ensured that crypt("", "") would return "", which supported matcing
empty encrypted passwords with no additional code. Some modern
versions of crypt() (such as glibc) return NULL on error so we need
an explicit test to match an empty plaintext password and an empty
encrypted password.
int matched = 0;
debug_decl(sudo_passwd_verify, SUDOERS_DEBUG_AUTH)
- pw_len = strlen(pw_epasswd);
+ /* An empty plain-text password must match an empty encrypted password. */
+ if (pass[0] == '\0')
+ debug_return_int(pw_epasswd[0] ? AUTH_FAILURE : AUTH_SUCCESS);
#ifdef HAVE_GETAUTHUID
/* Ultrix shadow passwords may use crypt16() */
* If this turns out not to be safe we will have to use OS #ifdef's (sigh).
*/
sav = pass[8];
+ pw_len = strlen(pw_epasswd);
if (pw_len == DESLEN || HAS_AGEINFO(pw_epasswd, pw_len))
pass[8] = '\0';
char *pw_epasswd = auth->data;
char *epass = NULL;
debug_decl(sudo_secureware_verify, SUDOERS_DEBUG_AUTH)
+
+ /* An empty plain-text password must match an empty encrypted password. */
+ if (pass[0] == '\0')
+ debug_return_int(pw_epasswd[0] ? AUTH_FAILURE : AUTH_SUCCESS);
+
#ifdef __alpha
{
extern int crypt_type;
projects / sudo / commitdiff