isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

For non-standalone auth methods, stop reading the password if the

Browse Source 
user enters ^C at the prompt.
This commit is contained in:
Todd C. Miller
2010-08-06 17:16:57 -04:00
parent 96cb890d53
commit d2cc4740c1
1 changed files with 9 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
plugins/sudoers/auth/sudo_auth.c
View File

@@ -180,13 +180,17 @@ verify_user(struct passwd *pw, char *prompt)
}
/* Get the password unless the auth function will do it for us */
if (standalone)
if (standalone) {
p = prompt;
else
p = auth_getpass(prompt, def_passwd_timeout * 60, SUDO_CONV_PROMPT_ECHO_OFF);
} else {
p = auth_getpass(prompt, def_passwd_timeout * 60,
SUDO_CONV_PROMPT_ECHO_OFF);
if (p == NULL)
break;
}
/* Call authentication functions. */
for (auth = auth_switch; p && auth->name; auth++) {
for (auth = auth_switch; auth->name; auth++) {
if (IS_DISABLED(auth))
continue;
@@ -201,7 +205,7 @@ verify_user(struct passwd *pw, char *prompt)
if (auth->status != AUTH_FAILURE)
goto cleanup;
}
if (!standalone && p != NULL)
if (!standalone)
zero_bytes(p, strlen(p));
pass_warn();
}