-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 05/04/2010 10:54 PM, Stephen Gallagher wrote:
https://fedorahosted.org/sssd/ticket/452
This patch adds a signal handler for SIGTERM that will remove the kdcinfo.REALM and kpasswd.REALM files before exiting. I had to move the definition of krb5_ctx into krb5_common.h so I could dereference it to get the realm name.
I also made the sig_term() function from server.c public, so I could chain into it once my exit handler is done (to make sure it cleans up any krb5_child processes that might still be in-progress).
Nack, if using kdc for kpasswd operations, ctx->kpasswd_service is NULL, so you would get a segfault.
I think the realms for kpasswd and kdc will always be the same, so maybe you can pass the realm as the private_data and avoid exposing the krb context at all?