1--TEST-- 2PAM: SHA-256 3--EXTENSIONS-- 4mysqli 5--SKIPIF-- 6<?php 7ob_start(); 8phpinfo(INFO_MODULES); 9$tmp = ob_get_contents(); 10ob_end_clean(); 11if (!stristr($tmp, "auth_plugin_sha256_password")) 12 die("skip SHA256 auth plugin not built-in to mysqlnd"); 13 14require_once 'connect.inc'; 15if (!$link = @my_mysqli_connect($host, $user, $passwd, $db, $port, $socket)) 16 die(sprintf("skip Can't connect to MySQL Server - [%d] %s", mysqli_connect_errno(), mysqli_connect_error())); 17 18if (mysqli_get_server_version($link) < 50606) 19 die("skip: SHA-256 requires MySQL 5.6.6+"); 20 21if (!($res = $link->query("SHOW PLUGINS"))) { 22 die(sprintf("skip [%d] %s\n", $link->errno, $link->error)); 23} 24 25$found = false; 26while ($row = $res->fetch_assoc()) { 27 if (($row['Name'] == 'sha256_password') && ($row['Status'] == 'ACTIVE')) { 28 $found = true; 29 break; 30 } 31} 32if (!$found) 33 die("skip SHA-256 server plugin unavailable"); 34 35if (!($res = $link->query("SHOW STATUS LIKE 'Rsa_public_key'"))) { 36 die(sprintf("skip [%d] %s\n", $link->errno, $link->error)); 37} 38 39if (!($row = $res->fetch_assoc())) { 40 die(sprintf("skip Failed to check RSA pub key, [%d] %s\n", $link->errno, $link->error)); 41} 42 43if (strlen($row['Value']) < 100) { 44 die(sprintf("skip Server misconfiguration? RSA pub key is suspicious, [%d] %s\n", $link->errno, $link->error)); 45} 46 47// Ignore errors because this variable exists only in MySQL 5.6 and 5.7 48$link->query("SET @@session.old_passwords=2"); 49 50$link->query('DROP USER shatest'); 51$link->query("DROP USER shatest@localhost"); 52 53 54if (!$link->query('CREATE USER shatest@"%" IDENTIFIED WITH sha256_password') || 55 !$link->query('CREATE USER shatest@"localhost" IDENTIFIED WITH sha256_password')) { 56 die(sprintf("skip CREATE USER failed [%d] %s", $link->errno, $link->error)); 57} 58 59if (!$link->query('SET PASSWORD FOR shatest@"%" = "shatest"') || 60 !$link->query('SET PASSWORD FOR shatest@"localhost" = "shatest"')) { 61 die(sprintf("skip SET PASSWORD failed [%d] %s", $link->errno, $link->error)); 62} 63 64if (!$link->query("DROP TABLE IF EXISTS test") || 65 !$link->query("CREATE TABLE test (id INT)") || 66 !$link->query("INSERT INTO test(id) VALUES (1), (2), (3)")) 67 die(sprintf("SKIP [%d] %s\n", $link->errno, $link->error)); 68 69 70if (!$link->query(sprintf("GRANT SELECT ON TABLE %s.test TO shatest@'%%'", $db)) || 71 !$link->query(sprintf("GRANT SELECT ON TABLE %s.test TO shatest@'localhost'", $db))) { 72 die(sprintf("skip Cannot grant SELECT to user [%d] %s", mysqli_errno($link), mysqli_error($link))); 73} 74 75$link->close(); 76echo "nocache"; 77?> 78--FILE-- 79<?php 80 require_once 'connect.inc'; 81 82 if (!$link = my_mysqli_connect($host, 'shatest', 'shatest', $db, $port, $socket)) { 83 printf("[001] Cannot connect to the server using host=%s, user=%s, passwd=***, dbname=%s, port=%s, socket=%s\n", 84 $host, "shatest", $db, $port, $socket); 85 } else { 86 87 if (!$res = $link->query("SELECT id FROM test WHERE id = 1")) 88 printf("[002] [%d] %s\n", $link->errno, $link->error); 89 90 if (!$row = mysqli_fetch_assoc($res)) { 91 printf("[003] [%d] %s\n", $link->errno, $link->error); 92 } 93 94 if ($row['id'] != 1) { 95 printf("[004] Expecting 1 got %s/'%s'", gettype($row['id']), $row['id']); 96 } 97 98 $res->close(); 99 $link->close(); 100 } 101 102 print "done!"; 103?> 104--CLEAN-- 105<?php 106 require_once 'clean_table.inc'; 107 $link->query('DROP USER shatest'); 108 $link->query('DROP USER shatest@localhost'); 109?> 110--EXPECT-- 111done! 112