Mercurial > dropbear

diff svr-auth.c @ 677:55b84e59aaad

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Fix empty password immediate login
author Matt Johnston <matt@ucc.asn.au>
date Wed, 09 May 2012 22:51:59 +0800
parents 0edf08895a33
children 6e0899b56ac4
line wrap: on
line diff
--- a/svr-auth.c	Wed May 09 22:37:04 2012 +0800
+++ b/svr-auth.c	Wed May 09 22:51:59 2012 +0800
@@ -155,9 +155,10 @@
 				AUTH_METHOD_NONE_LEN) == 0) {
 		TRACE(("recv_msg_userauth_request: 'none' request"))
 #ifdef ALLOW_BLANK_PASSWORD
+		TRACE(("pw_passwd '%s'", ses.authstate.pw_passwd))
 		if (!svr_opts.noauthpass 
 				&& !(svr_opts.norootpass && ses.authstate.pw_uid == 0) 
-				&& ses.authstate.pw_passwd == '\0') 
+				&& ses.authstate.pw_passwd[0] == '\0') 
 		{
 			dropbear_log(LOG_NOTICE, 
 					"Auth succeeded with blank password for '%s' from %s",