mysql_user: make sure current_pass_hash is a string before using it in comparison (#64059)

* make sure current_pass_hash is a string before using it in comparison * add changelogs/fragments file * fix changelogs/fragments file: it is actually a bugfix, not a minor change
2020-01-24 19:32:15 +01:00 · 2020-01-24 19:32:15 +01:00 · 4d1e21bf18
commit 4d1e21bf18
parent 9df9ed4cd3
2 changed files with 4 additions and 0 deletions
--- a/changelogs/fragments/64059-mysql_user_fix_password_comparison.yaml
+++ b/changelogs/fragments/64059-mysql_user_fix_password_comparison.yaml
@ -0,0 +1,2 @@
+bugfixes:
+- mysql_user - make sure current_pass_hash is a string before using it in comparison (https://github.com/ansible/ansible/issues/60567).
--- a/lib/ansible/modules/database/mysql/mysql_user.py
+++ b/lib/ansible/modules/database/mysql/mysql_user.py
@ -390,6 +390,8 @@ def user_mod(cursor, user, host, host_all, password, encrypted,
                FROM mysql.user WHERE user = %%s AND host = %%s
                """ % (colA[0], colA[0], colB[0], colB[0]), (user, host))
            current_pass_hash = cursor.fetchone()[0]
+            if isinstance(current_pass_hash, bytes):
+                current_pass_hash = current_pass_hash.decode('ascii')

            if encrypted:
                encrypted_password = password