File: [local] / src / libexec / login_passwd / login_passwd.c (download)
Revision 1.8, Wed Mar 10 21:30:27 2004 UTC (20 years, 2 months ago) by millert
Branch: MAIN
CVS Tags: OPENBSD_3_9_BASE, OPENBSD_3_9, OPENBSD_3_8_BASE, OPENBSD_3_8, OPENBSD_3_7_BASE, OPENBSD_3_7, OPENBSD_3_6_BASE, OPENBSD_3_6, OPENBSD_3_5_BASE, OPENBSD_3_5 Changes since 1.7: +3 -1 lines
More checking for a NULL return value from getpass(). otto@ OK
|
/* $OpenBSD: login_passwd.c,v 1.8 2004/03/10 21:30:27 millert Exp $ */
/*-
* Copyright (c) 2001 Hans Insulander <hin@openbsd.org>.
* All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
*
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
* SUCH DAMAGE.
*/
#include "common.h"
int
pwd_login(char *username, char *password, char *wheel, int lastchance,
char *class)
{
struct passwd *pwd;
size_t plen;
char *salt;
if (wheel != NULL && strcmp(wheel, "yes") != 0) {
fprintf(back, BI_VALUE " errormsg %s\n",
auth_mkvalue("you are not in group wheel"));
fprintf(back, BI_REJECT "\n");
return (AUTH_FAILED);
}
if (password == NULL)
return (AUTH_FAILED);
pwd = getpwnam(username);
if (pwd)
salt = pwd->pw_passwd;
else
salt = "xx";
setpriority(PRIO_PROCESS, 0, -4);
salt = crypt(password, salt);
plen = strlen(password);
memset(password, 0, plen);
/*
* Authentication fails if the user does not exist in the password
* database, the given password does not match the entry in the
* password database, or if the user's password field is empty
* and the given password is not the empty string.
*/
if (!pwd || strcmp(salt, pwd->pw_passwd) != 0 ||
(*pwd->pw_passwd == '\0' && plen > 0))
return (AUTH_FAILED);
if (login_check_expire(back, pwd, class, lastchance) == 0)
fprintf(back, BI_AUTH "\n");
else
return (AUTH_FAILED);
return (AUTH_OK);
}