[package] uhttpd: cope with DES crypted passwd entries by not relying on a leading...
authorJo-Philipp Wich <jow@openwrt.org>
Wed, 9 Nov 2011 18:55:28 +0000 (18:55 +0000)
committerJo-Philipp Wich <jow@openwrt.org>
Wed, 9 Nov 2011 18:55:28 +0000 (18:55 +0000)
SVN-Revision: 28886

package/uhttpd/Makefile
package/uhttpd/src/uhttpd-utils.c

index d8bd33c075c021c0cbd1340ad96503de85ca13a4..c333660d57f937e2797277a8fa86081be2b33454 100644 (file)
@@ -8,7 +8,7 @@
 include $(TOPDIR)/rules.mk
 
 PKG_NAME:=uhttpd
-PKG_RELEASE:=29
+PKG_RELEASE:=30
 
 PKG_BUILD_DIR := $(BUILD_DIR)/$(PKG_NAME)
 PKG_CONFIG_DEPENDS := \
index d48f6bcf11908bb160dded5fae374ea6c0275463..a47f175ba6a98a86677bc4e2b9963c10b29546e1 100644 (file)
@@ -782,12 +782,9 @@ int uh_auth_check(
                        /* found a realm matching the username */
                        if( realm )
                        {
-                               /* is a crypt passwd */
-                               if( realm->pass[0] == '$' )
-                                       pass = crypt(pass, realm->pass);
-
                                /* check user pass */
-                               if( !strcmp(pass, realm->pass) )
+                               if (!strcmp(pass, realm->pass) ||
+                                   !strcmp(crypt(pass, realm->pass), realm->pass))
                                        return 1;
                        }
                }