On Mon, 2010-03-15 at 08:20 -0400, steved@xxxxxxxxxx wrote: > From: Kevin Coffman <kwc@xxxxxxxxxxxxxx> > > New file, krb5_info, indicates which Kerberos encryption types are > supported by the kernel rpcsecgss code. This is used by gssd to > determine which encryption types it should attempt to negotiate > when creating a context with a server. > > The server principal's database and keytab encryption types are > what limits what it should negotiate. Therefore, its keytab > should be created with only the enctypes listed by this file. > > From: J. Bruce Fields <bfields@xxxxxxxxxxxxxx> > Signed-off-by: Kevin Coffman <kwc@xxxxxxxxxxxxxx> > Signed-off-by: Steve Dickson <steved@xxxxxxxxxx> > --- > net/sunrpc/rpc_pipe.c | 31 +++++++++++++++++++++++++++++++ > 1 files changed, 31 insertions(+), 0 deletions(-) > > diff --git a/net/sunrpc/rpc_pipe.c b/net/sunrpc/rpc_pipe.c > index 8d63f8f..2230b52 100644 > --- a/net/sunrpc/rpc_pipe.c > +++ b/net/sunrpc/rpc_pipe.c > @@ -397,6 +397,31 @@ static const struct file_operations rpc_info_operations = { > .release = rpc_info_release, > }; > > +/* > + * This really belongs in the gss_krb5 code, > + * but the info file logically belongs here > + */ No. We should rather export __rpc_create() to allow this code to be moved to the gss_krb5 module. -- To unsubscribe from this list: send the line "unsubscribe linux-nfs" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html