repair-afs-cryptall-20010111
authorGreg Hudson <ghudson@mit.edu>
Thu, 11 Jan 2001 06:50:43 +0000 (06:50 +0000)
committerDerrick Brashear <shadow@dementia.org>
Thu, 11 Jan 2001 06:50:43 +0000 (06:50 +0000)
This makes it possible to have encryption enabled, but does not
expose an interface to do so. That will follow tomorrow, when
hopefully OpenAFS and Arla will have synchronized pioctls allowing
userspace compatibility

src/afs/afs_conn.c

index 16bc447..0e984f0 100644 (file)
@@ -220,15 +220,15 @@ struct conn *afs_ConnBySA(struct srvAddr *sap, unsigned short aport,
 
              if (cryptall) {
                level=rxkad_crypt;
-               isec=3;
-             }
-             else {
+             } else {
                level=rxkad_clear;
-               isec=2;
              }
-               /* kerberos tickets on channel 2 */
-               csec = rxkad_NewClientSecurityObject(level, tu->ct.HandShakeKey,
-                       /* kvno */ tu->ct.AuthHandle, tu->stLen, tu->stp);
+             isec=2;
+             /* kerberos tickets on channel 2 */
+             csec = rxkad_NewClientSecurityObject(level, tu->ct.HandShakeKey,
+                                                  /* kvno */ 
+                                                  tu->ct.AuthHandle, 
+                                                  tu->stLen, tu->stp);
        }
        if (isec == 0)
            csec = rxnull_NewClientSecurityObject();