| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
distinguish between the cases of an existing file and
a real system error, such as I/O failure, no access etc.
MFC after: 3 days
|
| | |
|
| |
|
|
|
| |
Thus, mark the M_HASFCS flag so the generic ethernet layers will account
for this.
|
| |
|
|
|
|
| |
rejects pathnames with backslashes in them (and to avoid a syntax error).
Found by: FlexeLint
|
| | |
|
| | |
|
| |
|
|
|
|
| |
were changed from int to size_t in the previous revision.
PR: 47625
|
| |
|
|
| |
Inspired by: http://www.theinquirer.net/?article=7481
|
| |
|
|
| |
[WARNING: CPUs in the distant future may be closer than they appear!]
|
| |
|
|
|
|
|
|
| |
host-specific information in FTP server messages (so paranoid
admins can sleep at night :-)
PR: bin/16705
MFC after: 1 week
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
separating its part around chroot(2) from that around initial
chdir(2). This makes the below changes really easy.
Move seteuid(to user's uid) to before calling chdir(2). There are
two goals to achieve by that. First, NFS mounted home directories
with restrictive permissions become accessible (local superuser
can't access them if not mapped to uid 0 on the remote side
explicitly.) Second, all the permissions to the home directory
pathname components become effective; previously a user could be
carried to any local directory despite its permissions since the
chdir(2) was done with euid 0. This reduces possible impact from
FTP server misconfiguration, e.g., assigning a wrong home directory
to a user.
Implement the "/./" feature. Now a guest or user subject to chrooting
may have "/./" in his login directory, which separates his chroot
directory from his home directory inside the chrooted environment.
This works for ftpchroot(5) as well.
PR: bin/17843 bin/23944
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
When we call "distributeworld" as part of "make release", we set
MACHINE and MACHINE_ARCH to point to TARGET and TARGET_ARCH; this
confused src/Makefile's idea of what ${MAKEPATH}, and consequently
${MAKE}, is (well, it still confuses ${MAKEPATH}, but see below).
To overcome this problem, we now take the following approach:
- We preserve the make(1)'s idea of its argv[0], ${MAKE}.
- We check to see if ${MAKE} passes the regression tests.
- If it does, we use it. Otherwise, we build and use an
up-to-date make(1).
This fix is still not quite right, in a situation where a single
/usr/obj is shared between different architecture machines, but
it is less critical and I hope to fix that soon.
|
| |
|
|
| |
Use the right strip(1) binary.
|
| |
|
|
|
|
|
|
|
| |
Back out the removal of custom version of endian.h system header.
On recent systems, it just falls back to <sys/endian.h>. But on
older systems like 5.0-DP1 or 4-STABLE, this private version may
be necessary, as crunchide(1) is a cross-tool for "make release".
Spotted by: kris, markm
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
counterparts to bus_dmamem_alloc() and bus_dmamem_free(). This allows
the caller to specify the size of the allocation instead of it defaulting
to the max_size field of the busdma tag.
This is intended to aid in converting drivers to busdma. Lots of
hardware cannot understand scatter/gather lists, which forces the
driver to copy the i/o buffers to a single contiguous region
before sending it to the hardware. Without these new methods, this
would require a new busdma tag for each operation, or a complex
internal allocator/cache for each driver.
Allocations greater than PAGE_SIZE are rounded up to the next
PAGE_SIZE by contigmalloc(), so this is not suitable for multiple
static allocations that would be better served by a single
fixed-length subdivided allocation.
Reviewed by: jake (sparc64)
|
| |
|
|
|
|
| |
NODEVFS option has been removed and DEVFS thereby made standard.
This makes all references to MAKEDEV obsolete, and the should
be removed when convenient.
|
| |
|
|
|
|
|
|
| |
sched_runnable() et all.
- Remove some dead code in sched_clock().
- Define two macros KSEQ_SELF() and KSEQ_CPU() for getting the kseq of the
current cpu or some alternate cpu.
- Start introducing kseq_() functions, such as kseq_choose() and kseq_setup().
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
| |
initialized until after a syncookie was generated. As a result,
all connections resulting from a returned cookie would end up using
a MSS of ~512 bytes. Now larger packets will be used where possible.
MFC after: 5 days
|
| |
|
|
|
|
| |
speeds other than TTYDEF_SPEED.
Approved by: jake
|
| |\
| |
| |
| | |
which included commits to RCS files with non-trunk default branches.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
des_read_pw_string to break (and thus rather mysteriously
breaking utilities such as kinit).
= Enable the BSD /dev/crypto interface.
(These changes are being imported on the vendor branch, as they have
already been accepted and committed to the OpenSSL CVS repository.)
|
| | |
| |
| |
| |
| | |
NO_IDEA is now spelled OPENSSL_NO_IDEA. Update the bmake glue accordingly
or the IDEA references are not stripped from <openssl/evp.h>
|
| | |
| |
| |
| | |
- Add a missing newline in printf.
|
| | |
| |
| |
| |
| |
| |
| | |
can only be built with MIT Kerberos.
If we didn't define this here, then SSL-using applications would have
to define OPENSSL_NO_KRB5 themselves in order to build.
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| | |
| |
| |
| | |
will follow.
|
| | | |
|
| | |
| |
| |
| | |
Found by: FlexeLint
|
| | |
| |
| |
| | |
This is cunning doublespeak for "use vendor code".
|
| | |
| |
| |
| | |
retained as it is still used.
|
| | | |
|
| |\ \
| |/
| |
| | |
which included commits to RCS files with non-trunk default branches.
|
| | |
| |
| |
| | |
support for AES and OpenBSD's hardware crypto.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
hasn't been included since the ancient rs.internic.net address was
removed.
Offer the option of the five regional registries.
MFC after: 3 days
|
| | |
| |
| |
| | |
AF_INET radix tree lock to cover the ARP data structures.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
two basic changes (both of which should be no-ops until OpenSSL 0.9.7
is imported):
= Define OPENSSL_DES_LIBDES_COMPATIBILITY wherever we include
openssl/des.h.
= Spell `struct des_ks_struct []' using the existing
`des_key_schedule' typedef.
When OpenSSL 0.9.7 is imported, `des_key_schedule' (among other
things) will be a macro invocation instead of a typedef, and things
should `just work'.
Yes, this commit does take several files off the vendor branch.
I do not expect there to be future imports of KTH Kerberos 4.
|
| | |
| |
| |
| | |
Discussed with: bde
|
| | | |
|
| | |
| |
| |
| | |
Submitted by: Jim Geovedi <negative@magnesium.net>
|
| | |
| |
| |
| |
| | |
- Exploit multiple packets read/write for DV stream. (fwdv.c)
- Add reference to libdv in the ports collection. (fwcontrol.8)
|
| | | |
|
| | | |
|
