security fix

added LegacyHash parameter to firebird.conf - setting to true makes it possible to check for old (crypt) hashes in security.fdb
2025-01-24 00:03:03 +01:00 · 2004-11-07 14:12:15 +00:00 · 2004-11-07 14:12:15 +00:00 · 687c93284e
commit 687c93284e
parent 72b0264204
2 changed files with 13 additions and 2 deletions
--- a/src/common/config/config.cpp
+++ b/src/common/config/config.cpp
@ -113,7 +113,8 @@ const ConfigImpl::ConfigEntry ConfigImpl::entries[] =
 #else
 	{TYPE_BOOLEAN,		"BugcheckAbort",			(ConfigValue) false},	// whether to abort() engine when internal error is found
 #endif
-	{TYPE_INTEGER,		"TraceDSQL",				(ConfigValue) 0}			// bitmask
+	{TYPE_INTEGER,		"TraceDSQL",				(ConfigValue) 0},		// bitmask
+	{TYPE_BOOLEAN,		"LegacyHash",				(ConfigValue) false}	// let use old passwd hash verification
 };

 /******************************************************************************
@ -483,3 +484,7 @@ int Config::getTraceDSQL()
 	return (int) sysConfig.values[KEY_TRACE_DSQL];
 }

+bool Config::getLegacyHash()
+{
+	return (bool) sysConfig.values[KEY_LEGACY_HASH];
+}
--- a/src/common/config/config.h
+++ b/src/common/config/config.h
@ -105,7 +105,8 @@ class Config
 		KEY_UDF_ACCESS,								// 39
 		KEY_TEMP_DIRECTORIES,						// 40
 		KEY_BUGCHECK_ABORT,							// 41
-		KEY_TRACE_DSQL								// 42
+		KEY_TRACE_DSQL,								// 42
+		KEY_LEGACY_HASH								// 43
 	};

 public:
@ -324,6 +325,11 @@ public:
 		Abort on BUGCHECK and structured exceptions
 	*/
 	static bool getBugcheckAbort();
+
+	/*
+		Let use of des hash to verify passwords
+	*/
+	static bool getLegacyHash();
 };

 namespace Firebird {