Fix unittest bad authentication hash

isrgomez · isrgomez · commit ee4d6d0d9dd4 · 2018-10-26T12:52:46.000-05:00
In some occasions the server 5.6.40+ sends an authentication data
for the Native password that once is scrambled along the user and
password will produce an invalid authentication message.

This patch verify the authentication message in search of additional
parameter separators \x00 which corrupts the message and cause the
authentication to fail. In such cases the connection attempt will be
restarted, by requesting new authentication data to produce a new
authentication message.
diff --git a/lib/mysql/connector/authentication.py b/lib/mysql/connector/authentication.py
@@ -128,7 +128,9 @@ def prepare_password(self):
         except Exception as exc:
             raise errors.InterfaceError(
                 "Failed scrambling password; {0}".format(exc))
-
+        if b'\x00' in hash4:
+            # Server uses it as separator which cause authentification fail
+            raise errors.HashError("Hashed authentication data is invalid")
         return hash4
 
 
diff --git a/lib/mysql/connector/connection.py b/lib/mysql/connector/connection.py
@@ -52,6 +52,8 @@
 from .utils import int4store
 from .abstracts import MySQLConnectionAbstract
 
+MAX_CONNECTION_ATTEMPTS = 3
+
 
 class MySQLConnection(MySQLConnectionAbstract):
     """Connection to a MySQL Server"""
@@ -241,20 +243,29 @@ def _open_connection(self):
         """
         self._protocol = MySQLProtocol()
         self._socket = self._get_connection()
-        try:
-            self._socket.open_connection()
-            self._do_handshake()
-            self._do_auth(self._user, self._password,
-                          self._database, self._client_flags, self._charset_id,
-                          self._ssl)
-            self.set_converter_class(self._converter_class)
-            if self._client_flags & ClientFlag.COMPRESS:
-                self._socket.recv = self._socket.recv_compressed
-                self._socket.send = self._socket.send_compressed
-        except:
-            # close socket
-            self.close()
-            raise
+        attempt = MAX_CONNECTION_ATTEMPTS
+        while attempt > 0:
+            attempt -= 1
+            try:
+                self._socket.open_connection()
+                self._do_handshake()
+                self._do_auth(self._user, self._password,
+                              self._database, self._client_flags, self._charset_id,
+                              self._ssl)
+                self.set_converter_class(self._converter_class)
+                if self._client_flags & ClientFlag.COMPRESS:
+                    self._socket.recv = self._socket.recv_compressed
+                    self._socket.send = self._socket.send_compressed
+                break
+            except errors.HashError:
+                # close socket
+                self.close()
+                if attempt == 0:
+                    raise
+            except:
+                # close socket
+                self.close()
+                raise
 
     def shutdown(self):
         """Shut down connection to MySQL Server.
diff --git a/lib/mysql/connector/errors.py b/lib/mysql/connector/errors.py
@@ -251,6 +251,11 @@ class DataError(DatabaseError):
     pass
 
 
+class HashError(DatabaseError):
+    """Exception for errors reporting problems with hashing"""
+    pass
+
+
 class NotSupportedError(DatabaseError):
     """Exception for errors when an unsupported database feature was used"""
     pass
diff --git a/tests/test_authentication.py b/tests/test_authentication.py
@@ -133,22 +133,22 @@ def test_prepare_password(self):
         if PY2:
             empty = ''
             auth_data = (
-                '\x3b\x55\x78\x7d\x2c\x5f\x7c\x72\x49\x52'
-                '\x3f\x28\x47\x6f\x77\x28\x5f\x28\x46\x69'
+                '\x2d\x3e\x33\x25\x5b\x7d\x25\x3c\x40\x6b'
+                '\x7b\x47\x30\x5b\x57\x25\x51\x48\x55\x53'
                 )
             auth_response = (
-                '\x3a\x07\x66\xba\xba\x01\xce\xbe\x55\xe6'
-                '\x29\x88\xaa\xae\xdb\x00\xb3\x4d\x91\x5b'
+                '\x73\xb8\xf0\x4b\x3a\xa5\x7c\x46\xb9\x84'
+                '\x90\x50\xab\xc0\x3a\x0f\x8f\xad\x51\xa3'
             )
         else:
             empty = b''
             auth_data = (
-                b'\x3b\x55\x78\x7d\x2c\x5f\x7c\x72\x49\x52'
-                b'\x3f\x28\x47\x6f\x77\x28\x5f\x28\x46\x69'
+                b'\x2d\x3e\x33\x25\x5b\x7d\x25\x3c\x40\x6b'
+                b'\x7b\x47\x30\x5b\x57\x25\x51\x48\x55\x53'
                 )
             auth_response = (
-                b'\x3a\x07\x66\xba\xba\x01\xce\xbe\x55\xe6'
-                b'\x29\x88\xaa\xae\xdb\x00\xb3\x4d\x91\x5b'
+                b'\x73\xb8\xf0\x4b\x3a\xa5\x7c\x46\xb9\x84'
+                b'\x90\x50\xab\xc0\x3a\x0f\x8f\xad\x51\xa3'
             )
 
         auth_plugin = self.plugin_class('\x3f'*20, password=None)
diff --git a/tests/test_bugs.py b/tests/test_bugs.py
@@ -2688,10 +2688,18 @@ def test_auth_response(self):
         config['user'] = self.user['username']
         config['password'] = self.user['password']
         config['client_flags'] = [-constants.ClientFlag.SECURE_CONNECTION]
-        try:
-            cnx = connection.MySQLConnection(**config)
-        except Exception as exc:
-            self.fail("Connection failed: {0}".format(exc))
+        failures = []
+        max_failures = 2
+        for n in range(1000):
+            try:
+                _ = connection.MySQLConnection(**config)
+            except Exception as err:
+                failures.append(err)
+                if n > max_failures:
+                    break
+        if len(failures) > max_failures:
+            self.fail("Connection failed at {}/{} times. First error found: {}"
+                      "".format(len(failures), n, failures[0]))
 
 
 class BugOra18527437(tests.MySQLConnectorTests):
diff --git a/tests/test_protocol.py b/tests/test_protocol.py
@@ -59,8 +59,8 @@
 EOF_PACKET_RESULT = {'status_flag': 0, 'warning_count': 0}
 
 SEED = bytearray(
-    b'\x3b\x55\x78\x7d\x2c\x5f\x7c\x72\x49\x52'
-    b'\x3f\x28\x47\x6f\x77\x28\x5f\x28\x46\x69'
+    b'\x66\x5e\x25\x3d\x40\x6c\x7c\x4f\x53\x32'
+    b'\x41\x2f\x68\x3e\x3b\x4f\x5a\x56\x23\x46'
 )
 
 
@@ -72,31 +72,28 @@ def test_make_auth(self):
         """Make a MySQL authentication packet"""
         exp = {
             'allset': bytearray(
-                b'\x8d\xa2\x03\x00\x00\x00\x00\x40'
-                b'\x21\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'
+                b'\x8d\xa2\x03\x00\x00\x00\x00@!'
                 b'\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'
-                b'\x68\x61\x6d\x00\x14\x3a\x07\x66\xba\xba\x01\xce'
-                b'\xbe\x55\xe6\x29\x88\xaa\xae\xdb\x00\xb3\x4d\x91'
-                b'\x5b\x74\x65\x73\x74\x00'),
+                b'\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00ham'
+                b'\x00\x143\xaa_\x92\\d\x94Z\xb2\xf8;U\x8a\x0c'
+                b'\xfb\x8a\xfc\xa7\xd0\xe3test\x00'),
             'nopass': bytearray(
-                b'\x8d\xa2\x03\x00\x00\x00\x00\x40'
-                b'\x21\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'
+                b'\x8d\xa2\x03\x00\x00\x00\x00@!'
                 b'\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'
-                b'\x68\x61\x6d\x00\x00\x74\x65\x73\x74\x00'),
+                b'\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00ham'
+                b'\x00\x00test\x00'),
             'nouser': bytearray(
-                b'\x8d\xa2\x03\x00\x00\x00\x00\x40'
-                b'\x21\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'
+                b'\x8d\xa2\x03\x00\x00\x00\x00@!'
                 b'\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'
-                b'\x00\x14\x3a\x07\x66\xba\xba\x01\xce'
-                b'\xbe\x55\xe6\x29\x88\xaa\xae\xdb\x00\xb3\x4d\x91'
-                b'\x5b\x74\x65\x73\x74\x00'),
+                b'\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'
+                b'\x143\xaa_\x92\\d\x94Z\xb2\xf8;U\x8a\x0c'
+                b'\xfb\x8a\xfc\xa7\xd0\xe3test\x00'),
             'nodb': bytearray(
-                b'\x8d\xa2\x03\x00\x00\x00\x00\x40'
-                b'\x21\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'
+                b'\x8d\xa2\x03\x00\x00\x00\x00@!'
                 b'\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'
-                b'\x68\x61\x6d\x00\x14\x3a\x07\x66\xba\xba\x01\xce'
-                b'\xbe\x55\xe6\x29\x88\xaa\xae\xdb\x00\xb3\x4d\x91'
-                b'\x5b\x00'),
+                b'\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00ham'
+                b'\x00\x143\xaa_\x92\\d\x94Z\xb2\xf8;U\x8a\x0c'
+                b'\xfb\x8a\xfc\xa7\xd0\xe3\x00'),
         }
         flags = ClientFlag.get_default()
         kwargs = {
@@ -177,9 +174,9 @@ def test_make_changeuser(self):
         """Make a change user MySQL packet"""
         exp = {
             'allset': bytearray(
-                b'\x11\x68\x61\x6d\x00\x14\x3a\x07'
-                b'\x66\xba\xba\x01\xce\xbe\x55\xe6\x29\x88\xaa\xae'
-                b'\xdb\x00\xb3\x4d\x91\x5b\x74\x65\x73\x74\x00\x08'
+                b'\x11ham\x00\x143\xaa_'
+                b'\x92\\d\x94Z\xb2\xf8;U\x8a\x0c\xfb'
+                b'\x8a\xfc\xa7\xd0\xe3test\x00\x08'
                 b'\x00'),
             'nopass': bytearray(
                 b'\x11\x68\x61\x6d\x00\x00\x74\x65'
