proxmox-mirrors/mirror_frr
1
0
Fork 0
mirror of https://git.proxmox.com/git/mirror_frr synced 2025-06-05 02:39:52 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
05b15adcc2
mirror_frr/ldpd
History
Renato Westphal 316d0ae57b ldpd: remove pledge calls 
In OpenBSD pledge is a mitigation mechanism used to restrict the syscalls
a program can use, enforcing its correct behavior.

In this port of OpenBSD's ldpd(8), it's hard to run under the same
tight pledge promises because of libfrr and additional components we
introduced, like a zclient in lde. Since ldpd is already privsep'ed,
removing the pledge calls shouldn't be a big compromise security-wise.

Signed-off-by: Renato Westphal <renato@opensourcerouting.org>
2017-06-07 10:32:38 -03:00
..
.gitignore build/ldpd: auto-generate ldp_vty_cmds.c from ldp_vty.xml 2017-01-03 22:03:28 -02:00
accept.c ldpd: adapt the code for Quagga 2016-09-23 09:31:09 -04:00
address.c ldpd: provide more detailed information in some show commands 2017-03-20 21:42:14 -03:00
adjacency.c ldpd: fix bug when changing the transport address 2017-06-05 12:24:23 -03:00
control.c ldpd: simplify initialization of the child processes 2017-06-05 12:23:02 -03:00
control.h ldpd: simplify initialization of the child processes 2017-06-05 12:23:02 -03:00
hello.c ldpd: provide more detailed information in some show commands 2017-03-20 21:42:14 -03:00
init.c ldpd: provide more detailed information in some show commands 2017-03-20 21:42:14 -03:00
interface.c ldpd: fix bug when changing the transport address 2017-06-05 12:24:23 -03:00
keepalive.c ldpd: provide more detailed information in some show commands 2017-03-20 21:42:14 -03:00
l2vpn.c ldpd: respect link-detect configuration 2017-05-01 11:33:23 -03:00
labelmapping.c ldpd: provide more detailed information in some show commands 2017-03-20 21:42:14 -03:00
lde_lib.c ldpd: schedule the sending of label messages when necessary 2017-06-05 12:24:11 -03:00
lde.c ldpd: remove pledge calls 2017-06-07 10:32:38 -03:00
lde.h ldpd: schedule the sending of label messages when necessary 2017-06-05 12:24:11 -03:00
ldp_debug.c ldpd: use red-black trees to store 'iface' elements 2017-01-03 22:07:13 -02:00
ldp_debug.h ldpd: create helper functions to log sent/received messages 2017-03-03 17:50:22 -03:00
ldp_vty_conf.c ldpd: do not consume vty_conf when updating the configuration 2017-03-31 13:51:53 -03:00
ldp_vty_exec.c ldpd: minor changes in the output of some show commands 2017-06-05 12:23:41 -03:00
ldp_vty.h ldpd: remove the interface vty node 2017-03-31 12:57:25 -03:00
ldp_vty.xml ldpd: add commands to show sent/rcvd capabilities 2017-03-20 21:42:14 -03:00
ldp_zebra.c ldpd: improve ldp_zebra_read_route() 2017-06-05 12:24:05 -03:00
ldp.h ldpd: send VPLS MAC withdrawals 2017-03-03 17:50:22 -03:00
ldpd.c ldpd: fix bug in pseudowire control-word negotiation 2017-06-05 12:24:36 -03:00
ldpd.conf.sample ldpd: adapt the code for Quagga 2016-09-23 09:31:09 -04:00
ldpd.h ldpd: simplify initialization of the child processes 2017-06-05 12:23:02 -03:00
ldpe.c ldpd: remove pledge calls 2017-06-07 10:32:38 -03:00
ldpe.h ldpd: use synchronous channels for sending log messages 2017-06-05 12:23:33 -03:00
log.c ldpd: use synchronous channels for sending log messages 2017-06-05 12:23:33 -03:00
log.h ldpd: split log.c into two files 2017-06-05 12:05:22 -03:00
logmsg.c ldpd: split log.c into two files 2017-06-05 12:05:22 -03:00
Makefile.am ldpd: split log.c into two files 2017-06-05 12:05:22 -03:00
neighbor.c ldpd: provide more detailed information in some show commands 2017-03-20 21:42:14 -03:00
notification.c ldpd: accept notifications during the session establishment process 2017-06-05 12:23:48 -03:00
packet.c ldpd: allow targeted neighbors over any interface 2017-06-05 12:24:17 -03:00
pfkey.c ldpd: provide more detailed information in some show commands 2017-03-20 21:42:14 -03:00
socket.c ldpd: add missing privilege dropping on error path 2017-01-03 22:03:28 -02:00
util.c ldpd: adapt the code for Quagga 2016-09-23 09:31:09 -04:00