(_krb5_mk_req_internal): Indent and remove unused code block.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16798 ec53bebd-3082-4978-b11e-865c3cabbd6b

lib/krb5/mk_req_ext.c

@@ -45,125 +45,103 @@ _krb5_mk_req_internal(krb5_context context,
 		      krb5_key_usage checksum_usage,
 		      krb5_key_usage encrypt_usage)
 {
-  krb5_error_code ret;
+    krb5_error_code ret;
-  krb5_data authenticator;
+    krb5_data authenticator;
-  Checksum c;
+    Checksum c;
-  Checksum *c_opt;
+    Checksum *c_opt;
-  krb5_auth_context ac;
+    krb5_auth_context ac;
 
-  if(auth_context) {
+    if(auth_context) {
-      if(*auth_context == NULL)
+	if(*auth_context == NULL)
-	  ret = krb5_auth_con_init(context, auth_context);
+	    ret = krb5_auth_con_init(context, auth_context);
-      else
+	else
-	  ret = 0;
+	    ret = 0;
-      ac = *auth_context;
+	ac = *auth_context;
-  } else
+    } else
-      ret = krb5_auth_con_init(context, &ac);
+	ret = krb5_auth_con_init(context, &ac);
-  if(ret)
+    if(ret)
-      return ret;
+	return ret;
       
-  if(ac->local_subkey == NULL && (ap_req_options & AP_OPTS_USE_SUBKEY)) {
+    if(ac->local_subkey == NULL && (ap_req_options & AP_OPTS_USE_SUBKEY)) {
-      ret = krb5_auth_con_generatelocalsubkey(context, ac, &in_creds->session);
+	ret = krb5_auth_con_generatelocalsubkey(context,
-      if(ret)
+						ac, 
-	  goto out;
+						&in_creds->session);
-  }
+	if(ret)
+	    goto out;
+    }
 
-#if 0
+    krb5_free_keyblock(context, ac->keyblock);
-  {
+    ret = krb5_copy_keyblock(context, &in_creds->session, &ac->keyblock);
-      /* This is somewhat bogus since we're possibly overwriting a
+    if (ret)
-         value specified by the user, but it's the easiest way to make
+	goto out;
-         the code use a compatible enctype */
-      Ticket ticket;
-      krb5_keytype ticket_keytype;
   
-      ret = decode_Ticket(in_creds->ticket.data, 
+    /* it's unclear what type of checksum we can use.  try the best one, except:
-			  in_creds->ticket.length, 
+     * a) if it's configured differently for the current realm, or
-			  &ticket, 
+     * b) if the session key is des-cbc-crc
-			  NULL);
+     */
-      krb5_enctype_to_keytype (context,
-			       ticket.enc_part.etype,
-			       &ticket_keytype);
 
-      if (ticket_keytype == in_creds->session.keytype)
+    if (in_data) {
-	  krb5_auth_setenctype(context, 
+	if(ac->keyblock->keytype == ETYPE_DES_CBC_CRC) {
-			       ac,
+	    /* this is to make DCE secd (and older MIT kdcs?) happy */
-			       ticket.enc_part.etype);
+	    ret = krb5_create_checksum(context, 
-      free_Ticket(&ticket);
+				       NULL,
-  }
+				       0,
-#endif
+				       CKSUMTYPE_RSA_MD4,
+				       in_data->data,
+				       in_data->length,
+				       &c);
+	} else if(ac->keyblock->keytype == ETYPE_ARCFOUR_HMAC_MD5 ||
+		  ac->keyblock->keytype == ETYPE_ARCFOUR_HMAC_MD5_56) {
+	    /* this is to make MS kdc happy */ 
+	    ret = krb5_create_checksum(context, 
+				       NULL,
+				       0,
+				       CKSUMTYPE_RSA_MD5,
+				       in_data->data,
+				       in_data->length,
+				       &c);
+	} else {
+	    krb5_crypto crypto;
 
-  krb5_free_keyblock(context, ac->keyblock);
+	    ret = krb5_crypto_init(context, ac->keyblock, 0, &crypto);
-  ret = krb5_copy_keyblock(context, &in_creds->session, &ac->keyblock);
+	    if (ret)
-  if (ret)
+		goto out;
-      goto out;
+	    ret = krb5_create_checksum(context, 
+				       crypto,
+				       checksum_usage,
+				       0,
+				       in_data->data,
+				       in_data->length,
+				       &c);
+	    krb5_crypto_destroy(context, crypto);
+	}
+	c_opt = &c;
+    } else {
+	c_opt = NULL;
+    }
 
-  /* it's unclear what type of checksum we can use.  try the best one, except:
+    if (ret)
-   * a) if it's configured differently for the current realm, or
+	goto out;
-   * b) if the session key is des-cbc-crc
-   */
   
-  if (in_data) {
+    ret = krb5_build_authenticator (context,
-      if(ac->keyblock->keytype == ETYPE_DES_CBC_CRC) {
+				    ac,
-	  /* this is to make DCE secd (and older MIT kdcs?) happy */
+				    ac->keyblock->keytype,
-	  ret = krb5_create_checksum(context, 
+				    in_creds,
-				     NULL,
+				    c_opt,
-				     0,
+				    NULL,
-				     CKSUMTYPE_RSA_MD4,
+				    &authenticator,
-				     in_data->data,
+				    encrypt_usage);
-				     in_data->length,
+    if (c_opt)
-				     &c);
+	free_Checksum (c_opt);
-      } else if(ac->keyblock->keytype == ETYPE_ARCFOUR_HMAC_MD5 ||
+    if (ret)
-		ac->keyblock->keytype == ETYPE_ARCFOUR_HMAC_MD5_56) {
+	goto out;
-	  /* this is to make MS kdc happy */ 
-	  ret = krb5_create_checksum(context, 
-				     NULL,
-				     0,
-				     CKSUMTYPE_RSA_MD5,
-				     in_data->data,
-				     in_data->length,
-				     &c);
-      } else {
-	  krb5_crypto crypto;
 
-	  ret = krb5_crypto_init(context, ac->keyblock, 0, &crypto);
+    ret = krb5_build_ap_req (context, ac->keyblock->keytype, 
-	  if (ret)
+			     in_creds, ap_req_options, authenticator, outbuf);
-	      goto out;
-	  ret = krb5_create_checksum(context, 
-				     crypto,
-				     checksum_usage,
-				     0,
-				     in_data->data,
-				     in_data->length,
-				     &c);
-      	  krb5_crypto_destroy(context, crypto);
-      }
-      c_opt = &c;
-  } else {
-      c_opt = NULL;
-  }
-
-  if (ret)
-      goto out;
-  
-  ret = krb5_build_authenticator (context,
-				  ac,
-				  ac->keyblock->keytype,
-				  in_creds,
-				  c_opt,
-				  NULL,
-				  &authenticator,
-				  encrypt_usage);
-  if (c_opt)
-      free_Checksum (c_opt);
-  if (ret)
-    goto out;
-
-  ret = krb5_build_ap_req (context, ac->keyblock->keytype, 
-			   in_creds, ap_req_options, authenticator, outbuf);
 out:
-  if(auth_context == NULL)
+    if(auth_context == NULL)
-      krb5_auth_con_free(context, ac);
+	krb5_auth_con_free(context, ac);
-  return ret;
+    return ret;
 }
 
 krb5_error_code KRB5_LIB_FUNCTION