[krbdev.mit.edu #8765] git commit
Greg Hudson via RT
rt-comment at KRBDEV-PROD-APP-1.mit.edu
Fri Dec 21 12:41:09 EST 2018
Add dns_canonicalize_hostname=fallback support
Turn dns_canonicalize_hostname into a tristate variable, allowing the
value "fallback" as well as the true/false booleans. If it is set to
fallback, delay DNS canonicalization and attempt it only in
krb5_get_credentials() if the KDC responds that the requested server
principal name is unknown.
[ghudson at mit.edu: added TGS tests; refactored code; edited commit
message and documentation]
https://github.com/krb5/krb5/commit/6c20cb1c89acaa03db897182a3b28d5f8f284907
Author: Simo Sorce <simo at redhat.com>
Committer: Greg Hudson <ghudson at mit.edu>
Commit: 6c20cb1c89acaa03db897182a3b28d5f8f284907
Branch: master
doc/admin/conf_files/krb5_conf.rst | 4 ++
src/include/k5-int.h | 8 +++-
src/include/k5-trace.h | 3 +
src/lib/krb5/krb/get_creds.c | 79 +++++++++++++++++++++++++++++++----
src/lib/krb5/krb/init_ctx.c | 27 ++++++++++++-
src/lib/krb5/krb/t_copy_context.c | 2 +-
src/lib/krb5/os/os-proto.h | 4 ++
src/lib/krb5/os/sn2princ.c | 19 +++++++--
src/tests/gcred.c | 5 ++-
src/tests/t_sn2princ.py | 34 +++++++++++++++-
10 files changed, 167 insertions(+), 18 deletions(-)
More information about the krb5-bugs
mailing list