Commit Graph

58552 Commits

Author SHA1 Message Date
Garrett Wollman
96b668902f Merge tzdata2001b from vendor branch. 2001-04-06 16:46:52 +00:00
Garrett Wollman
c0c927e3de This commit was generated by cvs2svn to compensate for changes in r75264,
which included commits to RCS files with non-trunk default branches.
2001-04-06 16:43:21 +00:00
Garrett Wollman
b825d93eb9 Latest timezone database form Arthur Olson. This update includes changes
to the following locations:

Antarctica
Australia (additional historical comments)
Bangladesh (new spelling of Dhaka)
Brazil (multiple changes; America/Porto_Acre renamed America/Rio_Branco)
CNMI
Canada
Chile
Dominican Republic
East Timor
Falkland Islands
Fiji
France (additional history)
Guam
Israel (additional historical comments)
Latvia
Mexico
Moldova (Europe/Tiraspol removed)
Netherlands (additional history)
Paraguay
Philippines (additional history)
Tonga
United States (additional historical comments)

Obtained from:	Arthur Olson; <ftp://elsie.nci.nih.gov/pub/tzdata2001b.tar.gz>
2001-04-06 16:43:21 +00:00
Nick Sayer
036790848a Clean up telnet's argument processing a bit. autologin and encryption is
now the default, so ignore the arguments that turn it on. Add a new -y
argument to turn off encryption in case someone wants to do that. Sync
these changes with the man page (including removing the now obsolete
statement about availability only in the US and Canada).
2001-04-06 15:56:10 +00:00
Darren Reed
454a43c1f1 fix security hole created by fragment cache 2001-04-06 15:52:28 +00:00
Ruslan Ermilov
207ef320ab Execute this script in a "C" locale environment.
Currently, cs_CZ.ISO_8859-2 locale's collation sequence is
broken, and this caused grep(1) to skip some include files.

Reported by:	Michal Mertl <mime@traveller.cz>
2001-04-06 14:40:26 +00:00
Chris D. Faulhaber
0873af5d5f Do not log every potential exploit attempt since a denial-of-service
may result.
2001-04-06 14:34:15 +00:00
Chris D. Faulhaber
12695b686a - Correct off-by-one error and buffer underflow from previous fix
- int -> unsigned char fixes

Submitted by:	ache, dillon, Mark Andrews, et.al. (on -security)
2001-04-06 14:15:38 +00:00
John Baldwin
ae60f36f19 Axe the per-cpu variable witness_spin_check as it was replaced by the
per-cpu spinlocks list.
2001-04-06 07:20:27 +00:00
Bill Fumerola
0901f62e11 pipe/queue are the only consumers of flow_id, so only set it in those cases 2001-04-06 06:52:25 +00:00
Brian Feldman
5e5719688a Label the OpenSSH section, then add a small explanation for the existence
of the non-typo "csshd" service.

Prodded by:	markm
Reviewed by:	markm, dwhite, rwatson
2001-04-06 05:52:53 +00:00
Garance A Drosehn
c83a68e029 Make sure the euid is restored in an obscure error situation.
Submitted by:	J Wunsch <j@ida.interface-business.de> in freebsd-audit
2001-04-06 02:14:39 +00:00
Brian Somers
6ccdc30b6d It's possible to kldload netgraph (as well as the other ng_* bits),
so do it if required.
2001-04-05 22:53:35 +00:00
David E. O'Brien
f8a584ac49 Don't need to preload the vn' KLD anymore as we use md' for release
building.
2001-04-05 22:36:41 +00:00
David E. O'Brien
4f32923ce7 Bump the default / size up another 10MB to 120MB.
Requested by:	jhb
2001-04-05 21:34:47 +00:00
David E. O'Brien
546f81a8d1 Remove -Wall. It breaks compiling with non-gcc compilers. 2001-04-05 20:52:33 +00:00
David E. O'Brien
d36f11daa5 Rev 1.10 actually only tested booting from floppies. Thus that is all
that was fixed.

There are other problems why the current sources for the Alpha `cdboot'
do not produce a working loader.  Because we use the 4.0-RELEASE `cdboot'
binary, it will not get these fixes at the current time.  Thus CD booting
on certain AlphaServer boxes is still broken.
2001-04-05 20:45:25 +00:00
Hajimu UMEMOTO
015136259e IPv6 support for skeyaccess(3). You can specify IPv6 address
using `internet' keyword into /etc/skey.access.

Not Objected to by:	-audit and -net
2001-04-05 19:56:54 +00:00
Hajimu UMEMOTO
7b35f61ab7 - correct logic of per-address input packet counts for lo0
- reject packets to fe80::xxxx%lo0 (xxxx != 1)

Submitted by:	JINMEI Tatuya <jinmei@isl.rdc.toshiba.co.jp>
2001-04-05 19:45:02 +00:00
Bruce A. Mah
8b4fca1f63 New release notes: ata(4) configure options are now loader tunables,
isp(4) target mode support (submitted by mjacob).

Update hardware lists from isp(4) manpage, fix typos.
2001-04-05 18:12:50 +00:00
Ian Dowse
c2fdb4d1b1 Add IPv6 support to showmount(8). This replaces IPv4-specific code
with calls to the new protocol-independent clnt_*_create functions
provided by ti-rpc. Martin submitted a more complex patch to achieve
this, but it turns out that clnt_create() does everything we need.

Reviewed by:	Martin Blapp <mb@imp.ch>
2001-04-05 17:18:36 +00:00
Warner Losh
aaad2b9793 Soften the dire warnings about this code. Things are kinda working
now and it does compile :-).  There are still some issues, but it is a
good time to soften the warning.
2001-04-05 17:00:46 +00:00
Søren Schmidt
5e083a4a31 More error handling cleanups. 2001-04-05 15:45:53 +00:00
Nick Sayer
6a1fe28e41 Reactivate SRA.
Make handling of SIGINT and SIGQUIT follow SIGTSTP in TerminalNewMode().
This allows people to break out of SRA authentication if they wish to.
2001-04-05 14:09:15 +00:00
Josef Karthauser
421b34291f Fix a few bugs in BSDPAN:
* Fix a bug which prevented the second invocation of overloaded
  subs governed by SelfLoader from functioning.

* Fix a bug with XS modules.  MakeMaker determines where the xsubpp
  preprocessor is located by adding "ExtUtils" string to the Perl's
  system path.  At the same time, BSDPAN has to fool MakeMaker into
  thinking that the Perl's system path is elsewhere.  Now we
  `reverse-adjust' the notion of the Perl's system path for a
  moment, so xsubpp utility is found.

This should fix the breakage with some p5- ports.

Reported by:	vanilla
Submitted by:	Anton Berezin <tobez@tobez.org>
2001-04-05 13:59:51 +00:00
Chris D. Faulhaber
53e11665d9 Remove the recently-depricated LIBPOSIX1E 2001-04-05 12:11:02 +00:00
Søren Schmidt
268f572fab On burners that return faulty ready on fixate, wait for the
expected fixate time before returning.

Dont print error messages to the console on READ_TOC on
a blank media.
2001-04-05 11:17:33 +00:00
Søren Schmidt
ae2e8ffad0 Add new flag ATPR_F_QUIET to atapi_request.
Cleanup error handling.
2001-04-05 11:15:24 +00:00
Søren Schmidt
e65e827e13 Correct the sysctl names to match the tuneables.
Proberly flush the tag queue on detach.
2001-04-05 11:13:07 +00:00
Doug Rabson
46b9a4ff52 Don't call prom_open() multiple times. This confuses some versions of SRM
and makes it impossible to boot from floppy and CD on some AlphaServer
platforms.

Detective work by: Michael Richards <michael@fastmail.ca>
2001-04-05 10:28:52 +00:00
Alfred Perlstein
6857ad1f30 test should be for == 0, not < 0 2001-04-05 09:47:07 +00:00
Mike Pritchard
0a0869f618 We don't use the "pseudo-device" configuration option any longer,
so update the example to use the correct definition.

Add an example for documenting kernel compile options, along with
a small example of how to reference them in the main text of the
man page (I.e. the .Dv macro).

Inspired-by:  a brief exchange I saw in in the commit messages mail
2001-04-05 09:37:55 +00:00
Alfred Perlstein
34702f7e67 WI_TIMEOUT is 65536
65536 * 10msec == 10 minutes 55 seconds == hung machine

Instead wait for the busy bits for a max of ~2 seconds (200 * 10msec)
2001-04-05 09:25:37 +00:00
Ruslan Ermilov
6405e53deb Record -lposix1e death. 2001-04-05 07:59:19 +00:00
Ruslan Ermilov
1a4fc0bfba mdoc(7) police: add missing LIBRARY section. 2001-04-05 07:51:48 +00:00
Ruslan Ermilov
8eb5b197f1 Unbreak world.
Submitted by:	jhay
2001-04-05 07:47:06 +00:00
Ruslan Ermilov
31acc83627 Record -lposix1e merge with -lc. 2001-04-05 07:42:56 +00:00
Bruce Evans
594279ec73 Fixed some printf format errors (don't assume that ntohl() returns u_long). 2001-04-05 07:37:55 +00:00
Ruslan Ermilov
336ee39a26 mdoc(7) police rev 1.11: convert descriptions and cross-references
for the ACL editing library functions to the plain tagged list.
2001-04-05 07:35:59 +00:00
Alfred Perlstein
8da738fd11 Don't leak resources:
Don't leak iospace when irq allocation fails.  (call wi_free())

Call bus_release_resource() with the correct "rid" obtained from
bus_alloc_resource() that's saved in the softc instead of a hardcoded
0.
2001-04-05 06:56:10 +00:00
Robert Watson
2955f0b360 o Rather than arbitrarily construct a credential in the nfs_statfs()
VFS operation, make use of the calling process's credential.  This
  solution may not be ideal (there are a number of other possible
  proposals, including making use of the proc0 credential, adding a
  credential argument to the VFSOP, and switching from a hard-coded
  ucred to a hard-coded nfscred), it is simple and appears to
  work.  The arguments against using simply crget() are fairly
  strong: it is the only place in the code (other than a nearly
  identical invocation in ncp) where crget() is invoked, other than
  in the process credential creation code; as ucred becomes extensible,
  this use of crget() without appropriate context results in less and
  less meaningful credential data.  The implementation here will
  probably be tweaked as a result of experimentation and further
  exploration of the requirements.  In the mean-time, it allows
  progress to be made in ucred expansion for new security models without
  causing a crash every time df is used on an NFS mounted file system.

  This code has been interop tested against FreeBSD and Solaris NFS
  servers.  While using the process credentials should not introduce
  interop problems, please let me know if any turn out to exist.

Reviewed by:	freebsd-arch
2001-04-05 06:12:38 +00:00
Bosko Milekic
406dd7d1d4 Change a couple of M_WAITOKs used in M_PREPEND() to M_TRYWAITs, which
is what they should be. As the returned mbuf is already checked for
failure of M_PREPEND even in the wait case, nothing more to be done
here.
2001-04-05 04:20:48 +00:00
Bosko Milekic
22a847c32e Various style fixes.
Also place the macros under #ifdef _KERNEL. Equally hide the internal
structures such as the freelist structs which include condition variables.

Reviewed by: bde
Mostly suggested by: bde
2001-04-05 03:55:27 +00:00
David E. O'Brien
2881e5831b Default the UTC question to "yes" on the Alpha. 2001-04-05 02:46:40 +00:00
David E. O'Brien
232470f6f6 This builds fine with -Wall. 2001-04-05 02:46:21 +00:00
Brian Somers
03a2501aa5 When we change the interface MTU, run through the routing table and tweak
all route MTUs too.
2001-04-05 02:23:48 +00:00
Chris D. Faulhaber
6822f9df3f - Add descriptions and cross-references for the ACL editing library
functions.
- Place the acl_dup() description in alphabetical order.
- Move the POSIX.1e descriptions under the ENVIRONMENT section to the
  STANDARDS section.

Reviewed by:	rwatson
Obtained from:	TrustedBSD Project
2001-04-05 01:48:07 +00:00
Chris D. Faulhaber
4aa97316b4 Install the acl_create_entry.3 man page 2001-04-05 01:36:54 +00:00
Bruce A. Mah
58476adac4 New release note: Fix for ntpd(8) vulnerability.
Correction:  fetch(1) recently gained a -U option, not ftp(1) (pointed
out by des).
2001-04-05 01:36:39 +00:00
Dima Dorfman
25d0cc3b4d Make it clear that commands within labels must be indented to be
recognized.

PR:		26293
Reviewed by:	brian
2001-04-05 01:25:42 +00:00