php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

Request #80344 mysqlnd support for SASL SCRAM-SHA-1 and SCRAM-SHA-256 authentication
Submitted: 2020-11-09 15:39 UTC Modified: 2020-11-09 15:39 UTC
From: fjanisze@php.net Assigned: fjanisze (profile)
Status: Analyzed Package: MySQL related
PHP Version: 7.4.12 OS: any
Private report: No CVE-ID: None
View Add Comment Developer Edit
Have you experienced this issue?
Rate the importance of this bug to you:

 [2020-11-09 15:39 UTC] fjanisze@php.net 
Description:
------------
The authentication methods SCRAM-SHA-1 and SCRAM-SHA-256 have to be supported, this issue is about adding support for them in mysqlnd.

Test script:
---------------
<?php
$link = mysqli_connect("127.0.0.1", "user", "pass");
 
// Check connection
if($link === false){
    die("ERROR: Could not connect. " . mysqli_connect_error());
}
 
// Print host information
echo "Connect Successfully. Host info: " . mysqli_get_host_info($link) . PHP_EOL;

if ($result = $link->query("SHOW DATABASES")) {
  echo "Returned rows are: " . $result->num_rows . PHP_EOL;
  // Free the result set
  $result->free_result();
}

?>

Expected result:
----------------
Given the script and assuming that 127.0.0.1 runs a mysql server configured with LDAP SASL and auth method SCRAM-SHA-1 or SCRAM-SHA-256 for the user "user", the script succeeds and the query works.

Actual result:
--------------
The connection will fail since mysqlnd is not able to authenticate, at the moment LDAP SASL is not supported in the client but the server does support those methods.

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2020-11-09 15:39 UTC] fjanisze@php.net
-Status: Open +Status: Analyzed -Assigned To: +Assigned To: fjanisze
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved. 		Last updated: Sat Apr 27 10:01:29 2024 UTC