From 6d39c6591f0bb9ff361f8f9a55067deef744804c Mon Sep 17 00:00:00 2001
From: Simon Tate <simon.tate@bt.com>
Date: Sat, 12 Sep 2020 21:13:26 +0100
Subject: [PATCH] pppd: Fix blank password usage

If a password has been provided as "", CHAP authentication wouldn't
happen. A user providing a username/password, even if blank, should be
expecting authentication to occur with those set.

Added a check for explicit_passwd property, set on finding the password
argument, to allow CHAP authentication with a blank password.

Signed-off-by: Simon Tate <simon.tate@bt.com>
---
 pppd/auth.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pppd/auth.c b/pppd/auth.c
index ec13710..3641b6e 100644
--- a/pppd/auth.c
+++ b/pppd/auth.c
@@ -1338,7 +1338,7 @@ auth_reset(unit)
     hadchap = -1;
     ao->neg_upap = !refuse_pap && (passwd[0] != 0 || get_pap_passwd(NULL));
     ao->neg_chap = (!refuse_chap || !refuse_mschap || !refuse_mschap_v2)
-	&& (passwd[0] != 0 ||
+	&& ((passwd[0] != 0 || explicit_passwd) ||
 	    (hadchap = have_chap_secret(user, (explicit_remote? remote_name:
 					       NULL), 0, NULL)));
     ao->neg_eap = !refuse_eap && (
-- 
2.39.2