[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Heimdal-20040120 snapshot and password quality

Alf Wachsmann <alfw@SLAC.Stanford.EDU> writes:

> Hi,
> a colleague sent me the appended email. Do you know what the
> problem is?

Your colleague is correct.

>> Perhaps the chpw.newpasswd should be in_data?  I have not
>> looked at the other changes, so I may very well be incorrect.

I commited this change.


--- kpasswd/kpasswdd.c
+++ kpasswd/kpasswdd.c
@@ -220,7 +220,7 @@
     memset(&chpw, 0, sizeof(chpw));
     if (version == KRB5_KPASSWD_VERS_CHANGEPW) {
-	ret = krb5_copy_data(context, &chpw.newpasswd, &pwd_data);
+	ret = krb5_copy_data(context, in_data, &pwd_data);
 	if (ret) {
 	    krb5_warn (context, ret, "krb5_copy_data");
 	    reply_priv (auth_context, s, sa, sa_size, KRB5_KPASSWD_MALFORMED,

PGP signature