From 30b251b05be0d63fa0a405025bdf1ffca7037a5a Mon Sep 17 00:00:00 2001
From: Timothy Pearson <kb9vqf@pearsoncomputing.net>
Date: Fri, 4 Sep 2015 07:30:28 +0000
Subject: Clean up revoked certificates when done updating CRL

---
 src/libtdeldap.cpp | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/src/libtdeldap.cpp b/src/libtdeldap.cpp
index 63ff769..ea67fd6 100644
--- a/src/libtdeldap.cpp
+++ b/src/libtdeldap.cpp
@@ -4418,6 +4418,13 @@ int LDAPManager::generatePKICRL(int expirydays, LDAPRealmConfig realmcfg, TQStri
 			return -1;
 		}
 
+		if (fileExists(revoked_certfile.ascii())) {
+			if (unlink(revoked_certfile.ascii()) < 0) {
+				if (errstr) *errstr = TQString("Unable to unlink \"%1\"").arg(revoked_certfile);
+				return -1;
+			}
+		}
+
 		LDAPUserInfoList::Iterator it;
 		for (it = userList.begin(); it != userList.end(); ++it) {
 			LDAPUserInfo user = *it;
@@ -4451,6 +4458,13 @@ int LDAPManager::generatePKICRL(int expirydays, LDAPRealmConfig realmcfg, TQStri
 							if (errstr) *errstr = TQString("Execution of \"%s\" failed").arg(command);
 							return -1;
 						}
+
+						if (fileExists(revoked_certfile.ascii())) {
+							if (unlink(revoked_certfile.ascii()) < 0) {
+								if (errstr) *errstr = TQString("Unable to unlink \"%1\"").arg(revoked_certfile);
+								return -1;
+							}
+						}
 					}
 				}
 			}
-- 
cgit v1.2.3