summaryrefslogtreecommitdiffstats
path: root/configure
Commit message (Collapse)AuthorAge
* privsep: Enable capsicum for network facing processesRoy Marples2020-05-07
| | | | | | | All fd's in network facing processes are fully limited. Capability mode is only enabled for BPF processes because it's too restrictive otherwise - the reasons are noted in the commit.
* privsep: Allow a blank string to force privsep users home directoryRoy Marples2020-05-05
| | | | So FreeBSD users can set it like other OS's if they so choose.
* privsep: Document any overridden chroot directory.Roy Marples2020-05-05
|
* Log chrootdir set.Roy Marples2020-05-04
|
* privsep: allow --chrootdir= to configure a default chroot directoryRoy Marples2020-04-30
|
* privsep: Add --chroot configurableRoy Marples2020-04-30
| | | | | Overrides the directory to chroot to away from the privilege separation users home directory.
* configure: Set a blank default hostname for non LinuxRoy Marples2020-04-16
| | | | Wups, I was debugging.
* privsep: Detect a suitable user for dhcpcd, otherwise use dhcpcdRoy Marples2020-04-05
| | | | | | System users generally have _ preceeding their username. Only use this user if it exists and their home dir is not /var/empty. Otherwise default to using dhcpcd.
* Revert "privsep: default to using _dhcpcd and not _dhcp"Roy Marples2020-04-05
| | | | This reverts commit 36c47a8df0951236a7842bbf8241e2932357ef61.
* privsep: default to using _dhcpcd and not _dhcpRoy Marples2020-04-10
| | | | | | | _dhcp home dir defaults to /var/empty. System integrators can and should be in charge of changing it when needed. Packagers on the other hand don't have such a luxury and so should not use _dhcp by default.
* dhcpcd: disable address sanitization by defaultRoy Marples2020-03-31
| | | | | | As recent production kernels ship with ASLR by default which stops dhcpcd running dead when this is enabled. We dont want to break a systems boot, so force it via configure.
* linux: the default hostname is (none)Roy Marples2020-03-31
| | | | | It's blank for the BSD's. Respect this when relinquishing the hostname.
* another typoRoy Marples2020-02-10
|
* spelling: Correct both privilege and separationRoy Marples2020-02-10
| | | | Found by Arfrever.
* Linux: setup mounts in chrootRoy Marples2020-01-21
| | | | | This allows dhcpcd to work. udev sadly requires /run/udev as well, so heh ho.
* ioctl: The POSIX signature differs from BSD and glibcRoy Marples2020-01-08
| | | | | | | | | | BSD and glibc have the signature for request as unsigned long. musl and Solaris have a signed int. As such, we need to detect this at compile time and adjust the signature of our internal ioctl functions to match. To keep the onwire format the same, memcpy the request to the unsigned long request and back again, thus preserving the signedness.
* privsep: Support the generic _dhcp entry on DragonFlyRoy Marples2019-12-18
| | | | No need to create a specific _dhcpcd user in this instance.
* privsep: Allow priviledge separation user to be specified by configureRoy Marples2019-12-02
|
* privsep: Enable privsep by defaultRoy Marples2019-12-01
| | | | Except on Solaris where it's not expected to work.
* privsep: Add support for priviledge separationRoy Marples2019-11-28
| | | | | | | | | | | | | | | | | | | | | | | | Not enabled by default - enable with ./configure --enable-privsep Requires a user added to the system - default _dhcpcd Several processes will be spawned off the main state engine: a privileged actioneer and a generic network proxy. Only the privileged actioneer process will retain root permissions. When required, the privileged actioneer will also spawn BPF listeners for BOOTP (DHCP) and ARP. The BOOTP BPF listener should be a short lived process. On kernels with RFC 5227 support, the ARP BPF listener will only be used for ARPing and announcing a preferred address and will also be a short lived process. When not running in master mode, an address listener will be spawned for each address (with the exception of RA dervived addresses) dhcpcd cares about. TODO: * Solaris support. * ARP BPF address filtering.
* build: Add -Wundef to debugging CFLAGSRoy Marples2019-11-28
|
* build: Move rundir from /var/run to /var/run/dhcpcdRoy Marples2019-11-28
| | | | | | | This will allow dhcpcd to create and unlink pidfiles and sockets which it could otherwise not if dropped priviledges. Downstream packages such as dhcpcd-ui will need to be adjusted.
* build: Improve detection of dlopen(3) in libdlRoy Marples2019-11-05
|
* and more prettyRoy Marples2019-11-04
|
* build: make prior output more prettyRoy Marples2019-11-04
|
* build: Check compiler actually supports address sanitisation.Roy Marples2019-11-04
|
* build: Enforce address sanitisaton when debugging.Roy Marples2019-11-03
|
* Added documentation for undocumented optionMax Coplan2019-10-16
| | | The dbdir option is used to specify the location of the DHCPd database. The default /var/db is not FHS compliant so some may wish to change this to
* FreeBSD: Fix test for setproctitleRoy Marples2019-10-16
|
* compat: Add setproctitle from LXCRoy Marples2019-10-14
|
* DragonFlyBSD: rc.d scripts need onestatus also ....Roy Marples2019-09-19
|
* Dilos: work with Debian style configure callingRoy Marples2019-09-13
|
* build: Fix DragonFlyBSD config for import.Roy Marples2019-09-05
|
* Solaris: remove development warning, all looks good now :)Roy Marples2019-09-04
|
* OpenBSD: Fix compileRoy Marples2019-08-28
|
* build: Fix import-src when there is no compat to import.Roy Marples2019-08-28
|
* DragonFly: make import-src now prepares the source for importingRoy Marples2019-08-28
| | | | | I'm a lazy man and there's too many steps to import dhcpcd into DragonFlyBSD, so hopefully this makes it a lot easier.
* rbtree: Fix building from a DragonFlyBSD importRoy Marples2019-08-28
|
* queue: Support TAILQ_FOREACH_MUTABLERoy Marples2019-08-28
| | | | Basically another name for TAILQ_FOREACH_SAFE.
* DragonFlyBSD: hooks live in /usr/libexecRoy Marples2019-08-28
| | | | | | Which is inconsitent with dhcpcd living in /sbin! Still, that's what it is. While here, if the build system defines directories, don't re-define them.
* configure: Fix test for open_memstreamRoy Marples2019-07-28
| | | | glibc-2.19 needs the return value testing....
* Merge branch 'memstream'Roy Marples2019-07-04
|\
| * script: Write variables to a FILERoy Marples2019-06-18
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Each variable is NULL terminated inside the file just like the control stream which saves us from having to flatten it when writing to the control stream. Once written, create env pointers to the start of each string just after the NULL terminator. This also means that we just need to free two buffers when dhcpcd exits (FILE buffer and env buffer) rather than each variable individually. If open_memstream(3) is not supported by libc then dhcpcd will write to a file in /tmp instead.
* | Fix typo in configureOleksandr Kravchuk2019-06-25
|/
* Merge branch 'master' into rbtreeRoy Marples2019-05-04
|\
| * compat: Provide consttime_memequal if not in libcRoy Marples2019-04-19
| | | | | | | | Public domain version by Matthias Drochner <drochner@netbsd.org>
* | Merge branch 'master' into rbtreeRoy Marples2019-04-16
|\|
| * sun: Fix carrier detection, MTU detection and plumbingRoy Marples2019-04-14
| | | | | | | | dhcpcd no longer needs ifconfig to do the initial plumbing.
* | Re-arrange so to reduce diff to upsteam.Roy Marples2019-03-04
| |
* | Fix whitespaceRoy Marples2019-03-03
| |
generated by cgit v1.2.3 (git 2.25.1) at 2021-03-13 23:22:54 +0000