/* validate the request */
request_time = ntohl(request.time); /* reorder date */
kvno = ntohl(request.kvno);
- if (labs(request_time - time(NULL)) > KTC_TIME_UNCERTAINTY ||
+ if (check_ka_skew(request_time, time(NULL), KTC_TIME_UNCERTAINTY) ||
strncmp(request.label, KA_CPW_REQ_LABEL, sizeof(request.label)) ||
request.spare || kvno > MAXKAKVNO) { /* these are reserved */
code = KABADREQUEST;
}
#endif /* EXPIREPW */
- if (request.time - now > KTC_TIME_UNCERTAINTY) {
-#if 0
- if (oanswer->MaxSeqLen < sizeof(afs_int32))
- code = KAANSWERTOOLONG;
- else { /* return our time if possible */
- oanswer->SeqLen = sizeof(afs_int32);
- request.time = htonl(now);
- memcpy(oanswer->SeqBody, &request.time, sizeof(afs_int32));
- }
-#endif
+ if (check_ka_skew(request.time, now, KTC_TIME_UNCERTAINTY)) {
code = KACLOCKSKEW;
goto abort;
}
struct kaentry tentry;
COUNT_REQ(ListEntry);
+ memset(name, 0, sizeof(*name));
if ((code = InitAuthServ(&tt, LOCKREAD, this_op)))
return code;
code = check_auth(call, tt, 1, &caller);