summaryrefslogtreecommitdiff
path: root/duo_openvpn.c
diff options
context:
space:
mode:
Diffstat (limited to 'duo_openvpn.c')
-rw-r--r--duo_openvpn.c33
1 files changed, 18 insertions, 15 deletions
diff --git a/duo_openvpn.c b/duo_openvpn.c
index 8437907..060d765 100644
--- a/duo_openvpn.c
+++ b/duo_openvpn.c
@@ -57,28 +57,31 @@ auth_user_pass_verify(struct context *ctx, const char *args[], const char *envp[
return OPENVPN_PLUGIN_FUNC_ERROR;
}
+ /* prevent leaving behind zombies */
+ signal(SIGCHLD, SIG_IGN);
+
pid = fork();
if (pid < 0) {
return OPENVPN_PLUGIN_FUNC_ERROR;
}
-
- if (pid == 0) {
- if (ctx->ikey && ctx->skey && ctx->host) {
- setenv("ikey", ctx->ikey, 1);
- setenv("skey", ctx->skey, 1);
- setenv("host", ctx->host, 1);
- }
-
- setenv("control", control, 1);
- setenv("username", username, 1);
- setenv("password", password, 1);
- setenv("ipaddr", ipaddr, 1);
- execvp(argv[0], argv);
- exit(1);
+ if (pid > 0) {
+ return OPENVPN_PLUGIN_FUNC_DEFERRED;
}
+
+ if (ctx->ikey && ctx->skey && ctx->host) {
+ setenv("ikey", ctx->ikey, 1);
+ setenv("skey", ctx->skey, 1);
+ setenv("host", ctx->host, 1);
+ }
+
+ setenv("control", control, 1);
+ setenv("username", username, 1);
+ setenv("password", password, 1);
+ setenv("ipaddr", ipaddr, 1);
- return OPENVPN_PLUGIN_FUNC_DEFERRED;
+ execvp(argv[0], argv);
+ exit(1);
}
OPENVPN_EXPORT int
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-12 21:03:56 +0000