SHA256, and SHA512 exactly (not only the first 3/6 chars).
* libmisc/salt.c (SHA_salt_rounds): Set rounds to the specified
prefered_rounds value, if specified.
* src/gpasswd.c, libmisc/salt.c: Fix compilation warnings (use
size_t for lengths).
* src/chpasswd.c, src/chgpasswd.c: Add missing parenthesis.
+2007-11-20 Nicolas François <nicolas.francois@centraliens.net>
+
+ * libmisc/obscure.c, libmisc/salt.c, src/passwd.c: Match DES, MD5,
+ SHA256, and SHA512 exactly (not only the first 3/6 chars).
+ * libmisc/salt.c (SHA_salt_rounds): Set rounds to the specified
+ prefered_rounds value, if specified.
+ * src/gpasswd.c, libmisc/salt.c: Fix compilation warnings (use
+ size_t for lengths).
+ * src/chpasswd.c, src/chgpasswd.c: Add missing parenthesis.
+
2007-11-20 Nicolas François <nicolas.francois@centraliens.net>
* man/sv, man/de, man/fr, man/pl, man/ru, man/it: Ignore the
perror ("crypt");
exit (1);
}
+ if (salt && salt[0] == '$' && strlen (cp) <= 13)
+ {
+ /* The crypt algorithm was not recognized by libcrypt */
+ char *method = "$1$";
+ switch (salt[1])
+ {
+ case '1':
+ method = "MD5";
+ break;
+ case '5':
+ method = "SHA256";
+ break;
+ case '6':
+ method = "SHA512";
+ break;
+ default:
+ method[1] = salt[1];
+ }
+ fprintf (stderr,
+ _("Unknown crypt method (%s)\n"),
+ method);
+ exit (1);
+ }
if (strlen (cp) != 13)
return cp; /* nonstandard crypt() in libc, better bail out */
strcpy (cipher, cp);
#ifdef ENCRYPTMETHOD_SELECT
} else {
- if (!strncmp (result, "MD5" , 3) ||
- !strncmp (result, "SHA256", 6) ||
- !strncmp (result, "SHA512", 6))
+ if (!strcmp (result, "MD5") ||
+ !strcmp (result, "SHA256") ||
+ !strcmp (result, "SHA512"))
return NULL;
}
(double)rand () * (max_rounds-min_rounds+1)/RAND_MAX;
} else if (0 == *prefered_rounds)
return "";
+ else
+ rounds = *prefered_rounds;
/* Sanity checks. The libc should also check this, but this
* protects against a rounds_prefix overflow. */
* +1 \0
*/
static char result[40];
- int max_salt_len = 8;
+ size_t max_salt_len = 8;
char *method = "DES";
result[0] = '\0';
if (getdef_bool ("MD5_CRYPT_ENAB"))
method = "MD5";
- if (!strncmp (method, "MD5", 3)) {
+ if (!strcmp (method, "MD5")) {
MAGNUM(result, '1');
max_salt_len = 11;
#ifdef ENCRYPTMETHOD_SELECT
- } else if (!strncmp (method, "SHA256", 6)) {
+ } else if (!strcmp (method, "SHA256")) {
MAGNUM(result, '5');
strcat(result, SHA_salt_rounds((int *)arg));
max_salt_len = strlen(result) + SHA_salt_size();
- } else if (!strncmp (method, "SHA512", 6)) {
+ } else if (!strcmp (method, "SHA512")) {
MAGNUM(result, '6');
strcat(result, SHA_salt_rounds((int *)arg));
max_salt_len = strlen(result) + SHA_salt_size();
#endif
- } else if (0 != strncmp (method, "DES", 3)) {
+ } else if (0 != strcmp (method, "DES")) {
fprintf (stderr,
_("Invalid ENCRYPT_METHOD value: '%s'.\n"
"Defaulting to DES.\n"),
usage ();
}
if ((eflg && (md5flg || cflg)) ||
- md5flg && cflg) {
+ (md5flg && cflg)) {
fprintf (stderr,
_("%s: the -c, -e, and -m flags are exclusive\n"),
Prog);
usage ();
}
if ((eflg && (md5flg || cflg)) ||
- md5flg && cflg) {
+ (md5flg && cflg)) {
fprintf (stderr,
_("%s: the -c, -e, and -m flags are exclusive\n"),
Prog);
const char *start, *end;
char username[32];
int errors = 0;
- int len;
+ size_t len;
for (start = users; start && *start; start = end) {
if ((end = strchr (start, ','))) {
pass_max_len = getdef_num ("PASS_MAX_LEN", 8);
#ifdef ENCRYPTMETHOD_SELECT
} else {
- if (!strncmp (method, "MD5" , 3) ||
- !strncmp (method, "SHA256", 6) ||
- !strncmp (method, "SHA512", 6))
+ if (!strcmp (method, "MD5") ||
+ !strcmp (method, "SHA256") ||
+ !strcmp (method, "SHA512"))
pass_max_len = -1;
else
pass_max_len = getdef_num ("PASS_MAX_LEN", 8);
projects / thirdparty / shadow.git / commitdiff
