apr-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Bill Stoddard <b...@wstoddard.com>
Subject Re: apr_password_validate on win32 silently mishandles crypted hashes
Date Fri, 28 May 2004 02:52:39 GMT
William A. Rowe, Jr. wrote:

> At 09:05 PM 5/26/2004, Stas Bekman wrote:
> 
> 
>>I've posted the following wording:
>>
>>/**
>>* Validate hashes created by APR-supported algorithms: md5 and base64.
>>* hashes created by crypt are supported only on platforms that provide
>>* crypt(3), so don't rely on that function unless you know that your
>>* application will be run only on platforms that support it.
>>* @param passwd The password to validate
>>* @param hash The password to validate against
>>*/
>>
>>Is that good enough?
> 
> 
> _Please_ use @bug to document any platform specific, unpredictable,
> or wildly incorrect behavior.  The days of /* XXX: */ should be long gone
> now that doxygen will tabulate all our problems for us :)

Cool!

Bill

Mime
View raw message