IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

Use private ccache in ipa install tools

Browse Source 
All installers that handle Kerberos auth, have been altered to use
private ccache, that is ipa-server-install, ipa-dns-install,
ipa-replica-install, ipa-ca-install.

https://fedorahosted.org/freeipa/ticket/3666
This commit is contained in:
Tomas Babej 2013-06-03 12:06:06 +02:00 committed by Petr Viktorin
parent e31eea3268
commit 6f51f92138
5 changed files with 44 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
install/tools/ipa-ca-install
View File

@ -28,9 +28,9 @@ from ipapython import services as ipaservices
from ipaserver.install import installutils, service from ipaserver.install import installutils, service
from ipaserver.install import certs from ipaserver.install import certs
from ipaserver.install.installutils import HostnameLocalhost from ipaserver.install.installutils import (HostnameLocalhost, ReplicaConfig,
from ipaserver.install.installutils import ReplicaConfig, expand_replica_info, read_replica_info expand_replica_info, read_replica_info, get_host_name, BadHostError,
from ipaserver.install.installutils import get_host_name, BadHostError private_ccache)
from ipaserver.install import dsinstance, cainstance, bindinstance from ipaserver.install import dsinstance, cainstance, bindinstance
from ipaserver.install.replication import replica_conn_check from ipaserver.install.replication import replica_conn_check
from ipapython import version from ipapython import version
@ -212,6 +212,7 @@ Run /usr/sbin/ipa-server-install --uninstall to clean up.
if __name__ == '__main__': if __name__ == '__main__':
try: try:
with private_ccache():
installutils.run_script(main, log_file_name=log_file_name, installutils.run_script(main, log_file_name=log_file_name,
operation_name='ipa-ca-install', operation_name='ipa-ca-install',
fail_message=fail_message) fail_message=fail_message)

1
install/tools/ipa-dns-install
View File

@ -258,5 +258,6 @@ def main():
return 0 return 0
if __name__ == '__main__': if __name__ == '__main__':
with private_ccache():
installutils.run_script(main, log_file_name=log_file_name, installutils.run_script(main, log_file_name=log_file_name,
operation_name='ipa-dns-install') operation_name='ipa-dns-install')

7
install/tools/ipa-replica-install
View File

@ -36,9 +36,9 @@ from ipaserver.install import dsinstance, installutils, krbinstance, service
from ipaserver.install import bindinstance, httpinstance, ntpinstance, certs from ipaserver.install import bindinstance, httpinstance, ntpinstance, certs
from ipaserver.install import memcacheinstance from ipaserver.install import memcacheinstance
from ipaserver.install.replication import replica_conn_check, ReplicationManager from ipaserver.install.replication import replica_conn_check, ReplicationManager
from ipaserver.install.installutils import HostnameLocalhost, resolve_host from ipaserver.install.installutils import (HostnameLocalhost, resolve_host,
from ipaserver.install.installutils import ReplicaConfig, expand_replica_info, read_replica_info ReplicaConfig, expand_replica_info, read_replica_info ,get_host_name,
from ipaserver.install.installutils import get_host_name, BadHostError BadHostError, private_ccache)
from ipaserver.plugins.ldap2 import ldap2 from ipaserver.plugins.ldap2 import ldap2
from ipaserver.install import cainstance from ipaserver.install import cainstance
from ipalib import api, errors, util from ipalib import api, errors, util
@ -726,6 +726,7 @@ Run /usr/sbin/ipa-server-install --uninstall to clean up.
if __name__ == '__main__': if __name__ == '__main__':
try: try:
with private_ccache():
installutils.run_script(main, log_file_name=log_file_name, installutils.run_script(main, log_file_name=log_file_name,
operation_name='ipa-replica-install', operation_name='ipa-replica-install',
fail_message=fail_message) fail_message=fail_message)

3
install/tools/ipa-server-install
View File

@ -1210,6 +1210,7 @@ def main():
if __name__ == '__main__': if __name__ == '__main__':
success = False success = False
try: try:
# FIXME: Common option parsing, logging setup, etc should be factored # FIXME: Common option parsing, logging setup, etc should be factored
# out from all install scripts # out from all install scripts
@ -1219,6 +1220,8 @@ if __name__ == '__main__':
else: else:
log_file_name = "/var/log/ipaserver-install.log" log_file_name = "/var/log/ipaserver-install.log"
# Use private ccache
with private_ccache():
installutils.run_script(main, log_file_name=log_file_name, installutils.run_script(main, log_file_name=log_file_name,
operation_name='ipa-server-install') operation_name='ipa-server-install')
success = True success = True

22
ipaserver/install/installutils.py
View File

@ -28,6 +28,7 @@ import shutil
from ConfigParser import SafeConfigParser, NoOptionError from ConfigParser import SafeConfigParser, NoOptionError
import traceback import traceback
import textwrap import textwrap
from contextlib import contextmanager
from dns import resolver, rdatatype from dns import resolver, rdatatype
from dns.exception import DNSException from dns.exception import DNSException
@ -753,3 +754,24 @@ def check_pkcs12(pkcs12_info, ca_file, hostname):
(pkcs12_filename, e)) (pkcs12_filename, e))
return server_cert_name return server_cert_name
@contextmanager
def private_ccache():
(desc, path) = tempfile.mkstemp(prefix='krbcc')
os.close(desc)
original_value = os.environ.get('KRB5CCNAME', None)
os.environ['KRB5CCNAME'] = path
yield
if original_value is not None:
os.environ['KRB5CCNAME'] = original_value
else:
os.environ.pop('KRB5CCNAME')
if os.path.exists(path):
os.remove(path)