7-day MaxScale Trial: Explore the latest version of our advanced database proxy!

Start Trial Now

Download MariaDB Contact Us

sha256_password Plugin

SHA256 authentication possible exchanges:

if connection use SSL (SSLRequest Packet sent)
- client send a clear password answer
else
- if client doesn't know server RSA public key
  - client sends a public key request
  - server sends a public key response
- client sends an RSA encrypted password
- ends with server sending either OK_Packet , ERR_Packet

Client clear password answer

string password without encryption

Public key request

byte<1> fixed 0x01 value

Public key response

byte<1> fixed 0x01 value
byte public key data

RSA encrypted password

byte<256> RSA encrypted password

RSA encrypted value of XOR(password, seed) using server public key (RSA_PKCS1_OAEP_PADDING).

_{This page is licensed: CC BY-SA / Gnu FDL}

PreviousConnecting Next2 - Text Protocol

Last updated 8 days ago

Was this helpful?