Date: Sat, 27 Jun 1998 12:30:01 -0700 (PDT) From: Bill Fenner <fenner@parc.xerox.com> To: freebsd-ports@FreeBSD.ORG Subject: Re: bin/7090: crypt(3) partially returns raw password when salt isn't null-terminated Message-ID: <199806271930.MAA03655@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR ports/7090; it has been noted by GNATS.
From: Bill Fenner <fenner@parc.xerox.com>
To: Just Another Perl Hacker <japh@gol.com>
Cc: FreeBSD-gnats-submit@FreeBSD.ORG
Subject: Re: bin/7090: crypt(3) partially returns raw password when salt isn't null-terminated
Date: Sat, 27 Jun 1998 12:21:37 PDT
In message <oiulmvj0v.fsf@mew.gol.ad.jp>you write:
>Refer to the manpages of
>other operating systems, e.g. BSD/OS, Linux, Sun.
The SunOS, BSD4.3, OSF/1, Solaris, and IRIX man pages all say:
The second [argument to crypt] is a 2-character string chosen from
the set [a-zA-Z0-9./].
The Single UNIX ® Specification, Version 2 says:
The key argument points to a string to be encoded. The salt argument
is a string chosen from the set: [...]
All of these pieces of documentation say that the salt argument is
a string. Strings are null terminated. Since crypt()'s 2nd argument
is documented to be a string, xlock is wrong to pass in something
that's not a string (even though it appears to work on most OS's).
Bill
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199806271930.MAA03655>