| Age | Commit message (Collapse) | Author |
|---|
|
|
|
directly from /var/db/host.random and falling back to ctime. Remove the
_SKEY_RAND_FILE_PATH_ since it's no longer needed.
ok millert, mestre
|
|
|
|
correctly - logically complete that now by removing MLINKS from base;
authors need only to ensure there is an entry in NAME for any function/
util being added. MLINKS will still work, and remain for perl to ease
upgrades;
ok nicm (curses) bcook (ssl)
ok schwarze, who provided a lot of feedback and assistance
ok tb natano jung
|
|
if_atu.c noted by Michal Mazurek.
|
|
or otherwise change Dt to reflect the name of an existing function;
feedback/ok schwarze
|
|
buffer based on whether they are called by keycrunch() or f(). Instead let
keycrunch() and f() take care of this themselves.
OK millert@
|
|
|
|
handling along the way.
Reviews by Brendan MacDonell, Jeremy Devenport, florian, doug, millert
|
|
review by millert, binary checking process with doug, concept with guenther
|
|
|
|
back to md5 (as documented on the man pages), and do not let
skey_set_algorithm() cause a segfault if an unsupported algorithm is
specified.
earlier version ok tedu@
help/ok millert@, ok naddy@
|
|
ok millert, man pages ok jmc@
|
|
ok krw
|
|
members to 64bit types. Assign new syscall numbers for (almost
all) the syscalls that involve the affected types, including anything
with time_t, timeval, itimerval, timespec, rusage, dirent, stat,
or kevent arguments. Add a d_off member to struct dirent and replace
getdirentries() with getdents(), thus immensely simplifying and
accelerating telldir/seekdir. Build perl with -DBIG_TIME.
Bump the major on every single base library: the compat bits included
here are only good enough to make the transition; the T32 compat
option will be burned as soon as we've reached the new world are
are happy with the snapshots for all architectures.
DANGER: ABI incompatibility. Updating to this kernel requires extra
work or you won't be able to login: install a snapshot instead.
Much assistance in fixing userland issues from deraadt@ and tedu@
and build assistance from todd@ and otto@
|
|
ok guenther@
|
|
|
|
OK millert@.
|
|
ok deraadt millert
|
|
|
|
|
|
|
|
already open fd. Will be used to make separate challenge/response
invocations of login_skey keep the record locked. Also properly
escape minus signs in man page. OK henning@ jmc@
|
|
|
|
To build you must:
cd /usr/src && make obj && make includes
cd lib/libc && make depend && make && NOMAN=1 sudo make install
cd /usr/src && make build
|
|
|
|
|
|
where applicable.
|
|
|
|
- kill whitespace at EOL
|
|
- new sentence, new line;
- whitespace at EOL
|
|
|
|
|
|
|
|
ok millert@
|
|
now build libraries with propolice enabled. Without this, existing
binaries (such as ports/packages) that link with any system library
other than libc will fail with an undefined symbol of "___guard"
(__guard on ELF).
Pointed out by markus@ and discussed with deraadt@
|
|
for keyfile == NULL and not get a garbage value.
|
|
caused a user w/o an S/Key to just get "permission denied" from
login_skey instead of a fake challenge.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
because some things (such as login) run as uid 0 and directory modes
won't restrict root.
|
|
where each user gets their own file, which is owned by that user.
An old S/Key database may be converted by running "skeyinit -C" as root.
Programs that need to access the S/Key database no longer need to be
setuid root. They must now be setgid auth instead.
|
|
o) remove extra space in the end of line;
o) remove extra blank lines in the end of file;
o) remove .Pp before .Ss;
o) CAVEAT -> CAVEATS;
o) fix usage of .Fa;
o) <blank-line> -> .Pp;
o) wrap long lines;
millert@ ok
|
|
hand editing to make comments line up correctly. Another pass is forthcoming that handles the cases that could not be done automatically.
|
|
Alas many of these were introduced by yours truly as necessary
just doesn't look right to me for some reason ;-)
|
