check if password changing is allowed in afp_changepw.

author bfernhomberg <bfernhomberg>

Tue, 4 May 2004 02:53:53 +0000 (02:53 +0000)

committer bfernhomberg <bfernhomberg>

Tue, 4 May 2004 02:53:53 +0000 (02:53 +0000)
author bfernhomberg <bfernhomberg>
Tue, 4 May 2004 02:53:53 +0000 (02:53 +0000)
committer bfernhomberg <bfernhomberg>
Tue, 4 May 2004 02:53:53 +0000 (02:53 +0000)
diff --git a/etc/afpd/auth.c b/etc/afpd/auth.c

index c76234134b7d7257d389a95f928079de134c5fe9..25577e6bb50155722eb5554e5e1f270ed94d2761 100644 (file)
--- a/etc/afpd/auth.c
+++ b/etc/afpd/auth.c
@@ -1,5 +1,5 @@
  /*
- * $Id: auth.c,v 1.44.2.3.2.10 2004-02-14 15:47:19 didg Exp $
+ * $Id: auth.c,v 1.44.2.3.2.11 2004-05-04 02:53:53 bfernhomberg Exp $
   *
   * Copyright (c) 1990,1993 Regents of The University of Michigan.
   * All Rights Reserved.  See COPYRIGHT.
@@ -788,6 +788,12 @@ int                ibuflen, *rbuflen;
      *rbuflen = 0;
      ibuf += 2;
  
+    /* check if password change is allowed, OS-X ignores the flag.
+     * we shouldn't trust the client on this anyway.
+     * not sure about the "right" error code, NOOP for now */ 
+    if (!(obj->options.passwdbits & PASSWD_SET))
+         return AFPERR_NOOP;
+
      /* make sure we can deal w/ this uam */
      len = (unsigned char) *ibuf++;
      if ((uam = auth_uamfind(UAM_SERVER_CHANGEPW, ibuf, len)) == NULL)
author	bfernhomberg <bfernhomberg>
	Tue, 4 May 2004 02:53:53 +0000 (02:53 +0000)
committer	bfernhomberg <bfernhomberg>
	Tue, 4 May 2004 02:53:53 +0000 (02:53 +0000)