Commit Graph

1026 Commits

Author SHA1 Message Date
Robert Watson
71e8420535 o No longer mount /proc by default on newly installed systems. Almost
all facilities that previously relied on /proc have been rewritten
  to use ptrace().  procfs has presented a substantial security
  hazard for years, with several user->root compromises in the last
  few years.  Procfs will continue to be available but will require
  administrator intervention to use.

Reviewed by:	scottl, jedgar, mike, tmm
2002-02-10 01:34:04 +00:00
Brian Somers
aaf89c2c89 Reword the ``Please remove the FreeBSD fixit CDROM now.'' to
``Please remove the FreeBSD fixit CDROM/DVD now.''.

MFC after: 2 weeks
2002-02-08 13:42:35 +00:00
Jordan K. Hubbard
6a5a5f48e7 Stop saying that "express" mode is for impatient people. It's
really for impatient and EXPERT people who know sysinstall
backwards and forwards.

MFC after:	1 week
2002-01-30 01:34:16 +00:00
Murray Stokely
7cdcc9fecd Fix a signal 11 error that occurs if you try to use the 'T' option on
an existing FreeBSD partition.

Reported by:	Brent Cook <busterb@mail.utexas.edu>
2002-01-29 22:35:40 +00:00
Brian Feldman
16e9521b32 Unbreak installation for the CD-ROM and possiblhy other media types.
Obtained from:	LOMAC project
Sponsored by:	DARPA, NAI Labs
2002-01-14 19:42:11 +00:00
Sheldon Hearn
b073d65ef8 Revert rev 1.316 now that the bootstrap issues with filesystems using
block sizees larger than 8192 bytes have been resolved, as per the
following deltas:

	rev 1.34	src/sys/boot/i386/boot2/boot2.c
	rev 1.5		src/sys/boot/alpha/boot1/sys.c
2002-01-14 09:16:56 +00:00
Maxim Sobolev
ef9cff0bec Safwish package built on bento is called `sawfish-gnome', so adjust sysinstall
and print-cdrom-packages.sh accordingly.

Revealed by:	re
MFC after:	1 day
2002-01-09 20:10:02 +00:00
Sheldon Hearn
c0d8fa8578 According to jhb, the alpha bootstrap code depends on the root
filesystem using a block size of 8192.  Since this seems unlikely to
be fixed soon (specifically in time for 4.5-RELEASE on the RELENG_4
branch), fall back to the old default block and frag sizes of 8192 and
1024 in sysinstall on the alpha.

Reported by:	jhb
2002-01-07 12:25:30 +00:00
Matthew Dillon
7cf138022c Add 'R'ecover option that deletes a partition and attempts
to recover its space into the previous partition.  Revert 'D'elete
to not attempt to recover any space.

Do not auto-create /home as per release engineers decision (though
I think this is a mistake).  However, all of this code will be
replaced later on anyway either with Jordan's stuff or with
some other sort of templater, so it isn't a big deal.
2002-01-07 07:51:24 +00:00
Jordan K. Hubbard
90c1249eb2 Correct the path for the stable snapshot server.
Noticed by:  "Peter Holm" <p_holm@mail.tele.dk>
2002-01-03 23:33:21 +00:00
Robert Watson
4b4b1c0520 o Wording and spelling fixes for security menu description. 2001-12-21 19:59:15 +00:00
Robert Watson
4d0032bde9 o Expand the text describing the Security options menu.
o Move nfs_reserved_port_only out of security profiles (where it was
  set somewhat improperly) to the Security options menu directly.
  Previously, the variable was set to true for Moderate, but not for
  Extreme, which is at best inconsistent.
o Update the Security Profiles help file to remove reference to the
  NFS reserved port.

o Note that the kernel currently defaults the sysctl to '0', but
  sysinstall has changed it to '1' as a default as of late; however,
  rc.conf sets the value to NO as the default.  This change brings
  them relatively into sync.

Sponsored by:	DARPA, NAI Labs
2001-12-21 19:51:44 +00:00
Robert Watson
86f2d72fd8 o Add a configSecurity menu to generally configure security settings,
and pull configSecurityProfile under that menu.  Add a menu option
  to determine whether LOMAC is enabled at boot.  Probably, eventually,
  many of the 'Security Profile' menu choices should be pulled out
  independently into the Security Menu, so as to make them individually
  selectable.

Sponsored by:	DARPA, NAI Labs
2001-12-21 18:30:50 +00:00
Robert Watson
409c2e2e05 o Don't make 'Moderate Security Settings' the DEFAULT, as otherwise
selecting 'Cancel' to avoid making changes doesn't work.  Really, we
  should deprecate security profiles and move to a more fine-grained
  model.
2001-12-21 18:08:54 +00:00
Jordan K. Hubbard
f3c7fb1696 Enable soft updates by default for everything but the root filesystem.
The user can still toggle it back off in the label editor (or post-install
for that matter) if they explicitly do not want soft updates to be used
for some reason.

Agreed to be a good thing by:	kirk
2001-12-20 23:39:30 +00:00
Sheldon Hearn
3626f83327 Update the default newfs block and fragment sizes from 8192/1024 to
16384/2048.

Following recent discussions on the -arch mailing list, involving dillon
and mckusick, this change parallels the one made over a decade ago when
the default was bumped up from 4096/512.

This should provide significant performance improvements for most
folks, less significant performance losses for a few folks and
wasted space lost to large fragments for many folks.

For discussion, please see the following thread in the -arch archive:

Subject: Using a larger block size on large filesystems

The discussion ceases to be relevant when the issue of partitioning
schemes is raised.
2001-12-11 16:21:40 +00:00
John Baldwin
4f33ba1610 Fix the mouse question again to only run the mouse menu if a user doesn't
have a USB mouse.  Here's the deal on how this works:  USB mouse have
moused run for them automatically by usbd so we don't need to setup moused
for them.  We do need to setup moused for other mice though, so if the
user has a USB mouse, we don't need to do anything.  Hence the wording
"Do you have a non-USB mouse installed?" for the question.  The question
can be reworded as "Do you have a PS/2 or Serial mouse installed?" instead
if that is preferred.
2001-12-10 22:12:23 +00:00
Peter Pentchev
65dc334620 Add the Bulgarian BDS and Phonetic keymaps.
Reviewed by:	jhb
Approved by:	jhb, silence on -qa
MFC after:	1 week
2001-12-10 08:37:51 +00:00
David E. O'Brien
80c5d6d079 Update the list of public NTP servers from
http://www.eecis.udel.edu/~mills/ntp/clock2.htm
Also remove any Stratum 1 servers and only include Stratum 2 and higher
servers.

PR:		32586
Submitted by:	Arnaud Launay <asl@launay.org>
2001-12-10 02:35:54 +00:00
Matthew Dillon
b706fc664f cleanup 2001-12-10 02:18:05 +00:00
Matthew Dillon
173592263d Add auto-fill-on-delete. When deleting an 'A'uto created partition
sysinstall will automatically expand the previous partition to take up
the freed up space.  So you can 'D'elete /home and /usr will get the
combined space, or you can 'D'elete /tmp and /var will get the combined space.

This gives the user, developer, or lay person a huge amount of flexibility
in constructing partitions from an 'A'uto base.  It takes only 3 or 4
keystrokes to achieve virtually any combination of having or not having
a /tmp and/or /home after doing an 'A'uto create.

Change 'A'uto creation of /var/tmp to 'A'uto creation /tmp, which should
be less controversial.

MFC after:	6 days
2001-12-09 23:40:02 +00:00
Matthew Dillon
06f33c6e7a Cleanup sysinstall's 'A'uto partitioning mode to provide more reasonable
defaults both in regards to the size of the partitions that are created
and in regards to safety and functional separation.

Still TODO: extend the previous partition to cover a deleted partition
if the previous partiton was auto-created, and supply some sort of
solution for /tmp.

Reviewed by:	Just about everyone
Approved by:	Nobody except maybe my pet mouse fred
Obtained from:	God, so complain to HIM
MFC after:	1 week
2001-12-09 09:47:09 +00:00
Makoto Matsushita
bbcb3e0620 Sysinstall cleanups for installation:
1) Use devfs to mount filesystems.  If mounting devfs is fail,
           fallback to old code.
        2) When fscking filesystems, use 'fsck_ffs' explicitly.  As a
           result, we no longer need 'fsck' the wrapper program.

Reviewed by:	jkh
2001-12-02 04:47:46 +00:00
Makoto Matsushita
aab37bd55c Remove kget() feature, which is removed from 5-current kernel.
Since userconfig feature is implemented by tweaking variables (hint.*)
with loader(8), we can put back an equivalent feature.  Maybe the first
step for this is to commit yokota-san's patch (add userconfig command
for loader).

Approved by:	jkh
2001-12-01 13:13:27 +00:00
Bruce A. Mah
154fe58102 Grammar police (system console terminal type menu). 2001-11-26 23:14:21 +00:00
Andrey A. Chernov
d4e8a3b4c9 Add us-ascii_to_cp437 screenmap 2001-11-23 11:15:21 +00:00
Andrey A. Chernov
7b9c0eac1c Add fonts,screenmaps,console types 2001-11-23 07:40:54 +00:00
Jordan K. Hubbard
7a631f774d MFS: Stop reaping children. It makes evil things happen to the extraction
loop.
2001-11-01 23:32:46 +00:00
Brian Somers
d80d04cac0 Don't assume fixit media is only either a floppy disk or 2nd CDROM disc
Reviewed by:	murray
MFC after:	1 week
2001-10-29 16:17:19 +00:00
John Baldwin
b718f11936 Move the 'type' variable inside the block where it is actually used. 2001-10-23 17:31:11 +00:00
Ollivier Robert
41494fa079 Remove the ``-c 22'' option from newfs command line. Changes in newfs(8)
makes that obsolete. The jury^W-arch is still out about the block and fragment
sizes so I'll that for later.

Reminded by:	obrien
MFC after:	2 days
2001-10-20 09:28:53 +00:00
Jordan K. Hubbard
513cce4025 Add the ability to load klds from a floppy as part of the installation.
Submitted by:	"Daniel O'Connor" <doconnor@gsoft.com.au>
MFC after:	2 weeks
2001-10-12 22:39:02 +00:00
Jordan K. Hubbard
27a550e5ed DTRT in the restart case 2001-10-12 07:36:34 +00:00
Murray Stokely
55e3fefc53 Close all open file descriptors before restarting sysinstall.
PR:		bin/30737
Submitted by:	Alexey V. Neyman <alex.neyman@auriga.ru>
2001-09-30 00:43:32 +00:00
Bill Paul
95d674824f Add device driver support for the Broadcom BCM570x family of gigabit
ethernet controllers. This adds support for the 3Com 3c996-T, the
SysKonnect SK-9D21 and SK-9D41, and the built-in gigE NICs on
Dell PowerEdge 2550 servers. The latter configuration hauls ass:
preliminary measurements show TCP speeds of over 900Mbps using
only normal size frames.

TCP/IP checksum offload, jumbo frames and VLAN tag insertion/stripping
are supported, as well as interrupt moderation.

Still need to fix autonegotiation support for 1000baseSX NICs, but
beyond that, driver is pretty solid.
2001-09-27 23:55:28 +00:00
Murray Stokely
a0769a8d73 Add a couple of functions to create persistent variables that will
survive a sysinstall Ctrl-C -> 'Restart'.  This fixes another annoying
bug where restarting sysinstall will try to reload kernel modules and
do other external things that have already been done.  For now, use
these persistent variables to keep track of module, usbd, and pccardd
initialization.

Bug found by: rwatson
MFC after:    1 week
2001-09-24 10:16:23 +00:00
Murray Stokely
250f214507 Silence more warnings. 2001-09-22 23:17:37 +00:00
Murray Stokely
d47aa91c6a Silence warnings on alpha :
Use '%p' when printing out the address of a function.
  sizeof(int) != sizeof(long)
2001-09-22 22:34:14 +00:00
Murray Stokely
3b603fb7d3 Silence warnings. 2001-09-22 22:25:35 +00:00
Murray Stokely
9838440951 Silence warnings :
Use static as necessary.
   Use __unused as necessary.
   sizeof(int) != sizeof(void *)
2001-09-22 22:21:01 +00:00
Murray Stokely
eba8393e91 Add a function to free all of sysinstall's internal variables from the
environment.  This fixes an annoying bug where hitting Ctrl-C and
telling sysinstall to 'restart' will do no such thing since many of
the options are still set and so you won't be prompted for them
again.

MFC after:	1 week
2001-09-22 18:10:56 +00:00
Murray Stokely
8f217e4c8b Use the isDebug() function rather than making up a new environment
variable to check for debug functionality.  Previously, you had to set
both 'debug' and 'SYSINSTALL_DEBUG' to get a log of sysinstall's
activities.  Now, only 'debug' is necessary.
2001-09-22 18:07:47 +00:00
Poul-Henning Kamp
c35b54708a Add missing {}. This made most/all scripted installs fail.
Approved by:	jkh
2001-09-14 18:29:08 +00:00
Murray Stokely
417257575f Whitespace change only. Use the same indention level throughout this
file and add a blank line after variable declarations.

Submitted by:	jhb
2001-09-14 08:39:22 +00:00
Jordan K. Hubbard
30b7cb5e9f Return the *right* error codes for yes/no questions when non-interactive.
Submitted by:	Alan Judge <Alan.Judge@eircom.net>
2001-09-11 20:42:07 +00:00
Murray Stokely
810fd59fbb If we're running as init, install a signal handler for SIGCHLD.
PR:		bin/14729
Submitted by:	jhb
2001-09-06 09:53:53 +00:00
Murray Stokely
25818ccf8e Add Hungarian FTP mirror.
PR:		misc/21536
Submitted by:	Szilveszter Adam <sziszi@petra.hos.u-szeged.hu>
2001-09-05 07:41:01 +00:00
Murray Stokely
fe936981de Add Czech keyboard definition to sysinstall.
PR:		bin/17430
Submitted by:	Rudolf Cejka <cejkar@dcse.fee.vutbr.cz>
2001-09-05 07:12:19 +00:00
Murray Stokely
29b46c3bc5 Allow users to enable usbd and set flags from sysinstall. This is
useful for post install configuration or other cases that might not be
handled by usb.c. (usb.c already sets usbd_enable iff sysinstall
detects usb during install).

PR:		bin/18946
Submitted by:	Peter van Heusden <pvh@egenetics.com>
Reviewed by:	jhb
2001-09-05 00:58:28 +00:00
Murray Stokely
8e212e3580 Update the inetd configuration prompt for clarity.
Submitted by:	chern
Committed from: "Make sysinstall suck less party", D1031 WRS campus, Alameda
2001-09-05 00:45:13 +00:00