summaryrefslogtreecommitdiffstats
path: root/usr.sbin
Commit message (Collapse)AuthorAgeFilesLines
* MFC r308133, r308134: Fix wrong copy/paste in error message.mav2016-11-141-2/+2
|
* MFC: r307891rmacklem2016-11-081-2/+2
| | | | | | Fix the man page to reflect the change done by r307890 to mountd.c so that the "-n" option uses the sysctl for the new NFS server. This is a content change.
* MFC: r307890rmacklem2016-11-081-1/+1
| | | | | | | | | | | | mountd(8) was erroneously setting the sysctl for the old NFS server when the new/default NFS server was running, for the "-n" option. This patch fixes the problem for head and stable/11. For stable/10 the patch will need to be modified when MFC'd, since the stable/10 mountd.c handles both old and new NFS servers. Since the new NFS server uses vfs.nfsd.nfs_privport == 0 by default, there wouldn't have been many users affected by the code not setting it to 0 when the "-n" option was specified.
* MFC r307800, r307801cy2016-11-053-5/+5
| | | | | | | | | | | | | | | | | | r307800: Sources from the "current" build tree and generated sources in the object tree should be used instead of sources and headers from the already installed source tree on the build host. This was noticed while addressing issues in the upcoming amd update. r307801: Align whitespace. r307801 is related to r307800 however it was a separate commit to HEAD in order to maintain a separation between the functional change and a correction of style.
* MFC r304570:trasz2016-11-032-4/+11
| | | | | | Add the "-n" flag to cron(8), to prevent it from daemonizing. This makes it possible to use it with external supervisors. The "-n" flag name is compatible with Linux, NetBSD, and OpenBSD.
* MFC r307374: Add LU option to control reported provisioning type.mav2016-10-291-1/+7
|
* MFC r307350: Add LUN options to limit UNMAP and WRITE SAME sizes.mav2016-10-291-1/+8
| | | | | | | CTL itself has no limits on on UNMAP and WRITE SAME sizes. But depending on backends large requests may take too much time. To avoid that new configuration options allow to hint initiator maximal sizes it should not exceed.
* MFC r307731: Add names for some DASP devices.mav2016-10-281-0/+3
|
* Merge r307937:glebius2016-10-251-4/+4
| | | | | | | | Fix unchecked array reference in the VGA device emulation code. Submitted by: Ilja Van Sprundel <ivansprundel ioactive.com> Patch by: tychon Security: SA-16:32
* accept4 actually expect SOCK_NONBLOCK and not O_NONBLOCKbapt2016-10-251-1/+1
| | | | | Reported by: jhb Pointyhat to: bapt
* MFC r305707:bapt2016-10-221-4/+1
| | | | Directly set the O_NONBLOCK flags via open(2)
* MFC r306554:bapt2016-10-221-4/+2
| | | | Use accept4 with O_NONBLOCK rather than accept + fcntl
* MFC r303784, r303785, r305620:bapt2016-10-222-8/+12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | r303784: etcupdate: directly use diff3(1) instead of merge(1) During the last attempt to rmeove GNU rcs, 2 blockers were spotted: We need an ident(1) and etcupdate(8) uses merge(1). Now nothing should prevent to remove rcs from base Reviewed by: jhb Differential Revision: https://reviews.freebsd.org/D7401 r303785: always install etcupdate Now that etcupdate does not depend on rcs anymore there is no need to conditionnally install it r305620: (by vangyzen ) etcupdate: preserve the metadata of the destination file When using diff3 to perform a three-way merge, etcupdate lost the destination file's metadata. The metadata from the temporary file were used instead. This was unpleasant for rc.d scripts, which require execute permission. Use "cat >" to overwrite the destination file's contents while preserving its metadata. Reviewed by: bapt Sponsored by: Dell Technologies Differential Revision: https://reviews.freebsd.org/D7817
* MFH (r305381, r306457): upgrade to unbound 1.5.10 via 1.5.9des2016-10-213-6/+7
|
* MFC r303541, r303542, r303543, r303545, r303546, r303547, r304225, r304226, ↵araujo2016-10-218-12/+12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | r304605, r304676, r305212, r305863: r303541: Use nitems() from sys/param.h. Sponsored by: gandi.net (BSD Day Taiwan) MFC after: 2 weeks. r303542: Use nitems() from sys/param.h. MFC after: 2 weeks. Sponsored by: gandi.net (BSD Day Taiwan) r303543: Use nitems() from sys/param.h. MFC after: 2 weeks. Sponsored by: gandi.net (BSD Day Taiwan) r303545: Use nitems() from sys/param.h. MFC after: 2 weeks. Sponsored by: gandi.net (BSD Day Taiwan) r303546: Use nitems() from sys/param.h. MFC after: 2 weeks. Sponsored by: gandi.net (BSD Day Taiwan) r303547: Use nitems() from sys/param.h. MFC after: 2 weeks. Sponsored by: gandi.net (BSD Day Taiwan) r304225: Use nitems() from sys/param.h. MFC after: 2 weeks. r304226: Use nitems() from sys/param.h. MFC after: 2 weeks. r304605: Fix calloc(3) argument order. Reviewed by: trasz MFC after: 4 weeks. Differential Revision: https://reviews.freebsd.org/D7532 r304676: Fix calloc(3) argument order. MFC after: 4 weeks. r305212: - Invert calloc(3) argument order. MFC after: 4 weeks r305863: Invert calloc(3) argument order. Reviewed by: ed. MFC after: 4 weeks. Differential Revision: https://reviews.freebsd.org/D7902
* MFC r306571:markj2016-10-191-1/+1
| | | | rtsold: Log messages about unexpected RAs at LOG_DEBUG.
* MFC r307384:markj2016-10-191-1/+0
| | | | Remove an unused field from struct pmcstat_image.
* MFC r306356:gonzo2016-10-181-0/+1
| | | | | | | | Add Elantech trackpad to the list of known models PR: 205690 Submitted by: Vladimir Kondratyev <wulf@cicgroup.ru> MFC after: 1 week
* MFC r305812:pfg2016-10-094-5/+5
| | | | | | | | | fifolog(1): invert order of calloc(3) arguments. The second argument to calloc(3) should be the size, make it so. While here be a little bit more cautious in fifolog_reader_open() to protect in the unlikely event of an overflowed allocation.
* MFC r306528: Fix `sesutil fault` operation.mav2016-10-071-3/+9
| | | | | Fault and ident bits are located in different control bytes, so previous code was just doing nothing, writing into reserved bit.
* MFC 305034: Implement 'devctl clear driver' to undo a previous 'set driver'.jhb2016-09-302-2/+57
| | | | | | | | | | | Add a new 'clear driver' command for devctl along with the accompanying ioctl and devctl_clear_driver() library routine to reset a device to use a wildcard devclass instead of a fixed devclass. This can be used to undo a previous 'set driver' command. After the device's name has been reset to permit wildcard names, it is reprobed so that it can attach to newly-available (to it) device drivers. Sponsored by: Chelsio Communications
* MFC r306417: portsnap: only move expected snapshot contents from snap/ to files/emaste2016-09-281-0/+7
| | | | | | | | | | | | Previously it was possible to smuggle in addional files that would be used by later portsnap runs. Now we only move those files expected to be in the snapshot into files/ and require that there are no unexpected files. This was used by portsnap attacks 2, 3, and 4 in the "non-cryptanalytic attacks against FreeBSD update components" anonymous gist. Approved by: re (gjb)
* MFC r302778asomers2016-09-127-15/+177
| | | | | | | | | | | | | | | | | | | | | pw should sanitize the argument of -w. Otherwise, it will silently disable the login for the selected account if the argument is unrecognizable. usr.sbin/pw/pw.h usr.sbin/pw/pw_conf.c usr.sbin/pw/pw_user.c Use separate rules to validate boolean parameters and passwd parameters. Error out if a password parameter cannot be parsed. usr.sbin/pw/tests/Makefile usr.sbin/pw/tests/crypt.c usr.sbin/pw/tests/pw_useradd.sh usr.sbin/pw/tests/pw_usermod.sh Add tests for the validation. Also, enhance existing password-related tests to actually validate that the correct hash is written to master.passwd.
* MFC r305061grehan2016-09-121-1/+1
| | | | Invert calloc(3) argument order
* MFC r303352grehan2016-09-121-15/+33
| | | | | | | | | | | | | | | - Change the fbuf "vga" parameter to "vga=on|io|off". "io" is the default, and allows VGA i/o registers to be accessed. This is required by Win7/2k8 graphics guests that use a combination of BIOS int10 and UEFI. "off" disables all VGA i/o and mem accesses. "on" is not yet hooked up, but will enable full VGA rendering. OpenBSD/UEFI >= 5.9 graphics guests can be booted using "vga=off" - Allow "rfb" to be used instead of "tcp" for the fbuf VNC description. "tcp" will be removed at a future point and is kept as an alias.
* MFC r302972,r303349grehan2016-09-121-1/+12
| | | | | | | | | r302972 Disallow interrupt requests on disabled endpoints. r303349 Catch another case where an XHCI interrupt was being injected without state being set up.
* MFC r302546grehan2016-09-121-2/+8
| | | | | Implement right shift/ctl, and convert the VNC/xorg scancode of 0xff03 into right-alt.
* MFC r305469:delphij2016-09-091-4/+4
| | | | | | | | | | | Ensure that we always open only files that is named by explicitly using shell redirections instead of having gzip(1) to decide what file to open. Issue reported in the "non-cryptanalytic attacks against freebsd update components" anonymous gist. Reviewed by: allanjude, emaste
* MFC r303893, r303894:pfg2016-09-081-2/+2
| | | | | | | | misc replacements of comma with semicolon when pertinent. Uses of commas instead of a semicolons can easily go undetected. The comma can serve as a statement separator but this shouldn't be abused when statements are meant to be standalone.
* MFC r305269: cron: use existing maximum username constant MAXLOGNAMEemaste2016-09-052-2/+2
| | | | | | | | | | Previously cron had its own maximum username length limit, which was smaller than the system's MAXLOGNAME. This could lead to crontab -u updating the wrong user's crontab (if the name was truncated, and matched another user). PR: 212305 Reported by: Andrii Kuzik
* MFC r305023:dim2016-09-022-3/+3
| | | | | Avoid undefined behavior when calling va_start() in bnep_send_control(), by making the 'type' parameter a plain unsigned.
* MFC r303877:skreuzer2016-08-271-2/+3
| | | | | | Write kern.randompid to /etc/sysctl.conf Approved by: allanjude
* MFC r304721:cy2016-08-271-1/+1
| | | | | | | Fixup man page formatting. Submitted by: Steve Kargl <sgk@troutmask.apl.washington.edu> Discussed with: bjk@
* MFH (r304142): ensure stripe size is non-zero multiple of 4096des2016-08-191-6/+20
| | | | PR: 211361
* MFC r302504, r302666, r302668, r302932, r302933:mav2016-08-183-1/+2378
| | | | | | | | | | Add emulation for Intel e1000 (e82545) network adapter. The code was successfully tested with FreeBSD, Linux, Solaris and Windows guests. This interface is predictably slower (about 2x) then virtio-net, but it is very helpful for guests not supporting virtio-net by default. Thanks to Jeremiah Lott and Peter Grehan for doing original heavy lifting.
* MFC r302460: Add emulation for multiple (up to 16) MSI vectors for AHCI.mav2016-08-182-41/+99
| | | | | | | It was useless before, but may improve performance now if multiple devices are configured and guest supports this feature. Sponsored by: iXsystems, Inc.
* MFC r302459: Allow AHCI controller to support up to 32 arbitrary devices.mav2016-08-182-58/+89
| | | | | | | | While old syntax is still supported, new syntax looks like this: -s 3,ahci,hd:/dev/zvol/XXX,hd:/dev/zvol/YYY,cd:/storage/ZZZ.iso Sponsored by: iXsystems, Inc.
* MFC r303788vangyzen2016-08-081-1/+4
| | | | | | | | | | | | | | | | | | | | | Fix some logic in PCIe HotPlug; display EI status The interpretation of the Electromechanical Interlock Status was inverted, so we disengaged the EI if a card was inserted. Fix it to engage the EI if a card is inserted. When displaying the slot capabilites/status with pciconf: - We inverted the sense of the Power Controller Control bit, saying the power was off when it was really on (according to this bit). Fix that. - Display the status of the Electromechanical Interlock: EI(engaged) EI(disengaged) Approved by: re (gjb) Sponsored by: Dell Inc.
* MFC r303631:dim2016-08-041-1/+1
| | | | | | | | | | | | | | | | | | | | | | | Fix non-functional bsdinstall services dialog. The most recent version of bsdinstall does not seem to respect any of the checkboxes in the "Choose the services you would like to be started at boot" dialog. None of the chosen services end up in the rc.conf file that is installed onto the target system. This is caused by the bsdinstall/scripts/hardening script, which implements the new hardening options dialog. The script starts by overwriting the previously written rc.conf.services file: echo -n > $BSDINSTALL_TMPETC/rc.conf.services which is obviously incorrect. It should clear out rc.conf.hardening instead. Approved by: re (kib) Reviewed by: allanjude PR: 211506 Differential Revision: https://reviews.freebsd.org/D7387
* MFC r303410,r303419:bdrewery2016-08-022-5/+2
| | | | | | | | | r303410: Reconnect pmcstudy, lost in r291021 r303419: Fix non-amd64 build from r292043 after reconnecting in r303410. Approved by: re (kib)
* MFC r302897:robak2016-07-284-1/+89
| | | | | | | | | | | | | | | Add new System Hardening menu and options to bsdinstall. This patch add new 'hardening' file responsible for new bsdinstall 'System Hardening' menu allowing users to set some sane and carefully picked system security options (like random process id's, hiding other users/groups processes and others). All options are OFF by default in this patch due to POLA principle with intention to turn change some of them to ON by default in future. Reviewed by: adrian, allanjude, bdrewery, nwhitehorn Approved by: re@, adrian, allanjude
* MFC 303109: Update crashinfo to work with newer gdb from ports.jhb2016-07-271-8/+27
| | | | | | | | | | | If gdb from ports is installed, use it instead of the base system gdb to extract variables from a kernel. Note that base gdb and ports gdb do not support the same options for invoking a single command in batch mode, so a wrapper shell function is used. In addition, prefer kgdb from ports when generating a backtrace if present. PR: 193335 Approved by: re (gjb)
* MFC: r302790, r302795allanjude2016-07-261-0/+38
| | | | | | | | Add new menu to bsdinstall to allow user to set date and time after selecting timezone. The 'skip' button is the default selection. Submitted by: des Approved by: re (gjb)
* MFC: r302940allanjude2016-07-261-1/+2
| | | | | | | | Fix error in bsdinstall triggered when doing a GELI encrypted install to an MBR formatted disk Approved by: re (gjb) Sponsored by: ScaleEngine Inc.
* MFC: r302941allanjude2016-07-261-0/+9
| | | | | | | | At the start of the installation process, all ZFS pools are exported and all GELI instances are detached, to allow a restarted install to proceed. PR: 210814 Approved by: re (gjb)
* MFC r303091asomers2016-07-251-0/+1
| | | | | | | Fix camdd for host-aware and host-managed SMR disks. This should've gone in as part of r300207 Approved by: re (gjb)
* MFC r303199:np2016-07-251-1/+1
| | | | | | | | | | | | ctld(8): Fix MaxBurstLength negotiation. The target must reply with the selected value of MaxBurstSize instead of just echoing back the initiator's offered value. Reviewed by: mav@ Approved by: re@ (gjb@) Sponsored by: Chelsio Communications Differential Revision: https://reviews.freebsd.org/D7278
* MFC r303132:trasz2016-07-242-2/+96
| | | | | | | | | Add documentation for "ctld -u", the UCL configuration file format. Submitted by: jceel@ Approved by: re (kib) MFC after: 1 month Differential Revision: https://reviews.freebsd.org/D7222
* iDo not try to delete the home of the user if is is not a directory for examplebapt2016-07-242-0/+12
| | | | | | | | | "/dev/null" PR: 211195 Submitted by: rday <ryan@ryanday.net> Reported by: eniorm <eniorm@gmail.com> Approved by: re (kib)
* MFC r302957: Fix NCQ TRIM emulation.mav2016-07-211-2/+10
| | | | | | When this code was written, there was no guests using it to test. Approved by: re (kib)
OpenPOWER on IntegriCloud