mirror of
https://gitlab.com/chrony/chrony.git
synced 2026-03-11 00:59:38 -04:00
4ddc6b334d
Add OpenBSD support, including pledge(2) support by implementing SYS_EnableSystemCallFilter(). This commit depends on the addition of AdjustFreq() privops and the addtion of invoking SYS_EnableSystemCallFilter() from PRV_StartHelper(). Only system call filter levels on/off' are supported. Setting level to 0 disables the filter and setting it to 1 enables it. Update the documentation to reflect that OpenBSD supports: - the SCHED_FIFO real-time scheduler (option -P) - locking chronyd into memory (option -m) - reload sample history of servers and ref clocks (option -r) - forking into two process when run as non-root user (option -u) - maxdrift/maxslewrate of 100000.
162 lines
4.2 KiB
C
162 lines
4.2 KiB
C
/*
|
|
chronyd/chronyc - Programs for keeping computer clocks accurate.
|
|
|
|
**********************************************************************
|
|
* Copyright (C) Richard P. Curnow 1997-2002
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of version 2 of the GNU General Public License as
|
|
* published by the Free Software Foundation.
|
|
*
|
|
* This program is distributed in the hope that it will be useful, but
|
|
* WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License along
|
|
* with this program; if not, write to the Free Software Foundation, Inc.,
|
|
* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
|
|
*
|
|
**********************************************************************
|
|
|
|
=======================================================================
|
|
|
|
This file contains all the conditionally compiled bits that pull
|
|
in the various operating-system specific modules
|
|
*/
|
|
|
|
#include "config.h"
|
|
|
|
#include "sysincl.h"
|
|
|
|
#include "sys.h"
|
|
#include "sys_null.h"
|
|
#include "logging.h"
|
|
|
|
#if defined(LINUX)
|
|
#include "sys_linux.h"
|
|
#include "sys_posix.h"
|
|
#elif defined(SOLARIS)
|
|
#include "sys_solaris.h"
|
|
#include "sys_posix.h"
|
|
#elif defined(NETBSD) || defined(FREEBSD)
|
|
#include "sys_netbsd.h"
|
|
#include "sys_posix.h"
|
|
#elif defined(OPENBSD)
|
|
#include "sys_openbsd.h"
|
|
#include "sys_posix.h"
|
|
#elif defined(MACOSX)
|
|
#include "sys_macosx.h"
|
|
#endif
|
|
|
|
/* ================================================== */
|
|
|
|
static int null_driver;
|
|
|
|
/* ================================================== */
|
|
|
|
void
|
|
SYS_Initialise(int clock_control)
|
|
{
|
|
null_driver = !clock_control;
|
|
if (null_driver) {
|
|
SYS_Null_Initialise();
|
|
return;
|
|
}
|
|
#if defined(LINUX)
|
|
SYS_Linux_Initialise();
|
|
#elif defined(SOLARIS)
|
|
SYS_Solaris_Initialise();
|
|
#elif defined(NETBSD) || defined(FREEBSD)
|
|
SYS_NetBSD_Initialise();
|
|
#elif defined(OPENBSD)
|
|
SYS_OpenBSD_Initialise();
|
|
#elif defined(MACOSX)
|
|
SYS_MacOSX_Initialise();
|
|
#else
|
|
#error Unknown system
|
|
#endif
|
|
}
|
|
|
|
/* ================================================== */
|
|
|
|
void
|
|
SYS_Finalise(void)
|
|
{
|
|
if (null_driver) {
|
|
SYS_Null_Finalise();
|
|
return;
|
|
}
|
|
#if defined(LINUX)
|
|
SYS_Linux_Finalise();
|
|
#elif defined(SOLARIS)
|
|
SYS_Solaris_Finalise();
|
|
#elif defined(NETBSD) || defined(FREEBSD)
|
|
SYS_NetBSD_Finalise();
|
|
#elif defined(OPENBSD)
|
|
SYS_OpenBSD_Finalise();
|
|
#elif defined(MACOSX)
|
|
SYS_MacOSX_Finalise();
|
|
#else
|
|
#error Unknown system
|
|
#endif
|
|
}
|
|
|
|
/* ================================================== */
|
|
|
|
void SYS_DropRoot(uid_t uid, gid_t gid, SYS_ProcessContext context)
|
|
{
|
|
#if defined(LINUX) && defined (FEAT_PRIVDROP)
|
|
SYS_Linux_DropRoot(uid, gid, context, !null_driver);
|
|
#elif defined(SOLARIS) && defined(FEAT_PRIVDROP)
|
|
SYS_Solaris_DropRoot(uid, gid, context);
|
|
#elif (defined(NETBSD) || defined(FREEBSD)) && defined(FEAT_PRIVDROP)
|
|
SYS_NetBSD_DropRoot(uid, gid, context, !null_driver);
|
|
#elif defined(OPENBSD) && defined(FEAT_PRIVDROP)
|
|
SYS_OpenBSD_DropRoot(uid, gid, context, !null_driver);
|
|
#elif defined(MACOSX) && defined(FEAT_PRIVDROP)
|
|
SYS_MacOSX_DropRoot(uid, gid, context);
|
|
#else
|
|
LOG_FATAL("dropping root privileges not supported");
|
|
#endif
|
|
}
|
|
|
|
/* ================================================== */
|
|
|
|
void SYS_EnableSystemCallFilter(int level, SYS_ProcessContext context)
|
|
{
|
|
#if defined(LINUX) && defined(FEAT_SCFILTER)
|
|
SYS_Linux_EnableSystemCallFilter(level, context);
|
|
#elif defined(OPENBSD) && defined(FEAT_SCFILTER)
|
|
SYS_OpenBSD_EnableSystemCallFilter(level, context);
|
|
#else
|
|
LOG_FATAL("system call filter not supported");
|
|
#endif
|
|
}
|
|
|
|
/* ================================================== */
|
|
|
|
void SYS_SetScheduler(int SchedPriority)
|
|
{
|
|
#if defined(MACOSX)
|
|
SYS_MacOSX_SetScheduler(SchedPriority);
|
|
#elif defined(HAVE_PTHREAD_SETSCHEDPARAM)
|
|
SYS_Posix_SetScheduler(SchedPriority);
|
|
#else
|
|
LOG_FATAL("scheduler priority setting not supported");
|
|
#endif
|
|
}
|
|
|
|
/* ================================================== */
|
|
|
|
void SYS_LockMemory(void)
|
|
{
|
|
#if defined(HAVE_MLOCKALL)
|
|
SYS_Posix_MemLockAll();
|
|
#else
|
|
LOG_FATAL("memory locking not supported");
|
|
#endif
|
|
}
|
|
|
|
/* ================================================== */
|