source-changes: CVS commit: src

Subject: CVS commit: src
To: None <source-changes@NetBSD.org>
From: Brett Lymn <blymn@netbsd.org>
List: source-changes
Date: 04/20/2005 13:44:46
Module Name:	src
Committed By:	blymn
Date:		Wed Apr 20 13:44:46 UTC 2005

Modified Files:
	src/distrib/sets/lists/base: mi
	src/distrib/sets/lists/man: mi
	src/etc/rc.d: veriexec
	src/sbin/veriexecctl: Makefile veriexecctl.8 veriexecctl.c
	    veriexecctl_conf.l veriexecctl_parse.y
	src/share/examples/veriexecctl: gen_md5 gen_sha1
	src/sys/arch/i386/conf: GENERIC GENERIC_VERIEXEC majors.i386
	src/sys/conf: files
	src/sys/dev: verified_exec.c
	src/sys/kern: init_main.c kern_exec.c kern_verifiedexec.c vfs_subr.c
	    vfs_syscalls.c vfs_vnops.c
	src/sys/sys: verified_exec.h vnode.h
Added Files:
	src/sbin/veriexecctl: veriexec.4
	src/share/examples/veriexecctl: gen_rmd160

Log Message:
Rototill of the verified exec functionality.
  * We now use hash tables instead of a list to store the in kernel
    fingerprints.
  * Fingerprint methods handling has been made more flexible, it is now
    even simpler to add new methods.
  * the loader no longer passes in magic numbers representing the
    fingerprint method so veriexecctl is not longer kernel specific.
  * fingerprint methods can be tailored out using options in the kernel
    config file.
  * more fingerprint methods added - rmd160, sha256/384/512
  * veriexecctl can now report the fingerprint methods supported by the
    running kernel.
  * regularised the naming of some portions of veriexec.


To generate a diff of this commit:
cvs rdiff -r1.547 -r1.548 src/distrib/sets/lists/base/mi
cvs rdiff -r1.779 -r1.780 src/distrib/sets/lists/man/mi
cvs rdiff -r1.3 -r1.4 src/etc/rc.d/veriexec
cvs rdiff -r1.4 -r1.5 src/sbin/veriexecctl/Makefile \
    src/sbin/veriexecctl/veriexecctl_parse.y
cvs rdiff -r0 -r1.1 src/sbin/veriexecctl/veriexec.4
cvs rdiff -r1.7 -r1.8 src/sbin/veriexecctl/veriexecctl.8
cvs rdiff -r1.5 -r1.6 src/sbin/veriexecctl/veriexecctl.c
cvs rdiff -r1.2 -r1.3 src/sbin/veriexecctl/veriexecctl_conf.l
cvs rdiff -r1.1 -r1.2 src/share/examples/veriexecctl/gen_md5 \
    src/share/examples/veriexecctl/gen_sha1
cvs rdiff -r0 -r1.1 src/share/examples/veriexecctl/gen_rmd160
cvs rdiff -r1.666 -r1.667 src/sys/arch/i386/conf/GENERIC
cvs rdiff -r1.1 -r1.2 src/sys/arch/i386/conf/GENERIC_VERIEXEC
cvs rdiff -r1.24 -r1.25 src/sys/arch/i386/conf/majors.i386
cvs rdiff -r1.716 -r1.717 src/sys/conf/files
cvs rdiff -r1.6 -r1.7 src/sys/dev/verified_exec.c
cvs rdiff -r1.244 -r1.245 src/sys/kern/init_main.c
cvs rdiff -r1.196 -r1.197 src/sys/kern/kern_exec.c
cvs rdiff -r1.9 -r1.10 src/sys/kern/kern_verifiedexec.c
cvs rdiff -r1.243 -r1.244 src/sys/kern/vfs_subr.c
cvs rdiff -r1.218 -r1.219 src/sys/kern/vfs_syscalls.c
cvs rdiff -r1.86 -r1.87 src/sys/kern/vfs_vnops.c
cvs rdiff -r1.6 -r1.7 src/sys/sys/verified_exec.h
cvs rdiff -r1.134 -r1.135 src/sys/sys/vnode.h

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.