1/*
2 * Copyright (c) 2011-12 Apple Inc. All Rights Reserved.
3 *
4 * @APPLE_LICENSE_HEADER_START@
5 *
6 * This file contains Original Code and/or Modifications of Original Code
7 * as defined in and that are subject to the Apple Public Source License
8 * Version 2.0 (the 'License'). You may not use this file except in
9 * compliance with the License. Please obtain a copy of the License at
10 * http://www.opensource.apple.com/apsl/ and read it before using this
11 * file.
12 *
13 * The Original Code and all software distributed under the License are
14 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
15 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
16 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
17 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
18 * Please see the License for the specific language governing rights and
19 * limitations under the License.
20 *
21 * @APPLE_LICENSE_HEADER_END@
22 */
23
24#define HDB_DB_DIR					"/var/db/krb5kdc"
25
26#define __APPLE_PRIVATE__				1
27#define __GSS_ITER_CRED_USES_CONST_OID			1
28
29#define __APPLE_USE_RFC_3542				1
30
31#define HEIMDAL_SMALLER					1
32#define NO_NTLM						1
33#define NO_AFS						1
34#define KCM_IS_API_CACHE				1
35#define KRB5_DNS_DOMAIN_REALM_DEFAULT			0
36#define NO_RAND_FORTUNA_METHOD				1
37#define NO_RAND_UNIX_METHOD				1
38#define NO_RAND_EGD_METHOD				1
39
40#define USE_HEIMDAL_ASN1				1
41#define HAVE_COMMONCRYPTO_COMMONKEYDERIVATION_H		1
42#define HAVE_COMMONCRYPTO_COMMONCRYPTOR_H		1
43#ifdef __APPLE_PRIVATE__
44#define HAVE_COMMONCRYPTO_COMMONRANDOMSPI_H		1
45
46/*
47 * XXX RSA and DH cc implementations don't work.
48 * See rdar://10267901 and code for details.
49 */
50/* #define	HAVE_COMMONCRYPTO_COMMONRSACRYPTOR_H 1 */
51/* #define	 HAVE_COMMONCRYPTO_COMMONDH_H 1 */
52
53#endif /* __APPLE_PRIVATE__ */
54
55#define KRB5_FALLBACK_DEFAULT    FALSE
56
57/* key derivation */
58/* keychain */
59/* IP_RECVPKTINFO */
60#define HAVE_NOTIFY_H					1
61#define KRB5_CONFIGURATION_CHANGE_NOTIFY_NAME		\
62	"com.apple.Kerberos.configuration-changed"
63
64#define DEFAULT_KDC_LOG_DEST				\
65	"SYSLOG:AUTHPRIV:NOTICE"
66
67#ifdef __APPLE_TARGET_EMBEDDED__
68
69#define HEIM_KRB5_DES3		1
70#define HEIM_KRB5_ARCFOUR	1
71
72#define HAVE_KCC                /* disabled for desktop until rdar://8742062 is fixed */
73#define KRB5_DEFAULT_CCTYPE	(&krb5_kcc_ops)
74
75#define HEIM_HC_LTM		1
76#define HEIM_HC_SF		1
77
78#undef PKINIT
79
80#define HAVE_CCDESISWEAKKEY	1
81#define HAVE_CCDIGESTCREATE	1
82
83#else
84
85#ifndef PKINIT
86#define PKINIT					1
87#endif
88
89#define HAVE_TRUSTEVALUATIONAGENT		1
90#define HAVE_OPENDIRECTORY			1
91/* #define HAVE_CDSA 1 */
92#define HAVE_COMMONCRYPTO_COMMONCRYPTORSPI_H	1
93#define HAVE_COMMONCRYPTO_COMMONDIGESTSPI_H	1
94
95#define ENABLE_NTLM				1
96#define ENABLE_SCRAM				1
97
98#define HEIM_KRB5_DES				1
99#define HEIM_KRB5_DES3				1
100#define HEIM_KRB5_ARCFOUR			1
101
102#define HAVE_CCDESISWEAKKEY			1
103#define HAVE_CCDIGESTCREATE			1
104
105/* #define HEIM_KT_ANY */
106/* #define HEIM_KT_MEMORY */
107/* #define HEIM_KT_AKF */
108
109#define KRB5_DEFAULT_CCTYPE    (&krb5_akcm_ops)
110
111
112#endif
113