STABLE12-rxkad-client-offer-better-bad-token-warnings-20020912

author Derrick Brashear <shadow@dementia.org>

Fri, 13 Sep 2002 03:53:19 +0000 (03:53 +0000)

committer Derrick Brashear <shadow@dementia.org>

Fri, 13 Sep 2002 03:53:19 +0000 (03:53 +0000)
author Derrick Brashear <shadow@dementia.org>
Fri, 13 Sep 2002 03:53:19 +0000 (03:53 +0000)
committer Derrick Brashear <shadow@dementia.org>
Fri, 13 Sep 2002 03:53:19 +0000 (03:53 +0000)
diff --git a/src/afs/afs_pioctl.c b/src/afs/afs_pioctl.c

index 242fdbd38cdcb2f1eaa24980cc47c1e018de8c10..3bae148639f3883eaa119609caae1528643353ab 100644 (file)
--- a/src/afs/afs_pioctl.c
+++ b/src/afs/afs_pioctl.c
@@ -1432,6 +1432,7 @@ static PGCPAGs(avc, afun, areq, ain, aout, ainSize, aoutSize, acred)
      ain += sizeof(afs_int32);
      stp        = ain;  /* remember where the ticket is */
      if (i < 0 || i > 2000) return EINVAL;      /* malloc may fail */
+    if (i > MAXKTCTICKETLEN) return EINVAL;
      stLen = i;
      ain        += i;   /* skip over ticket */
      memcpy((char *)&i, ain, sizeof(afs_int32));
diff --git a/src/rxkad/rxkad_client.c b/src/rxkad/rxkad_client.c

index 637ac769f03fd8c4dace69ee4bcf2511ed3b4e53..44cb9ec1f85e1aa2045bdc811573650d4e54cbf7 100644 (file)
--- a/src/rxkad/rxkad_client.c
+++ b/src/rxkad/rxkad_client.c
@@ -196,6 +196,7 @@ rxkad_NewClientSecurityObject(level, sessionkey, kvno, ticketLen, ticket)
      memcpy((void *)tcp->ivec, (void *)sessionkey, sizeof(tcp->ivec));
      tcp->kvno = kvno;                  /* key version number */
      tcp->ticketLen = ticketLen;                /* length of ticket */
+    if (tcp->ticketLen > MAXKTCTICKETLEN) return 0; /* bad key */
      memcpy(tcp->ticket, ticket, ticketLen);
  
      LOCK_RXKAD_STATS
author	Derrick Brashear <shadow@dementia.org>
	Fri, 13 Sep 2002 03:53:19 +0000 (03:53 +0000)
committer	Derrick Brashear <shadow@dementia.org>
	Fri, 13 Sep 2002 03:53:19 +0000 (03:53 +0000)
src/afs/afs_pioctl.c		patch \| blob \| history
src/rxkad/rxkad_client.c		patch \| blob \| history