uLab
/
xrdp-proprietary
mirror of https://mirror.git.trinitydesktop.org/gitea/uLab/xrdp-proprietary
0
0
Fork 0
Code Issues Releases Wiki Activity

Merge pull request #64 from imprazaguy/bug_fix_nopam

Browse Source 
Bug fix for building without PAM
ulab-next
jsorg71 12 years ago
parent 297fdaf1c6 b518a3bfe9
commit 75f63e7894
4 changed files with 24 additions and 41 deletions
Show Stats Download Patch File Download Diff File

5
configure.ac
Unescape View File

@ -69,6 +69,11 @@ then
fi fi
fi fi
if test "x$enable_nopam" = "xyes"
then
AC_DEFINE([USE_NOPAM],1,[Disable PAM])
fi
AS_IF( [test "x$enable_freerdp1" = "xyes"] , [PKG_CHECK_MODULES(FREERDP, freerdp >= 1.0.0)] ) AS_IF( [test "x$enable_freerdp1" = "xyes"] , [PKG_CHECK_MODULES(FREERDP, freerdp >= 1.0.0)] )
# checking for libjpeg # checking for libjpeg

44
sesman/verify_user.c
Unescape View File

@ -50,12 +50,9 @@ auth_account_disabled(struct spwd *stp);
long DEFAULT_CC long DEFAULT_CC
auth_userpass(char *user, char *pass, int *errorcode) auth_userpass(char *user, char *pass, int *errorcode)
{ {
char salt[13] = "$1$"; const char *encr;
char hash[35] = "";
char *encr = 0;
struct passwd *spw; struct passwd *spw;
struct spwd *stp; struct spwd *stp;
int saltcnt = 0;
spw = getpwnam(user); spw = getpwnam(user);
@ -76,50 +73,19 @@ auth_userpass(char *user, char *pass, int *errorcode)
if (1 == auth_account_disabled(stp)) if (1 == auth_account_disabled(stp))
{ {
log_message(&(g_cfg->log), LOG_LEVEL_INFO, "account %s is disabled", user); log_message(LOG_LEVEL_INFO, "account %s is disabled", user);
return 0; return 0;
} }
g_strncpy(hash, stp->sp_pwdp, 34); encr = stp->sp_pwdp;
} }
else else
{ {
/* old system with only passwd */ /* old system with only passwd */
g_strncpy(hash, spw->pw_passwd, 34); encr = spw->pw_passwd;
}
hash[34] = '\0';
if (g_strncmp(hash, "$1$", 3) == 0)
{
/* gnu style crypt(); */
saltcnt = 3;
while ((hash[saltcnt] != '$') && (saltcnt < 11))
{
salt[saltcnt] = hash[saltcnt];
saltcnt++;
}
salt[saltcnt] = '$';
salt[saltcnt + 1] = '\0';
}
else
{
/* classic two char salt */
salt[0] = hash[0];
salt[1] = hash[1];
salt[2] = '\0';
}
encr = crypt(pass, salt);
if (g_strncmp(encr, hash, 34) != 0)
{
return 0;
} }
return 1; return (strcmp(encr, crypt(pass, encr)) == 0);
} }
/******************************************************************************/ /******************************************************************************/

1
xrdp/Makefile.am
Unescape View File

@ -14,6 +14,7 @@ AM_CFLAGS = \
$(EXTRA_DEFINES) $(EXTRA_DEFINES)
INCLUDES = \ INCLUDES = \
-I$(top_builddir) \
-I$(top_srcdir)/common \ -I$(top_srcdir)/common \
-I$(top_srcdir)/libxrdp -I$(top_srcdir)/libxrdp

15
xrdp/xrdp_mm.c
Unescape View File

@ -17,12 +17,15 @@
* *
* module manager * module manager
*/ */
#include <config_ac.h>
#define ACCESS #define ACCESS
#include "xrdp.h" #include "xrdp.h"
#include "log.h" #include "log.h"
#ifdef ACCESS #ifdef ACCESS
#ifndef USE_NOPAM
#include "security/_pam_types.h" #include "security/_pam_types.h"
#endif #endif
#endif
/*****************************************************************************/ /*****************************************************************************/
struct xrdp_mm *APP_CC struct xrdp_mm *APP_CC
@ -1071,6 +1074,7 @@ xrdp_mm_sesman_data_in(struct trans *trans)
} }
#ifdef ACCESS #ifdef ACCESS
#ifndef USE_NOPAM
/*********************************************************************/ /*********************************************************************/
/* return 0 on success */ /* return 0 on success */
int access_control(char *username, char *password, char *srv) int access_control(char *username, char *password, char *srv)
@ -1183,6 +1187,7 @@ int access_control(char *username, char *password, char *srv)
return rec; return rec;
} }
#endif #endif
#endif
/*****************************************************************************/ /*****************************************************************************/
/* This routine clears all states to make sure that our next login will be /* This routine clears all states to make sure that our next login will be
@ -1206,6 +1211,7 @@ void cleanup_states(struct xrdp_mm *self)
} }
} }
#ifdef ACCESS #ifdef ACCESS
#ifndef USE_NOPAM
const char *getPAMError(const int pamError) const char *getPAMError(const int pamError)
{ {
switch(pamError){ switch(pamError){
@ -1333,6 +1339,7 @@ const char *getPAMAdditionalErrorInfo(const int pamError,struct xrdp_mm *self)
} }
#endif #endif
#endif
/*****************************************************************************/ /*****************************************************************************/
int APP_CC int APP_CC
xrdp_mm_connect(struct xrdp_mm *self) xrdp_mm_connect(struct xrdp_mm *self)
@ -1351,10 +1358,12 @@ xrdp_mm_connect(struct xrdp_mm *self)
char port[8]; char port[8];
char chansrvport[256]; char chansrvport[256];
#ifdef ACCESS #ifdef ACCESS
#ifndef USE_NOPAM
int use_pam_auth = 0; int use_pam_auth = 0;
char pam_auth_sessionIP[256]; char pam_auth_sessionIP[256];
char pam_auth_password[256]; char pam_auth_password[256];
char pam_auth_username[256]; char pam_auth_username[256];
#endif
char username[256]; char username[256];
char password[256]; char password[256];
username[0] = 0; username[0] = 0;
@ -1390,6 +1399,7 @@ xrdp_mm_connect(struct xrdp_mm *self)
} }
#ifdef ACCESS #ifdef ACCESS
#ifndef USE_NOPAM
else if (g_strcasecmp(name, "pamusername") == 0) else if (g_strcasecmp(name, "pamusername") == 0)
{ {
use_pam_auth = 1; use_pam_auth = 1;
@ -1403,6 +1413,7 @@ xrdp_mm_connect(struct xrdp_mm *self)
{ {
g_strncpy(pam_auth_password, value, 255); g_strncpy(pam_auth_password, value, 255);
} }
#endif
else if (g_strcasecmp(name, "password") == 0) else if (g_strcasecmp(name, "password") == 0)
{ {
g_strncpy(password, value, 255); g_strncpy(password, value, 255);
@ -1421,7 +1432,7 @@ xrdp_mm_connect(struct xrdp_mm *self)
} }
#ifdef ACCESS #ifdef ACCESS
#ifndef USE_NOPAM
if (use_pam_auth) if (use_pam_auth)
{ {
int reply; int reply;
@ -1464,7 +1475,7 @@ xrdp_mm_connect(struct xrdp_mm *self)
return rv; return rv;
} }
} }
#endif
#endif #endif
if (self->sesman_controlled) if (self->sesman_controlled)

Write Preview
Loading…
Cancel
Save