secsrv.c revision 7a162ca3ea0bf8ef6b13795a00baa28d17f6131d
/*
SSSD
Secrets Responder
Copyright (C) Simo Sorce <ssorce@redhat.com> 2016
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 3 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
#include <popt.h>
#include "responder/common/responder.h"
#include "resolv/async_resolv.h"
#define DEFAULT_SEC_FD_LIMIT 2048
#define DEFAULT_SEC_CONTAINERS_NEST_LEVEL 4
#define DEFAULT_SEC_MAX_SECRETS 1024
#define DEFAULT_SEC_MAX_PAYLOAD_SIZE 16
{
int ret;
"Failed to get file descriptors limit\n");
goto fail;
}
"Failed to get containers' maximum depth\n");
goto fail;
}
"Failed to get maximum number of entries\n");
goto fail;
}
"Failed to get payload's maximum size for an entry\n");
goto fail;
}
"Cannot get the client idle timeout [%d]: %s\n",
goto fail;
}
/* Ensure that the client timeout is at least ten seconds */
}
goto fail;
}
fail:
return ret;
}
static int sec_responder_ctx_destructor(void *ptr)
{
/* mark that we are shutting down the responder, so it is propagated
* into underlying contexts that are freed right before rctx */
rctx->shutting_down = true;
return 0;
}
struct tevent_context *ev,
struct confdb_ctx *cdb)
{
int ret;
if (!rctx) {
return ENOMEM;
}
rctx->shutting_down = false;
if (!sctx) {
goto fail;
}
goto fail;
}
/* Set up file descriptor limits */
return EOK;
fail:
return ret;
}
{
int opt;
struct main_context *main_ctx;
int ret;
struct poptOption long_options[] = {
};
/* Set debug level to invalid value so we can deside if -d 0 was used. */
switch(opt) {
default:
return 1;
}
}
/* set up things like debug, signals, daemonization, etc... */
debug_log_file = "sssd_secrets";
&main_ctx);
ret = die_if_parent_died();
/* This is not fatal, don't return */
"Could not set up to exit when parent process does\n");
}
/* loop on main */
return 0;
}