diff options
author | Ken Hornstein <kenh@cmf.nrl.navy.mil> | 2002-10-24 02:03:15 +0000 |
---|---|---|
committer | Ken Hornstein <kenh@cmf.nrl.navy.mil> | 2002-10-24 02:03:15 +0000 |
commit | a706a2d0d05ecea7a844db7d291493a5d282ed57 (patch) | |
tree | e44dc3d609b687d5079d0edd90726507a83e5832 /src | |
parent | b73820418346819b574434c5f5a0defd638a6dcc (diff) | |
download | krb5-a706a2d0d05ecea7a844db7d291493a5d282ed57.tar.gz krb5-a706a2d0d05ecea7a844db7d291493a5d282ed57.tar.xz krb5-a706a2d0d05ecea7a844db7d291493a5d282ed57.zip |
No support for negative password expiration last-req hint
Fixing an omission; previous code didn't support a negative value for the
password expiration hint (which is legal). Pointed out by Ezra Peisach.
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14938 dc483132-0cff-0310-8789-dd5450dbe970
Diffstat (limited to 'src')
-rw-r--r-- | src/include/krb5.hin | 3 | ||||
-rw-r--r-- | src/lib/krb5/krb/gic_pwd.c | 3 |
2 files changed, 4 insertions, 2 deletions
diff --git a/src/include/krb5.hin b/src/include/krb5.hin index 7ab1cde043..345660253e 100644 --- a/src/include/krb5.hin +++ b/src/include/krb5.hin @@ -839,7 +839,8 @@ krb5_error_code krb5_decrypt_data #define KRB5_LRQ_ONE_LAST_RENEWAL (-4) #define KRB5_LRQ_ALL_LAST_REQ 5 #define KRB5_LRQ_ONE_LAST_REQ (-5) -#define KRB5_LRQ_PW_EXPTIME 6 +#define KRB5_LRQ_ALL_PW_EXPTIME 6 +#define KRB5_LRQ_ONE_PW_EXPTIME (-6) /* PADATA types */ #define KRB5_PADATA_NONE 0 diff --git a/src/lib/krb5/krb/gic_pwd.c b/src/lib/krb5/krb/gic_pwd.c index 776669af40..287ee7b7bc 100644 --- a/src/lib/krb5/krb/gic_pwd.c +++ b/src/lib/krb5/krb/gic_pwd.c @@ -323,7 +323,8 @@ cleanup: */ for (last_req = as_reply->enc_part2->last_req; *last_req; last_req++) - if ((*last_req)->lr_type == KRB5_LRQ_PW_EXPTIME) { + if ((*last_req)->lr_type == KRB5_LRQ_ALL_PW_EXPTIME || + (*last_req)->lr_type == KRB5_LRQ_ONE_PW_EXPTIME) { krb5_deltat delta; char ts[256]; |