| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
| |
If you don't want to use resolvconf(8) to update /etc/resolv.conf,
you can put resolvconf_enable="NO" into /etc/dhclient-enter-hooks.
|
| |
|
|
|
|
|
|
| |
how to configure dhclient to clear the interface of IP numbers prior
to configuring it.
PR: 149351
MFC after: 2 weeks
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
it to configure the interface. When the script is complete, dhclient
monitors the routing socket and will terminate if its address is
deleted or if its interface is removed or brought down.
Because the routing socket is already open when dhclient-script is
run, dhclient ignores address deletions for 10 seconds after the
script was run.
If the address that will be obtained is already configured on the
interface before dhclient starts, and if dhclient-script takes more
than 10 seconds (perhaps due to dhclient-*-hooks latencies), on script
completion, dhclient will immediately and silently exit when it sees
the RTM_DELADDR routing message resulting from the script reassigning
the address to the interface.
This change logs dhclient's reason for exiting and also changes the
10 second timeout to be effective from completion of dhclient-script
rather than from when it was started.
We now ignore RTM_DELADDR and RTM_NEWADDR messages when the message
contains no interface address (which should not happen) rather than
exiting.
Not reviewed by: brooks (timeout)
MFC after: 3 weeks
|
| |
|
|
|
|
|
|
|
|
|
|
| |
packets instead of allowing the protocol stack to pick a random source port.
This fixes the behaviour where dhclient would never transition from RENEWING
to BOUND without going through REBINDING in networks which are paranoid about
DHCP spoofing, such as most mainstream cable-broadband ISP networks.
Reviewed by: brooks
Obtained from: OpenBSD (partly - I'm not convinced their solution can work)
MFC after: 1 week (pending re approval)
|
| |
|
|
| |
Submitted by: Ulrich Spörlein
|
| |
|
|
|
|
|
|
| |
dhclient now terminates when the underlying ifnet is destroyed (e.g.
on card eject).
Reviewed by: brooks
Approved by: re (kib)
|
| |
|
|
|
|
|
|
|
|
|
| |
internal buffer sizes.
When we 'append', assume we're appending to text. Some MS dhcp servers will
give us a string with the length including the trailing NUL. when we 'append
domain-name', we get something like "search x.y\000 z" in resolv.conf :(
MFC after: 1 week
Security: A buffer overflow (by one NUL byte) was possible.
|
| |
|
|
|
|
| |
PR: bin/127076
Submitted by: jkim
MFC after: 1 week
|
| |
|
|
|
|
|
|
| |
In the MPSAFE TTY branch, I noticed PTY's to be leaked, because
dhclient's privileged process was run inside the session of, say, the
login shell. Make sure we call setsid() here.
Approved by: philip (mentor), brooks
|
| |
|
|
|
|
| |
for a long time if we get a lease, but DNS isn't working.
MFC after: 1 week
|
| |
|
|
|
|
|
|
| |
directly rather than bogusly sending it out as a link layer broadcast
(which fails to be received on some networks).
PR: bin/96018
MFC after: 2 weeks
|
| |
|
|
|
|
|
|
|
|
|
| |
interface is one with the default route (or there isn't one). Use it to
decide if we should adjust the default route and /etc/resolv.conf.
Fix the delete of the default route. The if statement was totally bogus
and the delete only worked due to a typo. [1]
Reported by: Jordan Coleman <jordan at JordanColeman dot com> [1]
MFC after: 1 week
|
| |
|
|
|
|
|
|
|
|
| |
lease: track the current bssid and if it changes (as reported in an
assoc/reassoc) event only then kick the state machine. This gives us
immediate response when roaming but otherwise causes us to fallback on
the normal state machine.
Reviewed by: brooks, jhb
MFC after: 3 weeks
|
| |
|
|
| |
MFC after: 2 weeks
|
| |
|
|
|
|
|
| |
alias to avoid distrubing other addresses.
PR: bin/119255
Submitted by: Jaakko Heinonen <jh at saunalahti dot fi>
|
| |
|
|
|
| |
Reviewed by: brooks
MFC after: 3 days
|
| |
|
|
|
|
|
| |
PR: docs/116099
Submitted by: Ben Kaduk <minimarmot@gmail.com>
Approved by: re (bmah)
MFC after: 3 days
|
| |
|
|
|
|
|
| |
to be reloaded when the interface is torn down.
Reviewed by: brooks
Approved by: re (kensmith)
|
| |
|
|
|
|
|
| |
correct test to -ge 5. Without this change an RFC3442 encoded default
route would be ignored.
Reported by: Cedric Jonas <cedric at decemplex dot net>
|
| |
|
|
|
|
|
|
|
|
|
| |
The original DHCP specification includes a route option but it supports
only class-based routes. RFC3442 adds support for specifying the netmask
width for each static route. A variable length encoding is used to minimize
the size of this option.
PR: bin/99534
Submitted by: Andrey V. Elsukov <bu7cher@yandex.ru>
Reviewed by: brooks
|
| |
|
|
| |
file isn't actually installed; the one in src/etc is.
|
| |
|
|
|
|
| |
were removing the invalid option, but still rejecting the lease.
Reported by: Yoshihiko Sarumaru <mistral at imasy dot or dot jp>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
length != BPF_WORDALIGN(length)
This meeans that it is possible for this to be true:
interface->rbuf_offset > interface->rbuf_len
Handle this case in the test for running out of packets. While
OpenBSD's solution of setting interface->rbuf_len to
BPF_WORDALIGN(length) is safe due to the size of the buffer, I think
this solution results in less hidden assumptions.
This should fix the problem of dhclient running away and consuming 100%
CPU.
PR: bin/102226
Submitted by: Joost Bekkers <joost at jodocus.org>
MFC after: 3 days
|
| |
|
|
|
|
|
| |
on an interface without carrier. devd should be used instead to handle
link up/down events.
Put on the right path by: brooks, sam
|
| |
|
|
| |
Suggested by: ru
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
despite the interface link status.
Add dhclient_flags_iface and background_dhclient_iface rc.conf options.
(where iface is a specific interface). These can be used to give
interface specific flags to dhclient.
Reviewed by: brooks@
|
| |
|
|
|
|
|
|
|
| |
with NACK if I don't set it. Setting 'option dhcp-client-identifier' is
alternative but it is inconvenient because I have to keep the list of
all MAC addresses. As bin/94743 pointed out, it is always sent from
Windows clients and I found Mac OS X does the same.
OK'd by: brooks
|
| |
|
|
|
|
| |
parsed, so it winds up at usage anyway.
Add 'b' to the usage summary. Noticed by Ben Mesander.
|
| |
|
|
|
|
|
|
|
| |
option if none is given in the config file. Also add #ifdefd out
support for sending a client ID based on our MAC address.
PR: bin/94743, bin/76401
Submitted by: Frank Behrens <frank at pinky dot sax dot de>
X-MFC after: 6.1-RELEASE
|
| |
|
|
|
|
|
| |
PR: docs/92629
Submitted by: Daniel Gerzo <danger@rulez.sk>
Noticed by: Michal F. Hanula <f@7f000001.org>
Approved by: trhodes (mentor)
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
/tmp may not be writeable yet when dhclient is first run via
/etc/rc.d/netif so using it may not work. Also, writing to a
predictable file in /tmp as root is a really bad idea since a malicious
user may be able to win a race and insert a symlink which will allow
them to cause any file to be overwritten. To solve these problems,
create the tempory file in /var/run which will exist this early and is
writable only by root.
Security: Local risk if users can cause dhclient to run on demand
(such as by unplugging and replugging the network cable).
|
| |
|
|
|
|
|
|
| |
OpenBSD -w # when invoking ping.
PR: bin/92187
Submitted by: "Shin'ya Kumabuchi" <kumabu at t3 dot rim dot or dot jp>
MFC After: 6 days
|
| |
|
|
|
|
| |
PR: 90518
Submitted by: John E. Hein <jhein@timing.com>
MFC after: 3 days
|
| |
|
|
| |
MFC after: 1 week
|
| |
|
|
|
|
|
|
| |
entries from the interface rather than using ifconfig's delete command.
This preserves non-dhclient configured addresses (though they are wiped
out when dhclient is restarted).
MFC after: 1 week
|
| |
|
|
|
| |
PR: bin/87465 (different solution used)
MFC after: 1 week
|
| |
|
|
|
|
|
| |
refusing the lease. This allow obtaining leases on misadministered
networks that use host names with underscores in them.
MFC After: 3 days
|
| |
|
|
| |
Submitted by: ume
|
| |
|
|
|
|
|
|
|
| |
renewal, or we lose link, be more forceful about clearing interface
state so another interface that connects to the same network has a
chance of working. This doesn't address attemping to connect to both at
once, but appears to allow unplugging from a wired interface and then
inserting a wireless card that associates with an AP bridged to the same
LAN.
|
| |
|
|
|
|
| |
file. This is what the ISC client does.
Submitted by: Rostislav Krasny <rosti dot bsd at gmail dot com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
check the domain-name parameter according to the rules for "search"
strings as documented in resolv.conf(5). Specifically, the string must
be no more than 256 bytes long and contain no more than six valid domain
names separated by white space.
The previous unchecked values could result in a mangled resolv.conf
file which could effectively deny access to local sites. This is not
a security issue as rogue dhcp servers could already do this without
sending invalid strings.
Reviewed by: cperciva
MFC After: 3 days
|
| |
|
|
|
|
|
| |
for example). Follow the example of the ISC script and wrap ifconfig
calls using $medium in eval "..." so this works.
Reported by: iedowse
|
| |
|
|
|
|
| |
the output index instead of keeping what ever trash was in the buffer.
Reported by: iedowse
|
| |
|
|
|
|
| |
default route.
Submitted by: Rostislav Krasny <rosti dot bsd at gmail dot com>
|
| |
|
|
|
|
|
| |
serves no apparent purpose (we commented this out ages ago in the ISC
scripts) and cases problems with some ADSL setups.
Reported by: Rostislav Krasny <rosti dot bsd at gmail dot com>
|
| |
|
|
|
|
|
| |
lines that are exactly 81 characters in length.
Obtained from: OpenBSD
MFC After: 3 days
|
| |
|
|
| |
versions when dealing with user problems.
|
| | |
|
| |
|
|
|
|
| |
is properly aligned when we move to the next packet.
Obtained from: ISC dhclient via krw at OpenBSD
|
