summaryrefslogtreecommitdiffstats
path: root/usr.sbin/rad (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Include interface name in warning when a RA is recieved from a non-link-localclaudio2020-05-201-2/+3
| | | | | address OK sthen@ florian@ benno@
* list example files in FILES with a short description: generally, "Examplejmc2020-05-161-4/+4
| | | | | | | configuration file.", but occasionally something else fit better; at the same time, try to make the format for FILES more consistent; original diff from clematis
* Use defines instead of raw numbers for intervals specified by RFCflorian2020-03-303-17/+19
| | | | | 4861. No binary change. While here consistently use #define<tab> instead of #define<space>.
* briefly mention /etc/examples/ in the FILES section of all theschwarze2020-02-101-3/+5
| | | | | manual pages that document the corresponding configuration files; OK jmc@, and general direction discussed with many
* Consistently use _rcctl enable foo_ in examples, it's simpler and lesslandry2019-11-101-12/+9
| | | | | | | | | | | | | error prone than manually editing rc.conf.local, and also works to enable ipsec and accounting. tweak from schwarze@ to use the \(dq\(dq syntax for quotes in '.Dl foo_flags="" lines' instead of \&"\&". while at it, fix a reference to a bogus /dev/dhclient.conf file that recently snuck in. ok jmc@ deraadt@ schwarze@
* Plug mem leak in error path; ok florian@ who also spotted the rad caseotto2019-10-181-1/+3
|
* Do not try to send router advertisements on interfaces that have no link.florian2019-09-071-3/+46
| | | | | | | Keeps log noise down on carp backup interfaces. Reported by matthieu Previous version OK deraadt Input & OK benno
* this bit about soii and link-local addresses is no longer needed sincebenno2019-09-061-14/+2
| | | | | | florian@ removed soii for link-local adresses in sys/netinet6/in6_ifattach.c rev 1.114 ok florian@ sthen@ kn@
* Fix a bunch of typos in various man pages.fcambus2019-08-081-3/+3
|
* When system calls indicate an error they return -1, not some arbitraryderaadt2019-06-282-12/+12
| | | | | | value < 0. errno is only updated in this case. Change all (most?) callers of syscalls to follow this better, and let's see if this strictness helps us in the future.
* Delete superfluous #includes of <ifaddrs.h>, <net/if_dl.h>, and <net/if_enc.h>guenther2019-05-102-4/+2
| | | | ok krw@, jsg@
* Unbreak listening for prefix changes.florian2019-04-121-2/+2
| | | | | Found the hard way by naddy OK deraadt, phessler
* Avoid calling dup2(oldd, newd) when oldd == newd. In that case theyasuoka2019-03-311-2/+6
| | | | | | | descriptor keeps CLOEXEC flag then it will be closed unexpectedly by exec(). ok tedu florian
* Only accept one ICMPv6 and one route socket.florian2019-03-151-3/+10
| | | | | | This caught a missing break where the ICMPv6 socket was also used as the route socket for a short while. OK pamela
* Correctly interlock config reloads imsgs.florian2019-03-152-2/+14
| | | | | | Only accept a new config reload if it's not currently running and on accept a config reload end if one is currently running. OK pamela
* Do not accept a control socket if we already have one.florian2019-03-151-1/+4
| | | | OK pamela
* fix line breakpamela2019-03-121-2/+3
| | | | OK florian@
* In the manner of recent changes to unwind(8) and slaacd(8), make imsgpamela2019-03-123-22/+68
| | | | | | processing more paranoid. Call fatalx() for imsg size mismatches or unexpected/missing imsg fd. OK florian@
* Change fatal() to fatalx() where errno is not set.pamela2019-03-112-8/+8
| | | | tweak and OK florian@
* Introduce the IMSG_DATA_SIZE() macro to replace recurring math on imsg.hdr.len to shorten and simplify code.pamela2019-03-024-25/+25
| | | | OK florian@
* trailing whitespaceflorian2019-03-012-4/+4
|
* (unsigned) means (unsigned int) which on ptrdiff_t or size_t or otherderaadt2019-02-131-3/+3
| | | | | | larger types really is a range reduction... Almost any cast to (unsigned) is a bug. ok millert tb benno
* We don't need IMSG_SHUTDOWN, we can just close the sockets.florian2019-01-294-22/+5
| | | | pointed out by deraadt
* PF_ROUTE -> AF_ROUTE in the scattered sock()/setsockopt() callskrw2019-01-221-3/+3
| | | | | | where the "wrong" #define was used. ok dlg@
* minor tweaks;jmc2019-01-022-9/+8
|
* Discovered prefixes should not override explicitly configuredflorian2018-11-281-5/+6
| | | | | | | | | prefixes. That way one can have multiple prefixes configured on an interface and set "autonomous address-configuration no" in rad.conf to tell clients to not form addresses from some of these prefixes. Pointed out by Ross L Richardson (openbsd AT rlr.id.au), thanks! OK phessler
* Allow rad(8) to watch interface groups; e.g. "interface tap" in rad.conf.reyk2018-11-212-25/+75
| | | | OK florian@, additional review from kn@
* Don't fatal if IPV6_LEAVE_GROUP fails.reyk2018-11-161-5/+5
| | | | | | | The underlying interface might have been destroyed or detached and rad(8) will just cope with that. OK florian@
* Document interactions of rad(8), carp(4), and SOII:stsp2018-11-091-2/+14
| | | | | When running rad(8) on top of carp(4), ifconfig carp0 -soii is a good idea. ok florian@ jmc@
* - odd condition/test in PF lexersashan2018-11-011-2/+3
| | | | | | | | | | | | | | (and other lexers too) This commit rectifies earlier change: in the lex... even inside quotes, a \ followed by space or tab should expand to space or tab, and a \ followed by newline should be ignored (as a line continuation). compatible with the needs of hoststated (which has the most strict quoted string requirements), and ifstated (where one commonly does line continuations in strings). OK deraadt@, OK millert@
* If a prefix without length was specifed in the config file, thenbluhm2018-09-162-3/+8
| | | | | | 128 was used. This does not make much sense for rad(8). Change the default prefixlen to 64. OK florian@
* With prefixlen 128, mask_prefix() in rad(8) caused a stack overflowbluhm2018-09-161-3/+5
| | | | | in the config parser. Add an out of bounds check for the in6_addr. OK florian@
* replace malloc()+strlcpy() with strndup() in cmdline_symset().miko2018-09-071-9/+4
| | | | "looks good" gilles@ halex@
* SIOCGIFNETMASK_IN6 failing just means that someone delete the addressflorian2018-08-151-2/+2
| | | | | we are currently looking at. No need to fatal. Found the hard way by naddy
* Since -s argument is no longer checked, during reexec, the argv size then mustmestre2018-08-051-2/+2
| | | | | | be shortened by 1. OK florian@
* Leave the control socket behind on shutdown. It doesn't hurt anyone.florian2018-08-043-27/+10
| | | | | | | | On the other hand it is much more powerful to get rid of cpath; rad is no longer allowed to change anything on the filesystem. Triggered by mestre@'s work to fix unlinking in other daemons and a question from deraadt@ OK mestre
* advertise slaacd.8;jmc2018-08-031-3/+4
|
* sort; ok florianjmc2018-08-031-16/+16
|
* Move dns settings to global options so that they don't need to beflorian2018-08-037-119/+211
| | | | | | repeated in every interface block - they can still be overwritten on a per interface basis. Pointed out by, tweaks & OK sthen
* sort;jmc2018-07-211-7/+7
|
* No need to copy rdns_lifetime around with an IMSG, it gets send to theflorian2018-07-204-15/+4
| | | | | | | engine end frontend as part of ra_iface_conf. Spotted after explaining to bket@ that a similar pattern is not needed for the mtu option.
* Fix mem leaks on config reload:florian2018-07-203-9/+22
| | | | | | - always free struct ra_iface_conf with free_ra_iface_conf() - free_ra_iface_conf() needs to free the recently added nameserver and search list
* fix mem leak: missing freeifaddrsflorian2018-07-201-2/+2
|
* Introduce MTU option.bket2018-07-206-8/+33
| | | | | | | | The MTU option is used in Router Advertisement messages to ensure that all nodes on a link use the same MTU value in those cases where the link MTU is not well known. Feedback (thank you!) and OK from florian@
* We need to track the auto prefix in ra_prefix_conf otherwise we can'tflorian2018-07-201-3/+4
| | | | | configure its options. Trying so lead to a crash. Found the hard way by & OK sthen
* Rename "resolver" to "nameserver" in the configuration file.florian2018-07-203-22/+22
| | | | | | | resolv.conf(5) and dhclient(8) are using the term nameserver for many years, there is no good reason to be different here. Pointed out by deraadt
* Stop our own router advertisements from looping back to us.florian2018-07-181-2/+6
| | | | Pointed out by semarie@
* Don't log_warn on normal conditions, it should be log_debug.florian2018-07-181-2/+2
| | | | Pointed out by semarie@
* tweak previous;jmc2018-07-151-2/+2
|
* Implement RFC 8106: IPv6 Router Advertisement Options for DNSflorian2018-07-157-17/+300
| | | | Configuration.
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.