freebsd-dev/sbin/init/rc.d
Mark Johnston 976e100378 dhclient: Don't chroot if we are in capability mode.
The main dhclient process is Capsicumized but also chroots to
restrict filesystem access.  With r322369, pidfile(3) maintains a
directory descriptor for the pidfile, which can cause the chroot
to fail in certain cases.  To minimize the problem, only chroot
if we fail to enter capability mode, and store dhclient pidfiles
in a subdirectory of /var/run, thus restricting access via
pidfile(3)'s directory descriptor.

PR:		223327
Reviewed by:	cem, oshogbo
Sponsored by:	The FreeBSD Foundation
Differential Revision:	https://reviews.freebsd.org/D16584
2018-08-06 16:22:01 +00:00
..
abi
accounting
addswap
adjkerntz
amd
apm
apmd
archdep
auditd
auditdistd
automount
automountd
autounmountd
bgfsck
blacklistd
bluetooth
bootparams
bridge
bsnmpd
bthidd
ccd
cfumass
cleanvar
cleartmp
cron
ctld
DAEMON
ddb
defaultroute
devd
devfs
devmatch
dhclient dhclient: Don't chroot if we are in capability mode. 2018-08-06 16:22:01 +00:00
dmesg
dumpon
FILESYSTEMS
fsck
ftp-proxy
ftpd
gbde
geli
geli2
gptboot
growfs
gssd
hastd
hcsecd
hostapd
hostid
hostid_save
hostname
inetd
iovctl
ip6addrctl
ipfilter
ipfs
ipfw
ipfw_netflow
ipmon
ipnat
ipropd_master
ipropd_slave
ipsec
iscsictl
iscsid
jail
kadmind
kdc
keyserv
kfd
kld
kldxref
kpasswdd
ldconfig
local
local_unbound
localpkg
lockd
LOGIN
lpd
Makefile Fix a variable name typo in r336845 that prevented the rc.d scripts 2018-07-29 05:42:07 +00:00
mdconfig
mdconfig2
mixer
motd
mountcritlocal
mountcritremote
mountd
mountlate
moused
msgs
natd
netif
netoptions
netwait
NETWORKING
newsyslog
nfscbd
nfsclient
nfsd
nfsuserd
nisdomain
nscd
nsswitch
ntpd
ntpdate
opensm
othermta
pf
pflog
pfsync
power_profile
powerd
ppp
pppoed
pwcheck
quota
random
rarpd
rctl
resolv
rfcomm_pppd_server
root
route6d
routed
routing
rpcbind
rtadvd
rtsold
rwho
savecore
sdpd
securelevel
sendmail
serial
SERVERS
sppp
sshd
statd
static_arp
static_ndp
stf
swap
swaplate
syscons
sysctl
syslogd
timed
tmp
ubthidhci
ugidfw
utx
var
virecover
watchdogd
wpa_supplicant
ypbind
ypldap
yppasswdd
ypserv
ypset
ypupdated
ypxfrd
zfs
zfsbe
zfsd
zvol