Attachment #381764 for bug #493432

View | Details | Raw Unified | Return to bug 493432
Collapse All | Expand All




	  } else {
	    cryptpw = crypt (pass, data.dptr);

	    if (cryptpw && strlen(cryptpw) == (size_t)data.dsize) {
	      compare = memcmp(data.dptr, cryptpw, data.dsize);
	    } else {
	      compare = -2;
	      if (ctrl & PAM_DEBUG_ARG) {
		if (cryptpw)
		  pam_syslog(pamh, LOG_INFO, "lengths of computed and stored hashes differ");
		else
		  pam_syslog(pamh, LOG_INFO, "crypt() returned NULL");
	      }
	    };

- 

Return to bug 493432

Lines 222-233 user_lookup (pam_handle_t pamh, const char database, const char *cryptmode, Link Here

(-)a/modules/pam_userdb/pam_userdb.c (-4 / +6 lines)
222	} else {	222	} else {
223	cryptpw = crypt (pass, data.dptr);	223	cryptpw = crypt (pass, data.dptr);
224		224
225	if (cryptpw) {	225	if (cryptpw && strlen(cryptpw) == (size_t)data.dsize) {
226	compare = strncasecmp (data.dptr, cryptpw, data.dsize);	226	compare = memcmp(data.dptr, cryptpw, data.dsize);
227	} else {	227	} else {
228	compare = -2;	228	compare = -2;
229	if (ctrl & PAM_DEBUG_ARG) {	229	if (ctrl & PAM_DEBUG_ARG) {
230	pam_syslog(pamh, LOG_INFO, "crypt() returned NULL");	230	if (cryptpw)
		231	pam_syslog(pamh, LOG_INFO, "lengths of computed and stored hashes differ");
		232	else
		233	pam_syslog(pamh, LOG_INFO, "crypt() returned NULL");
231	}	234	}
232	};	235	};
233		236
234	-