diff options
author | Stephen Gallagher <sgallagh@redhat.com> | 2010-05-05 07:35:56 -0400 |
---|---|---|
committer | Stephen Gallagher <sgallagh@redhat.com> | 2010-05-07 16:38:22 -0400 |
commit | a243a9ffeceb23883212d27e21d5234deba73639 (patch) | |
tree | 9e0b323bc174d128981a4538c8857d9c6199718f /src/providers/krb5 | |
parent | d96e63770efcd49baddba58bfed5ece645969d69 (diff) | |
download | sssd-a243a9ffeceb23883212d27e21d5234deba73639.tar.gz sssd-a243a9ffeceb23883212d27e21d5234deba73639.tar.xz sssd-a243a9ffeceb23883212d27e21d5234deba73639.zip |
Clean up kdcinfo and kpasswdinfo files when exiting
Diffstat (limited to 'src/providers/krb5')
-rw-r--r-- | src/providers/krb5/krb5_common.c | 40 | ||||
-rw-r--r-- | src/providers/krb5/krb5_common.h | 7 | ||||
-rw-r--r-- | src/providers/krb5/krb5_init.c | 18 |
3 files changed, 65 insertions, 0 deletions
diff --git a/src/providers/krb5/krb5_common.c b/src/providers/krb5/krb5_common.c index 52cbe1650..26d37c0a9 100644 --- a/src/providers/krb5/krb5_common.c +++ b/src/providers/krb5/krb5_common.c @@ -413,3 +413,43 @@ done: return ret; } +void krb5_finalize(struct tevent_context *ev, + struct tevent_signal *se, + int signum, + int count, + void *siginfo, + void *private_data) +{ + char *realm = (char *)private_data; + int ret; + errno_t err; + char *file; + + file = talloc_asprintf(se, KDCINFO_TMPL, realm); + if(file == NULL) { + sig_term(signum); + } + errno = 0; + ret = unlink(file); + if (ret == -1) { + err = errno; + DEBUG(5, ("Could not remove [%s], [%d][%s]\n", file, + err, strerror(err))); + } + + errno = 0; + file = talloc_asprintf(se, KPASSWDINFO_TMPL, realm); + if(file == NULL) { + sig_term(signum); + } + + errno = 0; + ret = unlink(file); + if (ret == -1) { + err = errno; + DEBUG(5, ("Could not remove [%s], [%d][%s]\n", file, + err, strerror(err))); + } + + sig_term(signum); +} diff --git a/src/providers/krb5/krb5_common.h b/src/providers/krb5/krb5_common.h index 0b0da31f2..51afa0c65 100644 --- a/src/providers/krb5/krb5_common.h +++ b/src/providers/krb5/krb5_common.h @@ -75,4 +75,11 @@ errno_t write_krb5info_file(const char *realm, const char *kdc, int krb5_service_init(TALLOC_CTX *memctx, struct be_ctx *ctx, const char *service_name, const char *servers, const char *realm, struct krb5_service **_service); + +void krb5_finalize(struct tevent_context *ev, + struct tevent_signal *se, + int signum, + int count, + void *siginfo, + void *private_data); #endif /* __KRB5_COMMON_H__ */ diff --git a/src/providers/krb5/krb5_init.c b/src/providers/krb5/krb5_init.c index 9cf5bfac3..ac4043f73 100644 --- a/src/providers/krb5/krb5_init.c +++ b/src/providers/krb5/krb5_init.c @@ -48,12 +48,14 @@ int sssm_krb5_auth_init(struct be_ctx *bectx, { struct krb5_ctx *ctx = NULL; int ret; + struct tevent_signal *sige; unsigned v; FILE *debug_filep; const char *krb5_servers; const char *krb5_kpasswd_servers; const char *krb5_realm; const char *errstr; + char *sig_realm; int errval; int errpos; @@ -125,6 +127,22 @@ int sssm_krb5_auth_init(struct be_ctx *bectx, goto fail; } + + BlockSignals(false, SIGTERM); + sig_realm = talloc_strdup(ctx, krb5_realm); + if (sig_realm == NULL) { + ret = ENOMEM; + goto fail; + } + sige = tevent_add_signal(bectx->ev, ctx, SIGTERM, SA_SIGINFO, + krb5_finalize, sig_realm); + if (sige == NULL) { + DEBUG(1, ("tevent_add_signal failed.\n")); + ret = ENOMEM; + goto fail; + } + talloc_steal(sige, sig_realm); + if (debug_to_file != 0) { ret = open_debug_file_ex("krb5_child", &debug_filep); if (ret != EOK) { |