex { spiffe_val.substr(1) }; re2::RE2::Options opts = re2::RE2::Options(RE2::Quiet); re2::RE2 subject_alt_regex(str_spiffe_regex, opts); ret = re2::RE2::FullMatch((*myds)->x509_subject_alt_name, subject_alt_regex); } else if (strncmp(spiffe_val.c_str(), "spiffe://", strlen("spiffe://"))==0) { if (strcmp(spiffe_val.c_str(), (*myds)->x509_subject_alt_name)==0) { ret = true; } } } if (ret == false) { proxy_error("%d:%s(): SPIFFE Authentication error for user %s . spiffed_id expected : %s , received: %s\n", calling_line, calling_func, user, spiffe_val.c_str(), ((*myds)->x509_subject_alt_name ? (*myds)->x509_subject_alt_name : "none")); } } auto default_transaction_isolation = j.find("default-transaction_isolation"); if (default_transaction_isolation != j.end()) { std::string default_transaction_isolation_value = j["default-transaction_isolation"].get(); mysql_variables.client_set_value((*myds)->sess, SQL_ISOLATION_LEVEL, default_transaction_isolation_value.c_str()); } } } return ret; } bool MySQL_Protocol::user_attributes_has_spiffe(int calling_line, const char *calling_func, const unsigned char *user) { bool ret = false; if ((*myds)->sess->user_attributes) { char *a = (*myds)->sess->user_attributes; // no copy, just pointer if (strlen(a)) { json j = nlohmann::json::parse(a); auto spiffe_id = j.find("spiffe_id"); if (spiffe_id != j.end()) { ret = true; } } } return ret; } void * MySQL_Protocol::Query_String_to_packet(uint8_t sid, std::string *s, unsigned int *l) { mysql_hdr hdr; hdr.pkt_id=sid; hdr.pkt_length=1+s->length(); *l=hdr.pkt_length+sizeof(mysql_hdr); void *pkt=malloc(*l); memcpy(pkt,&hdr,sizeof(mysql_hdr)); uint8_t c=_MYSQL_COM_QUERY; memcpy((char *)pkt+4,&c,1); memcpy((char *)pkt+5,s->c_str(),s->length()); return pkt; } // get_binds_from_pkt() process an STMT_EXECUTE packet, and extract binds value // and optionally metadata // if stmt_meta is NULL, it means it is the first time that the client run // STMT_EXECUTE and therefore stmt_meta needs to be build // // returns stmt_meta, or a new one // See https://dev.mysql.com/doc/internals/en/com-stmt-execute.html for reference stmt_execute_metadata_t * MySQL_Protocol::get_binds_from_pkt(void *ptr, unsigned int size, MySQL_STMT_Global_info *stmt_info, stmt_execute_metadata_t **stmt_meta) { stmt_execute_metadata_t *ret=NULL; //return NULL in case of failure if (size<14) { // some error! return ret; } uint16_t num_params=stmt_info->num_params; if (num_params==2) { PROXY_TRACE(); } char *p=(char *)ptr+5; if (*stmt_meta) { // this PS was executed at least once, and we already have metadata ret=*stmt_meta; } else { // this is the first time that this PS is executed ret= new stmt_execute_metadata_t(); } if (*stmt_meta==NULL) { memcpy(&ret->stmt_id,p,4); // stmt-id } p+=4; // stmt-id memcpy(&ret->flags,p,1); p+=1; // flags p+=4; // iteration-count ret->num_params=num_params; // we keep a pointer to the packet // this is extremely important because: // * binds[X].buffer does NOT point to a new allocated buffer // * binds[X].buffer points to offset inside the original packet // FIXME: there is still no free for pkt, so that will be a memory leak that needs to be fixed ret->pkt=ptr; uint8_t new_params_bound_flag; if (num_params) { uint16_t i; size_t null_bitmap_length=(num_params+7)/8; if (size < (14+1+null_bitmap_length)) { // some data missing? delete ret; return NULL; } memcpy(&new_params_bound_flag,p+null_bitmap_length,1); uint8_t *null_bitmap=NULL; null_bitmap=(uint8_t *)malloc(null_bitmap_length); memcpy(null_bitmap,p,null_bitmap_length); p+=null_bitmap_length; p+=1; // new_params_bound_flag MYSQL_BIND *binds=NULL; my_bool *is_nulls=NULL; unsigned long *lengths=NULL; // now we create bind structures only if needed if (*stmt_meta==NULL) { binds=(MYSQL_BIND *)malloc(sizeof(MYSQL_BIND)*num_params); memset(binds,0,sizeof(MYSQL_BIND)*num_params); ret->binds=binds; is_nulls=(my_bool *)malloc(sizeof(my_bool)*num_params); ret->is_nulls=is_nulls; lengths=(unsigned long *)malloc(sizeof(unsigned long)*num_params); ret->lengths=lengths; } else { // if STMT_EXECUTE was already executed once binds=ret->binds; is_nulls=ret->is_nulls; lengths=ret->lengths; } // process packet and set NULLs for (i=0;i> idx; my_bool is_null = tmp_is_null; if (new_params_bound_flag == 0) { // NOTE: Just impose 'is_null' to be '1' using the values from // previous bindings when we know values for these **haven't // changed**, this is, when 'new_params_bound_flag' is '0'. // Otherwise we will assume a value to be 'NULL' when the // binding type could have actually been changed from the // previous 'MYSQL_TYPE_NULL'. For more context see #3603. if (binds[i].buffer_type == MYSQL_TYPE_NULL) is_null = 1; } is_nulls[i]=is_null; binds[i].is_null=&is_nulls[i]; // set length, defaults to 0 // for parameters with not fixed length, that will be assigned later // we moved this initialization here due to #3585 binds[i].is_unsigned=0; lengths[i]=0; binds[i].length=&lengths[i]; // NOTE: We nullify buffers here to reflect that memory wasn't // initalized. See #3546. binds[i].buffer = NULL; } free(null_bitmap); // we are done with it if (new_params_bound_flag) { // the client is rebinding the parameters // the client is sending again the type of each parameter for (i=0;i= 32768) { // is_unsigned bit buffer_type-=32768; binds[i].is_unsigned=1; } binds[i].buffer_type=(enum enum_field_types)buffer_type; // NOTE: This is required because further check for nullity rely on // 'is_nulls' instead of 'buffer_type'. See #3603. if (binds[i].buffer_type == MYSQL_TYPE_NULL) { is_nulls[i]= 1; } p+=2; } } for (i=0;isess->SLDH->get(ret->stmt_id, i, &_l, &_is_null); if (_data) { // Data was sent via STMT_SEND_LONG_DATA so no data in the packet. binds[i].length = _l; binds[i].buffer = _data; binds[i].is_null = _is_null; continue; } else if (is_nulls[i]==true) { // the parameter is NULL, no need to read any data from the packet continue; } enum enum_field_types buffer_type=binds[i].buffer_type; switch (buffer_type) { case MYSQL_TYPE_TINY: binds[i].buffer=p; p+=1; break; case MYSQL_TYPE_SHORT: case MYSQL_TYPE_YEAR: binds[i].buffer=p; p+=2; break; case MYSQL_TYPE_FLOAT: case MYSQL_TYPE_LONG: case MYSQL_TYPE_INT24: binds[i].buffer=p; p+=4; break; case MYSQL_TYPE_DOUBLE: case MYSQL_TYPE_LONGLONG: binds[i].buffer=p; p+=8; break; case MYSQL_TYPE_TIME: { binds[i].buffer=malloc(sizeof(MYSQL_TIME)); // NOTE: remember to free() this uint8_t l; memcpy(&l,p,1); p++; MYSQL_TIME ts; memset(&ts,0,sizeof(MYSQL_TIME)); if (l) { memcpy(&ts.neg,p,1); memcpy(&ts.day,p+1,4); memcpy(&ts.hour,p+5,1); memcpy(&ts.minute,p+6,1); memcpy(&ts.second,p+7,1); } if (l>8) { memcpy(&ts.second_part,p+8,4); } p+=l; memcpy(binds[i].buffer,&ts,sizeof(MYSQL_TIME)); } break; case MYSQL_TYPE_DATE: case MYSQL_TYPE_TIMESTAMP: case MYSQL_TYPE_DATETIME: { binds[i].buffer=malloc(sizeof(MYSQL_TIME)); // NOTE: remember to free() this uint8_t l; memcpy(&l,p,1); p++; MYSQL_TIME ts; memset(&ts,0,sizeof(MYSQL_TIME)); if (l) { memcpy(&ts.year,p,2); memcpy(&ts.month,p+2,1); memcpy(&ts.day,p+3,1); } if (l>4) { memcpy(&ts.hour,p+4,1); memcpy(&ts.minute,p+5,1); memcpy(&ts.second,p+6,1); } if (l>7) { memcpy(&ts.second_part,p+7,4); } p+=l; memcpy(binds[i].buffer,&ts,sizeof(MYSQL_TIME)); } break; case MYSQL_TYPE_DECIMAL: case MYSQL_TYPE_VARCHAR: case MYSQL_TYPE_BIT: case MYSQL_TYPE_JSON: case MYSQL_TYPE_NEWDECIMAL: case MYSQL_TYPE_ENUM: case MYSQL_TYPE_SET: case MYSQL_TYPE_TINY_BLOB: case MYSQL_TYPE_MEDIUM_BLOB: case MYSQL_TYPE_LONG_BLOB: case MYSQL_TYPE_BLOB: case MYSQL_TYPE_VAR_STRING: case MYSQL_TYPE_STRING: case MYSQL_TYPE_GEOMETRY: { uint8_t l=0; uint64_t len; l=mysql_decode_length((unsigned char *)p, &len); if (l>1) { PROXY_TRACE(); } p+=l; binds[i].buffer=p; p+=len; lengths[i]=len; } break; default: // LCOV_EXCL_START proxy_error("Unsupported field type %d in zero-based parameters[%d] " "of query %s from user %s with default schema %s\n", buffer_type, i, stmt_info->query, stmt_info->username, stmt_info->schemaname); assert(0); break; // LCOV_EXCL_STOP } } } /* #ifdef DEBUG // debug fprintf(stderr,"STMT_EXEC: %d\n",ret->stmt_id); if (num_params==2) { PROXY_TRACE(); } for (int i=0;ibinds[i].is_null), ret->binds[i].buffer_type); } #endif */ if (ret) ret->size=size; return ret; } bool MySQL_Protocol::generate_COM_QUERY_from_COM_FIELD_LIST(PtrSize_t *pkt) { unsigned int o_pkt_size = pkt->size; char *pkt_ptr = (char *)pkt->ptr; pkt_ptr+=5; // some sanity check void *a = NULL; a = memchr((void *)pkt_ptr, 0, o_pkt_size-5); if (a==NULL) return false; // we failed to parse char *tablename = strdup(pkt_ptr); unsigned int wild_len = o_pkt_size - 5 - strlen(tablename) - 1; char *wild = NULL; if (wild_len > 0) { pkt_ptr+=strlen(tablename); pkt_ptr++; wild=strndup(pkt_ptr,wild_len); } char *q = NULL; if ((*myds)->com_field_wild) { free((*myds)->com_field_wild); (*myds)->com_field_wild=NULL; } if (wild) { (*myds)->com_field_wild=strdup(wild); } char *qt = (char *)"SELECT * FROM `%s` WHERE 1=0"; q = (char *)malloc(strlen(qt)+strlen(tablename)); sprintf(q,qt,tablename); l_free(pkt->size, pkt->ptr); pkt->size = strlen(q)+5; mysql_hdr Hdr; Hdr.pkt_id=1; Hdr.pkt_length = pkt->size - 4; pkt->ptr=malloc(pkt->size); memcpy(pkt->ptr,&Hdr,sizeof(mysql_hdr)); memset((char *)pkt->ptr+4,3,1); // COM_QUERY memcpy((char *)pkt->ptr+5,q,pkt->size-5); if (wild) free(wild); free(tablename); free(q); return true; } MySQL_ResultSet::MySQL_ResultSet() { buffer = NULL; //reset_pid = true; } void MySQL_ResultSet::buffer_init(MySQL_Protocol* myproto) { if (buffer==NULL) { buffer=(unsigned char *)malloc(RESULTSET_BUFLEN); } buffer_used=0; myprot = myproto; } void MySQL_ResultSet::init(MySQL_Protocol *_myprot, MYSQL_RES *_res, MYSQL *_my, MYSQL_STMT *_stmt) { PROXY_TRACE2(); transfer_started=false; resultset_completed=false; myprot=_myprot; mysql=_my; stmt=_stmt; if (buffer==NULL) { //if (_stmt==NULL) { // we allocate this buffer only for not prepared statements // removing the previous assumption. We allocate this buffer also for prepared statements buffer=(unsigned char *)malloc(RESULTSET_BUFLEN); //} } buffer_used=0; myds=NULL; if (myprot) { // if myprot = NULL , this is a mirror myds=myprot->get_myds(); } //if (reset_pid==true) { sid=0; //PSarrayOUT = NULL; if (myprot) { // if myprot = NULL , this is a mirror sid=myds->pkt_sid+1; //PSarrayOUT = new PtrSizeArray(8); } //} //reset_pid=true; result=_res; resultset_size=0; num_rows=0; num_fields=mysql_field_count(mysql); PtrSize_t pkt; // immediately generate the first set of packets // columns count if (myprot==NULL) { return; // this is a mirror } MySQL_Data_Stream * c_myds = *(myprot->myds); if (c_myds->com_field_list==false) { myprot->generate_pkt_column_count(false,&pkt.ptr,&pkt.size,sid,num_fields,this); sid++; resultset_size+=pkt.size; } // columns description for (unsigned int i=0; icom_field_list==false) { // we are replacing generate_pkt_field() with a more efficient version //myprot->generate_pkt_field(false,&pkt.ptr,&pkt.size,sid,field->db,field->table,field->org_table,field->name,field->org_name,field->charsetnr,field->length,field->type,field->flags,field->decimals,false,0,NULL,this); myprot->generate_pkt_field2(&pkt.ptr,&pkt.size,sid,field,this); resultset_size+=pkt.size; sid++; } else { if (c_myds->com_field_wild==NULL || mywildcmp(c_myds->com_field_wild,field->name)) { myprot->generate_pkt_field(false,&pkt.ptr,&pkt.size,sid,field->db,field->table,field->org_table,field->name,field->org_name,field->charsetnr,field->length,field->type,field->flags,field->decimals,true,4,(char *)"null",this); resultset_size+=pkt.size; sid++; } } } deprecate_eof_active = c_myds->myconn && (c_myds->myconn->options.client_flag & CLIENT_DEPRECATE_EOF); // first EOF unsigned int nTrx=myds->sess->NumActiveTransactions(); uint16_t setStatus = (nTrx ? SERVER_STATUS_IN_TRANS : 0 ); if (myds->sess->autocommit) setStatus += SERVER_STATUS_AUTOCOMMIT; setStatus |= ( mysql->server_status & ~SERVER_STATUS_AUTOCOMMIT ); // get flags from server_status but ignore autocommit setStatus = setStatus & ~SERVER_STATUS_CURSOR_EXISTS; // Do not send cursor #1128 // if (_stmt) { // binary protocol , we also assume we have ALL the resultset // myprot->generate_pkt_EOF(false,&pkt.ptr,&pkt.size,sid,0,mysql->server_status|setStatus); // sid++; // PSarrayOUT.add(pkt.ptr,pkt.size); // resultset_size+=pkt.size; //} else { if (RESULTSET_BUFLEN <= (buffer_used + 9)) { buffer_to_PSarrayOut(); } if (!deprecate_eof_active && myds->com_field_list==false) { // up to 2.2.0 we used to add an EOF here. // due to bug #3547 we move the logic into add_eof() that can now handle also prepared statements PROXY_TRACE2(); // if the backend server has CLIENT_DEPRECATE_EOF enabled, and the client does not support // CLIENT_DEPRECATE_EOF, warning_count will be excluded from the intermediate EOF packet add_eof((mysql->server_capabilities & CLIENT_DEPRECATE_EOF)); } } // due to bug #3547 , in case of an error we remove the EOF // and replace it with an ERR // note that EOF is added on a packet on its own, instead of using a buffer, // so that can be removed using remove_last_eof() void MySQL_ResultSet::remove_last_eof() { PROXY_TRACE2(); PtrSize_t pkt; if (PSarrayOUT.len) { unsigned int l = PSarrayOUT.len-1; PtrSize_t * pktp = PSarrayOUT.index(l); if (pktp->size == 9) { PROXY_TRACE2(); PSarrayOUT.remove_index(l,&pkt); l_free(pkt.size, pkt.ptr); sid--; } } } void MySQL_ResultSet::init_with_stmt(MySQL_Connection *myconn) { PROXY_TRACE2(); assert(stmt); MYSQL_STMT *_stmt = stmt; MySQL_Data_Stream * c_myds = *(myprot->myds); buffer_to_PSarrayOut(); unsigned long long total_size=0; MYSQL_ROWS *r=_stmt->result.data; if (r) { total_size+=r->length; if (r->length > 0xFFFFFF) { total_size+=(r->length / 0xFFFFFF) * sizeof(mysql_hdr); } total_size+=sizeof(mysql_hdr); while(r->next) { r=r->next; total_size+=r->length; if (r->length > 0xFFFFFF) { total_size+=(r->length / 0xFFFFFF) * sizeof(mysql_hdr); } total_size+=sizeof(mysql_hdr); } #define MAXBUFFSTMT 12*1024*1024 // hardcoded to LESS *very important* than 16MB if (total_size < MAXBUFFSTMT) { PtrSize_t pkt; pkt.size=total_size; pkt.ptr=malloc(pkt.size); total_size=0; r=_stmt->result.data; add_row2(r,(unsigned char *)pkt.ptr); total_size+=r->length; if (r->length > 0xFFFFFF) { total_size+=(r->length / 0xFFFFFF) * sizeof(mysql_hdr); } total_size+=sizeof(mysql_hdr); while(r->next) { r=r->next; add_row2(r,(unsigned char *)pkt.ptr+total_size); total_size+=r->length; if (r->length > 0xFFFFFF) { total_size+=(r->length / 0xFFFFFF) * sizeof(mysql_hdr); } total_size+=sizeof(mysql_hdr); } PSarrayOUT.add(pkt.ptr,pkt.size); if (resultset_size/0xFFFFFFF != ((resultset_size+pkt.size)/0xFFFFFFF)) { // generate a heartbeat every 256MB unsigned long long curtime=monotonic_time(); c_myds->sess->thread->atomic_curtime=curtime; } resultset_size+=pkt.size; } else { // this code fixes a bug: resultset larger than 4GB would cause a crash unsigned long long tmp_pkt_size = 0; r=_stmt->result.data; MYSQL_ROWS * r2 = NULL; while (r) { if (r->length >= MAXBUFFSTMT) { // we have a large row // we will send just that tmp_pkt_size = r->length; if (r->length > 0xFFFFFF) { tmp_pkt_size+=(r->length / 0xFFFFFF) * sizeof(mysql_hdr); } tmp_pkt_size += sizeof(mysql_hdr); PtrSize_t pkt; pkt.size=tmp_pkt_size; pkt.ptr=malloc(pkt.size); add_row2(r,(unsigned char *)pkt.ptr); PSarrayOUT.add(pkt.ptr,pkt.size); if (resultset_size/0xFFFFFFF != ((resultset_size+pkt.size)/0xFFFFFFF)) { // generate a heartbeat every 256MB unsigned long long curtime=monotonic_time(); c_myds->sess->thread->atomic_curtime=curtime; } resultset_size+=pkt.size; r=r->next; // next row } else { // we have small row r2 = r; tmp_pkt_size = 0; unsigned int a = 0; while (r && (tmp_pkt_size + r->length) < MAXBUFFSTMT) { a++; tmp_pkt_size += r->length; tmp_pkt_size += sizeof(mysql_hdr); //if (r->next) { r = r->next; //} } r = r2; // we reset it back to the beginning if (tmp_pkt_size) { // this should always be true unsigned long long tmp2 = 0; PtrSize_t pkt; pkt.size=tmp_pkt_size; pkt.ptr=malloc(pkt.size); while (tmp2 < tmp_pkt_size) { add_row2(r,(unsigned char *)pkt.ptr+tmp2); tmp2 += r->length; tmp2 += sizeof(mysql_hdr); r = r->next; } PSarrayOUT.add(pkt.ptr,pkt.size); if (resultset_size/0xFFFFFFF != ((resultset_size+pkt.size)/0xFFFFFFF)) { // generate a heartbeat every 256MB unsigned long long curtime=monotonic_time(); c_myds->sess->thread->atomic_curtime=curtime; } resultset_size+=pkt.size; } } } } } // up to 2.2.0 we were always adding an EOF // due to bug #3547 , in case of an error we remove the EOF // and replace it with an ERR // note that EOF is added on a packet on its own, instead of using a buffer, // so that can be removed // // NOTE: After 2.4.5 previous behavior is modified in favor of the following: // // When CLIENT_DEPRECATE_EOF two EOF packets are two be expected in the response: // 1. After the columns definitions (This is added directly by 'MySQL_ResultSet::init'). // 2. After the rows values, this can either be and EOF packet or a ERR packet in case of error. // // First EOF packet isn't optional, and it's just the second the one that is optionaly either an EOF // or an ERR packet. The following code adds either the final EOF or ERR packet. This is equally valid // for when CLIENT_DEPRECATE_EOF is enabled or not. If CLIENT_DEPRECATE_EOF is: // * DISABLED: The behavior is as described before. // * ENABLED: Code is identical for this case. The initial EOF packet is conditionally added by // 'MySQL_ResultSet::init', thus, this packet should not be present if not needed at this point. // In case of error an ERR packet needs to be added, otherwise `add_eof` handles the generation of // the equivalent OK packet replacing the final EOF packet. int myerr = mysql_stmt_errno(_stmt); if (myerr) { PROXY_TRACE2(); add_err(myconn->myds); } else { PROXY_TRACE2(); add_eof(); } } MySQL_ResultSet::~MySQL_ResultSet() { PtrSize_t pkt; //if (PSarrayOUT) { while (PSarrayOUT.len) { PSarrayOUT.remove_index_fast(0,&pkt); l_free(pkt.size, pkt.ptr); } //delete PSarrayOUT; //} if (buffer) { free(buffer); buffer=NULL; } //if (myds) myds->pkt_sid=sid-1; } // this function is used for binary protocol // maybe later on can be adapted for text protocol too unsigned int MySQL_ResultSet::add_row(MYSQL_ROWS *rows) { unsigned int pkt_length=0; MYSQL_ROW row = rows->data; unsigned long row_length = rows->length; // we call generate_pkt_row3 passing row_length sid=myprot->generate_pkt_row3(this, &pkt_length, sid, 0, NULL, row, row_length); sid++; resultset_size+=pkt_length; num_rows++; return pkt_length; } // this function is used for text protocol unsigned int MySQL_ResultSet::add_row(MYSQL_ROW row) { unsigned long *lengths=mysql_fetch_lengths(result); unsigned int pkt_length=0; if (myprot) { // we call generate_pkt_row3 without passing row_length sid=myprot->generate_pkt_row3(this, &pkt_length, sid, num_fields, lengths, row, 0); } else { unsigned int col=0; for (col=0; collength; num_rows++; uint8_t pkt_sid=sid; if (length < (0xFFFFFF+sizeof(mysql_hdr))) { mysql_hdr myhdr; myhdr.pkt_length=length; myhdr.pkt_id=pkt_sid; memcpy(offset, &myhdr, sizeof(mysql_hdr)); memcpy(offset+sizeof(mysql_hdr), row->data, row->length); pkt_sid++; } else { unsigned int left=length; unsigned int copied=0; while (left>=0xFFFFFF) { mysql_hdr myhdr; myhdr.pkt_length=0xFFFFFF; myhdr.pkt_id=pkt_sid; pkt_sid++; memcpy(offset, &myhdr, sizeof(mysql_hdr)); offset+=sizeof(mysql_hdr); char *o = (char *) row->data; o += copied; memcpy(offset, o, myhdr.pkt_length); offset+=0xFFFFFF; // we are writing a large packet (over 16MB), we assume we are always outside the buffer copied+=0xFFFFFF; left-=0xFFFFFF; } mysql_hdr myhdr; myhdr.pkt_length=left; myhdr.pkt_id=pkt_sid; pkt_sid++; memcpy(offset, &myhdr, sizeof(mysql_hdr)); offset+=sizeof(mysql_hdr); char *o = (char *) row->data; o += copied; memcpy(offset, o, myhdr.pkt_length); // we are writing a large packet (over 16MB), we assume we are always outside the buffer } sid=pkt_sid; return length; } void MySQL_ResultSet::add_eof(bool suppress_warning_count) { if (myprot) { unsigned int nTrx=myds->sess->NumActiveTransactions(); uint16_t setStatus = (nTrx ? SERVER_STATUS_IN_TRANS : 0 ); if (myds->sess->autocommit) setStatus += SERVER_STATUS_AUTOCOMMIT; setStatus |= ( mysql->server_status & ~SERVER_STATUS_AUTOCOMMIT ); // get flags from server_status but ignore autocommit setStatus = setStatus & ~SERVER_STATUS_CURSOR_EXISTS; // Do not send cursor #1128 //myprot->generate_pkt_EOF(false,&pkt.ptr,&pkt.size,sid,0,mysql->server_status|setStatus); //PSarrayOUT->add(pkt.ptr,pkt.size); //sid++; //resultset_size+=pkt.size; // Note: warnings count will only be sent to the client if mysql-query_digests is enabled const MySQL_Backend* _mybe = myds->sess->mybe; const MySQL_Data_Stream* _server_myds = (_mybe && _mybe->server_myds) ? _mybe->server_myds : nullptr; const MySQL_Connection* _myconn = (_server_myds && _server_myds->myds_type == MYDS_BACKEND && _server_myds->myconn) ? _server_myds->myconn : nullptr; const unsigned int warning_count = (_myconn && suppress_warning_count == false) ? _myconn->warning_count : 0; if (deprecate_eof_active) { PtrSize_t pkt; buffer_to_PSarrayOut(); myprot->generate_pkt_OK(false, &pkt.ptr, &pkt.size, sid, 0, 0, setStatus, warning_count, NULL, true); PSarrayOUT.add(pkt.ptr, pkt.size); resultset_size += pkt.size; } else { // due to bug #3547 , in case of an error we remove the EOF // and replace it with an ERR // note that EOF is added on a packet on its own, instead of using a buffer, // so that can be removed using remove_last_eof() buffer_to_PSarrayOut(); myprot->generate_pkt_EOF(false, NULL, NULL, sid, warning_count, setStatus, this); resultset_size += 9; buffer_to_PSarrayOut(); } sid++; } resultset_completed=true; } void MySQL_ResultSet::add_err(MySQL_Data_Stream *_myds) { PtrSize_t pkt; if (myprot) { MYSQL *_mysql=_myds->myconn->mysql; buffer_to_PSarrayOut(); char sqlstate[10]; sprintf(sqlstate,"%s",mysql_sqlstate(_mysql)); if (_myds && _myds->killed_at) { // see case #750 if (_myds->kill_type == 0) { myprot->generate_pkt_ERR(false,&pkt.ptr,&pkt.size,sid,1907,sqlstate,(char *)"Query execution was interrupted, query_timeout exceeded"); MyHGM->p_update_mysql_error_counter(p_mysql_error_type::proxysql, _myds->myconn->parent->myhgc->hid, _myds->myconn->parent->address, _myds->myconn->parent->port, 1907); } else { myprot->generate_pkt_ERR(false,&pkt.ptr,&pkt.size,sid,1317,sqlstate,(char *)"Query execution was interrupted"); MyHGM->p_update_mysql_error_counter(p_mysql_error_type::proxysql, _myds->myconn->parent->myhgc->hid, _myds->myconn->parent->address, _myds->myconn->parent->port, 1317); } } else { int myerr = 0; // the error code is returned from: // - mysql_stmt_errno() if using a prepared statement // - mysql_errno() if not using a prepared statement if (stmt) { myerr = mysql_stmt_errno(stmt); myprot->generate_pkt_ERR(false,&pkt.ptr,&pkt.size,sid,myerr,sqlstate,mysql_stmt_error(stmt)); } else { myerr = mysql_errno(_mysql); myprot->generate_pkt_ERR(false,&pkt.ptr,&pkt.size,sid,myerr,sqlstate,mysql_error(_mysql)); } // TODO: Check this is a mysql error MyHGM->p_update_mysql_error_counter(p_mysql_error_type::mysql, _myds->myconn->parent->myhgc->hid, _myds->myconn->parent->address, _myds->myconn->parent->port, myerr); } PSarrayOUT.add(pkt.ptr,pkt.size); sid++; resultset_size+=pkt.size; } resultset_completed=true; } /* bool MySQL_ResultSet::get_COM_FIELD_LIST_response(PtrSizeArray *PSarrayFinal) { transfer_started=true; if (myprot) { } return resultset_completed; } */ bool MySQL_ResultSet::get_resultset(PtrSizeArray *PSarrayFinal) { transfer_started=true; if (myprot) { PSarrayFinal->copy_add(&PSarrayOUT,0,PSarrayOUT.len); while (PSarrayOUT.len) PSarrayOUT.remove_index(PSarrayOUT.len-1,NULL); } return resultset_completed; } void MySQL_ResultSet::buffer_to_PSarrayOut(bool _last) { if (buffer_used==0) return; // exit immediately if the buffer is empty if (buffer_used < RESULTSET_BUFLEN/2) { if (_last == false) { buffer=(unsigned char *)realloc(buffer,buffer_used); } } PSarrayOUT.add(buffer,buffer_used); if (_last) { buffer = NULL; } else { buffer=(unsigned char *)malloc(RESULTSET_BUFLEN); } buffer_used=0; } unsigned long long MySQL_ResultSet::current_size() { unsigned long long intsize=0; intsize+=sizeof(MySQL_ResultSet); intsize+=RESULTSET_BUFLEN; // size of buffer if (PSarrayOUT.len==0) // see bug #699 return intsize; intsize+=sizeof(PtrSizeArray); intsize+=(PSarrayOUT.size*sizeof(PtrSize_t *)); unsigned int i; for (i=0; isize>RESULTSET_BUFLEN) { intsize+=pkt->size; } else { intsize+=RESULTSET_BUFLEN; } } return intsize; } my_bool proxy_mysql_stmt_close(MYSQL_STMT* stmt) { // Clean internal structures for 'stmt->mysql->stmts'. if (stmt->mysql) { stmt->mysql->stmts = list_delete(stmt->mysql->stmts, &stmt->list); } // Nullify 'mysql' field to avoid sending a blocking command to the server. stmt->mysql = NULL; // Perform the regular close operation. return mysql_stmt_close(stmt); }