Aren
/
NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
255,930 Commits 606 Branches 0 Tags 3.1 GiB
Commit Graph

338 Commits

Author SHA1 Message Date
riastradh ef315f7931 Remove MKCRYPTO option. 
Originally, MKCRYPTO was introduced because the United States
classified cryptography as a munition and restricted its export.  The
export controls were substantially relaxed fifteen years ago, and are
essentially irrelevant for software with published source code.

In the intervening time, nobody bothered to remove the option after
its motivation -- the US export restriction -- was eliminated.  I'm
not aware of any other operating system that has a similar option; I
expect it is mainly out of apathy for churn that we still have it.
Today, cryptography is an essential part of modern computing -- you
can't use the internet responsibly without cryptography.

The position of the TNF board of directors is that TNF makes no
representation that MKCRYPTO=no satisfies any country's cryptography
regulations.

My personal position is that the availability of cryptography is a
basic human right; that any local laws restricting it to a privileged
few are fundamentally immoral; and that it is wrong for developers to
spend effort crippling cryptography to work around such laws.

As proposed on tech-crypto, tech-security, and tech-userlevel to no
objections:

https://mail-index.netbsd.org/tech-crypto/2017/05/06/msg000719.html
https://mail-index.netbsd.org/tech-security/2017/05/06/msg000928.html
https://mail-index.netbsd.org/tech-userlevel/2017/05/06/msg010547.html

P.S.  Reviewing all the uses of MKCRYPTO in src revealed a lot of
*bad* crypto that was conditional on it, e.g. DES in telnet...  That
should probably be removed too, but on the grounds that it is bad,
not on the grounds that it is (nominally) crypto.
 2017-05-21 15:28:36 +00:00
ozaki-r 7c181550a9 Fix build of puffs 2017-03-14 14:05:52 +00:00
christos 67f5543283 nothing is executable. 2016-11-23 17:25:11 +00:00
christos 07e020dd99 - protect against node not found SEGV 
- fix reversed logic; if we find it in the cache we return it, otherwise
  we create it.
 2016-11-23 17:22:44 +00:00
christos 4a4baf005d PR/514612: Mateusz Paszwa: When no more data, bail out (reading from empty 
files) instead of stuck looping.
 2016-10-07 21:09:57 +00:00
christos ffeb8dbf4e Define _KERNTYPES for things that need it. 2016-01-23 21:22:45 +00:00
christos 6c340bb484 Add usage function, various cosmetics; no functional change. 2015-11-12 16:51:18 +00:00
christos 017f121465 Some of the puffs mount programs don't need RUMP, re-enable them. 2015-11-08 20:00:22 +00:00
dholland 9263edc766 Use the lfs header file and lfs's mount args struct, not ufsmount.h 
and the ffs mount args struct, for mounting lfs.

(they are the same, so this doesn't matter yet, but still...)
 2015-08-02 18:11:57 +00:00
szptvlfn 20e418f0d1 s/stavfs/statvfs/ 2014-06-25 23:22:18 +00:00
joerg 5c4c6caf71 Make the abs() use check non-fatal for a bogus use in the LFS cleanerd. 2014-03-04 21:06:47 +00:00
christos 2b043c75b6 eliminate use of bsd.sys.mk from Makefiles 2014-01-16 01:15:32 +00:00
christos 1497d945c9 smbfs has moved. 2013-12-25 23:35:17 +00:00
riastradh 014f25f78d After mount_lfs_parseargs, reset getopt for lfs_cleaner_main. 2013-01-10 08:35:26 +00:00
reed 71cb89f544 fix spelling typo 2012-12-25 20:31:03 +00:00
njoly 3373228440 Fix mandoc(1) output, use right arrow special character. 2012-11-14 23:11:27 +00:00
christos 8c13db6ad0 add the headers you need 2012-11-04 22:47:21 +00:00
christos 4f048a363d include the headers you use 2012-11-04 22:46:08 +00:00
christos 24f9b938a0 add missing header 2012-11-04 22:38:19 +00:00
riz d41e703879 Disable default build of debugging info. 2012-09-06 16:39:07 +00:00
jakllsch c53184c92c Ensure psshfs_node_read() completely reads all data before return. 
Fixes file corruption in psshfs exposed with kernel MAXPHYS at 128KiB.
 2012-01-20 22:07:58 +00:00
njoly cbcd12b119 Define RUMP_DISKFS to provide getdiskinfo from rumpdev_disk library. 2011-11-14 11:28:05 +00:00
wiz 5f13296f84 Wording, from Snader_LB. 2011-09-15 11:52:09 +00:00
joerg bec77c5f43 Use __dead 2011-08-31 13:32:36 +00:00
jakllsch 3c644b8a5a Bring mount_psshfs user/host/path argument processing in line with sftp(1). 2011-08-25 19:49:05 +00:00
riastradh 772f45cfc9 Cache vattr in psshfs's setattr. 
This means within the cache window, a setattr that wouldn't change the
remote file's attributes from our current view of them will not be
relayed to the server and wait for the server to answer.  Thus, e.g., a
process with a periodic timer interrupt that calls open(2) in a loop
can make progress with much higher probability than without caching.

XXX The test case doesn't work, so it's currently disabled.  It needs
to stop the child of sshd that is handling an sftp session, not sshd
itself, and it's not obvious how to do that.

ok pooka
 2011-08-12 04:14:00 +00:00
uch 876775fb1a regen 2011-07-24 09:00:06 +00:00
uch 7ce939b3e2 v7fs rump support 2011-07-24 08:55:28 +00:00
mrg 33c01d32fc remove some always true if () checks GCC 4.5.3 picks up. 2011-06-22 04:03:23 +00:00
riastradh f4368f5168 Initialize psshfs root node's readdir waiters queue. 
Every other node's readder waiters queue is initialized in makenode,
but the root node is created specially.

ok pooka
 2011-05-19 15:07:16 +00:00
pooka 39f08af21d mirror change of -lrumpcrypto ==> -lrumpkern_crypto 2010-12-05 20:13:26 +00:00
pooka b4c2ac23fe regen 2010-11-22 07:56:54 +00:00
pooka c21dcb457e include script rcsid in generated file 
(no change to rendered output)
 2010-11-22 07:56:31 +00:00
pooka 7cd2722c7b these files are no longer autogenerated, so remove them 2010-11-22 01:09:34 +00:00
pooka a0afe062df regen 2010-11-22 01:08:23 +00:00
pooka 5e0d1e96f8 Generate different manpages for 1) disk 2) net 3) fictional file systems. 2010-11-22 01:07:51 +00:00
pooka 76f518f570 regen 2010-11-21 19:32:16 +00:00
pooka 41308443e5 * document disk.img%DISKLABEL:p% 
* tweaks
 2010-11-21 19:29:01 +00:00
pooka 080506bc5d Make error message more userfriendly in cases where server does 
not support sftp.
 2010-10-29 16:13:51 +00:00
pooka 0a80f65755 support CTLTYPE_BOOL 2010-08-06 15:26:16 +00:00
pooka c7528563f1 If compiled with RUMP_ACTION, access rump kernel instead of host 
kernel.  This is an easy way to browse & modify the sysctl tree
offered by a rump kernel instance.
 2010-08-06 15:04:13 +00:00
pooka b36b2c0f6d Remove unused LDADD lines. They need work to work, and if anyone 
ever does that work, they surely can come up with the LDADD line as
well.
 2010-07-20 14:42:03 +00:00
mrg 6479f6e5b4 ldap is configured to depend upon MKCRYPTO no, so force MKLAP=no if 
MKCRYPTO=no.
don't build pkg_install, libcrypto tests or rump_smbfs if MKCRYPTO=no.
mark librumpcrypto, rump_smb, pkg_*

fix set lists as appropriate.
 2010-07-11 06:16:54 +00:00
pooka afdc25dbdf When using the top secret PUFFS_COMFD model, write out size of the 
puffs kernel args before the contents.  This allows parties which
have no clue about the contents to proxy the protocol easily.
 2010-07-06 13:27:16 +00:00
pooka bdc0f19ba4 link putter now that it's a separate component 2010-06-30 16:22:49 +00:00
dholland c91651efd0 Requires sys/param.h. 2010-05-30 04:32:09 +00:00
pooka cf3a71d4a7 Add rump_au-naturel, which instead of mounting a file system inside 
the rump kernel just attaches to / in said rump kernel instance.
This is mostly useful in case wanting to see what nodes components
create (see Makefile).

not built without manual intervention
 2010-04-29 22:42:48 +00:00
wiz d692f84d06 Sort options in SYNOPSIS (flags without arguments first). 2010-04-11 21:34:18 +00:00
pooka 04c1597880 Add raw mode, which skips ASCII'ification and can be used if reading 
structures from the kernel into debug program memory is desired.
 2010-04-11 15:08:17 +00:00
pooka c8360f5cc9 Instead of totally giving up, dump CTLTYPE_STRUCT as hex, much 
like sysctl -x (but not fancy like -dosequis).
 2010-04-11 08:30:17 +00:00