search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Check that enctypes are valid/enabled before trying to request them
[heimdal.git] / lib / kadm5 / ipropd_slave.c
blobc6309612af1e959c4a9982f37eafceda9a94cdb2
1 /*
2 * Copyright (c) 1997 - 2008 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
4 * All rights reserved.
5 *
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
8 * are met:
9 *
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 *
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 *
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * SUCH DAMAGE.
32 */
33
34 #include "iprop.h"
35
36 RCSID("$Id$");
37
38 static const char *config_name = "ipropd-slave";
39
40 static krb5_log_facility *log_facility;
41 static char *server_time_lost = "5 min";
42 static int time_before_lost;
43 const char *slave_str = NULL;
44
45 static int
46 connect_to_master (krb5_context context, const char *master,
47 const char *port_str)
48 {
49 char port[NI_MAXSERV];
50 struct addrinfo *ai, *a;
51 struct addrinfo hints;
52 int error;
53 int s = -1;
54
55 memset (&hints, 0, sizeof(hints));
56 hints.ai_socktype = SOCK_STREAM;
57
58 if (port_str == NULL) {
59 snprintf(port, sizeof(port), "%u", IPROP_PORT);
60 port_str = port;
61 }
62
63 error = getaddrinfo (master, port_str, &hints, &ai);
64 if (error) {
65 krb5_warnx(context, "Failed to get address of to %s: %s",
66 master, gai_strerror(error));
67 return -1;
68 }
69
70 for (a = ai; a != NULL; a = a->ai_next) {
71 char node[NI_MAXHOST];
72 error = getnameinfo(a->ai_addr, a->ai_addrlen,
73 node, sizeof(node), NULL, 0, NI_NUMERICHOST);
74 if (error)
75 strlcpy(node, "[unknown-addr]", sizeof(node));
76
77 s = socket (a->ai_family, a->ai_socktype, a->ai_protocol);
78 if (s < 0)
79 continue;
80 if (connect (s, a->ai_addr, a->ai_addrlen) < 0) {
81 krb5_warn(context, errno, "connection failed to %s[%s]",
82 master, node);
83 close (s);
84 continue;
85 }
86 krb5_warnx(context, "connection successful "
87 "to master: %s[%s]", master, node);
88 break;
89 }
90 freeaddrinfo (ai);
91
92 if (a == NULL)
93 return -1;
94
95 return s;
96 }
97
98 static void
99 get_creds(krb5_context context, const char *keytab_str,
100 krb5_ccache *cache, const char *serverhost)
101 {
102 krb5_keytab keytab;
103 krb5_principal client;
104 krb5_error_code ret;
105 krb5_get_init_creds_opt *init_opts;
106 krb5_creds creds;
107 char *server;
108 char keytab_buf[256];
109
110 if (keytab_str == NULL) {
111 ret = krb5_kt_default_name (context, keytab_buf, sizeof(keytab_buf));
112 if (ret)
113 krb5_err (context, 1, ret, "krb5_kt_default_name");
114 keytab_str = keytab_buf;
115 }
116
117 ret = krb5_kt_resolve(context, keytab_str, &keytab);
118 if(ret)
119 krb5_err(context, 1, ret, "%s", keytab_str);
120
121
122 ret = krb5_sname_to_principal (context, slave_str, IPROP_NAME,
123 KRB5_NT_SRV_HST, &client);
124 if (ret) krb5_err(context, 1, ret, "krb5_sname_to_principal");
125
126 ret = krb5_get_init_creds_opt_alloc(context, &init_opts);
127 if (ret) krb5_err(context, 1, ret, "krb5_get_init_creds_opt_alloc");
128
129 asprintf (&server, "%s/%s", IPROP_NAME, serverhost);
130 if (server == NULL)
131 krb5_errx (context, 1, "malloc: no memory");
132
133 ret = krb5_get_init_creds_keytab(context, &creds, client, keytab,
134 0, server, init_opts);
135 free (server);
136 krb5_get_init_creds_opt_free(context, init_opts);
137 if(ret) krb5_err(context, 1, ret, "krb5_get_init_creds");
138
139 ret = krb5_kt_close(context, keytab);
140 if(ret) krb5_err(context, 1, ret, "krb5_kt_close");
141
142 ret = krb5_cc_new_unique(context, krb5_cc_type_memory, NULL, cache);
143 if(ret) krb5_err(context, 1, ret, "krb5_cc_new_unique");
144
145 ret = krb5_cc_initialize(context, *cache, client);
146 if(ret) krb5_err(context, 1, ret, "krb5_cc_initialize");
147
148 ret = krb5_cc_store_cred(context, *cache, &creds);
149 if(ret) krb5_err(context, 1, ret, "krb5_cc_store_cred");
150
151 krb5_free_cred_contents(context, &creds);
152 krb5_free_principal(context, client);
153 }
154
155 static krb5_error_code
156 ihave (krb5_context context, krb5_auth_context auth_context,
157 int fd, uint32_t version)
158 {
159 int ret;
160 u_char buf[8];
161 krb5_storage *sp;
162 krb5_data data;
163
164 sp = krb5_storage_from_mem (buf, 8);
165 krb5_store_int32 (sp, I_HAVE);
166 krb5_store_int32 (sp, version);
167 krb5_storage_free (sp);
168 data.length = 8;
169 data.data = buf;
170
171 ret = krb5_write_priv_message(context, auth_context, &fd, &data);
172 if (ret)
173 krb5_warn (context, ret, "krb5_write_message");
174 return ret;
175 }
176
177 static void
178 receive_loop (krb5_context context,
179 krb5_storage *sp,
180 kadm5_server_context *server_context)
181 {
182 int ret;
183 off_t left, right;
184 void *buf;
185 int32_t vers, vers2;
186 ssize_t sret;
187
188 /*
189 * Seek to the current version of the local database.
190 */
191 do {
192 int32_t len, timestamp, tmp;
193 enum kadm_ops op;
194
195 if(krb5_ret_int32 (sp, &vers) != 0)
196 return;
197 krb5_ret_int32 (sp, &timestamp);
198 krb5_ret_int32 (sp, &tmp);
199 op = tmp;
200 krb5_ret_int32 (sp, &len);
201 if (vers <= server_context->log_context.version)
202 krb5_storage_seek(sp, len + 8, SEEK_CUR);
203 } while(vers <= server_context->log_context.version);
204
205 /*
206 * Read up rest of the entires into the memory...
207 */
208 left = krb5_storage_seek (sp, -16, SEEK_CUR);
209 right = krb5_storage_seek (sp, 0, SEEK_END);
210 buf = malloc (right - left);
211 if (buf == NULL && (right - left) != 0)
212 krb5_errx (context, 1, "malloc: no memory");
213
214 /*
215 * ...and then write them out to the on-disk log.
216 */
217 krb5_storage_seek (sp, left, SEEK_SET);
218 krb5_storage_read (sp, buf, right - left);
219 sret = write (server_context->log_context.log_fd, buf, right-left);
220 if (sret != right - left)
221 krb5_err(context, 1, errno, "Failed to write log to disk");
222 ret = fsync (server_context->log_context.log_fd);
223 if (ret)
224 krb5_err(context, 1, errno, "Failed to sync log to disk");
225 free (buf);
226
227 /*
228 * Go back to the startpoint and start to commit the entires to
229 * the database.
230 */
231 krb5_storage_seek (sp, left, SEEK_SET);
232
233 for(;;) {
234 int32_t len, len2, timestamp, tmp;
235 off_t cur, cur2;
236 enum kadm_ops op;
237
238 if(krb5_ret_int32 (sp, &vers) != 0)
239 break;
240 ret = krb5_ret_int32 (sp, &timestamp);
241 if (ret) krb5_errx(context, 1, "entry %ld: too short", (long)vers);
242 ret = krb5_ret_int32 (sp, &tmp);
243 if (ret) krb5_errx(context, 1, "entry %ld: too short", (long)vers);
244 op = tmp;
245 ret = krb5_ret_int32 (sp, &len);
246 if (ret) krb5_errx(context, 1, "entry %ld: too short", (long)vers);
247 if (len < 0)
248 krb5_errx(context, 1, "log is corrupted, "
249 "negative length of entry version %ld: %ld",
250 (long)vers, (long)len);
251 cur = krb5_storage_seek(sp, 0, SEEK_CUR);
252
253 krb5_warnx (context, "replaying entry %d", (int)vers);
254
255 ret = kadm5_log_replay (server_context,
256 op, vers, len, sp);
257 if (ret) {
258 const char *s = krb5_get_error_message(server_context->context, ret);
259 krb5_warnx (context,
260 "kadm5_log_replay: %ld. Lost entry entry, "
261 "Database out of sync ?: %s (%d)",
262 (long)vers, s ? s : "unknown error", ret);
263 krb5_free_error_message(context, s);
264 }
265
266 {
267 /*
268 * Make sure the krb5_log_replay does the right thing wrt
269 * reading out data from the sp.
270 */
271 cur2 = krb5_storage_seek(sp, 0, SEEK_CUR);
272 if (cur + len != cur2)
273 krb5_errx(context, 1,
274 "kadm5_log_reply version: %ld didn't read the whole entry",
275 (long)vers);
276 }
277
278 if (krb5_ret_int32 (sp, &len2) != 0)
279 krb5_errx(context, 1, "entry %ld: postamble too short", (long)vers);
280 if(krb5_ret_int32 (sp, &vers2) != 0)
281 krb5_errx(context, 1, "entry %ld: postamble too short", (long)vers);
282
283 if (len != len2)
284 krb5_errx(context, 1, "entry %ld: len != len2", (long)vers);
285 if (vers != vers2)
286 krb5_errx(context, 1, "entry %ld: vers != vers2", (long)vers);
287 }
288
289 /*
290 * Update version
291 */
292
293 server_context->log_context.version = vers;
294 }
295
296 static void
297 receive (krb5_context context,
298 krb5_storage *sp,
299 kadm5_server_context *server_context)
300 {
301 int ret;
302
303 ret = server_context->db->hdb_open(context,
304 server_context->db,
305 O_RDWR | O_CREAT, 0600);
306 if (ret)
307 krb5_err (context, 1, ret, "db->open");
308
309 receive_loop (context, sp, server_context);
310
311 ret = server_context->db->hdb_close (context, server_context->db);
312 if (ret)
313 krb5_err (context, 1, ret, "db->close");
314 }
315
316 static void
317 send_im_here (krb5_context context, int fd,
318 krb5_auth_context auth_context)
319 {
320 krb5_storage *sp;
321 krb5_data data;
322 int ret;
323
324 ret = krb5_data_alloc (&data, 4);
325 if (ret)
326 krb5_err (context, 1, ret, "send_im_here");
327
328 sp = krb5_storage_from_data (&data);
329 if (sp == NULL)
330 krb5_errx (context, 1, "krb5_storage_from_data");
331 krb5_store_int32(sp, I_AM_HERE);
332 krb5_storage_free(sp);
333
334 ret = krb5_write_priv_message(context, auth_context, &fd, &data);
335 krb5_data_free(&data);
336
337 if (ret)
338 krb5_err (context, 1, ret, "krb5_write_priv_message");
339 }
340
341 static krb5_error_code
342 receive_everything (krb5_context context, int fd,
343 kadm5_server_context *server_context,
344 krb5_auth_context auth_context)
345 {
346 int ret;
347 krb5_data data;
348 int32_t vno = 0;
349 int32_t opcode;
350 krb5_storage *sp;
351
352 char *dbname;
353 HDB *mydb;
354
355 krb5_warnx(context, "receive complete database");
356
357 asprintf(&dbname, "%s-NEW", server_context->db->hdb_name);
358 ret = hdb_create(context, &mydb, dbname);
359 if(ret)
360 krb5_err(context,1, ret, "hdb_create");
361 free(dbname);
362
363 ret = hdb_set_master_keyfile (context,
364 mydb, server_context->config.stash_file);
365 if(ret)
366 krb5_err(context,1, ret, "hdb_set_master_keyfile");
367
368 /* I really want to use O_EXCL here, but given that I can't easily clean
369 up on error, I won't */
370 ret = mydb->hdb_open(context, mydb, O_RDWR | O_CREAT | O_TRUNC, 0600);
371 if (ret)
372 krb5_err (context, 1, ret, "db->open");
373
374 sp = NULL;
375 do {
376 ret = krb5_read_priv_message(context, auth_context, &fd, &data);
377
378 if (ret) {
379 krb5_warn (context, ret, "krb5_read_priv_message");
380 goto cleanup;
381 }
382
383 sp = krb5_storage_from_data (&data);
384 if (sp == NULL)
385 krb5_errx (context, 1, "krb5_storage_from_data");
386 krb5_ret_int32 (sp, &opcode);
387 if (opcode == ONE_PRINC) {
388 krb5_data fake_data;
389 hdb_entry_ex entry;
390
391 krb5_storage_free(sp);
392
393 fake_data.data = (char *)data.data + 4;
394 fake_data.length = data.length - 4;
395
396 memset(&entry, 0, sizeof(entry));
397
398 ret = hdb_value2entry (context, &fake_data, &entry.entry);
399 if (ret)
400 krb5_err (context, 1, ret, "hdb_value2entry");
401 ret = mydb->hdb_store(server_context->context,
402 mydb,
403 0, &entry);
404 if (ret)
405 krb5_err (context, 1, ret, "hdb_store");
406
407 hdb_free_entry (context, &entry);
408 krb5_data_free (&data);
409 } else if (opcode == NOW_YOU_HAVE)
410 ;
411 else
412 krb5_errx (context, 1, "strange opcode %d", opcode);
413 } while (opcode == ONE_PRINC);
414
415 if (opcode != NOW_YOU_HAVE)
416 krb5_errx (context, 1, "receive_everything: strange %d", opcode);
417
418 krb5_ret_int32 (sp, &vno);
419 krb5_storage_free(sp);
420
421 ret = kadm5_log_reinit (server_context);
422 if (ret)
423 krb5_err(context, 1, ret, "kadm5_log_reinit");
424
425 ret = kadm5_log_set_version (server_context, vno - 1);
426 if (ret)
427 krb5_err (context, 1, ret, "kadm5_log_set_version");
428
429 ret = kadm5_log_nop (server_context);
430 if (ret)
431 krb5_err (context, 1, ret, "kadm5_log_nop");
432
433 ret = mydb->hdb_rename (context, mydb, server_context->db->hdb_name);
434 if (ret)
435 krb5_err (context, 1, ret, "db->rename");
436
437 cleanup:
438 krb5_data_free (&data);
439
440 ret = mydb->hdb_close (context, mydb);
441 if (ret)
442 krb5_err (context, 1, ret, "db->close");
443
444 ret = mydb->hdb_destroy (context, mydb);
445 if (ret)
446 krb5_err (context, 1, ret, "db->destroy");
447
448 krb5_warnx(context, "receive complete database, version %ld", (long)vno);
449 return ret;
450 }
451
452 static char *config_file;
453 static char *realm;
454 static int version_flag;
455 static int help_flag;
456 static char *keytab_str;
457 static char *port_str;
458 #ifdef SUPPORT_DETACH
459 static int detach_from_console = 0;
460 #endif
461
462 static struct getargs args[] = {
463 { "config-file", 'c', arg_string, &config_file },
464 { "realm", 'r', arg_string, &realm },
465 { "keytab", 'k', arg_string, &keytab_str,
466 "keytab to get authentication from", "kspec" },
467 { "time-lost", 0, arg_string, &server_time_lost,
468 "time before server is considered lost", "time" },
469 { "port", 0, arg_string, &port_str,
470 "port ipropd-slave will connect to", "port"},
471 #ifdef SUPPORT_DETACH
472 { "detach", 0, arg_flag, &detach_from_console,
473 "detach from console" },
474 #endif
475 { "hostname", 0, arg_string, &slave_str,
476 "hostname of slave (if not same as hostname)", "hostname" },
477 { "version", 0, arg_flag, &version_flag },
478 { "help", 0, arg_flag, &help_flag }
479 };
480
481 static int num_args = sizeof(args) / sizeof(args[0]);
482
483 static void
484 usage(int status)
485 {
486 arg_printusage(args, num_args, NULL, "master");
487 exit(status);
488 }
489
490 int
491 main(int argc, char **argv)
492 {
493 krb5_error_code ret;
494 krb5_context context;
495 krb5_auth_context auth_context;
496 void *kadm_handle;
497 kadm5_server_context *server_context;
498 kadm5_config_params conf;
499 int master_fd;
500 krb5_ccache ccache;
501 krb5_principal server;
502 char **files;
503 int optidx = 0;
504 time_t reconnect_min;
505 time_t backoff;
506 time_t reconnect_max;
507 time_t reconnect;
508 time_t before = 0;
509
510 const char *master;
511
512 setprogname(argv[0]);
513
514 if(getarg(args, num_args, argc, argv, &optidx))
515 usage(1);
516
517 if(help_flag)
518 usage(0);
519 if(version_flag) {
520 print_version(NULL);
521 exit(0);
522 }
523
524 ret = krb5_init_context(&context);
525 if (ret)
526 errx (1, "krb5_init_context failed: %d", ret);
527
528 setup_signal();
529
530 if (config_file == NULL) {
531 asprintf(&config_file, "%s/kdc.conf", hdb_db_dir(context));
532 if (config_file == NULL)
533 errx(1, "out of memory");
534 }
535
536 ret = krb5_prepend_config_files_default(config_file, &files);
537 if (ret)
538 krb5_err(context, 1, ret, "getting configuration files");
539
540 ret = krb5_set_config_files(context, files);
541 krb5_free_config_files(files);
542 if (ret)
543 krb5_err(context, 1, ret, "reading configuration files");
544
545 argc -= optidx;
546 argv += optidx;
547
548 if (argc != 1)
549 usage(1);
550
551 master = argv[0];
552
553 #ifdef SUPPORT_DETACH
554 if (detach_from_console)
555 daemon(0, 0);
556 #endif
557 pidfile (NULL);
558 krb5_openlog (context, "ipropd-slave", &log_facility);
559 krb5_set_warn_dest(context, log_facility);
560
561 ret = krb5_kt_register(context, &hdb_kt_ops);
562 if(ret)
563 krb5_err(context, 1, ret, "krb5_kt_register");
564
565 time_before_lost = parse_time (server_time_lost, "s");
566 if (time_before_lost < 0)
567 krb5_errx (context, 1, "couldn't parse time: %s", server_time_lost);
568
569 memset(&conf, 0, sizeof(conf));
570 if(realm) {
571 conf.mask |= KADM5_CONFIG_REALM;
572 conf.realm = realm;
573 }
574 ret = kadm5_init_with_password_ctx (context,
575 KADM5_ADMIN_SERVICE,
576 NULL,
577 KADM5_ADMIN_SERVICE,
578 &conf, 0, 0,
579 &kadm_handle);
580 if (ret)
581 krb5_err (context, 1, ret, "kadm5_init_with_password_ctx");
582
583 server_context = (kadm5_server_context *)kadm_handle;
584
585 ret = kadm5_log_init (server_context);
586 if (ret)
587 krb5_err (context, 1, ret, "kadm5_log_init");
588
589 get_creds(context, keytab_str, &ccache, master);
590
591 ret = krb5_sname_to_principal (context, master, IPROP_NAME,
592 KRB5_NT_SRV_HST, &server);
593 if (ret)
594 krb5_err (context, 1, ret, "krb5_sname_to_principal");
595
596 auth_context = NULL;
597 master_fd = -1;
598
599 krb5_appdefault_time(context, config_name, NULL, "reconnect-min",
600 10, &reconnect_min);
601 krb5_appdefault_time(context, config_name, NULL, "reconnect-max",
602 300, &reconnect_max);
603 krb5_appdefault_time(context, config_name, NULL, "reconnect-backoff",
604 10, &backoff);
605 reconnect = reconnect_min;
606
607 while (!exit_flag) {
608 time_t now, elapsed;
609 int connected = FALSE;
610
611 now = time(NULL);
612 elapsed = now - before;
613
614 if (elapsed < reconnect) {
615 time_t left = reconnect - elapsed;
616 krb5_warnx(context, "sleeping %d seconds before "
617 "retrying to connect", (int)left);
618 sleep(left);
619 }
620 before = now;
621
622 master_fd = connect_to_master (context, master, port_str);
623 if (master_fd < 0)
624 goto retry;
625
626 reconnect = reconnect_min;
627
628 if (auth_context) {
629 krb5_auth_con_free(context, auth_context);
630 auth_context = NULL;
631 krb5_cc_destroy(context, ccache);
632 get_creds(context, keytab_str, &ccache, master);
633 }
634 ret = krb5_sendauth (context, &auth_context, &master_fd,
635 IPROP_VERSION, NULL, server,
636 AP_OPTS_MUTUAL_REQUIRED, NULL, NULL,
637 ccache, NULL, NULL, NULL);
638 if (ret) {
639 krb5_warn (context, ret, "krb5_sendauth");
640 goto retry;
641 }
642
643 krb5_warnx(context, "ipropd-slave started at version: %ld",
644 (long)server_context->log_context.version);
645
646 ret = ihave (context, auth_context, master_fd,
647 server_context->log_context.version);
648 if (ret)
649 goto retry;
650
651 connected = TRUE;
652
653 while (connected && !exit_flag) {
654 krb5_data out;
655 krb5_storage *sp;
656 int32_t tmp;
657 fd_set readset;
658 struct timeval to;
659
660 if (master_fd >= FD_SETSIZE)
661 krb5_errx (context, 1, "fd too large");
662
663 FD_ZERO(&readset);
664 FD_SET(master_fd, &readset);
665
666 to.tv_sec = time_before_lost;
667 to.tv_usec = 0;
668
669 ret = select (master_fd + 1,
670 &readset, NULL, NULL, &to);
671 if (ret < 0) {
672 if (errno == EINTR)
673 continue;
674 else
675 krb5_err (context, 1, errno, "select");
676 }
677 if (ret == 0)
678 krb5_errx (context, 1, "server didn't send a message "
679 "in %d seconds", time_before_lost);
680
681 ret = krb5_read_priv_message(context, auth_context, &master_fd, &out);
682 if (ret) {
683 krb5_warn (context, ret, "krb5_read_priv_message");
684 connected = FALSE;
685 continue;
686 }
687
688 sp = krb5_storage_from_mem (out.data, out.length);
689 krb5_ret_int32 (sp, &tmp);
690 switch (tmp) {
691 case FOR_YOU :
692 receive (context, sp, server_context);
693 ret = ihave (context, auth_context, master_fd,
694 server_context->log_context.version);
695 if (ret)
696 connected = FALSE;
697 break;
698 case TELL_YOU_EVERYTHING :
699 ret = receive_everything (context, master_fd, server_context,
700 auth_context);
701 if (ret)
702 connected = FALSE;
703 break;
704 case ARE_YOU_THERE :
705 send_im_here (context, master_fd, auth_context);
706 break;
707 case NOW_YOU_HAVE :
708 case I_HAVE :
709 case ONE_PRINC :
710 case I_AM_HERE :
711 default :
712 krb5_warnx (context, "Ignoring command %d", tmp);
713 break;
714 }
715 krb5_storage_free (sp);
716 krb5_data_free (&out);
717
718 }
719 retry:
720 if (connected == FALSE)
721 krb5_warnx (context, "disconnected for server");
722 if (exit_flag)
723 krb5_warnx (context, "got an exit signal");
724
725 if (master_fd >= 0)
726 close(master_fd);
727
728 reconnect += backoff;
729 if (reconnect > reconnect_max)
730 reconnect = reconnect_max;
731 }
732
733 if(exit_flag == SIGXCPU)
734 krb5_warnx(context, "%s CPU time limit exceeded", getprogname());
735 else if(exit_flag == SIGINT || exit_flag == SIGTERM)
736 krb5_warnx(context, "%s terminated", getprogname());
737 else
738 krb5_warnx(context, "%s unexpected exit reason: %ld",
739 getprogname(), (long)exit_flag);
740
741 return 0;
742 }
Heimdal