socks_gssapi: remove the forced "no protection"

author Daniel Stenberg <daniel@haxx.se>

Sun, 21 Sep 2025 21:34:37 +0000 (23:34 +0200)

committer Daniel Stenberg <daniel@haxx.se>

Thu, 25 Sep 2025 08:11:28 +0000 (10:11 +0200)
author Daniel Stenberg <daniel@haxx.se>
Sun, 21 Sep 2025 21:34:37 +0000 (23:34 +0200)
committer Daniel Stenberg <daniel@haxx.se>
Thu, 25 Sep 2025 08:11:28 +0000 (10:11 +0200)
diff --git a/lib/socks_gssapi.c b/lib/socks_gssapi.c

index b6530d5d7d55f14cee74c8bb1c00f3010aa9be0e..0aa6f7245fe3969162d2c1173a6764b4a5694eeb 100644 (file)
--- a/lib/socks_gssapi.c
+++ b/lib/socks_gssapi.c
@@ -359,8 +359,7 @@ CURLcode Curl_SOCKS5_gssapi_negotiate(struct Curl_cfilter *cf,
    infof(data, "SOCKS5 server supports GSS-API %s data protection.",
          (gss_enc == 0) ? "no" :
          ((gss_enc == 1) ? "integrity" : "confidentiality"));
-  /* force for the moment to no data protection */
-  gss_enc = 0;
+
    /*
     * Sending the encryption type in clear seems wrong. It should be
     * protected with gss_seal()/gss_wrap(). See RFC1961 extract below
author	Daniel Stenberg <daniel@haxx.se>
	Sun, 21 Sep 2025 21:34:37 +0000 (23:34 +0200)
committer	Daniel Stenberg <daniel@haxx.se>
	Thu, 25 Sep 2025 08:11:28 +0000 (10:11 +0200)