[hcoop/debian/courier-authlib.git] / checkpassword.c

/*
** Copyright 1998 - 1999 Double Precision, Inc.  See COPYING for
** distribution information.
*/

#if	HAVE_CONFIG_H
#include	"courier_auth_config.h"
#endif
#include	<string.h>
#if	HAVE_UNISTD_H
#include	<unistd.h>
#endif
#if	HAVE_CRYPT_H
#include	<crypt.h>
#endif
#include	"auth.h"
#include	"courierauthdebug.h"

static const char rcsid[]="$Id: checkpassword.c,v 1.16 2007/10/07 02:50:45 mrsam Exp $";

#if HAVE_CRYPT
#if NEED_CRYPT_PROTOTYPE
extern char *crypt(const char *, const char *);
#endif
#endif

#if	HAVE_MD5LIB
extern int authcheckpasswordmd5(const char *, const char *);
#endif

#if	HAVE_SHA1LIB
extern int authcheckpasswordsha1(const char *, const char *);
#endif

static int do_authcheckpassword(const char *password, const char *encrypted_password)
{
#if	HAVE_MD5LIB
	if (strncmp(encrypted_password, "$1$", 3) == 0
	    || strncasecmp(encrypted_password, "{MD5}", 5) == 0
	    || strncasecmp(encrypted_password, "{MD5RAW}", 8) == 0
	    )
		return (authcheckpasswordmd5(password, encrypted_password));
#endif

#if	HAVE_SHA1LIB
	if (strncasecmp(encrypted_password, "{SHA}", 5) == 0 ||
	    strncasecmp(encrypted_password, "{SHA256}", 8) == 0
		)
		return (authcheckpasswordsha1(password, encrypted_password));
#endif

#if	HAVE_CRYPT
	if (strncasecmp(encrypted_password, "{CRYPT}", 7) == 0)
		encrypted_password += 7;
#endif

	return (
#if	HAVE_CRYPT
		strcmp(encrypted_password,
			crypt(password, encrypted_password))
#else
		strcmp(encrypted_password, password)
#endif
				);
}

int authcheckpassword(const char *password, const char *encrypted_password)
{
int rc;

	rc=do_authcheckpassword(password, encrypted_password);
	if (rc == 0)
	{
		DPRINTF("password matches successfully");
	}
	else if (courier_authdebug_login_level >= 2)
	{
		DPRINTF("supplied password '%s' does not match encrypted password '%s'",
			password, encrypted_password);
	}
	else
	{
		DPRINTF("supplied password does not match encrypted password");
	}
	return rc;
}
Commit	Line	Data
d9898ee8	1	/*
	2	** Copyright 1998 - 1999 Double Precision, Inc. See COPYING for
	3	** distribution information.
	4	*/
	5
	6	#if HAVE_CONFIG_H
	7	#include "courier_auth_config.h"
	8	#endif
	9	#include <string.h>
	10	#if HAVE_UNISTD_H
	11	#include <unistd.h>
	12	#endif
	13	#if HAVE_CRYPT_H
	14	#include <crypt.h>
	15	#endif
	16	#include "auth.h"
	17	#include "courierauthdebug.h"
	18
64ff59ba	19	static const char rcsid[]="$Id: checkpassword.c,v 1.16 2007/10/07 02:50:45 mrsam Exp $";
d9898ee8	20
	21	#if HAVE_CRYPT
	22	#if NEED_CRYPT_PROTOTYPE
	23	extern char crypt(const char , const char *);
	24	#endif
	25	#endif
	26
	27	#if HAVE_MD5LIB
	28	extern int authcheckpasswordmd5(const char , const char );
	29	#endif
	30
	31	#if HAVE_SHA1LIB
	32	extern int authcheckpasswordsha1(const char , const char );
	33	#endif
	34
	35	static int do_authcheckpassword(const char password, const char encrypted_password)
	36	{
	37	#if HAVE_MD5LIB
	38	if (strncmp(encrypted_password, "$1$", 3) == 0
64ff59ba	39	\|\| strncasecmp(encrypted_password, "{MD5}", 5) == 0
	40	\|\| strncasecmp(encrypted_password, "{MD5RAW}", 8) == 0
	41	)
d9898ee8	42	return (authcheckpasswordmd5(password, encrypted_password));
	43	#endif
	44
	45	#if HAVE_SHA1LIB
	46	if (strncasecmp(encrypted_password, "{SHA}", 5) == 0 \|\|
	47	strncasecmp(encrypted_password, "{SHA256}", 8) == 0
	48	)
	49	return (authcheckpasswordsha1(password, encrypted_password));
	50	#endif
	51
	52	#if HAVE_CRYPT
	53	if (strncasecmp(encrypted_password, "{CRYPT}", 7) == 0)
	54	encrypted_password += 7;
	55	#endif
	56
	57	return (
	58	#if HAVE_CRYPT
	59	strcmp(encrypted_password,
	60	crypt(password, encrypted_password))
	61	#else
	62	strcmp(encrypted_password, password)
	63	#endif
	64	);
	65	}
	66
	67	int authcheckpassword(const char password, const char encrypted_password)
	68	{
	69	int rc;
	70
	71	rc=do_authcheckpassword(password, encrypted_password);
	72	if (rc == 0)
	73	{
	74	DPRINTF("password matches successfully");
	75	}
	76	else if (courier_authdebug_login_level >= 2)
	77	{
	78	DPRINTF("supplied password '%s' does not match encrypted password '%s'",
	79	password, encrypted_password);
	80	}
	81	else
	82	{
	83	DPRINTF("supplied password does not match encrypted password");
	84	}
	85	return rc;
	86	}