Add special handling for systems without password in the password che…

…cking short-circuiting Signed-off-by: DL6ER <dl6er@dl6er.de>
pi-hole · Jun 13, 2024 · 5a6a212 · 5a6a212
1 parent 2406e1a
commit 5a6a212
Showing 1 changed file with 5 additions and 2 deletions.
diff --git a/src/config/password.c b/src/config/password.c
@@ -601,8 +601,11 @@ int run_performance_test(void)
 
 bool set_and_check_password(struct conf_item *conf_item, const char *password)
 {
-	// Check if the newly set password is the same as the old one
-	if(verify_password(password, config.webserver.api.pwhash.v.s, false) == PASSWORD_CORRECT)
+	// Check if the user wants to set an empty password but the password is
+	// already empty, or if the newly set password is the same as the old
+	// one
+	if((strlen(password) == 0 && strlen(config.webserver.api.pwhash.v.s) == 0) ||
+	   verify_password(password, config.webserver.api.pwhash.v.s, false) == PASSWORD_CORRECT)
 	{
 		log_debug(DEBUG_CONFIG, "Password unchanged, not updating");
 		return true;