X-Git-Url: http://git.hungrycats.org/cgi-bin/gitweb.cgi?a=blobdiff_plain;f=driver%2Fpasswd.c;h=b55334c936aad2c53157de05298cfece5c0feeee;hb=278c59e14c53fd412b734e699bd4f314f766f804;hp=25b3b04880ab2d41d7b2b279aa64b380fbc8931e;hpb=3210e7e80ee2b5a7d2049a5aaff9f17b9c93dcc9;p=xscreensaver diff --git a/driver/passwd.c b/driver/passwd.c index 25b3b048..b55334c9 100644 --- a/driver/passwd.c +++ b/driver/passwd.c @@ -39,8 +39,10 @@ extern char *blurb(void); struct auth_methods { const char *name; Bool (*init) (int argc, char **argv, Bool verbose_p); + Bool (*priv_init) (int argc, char **argv, Bool verbose_p); Bool (*valid_p) (const char *typed_passwd, Bool verbose_p); Bool initted_p; + Bool priv_initted_p; }; @@ -49,10 +51,11 @@ extern Bool kerberos_lock_init (int argc, char **argv, Bool verbose_p); extern Bool kerberos_passwd_valid_p (const char *typed_passwd, Bool verbose_p); #endif #ifdef HAVE_PAM -extern Bool pam_lock_init (int argc, char **argv, Bool verbose_p); +extern Bool pam_priv_init (int argc, char **argv, Bool verbose_p); extern Bool pam_passwd_valid_p (const char *typed_passwd, Bool verbose_p); #endif extern Bool pwent_lock_init (int argc, char **argv, Bool verbose_p); +extern Bool pwent_priv_init (int argc, char **argv, Bool verbose_p); extern Bool pwent_passwd_valid_p (const char *typed_passwd, Bool verbose_p); @@ -63,15 +66,41 @@ extern Bool pwent_passwd_valid_p (const char *typed_passwd, Bool verbose_p); */ struct auth_methods methods[] = { # ifdef HAVE_KERBEROS - { "Kerberos", kerberos_lock_init, kerberos_passwd_valid_p, False }, + { "Kerberos", kerberos_lock_init, 0, kerberos_passwd_valid_p, + False, False }, # endif # ifdef HAVE_PAM - { "PAM", pam_lock_init, pam_passwd_valid_p, False }, + { "PAM", 0, pam_priv_init, pam_passwd_valid_p, + False, False }, # endif - { "normal", pwent_lock_init, pwent_passwd_valid_p, False } + { "normal", pwent_lock_init, pwent_priv_init, pwent_passwd_valid_p, + False, False } }; +Bool +lock_priv_init (int argc, char **argv, Bool verbose_p) +{ + int i; + Bool any_ok = False; + for (i = 0; i < countof(methods); i++) + { + if (!methods[i].priv_init) + methods[i].priv_initted_p = True; + else + methods[i].priv_initted_p = methods[i].priv_init (argc, argv, + verbose_p); + + if (methods[i].priv_initted_p) + any_ok = True; + else if (verbose_p) + fprintf (stderr, "%s: initialization of %s passwords failed.\n", + blurb(), methods[i].name); + } + return any_ok; +} + + Bool lock_init (int argc, char **argv, Bool verbose_p) { @@ -79,7 +108,14 @@ lock_init (int argc, char **argv, Bool verbose_p) Bool any_ok = False; for (i = 0; i < countof(methods); i++) { - methods[i].initted_p = methods[i].init (argc, argv, verbose_p); + if (!methods[i].priv_initted_p) /* Bail if lock_priv_init failed. */ + continue; + + if (!methods[i].init) + methods[i].initted_p = True; + else + methods[i].initted_p = methods[i].init (argc, argv, verbose_p); + if (methods[i].initted_p) any_ok = True; else if (verbose_p) @@ -104,7 +140,7 @@ passwd_valid_p (const char *typed_passwd, Bool verbose_p) an earlier authentication method fails and a later one succeeds, something screwy is probably going on.) */ - if (verbose_p) + if (verbose_p && i > 0) { for (j = 0; j < i; j++) if (methods[j].initted_p)