2 ** Copyright 1998 - 2008 Double Precision, Inc. See COPYING for
3 ** distribution information.
7 #include "courier_auth_config.h"
17 #include "courierauthdebug.h"
21 #if NEED_CRYPT_PROTOTYPE
22 extern char *crypt(const char *, const char *);
26 extern int authcheckpasswordmd5(const char *, const char *);
27 extern int authcheckpasswordsha1(const char *, const char *);
29 static int do_authcheckpassword(const char *password
, const char *encrypted_password
)
31 if (strncmp(encrypted_password
, "$1$", 3) == 0
32 || strncasecmp(encrypted_password
, "{MD5}", 5) == 0
33 || strncasecmp(encrypted_password
, "{MD5RAW}", 8) == 0
35 return (authcheckpasswordmd5(password
, encrypted_password
));
37 if (strncasecmp(encrypted_password
, "{SHA}", 5) == 0 ||
38 strncasecmp(encrypted_password
, "{SHA256}", 8) == 0 ||
39 strncasecmp(encrypted_password
, "{SHA512}", 8) == 0 ||
40 strncasecmp(encrypted_password
, "{SSHA}", 6) == 0)
41 return (authcheckpasswordsha1(password
, encrypted_password
));
45 if (strncasecmp(encrypted_password
, "{CRYPT}", 7) == 0)
46 encrypted_password
+= 7;
51 strcmp(encrypted_password
,
52 crypt(password
, encrypted_password
))
54 strcmp(encrypted_password
, password
)
59 int authcheckpassword(const char *password
, const char *encrypted_password
)
63 rc
=do_authcheckpassword(password
, encrypted_password
);
66 DPRINTF("password matches successfully");
68 else if (courier_authdebug_login_level
>= 2)
70 DPRINTF("supplied password '%s' does not match encrypted password '%s'",
71 password
, encrypted_password
);
75 DPRINTF("supplied password does not match encrypted password");