Aren/NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
262,526 Commits 606 Branches 0 Tags 3.1 GiB
d25cdfbd09
Commit Graph

338 Commits

Author SHA1 Message Date
riastradh
ef315f7931 Remove MKCRYPTO option. 
Originally, MKCRYPTO was introduced because the United States
classified cryptography as a munition and restricted its export.  The
export controls were substantially relaxed fifteen years ago, and are
essentially irrelevant for software with published source code.

In the intervening time, nobody bothered to remove the option after
its motivation -- the US export restriction -- was eliminated.  I'm
not aware of any other operating system that has a similar option; I
expect it is mainly out of apathy for churn that we still have it.
Today, cryptography is an essential part of modern computing -- you
can't use the internet responsibly without cryptography.

The position of the TNF board of directors is that TNF makes no
representation that MKCRYPTO=no satisfies any country's cryptography
regulations.

My personal position is that the availability of cryptography is a
basic human right; that any local laws restricting it to a privileged
few are fundamentally immoral; and that it is wrong for developers to
spend effort crippling cryptography to work around such laws.

As proposed on tech-crypto, tech-security, and tech-userlevel to no
objections:

https://mail-index.netbsd.org/tech-crypto/2017/05/06/msg000719.html
https://mail-index.netbsd.org/tech-security/2017/05/06/msg000928.html
https://mail-index.netbsd.org/tech-userlevel/2017/05/06/msg010547.html

P.S.  Reviewing all the uses of MKCRYPTO in src revealed a lot of
*bad* crypto that was conditional on it, e.g. DES in telnet...  That
should probably be removed too, but on the grounds that it is bad,
not on the grounds that it is (nominally) crypto.
 2017-05-21 15:28:36 +00:00
ozaki-r
7c181550a9 Fix build of puffs 2017-03-14 14:05:52 +00:00
christos
67f5543283 nothing is executable. 2016-11-23 17:25:11 +00:00
christos
07e020dd99 - protect against node not found SEGV 
- fix reversed logic; if we find it in the cache we return it, otherwise
  we create it.
 2016-11-23 17:22:44 +00:00
christos
4a4baf005d PR/514612: Mateusz Paszwa: When no more data, bail out (reading from empty 
files) instead of stuck looping.
 2016-10-07 21:09:57 +00:00
christos
ffeb8dbf4e Define _KERNTYPES for things that need it. 2016-01-23 21:22:45 +00:00
christos
6c340bb484 Add usage function, various cosmetics; no functional change. 2015-11-12 16:51:18 +00:00
christos
017f121465 Some of the puffs mount programs don't need RUMP, re-enable them. 2015-11-08 20:00:22 +00:00
dholland
9263edc766 Use the lfs header file and lfs's mount args struct, not ufsmount.h 
and the ffs mount args struct, for mounting lfs.

(they are the same, so this doesn't matter yet, but still...)
 2015-08-02 18:11:57 +00:00
szptvlfn
20e418f0d1 s/stavfs/statvfs/ 2014-06-25 23:22:18 +00:00
joerg
5c4c6caf71 Make the abs() use check non-fatal for a bogus use in the LFS cleanerd. 2014-03-04 21:06:47 +00:00
christos
2b043c75b6 eliminate use of bsd.sys.mk from Makefiles 2014-01-16 01:15:32 +00:00
christos
1497d945c9 smbfs has moved. 2013-12-25 23:35:17 +00:00
riastradh
014f25f78d After mount_lfs_parseargs, reset getopt for lfs_cleaner_main. 2013-01-10 08:35:26 +00:00
reed
71cb89f544 fix spelling typo 2012-12-25 20:31:03 +00:00
njoly
3373228440 Fix mandoc(1) output, use right arrow special character. 2012-11-14 23:11:27 +00:00
christos
8c13db6ad0 add the headers you need 2012-11-04 22:47:21 +00:00
christos
4f048a363d include the headers you use 2012-11-04 22:46:08 +00:00
christos
24f9b938a0 add missing header 2012-11-04 22:38:19 +00:00
riz
d41e703879 Disable default build of debugging info. 2012-09-06 16:39:07 +00:00
jakllsch
c53184c92c Ensure psshfs_node_read() completely reads all data before return. 
Fixes file corruption in psshfs exposed with kernel MAXPHYS at 128KiB.
 2012-01-20 22:07:58 +00:00
njoly
cbcd12b119 Define RUMP_DISKFS to provide getdiskinfo from rumpdev_disk library. 2011-11-14 11:28:05 +00:00
wiz
5f13296f84 Wording, from Snader_LB. 2011-09-15 11:52:09 +00:00
joerg
bec77c5f43 Use __dead 2011-08-31 13:32:36 +00:00
jakllsch
3c644b8a5a Bring mount_psshfs user/host/path argument processing in line with sftp(1). 2011-08-25 19:49:05 +00:00
riastradh
772f45cfc9 Cache vattr in psshfs's setattr. 
This means within the cache window, a setattr that wouldn't change the
remote file's attributes from our current view of them will not be
relayed to the server and wait for the server to answer.  Thus, e.g., a
process with a periodic timer interrupt that calls open(2) in a loop
can make progress with much higher probability than without caching.

XXX The test case doesn't work, so it's currently disabled.  It needs
to stop the child of sshd that is handling an sftp session, not sshd
itself, and it's not obvious how to do that.

ok pooka
 2011-08-12 04:14:00 +00:00
uch
876775fb1a regen 2011-07-24 09:00:06 +00:00
uch
7ce939b3e2 v7fs rump support 2011-07-24 08:55:28 +00:00
mrg
33c01d32fc remove some always true if () checks GCC 4.5.3 picks up. 2011-06-22 04:03:23 +00:00
riastradh
f4368f5168 Initialize psshfs root node's readdir waiters queue. 
Every other node's readder waiters queue is initialized in makenode,
but the root node is created specially.

ok pooka
 2011-05-19 15:07:16 +00:00
pooka
39f08af21d mirror change of -lrumpcrypto ==> -lrumpkern_crypto 2010-12-05 20:13:26 +00:00
pooka
b4c2ac23fe regen 2010-11-22 07:56:54 +00:00
pooka
c21dcb457e include script rcsid in generated file 
(no change to rendered output)
 2010-11-22 07:56:31 +00:00
pooka
7cd2722c7b these files are no longer autogenerated, so remove them 2010-11-22 01:09:34 +00:00
pooka
a0afe062df regen 2010-11-22 01:08:23 +00:00
pooka
5e0d1e96f8 Generate different manpages for 1) disk 2) net 3) fictional file systems. 2010-11-22 01:07:51 +00:00
pooka
76f518f570 regen 2010-11-21 19:32:16 +00:00
pooka
41308443e5 * document disk.img%DISKLABEL:p% 
* tweaks
 2010-11-21 19:29:01 +00:00
pooka
080506bc5d Make error message more userfriendly in cases where server does 
not support sftp.
 2010-10-29 16:13:51 +00:00
pooka
0a80f65755 support CTLTYPE_BOOL 2010-08-06 15:26:16 +00:00
pooka
c7528563f1 If compiled with RUMP_ACTION, access rump kernel instead of host 
kernel.  This is an easy way to browse & modify the sysctl tree
offered by a rump kernel instance.
 2010-08-06 15:04:13 +00:00
pooka
b36b2c0f6d Remove unused LDADD lines. They need work to work, and if anyone 
ever does that work, they surely can come up with the LDADD line as
well.
 2010-07-20 14:42:03 +00:00
mrg
6479f6e5b4 ldap is configured to depend upon MKCRYPTO no, so force MKLAP=no if 
MKCRYPTO=no.
don't build pkg_install, libcrypto tests or rump_smbfs if MKCRYPTO=no.
mark librumpcrypto, rump_smb, pkg_*

fix set lists as appropriate.
 2010-07-11 06:16:54 +00:00
pooka
afdc25dbdf When using the top secret PUFFS_COMFD model, write out size of the 
puffs kernel args before the contents.  This allows parties which
have no clue about the contents to proxy the protocol easily.
 2010-07-06 13:27:16 +00:00
pooka
bdc0f19ba4 link putter now that it's a separate component 2010-06-30 16:22:49 +00:00
dholland
c91651efd0 Requires sys/param.h. 2010-05-30 04:32:09 +00:00
pooka
cf3a71d4a7 Add rump_au-naturel, which instead of mounting a file system inside 
the rump kernel just attaches to / in said rump kernel instance.
This is mostly useful in case wanting to see what nodes components
create (see Makefile).

not built without manual intervention
 2010-04-29 22:42:48 +00:00
wiz
d692f84d06 Sort options in SYNOPSIS (flags without arguments first). 2010-04-11 21:34:18 +00:00
pooka
04c1597880 Add raw mode, which skips ASCII'ification and can be used if reading 
structures from the kernel into debug program memory is desired.
 2010-04-11 15:08:17 +00:00
pooka
c8360f5cc9 Instead of totally giving up, dump CTLTYPE_STRUCT as hex, much 
like sysctl -x (but not fancy like -dosequis).
 2010-04-11 08:30:17 +00:00