svn commit: samba r22635 - in branches/SAMBA_4_0/source/auth:
gensec kerberos
metze at samba.org
metze at samba.org
Wed May 2 09:54:07 GMT 2007
Author: metze
Date: 2007-05-02 09:54:06 +0000 (Wed, 02 May 2007)
New Revision: 22635
WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=samba&rev=22635
Log:
make it possible to not turn off dns canonicalization of hostnames
with krb5:set_dns_canonicalize=yes
needed for the drsuapi replication, but we should fix this with
a kdc locator plugin ...
metze
Modified:
branches/SAMBA_4_0/source/auth/gensec/gensec_gssapi.c
branches/SAMBA_4_0/source/auth/kerberos/krb5_init_context.c
Changeset:
Modified: branches/SAMBA_4_0/source/auth/gensec/gensec_gssapi.c
===================================================================
--- branches/SAMBA_4_0/source/auth/gensec/gensec_gssapi.c 2007-05-01 21:29:42 UTC (rev 22634)
+++ branches/SAMBA_4_0/source/auth/gensec/gensec_gssapi.c 2007-05-02 09:54:06 UTC (rev 22635)
@@ -218,7 +218,7 @@
}
/* don't do DNS lookups of any kind, it might/will fail for a netbios name */
- ret = gsskrb5_set_dns_canonicalize(FALSE);
+ ret = gsskrb5_set_dns_canonicalize(lp_parm_bool(-1, "krb5", "set_dns_canonicalize", false));
if (ret) {
DEBUG(1,("gensec_krb5_start: gsskrb5_set_dns_canonicalize failed\n"));
talloc_free(gensec_gssapi_state);
Modified: branches/SAMBA_4_0/source/auth/kerberos/krb5_init_context.c
===================================================================
--- branches/SAMBA_4_0/source/auth/kerberos/krb5_init_context.c 2007-05-01 21:29:42 UTC (rev 22634)
+++ branches/SAMBA_4_0/source/auth/kerberos/krb5_init_context.c 2007-05-02 09:54:06 UTC (rev 22635)
@@ -473,7 +473,8 @@
/* Set options in kerberos */
- krb5_set_dns_canonicalize_hostname((*smb_krb5_context)->krb5_context, FALSE);
+ krb5_set_dns_canonicalize_hostname((*smb_krb5_context)->krb5_context,
+ lp_parm_bool(-1, "krb5", "set_dns_canonicalize", false));
return 0;
}
More information about the samba-cvs
mailing list