Merge pull request #204 from cedwards/0_6_hotfix

start/stop hotfix and version bump
2020-04-14 22:26:13 -06:00 · 2020-04-14 22:18:21 -06:00 · 2020-04-14 08:46:31 -06:00 · 2020-04-14 08:43:07 -06:00 · 2020-04-14 11:56:45 +02:00 · 2020-04-14 11:53:11 +02:00
49 changed files with 276 additions and 283 deletions
@@ -5,32 +5,31 @@
 Christer Edwards [christer.edwards@gmail.com]
 ## Contributors (code)
-
+- Barry McCormick
-Barry McCormick  
+- Brian Downs
-Brian Downs  
+- Dave Cottlehuber
-Dave Cottlehuber  
+- Giacomo Olgeni
-Giacomo Olgeni  
+- JP Mens
-JP Mens  
+- Jose Rivera
-Jose Rivera  
+- Lars E.
-Lars E.  
+- Paul C.
-Paul C.  
+- Sven R.
 Sven R.  
 ### Special thanks
 Software doesn't happen in a vacuum. Thank you to the following people who may
 not be found in the commit history but have influenced Bastille's development
 in some way.
-Carlos Meza  
+- Carlos Meza
-Casandra Woodcox  
+- Casandra Woodcox
-Clint Savage  
+- Clint Savage
-G. Clifford Williams  
+- G. Clifford Williams
-Jack Thomasson  
+- Jack Thomasson
-Jun C Park  
+- Jun C Park
-Justin Desilets  
+- Justin Desilets
-Larry Raab  
+- Larry Raab
-Nate Taylor  
+- Nate Taylor
-Peter Czanik  
+- Peter Czanik
-Ryan Simpkins  
+- Ryan Simpkins
-Tim Gelter  
+- Tim Gelter
-Trevor Sharpe  
+- Trevor Sharpe
@@ -71,4 +71,3 @@ This Code of Conduct is adapted from the [Contributor Covenant][homepage], versi
 available at https://www.contributor-covenant.org/version/1/4/code-of-conduct.html
 [homepage]: https://www.contributor-covenant.org
@@ -206,4 +206,3 @@ cases.
  3     Network secure mode - same as highly secure mode, plus IP packet
        filter rules (see ipfw(8), ipfirewall(4) and pfctl(8)) cannot be
        changed and dummynet(4) or pf(4) configuration cannot be adjusted.
@@ -24,5 +24,3 @@ sepcify the interface they run on in rc.conf (or other config files)
    rdr on em0 inet proto udp from any to any port = 2053 -> 10.17.89.1 port 53
    # bastille rdr dev1 clear
    nat cleared
@@ -8,4 +8,3 @@ workflow this can be similar to a `bootstrap`.
 .. code-block:: shell
  ishmael ~ # bastille upgrade 11.2-RELEASE 12.0-RELEASE
@@ -143,4 +143,3 @@ directory names in the `bastille/templates` directory.
  Executing final command(s).
  chsh: user information updated
  Template Complete.
@@ -69,7 +69,7 @@ bastille_perms_check
 . /usr/local/etc/bastille/bastille.conf
 ## version
-BASTILLE_VERSION="0.6.20200412"
+BASTILLE_VERSION="0.6.20200414"
 usage() {
    cat << EOF
@@ -18,7 +18,7 @@ bastille_sharedir=/usr/local/share/bastille                           ## default
 bastille_bootstrap_archives="base"                                    ## default: "base"
 ## default timezone
-bastille_tzdata="etc/UTC"                                             ## default: "etc/UTC"
+bastille_tzdata="Etc/UTC"                                             ## default: "Etc/UTC"
 ## default jail resolv.conf
 bastille_resolv_conf="/etc/resolv.conf"                               ## default: "/etc/resolv.conf"
@@ -331,13 +331,13 @@ create_jail() {
            ## if 0.0.0.0 set DHCP
            ## else set static address
            if [ "${IP}" == "0.0.0.0" ]; then
-                /usr/sbin/sysrc -f "${bastille_jail_rc_conf}" ifconfig_vnet0="DHCP"
+                /usr/sbin/sysrc -f "${bastille_jail_rc_conf}" ifconfig_vnet0="SYNCDHCP"
            else
                /usr/sbin/sysrc -f "${bastille_jail_rc_conf}" ifconfig_vnet0="inet ${IP}"
                if [ -n "${bastille_network_gateway}" ]; then
                    /usr/sbin/sysrc -f "${bastille_jail_rc_conf}" defaultrouter="${bastille_network_gateway}"
                else
-                    /usr/sbin/sysrc -f "${bastille_jail_rc_conf}" defaultrouter="$(route show default | awk '/gateway/ {print $2}')"
+                    /usr/sbin/sysrc -f "${bastille_jail_rc_conf}" defaultrouter="$(netstat -rn | awk '/default/ {print $2}')"
                fi
            fi
@@ -355,7 +355,7 @@ create_jail() {
        cp -L "${bastille_resolv_conf}" "${bastille_jail_resolv_conf}"
    fi
-    ## TZ: configurable (default: etc/UTC)
+    ## TZ: configurable (default: Etc/UTC)
    ln -s "/usr/share/zoneinfo/${bastille_tzdata}" etc/localtime
 }
@@ -89,7 +89,7 @@ for _jail in ${JAILS}; do
        fi
        ## add ip4.addr to firewall table:jails
-        if [ ! -z "${bastille_network_loopback}" ]; then
+        if grep "interface = ${bastille_network_loopback}" "${bastille_jailsdir}/${_jail}/jail.conf"; then
            pfctl -q -t jails -T add "$(jls -j "${_jail}" ip4.addr)"
        fi
    fi
@@ -67,7 +67,7 @@ for _jail in ${JAILS}; do
    ## test if running
    if [ "$(jls name | awk "/^${_jail}$/")" ]; then
        ## remove ip4.addr from firewall table:jails
-        if [ -n "${bastille_network_loopback}" ]; then
+        if grep "interface = ${bastille_network_loopback}" "${bastille_jailsdir}/${_jail}/jail.conf"; then
            pfctl -q -t jails -T delete "$(jls -j "${_jail}" ip4.addr)"
        fi
@@ -266,7 +266,7 @@ for _jail in ${JAILS}; do
    if [ -s "${bastille_template}/SERVICE" ]; then
        echo -e "${COLOR_GREEN}[${_jail}]:SERVICE -- START${COLOR_RESET}"
        while read _service; do
-            jexec -l "${_jail}" /usr/sbin/service "${_service}" || exit 1
+            jexec -l "${_jail}" /usr/sbin/service ${_service} || exit 1
        done < "${bastille_template}/SERVICE"
        echo -e "${COLOR_GREEN}[${_jail}]:SERVICE -- END${COLOR_RESET}"
        echo
Author	SHA1	Message	Date
Christer Edwards	5249e2580a	Merge pull request #204 from cedwards/0_6_hotfix start/stop hotfix and version bump	2020-04-14 22:26:13 -06:00
Christer Edwards	ef320ebcdc	start/stop hotfix and version bump	2020-04-14 22:18:21 -06:00
Christer Edwards	0378e3f5bd	Merge pull request #201 from mariusvw/hotfix/whitespace Hotfix/whitespace	2020-04-14 08:46:31 -06:00
Christer Edwards	e989af8144	Merge pull request #202 from mariusvw/hotfix/zoneinfo-path-1 Correct capital E in zonepath to UTC	2020-04-14 08:43:07 -06:00
Marius van Witzenburg	9e6028eba4	Use list style for contributor names	2020-04-14 11:56:45 +02:00
Marius van Witzenburg	f28054b47e	Cleanup whitespace	2020-04-14 11:53:11 +02:00
Marius van Witzenburg	597175bafb	Correct capital E in zonepath to UTC	2020-04-14 11:38:47 +02:00
Christer Edwards	0ed07b4ee2	Merge pull request #200 from cedwards/0_6_fixes fix route auto-detect and SERVICE template	2020-04-13 19:42:30 -06:00
Christer Edwards	21937ddbe8	update VNET DHCP to SYNCDHCP	2020-04-13 19:41:50 -06:00
Christer Edwards	72857be9d0	fix route auto-detect and SERVICE template	2020-04-13 18:01:52 -06:00
`@@ -71,4 +71,3 @@ This Code of Conduct is adapted from the [Contributor Covenant][homepage], versi`
	`available at https://www.contributor-covenant.org/version/1/4/code-of-conduct.html`	`available at https://www.contributor-covenant.org/version/1/4/code-of-conduct.html`

	`[homepage]: https://www.contributor-covenant.org`	`[homepage]: https://www.contributor-covenant.org`
@@ -8,4 +8,3 @@ workflow this can be similar to a `bootstrap`.
	`.. code-block:: shell`	`.. code-block:: shell`

	`ishmael ~ # bastille upgrade 11.2-RELEASE 12.0-RELEASE`	`ishmael ~ # bastille upgrade 11.2-RELEASE 12.0-RELEASE`