From 23ef91d3af6b566886cbc01b85c3024032124c5a Mon Sep 17 00:00:00 2001
From: dtucker <dtucker>
Date: Sat, 21 Feb 2004 23:23:35 +0000
Subject: [PATCH]  - (dtucker) [auth-passwd.c] Only check password expiry once.
  Prevents    multiple warnings if a wrong password is entered.

---
 auth-passwd.c | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/auth-passwd.c b/auth-passwd.c
index 28f29cc6..b9679abd 100644
--- a/auth-passwd.c
+++ b/auth-passwd.c
@@ -64,6 +64,7 @@ auth_password(Authctxt *authctxt, const char *password)
 {
 	struct passwd * pw = authctxt->pw;
 	int ok = authctxt->valid;
+	static int expire_checked = 0;
 
 #ifndef HAVE_CYGWIN
 	if (pw->pw_uid == 0 && options.permit_root_login != PERMIT_YES)
@@ -98,9 +99,12 @@ auth_password(Authctxt *authctxt, const char *password)
 	}
 #endif
 #if defined(USE_SHADOW) && defined(HAS_SHADOW_EXPIRE)
-	if (auth_shadow_pwexpired(authctxt)) {
-		disable_forwarding();
-		authctxt->force_pwchange = 1;
+	if (!expire_checked) {
+		expire_checked = 1;
+		if (auth_shadow_pwexpired(authctxt)) {
+			disable_forwarding();
+			authctxt->force_pwchange = 1;
+		}
 	}
 #endif
 		
-- 
2.45.2