heimdal: do not compile weak crypto

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14202

Signed-off-by: Isaac Boukris <iboukris@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>

selftest/target/Samba.pm

@@ -262,7 +262,6 @@ sub mk_krb5_conf($$)
  dns_lookup_kdc = true
  ticket_lifetime = 24h
  forwardable = yes
- allow_weak_crypto = yes
 
  name_canon_rules=as-is:realm=$ctx->{realm}
  name_canon_rules=as-is:realm=$ctx->{dnsname}

source4/heimdal_build/roken.h

@@ -6,9 +6,6 @@
 
 #include "config.h"
 
-/* Support 'weak' keys for now, it can't be worse than NTLM and we don't want to hard-code the behaviour at this point */
-#define HEIM_WEAK_CRYPTO 1
-
 /* path to sysconf - should we force this to samba LIBDIR ? */
 #define SYSCONFDIR "/etc"