Commit Graph

11201 Commits

Author SHA1 Message Date
Maksim Yevmenkin
2d7f9912e0 Temporarily put ugly workaround in place to make sparc64 build happy.
panther is down at the moment, so better fix will follow later.
2006-09-08 15:05:38 +00:00
Maksim Yevmenkin
7aebfa93ac Update bthidd(8) code and hook it up to the build.
bthidd(8) now was integrated with vkbd(4) and supports
multiple keyboards via vkbd(4)/kbdmux(4).

The code was tested with Apple Bluetooth keyboard and
SE k700i cell phone (remote control feature).

MFC after:	1 month
2006-09-07 21:47:49 +00:00
Brian Somers
e5bec77751 Remove leading zeros
Suggested by:	mdoc police (ru)
2006-09-06 15:58:59 +00:00
Brian Somers
d398d50285 Remove __DATE__ so that compiling the same source produces the same binary
(for non-static binaries at least).
2006-09-06 06:33:39 +00:00
Brian Somers
3026fd06ca If the peer REJects our MRU request and that request is for a value
less than the current MTU, set our mtu to the value requested.
2006-09-06 06:23:55 +00:00
Sam Leffler
56e4b2d3cc update for v3.9.4
MFC after:	1 month
2006-09-04 20:27:05 +00:00
Sam Leffler
85fb34beb0 add define's from config.h for pcap-int.h; this is a noop now
but will be required for libpcap 0.9.4
2006-09-04 19:30:44 +00:00
Ruslan Ermilov
405a44d326 Use a #define to refer to /etc/crontab. 2006-09-03 17:52:19 +00:00
Sam Leffler
b3f627ac81 incorporate Rui Paulo's work
Obtained from:	netbsd
2006-09-02 17:56:24 +00:00
Colin Percival
b698a3ab22 Conform to wider English usage.
Submitted by:	Royce Williams
2006-09-02 10:47:01 +00:00
Poul-Henning Kamp
efc88ae81d Document that the default timeout is 16 seconds 2006-09-02 09:11:58 +00:00
Marius Strobl
d647ed4cf6 - Improve the description of gem(4); the Sun chips it supports are
termed ERI and GEM rather than GMAC.
- Bring the description of le(4) in line with the current le(4); it
  was still refering to the old i386 ISA-only le(4) which was nuked
  along with ISA_COMPAT while HEAD was FreeBSD 5.
- Add an entry for hme(4).
- Remove the obsolete entry for lnc(4).

MFC after:	1 day
2006-09-01 22:34:49 +00:00
Marius Strobl
ad3c888766 Add missing '?' in "watchdog-enable?".
MFC after:	1 day
2006-09-01 20:09:22 +00:00
Marius Strobl
6ca1d15e09 Fix indentation in two spots to match the rest of this file. 2006-09-01 20:07:15 +00:00
Colin Percival
444f80d54b s/MAN8/MAN/
Pointed out by:	ru
2006-09-01 09:49:09 +00:00
Ruslan Ermilov
458c311721 Style. 2006-09-01 09:24:28 +00:00
Ruslan Ermilov
23e8fc3aeb It's spelled MAN. 2006-09-01 09:07:11 +00:00
Colin Percival
48ffe56ac5 Add FreeBSD Update 2.0 client code. The build code is in the projects
repository.

Sponsored by:	FreeBSD security development fundraiser
2006-08-31 09:51:34 +00:00
Brooks Davis
0fffba68bd When generating localhost entries in /etc/hosts, put localhost before
localhost.domain so that naive users of gethost* think 1:: and 127.0.0.1
are "localhost" which is what the user expects.  This also matches the
sample hosts file in src/etc/hosts.
2006-08-30 15:14:00 +00:00
Thomas Quinot
35a64c9f6f Set alarm timer for grace period from the grace_period variable, instead
of hard-coding a value of 10 seconds. Command line flag -g is thus now
correctly taken into account.

PR:		bin/102176
MFC after:	1 week
2006-08-23 15:59:43 +00:00
Ruslan Ermilov
2b46c64c9c Remove alpha left-overs. 2006-08-22 08:03:01 +00:00
Marcel Moolenaar
a18003357c Build mount_smbfs on ia64. 2006-08-22 03:31:24 +00:00
Christian Brueffer
ae277cc673 Add several missing NIC drivers, remove two obsolete ones (el, ix).
Approved by:	rwatson (mentor)
MFC after:	1 week
2006-08-21 09:25:59 +00:00
Ruslan Ermilov
7b64620d93 Fix the output glitch. 2006-08-21 09:15:17 +00:00
Xin LI
ccb43d66aa Use same signedness for i and matched_c. This should make
newsyslog(8) WARNS=6 clean.
2006-08-17 18:15:43 +00:00
Yaroslav Tykhiy
81cd89bd43 Enumerate all cases where -i is applicable.
MFC after:	3 days
2006-08-17 07:14:01 +00:00
Maxim Konovalov
946289a591 o Style previous. 2006-08-17 05:55:20 +00:00
Thomas Quinot
c6d0f16db1 Use setproctitle(3) to provide identification of the client and server
processes created by rpc.lockd.

MFC after:	1 week
2006-08-16 18:33:35 +00:00
Thomas Quinot
97a733dff0 Remove unsafe use of asynchronous I/O (the SIGIO handler could cause
incorrect reentrant calls to the libc memory manager).

Add missing error handling:
  * for an incoming response with an incorrect tid;
  * for a failure to register the response RPC program,

Fix error handling for failure to malloc job descriptor (this needs to
be done before the transient RPC program is registered).

PR:		bin/102143
MFC after:	2 weeks
2006-08-16 12:58:41 +00:00
Dima Dorfman
7d6f91e27b Improve wording for -f and -F. 2006-08-14 08:49:08 +00:00
Ruslan Ermilov
0f9e9c60c0 Don't push a map on a master server which will fail anyway.
PR:		bin/72881
Submitted by:	thomas (slightly coloured by me)
2006-08-13 19:57:32 +00:00
Colin Percival
7773ee24f3 Undefine __DATE__ in order to avoid placing a build timestamp into
/usr/sbin/{named, lwresd}.  Note that POSIX / C99 doesn't technically
allow __DATE__ to be (un|re)defined, but gcc does what we mean anyway.

Approved by:	dougb
MFC after:	1 month
2006-08-13 05:32:10 +00:00
Kirill Ponomarev
b041cda4ed Fix "pkg_version -Io" coredump, if some packages have no origin at
all.

PR:		bin/101932
Submitted by:	novel, sat
MFC after:	5 days
2006-08-12 18:32:51 +00:00
Thomas Quinot
bc1f62de8d Remove extraneous trailing \0 in string literal.
MFC after:	2 weeks
2006-08-11 23:03:16 +00:00
Thomas Quinot
53c651a14e (sm_mon_1_svc): Fix debugging output: when establising a monitoring
request, correctly report the location (usually localhost) to which
 a callback will be made when a notification is received for the
 monitored host. Previsouly, the name of the monitored host was
 reported instead.

MFC after:	2 weeks
2006-08-11 21:44:53 +00:00
Dag-Erling Smørgrav
b21860b5d0 Cosmetic: fix indentation. 2006-08-11 17:17:14 +00:00
Alexander Leidinger
98a746cfe3 Readd sade, the problem should be fixed. 2006-08-09 11:26:11 +00:00
Alexander Leidinger
d876403d1e Remove the keymap stuff too, it is not needed in sade. 2006-08-09 11:25:10 +00:00
Alexander Leidinger
89cf3df166 Get rid of the rtermcap stuff (embedding termcaps into the program). This
is needed in sysinstall on boot, but not in sade on a fully working system.

After this change I noticed no change in behavior on a vty when TERM is not
set.
2006-08-09 09:12:01 +00:00
Xin LI
47dbd966d9 Bump WARNS level to 3.
Tested with:	make universe
2006-08-09 08:25:21 +00:00
Xin LI
88af688c34 Unbreak sparc64 build.
Reported by:	tinderbox
2006-08-09 08:24:46 +00:00
Xin LI
7b8fadf879 Fix PC98 build.
Spotted by:	make universe
2006-08-09 05:33:45 +00:00
Sam Leffler
fdffd7edcc disconnect sade until someone fixes tinderbox builds 2006-08-09 05:26:19 +00:00
Xin LI
fd596b5014 Partitions are only meaningful for i386 and amd64 architectures, so disable
these code on other architectures.
2006-08-08 14:28:03 +00:00
Xin LI
c7d9f7f033 Make sade(8) WARNS=3 clean. 2006-08-08 13:45:46 +00:00
Xin LI
7f557ac0a7 Typo (favour -> favor). 2006-08-08 08:51:37 +00:00
Xin LI
f5a6ba0f79 Shutdown curses when exit. While I am there, remove a stale
comment which does not apply to sade(8).
2006-08-08 07:51:58 +00:00
Gleb Smirnoff
eac2afced2 - Pass pointer to fd_set in ReadSockets.
- style(9) nits.

Submitted by:	ru
2006-08-08 07:04:40 +00:00
Alexander Leidinger
41ae1d1e83 Connect sade to the build. 2006-08-07 23:37:51 +00:00
Alexander Leidinger
2e14ff0f41 Say welcome to 'sade', the SysAdmins Disk Editor. It's the fdisk and disklabel part
of sysinstall. So sysinstall may retire now, we have the important non-install part
of it covered.

ATM it doesn't understand GEOM stuff (like mirror, stripe, raid, ...), but patches
to change this and to clean it up internally are more than welcome.

Submitted by:	mami@nyitolap.hu
2006-08-07 23:35:49 +00:00
Alexander Leidinger
e6748c986c Forced commit to note repo copy from sysinstall.
Repo copy by:	markm
2006-08-07 23:20:23 +00:00
Gleb Smirnoff
b9124a7354 Add line edit and history support to ngctl(8) via editline(3).
Details:
- The main thread runs editline(3) functions, that can block.
- A separate thread is launched to monitor netgraph sockets.
- The access to the descriptors is protected by a mutex. At
  runtime the monitoring thread owns the mutex. When the main
  thread reads a command from el_gets() it asks the monitoring
  thread to release a mutex and sleep until the main thread
  processes the command.

This makes ngctl(8) depend on libedit, and libpthread. Thus, the
new functionality isn't compiled in if release is being built
with -DRELEASE_CRUNCH.

PR:		bin/87352
Reviewed by:	ru, Nuno Antunes <nuno.antunes gmail.com>
2006-08-07 14:17:05 +00:00
Xin LI
49fe7301af Update NetBSD and OpenBSD SCM tags to match the reality. Note that
NetBSD revisions 1.8 and 1.9 are not actually applied to our code base
because we have solved the problem differently, therefore, these changes
can be safely skipped.
2006-08-07 10:29:18 +00:00
Xin LI
7e87aff9d5 Merge all applicable NetBSD and OpenBSD improvements over this manpage
till NetBSD mailwrapper.8,v 1.11 and OpenBSD mailwrapper.8,v 1.8:

 - Separate exit status out from diagnostics section.
 - Fix typos.

Obtained from:	NetBSD, OpenBSD
MFC After:	Along with mailwrapper(8) updates.
2006-08-07 10:22:08 +00:00
Warner Losh
2fdfd0fee2 Use safe strlcpy rather than unsafe strncpy. After marcel's last fix,
there was still one overflow possible.  strlcpy is faster anyway
because it doesn't unexpectedly zero the entire length of the string
when copying short strings....
2006-08-05 18:22:11 +00:00
Marcel Moolenaar
b1bc6755d1 Build shared on PowerPC now that the bug has been found and fixed. 2006-08-04 21:29:39 +00:00
Marcel Moolenaar
77a6f8ac6f Fix (static) buffer overflow bug. The dest buffer is of size MAXPATHLEN,
so dest[MAXPATHLEN] falls outside the buffer.  This bug corrupted
arenas[0] defined in libc's malloc.c on PowerPC when kldxref is shared,
which triggered a delayed SIGSERV.
2006-08-04 21:28:42 +00:00
Marcel Moolenaar
d73f8b667e Remove remnants of Alpha. 2006-08-02 17:16:48 +00:00
Maxim Sobolev
e5d34218fb Add device to access and modify Open Firmware NVRAM settings in
PowerPC-based Apple's machines and small utility to do it from
userland modelled after the similar utility in Darwin/OSX.

Only tested on 1.25GHz G4 Mac Mini.

MFC after:	1 month
2006-08-01 22:19:01 +00:00
Yaroslav Tykhiy
af73d4e69e inetd and telnetd are not included in the standard release
crunched floppies, but they can be included as options in
src/release/picobsd (omitted by default though.)  Therefore
preserve the RELEASE_CRUNCH knob in their Makefiles, but
tell its real purpose in a comment.
2006-07-31 19:15:10 +00:00
Marcel Moolenaar
acdb66fce6 Use NO_SHARED=YES to force a static link.
Pointed out by: ru@
2006-07-30 20:51:41 +00:00
Marcel Moolenaar
259d74ed53 Link kldxref(8) static on PowerPC to work around a SIGSEGV that
cannot easily be analyzed due to there being no debugger yet.
The SIGSEGV only happens when kldxref is linked shared.
Since kldxref(8) is needed for a release build, having it not
dump core is important.
2006-07-29 19:43:26 +00:00
Marcel Moolenaar
9ceddbd532 Change maketempfile() to return a FILE* so as to eliminate the fopen()
that immediately follows the only call to it. maketempfile() uses
mkstemp(), so the temporary file has already been opened and using
fopen() again just opens the file twice. This also fixes the invalid
mode used on the fopen().
While here, assign NULL to fxref after fclose() because we test for
fxref being !NULL to determine if we have the (temporary) hints file
open.
2006-07-29 19:39:03 +00:00
Yaroslav Tykhiy
ad4c6857b6 ip6addrctl belongs to under MK_INET6, it is of no use w/o IPv6
in the system.
2006-07-27 15:39:29 +00:00
Yaroslav Tykhiy
064aa4479f These IPv6-only tools have no explicit dependency on the INET6 macro.
Tested with:	cmp(1)
2006-07-27 15:31:13 +00:00
Yaroslav Tykhiy
bc34ace3c3 ndp, rrenumd, rtadvd, and rtsold are IPv6-only tools,
they belong to under MK_INET6 with their friends.
2006-07-27 15:28:22 +00:00
Yaroslav Tykhiy
6884810944 Obey MK_INET6_SUPPORT. 2006-07-27 14:52:12 +00:00
Yaroslav Tykhiy
4fb4614daa Fix build w/o INET6. 2006-07-27 14:49:51 +00:00
Pyun YongHyeon
267682d3e5 Add stge(4) to the list of supported network interface. 2006-07-25 01:03:55 +00:00
Maxim Sobolev
7697c5e483 Remove mention of the `W' flag, which has been turned to no-op by the
neworder change. Keep the option in a config file parser, to not
violate POLA.

MFC after:	2 weeks
2006-07-21 22:13:06 +00:00
Stefan Farfeleder
a68654e647 Convert macros to use C99's syntax for macros with a variable number of
arguments.
2006-07-20 09:47:15 +00:00
Stefan Farfeleder
347a5ee76c Remove unused variables. 2006-07-20 09:38:46 +00:00
Stefan Farfeleder
531c70a642 Don't use "implicit int". Move the opening { of the functions to the next
line while there.
2006-07-20 09:11:08 +00:00
Stefan Farfeleder
87364ca6f0 Remove an unused variable. 2006-07-19 10:46:38 +00:00
Stefan Farfeleder
c3759b3a3f Don't use empty braces ("{}") to initialise arrays. This is a syntax
error in ISO C (both 90 and 99).
2006-07-17 08:35:47 +00:00
Simon L. B. Nielsen
62fad4a13f Add FreeBSD version information to the menu title so it's possible to
see which release you are installing (really which FreeBSD version the
installer is running, but that shouldn't matter in all normal cases).

PR:		bin/100309
Submitted by:	Joao Barros <joao.barros@gmail.com> (original version)
Idea from:	FreeBSD ideas page
MFC after:	1 week
2006-07-15 12:23:56 +00:00
Hartmut Brandt
e55adffce7 Reduce the memory requirements for the tables by (1) using malloced strings
instead of maximum sized arrays embedded in the table structures and (2)
using pointers to constant oids instead of copying the oid into each
table structure. This also fixes indexing in the case when a string used
for indexing is longer than the maximum size allowed in the MIB.

Submitted by:	Victor Cruceru <soc-victor@>
2006-07-14 09:07:56 +00:00
Thomas Wintergerst
5d0c7501b6 Extend i4b to support CAPI manager based ISDN controllers (CAPI manager is part of
c4b, CAPI for BSD). This is a preparation to add CAPI for BSD to the source tree.

Approved by:	hm (mentor)
MFC after:	2 weeks
2006-07-09 21:16:06 +00:00
Colin Percival
d830256f33 Remove build timestamps. There's no need to know exactly when these programs
were built, and this removal makes these binaries build the same every time.

MFC after:	1 week
2006-07-09 05:53:24 +00:00
Dag-Erling Smørgrav
ccbca788b3 Turn on libfetch debugging if -v was specified on the command line.
MFC after:	2 weeks
2006-07-08 14:34:56 +00:00
Craig Rodrigues
46f8d30f5a In get_exportlist(), properly loop over mounted filesystems.
PR:	bin/99873
Submitted by:	Danny Braniss <danny at cs dot huji dot ac dot il>
2006-07-08 13:49:24 +00:00
Garance A Drosehn
ae39ffc92e Fix checking of the "lock" file in the spool directory for a queue,
so that the checking will wind up with the correct mode-bits in
the case where the initial open() of that lock file will create it.
Due to this bug, the first job ever sent to a queue could leave
that queue in a "printing is disabled" state.

PR:		93469
Submitted by:	Michael Szklarski of kco.com.pl
MFC after:	1 week
2006-07-07 01:12:26 +00:00
Maxim Konovalov
190483c011 o Add an 'optional' keyword, which allows files to be in the
specification, but not in the file hierarchy.

PR:		bin/99531
Submitted by:	skv
Obtained from:	NetBSD, originally from Ed Symanzik
Regress. test:	test/test05.sh
MFC after:	1 month
2006-07-03 10:55:22 +00:00
Xin LI
cf076341e7 Correct a typo 2006-06-29 09:18:16 +00:00
Gleb Smirnoff
9caee2ece7 Style: space after "return". 2006-06-28 10:38:38 +00:00
Garance A Drosehn
656f773000 Remove the last three calls to strncpy(), two of which would have
been bugs if the source had ever been too big for the destination.

MFC after:	3 weeks
2006-06-27 22:14:09 +00:00
Garance A Drosehn
a04de8fa95 Remove the "oldorder" processing. The "neworder" processing has
been the default for two years now, without any problems reported.

MFC after:	3 weeks
2006-06-27 00:18:15 +00:00
Yaroslav Tykhiy
b4e9432020 There is a plenty of arch's out there where sizeof(size_t) != sizeof(int).
A field width in printf(3) must be int, so cast return value from strlen()
to the type.

Noticed by:	Andrzej Tobola <ato iem pw edu pl>; tinderbox
Pointy hat to:	yar
X-MFC with:	the rest of the new asf code
2006-06-19 17:12:25 +00:00
Yaroslav Tykhiy
0e4e809602 Give a major overhaul to asf(8).
The improvements are:

- can get the kld info from core files via kvm(3);
- can use kldstat(2) directly, which is a piece of cake;
- can use .symbols or whatever, which allows for use by
  non-developers when reporting system crashes -- now asf(8)
  can be mentioned in the handbook at last;
- speed (no more double fts(3) per loaded module);
- various bugs fixed.

At the same time, the new asf(8) should stay compatible with
the old one, bar bugs.  Perhaps some defaults may be changed
later to match today's state of affairs.

Reviewed by:	grog
MFC after:	1 month
Sponsored by:	RiNet (Cronyx Plus LLC)
2006-06-18 11:14:40 +00:00
David E. O'Brien
3b26c608f8 Allow variable amounts of verbosity. 2006-06-12 22:39:32 +00:00
Maxim Konovalov
708f27a157 o Finally learn how to spell "privileges".
English trainer:	ceri
2006-06-11 21:13:49 +00:00
Maxim Konovalov
b608e56d62 o Spell "privledges" correctly. Re-style comment. 2006-06-11 20:17:18 +00:00
Bjoern A. Zeeb
f855cc4f36 Use IP addresses out of "TEST-NET" (for use in documentation and
example code) [RFC3330].

Reviewed by: simon
2006-06-11 12:57:41 +00:00
Maxim Konovalov
8ef09875f0 o Re-arrange parentheses and fix a conition logic for !do_dns case.
PR:		bin/98625
MFC after:	1 month
2006-06-09 14:01:07 +00:00
Maxim Konovalov
1e6c9668df o Add /etc/shells to a source files list. 2006-06-08 14:49:38 +00:00
Maxim Konovalov
7d2155f052 o NIS clients ask for "shells" map not "shells.list".
PR:		kern/86693
Submitted by:	Victor Sudakov
MFC after:	1 month
2006-06-08 09:12:07 +00:00
Tom Rhodes
15b2a87f8d Add adding_user.8 to SEE ALSO, note that usernames may contain any character
but not being with a hyphen, similar to adding_user.8.

PR:	35732
2006-06-07 04:58:54 +00:00
Xin LI
5f17c1e2b2 Use calloc() instead of zeroing the memory our own. 2006-06-07 01:43:26 +00:00
Craig Rodrigues
a84ee0d367 For network filesystems (NFS, samba, etc.), do not pass "export" nmount()
parameter to try to delete an NFS export.  It won't work, and will log
a spurious warning to syslog.

Tested by:	Arno J. Klaassen <arno at heho dot snv dot jussieu dot fr>
MFC after:	3 days
2006-06-06 21:56:49 +00:00
Xin LI
8fe1b8c03e Cleanups for mailwrapper(8):
- K&R -> ANSI prototype [O]
 - Do not bother to do free right before exit() or execve() [O]
 - Remove some dead code in addarg()
 - Make additional parameters specified in mailer.conf(5)
   actually work and document the fact. [N]
 - Avoid using __progname but instead use getprogname()
   and setprogname() to provide more sensible messages. [O, N]
 - Update $OpenBSD$ and $NetBSD$ to reflect the fact that we
   have sync'ed with their code.
 - WARNS=6

Obtained from/Inspired by:	OpenBSD [O], NetBSD [N] (partially)
2006-06-06 05:01:12 +00:00
Pav Lucistnik
1572020a71 - Fix markup
PR:		docs/98471
Submitted by:	Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
MFC after:	1 day
2006-06-04 15:39:19 +00:00
Markus Brueffer
02afd3d137 - Only print a clarifying message about which HCI node has been used if there
is more than one HCI node present
- Use errx(3) instead of err(3) if there is no HCI node present as errno
  is 0 in this case and the resulting error message wouldn't make much sense

Approved by:	emax (mentor)
2006-06-02 00:29:01 +00:00
Maxim Konovalov
bb0aa1a544 o Better be safe than sorry: check return code from setuid(2),
setgid(2), setlogin(2) and initgroups(3).  In theory they could
fail for root with some third party mac(4) policies.

Submitted by:	Kostik Belousov
MFC after:	1 month
2006-06-01 15:03:06 +00:00
Colin Percival
72f6a0fa7a Enable inadvertantly disabled "securenet" access controls in ypserv. [1]
Correct a bug in the handling of backslash characters in smbfs which can
allow an attacker to escape from a chroot(2). [2]

Security:	FreeBSD-SA-06:15.ypserv [1]
Security:	FreeBSD-SA-06:16.smbfs [2]
2006-05-31 22:32:22 +00:00
Ceri Davies
4ec07c5e93 Bring the "just copy" hit list closer to date.
Approved by:	jhb
MFC after:	1 month
2006-05-31 19:16:34 +00:00
Ceri Davies
04e273bfb1 Update the location of the kernel for upgrades.
I considered leaving /boot/kernel out of the chflags noschg line, but I
seem to remember that there was a period where /boot/kernel was schg, so
have left it in for safety's sake.

Approved by:	jhb
MFC after:	1 month
2006-05-31 19:15:20 +00:00
Colin Percival
2a569ec900 Use some features of sh(1) which I didn't know about until today ("read"
can read two variables at once; and suffix pattern deletion) to make the
extract command fork fewer processes.

With the portsnap snapshot and the ports tree in swap-backed memory
disks on my 1.4GHz laptop, this reduces 178800 processes and 195/56/126
seconds of real/user/sys time to 44600 processes and 103/34/60 seconds.
2006-05-30 07:08:41 +00:00
Craig Rodrigues
8f716f89cf Do not log "can't delete export" messages if nmount() returns ENOTSUP.
This eliminates spurious log entries for trying to delete exports
for filesystems like devfs and procfs.
2006-05-28 18:59:28 +00:00
Simon L. B. Nielsen
0f9fc191de Revert 1.73, since mounting devfs without a devfs ruleset inside a
jail is a very bad idea security wise.

Approved by:	trhodes (jcamou mentor)
No response:	jcamou
2006-05-28 09:44:13 +00:00
Matteo Riondato
fdf1353cec Mention ruleset #4 (devfsrules_jail) in jail's man page.
MFC after:	3
2006-05-28 08:29:49 +00:00
Sam Leffler
c824b333f6 avoid null ptr deref
Obtained from:	netbsd
2006-05-27 23:04:30 +00:00
Sam Leffler
2767a3d79c correct static array overrun
Obtained from:	netbsd
2006-05-27 23:03:08 +00:00
Craig Rodrigues
e91db40c18 Move call to ignore SIGPIPE signals before calling fork(),
so that both parent and child processes ignore this signal.

PR:             bin/97768
Submitted by:   Gea-Suan Lin <gslin at csie dot nctu dot edu dot tw>
MFC after:      3 days
2006-05-27 02:37:37 +00:00
Craig Rodrigues
a856bed399 Ignore SIGPIPE signals on write() failures.
We already check for write() failures and handle EPIPE.
Failure to handle SIGPIPE was resulting in rpc.lockd terminating.

PR:		bin/97768
Reported by:	Gea-Suan Lin <gslin at csie dot nctu dot edu dot tw>
MFC after:	1 day
2006-05-25 22:12:05 +00:00
Gleb Smirnoff
78cdd8ed1b Unnest includes before forthcoming editing. 2006-05-24 14:46:55 +00:00
Craig Rodrigues
9857865b55 Convert to nmount() and remove hardcoded checks for ufs, msdosfs, ntfs,
and cd9660.

PR:	bin/97642
2006-05-24 11:49:39 +00:00
Colin Percival
2cb56dabe9 If the user asks for "kernel sources" to be installed, extract the
SRC_BASE package (src/[A-Z]*) as well as SRC_SYS (src/sys/*).  This
allows users who only install the kernel source code to use the
modern "make buildkernel" approach.

Discussed with:	re (scottl, kensmith)
MFC after:	3 days
2006-05-24 03:34:57 +00:00
Craig Rodrigues
6a09faf2cb Convert mountd to nmount(). Remove some hardcoded dependencies
on ufs, cd9660, msdosfs, and ntfs, but not all dependencies.
2006-05-23 17:10:17 +00:00
Markus Brueffer
a9f8b02b01 - Document the new Read_Node_List command, autodetection of HCI nodes and
that the '-n' parameter is now optional
- Grammar fixes

Reviewed by:	emax
Approved by:	emax
MFC after:	1 week
2006-05-22 17:58:19 +00:00
Markus Brueffer
fc5806eda9 - Add HCI node autodetection. As a consequence of this, make the '-n'
parameter optional.
- Add Read_Node_List command which prints a list of available HCI nodes,
  their Netgraph IDs and connected hooks

Reviewed by:	emax
Approved by:	emax
MFC after:	1 week
2006-05-22 17:58:09 +00:00
Joel Dahl
c4d39d8076 s/packages/packets/
Noticed by:	maxim
2006-05-22 07:36:45 +00:00
Joel Dahl
3105ed4eac Add manual page for ipfwpcap(8).
Reviewed by:	phk, brueffer
Submitted by:	Niclas Zeising <lothrandil@n00b.apagnu.se>
2006-05-22 07:14:54 +00:00
Simon L. B. Nielsen
711385c9d0 - Add support for filtering the the list of providers by a regular
expression, which makes it possible to only see interesting
  providers.  "f" is used inside gstat to set a filter, "F" is used to
  remove current filter.
- Do not print some uninteresting values in the gstat title line.
- Do not print past the end of the screen.
- Read multiple keystrokes per "wait" when gstat is running.
- Remove a redundant != check, right after check of NULL against the
  same variable ("gid").
- Use sysexits.h.
- Do not link against libkvm and libsbuf, they are not actually used.
- Fix a few style(9) issues where I had to touch nearby code anyway.

Approved by:	cperciva (mentor)
MFC after:	2 weeks
2006-05-20 19:17:47 +00:00
Maxim Konovalov
27e42e6a7e o SIOCGIFCONF -> getifaddrs(3) conversion. As a side effect fix
bin/95041: subnet mask mismatch.

PR:		bin/95041
Obtained from:	NetBSD
Tested by:	Hans Lambermont
MFC after:	2 months
2006-05-17 18:41:05 +00:00
Pav Lucistnik
a0ff005ba5 - Update to ntp-4.2.0
PR:		docs/79857
Submitted by:	Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
2006-05-17 10:50:35 +00:00
Poul-Henning Kamp
f6ce2a64f7 Send the pcvt(4) driver off to retirement. 2006-05-17 09:33:15 +00:00
Maksim Yevmenkin
0c3420df68 Fix formatting. Add missing break;
Submitted by:	Iain Hibbert
MFC after:	3 days
2006-05-14 22:19:38 +00:00
Colin Percival
1e1de0e499 Fix typo.
Pointed out by:	ceri
2006-05-13 18:04:48 +00:00
Colin Percival
d600d37002 Add a mechanism for constructing INDEX files which include local ports.
Requested by:	brooks
2006-05-13 15:56:35 +00:00
Hellmuth Michaelis
c6a39ce216 PR: bin/71663
Submitted by:   Dan Lukes
Reviewed by:    hm@
fix compile warnings in isdnd and isdntest. some more
compile time warnings also mentioned in this PR were
already fixed in an earlier commit today.
2006-05-13 14:59:58 +00:00
Hellmuth Michaelis
93ad0725db fix conflicting types for log(), add some prototypes to isdnd.h 2006-05-13 12:42:55 +00:00
Matteo Riondato
b484e04bf9 correct strtol(3) usage and style(9)
Reviewed by:	maxim
MFC after:	2 weeks
2006-05-12 15:14:43 +00:00
Colin Percival
343c554c88 Use 'rm -rf foo/bar' to remove a port instead of 'rm -rf foo/bar/'.
When /usr/ports/foo/bar is a symlink pointing outside the tree, this
deletes the symlink instead of the directory it points to.

Requested by:	delphij
2006-05-12 10:42:40 +00:00
Maxim Konovalov
6dc044b45b o Style(9) the previous commit a bit. 2006-05-11 19:06:33 +00:00
Poul-Henning Kamp
31048bda0e Use sysctlbyname() instead of sysctl 2006-05-11 17:23:57 +00:00
Matteo Riondato
7deb00ccd9 Add the -s option to set jail's securelevel. This is useful for jails run with non-root privileges.
PR:	bin/80242
MFC after:	2 weeks
2006-05-11 13:04:23 +00:00
John Baldwin
9aa6ce1642 Alpha doesn't support linux ABI compat now. 2006-05-10 18:44:10 +00:00
Matteo Riondato
feefdb0ceb Use .Vt for struct xprison
Suggested by: keramida
2006-05-10 14:26:53 +00:00
Matteo Riondato
f7bb71361e document security.jail.list sysctl in jail(8)
PR:	docs/96807
MFC after:	3
2006-05-08 19:55:17 +00:00
Hajimu UMEMOTO
f28aa72448 If perform-actual-lookups is enabled, getservbyname() matches an entry
even when proto is not valid.

Submitted by:	Michael Bushkov <bushman__at__rsu.ru>
2006-05-05 15:01:25 +00:00
Colin Percival
b39855baee Allow the HTTP_PROXY environment variable to be (mis)spelled as
"http_proxy", since some people apparently do this and fetch(3)
allows it.
2006-05-05 04:47:00 +00:00
Colin Percival
a414ca11d5 Fix the test for whether ${HTTP_PROXY} is set -- I got it backwards.
Pointy hat to:	cperciva
Pointed out by:	pjd
2006-05-05 03:44:13 +00:00
Ceri Davies
38e5cff20e Fix binary upgrades by accounting for the schg flag on /var/empty.
PR:		96711, 96780
Submitted by:	Nobuyuki Koganemaru, Martin Jackson
Approved by:	re (scottl)
MFC after:	1 day
2006-05-04 20:10:34 +00:00
Colin Percival
37c8250c90 Remove two lines of debugging which I forgot to remove before the last
commit.

Noticed by:     simon
2006-05-03 22:09:42 +00:00
Colin Percival
4b93a7cae2 The approach portsnap uses of "pick a random HTTP mirror" doesn't
interact very nicely with HTTP proxies: Since proxies do not know
that all the files on portsnap1.freebsd.org are identical to the
files with the same names on portsnap2.freebsd.org, said proxies end
up downloading and storing files in duplicate.

This commit uses the HTTP_PROXY environment variable, if set, to
generate a random number seed for use in selecting a mirror.  This
means that if several systems all have the same HTTP_PROXY value set,
they will ask the proxy to fetch files from the same mirror (unless
that mirror fails, in which case all the systems will use the same
second choice, et cetera).

Portsnap still doesn't interact very well with "transparent" HTTP
proxies, but there's nothing I can do about those.

Requested by:	simon
Sponsored by:   FreeBSD security development fundraiser
2006-05-03 21:29:01 +00:00
Colin Percival
1e87b57202 Instead of selecting a mirror and failing if it is inaccessible, keep
track of which mirrors we have tried and try a different mirror if we
fail when trying to download the SSL public key or the snapshot
signature.

Failures later in the download process will not result in switching to
a different mirror, for two reasons:
1. If is very unlikely that a mirror will fail partway through the
process of downloading updates.
2. If we switched from a more recently updated mirror to a less
recently updated mirror partway through the download process, we would
end up failing anyway because we would be trying to fetch files which
the second mirror didn't have yet.

PR:		bin/96288
Requested by:	lots of people
Sponsored by:	FreeBSD security development fundraiser
2006-05-03 21:19:43 +00:00
Maxim Konovalov
17d10fccac o Document security.jail.jailed sysctl.
PR:		docs/94711
Submitted by:	Andreas Kohn
MFC after:	2 weeks
2006-05-03 20:13:33 +00:00
Hajimu UMEMOTO
b947683ce1 Fix alignment problem on AMD64.
Reported by:	Pascal Hofstee <caelian__at__gmail.com>
Submitted by:	Michael Bushkov <bushman__at__rsu.ru>
Tested by:	Pascal Hofstee <caelian__at__gmail.com>
2006-05-02 23:02:32 +00:00
Giorgos Keramidas
193599122f Note that when -d flag is used, mountd(8) will not detach from the
controlling terminal.

PR:		docs/96660
Submitted by:	Jeff Ito <ijk@speakeasy.net>
MFC after:	1 week
2006-05-02 21:00:43 +00:00
Colin Percival
96b468e33b Teach portsnap to parse the output of the host(1) in BIND 8 as well as
the host(1) from BIND 9.  This doesn't matter for HEAD, but will help
people who install portsnap from the ports tree onto older versions of
FreeBSD.

PR:		ports/93901
Sponsored by:	FreeBSD security development fundraiser
2006-05-02 05:27:30 +00:00
Gordon Tetlow
92d4750b38 Add missed SYNOPSIS flag for auto upgrade.
Submitted by:	marck at rinet dot ru
2006-04-30 22:09:47 +00:00
Maxim Konovalov
76c3f9c995 o Sort .Xrs. 2006-04-30 21:31:52 +00:00
Maxim Konovalov
d907672654 o Reformat FILES section. 2006-04-30 21:30:25 +00:00
Maxim Konovalov
b84d0f2f0b o Add missed commas. 2006-04-30 21:22:01 +00:00
Maxim Konovalov
5fa056b3d8 o Silence mdoc(7) warnings: remove an empty line, add missed .El macro.
New sentence - new line.
2006-04-30 21:14:48 +00:00
Matteo Riondato
8eb7b76a63 Specify default values for positive-policy and negative-policy . 2006-04-30 18:34:48 +00:00
Ceri Davies
eeaf7f3af1 Typo. 2006-04-30 12:40:30 +00:00
Scott Long
1b355c2dc7 Document sysinstall's limitation on operating on mounted disks. 2006-04-30 06:28:29 +00:00
Tom Rhodes
ef48b7b7e6 Reword a sentence modified in my previous commit. This new one is probably
better.

Hinted by:	ceri
2006-04-30 01:53:57 +00:00
Gordon Tetlow
55a5ff0140 Add auto upgrade capability to mergemaster.
An mtree description of all non-zero files that make
distribution installs (only size and md5) is built from the
temproot.  When the user completes a mergemaster run, the
mtree description file gets installed into /var/db for
safe-keeping.

When the user then decides to do a subsequent upgrade (with
the -U flag), the existing mtree description from /var/db
is called into service looking for files that are different in
DESTDIR. This is stashed away until a file that would normally
end up prompting the user to look at changes is encountered.
Since there are no user modified changes, the new file is
installed without bothering the user.

Looked at by:	dougb
MFC after:	6 weeks
2006-04-29 18:21:43 +00:00
Tom Rhodes
2fb5ab2f0c Follow FreeBSD mdoc(7) conventions:
- Remove hard sentence breaks;
- Avoid using double negatives or "sexist" language;
- Expand contractions;
- Remove a blank line;
- Some grammar changes.

Usually we do not "hard code" requests to submit bugs to the author, but
I will leave this go for now.
2006-04-29 01:34:03 +00:00
Hajimu UMEMOTO
06a99fe36f - Extend the nsswitch to support Services, Protocols and Rpc
databases.
- Make nsswitch support caching.

Submitted by:	Michael Bushkov <bushman__at__rsu.ru>
Sponsored by:	Google Summer of Code 2005
2006-04-28 12:03:38 +00:00
David Malone
89ddbd45e5 Add some new options to mac_bsdestended. We can now match on:
subject: ranges of uid, ranges of gid, jail id
	objects: ranges of uid, ranges of gid, filesystem,
		object is suid, object is sgid, object matches subject uid/gid
		object type

We can also negate individual conditions. The ruleset language is
a superset of the previous language, so old rules should continue
to work.

These changes require a change to the API between libugidfw and the
mac_bsdextended module. Add a version number, so we can tell if
we're running mismatched versions.

Update man pages to reflect changes, add extra test cases to
test_ugidfw.c and add a shell script that checks that the the
module seems to do what we expect.

Suggestions from: rwatson, trhodes
Reviewed by: trhodes
MFC after: 2 months
2006-04-23 17:06:18 +00:00
Sam Leffler
bd6b0820f8 add debug msg 2006-04-20 05:03:21 +00:00
Xin LI
70b75adf82 Add -u and -U which functions like the jail(8) that allow
commands to be executed under a different credential.

PR:		bin/95777
Submitted by:	clsung
2006-04-19 10:12:10 +00:00
Julian Elischer
be389c75f0 Add the ability to log to an arbitrary udp port as well as the
standard syslog port. This allows syslog to easily export lines of interest to
an external logging system.
2006-04-17 20:12:35 +00:00
David Malone
6a4d12ad81 Update a couple of comments relating to RFCs. 2006-04-17 19:55:25 +00:00
David Malone
f3c6fec05f Back out a Makefile change that accidently snook in. 2006-04-17 19:52:00 +00:00
David Malone
e90fa6a937 Port 37 (RFC 738) style times are supposed to be a 32 bit time since
1900 in network byte order. Use a uint32_t to calculate and send
the time, so that we don't need to know how big ints or longs are.

I used uint32_t instead of int in the patch, on the off chance
someone uses our inetd source on a system that doesnt 32 bit ints.

PR:		95290
Submitted by:	Bruce Becker <hostmaster@whois.gts.net>
MFC after:	2 weeks
2006-04-17 18:35:58 +00:00
Kirill Ponomarev
69b1a1dece Add INDEX-7 and remove trailing spaces.
MFC after:	5 days
2006-04-17 11:15:29 +00:00
Kirill Ponomarev
1b753fc66b Use bzip2(1) by default to compress package tarball on
__FreeBSD_version >= 500039.

Submitted by:	Alex Lyashkov <umka@sevcity.net>
MFC after:	5 days
2006-04-17 10:58:45 +00:00
Sam Leffler
d533f717f0 remove some unnecessary perror calls
Noticed by:	Jouni Malinen
MFC after:	2 weeks
2006-04-17 00:17:29 +00:00
Maxim Konovalov
47e065b48f o De-register local vars. 2006-04-16 22:30:24 +00:00
Maxim Konovalov
3b5ca369a1 o Trim EOL whitespaces and tabs, replace eight w/s by tabs.
No functional changes.
2006-04-16 22:28:04 +00:00
Maxim Konovalov
6c3591233a o Implement Solaris-like -x flag: show extended disk statistics.
o Implement Solaris-like -z flag: omit lines for devices with no activity.
o iostat.8: describe -x and -z flags, Xr devstat(3), touch .Dd.

PR:		mostly bin/68840, with style changes; bin/73327
Submitted by:	Dan Nelson, Peter Schuller
Obtained from:	NetBSD (a part of man page)
MFC after:	1 month
2006-04-16 22:23:39 +00:00
Maxim Konovalov
2edf0a4432 o Do not mangle current session user login name with jail -u|-U.
PR:		bin/94730
Submitted by:	Frank Behrens
MFC after:	1 month
2006-04-16 12:32:04 +00:00
Jung-uk Kim
566ae23a6f Fix copy-and-pasto in comment. 2006-04-14 18:34:57 +00:00
Jung-uk Kim
a3ca22fc1f Fix minimal installation check. 'X' was not displayed when it was selected.
Reported by:	Ian J. Hart <ianjhart at ntlworld dot com>
		Pieter de Goeje <pieter at degoeje dot nl>
2006-04-14 18:18:43 +00:00
Ruslan Ermilov
f2a3dfe5ff - Let make(1) track dependencies and regen netid map when needed.
- Add missing dependency for netid.byname.
2006-04-13 13:03:35 +00:00
Ruslan Ermilov
e4a9274404 Add missing library dependencies. 2006-04-13 12:49:24 +00:00
Ruslan Ermilov
295c5dea2c libc_r is no longer provided, and on alpha and sparc64, libthr
is (sym)linked to libpthread.  Account for this change and
check for MK_LIBTHR instead of MK_LIBC_R where appropriate.
2006-04-12 19:52:34 +00:00
Sam Leffler
2220e69353 adapt PacketGetAdapterNames to 0.4.8 calling convention
PR:		bin/94735
Submitted by:	Scot Hetzel <swhetzel@gmail.com>
Requested by:	scottl
2006-04-12 17:12:04 +00:00
Joseph Koshy
2a6d2e9c2d When printing a map, print the number of samples recorded by each gmon.out file.
MFC after:	1 week
2006-04-05 15:12:25 +00:00
Joseph Koshy
302cbb9054 - Teach pmcstat(8) to log over the network; the -O option now
takes a host:port specification.
- Update the manual page and add an example showing how log
  over the network using pmcstat(8) and nc(1).  Document the
  current inability to process logs in cross-platform manner.
- Have pmcstat_open_log() call err(3) directly in case
  of an error; this simplifies error handling in its caller.

MFC after:	1 week
2006-04-02 12:52:16 +00:00
Christian S.J. Peron
ae4f0fc3a9 Currently, if writing out a log entry fails, we unlink that log entry from our
internal list of logfiles. So if writev(2) fails for potentially transient
errors like ENOSPC, syslogd requires a restart, even if the filesystem has
purged.

This change allows syslogd to ignore ENOSPC space errors, so that when the
filesystem is cleaned up, syslogd will automatically start logging again
without requiring the reset. This makes syslogd(8) a bit more reliable.

MFC after:	1 week
2006-03-30 21:04:52 +00:00
Scott Long
cf3dcc9f57 Teach sysinstall about mfi(4). 2006-03-29 10:02:26 +00:00
Joseph Koshy
49874f6ea3 MFP4: Support for profiling dynamically loaded objects.
Kernel changes:

  Inform hwpmc of executable objects brought into the system by
  kldload() and mmap(), and of their removal by kldunload() and
  munmap().  A helper function linker_hwpmc_list_objects() has been
  added to "sys/kern/kern_linker.c" and is used by hwpmc to retrieve
  the list of currently loaded kernel modules.

  The unused `MAPPINGCHANGE' event has been deprecated in favour
  of separate `MAP_IN' and `MAP_OUT' events; this change reduces
  space wastage in the log.

  Bump the hwpmc's ABI version to "2.0.00".  Teach hwpmc(4) to
  handle the map change callbacks.

  Change the default per-cpu sample buffer size to hold
  32 samples (up from 16).

  Increment __FreeBSD_version.

libpmc(3) changes:

  Update libpmc(3) to deal with the new events in the log file; bring
  the pmclog(3) manual page in sync with the code.

pmcstat(8) changes:

  Introduce new options to pmcstat(8): "-r" (root fs path), "-M"
  (mapfile name), "-q"/"-v" (verbosity control).  Option "-k" now
  takes a kernel directory as its argument but will also work with
  the older invocation syntax.

  Rework string handling in pmcstat(8) to use an opaque type for
  interned strings.  Clean up ELF parsing code and add support for
  tracking dynamic object mappings reported by a v2.0.00 hwpmc(4).

  Report statistics at the end of a log conversion run depending
  on the requested verbosity level.

Reviewed by:	jhb, dds (kernel parts of an earlier patch)
Tested by:	gallatin (earlier patch)
2006-03-26 12:20:54 +00:00
SUZUKI Shinsuke
4b8b545e4b fixed a potential memory leak
Obtained from: KAME
MFC after: 1 day
2006-03-24 23:59:51 +00:00
Colin Percival
256c62e23f Only set the size of /usr to whatever-is-left is whatever-is-left is
greater than the size we autosized.  Without this fix, systems with
drives under 10GB can end up with very small /usr partitions...

Broken since:	January 2002
Tripped over by: simon
2006-03-24 22:45:24 +00:00
SUZUKI Shinsuke
94182c08be avoid heap overrun
Obtained from: KAME
MFC after: 1 day
2006-03-23 14:39:38 +00:00
Hiroki Sato
1306964a1a Fix version number when the feature was added.
Spotted by:	ceri
MFC after:	1 day
2006-03-23 07:55:33 +00:00
Maksim Yevmenkin
5338f5dd69 Properly map mouse buttons
PR:		bin/94577
Submitted by:	Krzysztof Jedruczyk < beaker at hot dot pl >
MFC after:	3 days
2006-03-21 18:42:52 +00:00
Ruslan Ermilov
b81594171c Folded WITH_HESIOD_SUPPORT into WITH_HESIOD. 2006-03-21 09:00:51 +00:00
Ruslan Ermilov
cea557add0 Extend coverage of the MK_IPX build option to the following:
- <netipx> headers [1]
- IPX library (libipx)
- IPX support in ifconfig(8)
- IPXrouted(8)
- new MK_NCP option

New MK_NCP build option controls:

- <netncp> and <fs/nwfs> headers
- NCP library (libncp)
- ncplist(1) and ncplogin(1)
- mount_nwfs(8)
- ncp and nwfs kernel modules

User knobs: WITHOUT_IPX, WITHOUT_IPX_SUPPORT, WITHOUT_NCP.

[1] <netsmb/netbios.h> unconditionally uses <netipx> headers
so they are still installed.  This needs to be dealt with.
2006-03-20 14:24:58 +00:00
Ruslan Ermilov
e1fe3dba5c Reimplementation of world/kernel build options. For details, see:
http://lists.freebsd.org/pipermail/freebsd-current/2006-March/061725.html

The src.conf(5) manpage is to follow in a few days.

Brought to you by:	imp, jhb, kris, phk, ru (all bugs are mine)
2006-03-17 18:54:44 +00:00
Maksim Yevmenkin
35929e6013 Properly convert L2CAP PSM values in sockaddr_l2cap to LE16 byte order.
Noticed by:	Iain Hibbert < plunky at rya-online dot net >
MFC after:	3 days
2006-03-16 18:26:54 +00:00
Yoshihiro Takahashi
c97afd4d2f - Use jp.pc98 as default keymap for pc98.
- Remove an extra argument.
2006-03-16 15:50:21 +00:00
Jesus R. Camou
888a664b2d Do `mount_devfs' when starting a jail.
PR:		docs/86044
Noticed by:	Dan Langille <dan@langille.org>
Reviewed by:	Jose Biskofski <jbiskofski@grmims.com>
Approved by:	trhodes (mentor)
2006-03-16 14:31:35 +00:00
Andrew Thompson
01eb65dbbf If a keymap file is not found for the selected country then default to the more
common USA ISO rather than index 0 (Belgian).

Reviewed by:	jhb
MFC after:	1 day
2006-03-15 21:20:01 +00:00
Ruslan Ermilov
897c6f17c9 If we don't want HTML docs, we might still want manpages.
If we don't want manpages, we might still want HTML docs.
2006-03-15 11:17:31 +00:00