Commit Graph

46187 Commits

Author SHA1 Message Date
Peter Wemm
b70ab85b2b At great personal risk (to my already fragile sanity), reorganize
the rsa stubs for libcrypto.  libcrypto.so now uses dlopen() to
implement the backends for either the native or rsaref implemented
RSA code.
This involves:
- unifying the libcrypto and openssl(1) source so there is no
  #ifdef RSAref variations.
- using weak symbols and dlopen()/dlsym() routines to access the
  rsa method vectors.

Releases will enable the user to choose International, US (rsaref) or
no RSA code at install time.
'make world' will DTRT depending on whether you have the international
or US source.  For US users, you must either install rsaref (the port
or package) or (if you don't fear RSA Inc) use the (superior)
International rsa_eay.c code.

This has been discussed at great length by the affected folks and even
we have a great deal of confusion.  This is a checkpoint so we can tune
the results.  This works for me in all permutations I can think of and
should result in a CD/ftp 'release' just about doing the right thing now.
2000-02-26 13:06:55 +00:00
Jordan K. Hubbard
1edd3fc668 Be neater with the screen contents. 2000-02-26 12:43:01 +00:00
Jordan K. Hubbard
fd06790a39 Fix benign but stupid variable typo. 2000-02-26 12:35:00 +00:00
Jordan K. Hubbard
0106f6ef58 Make all menu items more consistent and deal with a few remaining
bogus accelerators.

Based largely on feedback from:	Basit Syed <syed@pinenut.nosc.mil>
2000-02-26 12:33:49 +00:00
Søren Schmidt
b3595df45d Same fix as in ../modules, dont use the crypto stuff if its not there. 2000-02-26 12:26:25 +00:00
Jordan K. Hubbard
a90fc31d36 Toggle variables between YES and NO values, don't just set them to YES
or unset them.  That makes it impossible to turn something off.
2000-02-26 12:07:40 +00:00
Jordan K. Hubbard
2150746365 Clean up some of the abstraction in this code. 2000-02-26 11:57:22 +00:00
Peter Wemm
49838bb95b Argh, I can't win today. Spell ${.CURDIR} correctly. 2000-02-26 11:16:08 +00:00
Peter Wemm
b753aec26f Don't build pam_ssh if the crypto code is missing.
Found by:	sos
2000-02-26 11:14:17 +00:00
Peter Wemm
2307080405 Redo this with a repo copy from the original file and reset the
__PREFIX__ markers.
2000-02-26 09:59:14 +00:00
Matthew N. Dodd
a535079a85 MCA is supported to some extent. Modify a comment that claims otherwise.
Approved by: 	jkh
2000-02-26 05:07:05 +00:00
Yoshinobu Inoue
482ca4274b Update sockstat to support INET6 socket printing.
Approved by: jkh

Submitted by: Ben Smithurst <ben@scientia.demon.co.uk>
Reviewed by: des
2000-02-26 02:56:16 +00:00
Peter Wemm
4d3289a849 oops, update path to /etc/ssh/ssh_host_key 2000-02-26 02:24:38 +00:00
Wilko Bulte
2b07d85b10 Corrections for DS20, Miata. Multiple cleanups 2000-02-25 23:28:18 +00:00
Jordan K. Hubbard
2d15624bd4 Add knobs for sendmail and sshd 2000-02-25 23:02:48 +00:00
Jordan K. Hubbard
ccd140ac08 Make sysinstall use the new debug.boothowto OID. It will now go
straight into debug mode if you boot -v.  Also conditionalize some
annoying debugging output now that we have this ability.

Partially submitted by:	msmith
Approved by:	jkh [to make certain wise-acres happy ;)]
2000-02-25 20:55:15 +00:00
Brian S. Dean
db47598ef7 Announce support for the hardware debug registers.
Approved by:	jkh
2000-02-25 15:10:21 +00:00
Peter Wemm
10fd313c15 Install ssh files in /etc/ssh and tidy up a couple of other nits 2000-02-25 14:27:33 +00:00
Peter Wemm
9ceffc938a Merge from internat.freebsd.org; move ssh files from /etc to /etc/ssh 2000-02-25 14:25:10 +00:00
Peter Wemm
da8fe8427b Add /etc/ssh 2000-02-25 14:18:48 +00:00
Peter Wemm
42a75d55f1 Merge from internat.freebsd.org; deal with -DRSAref the same way as
libcrypto - not that it means much on the US code tree.
2000-02-25 14:15:31 +00:00
Peter Wemm
cfd62b902e Merge from internat.freebsd.org; make RSAREF=YES work correctly, although
this is not very useful as the US repo is missing bits.
2000-02-25 14:08:35 +00:00
Jordan K. Hubbard
8d0bf3d6f8 Add new oid, debug.boothowto. This allows userland apps to see
how the kernel was booted and perhaps do conditional things
based upon it (sysinstall, for example, will now turn Debug mode
on automatically if boot -v was done).

Submitted by:	msmith
Suggested by:	ulf
2000-02-25 11:43:08 +00:00
Kazutaka YOKOTA
9e6f8bee0e Do not add children (atkbd and psm) if they are disabled.
Approved by: jkh
2000-02-25 11:40:31 +00:00
Ruslan Ermilov
d99cc1da8a Remove the config file line length restriction.
PR:		16900
Reviewed by:	"Crist J. Clark" <cjclark@home.com>, jkh
Approved by:	jkh
2000-02-25 11:34:38 +00:00
Peter Wemm
25cc400e37 Ack! Time to get the pointy hat. Re-add missing / I left out.
Submitted by:	John Hay <jhay@mikom.csir.co.za>
2000-02-25 11:08:50 +00:00
Matthew Hunt
fcc2171d89 Install the game files mode 444, so atc(6) can load them.
Little interest shown by:	jkh
2000-02-25 10:23:19 +00:00
Søren Schmidt
1a488af60f Add (partial) support for the Cypress ATA controller.
Call intr_teardown on detach.

Always add non masterdevice from unit 2 upwards.

Update to the pccard code, at least some cards are now working,
more testing to follow.
2000-02-25 09:48:23 +00:00
Peter Wemm
6681286022 Create a stub libRSAglue for bsd.port.mk's sake 2000-02-25 09:47:17 +00:00
Peter Wemm
8df7a1fa29 Don't pull in libRSAglue for the rsaref case. Since this is linked
dynamically by default, we use the dlopen() calls to load librsaref.so
on US code trees.
2000-02-25 08:21:35 +00:00
Peter Wemm
07a0979e84 Fold libRSAglue into libcrypto so we don't have to special-case
all the builds.  There is still no actual RSA implementation code
in libcrypto or src/* on US code trees.
2000-02-25 08:18:43 +00:00
Peter Wemm
3d5985cc5f Forced commit; correct previous log message. Use dlopen() only if
compiling in a shared library (PIC), not the other way around.
2000-02-25 08:15:50 +00:00
Peter Wemm
150f7c198f Don't use the dlopen() stubs if comiling with PIC. This still
needs some more thought for the static case.  Should we provide weak
error-generating stubs for static binaries if -lrsaref was forgotten?
2000-02-25 08:13:50 +00:00
Peter Wemm
08c0f1c7dd Sync with internat; delete a trailing space 2000-02-25 05:35:37 +00:00
Brian Feldman
8261034302 Fix a bug that crawled in pretty recently (from the port). It made
sshd coredump :(
2000-02-25 05:22:14 +00:00
Peter Wemm
f021cab12e Fix references to crypto code to check that it exists first. Otherwise
it breaks mergemaster (and probably other things).

Submitted by:	Munehiro Matsuda <haro@tk.kubota.co.jp>
Approved by:	jkh
2000-02-25 05:16:44 +00:00
Boris Popov
ce0d1c79c3 Fix the loader to handle module dependencies properly. More fixes
will be provided after modmetadata appears in the kernel.

Reviewed by:	msmith
Approved by:	jkh
2000-02-25 05:10:44 +00:00
Peter Wemm
38ba484ce1 Fix garbage in SSH_PROGRAM (only on freefall, not internat) 2000-02-25 04:41:06 +00:00
John Polstra
7e4977c94e Fix two bugs in the fault handler for copy{in,out} and friends.
First, it was failing to reset the PCB's pcb_onfault member to NULL.
Under some really obscure circumstances this might cause a wild jump
within the kernel when a panic would otherwise occur.  Second, the
handler was loading the GP register needlessly and with an incorrect
value.

Reviewed by:	Doug Rabson <dfr>
Approved by:	Jordan Hubbard <jkh>
2000-02-25 03:26:10 +00:00
Brian Feldman
a95c122521 Make "CheckHostIP" default to off. This was proposed on -security and
earlier IRC, but despite my inital feeling against it, this seems
the more proper thing to do.

Proposed by:	rwatson
2000-02-25 03:04:29 +00:00
Brian Feldman
18a711954e The includes must be <openssl/.*\.h>, not <ssl/.*\.h>. 2000-02-25 01:53:12 +00:00
Mark Murray
b719e3c926 remove more ports crud. 2000-02-24 23:54:00 +00:00
Mark Murray
6ecb050733 remove ports junk 2000-02-24 23:46:38 +00:00
Mark Murray
1742a2be81 We have some new libraries; give them names. 2000-02-24 23:18:08 +00:00
Mark Murray
5e41278213 Use libcrypto instead of libdes. 2000-02-24 23:15:42 +00:00
Mark Murray
93e3e5e9e3 Run sshd at boot time if the sysadmin wants it. Also install
ssh[d] config files in the right place.
2000-02-24 23:12:04 +00:00
Mark Murray
0d854656e9 Add userland tweakables for OpenSSH and OpenSSL. 2000-02-24 23:08:19 +00:00
Mark Murray
84a9e747fa We have a new world order in libraries.
Goodbye libdes; Welcome libcrypto.
2000-02-24 23:03:16 +00:00
Mark Murray
51a4536595 Remove port components not needed in 4.n+
Submitted by:	Half the freaking planet....
2000-02-24 22:39:24 +00:00
Mark Murray
d3e3752170 Use libcrypto instead of libdes.
Also - OpenSSH blesses us with a module for PAM.
2000-02-24 22:24:37 +00:00