summaryrefslogtreecommitdiff
path: root/src/providers/ipa
diff options
context:
space:
mode:
authorMichal Zidek <mzidek@redhat.com>2012-08-09 14:38:23 +0200
committerJakub Hrozek <jhrozek@redhat.com>2012-08-09 19:54:01 +0200
commit4a1e58d85409fbb7a12ac244c3dbef8c0c1b15df (patch)
treeef4fce99b810ba0de827a46248fe13b37822d4cc /src/providers/ipa
parentceb40cb8846ff755f841466908954087f927eae7 (diff)
downloadsssd-4a1e58d85409fbb7a12ac244c3dbef8c0c1b15df.tar.gz
sssd-4a1e58d85409fbb7a12ac244c3dbef8c0c1b15df.tar.bz2
sssd-4a1e58d85409fbb7a12ac244c3dbef8c0c1b15df.zip
SRV resolution for backup servers should not be permitted.
https://fedorahosted.org/sssd/ticket/1463
Diffstat (limited to 'src/providers/ipa')
-rw-r--r--src/providers/ipa/ipa_common.c10
1 files changed, 9 insertions, 1 deletions
diff --git a/src/providers/ipa/ipa_common.c b/src/providers/ipa/ipa_common.c
index b5f6337d..bf62fcb9 100644
--- a/src/providers/ipa/ipa_common.c
+++ b/src/providers/ipa/ipa_common.c
@@ -806,7 +806,7 @@ errno_t ipa_servers_init(struct be_ctx *ctx,
TALLOC_CTX *tmp_ctx;
char **list = NULL;
char *ipa_domain;
- int ret;
+ int ret = 0;
int i;
tmp_ctx = talloc_new(NULL);
@@ -827,6 +827,14 @@ errno_t ipa_servers_init(struct be_ctx *ctx,
talloc_steal(service, list[i]);
if (be_fo_is_srv_identifier(list[i])) {
+ if (!primary) {
+ DEBUG(SSSDBG_MINOR_FAILURE,
+ ("Failed to add server [%s] to failover service: "
+ "SRV resolution only allowed for primary servers!\n",
+ list[i]));
+ continue;
+ }
+
ipa_domain = dp_opt_get_string(options->basic, IPA_DOMAIN);
ret = be_fo_add_srv_server(ctx, "IPA", "ldap", ipa_domain,
BE_FO_PROTO_TCP, false, NULL);
generated by cgit (git 2.34.1) at 2024-12-13 22:15:42 +0000