diff --git a/process/create-orders b/process/create-orders index 58235e2c9..ef7a8bf15 100755 --- a/process/create-orders +++ b/process/create-orders @@ -19,7 +19,7 @@ fi rm -f "orders.$TURN" find "orders.dir.$TURN" -maxdepth 1 -type f -printf "%T+\t%p\n" | sort | cut -f2 | while read -r do - cat "$REPLY" >> "orders.$TURN" + tr -d '\r' < "$REPLY" >> "orders.$TURN" done lockfile -r3 -l120 orders.queue.lock diff --git a/res/translations/messages.de.po b/res/translations/messages.de.po index 76ff0afc9..2230341c5 100644 --- a/res/translations/messages.de.po +++ b/res/translations/messages.de.po @@ -2429,6 +2429,9 @@ msgstr "\"$unit($unit) konnte nur $int($ships) von $int($maxships) Schiffen verz msgid "error283" msgstr "\"$unit($unit) in $region($region): '$order($command)' - Das Passwort darf nur Buchstaben und Ziffern enthalten.\"" +msgid "error321" +msgstr "\"$unit($unit) in $region($region): '$order($command)' - Das gewählte Passwort war zu lang.\"" + msgid "rust_effect" msgstr "\"$unit($mage) legt einen Rosthauch auf $unit($target). $int($amount) Waffen wurden vom Rost zerfressen.\"" diff --git a/res/translations/messages.en.po b/res/translations/messages.en.po index 50108fc03..25caf2446 100644 --- a/res/translations/messages.en.po +++ b/res/translations/messages.en.po @@ -2426,6 +2426,9 @@ msgstr "\"$unit($unit) in $region($region): '$order($command)' - No luxury items msgid "stormwinds_reduced" msgstr "\"$unit($unit) could only enchant $int($ships) of $int($maxships) ships.\"" +msgid "error321" +msgstr "\"$unit($unit) in $region($region): '$order($command)' - The chosen password was too long.\"" + msgid "error283" msgstr "\"$unit($unit) in $region($region): '$order($command)' - Your password may only contain alphanumeric symbols.\"" diff --git a/src/laws.c b/src/laws.c index 7ed1cd75d..4a153fc16 100644 --- a/src/laws.c +++ b/src/laws.c @@ -2088,34 +2088,33 @@ int email_cmd(unit * u, struct order *ord) int password_cmd(unit * u, struct order *ord) { - char pwbuf[32]; + char pwbuf[PASSWORD_MAXSIZE + 1]; const char *s; - bool pwok = true; init_order_depr(ord); + pwbuf[PASSWORD_MAXSIZE] = '\n'; s = gettoken(pwbuf, sizeof(pwbuf)); - - if (!s || !*s) { - int i; - for (i = 0; i < 6; i++) - pwbuf[i] = (char)(97 + rng_int() % 26); - pwbuf[6] = 0; + if (pwbuf[PASSWORD_MAXSIZE] == '\0') { + cmistake(u, ord, 321, MSG_EVENT); + pwbuf[PASSWORD_MAXSIZE - 1] = '\0'; } - else { - char *c; - for (c = pwbuf; *c && pwok; ++c) { - if (!isalnum(*(unsigned char *)c)) { - pwok = false; + + if (s && *s) { + unsigned char *c = (unsigned char *)pwbuf; + int i, r = 0; + + for (i = 0; c[i] && i != PASSWORD_MAXSIZE; ++i) { + if (!isalnum(c[i])) { + c[i] = 'X'; + ++r; } } - } - if (!pwok) { - cmistake(u, ord, 283, MSG_EVENT); - str_strlcpy(pwbuf, itoa36(rng_int()), sizeof(pwbuf)); + if (r != 0) { + cmistake(u, ord, 283, MSG_EVENT); + } } faction_setpassword(u->faction, password_hash(pwbuf, PASSWORD_DEFAULT)); - ADDMSG(&u->faction->msgs, msg_message("changepasswd", - "value", pwbuf)); + ADDMSG(&u->faction->msgs, msg_message("changepasswd", "value", pwbuf)); u->faction->flags |= FFL_PWMSG; return 0; } diff --git a/src/laws.test.c b/src/laws.test.c index a2eca7ab5..0896b54f3 100644 --- a/src/laws.test.c +++ b/src/laws.test.c @@ -48,6 +48,37 @@ static void test_new_building_can_be_renamed(CuTest * tc) test_teardown(); } +static void test_password_cmd(CuTest * tc) +{ + unit *u; + faction * f; + test_setup(); + u = test_create_unit(f = test_create_faction(NULL), test_create_plain(0, 0)); + + u->thisorder = create_order(K_PASSWORD, f->locale, "abcdefgh"); + password_cmd(u, u->thisorder); + CuAssertPtrNotNull(tc, faction_getpassword(f)); + CuAssertTrue(tc, checkpasswd(f, "abcdefgh")); + CuAssertPtrNotNull(tc, test_find_messagetype(f->msgs, "changepasswd")); + free_order(u->thisorder); + + u->thisorder = create_order(K_PASSWORD, f->locale, "abc*de*"); + password_cmd(u, u->thisorder); + CuAssertPtrNotNull(tc, test_find_messagetype(f->msgs, "error283")); + CuAssertPtrNotNull(tc, test_find_messagetype(f->msgs, "changepasswd")); + CuAssertTrue(tc, !checkpasswd(f, "abc*de*")); + CuAssertTrue(tc, checkpasswd(f, "abcXdeX")); + free_order(u->thisorder); + + u->thisorder = create_order(K_PASSWORD, f->locale, "1234567890123456789012345678901234567890"); + password_cmd(u, u->thisorder); + CuAssertPtrNotNull(tc, test_find_messagetype(f->msgs, "error321")); + CuAssertPtrNotNull(tc, test_find_messagetype(f->msgs, "changepasswd")); + CuAssertTrue(tc, checkpasswd(f, "1234567890123456789012345678901")); + + test_teardown(); +} + static void test_rename_building(CuTest * tc) { region *r; @@ -1831,6 +1862,7 @@ CuSuite *get_laws_suite(void) SUITE_ADD_TEST(suite, test_long_order_buy_cast); SUITE_ADD_TEST(suite, test_long_order_hungry); SUITE_ADD_TEST(suite, test_new_building_can_be_renamed); + SUITE_ADD_TEST(suite, test_password_cmd); SUITE_ADD_TEST(suite, test_rename_building); SUITE_ADD_TEST(suite, test_rename_building_twice); SUITE_ADD_TEST(suite, test_fishing_feeds_2_people); diff --git a/src/orderfile.c b/src/orderfile.c index 410fa094a..01169fa62 100644 --- a/src/orderfile.c +++ b/src/orderfile.c @@ -14,6 +14,7 @@ #include "util/filereader.h" #include "util/param.h" #include "util/parser.h" +#include "util/password.h" #include "util/order_parser.h" #include @@ -127,7 +128,7 @@ static faction *factionorders(void) faction *f = findfaction(fid); if (f != NULL && (f->flags & FFL_NPC) == 0) { - char token[128]; + char token[PASSWORD_MAXSIZE]; const char *pass = gettoken(token, sizeof(token)); if (!checkpasswd(f, (const char *)pass)) { @@ -274,7 +275,7 @@ static void handle_unit(void *userData, int no) { static void handle_order(void *userData, const char *str) { parser_state *state = (parser_state *)userData; const char * tok, *input = str; - char buffer[16]; + char buffer[64]; const struct locale *lang; param_t p; faction * f = state->f; diff --git a/src/util/password.h b/src/util/password.h index 7309e0c0e..faa2a0a85 100644 --- a/src/util/password.h +++ b/src/util/password.h @@ -6,6 +6,7 @@ typedef enum cryptalgo_t { PASSWORD_BCRYPT } cryptalgo_t; #define PASSWORD_DEFAULT PASSWORD_BCRYPT +#define PASSWORD_MAXSIZE 32 extern int bcrypt_workfactor;