Commit Graph

438 Commits

Author SHA1 Message Date
christos 6536944397 eval arguments one more time so that quoting works. 2008-10-11 17:28:03 +00:00
apb 9b7231008d Move default route configuration after interface alias address
configuration, in case people have default routes over aliased
addresses.
2008-09-26 10:31:46 +00:00
apb c44f01fe5d remove an unecessary "eval" 2008-09-20 14:22:57 +00:00
apb 94f952dfe5 * Allow multiple commands in $ifconfig_xxN variables in rc.conf(5).
This may be done either by embedding newlines in the value,
  or by using semicolons to represent line breaks (but not both at once).
* Allow shell quoting insode $ifconfig_xxN variables or /etc/ifconfig.xxN
  files.  This allows something like ifconfig_wi0="ssid 'my network'; dhcp"
2008-09-20 12:12:38 +00:00
reed 2ae533f9b5 Use absolute path for various /sbin tools.
This is consistent with several other rc.d scripts
and fixes problem with /sbin not in PATH.

(Tested several times for over three weeks, but not all
parts of this code were used by me.)
2008-07-24 19:48:19 +00:00
yamt fff57c5525 merge yamt-pf42 branch.
(import newer pf from OpenBSD 4.2)

ok'ed by peter@.  requested by core@
2008-06-18 09:06:25 +00:00
joerg 32455b2087 Allow per-interface DHCP configuration using dhcpcd via
ifconfig_xxN=dhcp or a dhcp line in /etc/ifconfig.xxN.
2008-05-29 15:38:35 +00:00
plunky 486e4624e5 some changes to serial bluetooth host controller interfaces
btuartd(8) should be named btattach(8) for consistency
with other parts of NetBSD

make btattach(8) a single-use tool for less complexity

device specicific initialisation (from btuart(4)) is carried
out prior to activating the line discipline (in btattach(8)),
which simplifies the API somewhat and means that the user
tool and the kernel do not need to be kept in sync.

btuart(4) driver is much reduced; naming is made consistent
and all tsleep() and delay() are removed to userland
2008-04-15 11:17:47 +00:00
tron 634457e76e Print out a message explaining why the system is rebooting if the root
filesystem is modified by fsck(8).
2008-03-02 21:31:30 +00:00
tron 5acd6cb052 Don't try to shutdown amd(8) gracefully. It seems to cause problems for
more people than the old (also broken) behavior. This fixes PR bin/36506
and PR bin/38103.
2008-02-25 22:12:42 +00:00
christos 3a24c02f26 cleanup fsck error handling:
1. explain what each error means
2. remove 130 (128 + 2) which was presumably there because fsck_msdos did
   not handle SIGINT properly
2008-02-24 01:05:35 +00:00
reed f8fd203aa2 Add comment to point to manual page for details. 2008-01-31 15:21:32 +00:00
lukem 114e456e17 Ensure kdc starts after syslogd and ntpdate. 2008-01-16 23:58:26 +00:00
mjf d4a648c345 Implement a new magic string for magic symlinks, @ruid, which exapnds to the
real user id of the process and use this magic string for per-user tmp.
This should fix PR/35687

Kernel parts reviewed by wrstuden@
2007-12-04 22:09:01 +00:00
xtraeme 2026f84dc1 Only print the message if the command ran successfully. 2007-10-07 05:30:56 +00:00
xtraeme 4b431f1771 Update for the new configuration file format for envstat(8)
and the envsys framework.

The rc.d has been simplified vastly... the configuration file now
is more powerful than ever!
2007-10-07 04:19:06 +00:00
pavel d4b5db05c7 Add some magic (similar to the one in rc.d/sendmail introduced with 2.0
release) to not start postfix if $postfix is not explicitely set and
another mailer is selected in /etc/mailer.conf. Also print a warning if it
happens because the mailer in rc.conf is the removed sendmail.

This prevents starting two MTAs at once if one uses a custom MTA.

As proposed on tech-userlevel, approved by martin.
2007-08-27 10:59:05 +00:00
dyoung ea3cf9a639 Let an rc variable, sysdb=YES|NO, control the building of the system
databases.  Defaults to YES.
2007-08-26 23:55:50 +00:00
apb e2832b6345 Back out previous (which worked but made the code harder to understand),
and implement a different method of avoiding a "-0" result.
2007-08-25 07:07:39 +00:00
martin fe7b5be8b0 Cosmetics: print 0 instead of -0.
From Zafer Aydogan in PR bin/36831.
2007-08-24 17:02:32 +00:00
xtraeme 66c5665356 - Ignore lines with desc at start/stop time, this target must be used
manually.
- Ignore lines with rfact at stop time, they cannot be stopped.

Reported by wiz@.
2007-07-25 12:47:44 +00:00
plunky 2134bb0314 add requirement for bthcid since devices may need to authenticate 2007-07-23 18:06:56 +00:00
ad 96d0aa8e9b fixsb has done its job. 2007-07-14 21:20:31 +00:00
xtraeme bca6ba70fe Add the /etc/rc.d/envsys script required by envsys2. 2007-07-01 08:01:29 +00:00
christos a77bf0b003 check if the source exists, not that it is a file. Reported by
Blair Sadewitz
2007-05-16 01:24:42 +00:00
elad 6700cfccd6 Some Veriexec stuff that's been rotting in my tree for months.
Bug fixes:
  - Fix crash reported by Scott Ellis on current-users@.

  - Fix race conditions in enforcing the Veriexec rename and remove
    policies. These are NOT security issues.

  - Fix memory leak in rename handling when overwriting a monitored
    file.

  - Fix table deletion logic.

  - Don't prevent query requests if not in learning mode.


KPI updates:
  - fileassoc_table_run() now takes a cookie to pass to the callback.

  - veriexec_table_add() was removed, it is now done internally. As a
    result, there's no longer a need for VERIEXEC_TABLESIZE.

  - veriexec_report() was removed, it is now internal.

  - Perform sanity checks on the entry type, and enforce default type
    in veriexec_file_add() rather than in veriexecctl.

  - Add veriexec_flush(), used to delete all Veriexec tables, and
    veriexec_dump(), used to fill an array with all Veriexec entries.


New features:
  - Add a '-k' flag to veriexecctl, to keep the filenames in the kernel
    database. This allows Veriexec to produce slightly more accurate
    logs under certain circumstances. In the future, this can be either
    replaced by vnode->pathname translation, or combined with it.

  - Add a VERIEXEC_DUMP ioctl, to dump the entire Veriexec database.
    This can be used to recover a database if the file was lost.
    Example usage:

        # veriexecctl dump > /etc/signatures

    Note that only entries with the filename kept (that is, were loaded
    with the '-k' flag) will be dumped.

    Idea from Brett Lymn.

  - Add a VERIEXEC_FLUSH ioctl, to delete all Veriexec entries. Sample
    usage:

        # veriexecctl flush

  - Add a 'veriexec_flags' rc(8) variable, and make its default have
    the '-k' flag. On systems using the default signatures file
    (generaetd from running 'veriexecgen' with no arguments), this will
    use additional 32kb of kernel memory on average.

  - Add a '-e' flag to veriexecctl, to evaluate the fingerprint during
    load. This is done automatically for files marked as 'untrusted'.


Misc. stuff:
  - The code for veriexecctl was massively simplified as a result of
    eliminating the need for VERIEXEC_TABLESIZE, and now uses a single
    pass of the signatures file, making the loading somewhat faster.

  - Lots of minor fixes found using the (still under development)
    Veriexec regression testsuite.

  - Some of the messages Veriexec prints were improved.

  - Various documentation fixes.


All relevant man-pages were updated to reflect the above changes.

Binary compatibility with existing veriexecctl binaries is maintained.
2007-05-15 19:47:43 +00:00
christos a14fdbbe78 don't attempt to build the db file if the src file does not exist. 2007-05-13 17:23:56 +00:00
christos 2f776ce02e Move .db files for services and netgroup to /var/db per gimpy's request. 2007-05-10 17:45:50 +00:00
christos f3418d6240 - don't trash utmp{,x} needlessly
- also support netgroup services and password
- pretty print
2007-05-08 20:33:59 +00:00
tron e848cdf438 Terminate amd(8) gracefully during system shutdown.
This should avoid occasional problems with syncing or unmounting
filesystems on machines which use the automounter. Tested
successfully under NetBSD-i386 3.1_STABLE and 4.0_BETA2.
2007-04-23 14:27:30 +00:00
tron 01f7150efa The "routed" and "route6d" scripts must be run early during system startup
because they are part of the network initialization. Use similar
dependences as the "rtsold" script.

This should fix PR misc/36171.
2007-04-21 15:20:07 +00:00
apb 31edfc6f0f * Add a stop_boot() function in rc.subr, to terminate a multi-user boot
by killing the parent process.  The parent's PID is saved in $RC_PID.
* In all rc.d/* scripts that previously tried to stop the boot,
  replace in-line code with "stop_boot".
* Document this.

This should fix PR 29822.
2007-04-06 14:20:08 +00:00
mishka 833cf25850 Provide yet more functionality to wscons.conf's "setvar" (see
examples in the wscons.conf). Now, you have to specify wscons
control device and put variable name and parameter on separate
fields.

NB: changes ARE NOT backward compatible and config file must be
checked (but default config doesn't utilizing setvar).
2007-04-02 12:42:42 +00:00
plunky c6f8856e3c For sdpd(8), change default user/group from nobody/nobody to _sdpd/_sdpd 2007-03-18 15:53:54 +00:00
abs bde6709836 Ignore comment (starting with #) lines in mixerctl.conf 2007-03-16 22:30:22 +00:00
briggs d298894138 Install sys/dev/bluetooth/btuart.h.
Descend into and build/install usr.sbin/btuartd.
Install etc/rc.d/btuartd.
2007-02-20 21:29:08 +00:00
kiyohara 10abd6f2e2 Supprot Bluetooth HCI UART (H4) driver and daemon. 2007-02-20 16:53:20 +00:00
tron 8704d644d4 Remove unnessary "if [ X"$foo" ... ]" hack which is not necessary if
you quote things properly which this script does.
2007-02-15 13:27:35 +00:00
xtraeme da18ab0b5b * Use checkyesno rather than using a harcoded value.
* If per_user_tmp is disabled and /tmp equals to ${per_user_tmp_dir}/@uid,
  remove it and recreate it with proper permissions (1777).

This fixes the problem when per_user_tmp is enabled and will put /tmp
on its original state when it's disabled.
2007-02-15 08:47:38 +00:00
xtraeme 6092e365cb Add missing quotes in readlink to compare with ${per_user_tmp_dir}/@uid,
to avoid an error about missing operator.
2007-02-15 08:44:34 +00:00
reed b173114f5c Fix typo/mispelling in comment. 2007-02-10 19:40:58 +00:00
elad 97d944e80d Use 0555 for the real tmp dir for now. 2007-02-06 16:54:27 +00:00
elad d488983ed2 Only override /tmp if needed. From perry@. 2007-02-05 01:47:48 +00:00
xtraeme a5c172888b Use mkdir -p to create ${per_user_tmp_dir}, otherwise if /private (this is
the default) doesn't exist there won't be any error.
2007-02-04 18:28:26 +00:00
xtraeme 470eb9feca Install the perusertmp file. 2007-02-04 16:36:07 +00:00
elad 5e2e282f9c Add support for per-user /tmp.
Enabled via per_user_tmp in /etc/rc.conf (default off).

See security(8) and rc.conf(5) for more details.

Lots of input from thorpej@ & christos@, thanks!
2007-02-04 08:19:26 +00:00
christos 3353f7d077 goodbye uucp 2006-11-12 01:20:00 +00:00
elad 4c99077841 PR/31497: Robert Elz: rc.d/accounting should have KEYWORD: shutdown 2006-10-08 18:08:39 +00:00
elad debd0acd05 Back out previous. This was a dup of PR/29144 that was fixed differently.
Thanks to pavel@ for pointing out, okay oster@.
2006-10-07 23:08:03 +00:00
rpaulo 6080ffe830 PR 30716: rc.d/ntpd{,ate} precedes rc.d/rtsold. By Ed Hynan.
rc.d/rtsold should be in the same start up line as dhclient.
2006-10-07 21:41:41 +00:00