From: Jo-Philipp Wich <jow@openwrt.org>
Date: Wed, 27 Jun 2012 14:11:48 +0000 (+0000)
Subject: libs/sys: fix login with empty password after previous commit
X-Git-Tag: 0.11.0~564
X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=e2dd594c3827c67c72e12a19ee38bf893bd3f10c;p=oweals%2Fluci.git

libs/sys: fix login with empty password after previous commit
---

diff --git a/libs/sys/luasrc/sys.lua b/libs/sys/luasrc/sys.lua
index 18c79119f..573d73024 100644
--- a/libs/sys/luasrc/sys.lua
+++ b/libs/sys/luasrc/sys.lua
@@ -596,13 +596,14 @@ user.getuser = nixio.getpw
 --- Retrieve the current user password hash.
 -- @param username	String containing the username to retrieve the password for
 -- @return			String containing the hash or nil if no password is set.
+-- @return			Password database entry
 function user.getpasswd(username)
 	local pwe = nixio.getsp and nixio.getsp(username) or nixio.getpw(username)
 	local pwh = pwe and (pwe.pwdp or pwe.passwd)
 	if not pwh or #pwh < 1 or pwh == "!" or pwh == "x" then
-		return nil
+		return nil, pwe
 	else
-		return pwh
+		return pwh, pwe
 	end
 end
 
@@ -611,9 +612,9 @@ end
 -- @param pass		String containing the password to compare
 -- @return			Boolean indicating wheather the passwords are equal
 function user.checkpasswd(username, pass)
-	local pwh = user.getpasswd(username)
-	if pwh then
-		return (nixio.crypt(pass, pwh) == pwh)
+	local pwh, pwe = user.getpasswd(username)
+	if pwe then
+		return (pwh == nil or nixio.crypt(pass, pwh) == pwh)
 	end
 	return false
 end