From: Greg Hudson <ghudson@mit.edu>
Date: Thu, 11 Jan 2001 06:50:43 +0000 (+0000)
Subject: repair-afs-cryptall-20010111
X-Git-Tag: BP-openafs-devel-autoconf~120
X-Git-Url: https://git.michaelhowe.org/gitweb/?a=commitdiff_plain;h=10892a7bde1c9eb8beac2ecb1d618a67cdea3fdb;p=packages%2Fo%2Fopenafs.git

repair-afs-cryptall-20010111

This makes it possible to have encryption enabled, but does not
expose an interface to do so. That will follow tomorrow, when
hopefully OpenAFS and Arla will have synchronized pioctls allowing
userspace compatibility
---

diff --git a/src/afs/afs_conn.c b/src/afs/afs_conn.c
index 16bc447e7..0e984f0c7 100644
--- a/src/afs/afs_conn.c
+++ b/src/afs/afs_conn.c
@@ -220,15 +220,15 @@ struct conn *afs_ConnBySA(struct srvAddr *sap, unsigned short aport,
 
 	      if (cryptall) {
 		level=rxkad_crypt;
-		isec=3;
-	      }
-	      else {
+	      } else {
 		level=rxkad_clear;
-		isec=2;
 	      }
-		/* kerberos tickets on channel 2 */
-		csec = rxkad_NewClientSecurityObject(level, tu->ct.HandShakeKey,
-			/* kvno */ tu->ct.AuthHandle, tu->stLen, tu->stp);
+	      isec=2;
+	      /* kerberos tickets on channel 2 */
+	      csec = rxkad_NewClientSecurityObject(level, tu->ct.HandShakeKey,
+						   /* kvno */ 
+						   tu->ct.AuthHandle, 
+						   tu->stLen, tu->stp);
 	}
 	if (isec == 0)
 	    csec = rxnull_NewClientSecurityObject();