1 files changed, 7 insertions, 34 deletions
diff --git a/net/sunrpc/auth_gss/gss_krb5_mech.c b/net/sunrpc/auth_gss/gss_krb5_mech.c
index 606a8a82cafb..5f1f806a0b11 100644
--- a/net/sunrpc/auth_gss/gss_krb5_mech.c
+++ b/net/sunrpc/auth_gss/gss_krb5_mech.c
@@ -39,7 +39,6 @@
 #include <linux/types.h>
 #include <linux/slab.h>
 #include <linux/sunrpc/auth.h>
-#include <linux/in.h>
 #include <linux/sunrpc/gss_krb5.h>
 #include <linux/sunrpc/xdr.h>
 #include <linux/crypto.h>
@@ -191,43 +190,12 @@ gss_delete_sec_context_kerberos(void *internal_ctx) {
        kfree(kctx);
 }
-static u32
-gss_verify_mic_kerberos(struct gss_ctx          *ctx,
-                        struct xdr_buf          *message,
-                        struct xdr_netobj       *mic_token,
-                        u32                     *qstate) {
-        u32 maj_stat = 0;
-        int qop_state;
-        struct krb5_ctx *kctx = ctx->internal_ctx_id;
-        maj_stat = krb5_read_token(kctx, mic_token, message, &qop_state,
-                                   KG_TOK_MIC_MSG);
-        if (!maj_stat && qop_state)
-            *qstate = qop_state;
-        dprintk("RPC:      gss_verify_mic_kerberos returning %d\n", maj_stat);
-        return maj_stat;
-}
-static u32
-gss_get_mic_kerberos(struct gss_ctx     *ctx,
-                     u32                qop,
-                     struct xdr_buf     *message,
-                     struct xdr_netobj  *mic_token) {
-        u32 err = 0;
-        struct krb5_ctx *kctx = ctx->internal_ctx_id;
-        err = krb5_make_token(kctx, qop, message, mic_token, KG_TOK_MIC_MSG);
-        dprintk("RPC:      gss_get_mic_kerberos returning %d\n",err);
-        return err;
-}
 static struct gss_api_ops gss_kerberos_ops = {
        .gss_import_sec_context = gss_import_sec_context_kerberos,
        .gss_get_mic            = gss_get_mic_kerberos,
        .gss_verify_mic         = gss_verify_mic_kerberos,
+        .gss_wrap               = gss_wrap_kerberos,
+        .gss_unwrap             = gss_unwrap_kerberos,
        .gss_delete_sec_context = gss_delete_sec_context_kerberos,
 };
@@ -242,6 +210,11 @@ static struct pf_desc gss_kerberos_pfs[] = {
                .service = RPC_GSS_SVC_INTEGRITY,
                .name = "krb5i",
        },
+        [2] = {
+                .pseudoflavor = RPC_AUTH_GSS_KRB5P,
+                .service = RPC_GSS_SVC_PRIVACY,
+                .name = "krb5p",
+        },
 };
 static struct gss_api_mech gss_kerberos_mech = {

diff --git a/net/sunrpc/auth_gss/gss_krb5_mech.c b/net/sunrpc/auth_gss/gss_krb5_mech.c index 606a8a82cafb..5f1f806a0b11 100644 --- a/net/sunrpc/auth_gss/gss_krb5_mech.c +++ b/net/sunrpc/auth_gss/gss_krb5_mech.c
@@ -39,7 +39,6 @@
39	#include <linux/types.h>	39	#include <linux/types.h>
40	#include <linux/slab.h>	40	#include <linux/slab.h>
41	#include <linux/sunrpc/auth.h>	41	#include <linux/sunrpc/auth.h>
42	#include <linux/in.h>
43	#include <linux/sunrpc/gss_krb5.h>	42	#include <linux/sunrpc/gss_krb5.h>
44	#include <linux/sunrpc/xdr.h>	43	#include <linux/sunrpc/xdr.h>
45	#include <linux/crypto.h>	44	#include <linux/crypto.h>
@@ -191,43 +190,12 @@ gss_delete_sec_context_kerberos(void *internal_ctx) {
191	kfree(kctx);	190	kfree(kctx);
192	}	191	}
193		192
194	static u32
195	gss_verify_mic_kerberos(struct gss_ctx *ctx,
196	struct xdr_buf *message,
197	struct xdr_netobj *mic_token,
198	u32 *qstate) {
199	u32 maj_stat = 0;
200	int qop_state;
201	struct krb5_ctx *kctx = ctx->internal_ctx_id;
202
203	maj_stat = krb5_read_token(kctx, mic_token, message, &qop_state,
204	KG_TOK_MIC_MSG);
205	if (!maj_stat && qop_state)
206	*qstate = qop_state;
207
208	dprintk("RPC: gss_verify_mic_kerberos returning %d\n", maj_stat);
209	return maj_stat;
210	}
211
212	static u32
213	gss_get_mic_kerberos(struct gss_ctx *ctx,
214	u32 qop,
215	struct xdr_buf *message,
216	struct xdr_netobj *mic_token) {
217	u32 err = 0;
218	struct krb5_ctx *kctx = ctx->internal_ctx_id;
219
220	err = krb5_make_token(kctx, qop, message, mic_token, KG_TOK_MIC_MSG);
221
222	dprintk("RPC: gss_get_mic_kerberos returning %d\n",err);
223
224	return err;
225	}
226
227	static struct gss_api_ops gss_kerberos_ops = {	193	static struct gss_api_ops gss_kerberos_ops = {
228	.gss_import_sec_context = gss_import_sec_context_kerberos,	194	.gss_import_sec_context = gss_import_sec_context_kerberos,
229	.gss_get_mic = gss_get_mic_kerberos,	195	.gss_get_mic = gss_get_mic_kerberos,
230	.gss_verify_mic = gss_verify_mic_kerberos,	196	.gss_verify_mic = gss_verify_mic_kerberos,
		197	.gss_wrap = gss_wrap_kerberos,
		198	.gss_unwrap = gss_unwrap_kerberos,
231	.gss_delete_sec_context = gss_delete_sec_context_kerberos,	199	.gss_delete_sec_context = gss_delete_sec_context_kerberos,
232	};	200	};
233		201
@@ -242,6 +210,11 @@ static struct pf_desc gss_kerberos_pfs[] = {
242	.service = RPC_GSS_SVC_INTEGRITY,	210	.service = RPC_GSS_SVC_INTEGRITY,
243	.name = "krb5i",	211	.name = "krb5i",
244	},	212	},
		213	[2] = {
		214	.pseudoflavor = RPC_AUTH_GSS_KRB5P,
		215	.service = RPC_GSS_SVC_PRIVACY,
		216	.name = "krb5p",
		217	},
245	};	218	};
246		219
247	static struct gss_api_mech gss_kerberos_mech = {	220	static struct gss_api_mech gss_kerberos_mech = {