xref: /freebsd/crypto/openssh/auth2-passwd.c (revision 6b3455a7665208c366849f0b2b3bc916fb97516e) 
1 /*
2  * Copyright (c) 2000 Markus Friedl.  All rights reserved.
3  *
4  * Redistribution and use in source and binary forms, with or without
5  * modification, are permitted provided that the following conditions
6  * are met:
7  * 1. Redistributions of source code must retain the above copyright
8  *    notice, this list of conditions and the following disclaimer.
9  * 2. Redistributions in binary form must reproduce the above copyright
10  *    notice, this list of conditions and the following disclaimer in the
11  *    documentation and/or other materials provided with the distribution.
12  *
13  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
14  * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
15  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
16  * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
17  * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
18  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
19  * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
20  * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
21  * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
22  * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
23  */
24 
25 #include "includes.h"
26 RCSID("$OpenBSD: auth2-passwd.c,v 1.5 2003/12/31 00:24:50 dtucker Exp $");
27 
28 #include "xmalloc.h"
29 #include "packet.h"
30 #include "log.h"
31 #include "auth.h"
32 #include "monitor_wrap.h"
33 #include "servconf.h"
34 
35 /* import */
36 extern ServerOptions options;
37 
38 static int
39 userauth_passwd(Authctxt *authctxt)
40 {
41 	char *password, *newpass;
42 	int authenticated = 0;
43 	int change;
44 	u_int len, newlen;
45 
46 	change = packet_get_char();
47 	password = packet_get_string(&len);
48 	if (change) {
49 		/* discard new password from packet */
50 		newpass = packet_get_string(&newlen);
51 		memset(newpass, 0, newlen);
52 		xfree(newpass);
53 	}
54 	packet_check_eom();
55 
56 	if (change)
57 		logit("password change not supported");
58 	else if (PRIVSEP(auth_password(authctxt, password)) == 1
59 #ifdef HAVE_CYGWIN
60 	    && check_nt_auth(1, authctxt->pw)
61 #endif
62 	    )
63 		authenticated = 1;
64 	memset(password, 0, len);
65 	xfree(password);
66 	return authenticated;
67 }
68 
69 Authmethod method_passwd = {
70 	"password",
71 	userauth_passwd,
72 	&options.password_authentication
73 };
74