From b3dd9c2f4e753c363ed5e75b50f73c70b4b675ad Mon Sep 17 00:00:00 2001
From: Simon Wilkinson <sxw@your-file-system.com>
Date: Sat, 2 Feb 2013 07:20:14 +0000
Subject: [PATCH] auth: Permit NULL fallback in localauth case

Allow the caller of afsconf_PickClientSecObj to specify both
local authentication, and to request fallback to null authentication
if local auth isn't available.

Change-Id: Ib3b801bfde3f32b4cb9cdc7c08a3d8ab985c080f
Reviewed-on: http://gerrit.openafs.org/9022
Tested-by: BuildBot <buildbot@rampaginggeek.com>
Reviewed-by: Derrick Brashear <shadow@your-file-system.com>
---
 src/auth/authcon.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/auth/authcon.c b/src/auth/authcon.c
index 9148624..54e842d 100644
--- a/src/auth/authcon.c
+++ b/src/auth/authcon.c
@@ -331,7 +331,8 @@ afsconf_PickClientSecObj(struct afsconf_dir *dir, afsconf_secflags flags,
 	     * explicitly requested. Check for this, and bail out if we
 	     * get one. Note that this leaks a security object at present
 	     */
-	    if (*scIndex == RX_SECIDX_NULL) {
+	    if (!(flags & AFSCONF_SECOPTS_FALLBACK_NULL) &&
+		*scIndex == RX_SECIDX_NULL) {
 		sc = NULL;
 		code = AFSCONF_NOTFOUND;
 		goto out;
-- 
1.9.4