diff options
author | Ricardo Mestre <mestre@cvs.openbsd.org> | 2018-08-02 06:28:36 +0000 |
---|---|---|
committer | Ricardo Mestre <mestre@cvs.openbsd.org> | 2018-08-02 06:28:36 +0000 |
commit | d66f9cc7028585163daa3d0e70f19c1175f235a2 (patch) | |
tree | 315995fbdd582f962e1c39c7ed25368cd5fbd445 /usr.sbin/eigrpd/eigrpd.c | |
parent | 6c94ef23bd82b7b426f6d235742288ee3832a1ca (diff) |
Currently when eigrpd(8) shuts down then its unix control socket is being
unlink(2)ed from eigrpe engine process, the problem is that this proc is
chrooted and therefore the socket will never be deleted.
In order to solve it we need to bring control_cleanup() function, which calls
unlink(2), into the main proc which is not chrooted. This is the way it's
already done for several other daemons we have in our base.
Additionally we also need to move the "cpath" pledge(2) promise from the child
process to the main process in order for the latter to be allowed to delete the
socket and while here shuffle the promises into their canonical form.
OK florian@ and benno@
Diffstat (limited to 'usr.sbin/eigrpd/eigrpd.c')
-rw-r--r-- | usr.sbin/eigrpd/eigrpd.c | 8 |
1 files changed, 6 insertions, 2 deletions
diff --git a/usr.sbin/eigrpd/eigrpd.c b/usr.sbin/eigrpd/eigrpd.c index 6e5d5ddf6da..8fb673bc242 100644 --- a/usr.sbin/eigrpd/eigrpd.c +++ b/usr.sbin/eigrpd/eigrpd.c @@ -1,4 +1,4 @@ -/* $OpenBSD: eigrpd.c,v 1.21 2016/09/02 17:59:58 benno Exp $ */ +/* $OpenBSD: eigrpd.c,v 1.22 2018/08/02 06:28:35 mestre Exp $ */ /* * Copyright (c) 2015 Renato Westphal <renato@openbsd.org> @@ -36,6 +36,7 @@ #include "eigrpe.h" #include "rde.h" #include "log.h" +#include "control.h" static void main_sig_handler(int, short, void *); static __dead void usage(void); @@ -167,6 +168,8 @@ main(int argc, char *argv[]) else if (eflag) eigrpe(debug, global.cmd_opts & EIGRPD_OPT_VERBOSE, sockname); + global.csock = sockname; + mib[0] = CTL_NET; mib[1] = PF_INET; mib[2] = IPPROTO_IP; @@ -268,7 +271,7 @@ main(int argc, char *argv[]) eigrpd_conf->rdomain) == -1) fatalx("kr_init failed"); - if (pledge("inet rpath stdio sendfd", NULL) == -1) + if (pledge("inet rpath cpath stdio sendfd", NULL) == -1) fatal("pledge"); event_dispatch(); @@ -290,6 +293,7 @@ eigrpd_shutdown(void) msgbuf_clear(&iev_rde->ibuf.w); close(iev_rde->ibuf.fd); + control_cleanup(global.csock); kr_shutdown(); config_clear(eigrpd_conf); |