Commit Graph

7425 Commits

Author SHA1 Message Date
dougb
147dccfbb7 Hopefully squish the problem of mm creating sendmail files in
the source tree once and for all.

Pointed out by: A cast of thousands

Reviewed by:	asmodai
2001-08-07 06:22:12 +00:00
kris
e7f429490d Recognise @option directives instead of falling through to the default
"unknown command" clause.

PR:	29262
2001-08-06 20:09:26 +00:00
ume
840f9b9d5f printed current sequence number of the SA. accordingly, changed
into sadb_x_sa2_sequence from sadb_x_sa2_reserved3 in the sadb_x_sa2
structure.  Also the output of setkey is changed.  sequence number
of the sadb is replaced to the end of the output.

Obtained from:	KAME
2001-08-06 19:40:01 +00:00
jon
08485c20e9 Fix logic error resulting in incorrect calculation of login time
PR:		bin/4204
Submitted by:	Anatoly A. Orehovsky <tolik@www.tomsk.su>
MFC after:	4 weeks
2001-08-05 09:41:20 +00:00
dd
13626ad8a2 It's bad enough to capitalize the name of the executable at the
beginning of the sentence, but at the very least it shouldn't be done
in the middle of a sentence!
2001-08-04 22:11:08 +00:00
markm
896afb51d4 Don't clobber CFLAGS.
Submitted by:	bde
2001-08-04 21:48:18 +00:00
tmm
fbdd58046b Make use of the new features of libdevstat to allow iostat to work on
crash dumps, and make it use sysctl for all data retrievals in the
"live" case (i.e. when not using iostat on a crash dump).
Remove setgid kmem for the iostat executable, it is not needed any
more after these changes.

Reviewed by:	ken
2001-08-04 18:30:54 +00:00
gshapiro
88b9c792ce Convert to using the same method of detecting the secure directory as other
usr.sbin programs.

Noted by:	markm
2001-08-03 16:22:47 +00:00
sheldonh
913af295fd Miscellaneous fixes.
In particularly, the -h and -m flags were incorrectly described.
2001-08-03 11:31:39 +00:00
brian
238b01d898 Warn when a CHAP81 SUCCESS packet is invalid due to an incorrect S= value. 2001-08-03 09:28:21 +00:00
iedowse
9e402fc673 Fix a few bugs, some of which I introduced in recent commits:
- clean_mtab():
    Actually use the strdup'd version of the host that we go to the
    trouble of creating.
- do_umntall/do_umount:
    Don't return success if clnt_create() fails.
    Don't access a client pointer after it has been destroyed.
    Remember to destroy the authentication information we created.
2001-08-02 21:46:21 +00:00
brian
967f33f3bc The wrong-last-byte bug on win98 chap responses is also in winME 2001-08-02 20:12:48 +00:00
sobomax
bf2aec73e9 exists(../../crypto) --> exists(${.CURDIR}/../../crypto)
MFC after:	1 month
2001-08-02 18:21:48 +00:00
jon
c399f34c7d fix for pkg_add to symlinked prefix directories that are more than 1 link deep.
PR:	bin/28274
Submitted by:	John Hein <jhein@timing.com>
MFC after:	1 month
2001-08-02 18:20:27 +00:00
ache
3827edad85 Allow configTtys() be called several times - set VAR_CONSTERM to "NO" after
operation done.
2001-08-02 16:36:21 +00:00
sobomax
b4222d1bf2 Fix a cryptoless world by disconnecting libmp from the build when there is no
crypto bits installed and/or NOCRYPTO/NO_OPENSSL is defined. This unfortunately
meants that usr.bin/chkey, usr.bin/newkey and usr.sbin/keyserv have also to
be disconnected.

IMO it is merely a workaround, the proper solution is to move libmp to
src/crypto where it belongs and use libgmp for the cryptoless builds instead.

Missed by:	dd
2001-08-02 15:47:03 +00:00
sobomax
77d54406d5 Cosmetics: replace dozen instances of "(tmp = getenv(PKG_DBDIR) ? tmp : DEF_LOG_DIR)"
with macro.

MFC after:	1 month
2001-08-02 13:13:06 +00:00
sobomax
404c0eeec6 Cosmetics: kill blank lines at the end of file.
MFC after:	1 month
2001-08-02 13:08:43 +00:00
sobomax
fd136a35b7 Usability tweak:
Use '' quotes instead of `' to delimit names of files and packages in
  warning and error messages, because it is easier to cut-n-paste name in
  question that way (single click) without confusing the shell. And yes,
  I know that it is less eye-candy...

MFC after:	1 month
2001-08-02 12:38:29 +00:00
sobomax
81c40cebd2 When there is a file that can't be deleted due to checksum mismatch print name
of that file to stdout to simplify debugging. IMO it was a mistake to print
this warning only when `verbose' mode is on.

MFC after:	1 month
2001-08-02 12:19:32 +00:00
brian
c98910abd5 Add a ``nat punch_fw'' command for punching FTP and IRC DCC holes through
the firewall.
2001-08-02 10:16:32 +00:00
imp
09aa99ee9b Only try to allocated properly aligned I/O segments. This should stop
some of the config problems that we've been seeing (where wi0 tries to
allocate 0x138-0x198, for example).

Use err(1,"foo") rather than perror + exit while I'm here.
2001-08-02 07:06:32 +00:00
rwatson
23ad691908 Add the ability to modify /etc/ttys before first reboot during the
system installation process.  This allows users installing via serial
console to enable serial console login during the installation
process using an un-customized install.  The user is not prompted to
modify /etc/ttys during a normal install, but is offered the
opportunity during post-install configuration.

- Introduce configTTYs(), which describes the benefits of editing
  /etc/ttys, and asks for confirmation before spawning the editor.
- add configTTYs to the post-install configuration, as well as to
  the global configuration index.
2001-08-02 03:53:36 +00:00
rwatson
1e1af75f40 Compensate for default disabling of network services in inetd.conf(5)
by providing the opportunity to edit inetd.conf during the system
installation process.  The following modifications were made:

(1) Expand the Anonymous FTP description dialog to indicate that inetd
    and ftpd must be enabled before it can be used.

(2) Introduce a new configInetd() pair of dialogs, the first describing
    inetd, giving a couple of examples of services that require it, and
    hinting at potential risk, then asking the user if they wish to
    enable it.  The second indicates that inetd.conf must be configured
    to enabled specific services, and asks if the user would like to
    load inetd.conf into the editor to modify it.  Add this
    configuration action to the index.

There are some further improvements that might be considered:

(1) Provide a more inetd.conf-specific configuration tool that speaks
    inetd.conf(5).  However, this is made difficult by the "yet another
    configuration format" nature of inetd.conf, as well as its use of
    commenting to disable services, rather than an in-syntax way to
    disable a service without commenting it out.  Submissions here
    would probably be welcome.

(2) There's some overlap between settings in the somewhat obtuse
    Security Profile mechanism and other settings, including the inetd
    setting, and NFS server configuration.  As features become
    individually tunable, they should probably be removed from the
    security profile mechanism.  Otherwise, somewhat counter-intuitively,
    sysinstall (in practice) queries multiple times whether inetd, nfsd,
    etc, should be enabled/disabled.  A possible future direction might
    be to drive profiles not by degree of paranoia, rather, the set
    of services desired.  Or simply to remove the Security Profile
    mechanism and resort to feature-driven configuration.

Reviewed by:	imp, chris, jake, nate, -arch, -stable
2001-08-02 03:25:16 +00:00
ghelmer
ec9077022b Add "use Fcntl" to resolve O_RDWR|O_CREAT|O_EXCL macros used in
new sysopen call.

PR:		29366 (in part)
2001-08-01 16:32:36 +00:00
ghelmer
df24500a50 Install the new password file with pwd_mkdb, not the old one.
PR:		29366 (in part)
2001-08-01 15:27:39 +00:00
sheldonh
80fcc4abbc MFS: in HISTORY section, fix release number of first appearance 2001-08-01 12:15:21 +00:00
brian
704f051282 Don't include a NUL at the end of our CHAP SUCCESS packet.
When encryption (MPPE) is enabled, WindowsME and Windows98 both
fail because of the extra byte, suggesting that they autheticated
successfully in their log and then dropping the connection, telling
the user that the peer doesn't support compatible encryption
options.

MFC after: 1 week
2001-07-31 21:36:00 +00:00
eric
d5e7d19520 Reword for consistency. 2001-07-31 21:30:57 +00:00
obrien
bee43330be jhb says a 10 line change containing casts is more invasive than a 28 line
change.
2001-07-31 16:25:55 +00:00
asmodai
c0101eaa52 Logging should wind up in /var/log, not /etc/ppp/.
PR:		11989
Submitted by:	Phil Homewood <phil@rivendell.apana.org.au>
MFC after:	1 week
2001-07-31 16:09:29 +00:00
brian
160b405b91 Remove an irritating diagnostic emitted to LogPHASE when a
static proxy arp entry is deleted.

Rename a function (for consistency) and remove some whitespace
(for readability).

MFC after:	1 week
2001-07-31 15:19:07 +00:00
brian
8466587a00 When we receive a CHAP81 challenge response, we always expect the last
byte of the packet to contain '\0'.

Windows 98 gets this wrong, dropping garbage into the last byte and
failing authentication.

Now, we notice this and whinge to our log file that we're compensating
for the corrupt data.
2001-07-31 08:21:39 +00:00
imp
88d723fb61 Have pccardd always ask the kernel for the IRQ to use. The kernel
will soon return the irq from the pcic bridge in cases where't that's
appropriate.

Note: I've had to disbale -I option for the moment.  I've made it easy
to reenable it for people that need it.

MFC After: soon!
2001-07-31 06:12:01 +00:00
eric
f2e1ef7292 Remove an accidental comma that managed to creep in with the last commit. 2001-07-31 04:14:44 +00:00
obrien
790155d37f Use the POSIX syntax for chown.
Submmited by:	garrett
2001-07-30 23:26:19 +00:00
tmm
d67a26493a Fix the third argument to sysctlbyname() to be of the type size_t *
(instead of int *).

MFC after:	2 days
2001-07-30 21:42:26 +00:00
jkh
0d0a83d135 If we're set to non-interactive, we shouldn't ask the user yes/no questions
but simply return the default answer instead.
2001-07-30 20:45:54 +00:00
wollman
22345dd98c Simplify (and hopefully clarify) some date-parsing arithmetic. 2001-07-30 18:27:21 +00:00
brian
635801f2ed If the peer REJects our MRU REQ, stop REQing it -- *EVEN* if we're
doing PPPoE and the default MRU is therefore too big.

When negotiating with win2k, we ask for MRU 1492 and the win2k box
NAKs us saying ``MRU 1492''.  This doesn't make sense to me.  When
we continue to request MRU 1492, the win2k box eventually REJs our
MRU.  This fix allows negotiations to continue at that point,
bringing the link up and potentially allowing the win2k box to send
us frames that are too large.  AFAICT this is better than failing
to bring the link up.... probably !

I have no idea how to do the equivalent of ``route get'' or
``ifconfig -a'' under win2k, so I can't tell what MTU it actually
ends up using.

I believe the bug is in win2k (it's certainly mis-negotiating).
I'll MFC given the release engineers permission as code freeze
begins on August 1.

PR:		29277
MFC after:	3 days
2001-07-30 17:04:39 +00:00
brooks
5f7f94bf12 Make spacing consistant and set WARNS correctly. 2001-07-30 17:01:44 +00:00
obrien
8f93713df5 style(9) 2001-07-30 16:27:16 +00:00
ghelmer
cc59bc9eba The variable giving the name of the temporary password file was
inconsistently named "ptmp" and "etc_ptmp".  This commit changes
it to "passwd_tmp" for consistency and to match OpenBSD's name
for the variable.

Consulted with: jedgar
2001-07-30 16:23:56 +00:00
obrien
76dec2511d WARNS-2'ify.
(this included removing the funny "if (unsigned_var < 0)" test)
2001-07-30 15:41:20 +00:00
obrien
bce695d83a Add the ability to Bzip2 your logs.
PR:		27901
Submitted by:	Anders Nordby <anders@fix.no> (stylistic changes by me)
2001-07-30 15:17:17 +00:00
bde
3089204ae8 Fixed bitrot in DPADD in previous commit. The previous commit changed
LDADD to link to a correct copy of libkeycap but didn't change DPADD
to match.
2001-07-30 11:38:35 +00:00
bde
ecad780070 Fixed bitrot in DPADD in previous commit. 2001-07-30 11:18:09 +00:00
dd
a12e9377b2 Enable the new libmp in the build, and disable libgmp and its
henchmen.
2001-07-29 08:58:22 +00:00
brian
8ab0acdbe9 Change permissions back to 4554/554
Suggested by:	kris
2001-07-28 11:58:41 +00:00
brian
933d065af2 If the peer sends a REQ without the IPADDR option, only reject it
once.  If they repeat the request (again without the IPADDR option)
ACK it.

I've had reports that some ppp implementations will not assign
themselves an IP number.  This should negotiate with such things.

MFC after:	3 days
2001-07-28 11:32:08 +00:00
obrien
48796793e6 The security officer requested this be backed out for discussion. 2001-07-28 04:44:09 +00:00
obrien
759849ef4c Remove s_strl*(). I am not sure what was thought they accomplished.
When reading the code I had to stop, say "ok, what does *these*
modifications of strl*() do?  Pull out grep.  Oh, not in add/, maybe above
in ../lib/?  Yep.  So what do they do?  Comments above them are misleading,
guess I'll have to read the code.  Oh, they just test strl* against the
size and return the result of the test.  Now I can continue to read the
code I was.

The uses of s_strl*() then test that result and errx()'s.
Lets think about the "optimized" code I am removing:

In general the compiler pushes the three args to strl* onto the stack and calls
s_strl*.  s_strl* has to indirectly access 3 args from the stack.  Then push
them on the stack a 2nd time for the real strl* call.  s_strl* then pops the
return from strl* off the stack; or moves it from the register it was returned
in, to the register where tests can happen.  s_strl* then pops the three
arguments to strl*.  Perform the test, push the result of the test, or move it
from the result register to the return value register.  The caller to s_strl*
now has to either pop the return value of s_strl* or move it from the return
value register to the test register.  The caller then pops the three args to
s_strl* off the stack (the same args that s_strl* itself had to pop off after
the real call to strl*).  The s_strl* caller then performs a simular test to
what has already been done, and conditionally jumps.  By doing things this way, we've given the compiler optimizer less to work with.

Also, please don't forget the that call to s_strl* has possibly jumped to code
not in the cache due to being far away from the calling code, thus causing a
pipeline stall.

So where is the "optimization" from s_strl*?
It isn't code clarity.
It isn't code execution speed.  It isn't code size either.
2001-07-28 01:59:58 +00:00
brooks
9b097ee613 Make ancontrol WARNS=2 clean. 2001-07-27 18:26:42 +00:00
imp
98c03bcff2 Improve wording for pccard memory assignement.
Document intended correct behavior for pccardc power and how it interacts
with suspend/resume.
2001-07-27 06:32:20 +00:00
brooks
a67cc01f18 Remove -traditional from CFLAGS and add unistd.h to header.h so this
actually compiles.  Hopefully, this code didn't rely on some weird
side effect of -traditional.
2001-07-27 04:40:04 +00:00
fenner
8f071fe2d9 Use alignment-safe code on non-i386 architectures. 2001-07-26 21:54:47 +00:00
kris
eeb26803a4 Only match the first osreldate date range for constructing the FTP URL,
not all of them.

Noticed by:	obrien
2001-07-26 20:25:50 +00:00
brian
f19a3f3d63 Handle peer REQ/NAKs of >1500 byte MRUs when we have no preference.
MFC after: 3 days
2001-07-26 11:33:53 +00:00
sheldonh
9bfb9eedcd Use STD{ERR,IN,OUT}_FILENO instead of their numeric values. The
definitions are more readable, and it's possible that they're
more portable to pathalogical platforms.

Submitted by:   David Hill <david@phobia.ms>
2001-07-26 11:02:39 +00:00
eric
1a0c941e13 Remove duplicate cvs tag. 2001-07-26 07:26:39 +00:00
eric
cf05d1999a Update sysinstall menu texts to reflect the new key behavior.
Approved by:	jkh
2001-07-26 07:17:27 +00:00
jedgar
87a6c1715d Use a safer method of creating the temporary password file.
Submitted by:	dynamo@harvard.net
Obtained from:	OpenBSD
MFC after:	3 days
2001-07-25 11:55:33 +00:00
brian
47bc6ecf64 Change permissions from [4]554 to [4]551
MFC after: 3 days
2001-07-25 11:44:04 +00:00
billf
6cfdb0f461 fix misspelling introduced in rev 1.14 (sames as -> same as) 2001-07-25 04:13:01 +00:00
kris
09e0e54b1e Replace strncpy -> strlcpy
Obtained from:	OpenBSD
MFC after:	1 week
2001-07-24 11:36:56 +00:00
kris
66a383b370 Install this mode 4550 owned by group dialer; there is unsafe code
in the signal handlers which may pose a risk when executable by untrusted
users.

Submitted by:	Przemyslaw Frasunek <venglin@freebsd.lublin.pl>
MFC After:	3 days
2001-07-24 02:37:48 +00:00
gad
d8ce2cea7a Basically rewrite the dofork() routine, to add more error-checking and
correct the error-checking that was there.  With the old code, an error
return from getpwuid(daemon_user) could turn the lpd process into a very
effective fork-bomb...

Reviewed by:	freebsd-audit freebsd-print (a little...)
MFC after:	6 days
2001-07-23 23:13:39 +00:00
wpaul
08feeb2436 You were knocked senseless by the Boomerang, spun around by the Cyclone,
blown over by the Hurricane and had a house dropped on you by the Tornado.
Now it's time to have your parade rained on by... the Typhoon!

This commit adds driver support for 3Com 3cR990 10/100 ethernet
adapters based on the Typhoon I and Typhoon II chipsets. This is actually
a port of the OpenBSD driver with many hacks by me.

No Virginia, there isn't any support for the hardware crypto yet. However
there is support for TCP/IP checksum offload and VLANs.

Special thanks go to Jason Wright, Aaron Campbell and Theo de Raadt for
squeezing enough info out of 3Com to get this written, and for doing
most of the hard work.

Manual page is included. Compiled as a module and included in GENERIC.
2001-07-23 20:44:54 +00:00
ghelmer
169ada607a Fix removal of at jobs.
PR:		bin/23052
Submitted by:	Mike Sellenschuetter <mike.sellenschuetter@bankofamerica.com>
MFC after:	1 week
2001-07-23 18:25:45 +00:00
ache
6710b3d92e Back out WARNS commenting - local fault 2001-07-23 12:38:00 +00:00
kris
6fde30d182 s/adress/address/
Inspired by:    OpenBSD
MFC After:      1 week
2001-07-23 12:05:27 +00:00
ache
744f90a409 Unbreak world - comment out WARNS=2 - deadly warning on tgetstr 2001-07-23 10:46:01 +00:00
kris
da4edbfc48 Fix typos
Obtained from:	OpenBSD
MFC After:	1 week
2001-07-23 09:39:55 +00:00
kris
e737b9651c sprintf -> snprintf 2001-07-23 09:22:21 +00:00
gad
dea0eea19e Get rid of a compile-time warning by casting to (size_t).
MFC after:	1 week
2001-07-23 01:19:59 +00:00
gad
3e14c9da63 Get rid of a compile-time warning by casting to (size_t).
MFC after:	1 week
2001-07-23 01:13:20 +00:00
gad
8d5df5b9d8 Fix a few more minor compile-time warnings, mainly by using size_t where
appropriate, and using '("%lu", (unsigned long)asizeval)' when printing
something of type size_t.

MFC after:	1 week
2001-07-23 01:08:15 +00:00
gad
69389eabcd Get rid of some compile-time warnings by defining (or casting) variables
as size_t where appropriate.

MFC after:	1 week
2001-07-23 00:15:37 +00:00
gad
e6b7d1bcf6 Fix two compile-time warnings by defining fromlen as socklen_t.
MFC after:	1 week
2001-07-23 00:13:02 +00:00
yokota
d57dc6ad00 Use the correct ioctl command to set a VESA mode.
PR: 24423
MFC after: 10 days
2001-07-22 13:30:32 +00:00
iedowse
cc2212999e Fix some bugs and general brain damage in mounttab:
- Declare mtabhead as an extern in mounttab.h and define it only in
  mounttab.c.
- Remove shared global `verbose' and instead pass it as a parameter.
- Remove the `mtabp' argument to read_mtab(). It served no purpose
  whatsoever, although read_mtab() did use it as a temporary local
  variable.
- Don't check for impossible conditions when parsing mounttab, and
  do detect zero-length fields.
- Correctly test for strtoul() failures - just testing ERANGE is wrong.
- Include a field name in syslog errors, and avoid passing NULL to
  a syslog %s field.
- Don't test if arrays are NULL.
- If there are duplicates when writing out mounttab, keep the last
  entry instead of the first, as it will have a later timestamp.
- Fix a few formatting issues.

Update rpc.umntall and umount to match the mounttab interface changes.
2001-07-22 12:17:51 +00:00
gad
1e08944f46 Replace calls to strncpy with calls to strlcpy, and remove the extra step
needed to ensure that the result is null-terminated when using strncpy().

MFC after:	8 days
2001-07-22 07:25:27 +00:00
iedowse
f561545d60 Fix a selection of bugs, and improve code layout:
- Remove unnecessary and unused local variables.
- Include useful information in error and warning messages.
- Fix the logic for expiring mounttab entries.
- Remove calls to getaddrinfo - the results were not used.
- Simplify some string handling by using snprintf.
- Fix usage.
2001-07-22 01:25:25 +00:00
gad
088f7e2128 Rename the -w option to be -W. The recently-added -w option is different
than the long-standing -w option in NetBSD, so change it before anyone in
FreeBSD gets used to it.  For now, -w is still accepted, but prints out
some warnings via syslog.

MFC after:	1 week
2001-07-22 01:05:20 +00:00
gad
352a508a96 Change a few read & write calls to use 'STDOUT_FILENO' instead of '1'.
Submitted by:	David Hill <david@phobia.ms>
Reviewed by:	freebsd-audit  (a little)
MFC after:	1 week
2001-07-22 00:03:21 +00:00
msmith
61acbada86 ACPI CA doesn't recognis S4BIOS as a seperate sleep type anymore, so
drop support for it here until we work out a better way of handling it.
2001-07-21 21:51:44 +00:00
hm
d672ec4d3e Another hangup bugfix from Juha:
Problem 1 is that the config entry hangup flag is zeroed only at
 CONNECT_ACTIVE_IND in msghdl.c. If any (other) call is disconnected
 after EV_MDO and before CONNECT_ACTIVE_IND, the cleanup routine will
 disconnect the in-progress dialout as well, if its hangup flag is
 nonzero (which it is likely to be) after the previous incarnation of the
 cfg entry. Patch-1 fixes this by clearing the hangup flag as soon as a
 cfg entry is reserved for the call.

Submitted by:	Juha-Matti Liukkonen <jml@cubical.fi>
2001-07-21 16:31:39 +00:00
hm
0bab8d6b8c Fix hangup bug; Juha writes:
Problem 2 is that doing a local hangup (eg. by writing "H" to the
 dialout device) to a call which is already disconnected results in isdnd
 moving the cfg entry to an illegal state, from which there is no
 recovery. This is tricky because there is no way to synchronize local
 hangup with the remote end (ie. the callee can always hang up at an
 inconvenient time)! Hence, patch-2 alters fsm.c's EV_DRQ state table
 such that the local hangup request is processed or ignored in most
 states, even for disconnected calls.

Submitted by:	Juha-Matti Liukkonen <jml@cubical.fi>
2001-07-21 16:28:28 +00:00
rnordier
ba4e5273cd Unset MAINTAINER. 2001-07-21 14:32:47 +00:00
hm
5276a48c0f After being port- and addressscanned continously from several sources where
my line stayed open for more than eight hours i decided to implement a
maximum connection time; see keyword maxconnecttime in the manual page.
2001-07-21 11:29:40 +00:00
obrien
d7b66a488a Hide in the Attic. This isn't built any more (it wont) and it can better
collect dust up there.
2001-07-21 02:18:38 +00:00
obrien
519f5fca7a Fix some nits I missed in my style cleanup. 2001-07-20 15:33:04 +00:00
bde
df6d0e0f5f Removed CSRG ids. CSRG never had anything to do with dpt.
Don't set BINMODE to 500.  This is not a setuid program.

Note: the dpt utilities have never been attached to the world and
haven't been compilable for a year or two.
2001-07-20 14:59:15 +00:00
sobomax
8ffb61ff48 Use reallocf(3) to increase size of malloc'ed buffer instead of
malloc()+memcpy()+free().
2001-07-20 13:20:32 +00:00
davidn
011fe38c96 Fix a possible NULL reference that would be triggered
by invalid input in /etc/crontab.

MFC after:	2 days
2001-07-20 06:46:48 +00:00
obrien
9c97c8f02d Perform a major cleanup of the usr.sbin Makefiles.
These are not perfectly in agreement with each other style-wise, but they
are orders of orders of magnitude more consistent style-wise than before.
2001-07-20 06:20:32 +00:00
obrien
be022bb715 Remove GCC'isms in CFLAGS. 2001-07-20 04:23:13 +00:00
ume
02712d67ba - `-a' option for IPv6 was not working correctly.
- Lose any stray host bits that a user may have entered when providing
  a network number and netmask to the `-a' option for IPv6.  This is
  corresponding to 1.79 that is for IPv4 only.

MFC after:	1 week
2001-07-19 22:04:09 +00:00
ru
5f826d99c9 Added missing dependancy.
Submitted by:	bde
Approved by:	obrien
2001-07-19 19:04:31 +00:00
wollman
8474e78ca6 Note the equivalence of certain time formats. 2001-07-19 15:52:02 +00:00
dd
a47ce97e79 Generate a bigger salt. This is necessary for blowfish to work
properly, and doesn't hurt the other algorithms.

PR:		28991
Submitted by:	Yoshihiro Koya <Yoshihiro.Koya@math.yokohama-cu.ac.jp>
2001-07-19 12:00:04 +00:00
dd
2dcfabf4c9 Increment `i' in case of -S so that its argument isn't treated as
another, unknown option.

Submitted by:	Naoki Kobayashi <shibata@geo.titech.ac.jp> and
		    Harti Brandt <brandt@fokus.gmd.de>, respectively.
Pointy hat to:	dd
2001-07-19 11:33:24 +00:00
dd
5a7c7bcbb6 Instead of giving an example of rotating logs at the end of the month,
give an example of how to rotate logs at the beginning of the month.
Although they sound the same, since both of them rotate logs at the
beginning of the day, the former ended up taking place on, e.g., July
31 00:00 instead of the expected July 31 23:59.  This is contraty to POLA.

Submitted by:	Dan Langille <dan@langille.org>
2001-07-19 11:18:42 +00:00
kris
45f22b5e8f Correct a reversion in r1.39 which introduced a new instance of strcpy()
after r1.38 had attempted to remove them all.
2001-07-19 06:01:23 +00:00
ben
bfa2b79d5e Document the two recent changes to diskcheckd's behaviour and configuration
syntax.
2001-07-18 22:29:54 +00:00
mike
f5302392d3 Document the fact that syslogd(8) requires logs files to be created
before it will start logging to them.

PR:		27088
Approved by:	des
MFC after:	10 days
2001-07-18 13:31:08 +00:00
dd
c821518dec Remove an unused variable, and don't try to print a char[] using %d.
Submitted by:	Mark Peek <mark@whistle.com>
2001-07-18 11:49:45 +00:00
dd
cb0776eac7 free_entry(): Don't free e->envp if it's already NULL; likewise for
e->cmd.  free_entry() now does the right thing with
partially-initialized structures.

load_entry(): Don't call env_free() on e->envp throughout the routine
before jumping to eof; the free_entry() call at that label will take
care of it.  The previous behavior resulted in e->envp being free'd
twice (well, the second time would usually result in a crash, but
that's besides the point); once in load_entry(), and once in
free_entry() after the former called the latter.  Also note that the
check added to free_entry() (above) doesn't help, since e->envp wasn't
reset to NULL after env_free().

Submitted by:	Mark Peek <mark@whistle.com>
2001-07-18 11:48:00 +00:00
dd
80e372cd14 Set wollman as the MAINTAINER and mention the vendor contact. Ideally
this entire subtree would be in src/contrib, but if that isn't going
to happen at least this has a chance of warning off unsuspecting
committers.

Approved by:	wollman
2001-07-18 11:30:46 +00:00
dd
089ab7990e Back out WARNS cleanup: this is apparently vendor code, even though
most of the files aren't on the vendor branch.

Submitted by:	wollman
2001-07-18 11:27:04 +00:00
brian
0906f6dada Bring the PPPoE Ethernet interface up *BEFORE* we send the node a
CONNECT message.

MFC after: 1 week
2001-07-18 09:33:45 +00:00
ru
7d127eaced fdisk(8): document the default for -b, add xref to boot0cfg(8).
boot0cfg(8): add FILES section.

Reviewed by:	rnordier
2001-07-18 07:12:46 +00:00
dwmalone
e1937cda4d Turn off WARNS stuff. When combined with -nostdinc and system header
files that aren't WARNS clean it causes trouble.
2001-07-17 19:00:47 +00:00
ache
cd85c941a3 Fix disclaimer clause
Submitted by:	jkh
2001-07-17 08:35:45 +00:00
dwmalone
609f9c8213 o Remove old setproctitle.
o Mark unused variables.
o Set WARNS?=2
o Results in no code changes.

Submitted by:	Mike Barcroft <mike@q9media.com>
2001-07-17 07:12:57 +00:00
dillon
9fb9ef60e6 Set the NOADDITIONAL flag for bind. This removes the 5% ttl reduction
for glue records and forces the glue record to be reloaded from the real NS.

The 5% ttl reduction can cause the glue IN A to timeout before the NS
record in certain situations, such as when the domain owner does not match
up NS records with the NIC.   This behavior by domain owners is becoming
more common as primary zone serving iterates through another glue level
(i.e. exodus hosts the master NS's but the customer then redirects the
NS's to the real DNS servers).  The result is that named would appear to
work properly for about 40 minutes, and then unexpectedly fail for that
zone.  This causes named to behave very inconsistently and a google search
shows that it has obviously frustrated many, many people.  So until the bind
guys make named behave consistently (either fail instantly or accomodate the
case), we need to set this option to accomodate the case.  The result
will be much more consistent behavior and fewer head-scratching failures.

MFC after: 3 days
2001-07-17 04:54:00 +00:00
ache
41f378ca9e Add ability to configure console terminal type in /etc/ttys
Reviewed by:	audit, jkh's silence
2001-07-17 04:09:50 +00:00
brian
adc22e971c Ignore (with a warning message) mtu/mru configurations that are greater
than the maximum physical values.

MFC after: 1 week
2001-07-17 01:06:13 +00:00
brian
1104311170 Free things in the right order 2001-07-16 22:12:06 +00:00
brian
27ff1556c8 TCPMSS adjusts all TCP SYN packets, not just outgoing ones.
Pointed out by: ru
2001-07-16 17:02:10 +00:00
dd
12b6546726 Add prototypes, staticize, constify, don't shadow global variables and
functions, remove an unused function, and silence other assorted
warnings.

Set WARNS=2.
2001-07-15 11:03:28 +00:00
dd
911ca14c87 Remove whitespace at EOL. 2001-07-15 08:06:20 +00:00
dd
a145482cf6 Remove whitespace at EOL. 2001-07-15 07:53:42 +00:00
dd
12905cca18 Constify, add some prototypes, and set WARNS=2.
Submitted by:	Mike Barcroft <mike@q9media.com>
2001-07-15 06:20:45 +00:00
gad
2d01bec833 Change lpd to perform sanity and safety checks on control files as it
receives them from other hosts.  This is meant to protect from both
nefarious users (which maybe broke into some remote host that we accept
print jobs from), and broken implementations of lpr on other platforms.
This is done by changing recvjob.c to call the new ctl_renametf()
routine in the new common_source/ctlinfo.[ch] files.  This will not
affect jobs coming via lpr on the local machine.

Reviewed by:	freebsd-print@bostonradio.org & freebsd-audit
MFC after:	16 days
2001-07-15 05:29:38 +00:00
gad
8575cc9f24 Replace a call to 'alloca', thus avoiding an error when compiling on
freebsd/alpha with -ansi (and on some non-fbsd platforms).  This change
can only affect the access checking of 'lpr -r'.

MFC after:	1 week
2001-07-15 04:10:32 +00:00
gad
b28eadc433 Get rid of one compile-time warning by changing an 'int' to a 'size_t'.
MFC after:	1 week
2001-07-15 03:10:54 +00:00
gad
edd603bf24 Get lpr/pac.c to compile without warnings with BDECFLAGS
MFC after:	1 week
2001-07-15 01:28:56 +00:00
gad
a76650f907 Replace three subtly-wrong calls to strncpy with calls to strlcpy, and
use (size_t) in a few places to avoid compile-time warnings on alpha.

MFC after:	1 week
2001-07-15 00:57:18 +00:00
gad
75f5203b04 Fix most of the warnings generated by compiling lpr with -Wnon-const-format,
often by just telling gcc that some internal routine is "__printflike"
(work done by Kris Kennaway <kris@FreeBSD.org>).  Also fix the new warnings
which show up once gcc starts checking the "printf-like parameters" passed
to those routines.

MFC after:	1 week
2001-07-15 00:09:46 +00:00
gad
005561658b Change signal-handling to reset SIGCHLD to SIGDFLT instead of SIG_IGN.
This fixes a problem with using print filters (if=, of=, etc) that showed
up in -current around June 20th.  That problem initially reported by
Georg-W Koltermann <gwk@sgi.com>, while most of the investigation that
led to this fix was done by Anton Berezin <tobez@FreeBSD.org>.

Reviewed by:	freebsd-print@bostonradio.org
MFC after:	1 week
2001-07-14 21:49:17 +00:00
iedowse
fd51519085 This is a selection of essentially cosmetic changes:
- Use '\0' for a char instead of NULL.
- Explicitly compare against the global `nullstring' to determine if
  a non-NULL uaddr is not malloc'd.
- Remove some unnecessary casting of the argument to free().
- In rpcbproc_callit_com(), move the freeing of m_uaddr to the
  cleanup code at the end of the function.
- To avoid confusion and  possible alignment problems, change
  netbufdup() to allocate the netbuf struct and the sockaddr buffer
  separately, and change netbuffree() accordingly. This makes it
  produce netbufs that are consistent with all other netbufs in
  rpcbind.
2001-07-14 17:46:52 +00:00
iedowse
0f4584e447 Fix a memory leak in check_bound() by freeing the buffer area of
the netbuf before freeing the netbuf structure itself.
2001-07-14 17:17:48 +00:00
iedowse
7727f026d5 Add missing #include <stdio.h>.
Fix an off-by-one error in logit() when determining if a procedure
number has a known name.
2001-07-14 17:10:58 +00:00
iedowse
8e9e0ab7df Simplify to bitmaskcmp() to use the obvious approach instead of
comparing bit by bit.

Make the logic in in6_fillscopeid() match that in our ifconfig(8):
only set the scope ID if there is one in the address and none in
sin6_scope_id.

Correct a comment in network_init() that didn't make sense; it was
probably never updated after it was pasted from similar code in
addrmerge().
2001-07-14 17:04:26 +00:00
iedowse
51cb9c0c86 Use snprintf instead of sprintf. 2001-07-14 16:54:37 +00:00
iedowse
32905cfb8d Avoid a harmless compiler warning, and add a missing \n to a
debugging fprintf.

Submitted by:   Martin Blapp <mb@imp.ch>
2001-07-14 16:32:44 +00:00
peter
e6b1f6d7a4 Put on my peril-sensitive sunglasses and remove the POLA-violating
stealth hints loading.  'make release' has been fixed to not need this
now anyway.  If you want static hints, specify it explicitly.

Hey! Why did it suddenly get so dark??
2001-07-14 05:02:40 +00:00
peter
6bf91f4b27 Remove the old machine symlink first. 2001-07-14 00:03:05 +00:00
obrien
ef89f431f1 Tweak the Alpha partition warning wording and comment a little. 2001-07-13 16:45:00 +00:00
obrien
dc28b4f284 Rudamentary attempt to reconize when `a' is not the first partition on the
Alpha.  (the Alpha will not boot except from the first partition)

PR:		23064
Submitted by:	Kees Jan Koster <kjkoster@kjkoster.org>
2001-07-13 16:37:03 +00:00
obrien
15642ccfc3 Repeat after me: "when reporting `file not found', perform a little bit of
useful HCI consideration and tell which file was being looked for".
2001-07-13 16:30:11 +00:00
dd
948453970e Whine if we discover an unknown option. This program doesn't use
getopt(3) (and can't be converted without breaking compatibility), and
it's very irritating to have it silently DTWT if one combines options
together (e.g., "-msS domain,server").
2001-07-13 14:10:09 +00:00
ru
5001e16d30 mdoc(7) police: -xwidth has been fold into -width. 2001-07-13 09:09:52 +00:00
brian
c29f79581e Perform MSS fixups on incoming packets as well as outgoing.
MFC after: 1 week
2001-07-13 02:04:19 +00:00
dd
b5164c6585 Introduce an "include" directive. It takes one argument, a filename
to be included into this one.  This works the same way as #include
does in C; as far as the user is concerned, the included file is
inlined into the current one.

Since config(8) is no longer limited to working on one user-supplied
file, printing just a line number in an error message is not
sufficient.  The new global variable yyfile represents the file
currently being parsed, and must be printed as well.

Reviewed by:	imp
Obtained from:	OpenBSD
2001-07-12 02:08:51 +00:00
jesper
93faa5d597 Fix IP address checking, now we allow addresses like 172.17.0.0/23 as
a host address

PR:		misc/27799
Reviewed by:	jkh
Approved by:	jkh
MFC after:	1 month
2001-07-12 00:01:45 +00:00
fenner
927d80d17a Don't try to compile v6-only files if NOINET6.
PR:		misc/28287 , misc/28288
2001-07-11 21:46:06 +00:00
ume
fd6cdfa286 Add ftp2.jp.freebsd.org as IPv6 ready mirror server.
Now, ftp2.jp.freebsd.org is serverd by IIJ.

MFC after:	1 week
2001-07-11 11:24:06 +00:00
ru
d929062987 mdoc(7) police: removed punctuation after the last SEE ALSO xref. 2001-07-10 18:00:19 +00:00
ru
0d5f9334cf mdoc(7) police: removed HISTORY info from the .Os call. 2001-07-10 15:12:08 +00:00
sobomax
b7a774cad4 bzip2(1) is in the base system - we don't need /usr/local/bin in the PATH
anymore.
2001-07-10 15:10:47 +00:00
ru
7cef49ff86 mdoc(7) police: removed HISTORY info from the .Os call. 2001-07-10 11:04:34 +00:00
ru
c796afe811 mdoc(7) police: eliminate warnings, fix markup. 2001-07-10 08:04:09 +00:00
dd
eaa6ee03b8 mdoc(7) police: remove extraneous .Pp before and/or after .Sh. 2001-07-09 09:54:33 +00:00
brian
8636b161b3 Fix the type of the NULL arg to execl()
Idea from: Theo de Raadt <deraadt@openbsd.org>
2001-07-09 09:24:06 +00:00
brian
ef44874abb Fix the type of the last arg to execl()
Obtained from: OpenBSD
2001-07-09 08:17:47 +00:00
brian
e5e53f5188 Staticise the OpenBSD SHA1_End() function 2001-07-09 00:45:57 +00:00
brian
e3b3f682a9 Stay (backwards-)compatible with OpenBSD's groff 2001-07-09 00:13:49 +00:00
brian
a3c5f8aba8 Add a ``nat proto'' command -- similar to natd(8)'s -redirect_proto switch.
MFC after: 3 weeks
2001-07-09 00:07:56 +00:00
iedowse
9b020ad7f3 Oops, remove a `mouse_move_delayed++' that shouldn't have been
added in the previous commit; this variable is already incremented
in the previous `if' condition.
2001-07-08 21:16:20 +00:00
iedowse
b4102478b4 The state machine for 3-button emulation defers some button events
until a 20ms select(2) timeout occurs, but if there is a continuous
stream of movement events, button events can be delayed indefinitely
because the select never has to wait long enough for a timeout.
The delay and mouse event reordering that result are very noticable
and sometimes quite frustrating when dragging windows etc. in X.

Add a simple mechanism that avoids this re-ordering. While a button
event is deferred, we discard up to 3 movement events to allow for
mouse jitter. If more movement events occur, then we immediately
timeout the deferred button event and let the movement proceed.
This change only affects the 3-button emulation case.
2001-07-08 20:23:59 +00:00
brian
c11e4967f8 Don't try to dereference the -1th ccp algorithm array entry when we
open CCP with no algorithm.
2001-07-07 13:12:07 +00:00
brian
b93f87d791 When we miss one or more packets in stateful mode *and* need to
perform a key change, *and* our sequence numbers have wrapped,
ensure that the number of key changes is calculated correctly.

The previous code counted down from a negative number to zero,
re-encrypting the current key on each iteration - this took some
time and strangely enough got the answer wrong !!!

Fix a(nother) spelling mistake while I'm there.
2001-07-07 03:06:20 +00:00
brian
92b94fe6a1 Spell stateful properly
Inconsistently done by:	brian
Spotted by:		ru
2001-07-06 23:45:32 +00:00
ru
05e503d80a mdoc(7) police: sort SEE ALSO xrefs (sort -b -f +2 -3 +1 -2). 2001-07-06 16:46:48 +00:00
ru
84bd47abea mdoc(7) police: added missing .Ek call. 2001-07-06 15:19:34 +00:00
mjacob
f36634093c make it compile on alpha again 2001-07-05 16:53:49 +00:00
ru
88bd9429d1 Don't override the default BINMODE.
Submitted by:	bde
2001-07-05 15:25:05 +00:00
ru
e1827422c1 mdoc(7) police: removed hard sentence breaks, sorted xrefs. 2001-07-05 11:01:12 +00:00
kris
307edbea2b Mark relevant functions __printflike()/__printf0like() and silence some of
the non-constant format string warnings.

MFC after:	1 week
2001-07-05 09:51:09 +00:00
ru
fc3cfdc00e mdoc(7) police: cosmetics. 2001-07-05 09:44:08 +00:00
kris
d2009cca0d It seems to be no longer true that -O2 is required to compile this.
MFC after:	1 week
2001-07-05 09:37:51 +00:00
ru
fa03e2044b mdoc(7) police:
Use -tag list in the FILES section to work around the bug
when .Pa font is not restored to its original value if one
of the -hang, -ohang, or -inset lists is used in the FILES
section.  (The fix for the bug has just been submitted to
the GNU Groff maintainers.)

Also, fixed the Handbook reference in the SEE ALSO.
2001-07-05 09:35:20 +00:00
kris
3f5ce02c76 Mark some functions as __printflike()
MFC after:	1 week
2001-07-05 09:28:13 +00:00
ru
262a8126f0 mdoc(7) police: removed hard sentence breaks, use new .Brq macro. 2001-07-05 08:22:01 +00:00
kris
f6fc0970da Mark some functions as __printflike()
MFC After:	1 week
2001-07-05 08:17:06 +00:00
ru
b6359d6af6 mdoc(7) police: sort xrefs. 2001-07-05 08:13:03 +00:00
kris
5a1251c5ff Fix a harmless format string bogon and mark a function as __printflike().
There is still one instance of non-constant format string use inside that
function, but it's hard to fix.

MFC after:	1 week
2001-07-05 08:01:15 +00:00
kris
38cc36696a Mark a static function as __printflike()
MFC After:	1 week
2001-07-05 07:52:56 +00:00
ru
c25970b274 mdoc(7) police: fixed markup, sorted xrefs. 2001-07-05 07:37:33 +00:00
ru
6ba6c3bd99 mdoc(7) police: fixed formatting bug in rev. 1.10. 2001-07-05 07:23:24 +00:00
ru
5641eff172 mdoc(7) police: use plain text parentheses with plain text blocks. 2001-07-05 07:21:28 +00:00
ru
f40e6b2934 mdoc(7) police: fixed markup in rev. 1.3. 2001-07-05 07:04:33 +00:00
dd
816462428e Make the '-tn' flag combination print the major/minor numbers of the
line as documented intead of a full column of 0's.
2001-07-04 22:53:19 +00:00
imp
cf5b605596 Bring FILES section up to date.
submitted by: Mark Peek <mark-ml@whistle.com>
2001-07-04 18:48:50 +00:00
ben
b903dc061d * Read 64k at a time with variable length pauses between instead of
reading variable sized blocks of data every second.  This should be
  more efficient.

Suggested & tested by:	se

* Add a syntax for excluding CD-ROM drives etc.

Suggested by: des, se, many others...

Manual page updates coming soon.
2001-07-04 17:43:43 +00:00
ru
4d8e1d038b mdoc(7) police: cosmetics. 2001-07-04 13:57:34 +00:00
brian
b44d6474df Make the last fix work properly on descriptors 1 and 2 (not just 0) 2001-07-04 09:32:34 +00:00
ru
cf78624010 Install it with mode 550, and with default group ${BINGRP}. 2001-07-04 07:20:11 +00:00
ru
94120cdf83 - Document that this program is available to root only.
- Document alternate way to fetch multicast info.
- Add RFC2080 reference.

Obtained from:	OpenBSD (with mods)
2001-07-04 07:17:24 +00:00
brian
746c94eef4 Handle any of descriptors 0, 1 or 2 being closed when we're
envoked -- don't use them (as return values from open()), then
(say) close(STDIN_FILENO) when daemonising.

This is done by grabbing 3 descriptors to /dev/null at startup and
releasing them after we've daemonised.

MFC after: 1 week
2001-07-04 03:34:20 +00:00
brian
0deba2c342 Reduce the interface MTU by 2 when MPPE has been successfully negotiated.
This is necessary because MPPE will combine the protocol id with the
payload received on the tun interface, encrypt it, then prepend its
own protocol id, effectively increasing the payload by two bytes.
2001-07-03 22:20:19 +00:00
brian
c6b698395d Don't accept chap80lm by default - it doesn't work.
MFC after: 1 week
2001-07-03 22:20:11 +00:00
brian
da14c6a0f2 Silence some gcc warnings 2001-07-03 22:20:06 +00:00
joerg
dd1382025f Make fdformat WARN=2 ready. 2001-07-03 21:43:41 +00:00
mjacob
de77c02347 Use correct type of argument to fgetln.
MFC after:	1 week
2001-07-03 21:40:34 +00:00
dd
40121fab55 mdoc(7) police: fix spacing and punctuation issues. 2001-07-03 21:22:09 +00:00
ume
16f7cc2d22 drop setgid bit. ifmcstat(8) is not audited, and is needed only for root.
Obtained from:	KAME
MFC after:	1 week
2001-07-03 18:15:07 +00:00
ru
a1cc2986c5 Fixed the world breakage in rev. 1.8 (space after -I).
While here, removed the GCCism (replaced with WARNS?=1).
2001-07-03 09:48:28 +00:00