mirror of
https://github.com/freebsd/freebsd-src
synced 2024-07-21 10:19:04 +00:00
976e100378
The main dhclient process is Capsicumized but also chroots to restrict filesystem access. With r322369, pidfile(3) maintains a directory descriptor for the pidfile, which can cause the chroot to fail in certain cases. To minimize the problem, only chroot if we fail to enter capability mode, and store dhclient pidfiles in a subdirectory of /var/run, thus restricting access via pidfile(3)'s directory descriptor. PR: 223327 Reviewed by: cem, oshogbo Sponsored by: The FreeBSD Foundation Differential Revision: https://reviews.freebsd.org/D16584 |
||
|---|---|---|
| .. | ||
| rc.d | ||
| init.8 | ||
| init.c | ||
| Makefile | ||
| Makefile.depend | ||
| netstart | ||
| network.subr | ||
| NOTES | ||
| pathnames.h | ||
| pccard_ether | ||
| rc | ||
| rc.conf | ||
| rc.initdiskless | ||
| rc.resume | ||
| rc.shutdown | ||
| rc.subr | ||
| rc.suspend | ||