This makes it possible to have encryption enabled, but does not
expose an interface to do so. That will follow tomorrow, when
hopefully OpenAFS and Arla will have synchronized pioctls allowing
userspace compatibility
if (cryptall) {
level=rxkad_crypt;
- isec=3;
- }
- else {
+ } else {
level=rxkad_clear;
- isec=2;
}
- /* kerberos tickets on channel 2 */
- csec = rxkad_NewClientSecurityObject(level, tu->ct.HandShakeKey,
- /* kvno */ tu->ct.AuthHandle, tu->stLen, tu->stp);
+ isec=2;
+ /* kerberos tickets on channel 2 */
+ csec = rxkad_NewClientSecurityObject(level, tu->ct.HandShakeKey,
+ /* kvno */
+ tu->ct.AuthHandle,
+ tu->stLen, tu->stp);
}
if (isec == 0)
csec = rxnull_NewClientSecurityObject();