History log of /dovecot/src/auth/password-scheme-scram.c
Revision Date Author Comments Expand
c147bff818798a979d93537f72f5c1f68f5d5ba8 24-Nov-2017 Aki Tuomi <aki.tuomi@dovecot.fi>

global: Use t_buffer_create sed -i -e 's/buffer_create_dynamic(pool_datastack_create(), */t_buffer_create(/g'

auth-policy.c auth-request-handler.c auth-request-stats.c db-checkpassword.c password-scheme-scram.c password-scheme.c /dovecot/src/config/old-set-parser.c /dovecot/src/doveadm/client-connection-tcp.c /dovecot/src/doveadm/doveadm-fs.c /dovecot/src/doveadm/dsync/dsync-mailbox-state.c /dovecot/src/imap-login/client-authenticate.c /dovecot/src/lib-compression/test-compression.c /dovecot/src/lib-dcrypt/dcrypt-openssl.c /dovecot/src/lib-dcrypt/istream-decrypt.c /dovecot/src/lib-dcrypt/ostream-encrypt.c /dovecot/src/lib-dcrypt/test-crypto.c /dovecot/src/lib-dict-backend/dict-sql.c /dovecot/src/lib-imap-client/imapc-connection.c /dovecot/src/lib-imap/imap-url.c /dovecot/src/lib-index/mail-cache-fields.c /dovecot/src/lib-index/mail-cache-lookup.c /dovecot/src/lib-index/mail-cache-transaction.c /dovecot/src/lib-index/mail-index-sync-keywords.c /dovecot/src/lib-index/mail-index-transaction-export.c /dovecot/src/lib-index/mail-index-view-sync.c /dovecot/src/lib-index/mail-transaction-log-file.c /dovecot/src/lib-mail/test-istream-binary-converter.c /dovecot/src/lib-mail/test-ostream-dot.c /dovecot/src/lib-mail/test-quoted-printable.c /dovecot/src/lib-master/master-auth.c /dovecot/src/lib-sql/driver-test.c /dovecot/src/lib-storage/index/index-mail-binary.c /dovecot/src/lib-storage/index/index-mail-headers.c /dovecot/src/lib-storage/index/index-mail.c /dovecot/src/lib-storage/index/index-storage.c /dovecot/src/lib-storage/index/maildir/maildir-uidlist.c /dovecot/src/lib-storage/index/mbox/mbox-save.c /dovecot/src/lib-storage/list/mailbox-list-index-sync.c /dovecot/src/lib-storage/mail-search.c /dovecot/src/lib/base32.c /dovecot/src/lib/base64.c /dovecot/src/lib/hash-method.c /dovecot/src/lib/hmac.c /dovecot/src/lib/pkcs5.h /dovecot/src/lib/test-buffer.c /dovecot/src/lib/test-hex-binary.c /dovecot/src/lib/test-iostream-pump.c /dovecot/src/lib/test-numpack.c /dovecot/src/lib/test-ostream-failure-at.c /dovecot/src/login-common/client-common.c /dovecot/src/login-common/sasl-server.c /dovecot/src/plugins/acl/acl-cache.c /dovecot/src/plugins/fts-lucene/Snowball.cc /dovecot/src/plugins/imap-stats/imap-stats-plugin.c /dovecot/src/plugins/mail-crypt/mail-crypt-global-key.c /dovecot/src/plugins/mail-crypt/test-mail-global-key.c /dovecot/src/plugins/mail-crypt/test-mail-key.c /dovecot/src/plugins/pop3-migration/pop3-migration-plugin.c /dovecot/src/plugins/stats/mail-stats-connection.c /dovecot/src/plugins/virtual/virtual-sync.c /dovecot/src/pop3-login/client-authenticate.c /dovecot/src/stats/mail-command.c /dovecot/src/stats/mail-session.c /dovecot/src/stats/mail-user.c /dovecot/src/util/script.c
605c40c77fc3851cb2845da1c5319e32c791592a 02-Oct-2017 Sergey Kitov <sergey.kitov@open-xchange.com>

auth: global rounds parameter replaced with argument to password_generate() username and rounds parameter moved to a single password_generate_params structure.
ace06232cfa0e99ecca1040e8553b3216d025768 11-Apr-2017 Timo Sirainen <timo.sirainen@dovecot.fi>

auth: Use mem_equals_timing_safe() for all password hash comparisons. It's unlikely these could be used to perform timing attacks, since the attacker would have to have broken MD5/SHA badly enough to be able to quickly generate string that result in wanted hashes. Still, the extra cost is almost nothing and it's always better to be super paranoid!
814bf67459ad405a157af0b8940602024d7fadfe 23-Sep-2015 Teemu Huovila <teemu.huovila@dovecot.fi>

Remove now-unnecessary direct stdlib.h #includes.

/dovecot/src/anvil/anvil-connection.c /dovecot/src/anvil/main.c auth-client-connection.c auth-master-connection.c auth-request-handler.c auth-request.c auth-token.c auth-worker-client.c auth-worker-server.c checkpassword-reply.c db-checkpassword.c db-dict.c db-ldap.c db-passwd-file.c db-sql.c mech-cram-md5.c mech-digest-md5.c mech-gssapi.c mech-scram-sha1.c mech-winbind.c mech.c passdb-blocking.c passdb-cache.c passdb-dict.c passdb-ldap.c passdb-pam.c passdb-sql.c passdb-vpopmail.c passdb.c password-scheme-scram.c userdb-blocking.c userdb-dict.c userdb-ldap.c userdb-prefetch.c userdb-sql.c userdb-static.c userdb.c /dovecot/src/config/config-connection.c /dovecot/src/config/config-parser.c /dovecot/src/config/doveconf.c /dovecot/src/dict/dict-commands.c /dovecot/src/dict/dict-connection.c /dovecot/src/director/director-test.c /dovecot/src/director/test-user-directory.c /dovecot/src/doveadm/doveadm-auth.c /dovecot/src/doveadm/doveadm-director.c /dovecot/src/doveadm/doveadm-dsync.c /dovecot/src/doveadm/doveadm-dump-index.c /dovecot/src/doveadm/doveadm-kick.c /dovecot/src/doveadm/doveadm-mail.c /dovecot/src/doveadm/doveadm-penalty.c /dovecot/src/doveadm/doveadm-pw.c /dovecot/src/doveadm/doveadm-replicator.c /dovecot/src/doveadm/doveadm-stats.c /dovecot/src/doveadm/doveadm-who.c /dovecot/src/doveadm/doveadm.c /dovecot/src/doveadm/dsync/dsync-ibc-stream.c /dovecot/src/doveadm/dsync/dsync-mailbox-tree.c /dovecot/src/doveadm/dsync/test-dsync-mailbox-tree-sync.c /dovecot/src/imap-hibernate/imap-hibernate-settings.c /dovecot/src/imap-login/client-authenticate.c /dovecot/src/imap-login/imap-proxy.c /dovecot/src/imap-urlauth/imap-urlauth-client.c /dovecot/src/imap-urlauth/imap-urlauth-settings.c /dovecot/src/imap-urlauth/imap-urlauth-worker-settings.c /dovecot/src/imap-urlauth/imap-urlauth-worker.c /dovecot/src/imap-urlauth/imap-urlauth.c /dovecot/src/imap/cmd-fetch.c /dovecot/src/imap/cmd-select.c /dovecot/src/imap/cmd-store.c /dovecot/src/imap/imap-client.c /dovecot/src/imap/imap-commands.c /dovecot/src/imap/imap-fetch-body.c /dovecot/src/imap/imap-fetch.c /dovecot/src/imap/imap-search-args.c /dovecot/src/imap/imap-search.c /dovecot/src/imap/imap-settings.c /dovecot/src/imap/main.c /dovecot/src/indexer/indexer-client.c /dovecot/src/lda/main.c /dovecot/src/lib-auth/auth-client-request.c /dovecot/src/lib-auth/auth-master.c /dovecot/src/lib-auth/auth-server-connection.c /dovecot/src/lib-compression/test-compression.c /dovecot/src/lib-dict/dict-client.c /dovecot/src/lib-dict/dict-db.c /dovecot/src/lib-dict/dict-file.c /dovecot/src/lib-fs/fs-posix.c /dovecot/src/lib-fs/fs-randomfail.c /dovecot/src/lib-fts/test-fts-tokenizer.c /dovecot/src/lib-index/mail-cache-lookup.c /dovecot/src/lib-index/mail-index-sync-ext.c /dovecot/src/lib-index/mail-index-sync.c /dovecot/src/lib-index/mail-index-transaction-sort-appends.c /dovecot/src/lib-index/mail-index-transaction.c /dovecot/src/lib-index/mail-index-view-sync.c /dovecot/src/lib-index/test-mail-index-sync-ext.c /dovecot/src/lib-index/test-mail-index-transaction-finish.c /dovecot/src/lib-index/test-mail-index-transaction-update.c /dovecot/src/lib-index/test-mail-transaction-log-append.c /dovecot/src/lib-lda/duplicate.c /dovecot/src/lib-lda/mail-send.c /dovecot/src/lib-mail/istream-header-filter.c /dovecot/src/lib-mail/rfc2231-parser.c /dovecot/src/lib-mail/test-message-header-decode.c /dovecot/src/lib-master/master-auth.c /dovecot/src/lib-master/master-login-auth.c /dovecot/src/lib-master/master-service-settings.c /dovecot/src/lib-master/master-service.c /dovecot/src/lib-master/test-master-service-settings-cache.c /dovecot/src/lib-otp/otp-parse.c /dovecot/src/lib-settings/settings-parser.c /dovecot/src/lib-sql/driver-mysql.c /dovecot/src/lib-sql/driver-pgsql.c /dovecot/src/lib-sql/sql-api.c /dovecot/src/lib-ssl-iostream/iostream-ssl.c /dovecot/src/lib-storage/index/dbox-common/dbox-file.c /dovecot/src/lib-storage/index/dbox-common/dbox-mail.c /dovecot/src/lib-storage/index/dbox-multi/mdbox-file.c /dovecot/src/lib-storage/index/dbox-multi/mdbox-mail.c /dovecot/src/lib-storage/index/dbox-multi/mdbox-map.c /dovecot/src/lib-storage/index/dbox-multi/mdbox-purge.c /dovecot/src/lib-storage/index/dbox-multi/mdbox-save.c /dovecot/src/lib-storage/index/dbox-multi/mdbox-storage-rebuild.c /dovecot/src/lib-storage/index/dbox-multi/mdbox-sync.c /dovecot/src/lib-storage/index/dbox-single/sdbox-mail.c /dovecot/src/lib-storage/index/dbox-single/sdbox-save.c /dovecot/src/lib-storage/index/dbox-single/sdbox-sync-rebuild.c /dovecot/src/lib-storage/index/index-search.c /dovecot/src/lib-storage/index/index-sort-string.c /dovecot/src/lib-storage/index/index-sort.c /dovecot/src/lib-storage/index/index-storage.c /dovecot/src/lib-storage/index/index-thread-finish.c /dovecot/src/lib-storage/index/index-thread.c /dovecot/src/lib-storage/index/maildir/maildir-copy.c /dovecot/src/lib-storage/index/maildir/maildir-filename-flags.c /dovecot/src/lib-storage/index/maildir/maildir-keywords.c /dovecot/src/lib-storage/index/maildir/maildir-mail.c /dovecot/src/lib-storage/index/maildir/maildir-save.c /dovecot/src/lib-storage/index/maildir/maildir-sync-index.c /dovecot/src/lib-storage/index/maildir/maildir-sync.c /dovecot/src/lib-storage/index/maildir/maildir-uidlist.c /dovecot/src/lib-storage/index/mbox/mbox-lock.c /dovecot/src/lib-storage/index/mbox/mbox-md5-all.c /dovecot/src/lib-storage/index/mbox/mbox-md5-apop3d.c /dovecot/src/lib-storage/index/mbox/mbox-save.c /dovecot/src/lib-storage/index/mbox/mbox-sync-parse.c /dovecot/src/lib-storage/index/mbox/mbox-sync.c /dovecot/src/lib-storage/index/shared/shared-storage.c /dovecot/src/lib-storage/mail-namespace.c /dovecot/src/lib-storage/mail-search-build.c /dovecot/src/lib-storage/mail-search-register-imap.c /dovecot/src/lib-storage/mail-storage-service.c /dovecot/src/lib-storage/mail-storage.c /dovecot/src/lib-storage/mail-user.c /dovecot/src/lib-storage/mailbox-header.c /dovecot/src/lib-storage/mailbox-uidvalidity.c /dovecot/src/lib-storage/mailbox-watch.c /dovecot/src/lib-test/test-common.c /dovecot/src/lib/abspath.c /dovecot/src/lib/array.c /dovecot/src/lib/backtrace-string.c /dovecot/src/lib/compat.c /dovecot/src/lib/data-stack.c /dovecot/src/lib/env-util.c /dovecot/src/lib/failures.c /dovecot/src/lib/file-dotlock.c /dovecot/src/lib/home-expand.c /dovecot/src/lib/hostpid.c /dovecot/src/lib/lib.c /dovecot/src/lib/mempool-alloconly.c /dovecot/src/lib/mempool-datastack.c /dovecot/src/lib/mempool-system.c /dovecot/src/lib/mempool-unsafe-datastack.c /dovecot/src/lib/mmap-anon.c /dovecot/src/lib/module-dir.c /dovecot/src/lib/net.c /dovecot/src/lib/process-title.c /dovecot/src/lib/rand.c /dovecot/src/lib/randgen.c /dovecot/src/lib/restrict-access.c /dovecot/src/lib/test-array.c /dovecot/src/lib/test-base32.c /dovecot/src/lib/test-base64.c /dovecot/src/lib/test-buffer.c /dovecot/src/lib/test-data-stack.c /dovecot/src/lib/test-hash.c /dovecot/src/lib/test-istream-concat.c /dovecot/src/lib/test-istream-seekable.c /dovecot/src/lib/test-istream-tee.c /dovecot/src/lib/test-llist.c /dovecot/src/lib/test-numpack.c /dovecot/src/lib/test-ostream-file.c /dovecot/src/lib/test-priorityq.c /dovecot/src/lib/test-seq-range-array.c /dovecot/src/lib/test-strfuncs.c /dovecot/src/lib/test-strnum.c /dovecot/src/lib/test-timing.c /dovecot/src/lib/test-unichar.c /dovecot/src/lib/timing.c /dovecot/src/lib/unlink-old-files.c /dovecot/src/lib/var-expand.c /dovecot/src/lmtp/main.c /dovecot/src/log/log-connection.c /dovecot/src/login-common/client-common.c /dovecot/src/login-common/login-proxy.c /dovecot/src/login-common/main.c /dovecot/src/login-common/sasl-server.c /dovecot/src/login-common/ssl-proxy-gnutls.c /dovecot/src/master/main.c /dovecot/src/master/sd-daemon.c /dovecot/src/master/service-monitor.c /dovecot/src/master/service-process.c /dovecot/src/plugins/acl/acl-backend.c /dovecot/src/plugins/acl/acl-lookup-dict.c /dovecot/src/plugins/acl/acl-plugin.c /dovecot/src/plugins/acl/acl-storage.c /dovecot/src/plugins/expire/expire-plugin.c /dovecot/src/plugins/expire/expire-set.c /dovecot/src/plugins/fts-solr/fts-solr-plugin.c /dovecot/src/plugins/fts-squat/fts-backend-squat.c /dovecot/src/plugins/fts-squat/squat-trie.c /dovecot/src/plugins/fts/fts-plugin.c /dovecot/src/plugins/fts/fts-storage.c /dovecot/src/plugins/imap-acl/imap-acl-plugin.c /dovecot/src/plugins/imap-quota/imap-quota-plugin.c /dovecot/src/plugins/imap-zlib/imap-zlib-plugin.c /dovecot/src/plugins/lazy-expunge/lazy-expunge-plugin.c /dovecot/src/plugins/mail-log/mail-log-plugin.c /dovecot/src/plugins/notify/notify-plugin.c /dovecot/src/plugins/quota/quota-dict.c /dovecot/src/plugins/quota/quota-dirsize.c /dovecot/src/plugins/quota/quota-fs.c /dovecot/src/plugins/quota/quota-maildir.c /dovecot/src/plugins/quota/quota-plugin.c /dovecot/src/plugins/quota/quota-util.c /dovecot/src/plugins/quota/quota.c /dovecot/src/plugins/replication/replication-plugin.c /dovecot/src/plugins/trash/trash-plugin.c /dovecot/src/plugins/virtual/virtual-search.c /dovecot/src/plugins/virtual/virtual-storage.c /dovecot/src/plugins/virtual/virtual-sync.c /dovecot/src/plugins/zlib/zlib-plugin.c /dovecot/src/pop3-login/client-authenticate.c /dovecot/src/pop3/main.c /dovecot/src/pop3/pop3-client.c /dovecot/src/pop3/pop3-settings.c /dovecot/src/ssl-params/ssl-params-settings.c /dovecot/src/ssl-params/ssl-params.c /dovecot/src/util/gdbhelper.c /dovecot/src/util/maildirlock.c /dovecot/src/util/rawlog.c /dovecot/src/util/script-login.c /dovecot/src/util/script.c /dovecot/src/util/tcpwrap.c
32fabcfd45b5337ab1842b1a2b788f59df10972b 03-Oct-2012 Timo Sirainen <tss@iki.fi>

auth: More error checking and cleanups to SCRAM-SHA-1.
8455d9a9d1d0b851a5420ecf29719ceed2284ad6 19-Sep-2012 Florian Zeitz <florob@babelmonkeys.de>

auth: Add and use SCRAM-SHA-1 password scheme