* rd_cred.c (krb5_rd_cred_basic): Check remote_addr and

author Tom Yu <tlyu@mit.edu>

Fri, 8 Aug 1997 22:04:30 +0000 (22:04 +0000)

committer Tom Yu <tlyu@mit.edu>

Fri, 8 Aug 1997 22:04:30 +0000 (22:04 +0000)
author Tom Yu <tlyu@mit.edu>
Fri, 8 Aug 1997 22:04:30 +0000 (22:04 +0000)
committer Tom Yu <tlyu@mit.edu>
Fri, 8 Aug 1997 22:04:30 +0000 (22:04 +0000)
diff --git a/src/lib/krb5/krb/ChangeLog b/src/lib/krb5/krb/ChangeLog

index 0419b31c99208db32be7eb03215d8028c6a43f57..e0ca78a2ef4288bb88d428b53168f1fe196c1b61 100644 (file)
--- a/src/lib/krb5/krb/ChangeLog
+++ b/src/lib/krb5/krb/ChangeLog
@@ -1,3 +1,9 @@
+Fri Aug  8 17:04:54 1997  Tom Yu  <tlyu@mit.edu>
+
+       * rd_cred.c (krb5_rd_cred_basic): Check remote_addr and
+       encpart.s_address before calling krb5_address_compare.  Fixes
+       krb5-libs/456.
+
  Fri Jul 25 15:25:32 1997  Tom Yu  <tlyu@mit.edu>
  
         * t_ser.c: Add support for changed kdb API.
diff --git a/src/lib/krb5/krb/rd_cred.c b/src/lib/krb5/krb/rd_cred.c

index 05eb7d74613c6e6e7306405a1c2cf7d4be444061..edbc96e64ce257e84ef04f2515c33c8e1161eac9 100644 (file)
--- a/src/lib/krb5/krb/rd_cred.c
+++ b/src/lib/krb5/krb/rd_cred.c
@@ -105,7 +105,7 @@ krb5_rd_cred_basic(context, pcreddata, pkeyblock, local_addr, remote_addr,
       * protected by encryption.  If it came in the checksum field of
       * an init_sec_context message, skip over this check.
       */
-    if (pkeyblock != NULL) {
+    if (remote_addr && encpart.s_address && pkeyblock != NULL) {
         if (!krb5_address_compare(context, remote_addr, encpart.s_address)) {
             retval = KRB5KRB_AP_ERR_BADADDR;
             goto cleanup_cred;
author	Tom Yu <tlyu@mit.edu>
	Fri, 8 Aug 1997 22:04:30 +0000 (22:04 +0000)
committer	Tom Yu <tlyu@mit.edu>
	Fri, 8 Aug 1997 22:04:30 +0000 (22:04 +0000)
src/lib/krb5/krb/ChangeLog		patch \| blob \| history
src/lib/krb5/krb/rd_cred.c		patch \| blob \| history