summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Ready for 7.4-RELEASE builds to start.release/7.4.0Ken Smith2011-02-161-1/+1
| | | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=218739 svn path=/release/7.4.0/; revision=218743; tag=release/7.4.0
* Guess when all the bits will be in place for announcing 7.4-RELEASE.Ken Smith2011-02-161-0/+3
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=218736
* MFS 218634:Simon L. B. Nielsen2011-02-131-1/+7
| | | | | | | | | | | | | | | | | | | Fix Incorrectly formatted ClientHello SSL/TLS handshake messages could cause OpenSSL to parse past the end of the message. Note: Applications are only affected if they act as a server and call SSL_CTX_set_tlsext_status_cb on the server's SSL_CTX. This includes Apache httpd >= 2.3.3, if configured with "SSLUseStapling On". The very quick merge is done to get this fix into 7.4 / 8.2. Approved by: re (bz) Obtained from: OpenSSL CVS Security: http://www.openssl.org/news/secadv_20110208.txt Security: CVE-2011-0014 Notes: svn path=/releng/7.4/; revision=218636
* MFC 218271:John Baldwin2011-02-111-2/+3
| | | | | | | | | | When turning off TCP_NOPUSH, only call tcp_output() to immediately flush any pending data if the connection is established. Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=218576
* MFC r218134:Ken Smith2011-01-311-36/+23
| | | | | | | | | Update to reflect the package layout for 7.4-RELEASE. Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=218135
* Ready for 7.4-RC3 builds.Ken Smith2011-01-281-1/+1
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=218024
* MFC r217872: Unbreak .Dd line.Colin Percival2011-01-271-1/+1
| | | | | | | Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=217987
* MFC r217869,217870: Fix .Dd lines in re(4) and nfe(4).Colin Percival2011-01-272-2/+2
| | | | | | | Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=217931
* MFC stable/7 r217724Jack F Vogel2011-01-251-5/+10
| | | | | | | | | | | Fix to kern/152853, misplaced pullup in em_xmit breaks UDP tx, thanks to Petr Lampa for the patch. Approved by: re (bz) Notes: svn path=/releng/7.4/; revision=217866
* MFC stable/7 r217723Jack F Vogel2011-01-251-3/+11
| | | | | | | | | | | | - Pieces of the failure path in em_xmit got mangled, correct it. - local_timer had a leftover TX_UNLOCK without a matching TX_LOCK in the error path, remove it. Approved by: re (bz) Notes: svn path=/releng/7.4/; revision=217862
* MFC r217548:Pyun YongHyeon2011-01-241-91/+90
| | | | | | | | | | | | | | | | | | | | Rework RX filter programming by providing separate handler for DP8381[56] and SiS 900/7016 controllers. After r212119, sis(4) no longer reinitializes controller if ALLMULTI/PROMISC was changed. However, RX filter handling code assumed some bits of the RX filter is programmed by driver initialization. This caused ALLMULTI/PROMISC configuration is ignored under certain conditions. Fix that issue by reprogramming all bits of RX filter register. While I'm here follow recommended RX filter programming steps recommended by National DP8381[56] data sheet(RX filter should be is disabled before programming). Reported by: Paul Schenkeveld < freebsd () psconsult dot nl > Tested by: Paul Schenkeveld < freebsd () psconsult dot nl > Approved by: re (bz) Notes: svn path=/releng/7.4/; revision=217804
* MFC r217383:Konstantin Belousov2011-01-221-0/+1
| | | | | | | | | | The (%esp & 0xf) == 0 should be true before the call instruction is executed, for the properly aligned stack. Approved by: re (bz) Notes: svn path=/releng/7.4/; revision=217721
* MFC: r217464, r217468, r217475Marius Strobl2011-01-218-6/+109
| | | | | | | | | | | Add a manual page for rgephy(4) and reference it as appropriate. The motivation for having rgephy.4 is to document the special media option added in r217415 (MFC'ed to releng/7.4 in r217667). Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=217695
* MFC: r217415Marius Strobl2011-01-211-22/+29
| | | | | | | | | | | | | | | | | | | | | | | - Allow IFM_FLAG0 to be set indicating that auto-negotiation with manual configuration, which is used to work around issues with certain setups (see r161237) by default, should not be triggered as it may in turn cause harm in some edge cases. - Even after masking the media with IFM_GMASK the result may have bits besides the duplex ones set so just comparing it with IFM_FDX may lead to false negatives. - Announce PAUSE support also for manually selected 1000BASE-T, but for all manually selected media types only in full-duplex mode. Announce asymmetric PAUSE support only for manually selected 1000BASE-T. - Simplify setting the manual configuration bits to only once after we have figured them all out. This also means we no longer unnecessarily update the hardware along the road. - Remove a stale comment. Reviewed by: yongari (plus additional testing) Approved by: re (bz) Notes: svn path=/releng/7.4/; revision=217667
* MFC r217296:Pyun YongHyeon2011-01-201-2/+7
| | | | | | | | | | | | | | | | | | | | | | | For re(4) controllers that uses new jumbo frame scheme(RTL8168C/D/E), limit maximum RX buffer size to RE_RX_DESC_BUFLEN instead of blindly configuring it to 16KB. Due to lack of documentation, re(4) didn't allow jumbo frame on these controllers. However it seems controller is confused with jumbo frame such that it can DMA the received frame to wrong address instead of splitting it into multiple RX buffers. Of course, this caused panic. Since re(4) does not support jumbo frames on these controllers, make controller drop frame that is longer than RE_RX_DESC_BUFLEN sized frame. Fortunately RTL810x controllers, which do not support jumbo frame, have no such issues but this change also limited maximum RX buffer size allowed to RTL810x controllers. Allowing 16KB RX buffer for controllers that have no such capability is meaningless. Approved by: re (bz) Notes: svn path=/releng/7.4/; revision=217648
* MFS7 r217562:Simon L. B. Nielsen2011-01-192-2/+6
| | | | | | | | | | | | | | | | | | | | Decrease the libcrypto and libssl shared object version numbers from 6 to 5. They were accidentally bumped in r215997 (on 2010-11-28) with the merge of OpenSSL 0.9.8p, but unfortunately this was not caught until now. Also add compat links for libcrypto.so.6 / libssl.so.6 (pointing to their .5 counterparts) in case any users have compiled any third party during the time stable/7 (and releng/7.4) were broken. This is deemed the last poor of bad options. Had the number bump not been reverted binary packages for stable/7 would not have worked on the still supported 7.3 and 7.1 releases. Approved by: re (kensmith) Notes: svn path=/releng/7.4/; revision=217574
* Ready for 7.4-RC2.Ken Smith2011-01-111-1/+1
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=217256
* MFC r217226:Pyun YongHyeon2011-01-101-1/+11
| | | | | | | | | | | | | | | | | | | Apply DMA address space restriction to controllers that have 4GB DMA boundary bug and runs with PCI-X mode. watchdog timeout was observed on BCM5704 which lives behind certain PCI-X bridge(e.g. AMD 8131 PCI-X bridge). It's still not clear whether the root cause came from that PCI-X bridge or not. The watchdog timeout indicates the issue is in TX path. If the bridge reorders TX mailbox write accesses it would generate all kinds of problems but I'm not sure. This should be revisited. Early MFC requested by re@ for inclusion in 8.2-RC2/7.4-RC2. Tested by: Michael L. Squires (mikes <> siralan dot org) Approved by: re (kensmith) Notes: svn path=/releng/7.4/; revision=217235
* - Bump version numbers for the upcoming release.Hiroki Sato2011-01-10248-43738/+62
| | | | | | | | | - Clean-up old entries. Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=217228
* MFC r216832: Make -S functionalBrian Somers2011-01-071-1/+1
| | | | | | | Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=217116
* MFC r210144 (originally committed by imp):Lawrence Stewart2011-01-073-41/+54
| | | | | | | | | Put warnings out to stderr rather than stdout. Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=217086
* MFC: r216891Marius Strobl2011-01-051-6/+6
| | | | | | | | | | | | | | | Extend the section in which interrupts are disabled in the TLB demap functions, otherwise if we get preempted after checking whether a certain pmap is active on the current CPU but before disabling interrupts we might operate on an outdated state as the pmap might have been deactivated in the meantime. As the same issue may arises when the TLB demap function is interrupted by a TLB demap IPI, just entering a critical section before the check isn't sufficient so we have to fully disable interrupts instead. Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=217007
* MFC r216848:Bjoern A. Zeeb2010-12-312-3/+3
| | | | | | | | | | | Happy New Year 2011. Approved by: core (kib) Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=216853
* Ready for RC1 builds.Ken Smith2010-12-221-1/+1
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=216664
* Add release package directories for upcoming releases, and one past release.Ken Smith2010-12-221-0/+3
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=216648
* Adjust __FreeBSD_version for upcoming FreeBSD 7.4 release.Ken Smith2010-12-221-1/+1
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=216647
* Adjust branch tag in example.Ken Smith2010-12-221-1/+1
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=216646
* Misc. 7.3 -> 7.4 adjustments for upcoming release.Ken Smith2010-12-221-2/+2
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=216645
* Adjust FreeBSD version printed for manual pages.Ken Smith2010-12-221-1/+1
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=216644
* Adjust branch tag for 'make update'.Ken Smith2010-12-221-1/+1
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=216643
* MFC r216371:Andrew Thompson2010-12-211-2/+2
| | | | | | | | | | | Fix race in devfs by using LIST_FIRST() instead of LIST_FOREACH_SAFE() when freeing the devfs private data entries. Approved by: re (kib) Notes: svn path=/stable/7/; revision=216612
* MFC r216187:Doug Barton2010-12-191-0/+2
| | | | | | | | | | | Add MAKEDEV.8 Submitted by: Alex Kozlov <spam@rm-rf.kiev.ua> Approved by: re (kib) Notes: svn path=/stable/7/; revision=216571
* MFC r215824:Doug Barton2010-12-191-2/+2
| | | | | | | | | | | | | Add a sync to the shutdown step. In the common case this will be harmless at worst. On a heavily loaded server it will give the fs a chance to do its business without the axe hanging over its head. Submitted by: ivoras Approved by: re (kib) Notes: svn path=/stable/7/; revision=216569
* MFC r216335:Max Laier2010-12-192-1/+61
| | | | | | | | | | | | | | | Fix a long standing (from the original 4.4BSD lite sources) race between vmspace_fork and vm_map_wire that would lead to "vm_fault_copy_wired: page missing" panics. While faulting in pages for a map entry that is being wired down, mark the containing map as busy. In vmspace_fork wait until the map is unbusy, before we try to copy the entries. Sponsored by: Isilon Systems, Inc. Approved by: re (kib) Notes: svn path=/stable/7/; revision=216554
* MFC r216173Jack F Vogel2010-12-151-2/+0
| | | | | | | | | | | Remove the test for a minimum frame size from the IPV6 TX context descriptor setup, when using VLANs and HW TAGGING the length of an ICMP6 frame will fail this test and be discarded. Approved by: re Notes: svn path=/stable/7/; revision=216465
* When the per-queueset transmit kthread is idle, do not pass a sleepJohn Baldwin2010-12-141-1/+1
| | | | | | | | | | | | | | | priority of '1' to tsleep(). This caused the priority of this kthread to be raised higher than every other thread in the system. Instead, leave the priority of the kthread at its existing level. This is a direct commit to stable/7 as this code is no longer present in 8.x and later. Reviewed by: np Approved by: re (kib) Notes: svn path=/stable/7/; revision=216449
* MFC r216172, r216176Jack F Vogel2010-12-141-37/+32
| | | | | | | | | | | | Correct the RX discard and refresh_mbuf logic to match igb, the old discard code could cause panics due to a bad pointer, now simply have discard always free mbufs and depend on refresh. In the refresh code, make sure the mbuf and soft buf struct are properly reset. Approved by: re Notes: svn path=/stable/7/; revision=216441
* MFC r216351:Tijl Coosemans2010-12-141-9/+30
| | | | | | | | | | | | Add a .note.ABI-tag section to ia64 startup files by linking crtbrand.c in crt1.o. On other architectures crtbrand.c is included from crt1.c, but that's not a C source code file on ia64. Instead it is compiled separately and included in crt1.o using incremental linking. Approved by: re (kensmith), kib (mentor) Notes: svn path=/stable/7/; revision=216435
* MFC r216192:Bjoern A. Zeeb2010-12-101-1/+1
| | | | | | | | | | | | | Use correct field to track statistics counting error as bad header length. This assimilates the code to what ip_input has been doing since r1.1 in this case. Submitted by: Rozhuk Ivan (rozhuk.im gmail.com) Approved by: re (kib) Notes: svn path=/stable/7/; revision=216357
* MFC r206494 by luigi:Andrey V. Elsukov2010-12-101-2/+2
| | | | | | | | | fix a buffer overflow with large (100k+) number of input lines. Approved by: re (bz) Notes: svn path=/stable/7/; revision=216347
* MFC r216040:Xin LI2010-12-101-1/+1
| | | | | | | | | | Make German formal clause to be consistent with the keymap counterpart. Submitted by: arundel Approved by: re (kensmith, bz) Notes: svn path=/stable/7/; revision=216345
* MFC r216166, r216167:Simon L. B. Nielsen2010-12-09216-230/+346
| | | | | | | | | | | Merge in OpenSSL 0.9.8q. Approved by: re (kib) Security: CVE-2010-4180 Security: http://www.openssl.org/news/secadv_20101202.txt Notes: svn path=/stable/7/; revision=216342
* MFV: vendor/bind9/dist-9.4Doug Barton2010-12-0915-615/+1011
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Update to version 9.4-ESV-R4, the latest from ISC, which addresses the following security vulnerabilities. For more information regarding these issues please see: http://www.isc.org/announcement/guidance-regarding-dec-1st-2010-security-advisories 1. Cache incorrectly allows ncache and rrsig for the same type http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3613 Affects resolver operators whose servers are open to potential attackers. Triggering the bug will cause the server to crash. This bug applies even if you do not have DNSSEC enabled. 2. Key algorithm rollover http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3614 Affects resolver operators who are validating with DNSSEC, and querying zones which are in a key rollover period. The bug will cause answers to incorrectly be marked as insecure. Approved by: re (kib) Notes: svn path=/stable/7/; revision=216336
* MFC r216229:Rebecca Cran2010-12-091-2/+0
| | | | | | | | | Revert r209469: it causes the rest of the function to be bypassed. Approved by: re (kensmith) Notes: svn path=/stable/7/; revision=216328
* MFC r216243:Rebecca Cran2010-12-092-2/+5
| | | | | | | | | | | | Ignore any failures with the "local" distribution since it's not present on release CDs and so will normally fail. installCommit() returns a DITEM_ value, not a Boolean. distExtractAll() returns a Boolean, not a DITEM_ value. Approved by: re (kensmith) Notes: svn path=/stable/7/; revision=216327
* MFC r216065:Doug Barton2010-12-081-2/+5
| | | | | | | | | | | Update the description of green_saver.ko Improvements to my suggested text from: jhb Approved by: re (kib) Notes: svn path=/stable/7/; revision=216287
* MFC r216111:Pyun YongHyeon2010-12-071-4/+6
| | | | | | | | | | | | | | | | | | | | | | | | If RX lockup workaround is enabled, fxp(4) will periodically reset the controller to workaround silicon bug of i82557. Each reset will re-establish link which in turn triggers MII status change callback. The callback will try to reconfigure controller if the controller is not i82557 to enable flow-control. This caused endless link UP/DOWN when the workaround was enabled on non-i82557 controller. To fix the issue, apply RX lockup workaround only for i82557. Previously it blindly checked undocumented EEPROM location such that it sometimes enabled the workaround for other controllers. At this time, only i82557 is known to have the silicon bug. This fixes a regression introduced in r215906 which enabled flow control support for all controllers except i82557. Reported by: Karl Denninger (karl <> denninger dot net) Tested by: Karl Denninger (karl <> denninger dot net) Approved by: re (kensmith) Notes: svn path=/stable/7/; revision=216265
* MFC: r216159Jung-uk Kim2010-12-072-0/+6
| | | | | | | | | Do not change CPU ticker frequency if TSC is P-state invariant. Approved by: re (kib) Notes: svn path=/stable/7/; revision=216262
* MFC r215105: Uninitialized buffers considered harmful.Colin Percival2010-12-031-1/+1
| | | | | | | Approved by: re (bz) Notes: svn path=/stable/7/; revision=216165
* MFC r216077: Teach crashinfo(8) about the kern.bootfile sysctl.Colin Percival2010-12-031-1/+1
| | | | | | | Approved by: re (bz) Notes: svn path=/stable/7/; revision=216153
generated by cgit v1.2.3 (git 2.25.1) at 2025-05-26 02:18:16 +0000