From 4ba454b93fb4af77a7577ae76f7c5388dcf5ab57 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Love=20H=C3=B6rnquist=20=C3=85strand?= <lha@kth.se>
Date: Mon, 6 Oct 2003 20:22:07 +0000
Subject: [PATCH] (do_authenticate): if request length is less then 8, its a
 bad request and fail. Pointed out by Marco Foglia <marco@foglia.org>

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12970 ec53bebd-3082-4978-b11e-865c3cabbd6b
---
 kdc/kaserver.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/kdc/kaserver.c b/kdc/kaserver.c
index afdbab380..66691932d 100644
--- a/kdc/kaserver.c
+++ b/kdc/kaserver.c
@@ -402,6 +402,10 @@ do_authenticate (struct rx_header *hdr,
 
     unparse_auth_args (sp, &name, &instance, &start_time, &end_time,
 		       &request, &max_seq_len);
+    if (request.length < 8) {
+	make_error_reply (hdr, KABADREQUEST, reply);
+	goto out;
+    }
 
     snprintf (client_name, sizeof(client_name), "%s.%s@%s",
 	      name, instance, v4_realm);