| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
| |
Reported by: Thomas Barabosch, Fraunhofer FKIE
Approved by: so
Security: FreeBSD-EN-18:12.mem
Security: CVE-2018-17155
Notes:
svn path=/releng/10.4/; revision=338981
|
| |
|
|
|
|
|
|
|
|
| |
Reported by: Jakub Jirasek, Secunia Research at Flexera
Approved by: so
Security: FreeBSD-EN-18:11.listen
Security: CVE-2018-6925
Notes:
svn path=/releng/10.4/; revision=338980
|
| |
|
|
|
|
|
|
|
| |
Approved by: so
Security: FreeBSD-SA-18:12.elf
Security: CVE-2018-6924
Notes:
svn path=/releng/10.4/; revision=338606
|
| |
|
|
|
|
|
|
|
|
| |
Fix unauthenticated EAPOL-Key decryption vulnerability.
[SA-18:11.hostapd]
Approved by: so
Notes:
svn path=/releng/10.4/; revision=337829
|
| |
|
|
|
|
|
| |
Approved by: so
Notes:
svn path=/releng/10.4/; revision=337395
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Currently, the per-queue limit is a function of the receive buffer
size and the MSS. In certain cases (such as connections with large
receive buffers), the per-queue segment limit can be quite large.
Because we process segments as a linked list, large queues may not
perform acceptably.
The better long-term solution is to make the queue more efficient.
But, in the short-term, we can provide a way for a system
administrator to set the maximum queue size.
We set the default queue limit to 100. This is an effort to balance
performance with a sane resource limit. Depending on their
environment, goals, etc., an administrator may choose to modify this
limit in either direction.
Approved by: so
Security: FreeBSD-SA-18:08.tcp
Security: CVE-2018-6922
Notes:
svn path=/releng/10.4/; revision=337389
|
| |
|
|
|
|
|
|
| |
Approved by: so
Security: FreeBSD-EN-18:06.tzdata
Notes:
svn path=/releng/10.4/; revision=333375
|
| |
|
|
|
|
|
|
|
|
| |
Approved by: so
Security: CVE-2018-6920
Security: CVE-2018-6921
Security: FreeBSD-EN-18:05.mem
Notes:
svn path=/releng/10.4/; revision=333372
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Bump newvers.sh and UPDATING for today's patches.
Approved by: so
Security: CVE-2018-8897
Security: FreeBSD-SA-18:06.debugreg
Sponsored by: The FreeBSD Foundation
Notes:
svn path=/releng/10.4/; revision=333371
|
| |
|
|
|
|
|
|
|
|
| |
Reported by: Ilja van Sprundel
Approved by: so
Security: CVE-2018-6919
Security: FreeBSD-EN-18:04.mem
Notes:
svn path=/releng/10.4/; revision=331987
|
| |
|
|
|
|
|
|
|
| |
Submitted by: philip
Approved by: so
Security: FreeBSD-EN-18:03.tzdata
Notes:
svn path=/releng/10.4/; revision=331986
|
| |
|
|
|
|
|
|
|
|
| |
Reported by: Maxime Villard
Approved by: so
Security: CVE-2018-6918
Security: FreeBSD-SA-18:05.ipsec
Notes:
svn path=/releng/10.4/; revision=331985
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bump newvers.sh and UPDATING for today's patches.
Submitted by: emaste
Reported by: Dr Silvio Cesare of InfoSect
Approved by: so
Security: CVE-2018-6917
Security: FreeBSD-SA-18:04.vt
Sponsored by: The FreeBSD Foundation
Notes:
svn path=/releng/10.4/; revision=331984
|
| |
|
|
|
|
|
|
|
| |
Approved by: so
Security: FreeBSD-SA-18:01.ipsec
Security: CVE-2018-6916
Notes:
svn path=/releng/10.4/; revision=330631
|
| |
|
|
|
|
|
|
| |
Approved by: so
Security: FreeBSD-SA-18:01.netipsec
Notes:
svn path=/releng/10.4/; revision=330611
|
| |
|
|
|
|
|
|
|
| |
Approved by: so
Security: FreeBSD-EN-18:02.file
Security: CVE-2017-1000249
Notes:
svn path=/releng/10.4/; revision=330569
|
| |
|
|
|
|
|
|
| |
Approved by: so
Security: FreeBSD-EN-18:01.tzdata
Notes:
svn path=/releng/10.4/; revision=330568
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
Approved by: so
Security: FreeBSD-SA-18:02.ntp
Security: CVE-2018-7182
Security: CVE-2018-7170
Security: CVE-2018-7184
Security: CVE-2018-7185
Security: CVE-2018-7183
Notes:
svn path=/releng/10.4/; revision=330567
|
| |
|
|
|
|
|
|
|
| |
Approved by: so
Security: FreeBSD-SA-18:01.ipsec
Security: CVE-2018-6916
Notes:
svn path=/releng/10.4/; revision=330566
|
| |
|
|
|
|
|
|
|
| |
Approved by: so
Security: CVE-2017-3737
Security: FreeBSD-SA-17:12.openssl
Notes:
svn path=/releng/10.4/; revision=326723
|
| |
|
|
|
|
|
|
| |
Security: FreeBSD-SA-17:11
Approved by: so
Notes:
svn path=/releng/10.4/; revision=326359
|
| |
|
|
|
|
|
|
|
| |
Approved by: so
Security: FreeBSD-SA-17:10.kldstat
Security: CVE-2017-1088
Notes:
svn path=/releng/10.4/; revision=325877
|
| |
|
|
|
|
|
|
|
| |
Approved by: so
Security: FreeBSD-SA-17:09.shm
Security: CVE-2017-1087
Notes:
svn path=/releng/10.4/; revision=325874
|
| |
|
|
|
|
|
|
|
| |
Approved by: so
Security: FreeBSD-SA-17:08.ptrace
Security: CVE-2017-1086
Notes:
svn path=/releng/10.4/; revision=325870
|
| |
|
|
|
|
|
| |
Approved by: so
Notes:
svn path=/releng/10.4/; revision=325323
|
| |
|
|
|
|
|
| |
Approved by: so
Notes:
svn path=/releng/10.4/; revision=324741
|
| |
|
|
|
|
|
|
|
|
| |
10.4-RELEASE builds.
Approved by: re (implicit)
Notes:
svn path=/releng/10.4/; revision=324094
svn path=/release/10.4.0/; revision=324101; tag=release/10.4.0
|
| |
|
|
|
|
|
| |
Approved by: re (implicit)
Notes:
svn path=/releng/10.4/; revision=324093
|
| |
|
|
|
|
|
| |
Approved by: re (implicit)
Notes:
svn path=/releng/10.4/; revision=324092
|
| |
|
|
|
|
|
|
|
|
| |
Prune last remaining empty sections.
Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation
Notes:
svn path=/releng/10.4/; revision=324018
|
| |
|
|
|
|
|
|
|
| |
will reflect the (hopefully) final 10.4-RC2 builds.
Approved by: re (implicit)
Notes:
svn path=/releng/10.4/; revision=323928
|
| |
|
|
|
|
|
| |
Approved by: re (implicit)
Notes:
svn path=/releng/10.4/; revision=323927
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
MFC r323924:
Revert r323812 from release/tools/arm.subr, which has broken the
build on arm/armv6 images.
Pointyhat: gjb (myself)
Approved by: re (marius)
Sponsored by: The FreeBSD Foundation
Notes:
svn path=/releng/10.4/; revision=323926
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Akin r302691 in head, synchronize the build stripping for the disc1
image with that of the bootonly image (but similarly modulo games
and groff(1)) as the amd64 disc1 image is overflowing. This also
removes the defunct WITHOUT_ATF.
- Remove the misspelled WITHOUT_INSTALLIB (also in place with correct
spelling, i. e. WITHOUT_INSTALLLIB) from the bootonly image build
stripping.
This is a direct commit to stable/10 as the corresponding knobs have
different names in head and counterparts to e. g. MK_DEBUG_FILES and
MK_TESTS default to off in stable/10 in the first place.
Approved by: re (implicit)
Notes:
svn path=/releng/10.4/; revision=323901
|
| |
|
|
|
|
|
| |
Approved by: re (implicit)
Notes:
svn path=/releng/10.4/; revision=323890
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
MFC: r285215
remove _NORMAL flag which isn't suppose to be used w/ _alloc_ctx...
MFC: r285289
address an issue where consumers, like IPsec, can reuse the same
session in multiple threads w/o locking.. There was a single fpu
context shared per session, if multiple threads were using the session,
and both migrated away, they could corrupt each other's fpu context...
MFC: r285297
upon further examination, it turns out that _unregister_all already
provides the guarantee that no threads will be in the _newsession code..
MFC: r298332
aesni(4): Initialize error before use [1]
Reported by: Coverity [1]
CID: 1331554 [1]
Approved by: re (gjb, kib)
Notes:
svn path=/releng/10.4/; revision=323875
|
| |
|
|
|
|
|
|
|
|
| |
Add _NEW flag to mtx(9), sx(9), rmlock(9) and rwlock(9).
A _NEW flag passed to _init_flags() to avoid check for double-init.
Approved by: re (gjb)
Notes:
svn path=/releng/10.4/; revision=323872
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Unbreak netmap(4) support in ixgbe(4) after r315333:
- Both ixgbe_netmap.c and ixv_netmap.c assumed a netmap(4) driver
newer than what's actually in stable/10.
- Additionally, at the bottom line ixv_netmap.c did exactly the same
as ixgbe_netmap.c, i. e. used IXGBE_TDH() as appropriate for PFs
only instead of IXGBE_VFTDH() and tried to configure CRC stripping
although the corresponding registers aren't available to VFs in the
first place.
With these changes, the netmap(4) support in ixgbe(4) is in line
again with the code in sys/dev/netmap/ixgbe_netmap.h as of r295008.
Breakage reported by: Slawa Olhovchenkov
Just like r315333 that never existed in head, this is a direct commit
to stable/10. However, ixgbe(4) in head has a related bug in that it
assumes a netmap(4) driver API older than what's in head and also
does the wrong things for VFs as it uses the PF-only ixgbe_netmap.c
for both PFs and VFs in the first place.
MF10: r323835, MFC: r320916
Reset unsupported SFP tuneable back to original entry name.
Approved by: re (gjb)
Notes:
svn path=/releng/10.4/; revision=323838
|
| |
|
|
|
|
|
|
| |
Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation
Notes:
svn path=/releng/10.4/; revision=323821
|
| |
|
|
|
|
|
|
|
|
| |
page.
Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation
Notes:
svn path=/releng/10.4/; revision=323818
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
MFC r323812:
Bootstrap etcupdate(8) and mergemaster(8) databases when creating
virtual machine images and embedded images, similar to what is
done when extracting base.txz to the target root filesystem in
a new installation.
Approved by: re (marius)
Sponsored by: The FreeBSD Foundation
Notes:
svn path=/releng/10.4/; revision=323817
|
| |
|
|
|
|
|
|
|
| |
Submitted by: rpokala
Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation
Notes:
svn path=/releng/10.4/; revision=323765
|
| |
|
|
|
|
|
|
|
|
|
| |
part of r323618. This directory needs to be included, as it is
used by the 'reldoc' target of release/Makefile.
Approved by: re (implicit, relnotes-related)
Sponsored by: The FreeBSD Foundation
Notes:
svn path=/releng/10.4/; revision=323716
|
| |
|
|
|
|
|
|
|
|
|
| |
Document r318430, ifconfig(8) reports persistent NIC MAC addresses.
Submitted by: rpokala
Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation
Notes:
svn path=/releng/10.4/; revision=323711
|
| |
|
|
|
|
|
|
|
|
|
|
| |
In fetch_resolve() if the port number or service name is included
in the host argument (e. g. "www.freebsd.org:443"), correctly set
the service pointer accordingly. Previously, the service pointer
was set to the separator instead, causing getaddrinfo(3) to fail.
Approved by: re (kib)
Notes:
svn path=/releng/10.4/; revision=323680
|
| |
|
|
|
|
|
|
|
|
|
|
| |
- Connect the installation page to the build.
- Fix a malformed URL.
- Update versions, and switch from 'snapshot' to 'release.'
Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation
Notes:
svn path=/releng/10.4/; revision=323618
|
| |
|
|
|
|
|
|
| |
Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation
Notes:
svn path=/releng/10.4/; revision=323617
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
builds.
- Update newvers.sh to reflect RC1.
- Update __FreeBSD_version to reflect 10.4.
- Switch the pkg(8) repository to use the 10.4 release package set for
DVD image creation.
Approved by: re (implicit)
Notes:
svn path=/releng/10.4/; revision=323604
|
| |
|
|
|
|
|
|
|
| |
Submitted by: truckman
Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation
Notes:
svn path=/stable/10/; revision=323601
|
| |
|
|
|
|
|
|
|
|
|
| |
Document r322793, GEOM_JOURNAL flush_queue handling fixed.
Submitted by: eugen
Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation
Notes:
svn path=/stable/10/; revision=323595
|
