46376 Commits

Author SHA1 Message Date
markm
d9108a4003 Get the order of things right; the keys need to be generated
early to allow entropy to replenish.
sshd must start late to catch the full effects of ldconfig.
2000-02-28 19:54:06 +00:00
bsd
16bc932f7e Reset the hardware debug registers when exec'ing a new image.
Reviewed by:	bde,jlemon
Approved by:	jkh
2000-02-28 19:48:51 +00:00
guido
0dbc45d7e8 This fixes a problem where the SIOCGIFCONF ioctl goes wrong. This
is triggered when qmail is used with INET6 enabled.  The bug
manifests itself in that the space variable can become negative
and that in the comparison in the guards of the 2 loops, this was
not noticed because sizeof() returns an unsigned and thus the signed
variable gets promoted to unsigned. I decided not to make space
unsigned because I think we should guard against this from happening.
Thus panic() in case space becomes negative.

Approved by:	jkh
2000-02-28 19:30:25 +00:00
markm
b401a071dd New distribution names. 2000-02-28 19:25:34 +00:00
markm
3750b037a1 New distribution name. 2000-02-28 19:24:33 +00:00
jkh
e15679d81e Generate new sshd host key when necessary. I'm tired of
waiting for someone to commit this. :)
2000-02-28 19:21:05 +00:00
markm
5dffca5013 Remove largescale evidence of crack-smoking.
Where a k4 applet has a k5 namesake, rename the k5 version
from k<app> to k5<app>. (Repo copy done).

Do some repairs to dependancies to support make world properly.
2000-02-28 19:15:32 +00:00
markm
37dce23afc 1) Add kerberos5 functionality.
by Daniel Kouril <kouril@informatics.muni.cz>
2) Add full LOGIN_CAP capability
   by Andrey Chernov
2000-02-28 19:03:50 +00:00
marcel
39a8b7149f Fix accept(2) behavior in that accepted sockets don't inherit the
parents flags.

Note on the PR:
The PR contains another patch that's not being committed without
further background information. The PR stays open for now.

PR: 16946 (Victor A. Salaman <salaman@teknos.com>)
Prompted by: msmith
Indirect/implicit approval: jkh (shoot me if I'm wrong :-)
2000-02-28 18:58:59 +00:00
brian
499e159c08 Don't put truncated hostnames in utmp
Approved by: jkh
2000-02-28 18:51:30 +00:00
shin
ce0f910200 Print scope id for scoped addrs.
Approved by: jkh
2000-02-28 18:38:19 +00:00
shin
0f87228bd0 Previous fix was incomplete and has problem in reverse lookup failed dest,
so fix it.

Approved by: jkh

Submitted by: Ian West <ian@niw.com.au>
2000-02-28 18:37:07 +00:00
joerg
e52757e9dd Fix a serious bug in syslogd regarding the handling of pipes. The bug
would cause syslogd to eventually kill innocent processes in the
system over time (note: not `could' but `would').  Many thanks to my
colleague Mirko for digging into the kernel structures and providing
me with the debugging framework to find out about the nature of this
bug (and to isolate that syslogd was the culprit) in a rather large
set of distributed machines at client sites where this happened
occasionally.

Whenever a child process was no longer responsive, or when syslogd
receives a SIGHUP so it closes all its logging file descriptors, for
any descriptor that refers to a pipe syslogd enters the data about the
old logging child process into a `dead queue', where it is being
removed from (and the status of the dead kitten being fetched) upon
receipt of a SIGCHLD.  However, there's a high probability that the
SIGCHLD already arrives before the child's data are actually entered
into the dead queue inside the SIGHUP handler, so the SIGCHLD handler
has nothing to fetch and remove and simply continues.  Whenever this
happens, the process'es data remain on the dead queue forever, and
since domark() tried to get rid of totally unresponsive children by
first sending a SIGTERM and later a SIGKILL, it was only a matter of
time until the system had recycled enough PIDs so an innocent process
got shot to death.

Fix the race by masking SIGHUP and SIGCHLD from both handlers mutually.

Add additional bandaids ``just in case'', i. e. don't enter a process
into the dead queue if we can't signal it (this should only happen in
case it is already dead by that time so we can fetch the status
immediately instead of deferring this to the SIGCHLD handler); for the
kill(2) inside domark(), check for an error status (/* Can't happen */
:) and remove it from the dead queue in this case (which if it would
have been there in the first place would have reduced the problem to a
statistically minimal likelihood so i certainly would never have
noticed the bug at all :).

Mirko also reviewed the fix in priciple (mutual blocking of both
signals inside the handlers), but not the actual code.

Reviewed by:	Mirko Kaffka <mirko@interface-business.de>
Approved by:	jkh
2000-02-28 17:49:43 +00:00
ru
543d5b0485 A huge rewrite of the manual page (mostly -mdoc related).
Reviewed by:	luigi, sheldonh
2000-02-28 15:21:12 +00:00
bde
dbaa471517 Fixed configuration of fast interrupts for the pci cy driver. They were
an early newbus casualty.  The fix in rev.1.28 didn't work because the
most important part of it used a wrong macro name.

Approved by:	jkh
2000-02-28 08:12:24 +00:00
bde
a037ac116f Fixed configuration of fast interrupts for the isa cy driver. They were
an early newbus casualty.  The isa compatibility cruft turned out to be
well suited for this fix.

Approved by:	jkh
2000-02-28 07:52:22 +00:00
kris
22f529d0b6 Update the description of NOCRYPT and NOSECURE to match reality. 2000-02-28 07:07:26 +00:00
ps
855985c95f Update a comment in elf_coredump to reflect that if you madvise
with MADV_NOCORE, its address space is also excluded from a core
file.

Pointed out by:	alc
2000-02-28 06:36:45 +00:00
ps
c3800346ab Add MAP_NOCORE to mmap(2), and MADV_NOCORE and MADV_CORE to madvise(2).
This
This feature allows you to specify if mmap'd data is included in
an application's corefile.

Change the type of eflags in struct vm_map_entry from u_char to
vm_eflags_t (an unsigned int).

Reviewed by:	dillon,jdp,alfred
Approved by:	jkh
2000-02-28 04:10:35 +00:00
green
1e4770cd94 Fix a repetition typo about the settings the settings.
Submitted by:	Kris Dow <kris@vilnya.demon.co.uk>
2000-02-28 03:02:17 +00:00
kris
742d2bdb4d Add OpenSSH blurb and some other minor changes. 2000-02-28 01:57:15 +00:00
ache
da3655121c Fix diagnostic printing test condition (was always true)
Approved by:	jkh
2000-02-28 01:48:50 +00:00
steve
d6f1d19d6e Fix a typo, so that the Aironet 4500 really does have an entry here.
PR:		17028
Submitted by:	David Malone <dwmalone@maths.tcd.ie>
Approved by:	jkh
2000-02-28 01:44:07 +00:00
alfred
83fb25d036 -it do, among other things, clear out any
+it does, amongst other things, clear out any

The old sentance didn't seem to make sense.
2000-02-28 00:31:18 +00:00
mph
30b97776d5 Change RETTOKEN from '\n' to '\r'; it didn't work under some or all
terminals before.  This change tested on FreeBSD syscons, XFree86 xterm,
and Solaris xterm.
2000-02-27 23:02:47 +00:00
kris
d62b5b6f16 Document the following buildworld knobs:
NO_FORTRAN NOCRYPT NOGAMES NOINFO NOLIBC_R NOSECURE NOSHARE
2000-02-27 22:56:27 +00:00
kris
a16b0b3c60 Document NOPERL for disabling building of PERL altogether. 2000-02-27 22:44:46 +00:00
dmlb
6a1ee008fe Completed start/join code (well only infrastructure mode)
Added receive code and support for Webgear encapsulation.

More debugging macros/functions.

conditionalised timeout for start/join network

conditonalised attribute/common memory hacks

identified tracking code with XXX_TRACK

sorted out initialistion of instance structure to some extent

finished docuementing the start/join sequence
2000-02-27 19:52:29 +00:00
dmlb
631e6b661d Initial import 2000-02-27 19:47:06 +00:00
shin
f9fbe5abd8 Add libipsec.
Approved by: jkh
2000-02-27 18:41:27 +00:00
shin
23e5b71734 Add IPv6 services into inetd.conf.
Also enable some standard IPv6 apps by default.
These entries will be simply ignored on systems with no INET6 defined.

Approved by: jkh
Suggested by: peter
2000-02-27 18:39:34 +00:00
shin
9fc288cd6b Wrap if_up() by splnet.
Approved by: jkh

Submitted by: peter
2000-02-27 18:36:30 +00:00
shin
c76f9b4c03 At detaching IPv6 raw socket, also finish IPv6 multicast router.
Approved by: jkh

Submitted by: fenner
2000-02-27 18:35:10 +00:00
green
198256e173 Fix style bugs I introduced in the last revision.
Brucified by:	bde
2000-02-27 16:40:39 +00:00
sos
ad425faefd Fix the problem that caused the boot to fail when modules were loaded.
Real braino, confuses two different softc types, I wonder how this
could ever work :(
2000-02-27 12:41:07 +00:00
green
d2d679a008 The best way to remove IPv6 things is to remove lines with the pattern
'IPv6', and it's not necessary to do it explicitly per entry.

Approved by:	jkh
2000-02-27 07:36:34 +00:00
green
5d3f60ab1a Do some cleanups of the IPv6 stuff. This is a non-functional change.
Approved by:	jkh
2000-02-27 07:35:42 +00:00
ru
1cfb3ec092 Remove option's description that has gone with PAM. 2000-02-27 07:14:33 +00:00
kris
ad1a58736b Crank __FreeBSD_version for OpenSSH
Approved by:	jkh
2000-02-27 06:42:14 +00:00
kris
0232916ebc pkg_create doesn't use more(1) for displaying +DISPLAY files, it
just cats it to stdout.
2000-02-27 06:32:25 +00:00
joerg
710572bb8d Add an eleventh-hour gimick... But since it's only in `games' and
Jordan OK'ed it, i think it's a nice one for those who need it.  I
once mentioned in Usenet that i've hacked morse(6) so it can control
an external device like a tone generator or even a ham radio
transceiver, so you could actually use that `game' for really
transmitting morse code through the air.  A couple of people then
bugged be to send them my hack (which it was by that time).

So i've now finally found some hours to clean it up (like freaking out
with the transmitter no longer keyed in case someone ^c's out of the
program...), and to write the man page addition.

While i was at it, i also cleaned up some minor nits in Lyndon's
/dev/speaker code, mainly #ifdef related stuff like handling getopt()
if SPEAKER is not defined etc.

enjoy & 73

Approved by:	jkh, the restless...
2000-02-27 01:21:28 +00:00
jkh
dd779457c8 Enable IPv6 options 2000-02-26 22:13:21 +00:00
jkh
c15b8bedee Elide INET6 related options for boot floppies. 2000-02-26 22:11:27 +00:00
jkh
f64c01d049 Enable IPv6 support by default. 2000-02-26 22:09:31 +00:00
green
708c7f49eb Add iseek= and oseek= aliases for the preexisting skip= and seek=
operands.  Can _YOU_ tell skip= and seek= apart with 100% accuracy
every time?

This also seems to make us option-for-option compatible with the
Solaris dd(1).

Approved by:	jkh
Suggested by:	peter
2000-02-26 21:29:44 +00:00
shin
9b8b207497 Add IPv6 related docs.
Reviewed by: phantom
2000-02-26 19:44:12 +00:00
chris
60843485ad Spelling: `adress'' -> `address'' 2000-02-26 18:59:34 +00:00
rwatson
ccbd17ca87 Introduce `add'' and remove'' as alternatives to alias'' and `delete''.
Improve compatibility with BSD/OS, and also more accurately reflect that
IP aliases aren't really any different than the primary IP address on an
interface.

Reviewed by:	dcs
Approved by:	jkh
2000-02-26 18:55:39 +00:00
phk
1fe9db8a58 Implement queue-limiting based on bandwidth.
Approved by:	jkh
2000-02-26 18:28:24 +00:00
peter
4f3a50153f Sync with internat.freebsd.org; weak symbols vs static libs == trouble 2000-02-26 16:57:17 +00:00