Relevant BUGIDs: Redhat BZ 115309

author Tomas Mraz <tm@t8m.info>

Wed, 10 Nov 2004 09:44:32 +0000 (09:44 +0000)

committer Tomas Mraz <tm@t8m.info>

Wed, 10 Nov 2004 09:44:32 +0000 (09:44 +0000)
author Tomas Mraz <tm@t8m.info>
Wed, 10 Nov 2004 09:44:32 +0000 (09:44 +0000)
committer Tomas Mraz <tm@t8m.info>
Wed, 10 Nov 2004 09:44:32 +0000 (09:44 +0000)
diff --git a/modules/pam_unix/pam_unix_passwd.c b/modules/pam_unix/pam_unix_passwd.c

index 71695276340332205e98e016cfc1d855f7c46ace..e3f329418aa478340ad3c6c0cf4c27cba34a4f1f 100644 (file)
--- a/modules/pam_unix/pam_unix_passwd.c
+++ b/modules/pam_unix/pam_unix_passwd.c
@@ -539,7 +539,23 @@ static int _do_setpass(pam_handle_t* pamh, const char *forwho, char *fromwhat,
                 goto done;
         }
  
-       if (on(UNIX_NIS, ctrl) && _unix_comesfromsource(pamh, forwho, 0, 1)) {
+       if (_unix_comesfromsource(pamh, forwho, 1, 0)) {
+               /* first, save old password */
+               if (save_old_password(pamh, forwho, fromwhat, remember)) {
+                       retval = PAM_AUTHTOK_ERR;
+                       goto done;
+               }
+               if (on(UNIX_SHADOW, ctrl) || _unix_shadowed(pwd)) {
+                       retval = _update_shadow(pamh, forwho, towhat);
+                       if (retval != PAM_SUCCESS && SELINUX_ENABLED) 
+                         retval = _unix_run_shadow_binary(pamh, ctrl, forwho, fromwhat, towhat);
+                       if (retval == PAM_SUCCESS)
+                               if (!_unix_shadowed(pwd))
+                                       retval = _update_passwd(pamh, forwho, "x");
+               } else {
+                       retval = _update_passwd(pamh, forwho, towhat);
+               }
+       } else if (on(UNIX_NIS, ctrl) && _unix_comesfromsource(pamh, forwho, 0, 1)) {
                 struct timeval timeout;
                 struct yppasswd yppwd;
                 CLIENT *clnt;
@@ -605,23 +621,6 @@ static int _do_setpass(pam_handle_t* pamh, const char *forwho, char *fromwhat,
  #endif
                 return retval;
         }
-       /* first, save old password */
-       if (save_old_password(pamh, forwho, fromwhat, remember)) {
-               retval = PAM_AUTHTOK_ERR;
-               goto done;
-       }
-       if (_unix_comesfromsource(pamh, forwho, 1, 0)) {
-               if (on(UNIX_SHADOW, ctrl) || _unix_shadowed(pwd)) {
-                       retval = _update_shadow(pamh, forwho, towhat);
-                       if (retval != PAM_SUCCESS && SELINUX_ENABLED) 
-                         retval = _unix_run_shadow_binary(pamh, ctrl, forwho, fromwhat, towhat);
-                       if (retval == PAM_SUCCESS)
-                               if (!_unix_shadowed(pwd))
-                                       retval = _update_passwd(pamh, forwho, "x");
-               } else {
-                       retval = _update_passwd(pamh, forwho, towhat);
-               }
-       }
  
  done:
  #ifdef USE_LCKPWDF
author	Tomas Mraz <tm@t8m.info>
	Wed, 10 Nov 2004 09:44:32 +0000 (09:44 +0000)
committer	Tomas Mraz <tm@t8m.info>
	Wed, 10 Nov 2004 09:44:32 +0000 (09:44 +0000)