upstream/openldap
1
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-12-27 01:59:38 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

Add additional crypt() sanity checks.

Browse source
This commit is contained in:
Kurt Zeilenga 2000-01-17 16:53:15 +00:00
parent 6a06fb7fba
commit c17b89f431
1 changed files with 13 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
libraries/liblutil/passwd.c
View file

@ -748,7 +748,7 @@ static int chk_unix(
const struct berval * cred )
{
int i;
char *pw;
char *pw,*cr;
for( i=0; i<cred->bv_len; i++) {
if(cred->bv_val[i] == '\0') {
@ -794,13 +794,18 @@ static int chk_unix(
if( pw == NULL || *pw == '\0' ) return 1;
return strcmp(pw, crypt(cred->bv_val, pw));
cr = crypt(cred->bv_val, pw);
if( cr == NULL || *cr == '\0' ) return 1;
return strcmp(pw, cr);
}
# endif
#endif
/* PASSWORD CHECK ROUTINES */
/* PASSWORD GENERATION ROUTINES */
static struct berval *hash_ssha1(
const struct pw_scheme *scheme,
const struct berval *passwd )
@ -928,8 +933,13 @@ static struct berval *hash_crypt(
hash.bv_val = crypt( passwd->bv_val, salt );
if( hash.bv_val == NULL ) return NULL;
hash.bv_len = strlen( hash.bv_val );
if( hash.bv_len == 0 ) {
return NULL;
}
return pw_string( scheme, &hash );
}
#endif