Fincer
/
openntpd-openbsd
mirror of https://github.com/Fincer/openntpd-openbsd
1
0
Fork 0
Code Issues 0 Projects 0 Releases 61 Wiki Activity
Source code pulled from OpenBSD for OpenNTPD. The place to contribute to this code is via the OpenBSD CVS tree.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4623 Commits
49 Branches
352 MiB
Tree: 55c0aad4e0
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '55c0aad4e0'
${ noResults }
openntpd-openbsd/src/etc/rc

751 lines
18 KiB
Raw Normal View History

Add the _ripd user and startup stuff. ok claudio@
18 years ago
initial import of NetBSD tree
29 years ago
Adda a stripcom function to strip comments (and leading whitespace, depending on IFS). This replaces the ed and sed code previously used to do this.
25 years ago
o move sysctl and mixerctl parsing into a subroutine instead of a subshell o update resource limits if kern.maxproc or kern.maxfiles is changed
19 years ago
o change wsconsctl.conf subshell into a function o move test for foo.conf into the foo_conf function proper
19 years ago
o move sysctl and mixerctl parsing into a subroutine instead of a subshell o update resource limits if kern.maxproc or kern.maxfiles is changed
19 years ago
o change wsconsctl.conf subshell into a function o move test for foo.conf into the foo_conf function proper
19 years ago
o move sysctl and mixerctl parsing into a subroutine instead of a subshell o update resource limits if kern.maxproc or kern.maxfiles is changed
19 years ago
o change wsconsctl.conf subshell into a function o move test for foo.conf into the foo_conf function proper
19 years ago
Adda a stripcom function to strip comments (and leading whitespace, depending on IFS). This replaces the ed and sed code previously used to do this.
25 years ago
initial import of NetBSD tree
29 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
have shutdown code run /etc/rc with arg of "shutdown"; rc.shutdown becomes completely admin-editable
25 years ago
Pass pfsync and carp traffic in the boot-time pf configuration. Bring carp interfaces down at shutdown, to make a graceful exit if we're master. ok deraadt@
21 years ago
Fix CARP shutdown. ok deraadt
21 years ago
Pass pfsync and carp traffic in the boot-time pf configuration. Bring carp interfaces down at shutdown, to make a graceful exit if we're master. ok deraadt@
21 years ago
double check that the carp* interfaces exist before knocking them down, mcbride and i think this diff looks good but do not feel like doing the 250 meter walk to go test it
20 years ago
Fix the test for successful ifconfig of carp interface on shutdown, makes graceful shutdown work correctly. ok mpf@ deraadt@ a long time ago, committed to local repository by accident.
19 years ago
double check that the carp* interfaces exist before knocking them down, mcbride and i think this diff looks good but do not feel like doing the 250 meter walk to go test it
20 years ago
Pass pfsync and carp traffic in the boot-time pf configuration. Bring carp interfaces down at shutdown, to make a graceful exit if we're master. ok deraadt@
21 years ago
Bring down carp interfaces gracefully even if powerdown=YES in rc.shutdown. ok krw@ deraadt@
20 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
Bring down carp interfaces gracefully even if powerdown=YES in rc.shutdown. ok krw@ deraadt@
20 years ago
have shutdown code run /etc/rc with arg of "shutdown"; rc.shutdown becomes completely admin-editable
25 years ago
initial import of NetBSD tree
29 years ago
move std stuff from rc.local to rc
28 years ago
initial import of NetBSD tree
29 years ago
Configure raid devices at boot (from NetBSD, ok by niklas@).
25 years ago
raid(4) parity check simplification
23 years ago
quiet raid check
23 years ago
raid(4) parity check simplification
23 years ago
With recent changes to swapctl(8), replace the invocation of swapon with two swapctl invocations. Swap on block devices is enabled before fscking filesystems, swap on files is enabled after all filesystems (including remote) are mounted.
23 years ago
swapon -a before fsck is run
23 years ago
move std stuff from rc.local to rc
28 years ago
initial import of NetBSD tree
29 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
initial import of NetBSD tree
29 years ago
fsck now raises datasize limit itself.
28 years ago
initial import of NetBSD tree
29 years ago
Diskless root mounts were ro too long
27 years ago
initial import of NetBSD tree
29 years ago
pull in rc.conf early so that pf(1) startup is right; tested by jasoni, comments from millert
23 years ago
ooopppssss, backout last, lots of unrelated changes creeped in, noticed by jmc
20 years ago
initial import of NetBSD tree
29 years ago
Set up alternate keyboard encoding earlier in rc. ok miod@ henning@ deraadt@
20 years ago
move wsconsctl up earlier, so that any key changes made can be used to (for instance) interrupt dhclient with a ^C instead of a 'CAPS-LOCK C' from e@molioner.dk checked by matthieu
19 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
Simpler default block. ok deraadt@
22 years ago
"pass on lo0" in the intermediate pf ruleset loaded during boot. solves PR3376 by matthew.gream@pobox.com, fix slightly different ok mcbride@ deraadt@
21 years ago
Sigh, add the rule in the right place (not just when NFS is used). From Dries Schellekens
22 years ago
Allow host to do dns lookups in the initial ruleset. This way, pfctl can properly boot rulesets with dns addresses in it.
22 years ago
Allow outbound ping in initial pf rules. dhclient needs this to validate old (but valid) leases in /var/db/dhclient.leases in case it needs to fall back to such a lease. (the dhcp server can be down or not responding) Reported by Chris Jepeway. "makes sense" henning dhartmei
22 years ago
Use inet6 pf rules only for inet6-capable setups, first spotted by form@pdp-11.org.ru. ok todd@ henning@
20 years ago
default pf rule too restrictive for IPv6 (need to allow NS/NA). deraadt ok
20 years ago
Use inet6 pf rules only for inet6-capable setups, first spotted by form@pdp-11.org.ru. ok todd@ henning@
20 years ago
Pass pfsync and carp traffic in the boot-time pf configuration. Bring carp interfaces down at shutdown, to make a graceful exit if we're master. ok deraadt@
21 years ago
be silent on kernels which lack nfs; d.doroshenko@omnitel.net
23 years ago
start pflogd in a different place; do not block NFS in diskless situations; danh & cedric@wireless-networks.com
23 years ago
Fix NFS diskless boot when PF is used. From dhartmei@ e-mail, ok henning@
22 years ago
start pflogd in a different place; do not block NFS in diskless situations; danh & cedric@wireless-networks.com
23 years ago
split the dummy ruleset pfctl -f - -e into separate -f - and -e. relevant when the dummy ruleset can't be loaded, we still want to enable pf, otherwise the real ruleset (even if that does load correctly) won't be active. might happen on a non-GENERIC kernel or after an update (before /etc is manually updated). reported by Jim Rees. ok frantzen@
19 years ago
Initialization infrastruture for pf. Based on initial patches by ian@, and much input and mangling from theo.
23 years ago
o change wsconsctl.conf subshell into a function o move test for foo.conf into the foo_conf function proper
19 years ago
process sysctl.conf way earlier
25 years ago
initial import of NetBSD tree
29 years ago
increase the carp demotion counter by 128 instead of 1 while rc runs. you do not want a machine that is in the middle of rc and does not have all network daemons (that possibly increase the carp demotion counter further) to become master just because the other one lost 2 bgp sessions or similar for other daemons (esp sasyncd) and as such has a demotion count of >1. ok mcbride mpf deraadt
18 years ago
if, at boot time, a /etc/resolv.conf.save is found, assume this is from a dhclient that crashed so hard it was unable to swap the file back, and hence, finish that job. i convinced krw and henning that this is right right place (not in netstart)
20 years ago
initial import of NetBSD tree
29 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
Initialization infrastruture for pf. Based on initial patches by ian@, and much input and mangling from theo.
23 years ago
pfctl -f instead of -N/-R, ok deraadt@
22 years ago
Initialization infrastruture for pf. Based on initial patches by ian@, and much input and mangling from theo.
23 years ago
Use the new -s flag to mount the /usr and /var partitions. Avoids doubly mounted mfs partitions. Also, at the end of the mount dance, try mount all partitions, not just nfs partitions. Handles a case where local paritition mounted inside a nfs partition where not mounted by rc (/usr on nfs with a local /usr/obj, for example). ok deraadt@ henning@
19 years ago
initial import of NetBSD tree
29 years ago
host.random whacking must be after /var is mounted, obviously
24 years ago
after seeding from the host.random file, immediately reset the seed file, so that if a shutdown-less reboot occurs, the next re-seed is not a repeat
24 years ago
clean /var earlier
27 years ago
dhclient doesn't write a pid file any more; do remove the code that deals with it at startup; noticed by wilfried, millert ok
20 years ago
clear /var/authpf on bootup - ensure we don't kill things we shouldn't
22 years ago
Save a copy of the boot messages in /var/run/dmesg.boot.
26 years ago
sigh; move syslog up nearer the top. Any failures from this?
27 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
remove support for named_chroot and named_user; always run named as user named and chrooted to /var/named. ok deraadt@
22 years ago
Add named_user and named_chroot variables to simplify chroot'd named setup.
26 years ago
Add a /var/empty/dev/log socket for things that chroot to /var/empty.
22 years ago
fix typo
27 years ago
sigh; move syslog up nearer the top. Any failures from this?
27 years ago
handle pflogd_flags better; openbsd@davidkrause.com
23 years ago
Only try to run pflogd if pflog0 exists; from mpech@ OK deraadt@ and fgsch@
20 years ago
start pflogd in a different place; do not block NFS in diskless situations; danh & cedric@wireless-networks.com
23 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
only generate shared secret for rndc if named will be started. tested by grange@, ok millert@
22 years ago
sigh; move syslog up nearer the top. Any failures from this?
27 years ago
start named earlier; this is an experiment
27 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
Switch boot order: isakmpd starts before sasyncd. If a user is running sasyncd, start isakmpd with -S. In this mode isakmpd starts off passsive and doesn't delete SA's on shutdown. OK ho@, hshoexer@, deraadt@
18 years ago
isakmpd startup stuff
26 years ago
Switch boot order: isakmpd starts before sasyncd. If a user is running sasyncd, start isakmpd with -S. In this mode isakmpd starts off passsive and doesn't delete SA's on shutdown. OK ho@, hshoexer@, deraadt@
18 years ago
As the isakmpd fifo race is fixed, hook ipsecctl to rc. ok naddy@ todd@
19 years ago
Change "starting rpc daemons" to "starting initial daemons" as we also start ntpd at this time. discussed with jmc@; ok deraadt@
19 years ago
typo + comment
28 years ago
control portmap, inetd, and lpd from netstart; idea from tqbf@enteract.com
28 years ago
initial import of NetBSD tree
29 years ago
split ypserv & ypbind startup; ypserv does not depend on you being a client; from amh@POBOX.COM
19 years ago
intuit whether ypbind, ypserv, and rpc.yppasswdd should run
29 years ago
split ypserv & ypbind startup; ypserv does not depend on you being a client; from amh@POBOX.COM
19 years ago
Put in hooks to start ypserv with flags
27 years ago
no ypxfrd
28 years ago
ypserv, ypbind, then rpc.yppasswdd
28 years ago
split ypserv & ypbind startup; ypserv does not depend on you being a client; from amh@POBOX.COM
19 years ago
intuit whether ypbind, ypserv, and rpc.yppasswdd should run
29 years ago
permit rpc.yppasswdd run to be blocked, and block by default; ok henning tedu
21 years ago
intuit whether ypbind, ypserv, and rpc.yppasswdd should run
29 years ago
fix test for yp in resolv.conf
28 years ago
intuit whether ypbind, ypserv, and rpc.yppasswdd should run
29 years ago
OK, this is an insane commit. Comes from johnb@ugrad.cs.ualberta.ca, pr 3589. somehow he got his YP and DNS screwed up and nslookup $h was dealing with h = "" which was doing nslookup "", which is bad and hangs boots. be more careful by doing echo $h | nslookup instead.
20 years ago
intuit whether ypbind, ypserv, and rpc.yppasswdd should run
29 years ago
OK, this is an insane commit. Comes from johnb@ugrad.cs.ualberta.ca, pr 3589. somehow he got his YP and DNS screwed up and nslookup $h was dealing with h = "" which was doing nslookup "", which is bad and hangs boots. be more careful by doing echo $h | nslookup instead.
20 years ago
intuit whether ypbind, ypserv, and rpc.yppasswdd should run
29 years ago
fix rpc.yppasswdd conditional
28 years ago
Put in hooks to start rpc.yppasswdd with flags
27 years ago
intuit whether ypbind, ypserv, and rpc.yppasswdd should run
29 years ago
initial import of NetBSD tree
29 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
avoid a few extra processes; d.doroshenko@omnitel.net
24 years ago
Kill whitespace at eol.
27 years ago
initial import of NetBSD tree
29 years ago
revert vfs.nfs.privport sysctl, broke a few architectures requested by deraadt@
18 years ago
Add hook for rpc.lockd, make nfsd flags settable in netstart
27 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
Add hook for rpc.lockd, make nfsd flags settable in netstart
27 years ago
initial import of NetBSD tree
29 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
initial import of NetBSD tree
29 years ago
start amd in /etc/amd; so that if ${amd_master} contains map names, and we don't want them fetched from YP, it will find them in the current directory.
25 years ago
initial import of NetBSD tree
29 years ago
ooopppssss, backout last, lots of unrelated changes creeped in, noticed by jmc
20 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
ooopppssss, backout last, lots of unrelated changes creeped in, noticed by jmc
20 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
ntpd -s by default is just a pause if there is no net
19 years ago
ooopppssss, backout last, lots of unrelated changes creeped in, noticed by jmc
20 years ago
initial import of NetBSD tree
29 years ago
Use the new -s flag to mount the /usr and /var partitions. Avoids doubly mounted mfs partitions. Also, at the end of the mount dance, try mount all partitions, not just nfs partitions. Handles a case where local paritition mounted inside a nfs partition where not mounted by rc (/usr on nfs with a local /usr/obj, for example). ok deraadt@ henning@
19 years ago
sigh; move syslog up nearer the top. Any failures from this?
27 years ago
With recent changes to swapctl(8), replace the invocation of swapon with two swapctl invocations. Swap on block devices is enabled before fscking filesystems, swap on files is enabled after all filesystems (including remote) are mounted.
23 years ago
initial import of NetBSD tree
29 years ago
Permit flags to be set for savecore, e.g. to compress core dumps ok millert@ fgsch@
23 years ago
initial import of NetBSD tree
29 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
startup code for AFS
26 years ago
simplify afs startup so all you have to do is say "YES" to get basic AFS functionality (enough to to pkg_add's)
21 years ago
spacing
20 years ago
startup code for AFS
26 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
Make quotas optional; wedged into netstart for the time being. /etc/rc.conf, anyone?
27 years ago
initial import of NetBSD tree
29 years ago
split database line up nicely; krw@tcn.net
26 years ago
When running kvm_mkdb, don't specify /bsd so we can use /dev/ksyms if it exists and is configured
26 years ago
split database line up nicely; krw@tcn.net
26 years ago
initial import of NetBSD tree
29 years ago
split database line up nicely; krw@tcn.net
26 years ago
initial import of NetBSD tree
29 years ago
chmod/chown all the ptys
25 years ago
fix another non-POSIX chown; Chuck Yerkes
22 years ago
initial import of NetBSD tree
29 years ago
move std stuff from rc.local to rc
28 years ago
initial import of NetBSD tree
29 years ago
Clear /tmp before running /etc/rc.securelevel. Brian Candler <btc@demon.net>
27 years ago
Use -execdir not -exec in find; deraadt@
25 years ago
Clear /tmp before running /etc/rc.securelevel. Brian Candler <btc@demon.net>
27 years ago
kill double whitespace, PR3934, for rea this time and without unrelated changes
20 years ago
Prevent possible races by moving .X11 fixups to before the system goes multiuser. In consultation with dynamo; cleared by millert.
22 years ago
kill whitespace at EOL; David Krause
22 years ago
Prevent possible races by moving .X11 fixups to before the system goes multiuser. In consultation with dynamo; cleared by millert.
22 years ago
kill whitespace at EOL; David Krause
22 years ago
Prevent possible races by moving .X11 fixups to before the system goes multiuser. In consultation with dynamo; cleared by millert.
22 years ago
test -> [
27 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
Don't source /etc/rc.securelevel if it doesn't exist and be more verbose when upping the securelevel.
28 years ago
remove -w option to sysctl; diffs from Paul de Weerd; ok deraadt@
21 years ago
split rc.local, creating rc.securelevel. Read the comments. If you believe in securelevels, follow them religiously. Problem found by millert...
28 years ago
move motd generation to avoid user races; kashmir@umiacs.umd.edu
28 years ago
Adda a stripcom function to strip comments (and leading whitespace, depending on IFS). This replaces the ed and sed code previously used to do this.
25 years ago
typo; -eq not -ne
25 years ago
Use mktemp(1) for motd /tmp file during boot. This fixes a potential problem noted by hugh@openbsd.org whereby a user could create the well-known /tmp/_motd file and use chflags to make it unremovable. Then at the next reboot the user's /tmp/_motd would end up in the system motd.
25 years ago
move motd generation to avoid user races; kashmir@umiacs.umd.edu
28 years ago
initial import of NetBSD tree
29 years ago
do ldconfig before all ssh; because they need /usr/local/lib for searching
25 years ago
re-order shlib_dirs, now X11R6/lib, local/lib, then custom libdirs concept originally from Joshua Stein <jcs@rt.fm>, thanks! markus@, espie@ ok; based on useful discussion from fgsch@, espie@, heko@
23 years ago
do ldconfig before all ssh; because they need /usr/local/lib for searching
25 years ago
re-order shlib_dirs, now X11R6/lib, local/lib, then custom libdirs concept originally from Joshua Stein <jcs@rt.fm>, thanks! markus@, espie@ ok; based on useful discussion from fgsch@, espie@, heko@
23 years ago
do ldconfig before all ssh; because they need /usr/local/lib for searching
25 years ago
Move vi.recover invocation until after after ldconf is run. Fixes a problem when postfix w/ sasl & tls is used instead of sendmail and perl is dynamically linked anyway. Closes PR 3605. OK deraadt@ and drahn@
21 years ago
move ssh config files to /etc/ssh
23 years ago
build DSA keys automatically at boot time
25 years ago
move ssh config files to /etc/ssh
23 years ago
generate all 3 keys, use -t xxx
24 years ago
move ssh config files to /etc/ssh
23 years ago
generate all 3 keys, use -t xxx
24 years ago
move ssh config files to /etc/ssh
23 years ago
build DSA keys automatically at boot time
25 years ago
move ssh config files to /etc/ssh
23 years ago
print "RSA1" for protocol v1
23 years ago
move ssh config files to /etc/ssh
23 years ago
start ssh as part of base system; if no host key, build it upon boot
25 years ago
generate a isakmpd (host) key; ok henning, deraadt, cedric
20 years ago
initial import of NetBSD tree
29 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
initial import of NetBSD tree
29 years ago
Add the _ripd user and startup stuff. ok claudio@
18 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
from netbsd: start mrouted like routed
29 years ago
add all the goo to hook dvmrp into the system ok derradt@
18 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
add ospfd, ok theo From: Jason Crawford <jasonrcrawford@gmail.com>, whitespace fixes me
20 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
add the goo for bgpd, theo ok
21 years ago
Add ifstated(8) startup bits. OK deraadt@, henning@, mcbride@
18 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
dhcpd: start from rc, controlled by rc.conf; sample config files
26 years ago
use stripcom(), not awk. Spotted by form@. millert@ ok
22 years ago
dhcpd: start from rc, controlled by rc.conf; sample config files
26 years ago
Hook dhcrelay(8) into the startup process. ok henning@
18 years ago
add following IPv6 configs: rtadvd_flags route6d_flags rtsold_flags
25 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
add following IPv6 configs: rtadvd_flags route6d_flags rtsold_flags
25 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
add following IPv6 configs: rtadvd_flags route6d_flags rtsold_flags
25 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
add following IPv6 configs: rtadvd_flags route6d_flags rtsold_flags
25 years ago
add hostapd to rc/rc.conf glue suggested and ok by kettenis@
19 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
initial import of NetBSD tree
29 years ago
control portmap, inetd, and lpd from netstart; idea from tqbf@enteract.com
28 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
change printed line from `printer' to `lpd'; deraadt@ ok.
19 years ago
control portmap, inetd, and lpd from netstart; idea from tqbf@enteract.com
28 years ago
initial import of NetBSD tree
29 years ago
remove redundant comments; noted by mpf; ok deraadt, millert
18 years ago
If /etc/mailer.conf specifies a mailer other than sendmail, there may be no /etc/mail/sendmail.cf so don't include that in the check for whether or not to run /usr/sbin/sendmail. Instead, check for the existence of /etc/mailer.conf. Pointed out by Theo.
24 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
When starting up sendmail in the background, redirect stderr to /dev/null too. Otherwise, if there is a name resolution problem the rc files may finish before sendmail forks into a daemon and it will complain about EBADF on stderr (since init revoked it). From a discussion between Theo and myself.
24 years ago
initial import of NetBSD tree
29 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
Clean-up after httpd
24 years ago
Back-out use of apachectl to start httpd: 1) It's one more dependency in /etc/rc 2) It's one more script that starts from /etc/rc (slowdown) 3) We're only going to be starting httpd in /etc/rc anyway (no other weird operations), so there's no reason to force a change in rc.conf 4) apachectl(8) doesn't mention "startssl" directive 5) Admins can use apachectl to manage httpd regardless of how the latter was started Thanks to fgs@ for yelling about this :-)
24 years ago
httpd is now in the tree, and an rc.conf flag turns it on
27 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
Add option for running ftpd out of rc.
26 years ago
add new ftp-proxy startup bits ok henning beck
19 years ago
Add option for running ftpd out of rc.
26 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
Allow identd to be used w/o inetd.
25 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
control portmap, inetd, and lpd from netstart; idea from tqbf@enteract.com
28 years ago
initial import of NetBSD tree
29 years ago
A better place for sshd; pointed out by millert
21 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
move spamd to a better place; ok henning beck
21 years ago
Allow spamd_flags banner to contain spaces. Resolves PR 3720. ok beck@ millert@
21 years ago
move spamd to a better place; ok henning beck
21 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
move spamd to a better place; ok henning beck
21 years ago
introduce spamlogd_flags to make it easier to e. g. bind spamlogd to an interface; no change in default config from Toni Mueller <support@oeko.net>, ja ja ja ja bob
20 years ago
move spamd to a better place; ok henning beck
21 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
initial import of NetBSD tree
29 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
initial import of NetBSD tree
29 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
initial import of NetBSD tree
29 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
Add support for mopd. -moj
27 years ago
initial import of NetBSD tree
29 years ago
configure mixers late; obsd@enop.org 4970
19 years ago
KerberosV support. Kerberos related cleanup.
23 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
KerberosV support. Kerberos related cleanup.
23 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
KerberosV support. Kerberos related cleanup.
23 years ago
test -> [
27 years ago
move std stuff from rc.local to rc
28 years ago
move cron to the end so users cannot run cron jobs before the system is all the way up
27 years ago
put back recent change (apmd flags) that was accidently removed
26 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
spacing
21 years ago
put back recent change (apmd flags) that was accidently removed
26 years ago
Start on a basic ACPI framework -- does not do much more than read out the ACPI tables into kernel memory and attach ACPI and HPET timers currently. In order to test this code, enabling the devices in GENERIC as well as the ACPI_ENABLE option is needed. This code does not do any thermal control yet, so this should be done with care depending on the platform. In the tree so more people can contribute to making this more fully featured. Ok niklas@ grange@ tedu@
19 years ago
sensorsd startup via rc/rc.conf ok millert@
21 years ago
hotplugd startup. ok deraadt@
20 years ago
add bits for watchdogd startup, PR4540 Michael Knudsen <e@molioner.dk> but I put it at a different place, watchdogd is really not a network daemon
19 years ago
move cron to the end so users cannot run cron jobs before the system is all the way up
27 years ago
put back recent change (apmd flags) that was accidently removed
26 years ago
Carp demotion interlock. Prevents carp from preempting until the system is booted, allowing for daemons to sync with peers before we take over. ok deraadt@ mpf@ moritz@
18 years ago
increase the carp demotion counter by 128 instead of 1 while rc runs. you do not want a machine that is in the middle of rc and does not have all network daemons (that possibly increase the carp demotion counter further) to become master just because the other one lost 2 bgp sessions or similar for other daemons (esp sasyncd) and as such has a demotion count of >1. ok mcbride mpf deraadt
18 years ago
Carp demotion interlock. Prevents carp from preempting until the system is booted, allowing for daemons to sync with peers before we take over. ok deraadt@ mpf@ moritz@
18 years ago
move cron to the end so users cannot run cron jobs before the system is all the way up
27 years ago
initial import of NetBSD tree
29 years ago
add xdm control to /etc/rc.conf; X11 docs need updating
27 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
oops
23 years ago
moused will now co-exist with X
24 years ago
add xdm control to /etc/rc.conf; X11 docs need updating
27 years ago
Make test(1) usage consistent when testing a variable that may not be set. OK deraadt@
19 years ago
Actually use $xdm_flags.
26 years ago
add xdm control to /etc/rc.conf; X11 docs need updating
27 years ago
initial import of NetBSD tree
29 years ago
 
  1. #	$OpenBSD: rc,v 1.292 2006/10/29 18:58:57 norby Exp $
  2. 

  3. # System startup script run by init on autoboot
  4. # or after single-user.
  5. # Output and error are redirected to console by init,
  6. # and the console is the controlling terminal.
  7. 

  8. # Subroutines (have to come first).
  9. 

  10. # Strip comments (and leading/trailing whitespace if IFS is set)
  11. # from a file and spew to stdout
  12. stripcom() {
  13. 	local _file="$1"
  14. 	local _line
  15. 

  16. 	{
  17. 		while read _line ; do
  18. 			_line=${_line%%#*}		# strip comments
  19. 			test -z "$_line" && continue
  20. 			echo $_line
  21. 		done
  22. 	} < $_file
  23. }
  24. 

  25. # Update resource limits when sysctl changes
  26. # Usage: update_limit -X loginconf_name
  27. update_limit() {
  28. 	local _fl="$1"	# ulimit flag
  29. 	local _lc="$2"	# login.conf name
  30. 	local _new _suf
  31. 

  32. 	for _suf in "" -cur -max; do
  33. 		_new=`getcap -f /etc/login.conf -s ${_lc}${_suf} daemon 2>/dev/null`
  34. 		if [ X"$_new" != X"" ]; then
  35. 			if [ X"$_new" = X"infinity" ]; then
  36. 				_new=unlimited
  37. 			fi
  38. 			case "$_suf" in
  39. 			-cur)
  40. 				ulimit -S $_fl $_new
  41. 				;;
  42. 			-max)
  43. 				ulimit -H $_fl $_new
  44. 				;;
  45. 			*)
  46. 				ulimit $_fl $_new
  47. 				return
  48. 				;;
  49. 			esac
  50. 		fi
  51. 	done
  52. }
  53. 

  54. sysctl_conf() {
  55. 	test -s /etc/sysctl.conf || return
  56. 

  57. 	# delete comments and blank lines
  58. 	set -- `stripcom /etc/sysctl.conf`
  59. 	while [ $# -ge 1 ] ; do
  60. 		sysctl $1
  61. 		# update limits if needed
  62. 		case $1 in
  63. 		kern.maxproc=*)
  64. 			update_limit -p maxproc
  65. 			;;
  66. 		kern.maxfiles=*)
  67. 			update_limit -n openfiles
  68. 			;;
  69. 		esac
  70. 		shift
  71. 	done
  72. }
  73. 

  74. mixerctl_conf()
  75. {
  76. 	test -s /etc/mixerctl.conf || return
  77. 

  78. 	# delete comments and blank lines
  79. 	set -- `stripcom /etc/mixerctl.conf`
  80. 	while [ $# -ge 1 ] ; do
  81. 		mixerctl -q $1 > /dev/null 2>&1
  82. 		shift
  83. 	done
  84. }
  85. 

  86. wsconsctl_conf()
  87. {
  88. 	local save_IFS="$IFS"
  89. 

  90. 	test -x /sbin/wsconsctl -a -s /etc/wsconsctl.conf || return
  91. 	# delete comments and blank lines
  92. 	IFS="
  93. "
  94. 	set -- `stripcom /etc/wsconsctl.conf`
  95. 	IFS="$save_IFS"
  96. 	while [ $# -ge 1 ] ; do
  97. 		eval /sbin/wsconsctl -w $1
  98. 		shift
  99. 	done
  100. }
  101. 

  102. # End subroutines
  103. 

  104. stty status '^T'
  105. 

  106. # Set shell to ignore SIGINT (2), but not children;
  107. # shell catches SIGQUIT (3) and returns to single user after fsck.
  108. trap : 2
  109. trap : 3	# shouldn't be needed
  110. 

  111. HOME=/; export HOME
  112. PATH=/sbin:/bin:/usr/sbin:/usr/bin
  113. export PATH
  114. 

  115. if [ X"$1" = X"shutdown" ]; then
  116. 	dd if=/dev/urandom of=/var/db/host.random bs=1024 count=64 >/dev/null 2>&1
  117. 	chmod 600 /var/db/host.random >/dev/null 2>&1
  118. 	if [ $? -eq 0 -a -f /etc/rc.shutdown ]; then
  119. 		echo /etc/rc.shutdown in progress...
  120. 		. /etc/rc.shutdown
  121. 		echo /etc/rc.shutdown complete.
  122. 

  123. 		# bring carp interfaces down gracefully
  124. 		for hn in /etc/hostname.carp[0-9]*; do
  125. 			# Strip off /etc/hostname. prefix
  126. 			if=${hn#/etc/hostname.}
  127. 			test "$if" = "carp[0-9]*" && continue
  128. 

  129. 			ifconfig $if > /dev/null 2>&1
  130. 			if [ $? -eq 0 ]; then
  131. 				ifconfig $if down
  132. 			fi
  133. 		done
  134. 

  135. 		if [ X"${powerdown}" = X"YES" ]; then
  136. 			exit 2
  137. 		fi
  138. 

  139. 	else
  140. 		echo single user: not running /etc/rc.shutdown
  141. 	fi
  142. 	exit 0
  143. fi
  144. 

  145. # Configure ccd devices.
  146. if [ -f /etc/ccd.conf ]; then
  147. 	ccdconfig -C
  148. fi
  149. 

  150. # Configure raid devices.
  151. for dev in 0 1 2 3; do
  152. 	if [ -f /etc/raid$dev.conf ]; then
  153. 		raidctl -c /etc/raid$dev.conf raid$dev
  154. 	fi
  155. done
  156. 

  157. # Check parity on raid devices.
  158. raidctl -P all
  159. 

  160. swapctl -A -t blk
  161. 

  162. if [ -e /fastboot ]; then
  163. 	echo "Fast boot: skipping disk checks."
  164. elif [ X"$1" = X"autoboot" ]; then
  165. 	echo "Automatic boot in progress: starting file system checks."
  166. 	fsck -p
  167. 	case $? in
  168. 	0)
  169. 		;;
  170. 	2)
  171. 		exit 1
  172. 		;;
  173. 	4)
  174. 		echo "Rebooting..."
  175. 		reboot
  176. 		echo "Reboot failed; help!"
  177. 		exit 1
  178. 		;;
  179. 	8)
  180. 		echo "Automatic file system check failed; help!"
  181. 		exit 1
  182. 		;;
  183. 	12)
  184. 		echo "Boot interrupted."
  185. 		exit 1
  186. 		;;
  187. 	130)
  188. 		# interrupt before catcher installed
  189. 		exit 1
  190. 		;;
  191. 	*)
  192. 		echo "Unknown error; help!"
  193. 		exit 1
  194. 		;;
  195. 	esac
  196. fi
  197. 

  198. trap "echo 'Boot interrupted.'; exit 1" 3
  199. 

  200. umount -a >/dev/null 2>&1
  201. mount -a -t nonfs
  202. mount -uw /		# root on nfs requires this, others aren't hurt
  203. rm -f /fastboot		# XXX (root now writeable)
  204. 

  205. # pick up option configuration
  206. . /etc/rc.conf
  207. 

  208. # set flags on ttys.  (do early, in case they use tty for SLIP in netstart)
  209. echo 'setting tty flags'
  210. ttyflags -a
  211. 

  212. if [ -f /sbin/kbd -a -f /etc/kbdtype ]; then
  213. 	kbd `cat /etc/kbdtype`
  214. fi
  215. 

  216. wsconsctl_conf
  217. 

  218. if [ X"${pf}" != X"NO" ]; then
  219. 	RULES="block all"
  220. 	RULES="$RULES\npass on lo0"
  221. 	RULES="$RULES\npass in proto tcp from any to any port 22 keep state"
  222. 	RULES="$RULES\npass out proto { tcp, udp } from any to any port 53 keep state"
  223. 	RULES="$RULES\npass out inet proto icmp all icmp-type echoreq keep state"
  224. 	if ifconfig lo0 inet6 >/dev/null 2>&1; then
  225. 		RULES="$RULES\npass out inet6 proto icmp6 all icmp6-type neighbrsol"
  226. 		RULES="$RULES\npass in inet6 proto icmp6 all icmp6-type neighbradv"
  227. 		RULES="$RULES\npass out inet6 proto icmp6 all icmp6-type routersol"
  228. 		RULES="$RULES\npass in inet6 proto icmp6 all icmp6-type routeradv"
  229. 	fi
  230. 	RULES="$RULES\npass proto { pfsync, carp }"
  231. 	case `sysctl vfs.mounts.nfs 2>/dev/null` in
  232. 	*[1-9]*)
  233. 		# don't kill NFS
  234. 		RULES="scrub in all no-df\n$RULES"
  235. 		RULES="$RULES\npass in proto udp from any port { 111, 2049 } to any"
  236. 		RULES="$RULES\npass out proto udp from any to any port { 111, 2049 }"
  237. 		;;
  238. 	esac
  239. 	echo $RULES | pfctl -f -
  240. 	pfctl -e
  241. fi
  242. 

  243. sysctl_conf
  244. 

  245. # set hostname, turn on network
  246. echo 'starting network'
  247. ifconfig -g carp carpdemote 128
  248. if [ -f /etc/resolv.conf.save ]; then
  249. 	mv /etc/resolv.conf.save /etc/resolv.conf
  250. 	touch /etc/resolv.conf
  251. fi
  252. . /etc/netstart
  253. 

  254. if [ X"${pf}" != X"NO" ]; then
  255. 	if [ -f ${pf_rules} ]; then
  256. 		pfctl -f ${pf_rules}
  257. 	fi
  258. fi
  259. 

  260. mount -s /usr >/dev/null 2>&1
  261. mount -s /var >/dev/null 2>&1
  262. 

  263. # if there's no /var/db/host.random, make one through /dev/urandom
  264. if [ ! -f /var/db/host.random ]; then
  265. 	dd if=/dev/urandom of=/var/db/host.random bs=1024 count=64 \
  266. 		>/dev/null 2>&1
  267. 	chmod 600 /var/db/host.random >/dev/null 2>&1
  268. else
  269. 	dd if=/var/db/host.random of=/dev/urandom bs=1024 count=64 \
  270. 	    > /dev/null 2>&1
  271. 	dd if=/var/db/host.random of=/dev/arandom bs=1024 count=64 \
  272. 	    > /dev/null 2>&1
  273. fi
  274. 

  275. # reset seed file, so that if a shutdown-less reboot occurs,
  276. # the next seed is not a repeat
  277. dd if=/dev/urandom of=/var/db/host.random bs=1024 count=64 \
  278.     > /dev/null 2>&1
  279. 

  280. # clean up left-over files
  281. rm -f /etc/nologin
  282. rm -f /var/spool/lock/LCK.*
  283. rm -f /var/spool/uucp/STST/*
  284. (cd /var/run && { rm -rf -- *; install -c -m 664 -g utmp /dev/null utmp; })
  285. (cd /var/authpf && rm -rf -- *)
  286. 

  287. # save a copy of the boot messages
  288. dmesg >/var/run/dmesg.boot
  289. 

  290. echo 'starting system logger'
  291. rm -f /dev/log
  292. if [ X"${named_flags}" != X"NO" ]; then
  293. 	rm -f /var/named/dev/log
  294. 	syslogd_flags="${syslogd_flags} -a /var/named/dev/log"
  295. fi
  296. if [ -d /var/empty ]; then
  297. 	rm -f /var/empty/dev/log
  298. 	mkdir -p -m 0555 /var/empty/dev
  299. 	syslogd_flags="${syslogd_flags} -a /var/empty/dev/log"
  300. fi
  301. syslogd ${syslogd_flags}
  302. 

  303. if [ X"${pf}" != X"NO" -a X"${pflogd_flags}" != X"NO" ]; then
  304. 	if ifconfig pflog0 >/dev/null 2>&1; then
  305. 		ifconfig pflog0 up
  306. 		pflogd ${pflogd_flags}
  307. 	fi
  308. fi
  309. 

  310. if [ X"${named_flags}" != X"NO" ]; then
  311. 	if ! cmp -s /etc/rndc.key /var/named/etc/rndc.key ; then
  312. 		echo -n "rndc-confgen: generating new shared secret... "
  313. 		if /usr/sbin/rndc-confgen -a -t /var/named >/dev/null 2>&1; then
  314. 			chmod 0640 /var/named/etc/rndc.key >/dev/null 2>&1
  315. 			echo done.
  316. 		else
  317. 			echo failed.
  318. 		fi
  319. 	fi
  320. 

  321. 	echo 'starting named';		named $named_flags
  322. fi
  323. 

  324. if [ X"${isakmpd_flags}" != X"NO" ]; then
  325. 	if [ X"${sasyncd_flags}" != X"NO" ]; then
  326. 		isakmpd_flags="-S ${isakmpd_flags}"
  327. 	fi
  328. 	echo 'starting isakmpd';	isakmpd ${isakmpd_flags}
  329. fi
  330. 

  331. if [ X"${sasyncd_flags}" != X"NO" ]; then
  332. 	echo 'starting sasyncd';	sasyncd ${sasyncd_flags}
  333. fi
  334. 

  335. if [ X"${ipsec}" != X"NO" ]; then
  336. 	if [ -f ${ipsec_rules} ]; then
  337. 		ipsecctl -f ${ipsec_rules}
  338. 	fi
  339. fi
  340. 

  341. echo -n 'starting initial daemons:'
  342. 

  343. if [ X"${portmap}" = X"YES" ]; then
  344. 	echo -n ' portmap';		portmap
  345. fi
  346. 

  347. if [ X`domainname` != X ]; then
  348. 	if [ -d /var/yp/`domainname` ]; then
  349. 		# YP server capabilities needed...
  350. 		echo -n ' ypserv';		ypserv ${ypserv_flags}
  351. 		#echo -n ' ypxfrd';		ypxfrd
  352. 	fi
  353. 

  354. 	if [ -d /var/yp/binding ]; then
  355. 		# YP client capabilities needed...
  356. 		echo -n ' ypbind';		ypbind
  357. 	fi
  358. 

  359. 	if [ X"${yppasswdd_flags}" != X"NO" -a -d /var/yp/`domainname` ]; then
  360. 		# if we are the master server, run rpc.yppasswdd
  361. 		_host1=`ypwhich -m passwd 2> /dev/null`
  362. 		_host2=`hostname`
  363. 		if [ `grep '^lookup' /etc/resolv.conf | grep yp | wc -c` -ne 0 ]; then
  364. 			_host1=`ypmatch $_host1 hosts | cut -d'	' -f2`
  365. 			_host2=`ypmatch $_host2 hosts | cut -d'	' -f2 | head -1`
  366. 		else
  367. 			_host1=`echo $_host1 | nslookup | grep '^Name: ' | \
  368. 			    sed -e 's/^Name:    //'`
  369. 			_host2=`echo $_host2 | nslookup | grep '^Name: ' | \
  370. 			    sed -e 's/^Name:    //'`
  371. 		fi
  372. 		if [ "$_host2" = "$_host1" ]; then
  373. 			echo -n ' rpc.yppasswdd'
  374. 			rpc.yppasswdd ${yppasswdd_flags}
  375. 		fi
  376. 	fi
  377. fi
  378. 

  379. if [ X"${nfs_server}" = X"YES" -a -s /etc/exports -a \
  380.     `sed -e '/^#/d' < /etc/exports | wc -l` -ne 0 ]; then
  381. 	rm -f /var/db/mountdtab
  382. 	echo -n > /var/db/mountdtab
  383. 	echo -n ' mountd';		mountd
  384. 	echo -n ' nfsd';		nfsd ${nfsd_flags}
  385. 	if [ X"${lockd}" = X"YES" ]; then
  386. 		echo -n ' rpc.lockd';	rpc.lockd
  387. 	fi
  388. fi
  389. 

  390. if [ X"${amd}" = X"YES" -a -e ${amd_master} ]; then
  391. 	echo -n ' amd'
  392. 	(cd /etc/amd; amd -l syslog -x error,noinfo,nostats -p \
  393. 	    -a ${amd_dir} `cat ${amd_master}` > /var/run/amd.pid )
  394. fi
  395. 

  396. # run rdate before timed/ntpd
  397. if [ X"${rdate_flags}" != X"NO" ]; then
  398. 	echo -n ' rdate';	rdate -s ${rdate_flags}
  399. fi
  400. 

  401. if [ X"${timed_flags}" != X"NO" ]; then
  402. 	echo -n ' timed'; timed $timed_flags
  403. fi
  404. 

  405. if [ X"${ntpd_flags}" != X"NO" ]; then
  406. 	echo -n ' ntpd'; ntpd $ntpd_flags
  407. fi
  408. echo '.'
  409. 

  410. mount -a
  411. 

  412. swapctl -A -t noblk
  413. 

  414. # /var/crash should be a directory or a symbolic link
  415. # to the crash directory if core dumps are to be saved.
  416. if [ -d /var/crash ]; then
  417. 	savecore ${savecore_flags} /var/crash
  418. fi
  419. 

  420. if [ X"${afs}" = X"YES" -a -c /dev/xfs0 ]; then
  421. 	echo -n 'mounting afs:'
  422. 	mkdir -p -m 0755 /afs
  423. 	mount -t xfs /dev/xfs0 /afs
  424. 	/usr/libexec/afsd ${afsd_flags}
  425. 	echo ' done.'
  426. fi
  427. 

  428. if [ X"${check_quotas}" = X"YES" ]; then
  429. 	echo -n 'checking quotas:'
  430. 	quotacheck -a
  431. 	echo ' done.'
  432. 	quotaon -a
  433. fi
  434. 

  435. # build ps databases
  436. echo -n 'building ps databases:'
  437. echo -n " kvm"
  438. kvm_mkdb
  439. echo -n " dev"
  440. dev_mkdb
  441. echo "."
  442. 

  443. chmod 666 /dev/tty[pqrstuvwxyzPQRST]*
  444. chown root:wheel /dev/tty[pqrstuvwxyzPQRST]*
  445. 

  446. # check the password temp/lock file
  447. if [ -f /etc/ptmp ]; then
  448. 	logger -s -p auth.err \
  449. 	'password file may be incorrect -- /etc/ptmp exists'
  450. fi
  451. 

  452. echo clearing /tmp
  453. 

  454. # prune quickly with one rm, then use find to clean up /tmp/[lq]*
  455. # (not needed with mfs /tmp, but doesn't hurt there...)
  456. (cd /tmp && rm -rf [a-km-pr-zA-Z]* &&
  457.     find . ! -name . ! -name lost+found ! -name quota.user \
  458. 	! -name quota.group -execdir rm -rf -- {} \; -type d -prune)
  459. 

  460. # create Unix sockets directories for X if needed and make sure they have
  461. # correct permissions
  462. if [ -d /usr/X11R6/lib ]; then
  463. 	for d in /tmp/.X11-unix /tmp/.ICE-unix ; do
  464. 		if [ -d $d ]; then
  465. 			if [ `ls -ld $d | cut -d' ' -f4` != root ]; then
  466. 				chown root $d
  467. 			fi
  468. 			if [ `ls -ld $d | cut -d' ' -f1` != drwxrwxrwt ]; then
  469. 				chmod 1777 $d
  470. 			fi
  471. 		elif [ -e $d ]; then
  472. 			echo "Error: $d exists and isn't a directory."
  473. 		else
  474. 			mkdir -m 1777 $d
  475. 		fi
  476. 	done
  477. fi
  478. 

  479. [ -f /etc/rc.securelevel ] && . /etc/rc.securelevel
  480. if [ X"${securelevel}" != X"" ]; then
  481. 	echo -n 'setting kernel security level: '
  482. 	sysctl kern.securelevel=${securelevel}
  483. fi
  484. 

  485. # patch /etc/motd
  486. if [ ! -f /etc/motd ]; then
  487. 	install -c -o root -g wheel -m 664 /dev/null /etc/motd
  488. fi
  489. T=`mktemp /tmp/_motd.XXXXXXXXXX`
  490. if [ $? -eq 0 ]; then
  491. 	sysctl -n kern.version | sed 1q > $T
  492. 	echo "" >> $T
  493. 	sed '1,/^$/d' < /etc/motd >> $T
  494. 	cmp -s $T /etc/motd || cp $T /etc/motd
  495. 	rm -f $T
  496. fi
  497. 

  498. if [ -f /var/account/acct ]; then
  499. 	echo 'turning on accounting';	accton /var/account/acct
  500. fi
  501. 

  502. if [ -f /sbin/ldconfig ]; then
  503. 	echo 'creating runtime link editor directory cache.'
  504. 	if [ -d /usr/local/lib ]; then
  505. 		shlib_dirs="/usr/local/lib $shlib_dirs"
  506. 	fi
  507. 	if [ -d /usr/X11R6/lib ]; then
  508. 		shlib_dirs="/usr/X11R6/lib $shlib_dirs"
  509. 	fi
  510. 	ldconfig $shlib_dirs
  511. fi
  512. 

  513. if [ -x /usr/libexec/vi.recover ]; then
  514. 	echo 'preserving editor files';	/usr/libexec/vi.recover
  515. fi
  516. 

  517. if [ ! -f /etc/ssh/ssh_host_dsa_key ]; then
  518. 	echo -n "ssh-keygen: generating new DSA host key... "
  519. 	if /usr/bin/ssh-keygen -q -t dsa -f /etc/ssh/ssh_host_dsa_key -N ''; then
  520. 		echo done.
  521. 	else
  522. 		echo failed.
  523. 	fi
  524. fi
  525. if [ ! -f /etc/ssh/ssh_host_rsa_key ]; then
  526. 	echo -n "ssh-keygen: generating new RSA host key... "
  527. 	if /usr/bin/ssh-keygen -q -t rsa -f /etc/ssh/ssh_host_rsa_key -N ''; then
  528. 		echo done.
  529. 	else
  530. 		echo failed.
  531. 	fi
  532. fi
  533. if [ ! -f /etc/ssh/ssh_host_key ]; then
  534. 	echo -n "ssh-keygen: generating new RSA1 host key... "
  535. 	if /usr/bin/ssh-keygen -q -t rsa1 -f /etc/ssh/ssh_host_key -N ''; then
  536. 		echo done.
  537. 	else
  538. 		echo failed.
  539. 	fi
  540. fi
  541. 

  542. if [ ! -f /etc/isakmpd/private/local.key ]; then
  543. 	echo -n "openssl: generating new isakmpd RSA key... "
  544. 	if /usr/sbin/openssl genrsa -out /etc/isakmpd/private/local.key 1024 \
  545. 	    > /dev/null 2>&1; then
  546. 		chmod 600 /etc/isakmpd/private/local.key
  547. 		openssl rsa -out /etc/isakmpd/private/local.pub \
  548. 		    -in /etc/isakmpd/private/local.key -pubout > /dev/null 2>&1
  549. 		echo done.
  550. 	else
  551. 		echo failed.
  552. 	fi
  553. fi
  554. 

  555. echo -n starting network daemons:
  556. 

  557. if [ X"${routed_flags}" != X"NO" ]; then
  558. 	echo -n ' routed';		routed $routed_flags
  559. fi
  560. 

  561. if [ X"${ripd_flags}" != X"NO" ]; then
  562. 	echo -n ' ripd';		/usr/sbin/ripd $ripd_flags
  563. fi
  564. 

  565. if [ X"${mrouted_flags}" != X"NO" ]; then
  566. 	echo -n ' mrouted';		mrouted $mrouted_flags
  567. fi
  568. 

  569. if [ X"${dvmrpd_flags}" != X"NO" ]; then
  570. 	echo -n ' dvmrpd';		/usr/sbin/dvmrpd $dvmrpd_flags
  571. fi
  572. 

  573. if [ X"${ospfd_flags}" != X"NO" ]; then
  574. 	echo -n ' ospfd';		/usr/sbin/ospfd $ospfd_flags
  575. fi
  576. 

  577. if [ X"${bgpd_flags}" != X"NO" ]; then
  578. 	echo -n ' bgpd';		/usr/sbin/bgpd $bgpd_flags
  579. fi
  580. 

  581. if [ X"${ifstated_flags}" != X"NO" ]; then
  582. 	echo -n ' ifstated';		ifstated $ifstated_flags
  583. fi
  584. 

  585. if [ X"${dhcpd_flags}" != X"NO" -a -f /etc/dhcpd.conf ]; then
  586. 	touch /var/db/dhcpd.leases
  587. 	if [ -f /etc/dhcpd.interfaces ]; then
  588. 		dhcpd_ifs=`stripcom /etc/dhcpd.interfaces`
  589. 	fi
  590. 	echo -n ' dhcpd';	/usr/sbin/dhcpd ${dhcpd_flags} ${dhcpd_ifs}
  591. fi
  592. 

  593. if [ X"${dhcrelay_flags}" != X"NO" ]; then
  594. 	echo -n ' dhcrelay';		/usr/sbin/dhcrelay $dhcrelay_flags
  595. fi
  596. 

  597. if ifconfig lo0 inet6 >/dev/null 2>&1; then
  598. 	fw=`sysctl -n net.inet6.ip6.forwarding`
  599. 	if [ X"${fw}" = X"0" ]; then
  600. 		if [ X"${rtsold_flags}" != X"NO" ]; then
  601. 			echo -n ' rtsold'
  602. 			/usr/sbin/rtsold ${rtsold_flags}
  603. 		fi
  604. 	else
  605. 		if [ X"${route6d_flags}" != X"NO" ]; then
  606. 			echo -n ' route6d'
  607. 			/usr/sbin/route6d ${route6d_flags}
  608. 		fi
  609. 		if [ X"${rtadvd_flags}" != X"NO" ]; then
  610. 			echo -n ' rtadvd'
  611. 			/usr/sbin/rtadvd ${rtadvd_flags}
  612. 		fi
  613. 	fi
  614. fi
  615. 

  616. if [ X"${hostapd_flags}" != X"NO" ]; then
  617. 	echo -n ' hostapd';		/usr/sbin/hostapd ${hostapd_flags};
  618. fi
  619. 

  620. if [ X"${rwhod}" = X"YES" ]; then
  621. 	echo -n ' rwhod';		rwhod
  622. fi
  623. 

  624. 

  625. if [ X"${lpd_flags}" != X"NO" ]; then
  626. 	echo -n ' lpd';			lpd ${lpd_flags}
  627. fi
  628. 

  629. # We call sendmail with a full path so that SIGHUP works.
  630. # Note that /usr/sbin/sendmail may actually call a
  631. # mailer other than sendmail, depending on /etc/mailer.conf.
  632. if [ X"${sendmail_flags}" != X"NO" -a -s /etc/mailer.conf ]; then
  633. 	echo -n ' sendmail';		( /usr/sbin/sendmail ${sendmail_flags} >/dev/null 2>&1 & )
  634. fi
  635. 

  636. if [ X"${httpd_flags}" != X"NO" ]; then
  637. 	# Clean up left-over httpd locks
  638. 	rm -f /var/www/logs/{ssl_mutex,httpd.lock,accept.lock}.*
  639. 	echo -n ' httpd';		/usr/sbin/httpd ${httpd_flags}
  640. fi
  641. 

  642. if [ X"${ftpd_flags}" != X"NO" ]; then
  643. 	echo -n ' ftpd';		/usr/libexec/ftpd ${ftpd_flags}
  644. fi
  645. 

  646. if [ X"${ftpproxy_flags}" != X"NO" ]; then
  647. 	echo -n ' ftp-proxy';		/usr/sbin/ftp-proxy ${ftpproxy_flags}
  648. fi
  649. 

  650. if [ X"${identd_flags}" != X"NO" ]; then
  651. 	echo -n ' identd';		/usr/libexec/identd ${identd_flags}
  652. fi
  653. 

  654. if [ X"${inetd}" = X"YES" -a -e /etc/inetd.conf ]; then
  655. 	echo -n ' inetd';		inetd
  656. fi
  657. 

  658. if [ X"${sshd_flags}" != X"NO" ]; then
  659. 	echo -n ' sshd';		/usr/sbin/sshd ${sshd_flags};
  660. fi
  661. 

  662. if [ X"${spamd_flags}" != X"NO" ]; then
  663. 	if [ X"${spamd_grey}" != X"NO" ]; then
  664. 		spamd_flags="${spamd_flags} -g"
  665. 	fi
  666. 	echo -n ' spamd';		eval /usr/libexec/spamd ${spamd_flags}
  667. 	/usr/libexec/spamd-setup
  668. 	if [ X"${spamd_grey}" != X"NO" ]; then
  669. 		echo -n ' spamlogd'
  670. 		/usr/libexec/spamlogd ${spamlogd_flags}
  671. 	fi
  672. fi
  673. 

  674. if [ X"${rarpd_flags}" != X"NO" -a -s /etc/ethers ]; then
  675. 	echo -n ' rarpd';		rarpd ${rarpd_flags}
  676. fi
  677. 

  678. if [ X"${bootparamd_flags}" != X"NO" -a -s /etc/bootparams ]; then
  679. 	echo -n ' rpc.bootparamd';	rpc.bootparamd ${bootparamd_flags}
  680. fi
  681. 

  682. if [ X"${rbootd_flags}" != X"NO" -a -s /etc/rbootd.conf ]; then
  683. 	echo -n ' rbootd';		rbootd ${rbootd_flags}
  684. fi
  685. 

  686. if [ X"${mopd_flags}" != X"NO" -a -d /tftpboot/mop ]; then
  687. 	echo -n ' mopd';		mopd ${mopd_flags}
  688. fi
  689. 

  690. echo '.'
  691. 

  692. mixerctl_conf
  693. 

  694. # KerberosV master KDC
  695. if [ X"${krb5_master_kdc}" = X"YES" ]; then
  696. 	echo 'KerberosV master KDC'
  697. 	/usr/libexec/kdc &
  698. 	/usr/libexec/kadmind &
  699. 	/usr/libexec/kpasswdd &
  700. fi
  701. 

  702. # KerberosV slave KDC
  703. if [ X"${krb5_slave_kdc}" = X"YES" ]; then
  704. 	echo 'KerberosV slave KDC'
  705. 	/usr/libexec/kdc &
  706. 	# Remember to enable hpropd in inetd.conf
  707. fi
  708. 

  709. [ -f /etc/rc.local ] && . /etc/rc.local
  710. 

  711. echo -n standard daemons:
  712. 

  713. if [ X"${apmd_flags}" != X"NO" -a -x /usr/sbin/apmd ]; then
  714. 	echo -n ' apmd';	/usr/sbin/apmd ${apmd_flags}
  715. fi
  716. 

  717. if [ X"${acpid_flags}" != X"NO" -a -x /usr/sbin/acpid ]; then
  718. 	echo -n ' acpid';	/usr/sbin/acpid ${acpid_flags}
  719. fi
  720. 

  721. if [ X"${sensorsd_flags}" != X"NO" ]; then
  722. 	echo -n ' sensorsd';	/usr/sbin/sensorsd ${sensorsd_flags}
  723. fi
  724. 

  725. if [ X"${hotplugd_flags}" != X"NO" -a -x /usr/sbin/hotplugd ]; then
  726. 	echo -n ' hotplugd';	/usr/sbin/hotplugd ${hotplugd_flags}
  727. fi
  728. 

  729. if [ X"${watchdogd_flags}" != X"NO" -a -x /usr/sbin/watchdogd ]; then
  730. 	echo -n ' watchdogd';	/usr/sbin/watchdogd ${watchdogd_flags}
  731. fi
  732. 

  733. echo -n ' cron';		cron
  734. 

  735. # disable carp interlock
  736. ifconfig -g carp -carpdemote 128
  737. 

  738. echo '.'
  739. 

  740. date
  741. 

  742. if [ X"${wsmoused_flags}" != X"NO" -a -x /usr/sbin/wsmoused ]; then
  743. 	echo 'starting wsmoused...';	/usr/sbin/wsmoused ${wsmoused_flags}
  744. fi
  745. 

  746. # Alternatively, on some architectures, xdm may be started in /etc/ttys.
  747. if [ X"${xdm_flags}" != X"NO" ]; then
  748. 	echo 'starting xdm...';		/usr/X11R6/bin/xdm ${xdm_flags}
  749. fi
  750. 

  751. exit 0