summaryrefslogtreecommitdiffstats
path: root/sys/conf/files
Commit message (Collapse)AuthorAgeFilesLines
...
* Add Geom Based Disk Encryption to the tree.phk2002-10-191-0/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is an encryption module designed for to secure denial of access to the contents of "cold disks" with or without destruction activation. Major features: * Based on AES, MD5 and ARC4 algorithms. * Four cryptographic barriers: 1) Pass-phrase encrypts the master key. 2) Pass-phrase + Lock data locates master key. 3) 128 bit key derived from 2048 bit master key protects sector key. 3) 128 bit random single-use sector keys protect data payload. * Up to four different changeable pass-phrases. * Blackening feature for provable destruction of master key material. * Isotropic disk contents offers no information about sector contents. * Configurable destination sector range allows steganographic deployment. This commit adds the kernel part, separate commits will follow for the userland utility and documentation. This software was developed for the FreeBSD Project by Poul-Henning Kamp and NAI Labs, the Security Research Division of Network Associates, Inc. under DARPA/SPAWAR contract N66001-01-C-8035 ("CBOSS"), as part of the DARPA CHATS research program. Many thanks to Robert Watson, CBOSS Principal Investigator for making this possible. Sponsored by: DARPA & NAI Labs.
* (1) added LSI Logic copyright, and legal line 3 in license, and stringemoore2002-10-181-0/+1
| | | | | | | | | | | | | | | | | | | | | changes for "LSILogic" (2) enabled non-disk support through CAM interface (3) HA_INQ (a) enabled tagged queuing (b) disable reset during driver loading (b) renamed BSDi string to LSI (4) disabled detecting disk devices during SCSI INQUIRY (5) changed dcdb single element sglist to send one entire buffer chunk (6) nsgelem not set in sglist (7) ap_data_transfer_length not set for dcdb (8) changed "struct thread" to "d_thread_t" for compatibliity { xxx_open, xxx_close, xxx_ioctl } (9) miscellaneous compatiblity fixes (10) bug fix for 0x0409/0x1000 card (11) added compiling amr_cam.c in sys/conf/files (12) added compiling amr_cam.c in sys/modules/amr/Makefile Reviewed by:ps MFC after:1 week 1 week
* Tie new "Fast IPsec" code into the build. This involves the usualsam2002-10-161-0/+11
| | | | | | | | | | | | configuration stuff as well as conditional code in the IPv4 and IPv6 areas. Everything is conditional on FAST_IPSEC which is mutually exclusive with IPSEC (KAME IPsec implmentation). As noted previously, don't use FAST_IPSEC with INET6 at the moment. Reviewed by: KAME, rwatson Approved by: silence Supported by: Vernier Networks
* Allow firewire, sbp (SCSI over firewire), and fwe (non-standard rawjhb2002-10-141-0/+6
| | | | | ethernet over firewire) to be statically compiled into the kernel as devices.
* Add in the GEOM control module.phk2002-10-131-0/+1
| | | | Sponsored by: DARPA & NAI Labs.
* Connect trm(4) to the build.cognet2002-10-131-0/+1
| | | | | Reviewed by: mux (mentor) Approved by: mux (mentor)
* - Create a new scheduler api that is defined in sys/sched.hjeff2002-10-121-0/+1
| | | | | | | | | | - Begin moving scheduler specific functionality into sched_4bsd.c - Replace direct manipulation of scheduler data with hooks provided by the new api. - Remove KSE specific state modifications and single runq assumptions from kern_switch.c Reviewed by: -arch
* Hook up strsep(3) to libkern following a repo-copy by Peter. This willrwatson2002-10-101-0/+1
| | | | | | allow us to avoid nasty by-hand string parsing stuff in a number of places in the kernel, reducing the risk of unexpected consequences for kernel correctness.
* Import the libc fnmatch() into the kernel. This will be used by,dd2002-10-081-0/+1
| | | | | | | | | | | among other things, the DEVFS rule subsystem to match nodes against a path pattern supplied by the user. fnmatch.c was repo-copied from src/lib/libc/gen/fnmatch.c, and the only changes to it are those necessary to make it compile in the kernel. The relevant parts of fnmatch.h were imported into libkern.h. Approved by: -arch
* Add device driver for Belkin F5U103 and compatible USB-to-serial adapters.kan2002-10-081-0/+1
| | | | | Reviewed by: n_hibma Approved by: obrien
* NB: This commit does *NOT* make GEOM the default in FreeBSDphk2002-10-051-17/+17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | NB: But it will enable it in all kernels not having options "NO_GEOM" Put the GEOM related options into the intended order. Add "options NO_GEOM" to all kernel configs apart from NOTES. In some order of controlled fashion, the NO_GEOM options will be removed, architecture by architecture in the coming days. There are currently three known issues which may force people to need the NO_GEOM option: boot0cfg/fdisk: Tries to update the MBR while it is being used to control slices. GEOM does not allow this as a direct operation. SCSI floppy drives: Appearantly the scsi-da driver return "EBUSY" if no media is inserted. This is wrong, it should return ENXIO. PC98: It is unclear if GEOM correctly recognizes all variants of PC98 disklabels. (Help Wanted! I have neither docs nor HW) These issues are all being worked. Sponsored by: DARPA & NAI Labs.
* Add code for ACPI PCI link object manipulation.iwasaki2002-10-051-0/+1
| | | | | | | | | This allocate the best IRQ to boot-disable devices (have IRQ 0). Allocated IRQ will be used for PCI interrupt routing when ACPI is enabled. Note that verbose messaging enabled for the time being so that people can easily notice the strange behavior if it happened.
* hookup new crypto support to the config/build processsam2002-10-041-0/+20
|
* newbus & bus_space the mcd(4) driver.mdodd2002-10-041-0/+2
|
* Back our kernel support for reliable signal queues.jmallett2002-10-011-1/+0
| | | | Requested by: rwatson, phk, and many others
* First half of implementation of ksiginfo, signal queues, and such. Thisjmallett2002-09-301-0/+1
| | | | | | | | | | | | | | | | | | | | | | gets signals operating based on a TailQ, and is good enough to run X11, GNOME, and do job control. There are some intricate parts which could be more refined to match the sigset_t versions, but those require further evaluation of directions in which our signal system can expand and contract to fit our needs. After this has been in the tree for a while, I will make in kernel API changes, most notably to trapsignal(9) and sendsig(9), to use ksiginfo more robustly, such that we can actually pass information with our (queued) signals to the userland. That will also result in using a struct ksiginfo pointer, rather than a signal number, in a lot of kern_sig.c, to refer to an individual pending signal queue member, but right now there is no defined behaviour for such. CODAFS is unfinished in this regard because the logic is unclear in some places. Sponsored by: New Gold Technology Reviewed by: bde, tjr, jake [an older version, logic similar]
* Do away with AAC_COMPAT_LINUX option entirely. The functionality willscottl2002-09-251-1/+1
| | | | | | | automatically be enabled if the kernel is compiled with COMPAT_LINUX. Submitted by: jhb MFC after: 3 days
* The AAC_COMPAT_LINUX option was really annoying, since it made thescottl2002-09-251-0/+1
| | | | | | | | | | | | | | | | aac driver dependent on the linux emulation module. This was especially bad for the release engineers who tried to move the aac driver from the kernel onto the drivers floppy. The linux compat bits for this driver are now in their own driver, aac_linux. It can be loaded as a module or compiled into the kernel. For the latter case, the AAC_COMPAT_LINUX option is needed, along with the COMPAT_LINUX option. I've tested this in every configuration I can think of. This is an MFC candidate for 4.7. Idea from: rwatson MFC after: 3 days
* - Hook ALQ up to the build.jeff2002-09-221-0/+1
|
* Moved netisr code from kern/kern_intr.c to net/netisr.c as threatened in ajake2002-09-221-0/+1
| | | | comment.
* Moved nfs_diskless setup code from autoconf.c to nfsclient/nfs_diskless.cjake2002-09-221-0/+1
| | | | | | | so that it is MI. Allow nfs_mountroot to return an error if the nfs_diskless struct is not valid, rather than panicing later on. Call nfs_setup_diskless() from nfs_mountroot if NFS_ROOT is defined, like bootpc_init(). Removed legacy root mount support for sparc64, and enabled NFS_ROOT by default.
* Cleanup of amdpm(4).nsouch2002-09-211-0/+1
| | | | | | Add of NVIDIA nForce (nfpm) smbus support. Obtained from: Thomas D. Dean <tomdean@speakeasy.org>
* Regen for added syscalls.alfred2002-09-191-0/+1
|
* Make netatm/spans compile in the kernel without depending on userlandpeter2002-09-171-2/+2
| | | | include files to provide functions for kernel source (spans_kxdr.c)
* geom_aes.c requires rijndael cryptogrehan2002-09-161-0/+2
| | | | Approved by: phk, benno
* Add a new gre(4) driver, which could be used to create GRE (RFC1701)sobomax2002-09-061-0/+2
| | | | | | and MOBILE (RFC2004) IP tunnels. Obrained from: NetBSD
* Hook up libkern/strlcpy.c and libkern/strlcat.c after repocopy.brooks2002-09-021-0/+2
| | | | | Obtained from: OpenBSD Discussed on: -arch
* Continue de-counting i4b. Devices i4bctl, i4bcapi, iavc, i4bq921,brooks2002-09-021-9/+9
| | | | | | | | i4bq931, i4b, isic, iwic, ifpi, ifpi2, ifpnp, ihfc, and itjc are no longer count devices. Also remove a few other instances of N<DEVICE> being used to control compilation of whole files. Reviewed by: hm
* 'aicasm optional ahc ahd' means 'build aicasm only if BOTH ahc and ahdpeter2002-08-311-1/+6
| | | | are specified'. Ie: it is a logical and, not a logical or.
* Split the puc driver in pci specific and generic parts.phk2002-08-311-1/+3
| | | | | | | Add a pccard frontend for it as well. The PCcard stuff does not work yet because there is still some PCImagic left in puc.c
* Add support for ahd/ahc register pretty printing in diagnostics.gibbs2002-08-311-9/+15
| | | | | | | | | This feature can be disabled via the AHD/AHC_REG_PRETTY_PRINT kernel option. The ahc driver now uses the same debug options mechanism as ahd: AHC_DEBUG - Compile in debugging code AHC_DEBUG_OPTS - String of debug options as listed in aic7xxx.h
* Hook up the new ACPI PCI bus and catch up to ACPI PCI bridge driver changes.jhb2002-08-261-0/+3
|
* New L2TP netgraph node type.archie2002-08-201-0/+1
| | | | Obtained from: Packet Design
* Support for VIA VT8233 audio controller.orion2002-08-171-0/+1
|
* Remove usage of cam_extend.c, replace with dev->si_drv1njl2002-08-151-1/+0
| | | | | PR: kern/39809 Approved by: gibbs
* pccbb->cbbimp2002-08-151-2/+2
|
* Add support for the LSI-Logic Fusion/MP architecture.mjacob2002-08-111-0/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is an architecture that present a thing message passing interface to the OS. You can query as to how many ports and what kind are attached and enable them and so on. A less grand view is that this is just another way to package SCSI (SPI or FC) and FC-IP into a one-driver interface set. This driver support the following hardware: LSI FC909: Single channel, 1Gbps, Fibre Channel (FC-SCSI only) LSI FC929: Dual Channel, 1-2Gbps, Fibre Channel (FC-SCSI only) LSI 53c1020: Single Channel, Ultra4 (320M) (Untested) LSI 53c1030: Dual Channel, Ultra4 (320M) Currently it's in fair shape, but expect a lot of changes over the next few weeks as it stabilizes. Credits: The driver is mostly from some folks from Jeff Roberson's company- I've been slowly migrating it to broader support that I it came to me as. The hardware used in developing support came from: FC909: LSI-Logic, Advansys (now Connetix) FC929: LSI-Logic 53c1030: Antares Microsystems (they make a very fine board!) MFC after: 3 weeks
* Add the uftdi ucom driver which supports the following adapters:joe2002-08-111-0/+1
| | | | | | | | | Inland UAS111 QVS USC-1000 HP USB-Serial adapter shipped with some HP laptops Submitted by: takawata MFC After: 7 days
* Add the ability to use ATAPI devices via CAM.sos2002-08-091-0/+2
| | | | | | | | | | The CAM<>ATAPI layer was submitted by "Thomas Quinot <thomas@cuivre.fr.eu.org>" changes form the version on the net by me (formatting, ability to be used alone without the ATAPI native device driver, proper speed reporting...) See /sys/conf/NOTES for usage. Submitted by: Thomas Quinot <thomas@cuivre.fr.eu.org>
* Make ppp(4) devices clonable and unloadable.brooks2002-08-091-1/+1
|
* se -> sab.jake2002-08-041-0/+1
|
* Remove this abortive attempt.jake2002-08-041-1/+0
|
* Demonstrate that MAC modules can also be linked statically asrwatson2002-08-011-0/+1
| | | | | | | | well as loaded as modules by hooking up mac_none if 'options MAC_NONE' is defined. Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* Introduce support for Mandatory Access Control and extensiblerwatson2002-08-011-0/+1
| | | | | | | | | | | kernel access control. Modify procfs so that (when mounted multilabel) it exports process MAC labels as the vnode labels of procfs vnodes associated with processes. Approved by: des Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* Fix path to other files.<arch> files.imp2002-07-301-2/+2
| | | | | | Fix disordering of libkern/crc32.c entry. MFC after: 1 day
* Resolve conflicts arising from the ACPI CA 20020725 import.iwasaki2002-07-301-2/+12
|
* Commit a version of the uvisor driver for connecting Handspringjoe2002-07-301-0/+1
| | | | | | Visors via USB. Submitted by: Chia-liang Kao <clkao@clkao.org>
* Hook up kern_mac.c to the build.rwatson2002-07-301-0/+1
| | | | | Obtained from: TrustedBSD Project Sponsored by: DARPA, NAI Labs
* Move sio's ebus attachment to the MI files section so it is compiled injhb2002-07-241-0/+1
| | | | for any machines that use ebus.
* Move sio_isa.c back to MD files files due to PC98 brain damage.jhb2002-07-241-1/+0
|
OpenPOWER on IntegriCloud