>From 673904e7e50f8850b6d5916ae653c51fd081ec4b Mon Sep 17 00:00:00 2001
From: Jakub Hrozek <jhrozek@redhat.com>
Date: Wed, 12 Aug 2015 13:05:32 +0200
Subject: [PATCH 4/4] SSH: Use sss_unique_file_ex to create the known hosts
 file

Simplifies the code.
---
 src/responder/ssh/sshsrv_cmd.c | 21 ++++-----------------
 1 file changed, 4 insertions(+), 17 deletions(-)

diff --git a/src/responder/ssh/sshsrv_cmd.c b/src/responder/ssh/sshsrv_cmd.c
index f630e5f0311dadc69bee59afb672720f7018169d..5f5487035b298dcc540de246017731b94139a413 100644
--- a/src/responder/ssh/sshsrv_cmd.c
+++ b/src/responder/ssh/sshsrv_cmd.c
@@ -538,7 +538,7 @@ static errno_t
 ssh_host_pubkeys_update_known_hosts(struct ssh_cmd_ctx *cmd_ctx)
 {
     TALLOC_CTX *tmp_ctx;
-    errno_t ret, tmp_ret;
+    errno_t ret;
     const char *attrs[] = {
         SYSDB_NAME,
         SYSDB_NAME_ALIAS,
@@ -557,7 +557,6 @@ ssh_host_pubkeys_update_known_hosts(struct ssh_cmd_ctx *cmd_ctx)
     char *filename = NULL;
     char *entstr;
     ssize_t wret;
-    mode_t old_mask;
 
     tmp_ctx = talloc_new(NULL);
     if (!tmp_ctx) {
@@ -580,12 +579,9 @@ ssh_host_pubkeys_update_known_hosts(struct ssh_cmd_ctx *cmd_ctx)
         goto done;
     }
 
-    old_mask = umask(0133);
-    fd = mkstemp(filename);
-    umask(old_mask);
+    fd = sss_unique_file_ex(tmp_ctx, filename, 0133, &ret);
     if (fd == -1) {
         filename = NULL;
-        ret = errno;
         goto done;
     }
 
@@ -655,18 +651,9 @@ ssh_host_pubkeys_update_known_hosts(struct ssh_cmd_ctx *cmd_ctx)
     ret = EOK;
 
 done:
-    if (fd != -1) close(fd);
-    if (ret != EOK && filename) {
-        tmp_ret = unlink(filename);
-        /* non-fatal failure */
-        if (tmp_ret != EOK) {
-            tmp_ret = errno;
-            DEBUG(SSSDBG_MINOR_FAILURE,
-                  "Failed to remove file: %s - %d : [%s]!\n",
-                  filename, tmp_ret, sss_strerror(tmp_ret));
-        }
+    if (fd != -1) {
+        close(fd);
     }
-
     talloc_free(tmp_ctx);
 
     return ret;
-- 
2.4.3