0.76: please submit patches for this section with actual code/doc
patches!
+* pam_unix: fix for legacy crypt() support when the password entered
+ was long. (Bug 521314 - agmorgan).
* pam_access no longer include gethostname() prototype complained from
David Lee (Bug 415423 - agmorgan).
* make pam_nologin more secure by default, added two new module
/*
* to avoid using the _extensions_ of the bigcrypt()
* function we truncate the newly entered password
+ * [Problems that followed from this are fixed as per
+ * Bug 521314.]
*/
char *temp = malloc(9);
/* the moment of truth -- do we agree with the password? */
D(("comparing state of pp[%s] and salt[%s]", pp, salt));
- if (strcmp(pp, salt) == 0) {
+ /*
+ * Note, we are comparing the bigcrypt of the password with
+ * the contents of the password field. If the latter was
+ * encrypted with regular crypt (and not bigcrypt) it will
+ * have been truncated for storage relative to the output
+ * of bigcrypt here. As such we need to compare only the
+ * stored string with the subset of bigcrypt's result.
+ * Bug 521314: The strncmp comparison is for legacy support.
+ */
+ if (strncmp(pp, salt, strlen(salt)) == 0) {
retval = PAM_SUCCESS;
} else {
retval = PAM_AUTH_ERR;
}
} else {
pp = bigcrypt(p, salt);
- if (strcmp(pp, salt) == 0) {
+ /*
+ * Note, we are comparing the bigcrypt of the password with
+ * the contents of the password field. If the latter was
+ * encrypted with regular crypt (and not bigcrypt) it will
+ * have been truncated for storage relative to the output
+ * of bigcrypt here. As such we need to compare only the
+ * stored string with the subset of bigcrypt's result.
+ * Bug 521314: the strncmp comparison is for legacy support.
+ */
+ if (strncmp(pp, salt, strlen(salt)) == 0) {
retval = UNIX_PASSED;
}
}
projects / linux-pam / commitdiff