CVS commit: [netbsd-7] src

Mon, 18 May 2015 21:43:27 -0700 

Module Name:    src
Committed By:   snj
Date:           Tue May 19 04:42:32 UTC 2015

Modified Files:
        src/sbin/veriexecctl [netbsd-7]: veriexecctl.c
        src/share/man/man9 [netbsd-7]: veriexec.9
        src/sys/conf [netbsd-7]: files
        src/sys/dev [netbsd-7]: verified_exec.c
Added Files:
        src/sys/kern [netbsd-7]: kern_veriexec.c
Removed Files:
        src/sys/kern [netbsd-7]: kern_verifiedexec.c

Log Message:
Pull up following revision(s) (requested by maxv in ticket #764):
        sbin/veriexecctl/veriexecctl.c: revision 1.38
        share/man/man9/veriexec.9: revision 1.10
        sys/conf/files: revision 1.1128
        sys/dev/verified_exec.c: revisions 1.70, 1.71
        sys/kern/kern_veriexec.c: revisions 1.1-1.8
        sys/kern/kern_verifiedexec.c: delete
Rename kern_verifiedexec.c to kern_veriexec.c. "Veriexec" is the name of
the subsystem, not "Verifiedexec".

The revisions of kern_verifiedexec.c are now in Attic/.

No change between kern_verifiedexec.c and kern_veriexec.c.

Also, update the man page accordingly.

Okayed by christos@ and blymn@ some months ago.
--
KNF
--
Don't mix veriexec lock and file lock in veriexec_file_verify().

Now:
 - 'veriexec_op_lock' needs to be held when calling veriexec_file_verify()
 - the 'file_lock_state' argument indicates if the file is locked
 - add some KASSERTs
--
Instead of duplicating code, add veriexec_fp_status(). Also reorder a
useless goto.
--
Make veriexec_renamechk() more readable. Also add a KASSERT on vte_count.

No real functional change
--
If we already have an entry for the file being loaded, return EEXIST, don't
silently skip it.
--
Remove FreeBSD.

ok elad@
--
KASSERT x then y, not (x && y).
--
KNF
--
Not to add even more confusion in an already overcomplicated subsystem,
remove the FreeBSD code. This code is likely to be outdated, and Veriexec
is in all cases not available on FreeBSD.
--
Be a bit more verbose if the kernel rejects a file


To generate a diff of this commit:
cvs rdiff -u -r1.37 -r1.37.2.1 src/sbin/veriexecctl/veriexecctl.c
cvs rdiff -u -r1.27 -r1.27.4.1 src/share/man/man9/veriexec.9
cvs rdiff -u -r1.1096.2.5 -r1.1096.2.6 src/sys/conf/files
cvs rdiff -u -r1.69 -r1.69.2.1 src/sys/dev/verified_exec.c
cvs rdiff -u -r0 -r1.8.2.2 src/sys/kern/kern_veriexec.c
cvs rdiff -u -r1.134 -r0 src/sys/kern/kern_verifiedexec.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Reply via email to