sudo_auth_init(struct passwd *pw)
{
sudo_auth *auth;
- int status;
+ int status = AUTH_SUCCESS;
if (auth_switch[0].name == NULL)
- return AUTH_SUCCESS;
+ return TRUE;
/* Make sure we haven't mixed standalone and shared auth methods. */
standalone = IS_STANDALONE(&auth_switch[0]);
else if (status == AUTH_FATAL) {
/* XXX log */
audit_failure(NewArgv, "authentication failure");
- return -1; /* assume error msg already printed */
+ break; /* assume error msg already printed */
}
}
}
- return AUTH_SUCCESS;
+ return status == AUTH_FATAL ? -1 : TRUE;
}
int
sudo_auth_cleanup(struct passwd *pw)
{
sudo_auth *auth;
- int status;
+ int status = AUTH_SUCCESS;
/* Call cleanup routines. */
for (auth = auth_switch; auth->name; auth++) {
if (status == AUTH_FATAL) {
/* XXX log */
audit_failure(NewArgv, "authentication failure");
- return -1; /* assume error msg already printed */
+ break; /* assume error msg already printed */
}
}
}
- return AUTH_SUCCESS;
+ return status == AUTH_FATAL ? -1 : TRUE;
}
int
/* Init authentication system regardless of whether we need a password. */
auth_pw = get_authpw();
- sudo_auth_init(auth_pw);
+ if (sudo_auth_init(auth_pw) == -1) {
+ pw_delref(auth_pw);
+ rval = -1;
+ goto done;
+ }
pw_delref(auth_pw);
/* Always prompt for a password when -k was specified with the command. */
projects / sudo / commitdiff