Mercurial > dovecot > original-hg > dovecot-1.2
view src/auth/passdb-passwd.c @ 9354:687ac828b964 HEAD
lib-index: modseqs weren't tracked properly within session when changes were done.
author | Timo Sirainen <tss@iki.fi> |
---|---|
date | Tue, 01 Sep 2009 13:05:03 -0400 |
parents | b9faf4db2a9f |
children | 00cd9aacd03c |
line wrap: on
line source
/* Copyright (c) 2002-2009 Dovecot authors, see the included COPYING file */ #include "common.h" #include "passdb.h" #ifdef PASSDB_PASSWD #include "safe-memset.h" #include <pwd.h> #define PASSWD_CACHE_KEY "%u" #define PASSWD_PASS_SCHEME "CRYPT" static void passwd_verify_plain(struct auth_request *request, const char *password, verify_plain_callback_t *callback) { struct passwd *pw; int ret; auth_request_log_debug(request, "passwd", "lookup"); pw = getpwnam(request->user); if (pw == NULL) { auth_request_log_info(request, "passwd", "unknown user"); callback(PASSDB_RESULT_USER_UNKNOWN, request); return; } if (!IS_VALID_PASSWD(pw->pw_passwd)) { auth_request_log_info(request, "passwd", "invalid password field '%s'", pw->pw_passwd); callback(PASSDB_RESULT_USER_DISABLED, request); return; } /* save the password so cache can use it */ auth_request_set_field(request, "password", pw->pw_passwd, PASSWD_PASS_SCHEME); /* check if the password is valid */ ret = auth_request_password_verify(request, password, pw->pw_passwd, PASSWD_PASS_SCHEME, "passwd"); /* clear the passwords from memory */ safe_memset(pw->pw_passwd, 0, strlen(pw->pw_passwd)); if (ret <= 0) { callback(PASSDB_RESULT_PASSWORD_MISMATCH, request); return; } /* make sure we're using the username exactly as it's in the database */ auth_request_set_field(request, "user", pw->pw_name, NULL); callback(PASSDB_RESULT_OK, request); } static void passwd_init(struct passdb_module *module, const char *args) { if (strcmp(args, "blocking=yes") == 0) module->blocking = TRUE; else if (*args != '\0') i_fatal("passdb passwd: Unknown setting: %s", args); module->cache_key = PASSWD_CACHE_KEY; module->default_pass_scheme = PASSWD_PASS_SCHEME; } static void passwd_deinit(struct passdb_module *module ATTR_UNUSED) { endpwent(); } struct passdb_module_interface passdb_passwd = { "passwd", NULL, passwd_init, passwd_deinit, passwd_verify_plain, NULL, NULL }; #else struct passdb_module_interface passdb_passwd = { MEMBER(name) "passwd" }; #endif