cleanup_mesg();
return KRB5_RC_REQUIRED;
}
+ if (!krb5_address_compare(sender_addr, privmsg_enc_part->s_address)) {
+ cleanup_data();
+ cleanup_mesg();
+ return KRB5KRB_AP_ERR_BADADDR;
+ }
if (retval = krb5_gen_replay_name(sender_addr, "_priv",
&replay.client)) {
cleanup_data();
}
krb5_free_address(our_addrs);
}
- /* XXX check sender's address */
/* everything is ok - return data to the user */
cleanup();
return KRB5_RC_REQUIRED;
}
+ if (!krb5_address_compare(sender_addr, message->s_address)) {
+ cleanup();
+ return KRB5KRB_AP_ERR_BADADDR;
+ }
if (retval = krb5_gen_replay_name(sender_addr, "_safe",
&replay.client)) {
cleanup();
krb5_free_address(our_addrs);
}
- /* XXX check sender's address */
-
/* verify the checksum */
/* to do the checksum stuff, we need to re-encode the message with a
zero-length zero-type checksum, then checksum the encoding, and verify.