aboutsummaryrefslogtreecommitdiff
path: root/src/include/k5-int.h
diff options
context:
space:
mode:
authorNicolas Williams <nico@cryptonector.com>2021-05-13 00:43:26 -0500
committerGreg Hudson <ghudson@mit.edu>2024-05-13 12:47:47 -0400
commitd035119c3b2b402f3ad49a4c7b6264826ea923bb (patch)
treed11952914a3be3f3971062bc0faf0949b1fe229f /src/include/k5-int.h
parent6b74b6c18feab1f3d72d00ae412a93c6bfa4a00a (diff)
downloadkrb5-d035119c3b2b402f3ad49a4c7b6264826ea923bb.zip
krb5-d035119c3b2b402f3ad49a4c7b6264826ea923bb.tar.gz
krb5-d035119c3b2b402f3ad49a4c7b6264826ea923bb.tar.bz2
Support site-local KDC discovery via DNS
Add the sitename realm variable. If set, service location via DNS will be attempted using the site name as specified in [MS-ADTS] 6.3.2.3, falling back to regular discovery on failure. [ghudson@mit.edu: made this strictly a realm variable; moved k5_get_sitename() to locate_kdc.c and made it take a krb5_data input; fixed a memory leak; corrected documentation changes; fleshed out commit message] ticket: 9124 (new)
Diffstat (limited to 'src/include/k5-int.h')
-rw-r--r--src/include/k5-int.h1
1 files changed, 1 insertions, 0 deletions
diff --git a/src/include/k5-int.h b/src/include/k5-int.h
index fe99593..a5763bf 100644
--- a/src/include/k5-int.h
+++ b/src/include/k5-int.h
@@ -293,6 +293,7 @@ typedef unsigned char u_char;
#define KRB5_CONF_REJECT_BAD_TRANSIT "reject_bad_transit"
#define KRB5_CONF_RENEW_LIFETIME "renew_lifetime"
#define KRB5_CONF_RESTRICT_ANONYMOUS_TO_TGT "restrict_anonymous_to_tgt"
+#define KRB5_CONF_SITENAME "sitename"
#define KRB5_CONF_SUPPORTED_ENCTYPES "supported_enctypes"
#define KRB5_CONF_SPAKE_PREAUTH_INDICATOR "spake_preauth_indicator"
#define KRB5_CONF_SPAKE_PREAUTH_KDC_CHALLENGE "spake_preauth_kdc_challenge"
generated by cgit v1.1 at 2024-07-16 13:16:33 +0000