d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
71,848 Commits 4 Branches 49 Tags 2 GiB
d8370f667d
Commit Graph

71848 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
rwatson
d8370f667d Break out the "see_other_uids" policy check from the various 
method-based inter-process security checks.  To do this, introduce
a new cr_seeotheruids(u1, u2) function, which encapsulates the
"see_other_uids" logic.  Call out to this policy following the
jail security check for all of {debug,sched,see,signal} inter-process
checks.  This more consistently enforces the check, and makes the
check easy to modify.  Eventually, it may be that this check should
become a MAC policy, loaded via a module.

Obtained from:	TrustedBSD Project
Sponsored by:	DARPA, NAI Labs
 2002-03-22 02:28:26 +00:00
imp
0b20191705 remove __P 2002-03-22 01:42:45 +00:00
imp
1698cb216e remove __P 2002-03-22 01:33:25 +00:00
imp
74d826c7a6 remove __P 2002-03-22 01:22:50 +00:00
kuriyama
ce819c0c13 MFen. 2002-03-22 00:19:50 +00:00
markm
5db06b0392 Updates for OPIE 2.4. 2002-03-22 00:12:20 +00:00
obrien
fd9d7ac0ed Remove __P() usage. 2002-03-21 23:54:04 +00:00
benno
d0f7d01438 Collect all functions for copying to and from userspace into the one file. 
This allows me to reimplement [sf]u{byte,word} as separate functions and not
as calls to copy{in,out}.
 2002-03-21 23:45:59 +00:00
obrien
6399259994 Remove __P() usage. 2002-03-21 23:43:04 +00:00
markm
b38a0011c1 Resolve conflicts. 2002-03-21 23:42:52 +00:00
obrien
084b4588f2 Remove 'register' keyword. 2002-03-21 23:39:28 +00:00
alfred
454845084c Bring code to WARNS=3 level. Mostly fix unused variables. 2002-03-21 23:05:13 +00:00
alfred
1ee4de1e65 Remove main() prototype. 2002-03-21 22:53:49 +00:00
alfred
acb803ded7 Remove __P. 2002-03-21 22:52:45 +00:00
markm
da481742fe This commit was generated by cvs2svn to compensate for changes in r92906, 
which included commits to RCS files with non-trunk default branches.
 2002-03-21 22:50:02 +00:00
markm
4cdfa7814c Vendor import of OPIE 2.4 2002-03-21 22:50:02 +00:00
obrien
3b73ce2319 Remove __P() usage. 2002-03-21 22:49:10 +00:00
markm
5da7065f3d Restructure for own parsedate (replacement for get_date from CVS). 
Fix up parsedate.y for WARNS=4.

Reviewd by:	bde (except for parsedate.y diffs)
 2002-03-21 21:56:05 +00:00
des
0028194219 /etc/moduli -> /etc/ssh/moduli 2002-03-21 21:54:17 +00:00
des
cd3d21d017 This commit was generated by cvs2svn to compensate for changes in r92899, 
which included commits to RCS files with non-trunk default branches.
 2002-03-21 21:47:20 +00:00
des
e4f5f5e517 Import OpenBSD's moduli(5) man page 2002-03-21 21:47:20 +00:00
des
861727c094 Install moduli instead of primes 2002-03-21 21:44:03 +00:00
markm
18beef9ee3 Add a replacement for get_date which is currently being dug out of 
CVS's sources.

This is a "public domain" implementation stolen from INN, and is
added unmodified.
 2002-03-21 21:43:50 +00:00
des
101e6ea253 Import OpenBSD's moduli file. 2002-03-21 21:43:25 +00:00
des
3d91eadb74 This commit was generated by cvs2svn to compensate for changes in r92894, 
which included commits to RCS files with non-trunk default branches.
 2002-03-21 21:43:25 +00:00
mjacob
f871caa642 Limit fabric search to a default 256 entries. This will all go away 
soon because it's just getting harder and harder to find switches
that correctly implement the GET ALL NEXT subcommands for the SNS
protocol.

Latch up result out pointer and set a busy flag when we're looking
at the response queue. This allows for a cleaner way to make sure
we don't get multiple CPUs trying to read the same response queue
entries.

Change how isp_handle_other_response returns values (clarity).

Make PORT UNAVAILABLE the same as PORT LOGOUT (force a LIP).

Do some formatting changes.

MFC after:	0 days
 2002-03-21 21:10:16 +00:00
bmah
15e963f160 Fix typo: s/forth/fourth/ 2002-03-21 20:10:10 +00:00
alc
f100869497 o Use the MI vm_map_growstack() instead of grow_stack() in trap_pfault() 
and trapwrite().
 o On i386/pc98, remove the (now) unused grow_stack().
 2002-03-21 19:27:15 +00:00
obrien
1196344bb3 Remove 'register' keyword. 2002-03-21 18:49:23 +00:00
gallatin
8ee1755c8e shut up the compiler 2002-03-21 18:48:00 +00:00
obrien
c6f1189467 Fix SCM ID's. 2002-03-21 18:06:09 +00:00
netchild
7bcbc43d99 Traditional first commit. 
Approved by: joerg
 2002-03-21 16:40:32 +00:00
bmah
59f469af3b New release notes: libstand split file loading. 
Updated release notes:  sparc64 platform progress, IPFilter 3.4.25.

Belated MFC note:  OpenSSH 2.9.
 2002-03-21 16:30:34 +00:00
arr
68e226a99e - Fix a logic error in checking the securelevel that was introduced in the 
previous commit.

Pointy hats to: arr, rwatson
 2002-03-21 15:27:39 +00:00
imp
ec2a00af74 o remove __P 
o remove main prototype
 2002-03-21 13:20:49 +00:00
imp
baca1664d9 o __P removed 
o main prototype removed
 2002-03-21 13:14:21 +00:00
imp
611240d8bc o __P removal. 
o ansi function definitions.
o main prototype removal
o unifdef __STDC__
 2002-03-21 13:10:52 +00:00
benno
6932067f77 - Make all inlines for manipulating supervisor-level registers accept/return 
register_t values.
- Implement an inline for isync.
 2002-03-21 13:07:31 +00:00
des
0f9782fc45 Correctly set PAM_RHOST so e.g. pam_login_access(8) can do its job. 
Sponsored by:	DARPA, NAI Labs
 2002-03-21 12:55:21 +00:00
des
af3f1ef24c Use the "sshd" service instead of "csshd". The latter was only needed 
because of bugs (incorrect design decisions, actually) in Linux-PAM.

Sponsored by:	DARPA, NAI Labs
 2002-03-21 12:23:09 +00:00
des
cb58035239 Use PAM instead of S/Key (or OPIE) for SSH2. 
Sponsored by:	DARPA, NAI Labs
 2002-03-21 12:18:27 +00:00
benno
d99dec6eef GC some unused, bogus interrupt functions and replace them with proper 
implementations of intr_disable and intr_restore.
 2002-03-21 12:04:58 +00:00
mike
ba64e54157 Revert 1.20: 
Memory disks may be used for other purposes besides newfs(8), so it
isn't helpful to require the minimum size meet newfs(8)'s criteria.
 2002-03-21 12:03:09 +00:00
bde
25e5396e19 Removed the last vestiges of libm. These have been repo-copied to 
msun/bsdsrc.  Everything except true gamma() and its support functions
was superseded by msun long ago, at least on IEEE machines.
 2002-03-21 11:33:50 +00:00
dfr
0b5ce40729 Change critical_t to register_t for intr_disable/restore. 2002-03-21 09:50:11 +00:00
dfr
35064c1d50 Change cpu_critical_enter/exit to intr_disable/restore. 2002-03-21 09:35:18 +00:00
ru
dea7dd81b7 Replaced hacks in sbin/Makefile,v 1.99 and usr.sbin/Makefile,v 1.217 
with the NO_IPFILTER make.conf(5) knob.

(So that we can "make the-rest-of-the-world" again.)
 2002-03-21 09:15:39 +00:00
mike
c0ffe1791c Provide a proper error message in mdconfig(8) when a filesystem is too 
small, instead of a less meaningful error in newfs(8).
 2002-03-21 07:46:09 +00:00
peter
b460095c1d In UP mode, the primary cpu's per-cpu current_pmap was not initialized - 
this was only done as a side effect of calling cpu_mp_start().  I haven't
actually tested that this fixes UP kernels, but it feels about right.
 2002-03-21 07:41:02 +00:00
peter
e18cd1e9c7 Add an ia64 targparam.h 2002-03-21 07:33:31 +00:00