From 6da1e9209a1851c24c4eec3fcc9161567da399b3 Mon Sep 17 00:00:00 2001 From: Jung-uk Kim Date: Thu, 7 Jul 2016 22:15:35 +0000 Subject: OTPW is a one-time password system which is robust against the password list being stolen and race for the last digit attacks. WWW: https://www.cl.cam.ac.uk/~mgk25/otpw.html --- security/otpw/files/patch-otpw.c | 11 +++++++++++ 1 file changed, 11 insertions(+) create mode 100644 security/otpw/files/patch-otpw.c (limited to 'security/otpw/files/patch-otpw.c') diff --git a/security/otpw/files/patch-otpw.c b/security/otpw/files/patch-otpw.c new file mode 100644 index 000000000000..85e6e77dc402 --- /dev/null +++ b/security/otpw/files/patch-otpw.c @@ -0,0 +1,11 @@ +--- otpw.c.orig 2014-08-07 19:21:15 UTC ++++ otpw.c +@@ -68,7 +68,7 @@ static struct otpw_pwdbuf *otpw_malloc_p + + buflen = sysconf(_SC_GETPW_R_SIZE_MAX); /* typical value: 1024 */ + /* fprintf(stderr, "_SC_GETPW_R_SIZE_MAX = %ld\n", buflen); */ +- if (buflen < 0) return NULL; ++ if (buflen < 0) buflen = 1024; + p = (struct otpw_pwdbuf *) malloc(sizeof(struct otpw_pwdbuf) + buflen); + if (p) p->buflen = buflen; + return p; -- cgit v1.2.3