]> git.proxmox.com Git - pve-access-control.git/blobdiff - PVE/Auth/PVE.pm
projects / pve-access-control.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
PVE/Auth/PVE.pm: encode uft8 password before calling crypt
[pve-access-control.git] / PVE / Auth / PVE.pm
diff --git a/PVE/Auth/PVE.pm b/PVE/Auth/PVE.pm
index 6065df08411eb7e0d5c716b43abc78284821b428..de39d35bef9022c48d8e9ef17499cf2e1e37070f 100755 (executable)
--- a/PVE/Auth/PVE.pm
+++ b/PVE/Auth/PVE.pm
@@ -2,6 +2,7 @@ package PVE::Auth::PVE;
 
 use strict;
 use warnings;
+use Encode;
 
 use PVE::Tools;
 use PVE::Auth::Plugin;
@@ -79,8 +80,9 @@ sub authenticate_user {
     my $shadow_cfg = cfs_read_file($shadowconfigfile);
     
     if ($shadow_cfg->{users}->{$username}) {
-       my $encpw = crypt($password, $shadow_cfg->{users}->{$username}->{shadow});
-        die "invalid credentials\n" if ($encpw ne $shadow_cfg->{users}->{$username}->{shadow});
+       my $encpw = crypt(Encode::encode('utf8', $password),
+                         $shadow_cfg->{users}->{$username}->{shadow});
+       die "invalid credentials\n" if ($encpw ne $shadow_cfg->{users}->{$username}->{shadow});
     } else {
        die "no password set\n";
     }
Access control framework