Commit Graph

257 Commits

Author SHA1 Message Date
tls
4147a3c54a Add new Makefile knob, USE_FORT, which extends USE_SSP by turning on the
FORTIFY_SOURCE feature of libssp, thus checking the size of arguments to
various string and memory copy and set functions (as well as a few system
calls and other miscellany) where known at function entry.  RedHat has
evidently built all "core system packages" with this option for some time.

This option should be used at the top of Makefiles (or Makefile.inc where
this is used for subdirectories) but after any setting of LIB.

This is only useful for userland code, and cannot be used in libc or in
any code which includes the libc internals, because it overrides certain
libc functions with macros.  Some effort has been made to make USE_FORT=yes
work correctly for a full-system build by having the bsd.sys.mk logic
disable the feature where it should not be used (libc, libssp iteself,
the kernel) but no attempt has been made to build the entire system with
USE_FORT and doing so will doubtless expose numerous bugs and misfeatures.

Adjust the system build so that all programs and libraries that are setuid,
directly handle network data (including serial comm data), perform
authentication, or appear likely to have (or have a history of having)
data-driven bugs (e.g. file(1)) are built with USE_FORT=yes by default,
with the exception of libc, which cannot use USE_FORT and thus uses
only USE_SSP by default.  Tested on i386 with no ill results; USE_FORT=no
per-directory or in a system build will disable if desired.
2007-05-28 12:06:17 +00:00
riz
6833444ffd Note which interface caused a resolv.conf to be created. From
Robert Elz in PR#21109, tested by Rivo Nurges.
2006-10-08 17:09:32 +00:00
dyoung
c565b00740 Replace the arp -n -a / arp -n -d rigamarole for cleaning the ARP
table with 'route -n flush -inet -llinfo -host', which is not only
more concise, but it doesn't require /usr/ to be mounted.  This
lets us close bin/11079.
2006-09-23 22:54:43 +00:00
christos
3f33249541 We don't need sed to do trivial parsing. 2006-07-10 23:07:09 +00:00
mrg
aadd7d4847 sprinkle some -fno-strict-aliasing and -Wno-pointer-sign with GCC4. 2006-05-11 23:16:28 +00:00
rtr
c398bfd249 avoid ifconfig <if> "" it serves no purpose
patch from Robert Elz via pr#21110
2005-07-16 08:41:27 +00:00
blymn
21cbe2316b Fix up the adding of static routes, incorrect parameters were being passed
to the route command.
2005-06-19 05:04:34 +00:00
atatat
e45456b0af Remove the date from the generated resolv.conf file, since changes to
this file are tracked by /etc/security, making it (the backup) get
needlessly updated when you go to and from work every day.
2005-04-09 02:14:52 +00:00
grant
8b9d374e09 suppress printing the network settings so that dhclient -q is actually
quiet. the most useful network info is already printed by dhclient
itself in noisy mode.
2004-10-04 12:54:06 +00:00
lukem
b817247988 Use MKPRIVATELIB=yes instead of providing an empty libinstall:: target and
setting NOLINT, NOPIC, NOPROFILE (etc)
2004-05-23 02:24:50 +00:00
lukem
8c09d1d81a support MKSHARE=no 2004-01-12 01:18:12 +00:00
mycroft
fc24d6a197 Pull in libipsec. 2003-09-25 01:02:03 +00:00
lukem
c52b93f508 minor makefile delint 2002-09-18 13:31:52 +00:00
lukem
17d72c8a6b use NETBSDSRCDIR as appropriate 2002-09-18 03:54:26 +00:00
lukem
ed401558f2 Implement MKDYNAMICROOT, which currently defaults to "no", but will
be changed in the future to "yes".

If MKDYNAMICROOT == "no", there is no change from existing behaviour
of a static /bin and /sbin (and a few programs in elsewhere).

If MKDYNAMICROOT == "yes", the following changes occur:
    in <bsd.own.mk>:
	SHLIBDIR?=     /lib
	SHLINKDIR?=	/lib
    in various Makefiles, the following entry is DISABLED.
	LDSTATIC?=-static
This results in all programs (except those "standalone" programs built
in sys/arch/*/stand) are linked dynamically, the shared linker is moved
from /usr/libexec to /lib (with a compat symlink), and the shared
libraries used by /bin and /sbin programs are moved from /usr/lib to
/lib (with compat symlinks).
2002-08-27 14:46:11 +00:00
augustss
75ccf77ae3 Don't use -Dlint when compiling to get rid of unused copyright strings,
use -Wno-unused to get rid of the warning instead.
XXX This is not the right way either, but at least it compiles on ppc now.
2002-06-16 21:40:03 +00:00
itojun
5b43820fcf WARNS=1 clean. patch submitted to dhcp-bugs@isc.org. 2002-06-10 00:30:33 +00:00
christos
d8b387a57b update resolv.conf if we have new nameservers. Don't require a domain, because
it is not needed.
2002-05-28 15:04:01 +00:00
lukem
2c1cfc8e8c - in <bsd.files.mk>, don't clear FILES after using it, as that prevents
make -V FILES
  from being useful (and given that every other variable can be
  extracted using make -V, the behaviour was unusually inconsistent
  given that the original reason for clearing it doesn't seem to be
  relevant anymore)
- use <bsd.prog.mk> instead of directly including <bsd.files.mk>
  (and possibly <bsd.man.mk> or <bsd.own.mk>)
- remove obsolete NOPROG
2002-04-24 08:18:45 +00:00
enami
c7fb252eba - Don't assume that /usr is available. Fixes (one of?) ``fgrep: not found''.
- Don't append ``dot'' when restoring resovl.conf.
2002-04-10 10:11:41 +00:00
christos
d3ffde02ce don't add a search line if the domain name is empty. Pointed out by perry. 2002-04-02 19:16:59 +00:00
christos
1f44bd39de - don't trash the old resolv.conf.
- say that we generated it and when.
- unfortunately we cannot restore it back, since dhclient does not call us
  when it exits.
2002-04-02 17:39:47 +00:00
thorpej
f4b825ded1 Add examples of how to match different classes (e.g. ia32 vs. ia64)
of PXE clients using the Vendor Class Identifier option that all PXE
clients send in their DHCP packets.
2002-02-17 20:26:03 +00:00
thorpej
fbe7fa7c47 Add some definitions for the Intel PXE boot protocol that can
be included in a DHCP server configuration file.
2002-02-09 21:13:31 +00:00
tv
8e6f7afb5b MKfoo=no -> NOfoo 2001-12-12 01:48:43 +00:00
tv
c98eaba8e8 dhcpd no longer needs the OS_VERSION define. 2001-08-16 18:29:20 +00:00
tv
22207c0806 Add NetBSD rcsids. 2001-08-16 18:03:03 +00:00
drochner
32af7c842a define HMAC_MD5
should fix PR security/13043 by Frank Kardel
2001-08-07 14:51:27 +00:00
drochner
96914bd8e8 our dhclient-script diverged too much from the distributed one,
keep it separate
2001-08-03 14:30:19 +00:00
drochner
ecd0a03ec8 switch to reachover build from src/dist/dhcp 2001-08-03 14:13:55 +00:00
wiz
d2c504636c aquire -> acquire 2001-07-26 22:50:57 +00:00
wiz
a9356936b4 seperate -> separate 2001-07-22 13:33:58 +00:00
christos
44f22a6994 make things compile again with -DSMALL 2001-06-23 00:10:06 +00:00
drochner
65ae86a522 more obsolete files 2001-06-19 14:55:30 +00:00
drochner
e47db61069 some more files which disappeared in the distribution 2001-06-19 14:45:46 +00:00
drochner
9eb0a9bd7a add missing comma 2001-06-19 14:34:08 +00:00
drochner
e3ef27af9b iron out some unnecessary differences between the distribution and the
NetBSD version
2001-06-19 14:22:45 +00:00
drochner
ad33c4e9c3 these are not in the original distribution anymore 2001-06-19 13:58:30 +00:00
drochner
d94b2b3963 fix some obviously botched error returns 2001-06-19 13:54:58 +00:00
christos
a2458a3f05 use better/quicker shell syntax 2001-06-18 19:43:55 +00:00
drochner
8d1282dd17 update for moved toisc.c 2001-06-18 19:16:10 +00:00
drochner
ef869f8376 merge 3.0rc8 2001-06-18 19:01:50 +00:00
drochner
5233105195 ISC DHCP 3.0rc8 2001-06-18 18:13:13 +00:00
wiz
0a600be867 receive, not recieve 2001-06-12 15:17:10 +00:00
wiz
40ac848024 Fix various misspellings of compatible/compatibility. 2001-06-11 01:50:48 +00:00
christos
4fce6523d7 make the -DSMALL option work again. 2001-05-26 00:37:45 +00:00
sommerfeld
390fe67281 Add .WAIT barrier for parallel make 2001-05-08 02:03:18 +00:00
kleink
2c30ea4c58 Add missing quotes to test -z argument; from Tim Preston in PR bin/12687. 2001-04-17 23:25:38 +00:00
christos
8689c0d412 make the remove route code look exactly the same like the add code. 2001-04-11 21:53:26 +00:00
christos
a775b3feee general cleanup:
1. Use standard shell indentation
2. Use [ expr -a expr ] instead of [ expr ] && [ expr ] (same with -o and ||)
3. Cleanup 0 length string tests
4. Factor out the routing code
5. Use a large switch statement based on $reason instead of the endless
   if elif's
6. Use variables for filenames used
7. Test in all cases for the existance of domainname and hostname
8. No need for individual command redirections in structured statements.

Thanks to kleink for testing and fixing my typos!
2001-04-11 21:22:53 +00:00