xref: /openbsd/etc/rc (revision 7132670a) 
1*7132670aSmickey#	$OpenBSD: rc,v 1.43 1997/08/23 15:01:24 mickey Exp $
2df930be7Sderaadt
3df930be7Sderaadt# System startup script run by init on autoboot
4df930be7Sderaadt# or after single-user.
5df930be7Sderaadt# Output and error are redirected to console by init,
6df930be7Sderaadt# and the console is the controlling terminal.
7df930be7Sderaadt
8df930be7Sderaadtstty status '^T'
9df930be7Sderaadt
10df930be7Sderaadt# Set shell to ignore SIGINT (2), but not children;
11df930be7Sderaadt# shell catches SIGQUIT (3) and returns to single user after fsck.
12df930be7Sderaadttrap : 2
13df930be7Sderaadttrap : 3	# shouldn't be needed
14df930be7Sderaadt
15df930be7SderaadtHOME=/; export HOME
16df930be7SderaadtPATH=/sbin:/bin:/usr/sbin:/usr/bin
17df930be7Sderaadtexport PATH
18df930be7Sderaadt
19df930be7Sderaadt# Configure ccd devices.
208b7444a6Sderaadtif [ -f /etc/ccd.conf ]; then
21df930be7Sderaadt	ccdconfig -C
22df930be7Sderaadtfi
23df930be7Sderaadt
248b7444a6Sderaadtif [ -e /fastboot ]; then
25df930be7Sderaadt	echo "Fast boot: skipping disk checks."
268b7444a6Sderaadtelif [ $1x = autobootx ]; then
27df930be7Sderaadt	echo "Automatic boot in progress: starting file system checks."
28b39bbe87Smillert	fsck -p
29df930be7Sderaadt	case $? in
30df930be7Sderaadt	0)
31df930be7Sderaadt		;;
32df930be7Sderaadt	2)
33df930be7Sderaadt		exit 1
34df930be7Sderaadt		;;
35df930be7Sderaadt	4)
36df930be7Sderaadt		echo "Rebooting..."
37df930be7Sderaadt		reboot
38df930be7Sderaadt		echo "Reboot failed; help!"
39df930be7Sderaadt		exit 1
40df930be7Sderaadt		;;
41df930be7Sderaadt	8)
42df930be7Sderaadt		echo "Automatic file system check failed; help!"
43df930be7Sderaadt		exit 1
44df930be7Sderaadt		;;
45df930be7Sderaadt	12)
46df930be7Sderaadt		echo "Boot interrupted."
47df930be7Sderaadt		exit 1
48df930be7Sderaadt		;;
49df930be7Sderaadt	130)
50df930be7Sderaadt		# interrupt before catcher installed
51df930be7Sderaadt		exit 1
52df930be7Sderaadt		;;
53df930be7Sderaadt	*)
54df930be7Sderaadt		echo "Unknown error; help!"
55df930be7Sderaadt		exit 1
56df930be7Sderaadt		;;
57df930be7Sderaadt	esac
58df930be7Sderaadtfi
59df930be7Sderaadt
60df930be7Sderaadttrap "echo 'Boot interrupted.'; exit 1" 3
61df930be7Sderaadt
62df930be7Sderaadtswapon -a
63df930be7Sderaadt
64df930be7Sderaadtumount -a >/dev/null 2>&1
65df930be7Sderaadtmount -a -t nonfs
66df930be7Sderaadtrm -f /fastboot		# XXX (root now writeable)
67df930be7Sderaadt
68df930be7Sderaadt# set flags on ttys.  (do early, in case they use tty for SLIP in netstart)
69df930be7Sderaadtecho 'setting tty flags'
70df930be7Sderaadtttyflags -a
71df930be7Sderaadt
72df930be7Sderaadt# set hostname, turn on network
73df930be7Sderaadtecho 'starting network'
74df930be7Sderaadt. /etc/netstart
75df930be7Sderaadt
76df930be7Sderaadtmount /usr >/dev/null 2>&1
77df930be7Sderaadtmount /var >/dev/null 2>&1
78df930be7Sderaadt
7930d9f12bSderaadt# /etc/ifaliases, if it exists, contains the names of additional IP
8030d9f12bSderaadt# addresses for each interface. It is formatted as a series of lines
8130d9f12bSderaadt# that contain
8230d9f12bSderaadt#	interface address netmask
8330d9f12bSderaadtif [ -f /etc/ifaliases ]; then
8430d9f12bSderaadt(
8530d9f12bSderaadt	# delete comments and blank lines
8630d9f12bSderaadt	set -- `sed -e 's/#.*$//' /etc/ifaliases | grep -v '^$'`
8730d9f12bSderaadt	while [ $# -ge 3 ] ; do
8830d9f12bSderaadt		ifconfig $1 inet alias $2 netmask $3
8930d9f12bSderaadt		route add $2 localhost
9030d9f12bSderaadt		shift 3
9130d9f12bSderaadt	done
9230d9f12bSderaadt)
9330d9f12bSderaadtfi
9430d9f12bSderaadt
959a844b63Sdmif [ X"${ipfilter}" = X"YES" -a X"${ipmon_flags}" != X"NO" ]; then
96*7132670aSmickey	echo 'starting ipmon';		ipmon ${ipmon_flags}
979a844b63Sdmfi
989a844b63Sdm
992e57e016Sderaadtif [ X"${rfc1323}" = X"NO" ]; then
1002e57e016Sderaadt	echo 'disabling rfc1323'; 	sysctl -w net.inet.tcp.rfc1323=0
1012e57e016Sderaadtfi
1022e57e016Sderaadt
103a5aa1706Sprovos# $photurisd_flags is imported from /etc/netstart;
104a5aa1706Sprovos# If $photurisd_flags == NO or /etc/photuris/ doesn't exist, then
105a5aa1706Sprovos# photurisd isn't run.
106a5aa1706Sprovosif [ "X${photurisd_flags}" != X"NO" -a -d /etc/photuris ]; then
107a5aa1706Sprovos	echo 'starting photurisd';	photurisd ${photurisd_flags}
108a5aa1706Sprovosfi
109a5aa1706Sprovos
110df930be7Sderaadt# clean up left-over files
111df930be7Sderaadtrm -f /etc/nologin
112df930be7Sderaadtrm -f /var/spool/lock/LCK.*
113df930be7Sderaadtrm -f /var/spool/uucp/STST/*
114df930be7Sderaadt(cd /var/run && { rm -rf -- *; install -c -m 664 -g utmp /dev/null utmp; })
115df930be7Sderaadt
116df930be7Sderaadtecho -n 'starting rpc daemons:'
1178e74b1f0Smillert
1188e74b1f0Smillert# $portmap is imported from /etc/netstart;
1198e74b1f0Smillert# if $portmap == YES, the portmapper is started.
1208e74b1f0Smillertif [ X"${portmap}" = X"YES" ]; then
121df930be7Sderaadt	echo -n ' portmap';		portmap
122423a3640Sderaadtfi
123df930be7Sderaadt
1249704da5bSderaadtif [ -d /var/yp/binding ]; then
1252d5ee5bcSderaadt	if [ -d /var/yp/`domainname` ]; then
126b25099beSderaadt		# yp server capabilities needed...
127d6518a3fSniklas		echo -n ' ypserv';		ypserv ${ypserv_flags}
128d52cd61fSderaadt		#echo -n ' ypxfrd';		ypxfrd
1297f2d1b00Sderaadt	fi
130b25099beSderaadt
1317f2d1b00Sderaadt	echo -n ' ypbind';		ypbind
1327f2d1b00Sderaadt
1337f2d1b00Sderaadt	if [ -d /var/yp/`domainname` ]; then
134b25099beSderaadt		# if we are the master server, run rpc.yppasswdd
135b25099beSderaadt		_host1=`ypwhich -m passwd 2> /dev/null`
136b25099beSderaadt		_host2=`hostname`
137fd917f6eSderaadt		if [ `grep '^lookup' /etc/resolv.conf | grep yp | wc -c` -ne 0 ]; then
138b25099beSderaadt			_host1=`ypmatch $_host1 hosts | cut -d'	' -f2`
139b25099beSderaadt			_host2=`ypmatch $_host2 hosts | cut -d'	' -f2 | head -1`
140b25099beSderaadt		else
141b25099beSderaadt			_host1=`nslookup $_host1 | grep '^Name: ' | \
142b25099beSderaadt			    sed -e 's/^Name:    //'`
143b25099beSderaadt			_host2=`nslookup $_host2 | grep '^Name: ' | \
144b25099beSderaadt			    sed -e 's/^Name:    //'`
145b25099beSderaadt		fi
146234efc0eSderaadt		if [ "$_host2" = "$_host1" ]; then
14713f82310Sniklas			echo -n ' rpc.yppasswdd'
14813f82310Sniklas			rpc.yppasswdd ${yppasswdd_flags}
1492d5ee5bcSderaadt		fi
1502d5ee5bcSderaadt	fi
151df930be7Sderaadtfi
152df930be7Sderaadt
153df930be7Sderaadt# $nfs_server is imported from /etc/netstart;
154df930be7Sderaadt# if $nfs_server == YES, the machine is setup for being an nfs server
155df930be7Sderaadtif [ X${nfs_server} = X"YES" -a -r /etc/exports ]; then
156df930be7Sderaadt	rm -f /var/db/mountdtab
157df930be7Sderaadt	echo -n > /var/db/mountdtab
158df930be7Sderaadt	echo -n ' mountd';		mountd
159e6d41a0aSniklas	echo -n ' nfsd';		nfsd ${nfsd_flags}
160e6d41a0aSniklas	if [ X${lockd} = X"YES" ]; then
161e6d41a0aSniklas		echo -n ' rpc.lockd';	rpc.lockd
162e6d41a0aSniklas	fi
163df930be7Sderaadtfi
164df930be7Sderaadt
165df930be7Sderaadt# $nfs_client is imported from /etc/netstart;
166df930be7Sderaadt# if $nfs_client == YES, the machine is setup for being an nfs client
167df930be7Sderaadtif [ X${nfs_client} = X"YES" ]; then
168df930be7Sderaadt	echo -n ' nfsiod';		nfsiod -n 4
169df930be7Sderaadtfi
170df930be7Sderaadt
171df930be7Sderaadtif [ X${amd} = X"YES" -a -d ${amd_dir} -a -r ${amd_master} ]; then
172df930be7Sderaadt	echo -n ' amd'
173df930be7Sderaadt	amd -l syslog -x error,noinfo,nostats -p \
174df930be7Sderaadt	    -a ${amd_dir} `cat ${amd_master}` > /var/run/amd.pid
175df930be7Sderaadtfi
176df930be7Sderaadt
177df930be7Sderaadtecho '.'
178df930be7Sderaadtmount -a -t nfs
179df930be7Sderaadt
180df930be7Sderaadtecho -n 'starting system logger'
181df930be7Sderaadtrm -f /dev/log
18292de4609Sderaadtsyslogd
183df930be7Sderaadt
184df930be7Sderaadt# $timed_flags is imported from /etc/netstart;
185df930be7Sderaadt# if $timed_flags == NO, timed isn't run.
186df930be7Sderaadtif [ "X${timed_flags}" != X"NO" ]; then
187df930be7Sderaadt	echo -n ', time daemon'; timed $timed_flags
188df930be7Sderaadtfi
189df930be7Sderaadtecho '.'
190df930be7Sderaadt
191df930be7Sderaadt# /var/crash should be a directory or a symbolic link
192df930be7Sderaadt# to the crash directory if core dumps are to be saved.
193df930be7Sderaadtif [ -d /var/crash ]; then
194df930be7Sderaadt	echo checking for core dump...
195df930be7Sderaadt	savecore /var/crash
196df930be7Sderaadtfi
197df930be7Sderaadt
19836a647e7Sdownsjif [ "X${check_quotas}" = X"YES" ]; then
199df930be7Sderaadt	echo -n 'checking quotas:'
200df930be7Sderaadt	quotacheck -a
201df930be7Sderaadt	echo ' done.'
202df930be7Sderaadt	quotaon -a
20336a647e7Sdownsjfi
204df930be7Sderaadt
205df930be7Sderaadt# build ps databases
206df930be7Sderaadtecho 'building databases...'
207e8bd198cSderaadtkvm_mkdb /bsd
208df930be7Sderaadtdev_mkdb
209df930be7Sderaadt
210df930be7Sderaadtchmod 666 /dev/tty[pqrs]*
211df930be7Sderaadt
212df930be7Sderaadt# check the password temp/lock file
2138b7444a6Sderaadtif [ -f /etc/ptmp ]; then
214df930be7Sderaadt	logger -s -p auth.err \
215df930be7Sderaadt	'password file may be incorrect -- /etc/ptmp exists'
216df930be7Sderaadtfi
217df930be7Sderaadt
218e31a5b5aSmillerttest -f /etc/rc.securelevel && . /etc/rc.securelevel
21941406ee4Sderaadtif [ X${securelevel} != X"" ]; then
220e31a5b5aSmillert	echo -n 'setting kernel security level: '
22141406ee4Sderaadt	sysctl -w kern.securelevel=${securelevel}
22241406ee4Sderaadtfi
22341406ee4Sderaadt
224dc279d04Sderaadt# patch /etc/motd
225dc279d04Sderaadtif [ ! -f /etc/motd ]; then
226dc279d04Sderaadt	install -c -o root -g wheel -m 664 /dev/null /etc/motd
227dc279d04Sderaadtfi
228dc279d04SderaadtT=/tmp/_motd
229dc279d04Sderaadtrm -f $T
230dc279d04Sderaadtsysctl -n kern.version | sed 1q > $T
231dc279d04Sderaadtecho "" >> $T
232dc279d04Sderaadtsed '1,/^$/d' < /etc/motd >> $T
233dc279d04Sderaadtcmp -s $T /etc/motd || cp $T /etc/motd
234dc279d04Sderaadtrm -f $T
235dc279d04Sderaadt
236df930be7Sderaadtvirecovery=/var/tmp/vi.recover/recover.*
237df930be7Sderaadtif [ "$virecovery" != "/var/tmp/vi.recover/recover.*" ]; then
238df930be7Sderaadt	echo preserving editor files
239df930be7Sderaadt	for i in $virecovery; do
240df930be7Sderaadt		sendmail -t < $i
241df930be7Sderaadt	done
242df930be7Sderaadtfi
243df930be7Sderaadt
244df930be7Sderaadtecho clearing /tmp
245df930be7Sderaadt
246df930be7Sderaadt# prune quickly with one rm, then use find to clean up /tmp/[lq]*
247df930be7Sderaadt# (not needed with mfs /tmp, but doesn't hurt there...)
248df930be7Sderaadt(cd /tmp && rm -rf [a-km-pr-zA-Z]* &&
249df930be7Sderaadt    find . ! -name . ! -name lost+found ! -name quota.user \
250df930be7Sderaadt	! -name quota.group -exec rm -rf -- {} \; -type d -prune)
251df930be7Sderaadt
252df930be7Sderaadtif [ -f /var/account/acct ]; then
253df930be7Sderaadt	echo 'turning on accounting';	accton /var/account/acct
254df930be7Sderaadtfi
255df930be7Sderaadt
256df930be7Sderaadtecho -n standard daemons:
257df930be7Sderaadtecho -n ' cron';		cron
258df930be7Sderaadtecho '.'
259df930be7Sderaadt
260df930be7Sderaadtecho -n starting network daemons:
261df930be7Sderaadt
262df930be7Sderaadt# $gated and $routed_flags are imported from /etc/netstart.
263df930be7Sderaadt# If $gated == YES, gated is used; otherwise routed.
264df930be7Sderaadt# If $routed_flags == NO, routed isn't run.
265df930be7Sderaadtif [ X${gated} = X"YES" -a -r /etc/gated.conf ]; then
266df930be7Sderaadt	echo -n ' gated';		gated $gated_flags
267df930be7Sderaadtelif [ "X${routed_flags}" != X"NO" ]; then
268df930be7Sderaadt	echo -n ' routed';		routed $routed_flags
269df930be7Sderaadtfi
270df930be7Sderaadt
27169b30726Sderaadt# $mrouted_flags is imported from /etc/netstart;
27269b30726Sderaadt# If $mrouted_flags == NO, then mrouted isn't run.
27369b30726Sderaadtif [ "X${mrouted_flags}" != X"NO" ]; then
27469b30726Sderaadt	echo -n ' mrouted';		mrouted $mrouted_flags
27569b30726Sderaadtfi
27669b30726Sderaadt
27769b30726Sderaadt# $named_flags is imported from /etc/netstart;
278df930be7Sderaadt# if $named_flags != NO, named is run.
279df930be7Sderaadtif [ "X${named_flags}" != X"NO" ]; then
280df930be7Sderaadt	echo -n ' named';		named $named_flags
281df930be7Sderaadtfi
282df930be7Sderaadt
283df930be7Sderaadt# $rwhod is imported from /etc/netstart;
284df930be7Sderaadt# if $rwhod == YES, rwhod is run.
285df930be7Sderaadtif [ X${rwhod} = X"YES" ]; then
286df930be7Sderaadt	echo -n ' rwhod';		rwhod
287df930be7Sderaadtfi
288df930be7Sderaadt
289423a3640Sderaadt
290423a3640Sderaadtif [ X${lpd} = X"YES" ]; then
291df930be7Sderaadt	echo -n ' printer';		lpd
292423a3640Sderaadtfi
293df930be7Sderaadt
294df930be7Sderaadt# $sendmail_flags is imported from /etc/netstart;
295df930be7Sderaadt# If $sendmail_flags == NO or /etc/sendmail.cf doesn't exist, then
2964844ae79Sderaadt# sendmail isn't run.  We call sendmail with a full path so that
2974844ae79Sderaadt# SIGHUP works.
298df930be7Sderaadtif [ "X${sendmail_flags}" != X"NO" -a -r /etc/sendmail.cf ]; then
2994844ae79Sderaadt	echo -n ' sendmail';		/usr/sbin/sendmail ${sendmail_flags}
300df930be7Sderaadtfi
301df930be7Sderaadt
302423a3640Sderaadtif [ X${inetd} = X"YES" ]; then
303df930be7Sderaadt	echo -n ' inetd';		inetd
304423a3640Sderaadtfi
305df930be7Sderaadt
306df930be7Sderaadt# $rarpd_flags is imported from /etc/netstart;
307df930be7Sderaadt# If $rarpd_flags == NO or /etc/ethers doesn't exist, then
308df930be7Sderaadt# rarpd isn't run.
309df930be7Sderaadtif [ "X${rarpd_flags}" != X"NO" -a -r /etc/ethers ]; then
310df930be7Sderaadt	echo -n ' rarpd';		rarpd ${rarpd_flags}
311df930be7Sderaadtfi
312df930be7Sderaadt
313df930be7Sderaadt# $bootparamd_flags is imported from /etc/netstart;
314df930be7Sderaadt# If $bootparamd_flags == NO or /etc/bootparams doesn't exist, then
315df930be7Sderaadt# bootparamd isn't run.
316df930be7Sderaadtif [ "X${bootparamd_flags}" != X"NO" -a -r /etc/bootparams ]; then
317df930be7Sderaadt	echo -n ' rpc.bootparamd';	rpc.bootparamd ${bootparamd_flags}
318df930be7Sderaadtfi
319df930be7Sderaadt
320df930be7Sderaadt# $rbootd_flags is imported from /etc/netstart;
321df930be7Sderaadt# If $rbootd_flags == NO or /etc/rbootd.conf doesn't exist, then
322df930be7Sderaadt# rbootd isn't run.
323df930be7Sderaadtif [ "X${rbootd_flags}" != X"NO" -a -r /etc/rbootd.conf ]; then
324df930be7Sderaadt	echo -n ' rbootd';		rbootd ${rbootd_flags}
325df930be7Sderaadtfi
326df930be7Sderaadt
327eed9d356Sderaadtif [ -x /usr/sbin/screenblank ]; then
328eed9d356Sderaadt	echo -n ' screenblank';	/usr/sbin/screenblank
329eed9d356Sderaadtfi
330eed9d356Sderaadt
331df930be7Sderaadtecho '.'
332df930be7Sderaadt
333e1ebb78aSderaadtif [ -f /sbin/kbd -a -f /etc/kbdtype ]; then
334e1ebb78aSderaadt	kbd `cat /etc/kbdtype`
335e1ebb78aSderaadtfi
336e1ebb78aSderaadt
3378b7444a6Sderaadtif [ -f /sbin/ldconfig ]; then
3388b7444a6Sderaadt	echo 'creating runtime link editor directory cache.'
33906c3e72bSderaadt	_LIBS=
34006c3e72bSderaadt	if [ -d /usr/local/lib ]; then
34106c3e72bSderaadt		_LIBS="$_LIBS /usr/local/lib"
34206c3e72bSderaadt	fi
34306c3e72bSderaadt	if [ -d /usr/X11R6/lib ]; then
34406c3e72bSderaadt		_LIBS="$_LIBS /usr/X11R6/lib"
34506c3e72bSderaadt	fi
34606c3e72bSderaadt	ldconfig $_LIBS
3478b7444a6Sderaadtfi
3488b7444a6Sderaadt
3498b7444a6Sderaadt# Kerberos runs ONLY on the Kerberos server machine
3508b7444a6Sderaadtif [ X${kerberos_server} = X"YES" ]; then
351a5c30118Stholo	echo 'kerberos server'
352a5c30118Stholo	kerberos >> /var/log/kerberos.log &
353a5c30118Stholo	kadmind -n >> /var/log/kadmind.log &
3548b7444a6Sderaadtfi
3558b7444a6Sderaadt
3568b7444a6Sderaadt. /etc/rc.local
3578b7444a6Sderaadt
358df930be7Sderaadtdate
359df930be7Sderaadtexit 0
360