nanobsd: Fix the p flag
Fix the "p" flag in the manual page.
While here, add the flag to the usage instructions.
Reviewed by: imp
Approved by: emaste (mentor)
Fixes: 90593b1bdb80 ("nanobsd: Expose do_image_prep on command line")
Differential Revision: https://reviews.freebsd.org/D52508
release.sh: Pass PKGCONF through to make release
Otherwise setting PKGCONF=1 in the release.conf file doesn't actually
result in pkgbase bits being produced and shipped on images.
MFC after: 1 minute
Sponsored by: https://www.patreon.com/c/cperciva
(cherry picked from commit d4282cfa97d695f3e5590ad330a5a0bb2cca3110)
release.sh: Pass PKGCONF through to make release
Otherwise setting PKGCONF=1 in the release.conf file doesn't actually
result in pkgbase bits being produced and shipped on images.
MFC after: 1 minute
Sponsored by: https://www.patreon.com/c/cperciva
cron: Fix comment from "root's" to "system" crontab
It is referred to in the documentation as the system crontab, not root's
crontab.
PR: 289099
Reviewed by: emaste
Approved by: emaste (mentor)
Fixes: d33daab9348a ("Call /etc/crontab the "system crontab", not "root's crontab". While here, fix some other wording issues")
MFC after: 2 weeks
Differential Revision: https://reviews.freebsd.org/D52503
bridge: Do outbound VLAN filtering in bridge_enqueue
Outbound VLAN filtering wasn't being done for host-originated frames,
because bridge_output was missing a call to bridge_vfilter_out, like
in bridge_forward and bridge_broadcast.
Rather than adding another call, move the filtering to bridge_enqueue,
which ensures all frames will be filtered. This slightly changes the
observable behaviour since we now do pfil before vlan filtering, but
that's probably closer to what users expect anyway.
MFC after: 1 week
Differential Revision: https://reviews.freebsd.org/D52380
packages: Add meta-package sets
Add several metapackages which contain no files themselves, but depend
on other packages. This allows the user to install a system by using
a set like "FreeBSD-set-minimal" instead of having to know which
specific packages are required, and it means if we add more package
in the future, existing installations will get them automatically as
long as they were installed using a set.
The defined sets are significantly less granular than the actual
packages; the assumption is that users who want a very specific set of
packages installed can do that manually, while sets are intended more
for typical users who just want to install FreeBSD.
The following sets are defined:
* minimal: the set of packages required to boot the system and bring
up a multi-user UNIX system. This includes hardware support,
networking (wireless, DHCP), basic functionality like syslogd, cron
[40 lines not shown]
packages: Use LIB_PACKAGE for zfs and ufs packages
Commit f9513c334ff7 moved the shared libraries for ZFS and UFS into
separate packages (libzfs and libufs), which resulted in a rather
large number of packages being created, e.g. for ZFS:
FreeBSD-libzfs
FreeBSD-libzfs-dbg
FreeBSD-libzfs-dbg-lib32
FreeBSD-libzfs-dev
FreeBSD-libzfs-dev-lib32
FreeBSD-libzfs-lib32
FreeBSD-zfs
FreeBSD-zfs-dbg
FreeBSD-zfs-dbg-lib32
FreeBSD-zfs-dev
FreeBSD-zfs-dev-lib32
FreeBSD-zfs-lib32
FreeBSD-zfs-man
[16 lines not shown]
jaildesc: add kevent support
Give jail descriptors the same kevent flags as jails. Also fix the
event reporting in jails, where it was including data for events the
user didn't ask for.
MFC after: 3 days
Supercharge the most beautiful console font ever with +4300 glyphs.
I have increased the glyphs from 502 to 4885. Major additions:
* Greek
* Cyrillic
* International Phonetic Association Extensions
* Extended Latin characters
* Zapf Dingbats
* Tons of arrows
* Tons of mathematical symbols
* Letterlike symbols and enclosed alphanumerics
* Pixel-perfect box drawing
* Currency symbols
* More punctuation
* Just enough Katakana to say コンニチハ
* Powerline glyphs in the Private Use Area at U+e0a0
I have tried hard to keep the look of the font for Greek and Cyrillic
[11 lines not shown]
e1000: fix igb VF stats
igb VF must not read normal stat registers and only read a limited
set of registers. The PF registers also don't make since as the VF
is an internal port, and there is no PHY to collect stats like CRC
errors from.
PR: 282309
Obtained from: Juniper Networks, Inc.
Differential Revision: https://reviews.freebsd.org/D52326
ng_device: enable setting the device to non-blocking mode
Return success when FIONBIO or FIOASYNC ioctl are received in order to support
being set to non-blocking through fcntl(2). We return an error on FIOASYNC with
non-zero data argument since we do not support O_ASYNC.
Signed-off-by: Quentin Thébault <quentin.thebault at defenso.fr>
Reviewed by: imp, jhb
Pull Request: https://github.com/freebsd/freebsd-src/pull/1827
ng_device: replace dependency on vnode.h with fcntl.h
Update to current convention of using fcntl.h O_* flags instead of vnode.h IO_*
ones, as explained in sys/fs/devfs/devfs_vnops.c.
Signed-off-by: Quentin Thébault <quentin.thebault at defenso.fr>
Reviewed by: imp, jhb
Pull Request: https://github.com/freebsd/freebsd-src/pull/1827
gunion: Also destroy the rw_lock
We also need to destroy the rw_lock when we free the softc.
Noticed by: markj
Fixes: 656f7f43f204
Sponsored by: Netflix
tools: Drop cryptotest
This has been supplanted by cryptocheck and has bitrotted to the point
where it no longer builds.
PR: 289325
Reviewed by: jhb
Differential Revision: https://reviews.freebsd.org/D52399
krb5: Enable PRINC_LOOK_AHEAD in ksu
PRINC_LOOK_AHEAD is the upstream default. Normally ksu determines the
target princiapl by (quoted from the man page)
a. default principal of the source cache
b. target_user at local_realm
c. source_user at local_realm
With PRINC_LOOK_AHEAD emabled, for each candidate in the above
list, select an authorized principal that has the same realm name
and first part of the principal name equal to the prefix of the
candidate. For example if candidate a) is jqpublic at ISI.EDU and
jqpublic/secure at ISI.EDU is authorized to access the target account
then the default principal is set to jqpublic/secure at ISI.EDU.
Case 2: source user is root.
[14 lines not shown]
MAC/do: Rename the internal malloc type
From M_DO to M_MAC_DO. While here, make the descriptions more accurate.
(Commit message by olce@.)
Reviewed by: olce
MFC after: 3 days
Sponsored by: Google LLC (GSoC 2025)
Sponsored by: The FreeBSD Foundation
(cherry picked from commit 6612fc306d3eb58f85f4cf4533161a1340374709)
NOTES: Fix whitespace in "options MAC_DO"
For "options", we put a space before a TAB so that commenting out an
option doesn't move the columns.
No functional change.
Fixes: c8d8cac2a847 ("mac_do(4): allow compiling into kernel")
MFC after: 3 days
Sponsored by: The FreeBSD Foundation
(cherry picked from commit 1cf67b587023af90f2b2c6e87d9103ec42b2b9b2)
sys: NOTES: Fix comment for wlan_* devices; GENERIC*: Re-order 'wlan_tkip'
Fix the comment introducing the 'wlan_*' devices (AES-CCMP is missing)
after introducing AES-GCMP.
While here, re-order the devices in order of appearance of the related
technologies.
No functional change (intended).
Reviewed by: adrian, emaste
Fixes: 7bf82ea4fdda ("sys: add wlan_gcmp to GENERIC kernels as appropriate")
MFC after: 3 days
MFC to: stable/15
Sponsored by: The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D52444
(cherry picked from commit c1eff1d745a1193c199f735733e376161c69b12c)
NOTES: Fix whitespace in "options MAC_DO"
For "options", we put a space before a TAB so that commenting out an
option doesn't move the columns.
No functional change.
Fixes: c8d8cac2a847 ("mac_do(4): allow compiling into kernel")
MFC after: 3 days
Sponsored by: The FreeBSD Foundation
(cherry picked from commit 1cf67b587023af90f2b2c6e87d9103ec42b2b9b2)
jail: simplify EVFILT_JAIL events
Instead of using the EVFILT_PROC model of attempting to automatically
register new events when a child jail is created, just give a single
event when a child jail is created. As was already done with jail
attach events, make a best-effort report of the added jail's id in
kn_data. If the are multiple NOTE_JAIL_CHILD and/or NOTE_JAIL_ATTACH
events, set the NOTE_JAIL_MULTI flag, and don't report anything in
data, indicating that the caller will need to query the system state
on their own.
MFC after: 3 days
