Nikita Malyavin 583a5a79c9 MDEV-34854 Parsec sends garbage when using an empty password ...

When an empty password is set, the server doesn't call
st_mysql_auth::hash_password and leaves MYSQL_SERVER_AUTH_INFO::auth_string
empty.

Fix:
generate hashes by calling hash_password for empty passwords as well. This
changes the api behavior slightly, but since even old plugins support it,
we can ignore this.

Some empty passwords could be already stored with no salt, though. The user
will have to call SET PASSWORD once again, anyway the authentication wouldn't
have worked for such password.

2024-11-08 07:17:44 +01:00

1.9 KiB

Raw Blame History

View Raw