From b52bd25910c9a8a32a49be7627a709a081a3768c Mon Sep 17 00:00:00 2001
From: "Dmitry V. Levin" <ldv@altlinux.org>
Date: Sat, 16 May 2020 08:00:00 +0000
Subject: modules: do not check user name for emptyness before passing it to
 pam_modutil_getpwnam

pam_modutil_getpwnam is perfectly capable of handling empty strings as
user names, no need to double check that.

* modules/pam_access/pam_access.c (pam_sm_authenticate): Do not check
the user name for emptyness before passing it to pam_modutil_getpwnam.
* modules/pam_lastlog/pam_lastlog.c (pam_sm_authenticate): Likewise.
* modules/pam_pwhistory/pam_pwhistory.c (pam_sm_chauthtok): Likewise.
* modules/pam_shells/pam_shells.c (perform_check): Likewise.
* modules/pam_tally/pam_tally.c (pam_get_uid): Likewise.
* modules/pam_tally2/pam_tally2.c (pam_get_uid): Likewise.
* modules/pam_umask/pam_umask.c (pam_sm_open_session): Likewise.
---
 modules/pam_umask/pam_umask.c | 6 ------
 1 file changed, 6 deletions(-)

(limited to 'modules/pam_umask')

diff --git a/modules/pam_umask/pam_umask.c b/modules/pam_umask/pam_umask.c
index e17d0fc1..3cfe5538 100644
--- a/modules/pam_umask/pam_umask.c
+++ b/modules/pam_umask/pam_umask.c
@@ -205,12 +205,6 @@ pam_sm_open_session (pam_handle_t *pamh, int flags UNUSED,
       return (retval == PAM_CONV_AGAIN ? PAM_INCOMPLETE:retval);
     }
 
-  if (name[0] == '\0')
-    {
-      pam_syslog (pamh, LOG_NOTICE, "bad username [%s]", name);
-      return PAM_USER_UNKNOWN;
-    }
-
   pw = pam_modutil_getpwnam (pamh, name);
   if (pw == NULL)
     {
-- 
cgit v1.2.3