diff options
author | Nicolas Williams <nico@cryptonector.com> | 2021-05-13 00:43:26 -0500 |
---|---|---|
committer | Greg Hudson <ghudson@mit.edu> | 2024-05-13 12:47:47 -0400 |
commit | d035119c3b2b402f3ad49a4c7b6264826ea923bb (patch) | |
tree | d11952914a3be3f3971062bc0faf0949b1fe229f /src/include/k5-int.h | |
parent | 6b74b6c18feab1f3d72d00ae412a93c6bfa4a00a (diff) | |
download | krb5-d035119c3b2b402f3ad49a4c7b6264826ea923bb.zip krb5-d035119c3b2b402f3ad49a4c7b6264826ea923bb.tar.gz krb5-d035119c3b2b402f3ad49a4c7b6264826ea923bb.tar.bz2 |
Support site-local KDC discovery via DNS
Add the sitename realm variable. If set, service location via DNS
will be attempted using the site name as specified in [MS-ADTS]
6.3.2.3, falling back to regular discovery on failure.
[ghudson@mit.edu: made this strictly a realm variable; moved
k5_get_sitename() to locate_kdc.c and made it take a krb5_data input;
fixed a memory leak; corrected documentation changes; fleshed out
commit message]
ticket: 9124 (new)
Diffstat (limited to 'src/include/k5-int.h')
-rw-r--r-- | src/include/k5-int.h | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/src/include/k5-int.h b/src/include/k5-int.h index fe99593..a5763bf 100644 --- a/src/include/k5-int.h +++ b/src/include/k5-int.h @@ -293,6 +293,7 @@ typedef unsigned char u_char; #define KRB5_CONF_REJECT_BAD_TRANSIT "reject_bad_transit" #define KRB5_CONF_RENEW_LIFETIME "renew_lifetime" #define KRB5_CONF_RESTRICT_ANONYMOUS_TO_TGT "restrict_anonymous_to_tgt" +#define KRB5_CONF_SITENAME "sitename" #define KRB5_CONF_SUPPORTED_ENCTYPES "supported_enctypes" #define KRB5_CONF_SPAKE_PREAUTH_INDICATOR "spake_preauth_indicator" #define KRB5_CONF_SPAKE_PREAUTH_KDC_CHALLENGE "spake_preauth_kdc_challenge" |