===================================================================
RCS file: /cvsrepo/anoncvs/cvs/src/usr.bin/ssh/auth-passwd.c,v
retrieving revision 1.27.2.1
retrieving revision 1.28
diff -u -r1.27.2.1 -r1.28
--- src/usr.bin/ssh/auth-passwd.c	2003/09/16 21:20:24	1.27.2.1
+++ src/usr.bin/ssh/auth-passwd.c	2003/07/22 13:35:22	1.28
@@ -36,7 +36,7 @@
  */
 
 #include "includes.h"
-RCSID("$OpenBSD: auth-passwd.c,v 1.27.2.1 2003/09/16 21:20:24 brad Exp $");
+RCSID("$OpenBSD: auth-passwd.c,v 1.28 2003/07/22 13:35:22 markus Exp $");
 
 #include "packet.h"
 #include "log.h"
@@ -54,20 +54,19 @@
 auth_password(Authctxt *authctxt, const char *password)
 {
 	struct passwd * pw = authctxt->pw;
-	int ok = authctxt->valid;
 
 	/* deny if no user. */
 	if (pw == NULL)
 		return 0;
 	if (pw->pw_uid == 0 && options.permit_root_login != PERMIT_YES)
-		ok = 0;
+		return 0;
 	if (*password == '\0' && options.permit_empty_passwd == 0)
 		return 0;
 #ifdef KRB5
 	if (options.kerberos_authentication == 1) {
 		int ret = auth_krb5_password(authctxt, password);
 		if (ret == 1 || ret == 0)
-			return ret && ok;
+			return ret;
 		/* Fall back to ordinary passwd authentication. */
 	}
 #endif
@@ -76,11 +75,11 @@
 	    (char *)password) == 0)
 		return 0;
 	else
-		return ok;
+		return 1;
 #else
 	/* Check for users with no password. */
 	if (strcmp(password, "") == 0 && strcmp(pw->pw_passwd, "") == 0)
-		return ok;
+		return 1;
 	else {
 		/* Encrypt the candidate password using the proper salt. */
 		char *encrypted_password = crypt(password,
@@ -90,7 +89,7 @@
 		 * Authentication is accepted if the encrypted passwords
 		 * are identical.
 		 */
-		return (strcmp(encrypted_password, pw->pw_passwd) == 0) && ok;
+		return (strcmp(encrypted_password, pw->pw_passwd) == 0);
 	}
 #endif
 }