Mercurial > dropbear

comparison configure @ 1861:2b3a8026a6ce

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Add re-exec for server This allows ASLR to re-randomize the address space for every connection, preventing some vulnerabilities from being exploitable by repeated probing. Overhead (memory and time) is yet to be confirmed. At present this is only enabled on Linux. Other BSD platforms with fexecve() would probably also work though have not been tested.
author Matt Johnston <matt@ucc.asn.au>
date Sun, 30 Jan 2022 10:14:56 +0800
parents d34f50b7b9fd
children
comparison
equal deleted inserted replaced
1860:5001e9c5641f 1861:2b3a8026a6ce
5606 for ac_header in netinet/in.h netinet/tcp.h \ 5606 for ac_header in netinet/in.h netinet/tcp.h \
5607 crypt.h \ 5607 crypt.h \
5608 pty.h libutil.h libgen.h inttypes.h stropts.h utmp.h \ 5608 pty.h libutil.h libgen.h inttypes.h stropts.h utmp.h \
5609 utmpx.h lastlog.h paths.h util.h netdb.h security/pam_appl.h \ 5609 utmpx.h lastlog.h paths.h util.h netdb.h security/pam_appl.h \
5610 pam/pam_appl.h netinet/in_systm.h sys/uio.h linux/pkt_sched.h \ 5610 pam/pam_appl.h netinet/in_systm.h sys/uio.h linux/pkt_sched.h \
5611 sys/random.h 5611 sys/random.h sys/prctl.h
5612 do : 5612 do :
5613 as_ac_Header=`$as_echo "ac_cv_header_$ac_header" | $as_tr_sh` 5613 as_ac_Header=`$as_echo "ac_cv_header_$ac_header" | $as_tr_sh`
5614 ac_fn_c_check_header_mongrel "$LINENO" "$ac_header" "$as_ac_Header" "$ac_includes_default" 5614 ac_fn_c_check_header_mongrel "$LINENO" "$ac_header" "$as_ac_Header" "$ac_includes_default"
5615 if eval test \"x\$"$as_ac_Header"\" = x"yes"; then : 5615 if eval test \"x\$"$as_ac_Header"\" = x"yes"; then :
5616 cat >>confdefs.h <<_ACEOF 5616 cat >>confdefs.h <<_ACEOF
7350 _ACEOF 7350 _ACEOF
7351 7351
7352 fi 7352 fi
7353 done 7353 done
7354 7354
7355 for ac_func in freeaddrinfo getnameinfo fork writev getgrouplist 7355 for ac_func in freeaddrinfo getnameinfo fork writev getgrouplist fexecve
7356 do : 7356 do :
7357 as_ac_var=`$as_echo "ac_cv_func_$ac_func" | $as_tr_sh` 7357 as_ac_var=`$as_echo "ac_cv_func_$ac_func" | $as_tr_sh`
7358 ac_fn_c_check_func "$LINENO" "$ac_func" "$as_ac_var" 7358 ac_fn_c_check_func "$LINENO" "$ac_func" "$as_ac_var"
7359 if eval test \"x\$"$as_ac_var"\" = x"yes"; then : 7359 if eval test \"x\$"$as_ac_var"\" = x"yes"; then :
7360 cat >>confdefs.h <<_ACEOF 7360 cat >>confdefs.h <<_ACEOF