Protocols will notify when dhcpcd can exit

[rsmarples]

DHCPv6 RELEASE requires the addresses to be dropped before a RELEASE message is sent.
We now wait for an acknowledgement or a timeout before notifying that DHCPv6 has stopped for the interface.

DHCPv4 RELEASE is the other way around, there is no acknowledgement. So we wait for 1 second after sending the message before removing the address and notifying DHCP has stopped for the interface.

If we are not releasing then we notify dhcpcd that the protocol has stopped right away when we drop the lease.

dhcpcd will exit once there are no running protocols for the interfaces.

Fixes #513.
Hopefully #535, #519 and #509 as well.

[coderabbitai]

Walkthrough

Centralizes DHCPv4 deconfiguration into dhcp_deconfigure, sequences DHCPv6 RELEASE/ACK handling and frees addresses before sending RELEASE, delays IPv4 address removal when releasing, notifies core via dhcpcd_dropped on per-interface teardown, adds STOPPING/EXITING guards across handlers, and defers daemon exit until all interfaces stop with an exit-timeout fallback.

Changes

Cohort / File(s)	Summary
DHCPv4 cleanup & drop src/dhcp.c	Add dhcp_deconfigure to centralize DHCP cleanup and resource release; dhcp_drop stores state->reason, may schedule a 1s delayed deconfigure when releasing to delay IP removal, calls dhcpcd_dropped(ifp) on early exits, and routes teardown through dhcp_deconfigure. dhcp_free clears ifp->if_data[IF_DATA_DHCP].
DHCPv6 release sequencing src/dhcp6.c	Free/drop addresses before sending RELEASE (dhcp6_freedrop_addrs); set MRC and MRCcallback unconditionally to REL_MAX_RC/dhcp6_finishrelease; do not call finish immediately after send — handle DH6S_RELEASE (RELEASE ACK) in dhcp6_recvif to run dhcp6_finishrelease; call dhcpcd_dropped(ifp) after freeing.
Core stop/exit orchestration src/dhcpcd.c, src/dhcpcd.h	Add dhcpcd_ifrunning(); export void dhcpcd_dropped(struct interface *); change stop_all_interfaces() to return bool indicating if any were stopped; refactor stop/exit flows to use STOPPING/EXITING guards, defer eloop exit until interfaces stopped, and add an exit-timeout (dhcpcd_exit_timeout) to force or log when exit stalls.
IPv4LL drop cleanup src/ipv4ll.c	ipv4ll_drop now deletes pending eloop timeouts, calls ipv4ll_free(ifp), and invokes dhcpcd_dropped(ifp) as part of drop cleanup.
STOPPING/EXITING guards & routing src/ipv6nd.c, src/route.c	ipv6nd_recvmsg now bails when interface is STOPPING; route.c skips if_missfilter_apply when context is EXITING to avoid calls/logs during shutdown.
Handler early-return adjustments src/dhcp.c, src/dhcp6.c, src/ipv6nd.c, src/dhcpcd.c	Add guards to skip packet/handler processing when interface not user-active, stopping, or protocol disabled; remove some in-function immediate cleanup in favor of centralized dhcp_deconfigure and dhcpcd_dropped notifications.
Docs / hooks hooks/dhcpcd-run-hooks.8.in	Man page date updated and added RELEASE / RELEASE6 hook entry: "dhcpcd has released the lease."

Sequence Diagram(s)

sequenceDiagram
  autonumber
  participant SIG as Signal/CLI (--release/--exit)
  participant D as dhcpcd (core)
  participant IF as Interface
  participant V4 as DHCPv4
  participant V6 as DHCPv6
  participant LLA as IPv4LL
  participant K as Kernel/Net
  participant S as Script Hooks

  Note over D: Mark EXITING, commence interface stops
  SIG->>D: stop_all_interfaces(opts)
  D->>IF: stop_interface()
  par Per-protocol teardown
    IF->>V4: dhcp_drop(reason=RELEASE?)
    alt RELEASE
      V4->>K: send DHCPv4 RELEASE
      Note over V4: schedule ~1s delay before IP removal
      V4-->>V4: schedule dhcp_deconfigure(+1s)
    else DROP
      V4->>V4: dhcp_deconfigure()
    end
    IF->>V6: dhcp6_freedrop_addrs()
    V6->>K: send DHCPv6 RELEASE
    K-->>V6: RELEASE ACK (DH6S_RELEASE)
    V6->>V6: dhcp6_finishrelease()
    IF->>LLA: ipv4ll_drop()
  end
  V4->>D: dhcpcd_dropped()
  V6->>D: dhcpcd_dropped()
  LLA->>D: dhcpcd_dropped()

  D->>D: Check remaining running interfaces
  alt none running
    D->>S: run STOPPED
    D-->>SIG: eloop_exit()
  else still running
    D-->>SIG: wait (exit-timeout scheduled)
  end

Loading

sequenceDiagram
  autonumber
  participant P as Packet RX
  participant D as dhcpcd
  participant IF as Interface
  participant H as Handler

  Note over D: EXITING/STOPPING guards active
  P->>H: recv handler
  alt ctx EXITING or IF STOPPING or proto disabled
    H-->>P: return (skip)
  else
    H->>H: normal processing
  end

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60 minutes

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	You can run @coderabbitai generate docstrings to improve docstring coverage.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title Check	✅ Passed	The title "Protocols will notify when dhcpcd can exit" directly captures the main objective of the pull request. The PR focuses on implementing a notification mechanism where protocol handlers (DHCPv4, DHCPv6, IPv4LL) signal to dhcpcd when they have stopped, which enables dhcpcd to determine when it is safe to exit. This aligns well with the core change of coordinating graceful shutdown and exit based on protocol state.
Linked Issues Check	✅ Passed	The code changes directly address the requirements from issue #513. The PR implements proper RELEASE packet handling by ensuring DHCPv6 RELEASE waits for acknowledgement (via the new DH6S_RELEASE handling in dhcp6.c that invokes dhcp6_finishrelease upon acknowledgment) and DHCPv4 RELEASE includes a 1-second delay before address removal (via the scheduled dhcp_deconfigure call in dhcp.c). The core exit coordination in dhcpcd.c with the new dhcpcd_dropped() function and dhcpcd_ifrunning() checks ensures dhcpcd exits only when all protocols have stopped, preventing premature exits that could corrupt RELEASE packets. These changes eliminate the need for external workarounds like adding sleep delays.
Out of Scope Changes Check	✅ Passed	All code changes are in scope and necessary for the stated objectives. The primary changes in dhcp.c, dhcp6.c, and dhcpcd.c implement the core RELEASE coordination and exit logic. Supporting changes in ipv4ll.c, ipv6nd.c, and route.c add appropriate guards and cleanup during shutdown to ensure the new coordination mechanism works correctly across all protocol handlers. The man page update in hooks/dhcpcd-run-hooks.8.in documents the new RELEASE event notification, which is consistent with the implementation changes. All modifications contribute to achieving the unified goal of coordinated graceful shutdown and exit.
Description Check	✅ Passed	The description is clearly related to the changeset and provides meaningful context about the implementation. It explains the motivation for the changes (preventing DHCPv6 RELEASE corruption at shutdown), outlines the specific behavior for DHCPv4 RELEASE (1-second delay), DHCPv6 RELEASE (wait for acknowledgement), and non-release scenarios (immediate notification), and connects these changes to the exit coordination logic. The description also references the specific issue being fixed (#513) and potentially others.

✨ Finishing touches

• 📝 Generate docstrings

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch release

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 2

🧹 Nitpick comments (8)

src/dhcpcd.h (1)

276-276: Add documentation for the new public API.

The function signature and placement look good. However, consider adding a documentation comment to clarify the purpose and usage of this new API, especially since it's part of the interface lifecycle coordination mechanism described in the PR.

For example:

/**
 * dhcpcd_dropped - Notify dhcpcd that a protocol has finished dropping an interface
 * @ifp: Interface that was dropped
 *
 * Called by protocol handlers (DHCP, DHCPv6, IPv4LL) after they have completed
 * releasing resources and dropping an interface. This allows dhcpcd to coordinate
 * clean shutdown when all protocols have finished.
 */
void dhcpcd_dropped(struct interface *);

src/ipv6nd.c (1)

1928-1932: Update the comment for the new guard.

The early-return now also covers the STOPPING state, so the comment that follows no longer reflects the full condition. Please tweak the comment to capture the broader guard.

src/dhcp.c (4)

2869-2904: dhcp_deconfigure: solid teardown; add a defensive NULL-state guard

Looks correct and matches deconfig semantics. To harden against unexpected races (timer fires after state freed), add a quick state NULL check before deref.

Apply this minimal guard:

 static void
 dhcp_deconfigure(void *arg)
 {
   struct interface *ifp = arg;
-  struct dhcp_state *state = D_STATE(ifp);
+  struct dhcp_state *state = D_STATE(ifp);
+  if (state == NULL) {
+    dhcpcd_dropped(ifp);
+    return;
+  }
   struct if_options *ifo = ifp->options;

Also confirm ipv4_applyaddr only reads state->old/new during the call (they’re freed immediately after).

---

2927-2927: Reason pointer: const-correctness and lifetime

Ensure state->reason is declared as const char * (not char *) and that reason has static/long‑lived storage; otherwise copy/duplicate it.

---

2972-2972: Direct deconfigure call is fine; optional cast

dhcp_deconfigure takes void *. Direct call with ifp is fine in C; add (void *)ifp cast if you want to silence strict warnings in some builds.

---

3959-3963: Nulling if_data after free: good; consider pre‑null for safety

Setting ifp->if_data[IF_DATA_DHCP] = NULL is correct. If reentrancy is a concern, consider nulling before free(state) to avoid transient readers seeing a stale pointer. Low priority.

src/dhcpcd.c (2)

460-486: Refactor: Use distinct variable name in loop to avoid shadowing.

The loop variable ifp on line 478 shadows the function parameter ifp. While technically valid, this is confusing and makes the code harder to follow, especially since the parameter represents a specific dropped interface while the loop variable iterates all interfaces.

Apply this diff to improve clarity:

-	TAILQ_FOREACH(ifp, ctx->ifaces, next) {
-		if (dhcpcd_ifrunning(ifp))
+	struct interface *iface;
+	TAILQ_FOREACH(iface, ctx->ifaces, next) {
+		if (dhcpcd_ifrunning(iface))
 			break;
 	}
 
 	/* All interfaces have stopped, we can exit */
-	if (ifp == NULL)
+	if (iface == NULL)
 		eloop_exit(ctx->eloop, EXIT_SUCCESS);

---

2326-2327: Consider documenting the 50-second exit timeout rationale.

The 50-second timeout serves as a safeguard against hung protocols, but the specific value appears arbitrary. Consider adding a comment explaining why 50 seconds was chosen (e.g., "Allow up to 50 seconds for DHCP RELEASE acknowledgements and network transmission delays") or defining it as a named constant.

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 2e3b0e5 and 148e1fd.

📒 Files selected for processing (7)

• src/dhcp.c (7 hunks)
• src/dhcp6.c (3 hunks)
• src/dhcpcd.c (11 hunks)
• src/dhcpcd.h (1 hunks)
• src/ipv4ll.c (2 hunks)
• src/ipv6nd.c (1 hunks)
• src/route.c (1 hunks)

🔇 Additional comments (16)

src/route.c (1)

819-820: LGTM! Clean shutdown optimization.

The guard prevents if_missfilter_apply from being called during shutdown, which aligns with the PR's objective of ensuring clean DHCP RELEASE packet transmission before exit. The short-circuit evaluation ensures the function is never called when DHCPCD_EXITING is set, avoiding unnecessary operations during teardown.

src/ipv4ll.c (2)

451-451: Verify timeout deletion with NULL callback and early placement.

The eloop_timeout_delete call uses NULL as the callback parameter, which may delete all pending timeouts for this interface. Additionally, this deletion occurs before the DHCPCD_NODROP check at line 454.

Verify that:

1. Using NULL as the callback parameter is the intended API usage and doesn't inadvertently cancel important timeouts
2. Deleting timeouts before the NODROP check doesn't cause issues if the function returns early
3. This approach is consistent with similar cleanup in dhcp.c and dhcp6.c

---

486-487: Verify cleanup is reached in all code paths.

The addition of ipv4ll_free and dhcpcd_dropped correctly implements the PR objective of notifying dhcpcd when the protocol can exit. The cleanup sequence (free resources → notify dropped) is logical and consistent with the PR's design.

However, ensure that:

1. These cleanup calls are reached in all necessary code paths (i.e., not skipped by early returns from the NODROP check at line 454 or other conditions)
2. ipv4ll_free and dhcpcd_dropped are idempotent or protected against being called multiple times if ipv4ll_drop can be invoked repeatedly

src/dhcp6.c (2)

3609-3613: LGTM!

The DH6S_RELEASE case properly handles the REPLY acknowledgement and triggers cleanup via dhcp6_finishrelease. The state check ensures this only processes REPLYs when expecting them.

---

4297-4297: Verify no duplicate notifications.

The placement of dhcpcd_dropped in dhcp6_freedrop is correct for notifying dhcpcd when the protocol stops. However, ensure that dhcp6_freedrop_addrs (called at line 2118 before RELEASE) does not also call dhcpcd_dropped, as this would result in duplicate notifications and potentially incorrect exit logic in dhcpcd.

src/dhcp.c (3)

3132-3137: Early guard in handler: LGTM

Avoids processing when not user‑active, stopping, or DHCP disabled. This should reduce spurious handling during shutdown.

Double‑check that no necessary “final” DHCP messages are dropped under DHCPCD_STOPPING (e.g., if packets arrive during shutdown).

---

2916-2916: Potential overbroad timer deletion (arg-wide)

eloop_timeout_delete(…, NULL, ifp) may cancel timeouts from other protocols that also use ifp as the callback arg. Prefer deleting only DHCP timeouts or use a DHCP‑scoped wrapper.

Run to confirm cross‑protocol use of ifp as arg in timeouts:

---

2941-2956: DHCPv4 RELEASE delay is good; refine error path and timer deletion scope

• Good: delay removal 1s after RELEASE to allow send with configured IP.
• Consider handling send_message failure: on error, skip the delay and deconfigure immediately.
• Same timer scope concern: eloop_timeout_delete(…, NULL, ifp) may cancel non‑DHCP timeouts.

Apply:

- send_message(ifp, DHCP_RELEASE, NULL);
- eloop_timeout_delete(ifp->ctx->eloop, NULL, ifp);
+ if (send_message(ifp, DHCP_RELEASE, NULL) == -1) {
+   dhcp_deconfigure(ifp);
+   return;
+ }
+ /* Delete only DHCP timers here if possible. */
+ eloop_timeout_delete(ifp->ctx->eloop, NULL, ifp);

If you keep arg‑wide deletion, please verify other protocols (e.g., DHCPv6, IPv4LL, IPv6ND) don’t pass ifp as the timeout arg to avoid unintended cancellations (see script above).

src/dhcpcd.c (8)

441-458: LGTM! Helper function correctly checks protocol states.

The dhcpcd_ifrunning function properly checks if any DHCP protocol (DHCPv4, IPv4LL, or DHCPv6) is still active on the interface. The conditional compilation guards ensure only available protocols are checked.

---

488-495: LGTM! Function signature change aligns with new notification pattern.

Converting stop_interface to static void is appropriate since the exit decision now depends on protocol notifications via dhcpcd_dropped rather than immediate return values.

---

780-781: LGTM! Early return prevents interference during shutdown.

Skipping carrier change processing when the interface is stopping prevents race conditions and ensures clean shutdown.

---

1109-1109: LGTM! Proper shutdown flow for departed interfaces.

Using stop_interface for departed interfaces and the early return when exiting ensures consistent shutdown behavior and prevents processing new interface events during teardown.

Also applies to: 1116-1117

---

1180-1181: LGTM! Prevents link event processing during shutdown.

The early return when exiting is correct and consistent with similar guards in other event handlers.

---

1423-1431: LGTM! Return value enables proper wait-vs-exit decision.

The boolean return value correctly indicates whether any interface was actually stopped, allowing callers to determine if they should wait for protocol notifications or exit immediately. This is a key part of the graceful shutdown mechanism described in the PR objectives.

Also applies to: 1444-1447

---

1563-1572: LGTM! Signal handler correctly implements notification-based exit.

The changes properly:

• Prevent re-entrant signal handling during teardown
• Defer exit when interfaces are actively stopping (waits for dhcpcd_dropped notifications)
• Exit immediately in test mode or when no interfaces were stopped

This aligns with the PR objective of ensuring RELEASE packets are fully transmitted before exit.

---

1714-1718: LGTM! Consistent exit handling in command-line args path.

The logic matches the signal handler approach, ensuring that explicit exit/release commands also wait for protocol notifications when interfaces are actively stopping.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (3)

src/dhcp6.c (1)

2128-2133: Inconsistent brace style in if-else statement.

The if block uses braces but the else branch does not. For consistency and readability, consider using braces on both branches.

Apply this diff to add braces:

 	if (dhcp6_makemessage(ifp) == -1) {
 		logerr("%s: %s", __func__, ifp->name);
 		/* not much we can do apart from finish now */
 		dhcp6_finishrelease(ifp);
-	} else
+	} else {
 		dhcp6_sendrelease(ifp);
+	}

src/dhcpcd.c (2)

478-485: Variable shadowing in loop.

The loop at line 478 reuses the parameter variable name ifp, which shadows the function parameter. While functionally correct (since the parameter is no longer needed after line 473), this could be confusing for maintainability.

Consider using a different variable name for the loop:

-	TAILQ_FOREACH(ifp, ctx->ifaces, next) {
-		if (dhcpcd_ifrunning(ifp))
+	struct interface *ifp_iter;
+	TAILQ_FOREACH(ifp_iter, ctx->ifaces, next) {
+		if (dhcpcd_ifrunning(ifp_iter))
 			break;
 	}
 
 	/* All interfaces have stopped, we can exit */
-	if (ifp == NULL)
+	if (ifp_iter == NULL)
 		eloop_exit(ctx->eloop, EXIT_SUCCESS);

---

2330-2331: Consider documenting the 50-second timeout rationale.

The timeout value of 50 seconds appears to be chosen to allow sufficient time for the signaled process to exit. However, the choice of this specific value is not documented.

Consider adding a comment explaining the timeout duration, or defining it as a named constant:

+			/* Allow up to 50 seconds for process to exit gracefully */
 			eloop_timeout_add_sec(ctx->eloop, 50,
 				dhcpcd_exit_timeout, &ctx);

Or:

#define EXIT_WAIT_TIMEOUT 50  /* seconds to wait for process exit */
...
			eloop_timeout_add_sec(ctx->eloop, EXIT_WAIT_TIMEOUT,
				dhcpcd_exit_timeout, &ctx);

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 148e1fd and cd317bf.

📒 Files selected for processing (2)

• src/dhcp6.c (3 hunks)
• src/dhcpcd.c (11 hunks)

🧰 Additional context used

🧬 Code graph analysis (2)

src/dhcp6.c (1)

src/dhcpcd.c (1)

• dhcpcd_dropped (460-486)

src/dhcpcd.c (4)

src/script.c (1)

• script_runreason (745-802)

src/eloop.c (1)

• eloop_exit (652-660)

src/if.c (1)

• if_free (81-104)

compat/pidfile.c (1)

• pidfile_read (135-167)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (14)

• GitHub Check: netbsd (--disable-ipv6, -DSMALL)
• GitHub Check: netbsd (--disable-ipv6)
• GitHub Check: netbsd (--disable-dhcp6)
• GitHub Check: netbsd (--disable-dhcp6, -DSMALL)
• GitHub Check: netbsd (--disable-ipv4ll, -DSMALL)
• GitHub Check: netbsd (--disable-arp, -DSMALL)
• GitHub Check: netbsd (--disable-arp)
• GitHub Check: netbsd (-DSMALL)
• GitHub Check: netbsd (--disable-ipv4ll)
• GitHub Check: netbsd
• GitHub Check: netbsd (--disable-ipv4)
• GitHub Check: netbsd (--disable-ipv4, -DSMALL)
• GitHub Check: freebsd
• GitHub Check: openbsd

🔇 Additional comments (11)

src/dhcp6.c (2)

3611-3615: LGTM! Proper RELEASE acknowledgment handling.

The code correctly handles DHCPv6 RELEASE acknowledgment by logging and calling dhcp6_finishrelease, which aligns with the PR objective to wait for acknowledgment before completing the release sequence.

---

4299-4299: LGTM! Proper integration with exit coordination.

The call to dhcpcd_dropped correctly notifies the core daemon that DHCPv6 has finished cleanup, enabling coordinated shutdown as described in the PR objectives.

src/dhcpcd.c (9)

441-458: LGTM! Clear interface state check.

The function correctly checks whether any protocol (DHCP, IPv4LL, DHCPv6) is still running on an interface, which is essential for coordinating shutdown.

---

489-495: LGTM! Simplified stop interface logic.

The refactored function has a clearer single responsibility: mark the interface as stopping and drop protocols. The exit coordination is now properly handled by dhcpcd_dropped.

---

780-781: LGTM! Proper shutdown guard.

The early return when DHCPCD_STOPPING is set prevents unnecessary carrier state changes during shutdown, avoiding potential re-entry issues.

---

1116-1117: LGTM! Proper shutdown guard.

The early return when DHCPCD_EXITING is set prevents interface discovery during shutdown, which could interfere with the orderly exit process.

---

1180-1181: LGTM! Proper shutdown guard.

The early return when DHCPCD_EXITING is set prevents link event processing during shutdown, avoiding unnecessary work and potential state inconsistencies.

---

1423-1448: LGTM! Improved exit coordination.

The boolean return value correctly indicates whether any protocols were stopped, which is used by callers to determine whether to wait for completion or exit immediately. This is a key part of the coordinated shutdown mechanism.

---

1563-1574: LGTM! Proper signal handler coordination.

The modified logic correctly coordinates exit by:

1. Preventing re-entry with the DHCPCD_EXITING guard
2. Deferring exit if protocols were stopped (waiting for dhcpcd_dropped to be called)
3. Exiting immediately if nothing was running

This aligns with the PR objective to ensure protocols complete their shutdown sequences.

---

1714-1718: LGTM! Consistent control command handling.

The exit coordination for control commands correctly uses the same pattern as the signal handler, ensuring consistent behavior whether shutdown is triggered by signal or control command.

---

1949-1969: LGTM! Improved pidfile handling addresses past review.

The code now properly handles pidfile_read returning -1 in both timeout functions:

• dhcpcd_pidfile_timeout: Exits with SUCCESS if process gone, continues polling otherwise
• dhcpcd_exit_timeout: Exits with SUCCESS if process gone, logs warning and fails if still running after timeout

This resolves the past review concern about the confusing "pid -1 failed to exit" log message.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (1)

src/dhcp.c (1)

2949-2963: Delayed address removal for DHCPv4 RELEASE aligns with PR objectives.

The 1-second delay before calling dhcp_deconfigure allows the RELEASE packet to be transmitted before the address is removed. This addresses issue #513 by ensuring the packet is fully formed and sent before the interface is torn down.

However, consider these refinements:

1. Replace magic number with named constant:

+#define DHCP_RELEASE_DELAY_SEC 1
+
 static void
 dhcp_drop(struct interface *ifp, const char *reason)
 {
 	...
-			const struct timespec delay = {
-				.tv_sec = 1,
-			};
+			const struct timespec delay = {
+				.tv_sec = DHCP_RELEASE_DELAY_SEC,
+			};

2. Expand the comment to explain the rationale:

-			/* We need to delay removal of the IP address so the
-			 * message can be sent.
-			 * Unlike DHCPv6, there is no acknowledgement. */
+			/* DHCPv4 RELEASE has no acknowledgement from the server.
+			 * Delay address removal to ensure the RELEASE packet is
+			 * transmitted before the interface/address is torn down.
+			 * See issue #513. */

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 942195b and 57fed36.

📒 Files selected for processing (2)

• hooks/dhcpcd-run-hooks.8.in (2 hunks)
• src/dhcp.c (7 hunks)

🧰 Additional context used

🧬 Code graph analysis (1)

src/dhcp.c (4)

src/auth.c (1)

• dhcp_auth_reset (78-95)

src/ipv4.c (1)

• ipv4_applyaddr (746-833)

src/script.c (1)

• script_runreason (745-802)

src/dhcpcd.c (1)

• dhcpcd_dropped (460-488)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (14)

• GitHub Check: netbsd (--disable-dhcp6, -DSMALL)
• GitHub Check: netbsd (--disable-dhcp6)
• GitHub Check: netbsd (--disable-ipv6, -DSMALL)
• GitHub Check: netbsd (--disable-arp, -DSMALL)
• GitHub Check: netbsd (--disable-ipv6)
• GitHub Check: netbsd (--disable-ipv4ll, -DSMALL)
• GitHub Check: netbsd (--disable-ipv4)
• GitHub Check: netbsd (--disable-arp)
• GitHub Check: netbsd (--disable-ipv4ll)
• GitHub Check: netbsd (--disable-ipv4, -DSMALL)
• GitHub Check: netbsd (-DSMALL)
• GitHub Check: netbsd
• GitHub Check: freebsd
• GitHub Check: openbsd

🔇 Additional comments (8)

hooks/dhcpcd-run-hooks.8.in (2)

25-25: LGTM!

The man page date update is appropriate for documenting the changes in this PR.

---

108-109: Well-documented new hook reason.

The RELEASE | RELEASE6 entry accurately documents the new hook reason for when dhcpcd releases a lease. The format, placement, and description are consistent with existing entries and align perfectly with the PR objectives to properly handle DHCP RELEASE packets.

src/dhcp.c (6)

2869-2912: Well-structured centralization of deconfiguration logic.

This new function consolidates cleanup sequences that were previously scattered, improving maintainability. The logic correctly handles:

• Authentication state reset
• State machine transition to DHS_NONE
• Resource lifecycle (offer/old/new pointers)
• Address application/removal via ipv4_applyaddr
• Script execution with appropriate reason
• Coordination with core via dhcpcd_dropped when stopping

The conditional flow based on DHCPCD_STOPPING ensures proper shutdown sequencing.

---

2924-2924: Good addition of notification for early-exit path.

Calling dhcpcd_dropped(ifp) when the state is absent or inactive ensures the core is notified that the interface has stopped, maintaining proper coordination with the shutdown sequence described in the PR objectives.

---

2960-2960: Verify the scope of timeout deletion is intentional.

The call eloop_timeout_delete(ifp->ctx->eloop, NULL, ifp) with a NULL callback pattern deletes all pending timeouts for this interface. This is aggressive and will cancel any scheduled operations (discover, renew, rebind, etc.).

While this is likely correct for a clean RELEASE shutdown, please confirm:

1. This behavior is intentional and necessary to prevent interference with the release sequence
2. No other operations need to complete before the delayed dhcp_deconfigure executes

If this is intended, consider adding a comment explaining why all timeouts are cleared:

/* Clear all pending DHCP operations (discover, renew, etc.) to ensure
 * clean release shutdown without interference. */
eloop_timeout_delete(ifp->ctx->eloop, NULL, ifp);

---

2980-2980: LGTM: Centralized cleanup call.

Replacing inline cleanup with the new dhcp_deconfigure function improves maintainability and consistency.

---

3140-3144: Essential guard prevents processing during shutdown.

This early-return check prevents DHCP message handling when:

• The interface is not user-active
• The STOPPING flag is set (shutdown in progress)
• DHCP is not enabled for the interface

This is critical for clean shutdown coordination and prevents race conditions where DHCP responses arrive after the stop sequence has begun, addressing the core PR objective that "protocols notify when dhcpcd can exit."

---

3970-3970: Good practice: Clear pointer after free.

Setting ifp->if_data[IF_DATA_DHCP] = NULL after freeing the DHCP state prevents use-after-free bugs and makes debugging easier by ensuring the pointer doesn't dangle. This follows defensive programming best practices.

[ColinMcInnes]

I will download this patch and give it a try.

[ColinMcInnes]

I think it still appears to garble outgoing DHCPv6 Release6 message, which appears to be getting cut off.

Oct 07 14:17:11 dhcpcd[3606]: control command: /sbin/dhcpcd --debug --config /etc/dhcp/dhcpcd.conf --release eth0
Oct 07 14:17:11 dhcpcd[3606]: eth0: removing interface
Oct 07 14:17:11 dhcpcd[3606]: eth0: multicasting RELEASE6 (xid 0x37da53), next in 1.0 seconds
Oct 07 14:17:11 dhcpcd[3606]: eth0: executing: /usr/libexec/dhcpcd-run-hooks SEND6_RELEASE6
Oct 07 14:17:11 dhcpcd[3606]: received SIGTERM, stopping
Oct 07 14:17:11 dhcpcd[3606]: eth0: removing interface
Oct 07 14:17:11 dhcpcd[3606]: eth0: executing: /usr/libexec/dhcpcd-run-hooks RELEASE6
Oct 07 14:17:11 dhcpcd[3606]: eth0: deleting address 2001:192:168:226::119/128
Oct 07 14:17:11 dhcpcd[3606]: eth0: executing: /usr/libexec/dhcpcd-run-hooks STOP
Oct 07 14:17:11 dhcpcd[3606]: script_runreason: No such file or directory
Oct 07 14:17:11 dhcpcd[3606]: eth0: executing: /usr/libexec/dhcpcd-run-hooks RELEASE
Oct 07 14:17:11 dhcpcd[3606]: eth0: executing: /usr/libexec/dhcpcd-run-hooks STOPPED
Oct 07 14:17:12 dhcpcd[3606]: eth0: BPF BOOTP exited from PID 4114
Oct 07 14:17:12 dhcpcd[3606]: control proxy exited from PID 3608
Oct 07 14:17:12 dhcpcd[3606]: network proxy exited from PID 3607
Oct 07 14:17:12 dhcpcd[3606]: dhcpcd exited
Oct 07 14:17:12 dhcpcd[3606]: privileged proxy will exit from PID 3606

[ColinMcInnes]

[ColinMcInnes]

That packet was captured from the server side.

[Sime-Zupanovic]

I have download you patch and give it a try on the dhcpcd version 10.2.2 baseline,
But I was getting a segmentation fault program crash in start up.

Thread 1 (LWP 8014):
#0 0x0000005579b13ef0 in dhcpcd_handlecarrier (ifp=ifp@entry=0x5583bae2b0, carrier=-1, flags=4098) at dhcpcd.c:778
#1 0x0000005579b28970 in link_netlink (arg=, nlm=, ctx=) at if-linux.c:1158
#2 link_netlink (ctx=0x7fd2d4da88, arg=, nlm=0x7fd2d499a8) at if-linux.c:1051
#3 0x0000005579b27374 in if_getnetlink (ctx=ctx@entry=0x7fd2d4da88, iov=0x7fd2d49998, iov@entry=0x7fd2d4d9b8, fd=9, flags=flags@entry=64, cb=cb@entry=0x5579b284b0 <link_netlink>, cbarg=cbarg@entry=0x0) at if-linux.c:666
--Type for more, q to quit, c to continue without paging--
#4 0x0000005579b27600 in if_handlelink (ctx=ctx@entry=0x7fd2d4da88) at if-linux.c:1173
#5 0x0000005579b150a0 in dhcpcd_handlelink (arg=0x7fd2d4da88, events=) at dhcpcd.c:1184
#6 0x0000005579b16cc4 in eloop_run_ppoll (signals=0x7fd2d4dcc8, ts=, eloop=0x5583b9d830) at eloop.c:1106
#7 eloop_start (eloop=0x5583b9d830, signals=signals@entry=0x7fd2d4dcc8) at eloop.c:1228
#8 0x0000005579b0fab4 in main (argc=, argv=, envp=) at dhcpcd.c:2707

(gdb)
(gdb) frame 0
#0 0x0000005579b13ef0 in dhcpcd_handlecarrier (ifp=ifp@entry=0x5583bae2b0, carrier=-1, flags=4098) at dhcpcd.c:778
778 in dhcpcd.c
(gdb) p *ifp
$1 = {ctx = 0x7fd2d4da88, next = {tqe_next = 0x5583bae3c0, tqe_prev = 0x5583bae1a8}, name = "port1\000\000\000\000\000\000\000\000", index = 45, active = 0, flags = 4098, hwtype = 1,
hwaddr = "Xp\177\220F\222", '\000' <repeats 13 times>, hwlen = 6 '\006', mtu = 2000, vlanid = 0, metric = 1045, carrier = -1, wireless = false, ssid = '\000' <repeats 31 times>, ssid_len = 0,
profile = '\000' <repeats 63 times>, options = 0x0, if_data = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}
(gdb) p was_link_up
$2 = false

See was_link_up was false.

It seems we can get some network event even for interface which is not up. What is a bit weird to me?

So, after I applied your patch, see attached. protocols_will_notify_dhcpcd_can_exit.txt
I added this small fix.
fix_ifp_option_check_in_handlecarrier.txt

Just moved DHCPCD_STOPPING check below the carrier-down handling block, after basic interface validity has been verified.
Now, testing looks ok, no further program crashes. Will you consider this additional small patch?

[rsmarples]

I think it still appears to garble outgoing DHCPv6 Release6 message, which appears to be getting cut off.

Oct 07 14:17:11 dhcpcd[3606]: control command: /sbin/dhcpcd --debug --config /etc/dhcp/dhcpcd.conf --release eth0

Oct 07 14:17:11 dhcpcd[3606]: eth0: removing interface

Oct 07 14:17:11 dhcpcd[3606]: eth0: multicasting RELEASE6 (xid 0x37da53), next in 1.0 seconds

Oct 07 14:17:11 dhcpcd[3606]: eth0: executing: /usr/libexec/dhcpcd-run-hooks SEND6_RELEASE6

Oct 07 14:17:11 dhcpcd[3606]: received SIGTERM, stopping

Oct 07 14:17:11 dhcpcd[3606]: eth0: removing interface

Oct 07 14:17:11 dhcpcd[3606]: eth0: executing: /usr/libexec/dhcpcd-run-hooks RELEASE6

Oct 07 14:17:11 dhcpcd[3606]: eth0: deleting address 2001:192:168:226::119/128

Oct 07 14:17:11 dhcpcd[3606]: eth0: executing: /usr/libexec/dhcpcd-run-hooks STOP

Oct 07 14:17:11 dhcpcd[3606]: script_runreason: No such file or directory

Oct 07 14:17:11 dhcpcd[3606]: eth0: executing: /usr/libexec/dhcpcd-run-hooks RELEASE

Oct 07 14:17:11 dhcpcd[3606]: eth0: executing: /usr/libexec/dhcpcd-run-hooks STOPPED

Oct 07 14:17:12 dhcpcd[3606]: eth0: BPF BOOTP exited from PID 4114

Oct 07 14:17:12 dhcpcd[3606]: control proxy exited from PID 3608

Oct 07 14:17:12 dhcpcd[3606]: network proxy exited from PID 3607

Oct 07 14:17:12 dhcpcd[3606]: dhcpcd exited

Oct 07 14:17:12 dhcpcd[3606]: privileged proxy will exit from PID 3606

It looks like dhcpcd had two commands to stop.
I've only been testing by using SIGTERM, but it looks like you had a stop event over the control socket too?

How are you stopping dhcpcd?

[rsmarples]

I have download you patch and give it a try on the dhcpcd version 10.2.2 baseline,

But I was getting a segmentation fault program crash in start up.

Thread 1 (LWP 8014):

#0 0x0000005579b13ef0 in dhcpcd_handlecarrier (ifp=ifp@entry=0x5583bae2b0, carrier=-1, flags=4098) at dhcpcd.c:778

#1 0x0000005579b28970 in link_netlink (arg=, nlm=, ctx=) at if-linux.c:1158

#2 link_netlink (ctx=0x7fd2d4da88, arg=, nlm=0x7fd2d499a8) at if-linux.c:1051

#3 0x0000005579b27374 in if_getnetlink (ctx=ctx@entry=0x7fd2d4da88, iov=0x7fd2d49998, iov@entry=0x7fd2d4d9b8, fd=9, flags=flags@entry=64, cb=cb@entry=0x5579b284b0 <link_netlink>, cbarg=cbarg@entry=0x0) at if-linux.c:666

--Type for more, q to quit, c to continue without paging--

#4 0x0000005579b27600 in if_handlelink (ctx=ctx@entry=0x7fd2d4da88) at if-linux.c:1173

#5 0x0000005579b150a0 in dhcpcd_handlelink (arg=0x7fd2d4da88, events=) at dhcpcd.c:1184

#6 0x0000005579b16cc4 in eloop_run_ppoll (signals=0x7fd2d4dcc8, ts=, eloop=0x5583b9d830) at eloop.c:1106

#7 eloop_start (eloop=0x5583b9d830, signals=signals@entry=0x7fd2d4dcc8) at eloop.c:1228

#8 0x0000005579b0fab4 in main (argc=, argv=, envp=) at dhcpcd.c:2707

(gdb)

(gdb) frame 0

#0 0x0000005579b13ef0 in dhcpcd_handlecarrier (ifp=ifp@entry=0x5583bae2b0, carrier=-1, flags=4098) at dhcpcd.c:778

778 in dhcpcd.c

(gdb) p *ifp

$1 = {ctx = 0x7fd2d4da88, next = {tqe_next = 0x5583bae3c0, tqe_prev = 0x5583bae1a8}, name = "port1\000\000\000\000\000\000\000\000", index = 45, active = 0, flags = 4098, hwtype = 1,

hwaddr = "Xp\177\220F\222", '\000' <repeats 13 times>, hwlen = 6 '\006', mtu = 2000, vlanid = 0, metric = 1045, carrier = -1, wireless = false, ssid = '\000' <repeats 31 times>, ssid_len = 0,

profile = '\000' <repeats 63 times>, options = 0x0, if_data = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}

(gdb) p was_link_up

$2 = false

See was_link_up was false.

It seems we can get some network event even for interface which is not up. What is a bit weird to me?

So, after I applied your patch, see attached. protocols_will_notify_dhcpcd_can_exit.txt

I added this small fix.

fix_ifp_option_check_in_handlecarrier.txt

Just moved DHCPCD_STOPPING check below the carrier-down handling block, after basic interface validity has been verified.

Now, testing looks ok, no further program crashes. Will you consider this additional small patch?

Thanks for that. I committed a slightly different patch as we still need to return early I think.
Does it work for you now?

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (1)

src/dhcpcd.c (1)

460-488: Consider using a separate loop variable to avoid shadowing the parameter.

The function correctly coordinates interface teardown, but the TAILQ_FOREACH at line 480 reuses the ifp parameter as the loop iterator. While this pattern is common and works here (the parameter is no longer needed after line 475), it's error-prone and can confuse readers.

Apply this diff to use a separate loop variable:

 void
 dhcpcd_dropped(struct interface *ifp)
 {
 	struct dhcpcd_ctx *ctx = ifp->ctx;
+	struct interface *ifp1;
 
 	if (ifp->options == NULL ||
 	    !(ifp->options->options & DHCPCD_STOPPING) ||
 	    dhcpcd_ifrunning(ifp))
 		return;
 
 	/* De-activate the interface */
 	if (ifp->active) {
 		ifp->active = IF_INACTIVE;
 		ifp->options->options &= ~DHCPCD_STOPPING;
 		script_runreason(ifp, "STOPPED");
 	}
 
 	if (!(ctx->options & DHCPCD_EXITING))
 		return;
 
-	TAILQ_FOREACH(ifp, ctx->ifaces, next) {
-		if (dhcpcd_ifrunning(ifp))
+	TAILQ_FOREACH(ifp1, ctx->ifaces, next) {
+		if (dhcpcd_ifrunning(ifp1))
 			break;
 	}
 
 	/* All interfaces have stopped, we can exit */
-	if (ifp == NULL)
+	if (ifp1 == NULL)
 		eloop_exit(ctx->eloop, EXIT_SUCCESS);
 }

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 57fed36 and 13d0ed9.

📒 Files selected for processing (1)

• src/dhcpcd.c (11 hunks)

🧰 Additional context used

🧬 Code graph analysis (1)

src/dhcpcd.c (4)

src/script.c (1)

• script_runreason (745-802)

src/eloop.c (1)

• eloop_exit (652-660)

src/if.c (1)

• if_free (81-104)

compat/pidfile.c (1)

• pidfile_read (135-167)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (14)

• GitHub Check: netbsd (--disable-ipv6, -DSMALL)
• GitHub Check: netbsd (--disable-ipv4, -DSMALL)
• GitHub Check: netbsd (--disable-dhcp6, -DSMALL)
• GitHub Check: netbsd (--disable-arp)
• GitHub Check: netbsd (--disable-arp, -DSMALL)
• GitHub Check: netbsd (--disable-dhcp6)
• GitHub Check: netbsd (--disable-ipv4ll)
• GitHub Check: netbsd (--disable-ipv4ll, -DSMALL)
• GitHub Check: netbsd (--disable-ipv6)
• GitHub Check: netbsd (--disable-ipv4)
• GitHub Check: netbsd
• GitHub Check: netbsd (-DSMALL)
• GitHub Check: freebsd
• GitHub Check: openbsd

🔇 Additional comments (11)

src/dhcpcd.c (11)

441-458: LGTM!

The dhcpcd_ifrunning helper correctly checks whether any protocol (DHCPv4, IPv4LL, DHCPv6) is still active on the interface. The logic is straightforward and aligns with the PR's goal of tracking running protocols before allowing exit.

---

490-497: LGTM!

The refactored stop_interface correctly sets the STOPPING flag before calling dhcpcd_drop, establishing the contract that dhcpcd_dropped later checks to determine when teardown is complete.

---

782-791: LGTM!

The guard correctly prevents carrier events from interfering during shutdown. The dual check (interface options vs. context) handles both active and inactive interfaces appropriately, and the early return avoids unnecessary protocol churn during teardown.

---

1126-1127: LGTM!

The guard correctly prevents new interface events from being processed during exit, avoiding races where an interface addition could interfere with the shutdown sequence.

---

1190-1191: LGTM!

The guard prevents link state changes from triggering protocol actions during exit, maintaining consistency with the shutdown guards in other handlers.

---

1433-1458: LGTM with observation.

The refactored function correctly:

• Returns a bool indicating whether any interfaces were stopped (enabling callers to decide whether to wait for completion)
• Processes interfaces in reverse order for proper teardown sequencing
• Sets both STOPPING and EXITING flags

Note that line 1453 sets EXITING on interface options in addition to the context-level flag (line 1439). This duplication might be intentional for per-interface tracking, but consider whether both are necessary.

---

1573-1582: LGTM!

The modified signal handler correctly:

• Guards against re-processing SIGTERM/SIGINT during teardown (preventing memory issues as noted in the comment)
• Uses the return value from stop_all_interfaces to determine whether to wait for protocol completion or exit immediately
• Defers the exit to dhcpcd_dropped when interfaces are still running

This is the core coordination logic that addresses the PR objectives.

---

1724-1728: LGTM!

The control command handler correctly mirrors the signal handler's coordination pattern, deferring exit until protocols complete when interfaces are actually stopped.

---

1959-1963: LGTM!

The modification correctly implements polling behavior, rescheduling the timeout check every 100ms until the pidfile indicates the process has exited.

---

2340-2341: LGTM!

The 50-second backstop timeout prevents indefinite hanging when waiting for another dhcpcd process to exit, providing a reasonable escape hatch.

---

1966-1979: Past review comment not fully addressed.

A previous review (marked as "✅ Addressed in commit cd317bf") flagged that if pidfile_read returns -1, logging "pid -1 failed to exit" is misleading (lines 1972-1976). However, the current code does not explicitly handle the -1 case before logging. The same check exists in dhcpcd_pidfile_timeout at line 1959, but is missing here.

Apply this diff to handle the error case as previously suggested:

 static void
 dhcpcd_exit_timeout(void *arg)
 {
 	struct dhcpcd_ctx *ctx = arg;
 	pid_t pid;
 
 	pid = pidfile_read(ctx->pidfile);
-	logwarnx("pid %lld failed to exit", (long long)pid);
-	eloop_exit(ctx->eloop, EXIT_FAILURE);
+	if (pid == -1)
+		eloop_exit(ctx->eloop, EXIT_SUCCESS);
+	else {
+		logwarnx("pid %lld failed to exit", (long long)pid);
+		eloop_exit(ctx->eloop, EXIT_FAILURE);
+	}
 }

Likely an incorrect or invalid review comment.

[Sime-Zupanovic]

With my patch no crashes.
But you are correct, we should have this check earlier in dhcpcd_handlecarrier(), immediately on top.

if (ifp->options && (ifp->options->options & DHCPCD_STOPPING))
	return;

But based on pmd in offline gdb I think checking ifp->ctx->options can crash again, see below value is something wild:

(gdb) p *ifp->ctx
$9 = {pidfile = "/run/dhcpcd/port0.pid", '\000' <repeats 13 times>, vendor = "dhcpcd-10.2.2:", '\000' <repeats 191 times>, fork_fd = -1,
cffile = 0x55b41f0340 "/etc/pnc-dhcpcd.conf", options = 310326640726562825, logfile = 0x0, argc = 5, argv = 0x7fffd76148, ifac = 0, ifav = 0x0, ifdc = 0, ifdv = 0x0, ifc = 1, ifv = 0x7fffd76168, ifcc = 1,
ifcv = 0x55b4205600, duid_type = 0 '\000', duid = 0x55b420f6f0 "", duid_len = 16, ifaces = 0x55b42115d0, ctl_buf = 0x0, ctl_buflen = 0, ctl_bufpos = 0, ctl_extra = 0, routes = {rbt_root = 0x55b42130d8,
rbt_ops = 0x55940604c0 <rt_compare_os_ops>, rbt_minmax = {0x55b41f22c8, 0x55b4213008}}, froutes = {rbt_root = 0x55b4212238, rbt_ops = 0x55940604e0 <rt_compare_free_ops>, rbt_minmax = {0x55b41f1ad8,
0x55b4213278}}, rt_order = 1, pf_inet_fd = 15, priv = 0x55b4211530, link_fd = 9, link_rcvbuf = 0, seq = 70, sseq = 0, sigset = {__val = {0 <repeats 16 times>}}, eloop = 0x55b4205830,
script = 0x559404a738 "/usr/libexec/dhcpcd-run-hooks", script_fp = 0x55b4209410, script_buf = 0x55b42282c0 "PATH=/usr/bin:/usr/sbin:/bin:/sbin", script_buflen = 719, script_env = 0x55b42132b0, script_envlen = 32,
control_fd = -1, control_unpriv_fd = -1, control_fds = {tqh_first = 0x55b4210020, tqh_last = 0x55b4210020}, control_sock = "/run/dhcpcd/port0.sock", '\000' <repeats 14 times>,
control_sock_unpriv = "/run/dhcpcd/port0.unpriv.sock", '\000' <repeats 14 times>, control_group = 0, vivso = 0x0, vivso_len = 0, randomstate = 0x0, ps_user = 0x7f88514668 , ps_processes = {
tqh_first = 0x55b4210f10, tqh_last = 0x55b4211310}, ps_root = 0x55b4210f10, ps_inet = 0x55b42110f0, ps_ctl = 0x55b4211310, ps_data_fd = 8, ps_log_fd = -1, ps_log_root_fd = -1, ps_eloop = 0x55b4210e70,
ps_control = 0x55b4210020, ps_control_client = 0x0, dhcp_opts = 0x55b4201da0, dhcp_opts_len = 157, udp_rfd = -1, udp_wfd = -1, opt_buffer = 0x0, opt_buffer_len = 0, secret = 0x0, secret_len = 0, nd_fd = -1,
ra_routers = 0x55b42279a0, nd_opts = 0x55b42049d0, nd_opts_len = 7, dhcp6_rfd = -1, dhcp6_wfd = -1, dhcp6_opts = 0x55b420d940, dhcp6_opts_len = 84, dev_load = 0x0, dev_fd = -1, dev = 0x0, dev_handle = 0x0}

maybe just to do:

void
dhcpcd_handlecarrier(struct interface *ifp, int carrier, unsigned int flags)
{
bool was_link_up = if_is_link_up(ifp);
bool was_roaming = if_roaming(ifp);
ifp->carrier = carrier;
ifp->flags = flags;

if (ifp->options && (ifp->options->options & DHCPCD_STOPPING))
	return;

for inactive interface we will have ifp->options == NULL and skip the above check safely.

we will have was_link_up = false

and we will return
if (!if_is_link_up(ifp)) {
if (!ifp->active || (!was_link_up && !was_roaming)) --- as ifp->active = 0 and was_link_up = false
return; -- here

[ColinMcInnes]

It looks like dhcpcd had two commands to stop. I've only been testing by using SIGTERM, but it looks like you had a stop event over the control socket too?

How are you stopping dhcpcd?

Same as in #513
On startup, via systemd I start dhcpcd in managed mode, and then on interface up (not readable through ifconfig unfortunately) I start up on eth0 via a trigger. That way I can control interface bringup from external stimuli. A corner case for my particular setup.

On system reboot, it stops those services in reverse order, sending systemctl stop to [email protected], then stop to dhcpcd.service

Both service files in my testing have --release (@.service includes the interface).

My current workaround is to omit the ExecStop from [email protected], relying on ExecReload instead, and only doing a --release in the main dhcpcd.service. And that seems to work ok.

If that's a valid workaround, I'm ok with moving forward marking this as a fix for the other issues.