aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Fix Denial of Service vulnerability in named(8) with DNS64. [13:01]releng/7.4Bjoern A. Zeeb2013-02-193-23/+83
| | | | | | | | | | | | | | Fix Denial of Service vulnerability in libc's glob(3) functionality. [13:02] Security: CVE-2012-5688 Security: FreeBSD-SA-13:01.bind Security: CVE-2010-2632 Security: FreeBSD-SA-13:02.libc Approved by: so (simon, bz) Notes: svn path=/releng/7.4/; revision=246989
* Fix multiple Denial of Service vulnerabilities with named(8).Simon L. B. Nielsen2012-11-227-17/+50
| | | | | | | | | | | | | | | | Fix insufficient message length validation for EAP-TLS messages. Fix Linux compatibility layer input validation error. Security: FreeBSD-SA-12:06.bind Security: FreeBSD-SA-12:07.hostapd Security: FreeBSD-SA-12:08.linux Security: CVE-2012-4244, CVE-2012-5166, CVE-2012-4445, CVE-2012-4576 Approved by: re Approved by: security-officer Notes: svn path=/releng/7.4/; revision=243417
* Fix named(8) DNSSEC validation Denial of Service.Simon L. B. Nielsen2012-08-063-3/+7
| | | | | | | | | | Security: FreeBSD-SA-12:05.bind Security: CVE-2012-3817 Obtained from: ISC Approved by: so (simon) Notes: svn path=/releng/7.4/; revision=239108
* Fix a problem where zero-length RDATA fields can cause named(8) to crash.Bjoern A. Zeeb2012-06-125-6/+36
| | | | | | | | | | | | | | | | | | | [12:03] Correct a privilege escalation when returning from kernel if running FreeBSD/amd64 on non-AMD processors. [12:04] Fix reference count errors in IPv6 code. [EN-12:02] Security: CVE-2012-1667 Security: FreeBSD-SA-12:03.bind Security: CVE-2012-0217 Security: FreeBSD-SA-12:04.sysret Security: FreeBSD-EN-12:02.ipv6refcount Approved by: so (simon, bz) Notes: svn path=/releng/7.4/; revision=236953
* Update the previous openssl fix. [12:01]Bjoern A. Zeeb2012-05-305-11/+16
| | | | | | | | | | | Fix a bug in crypt(3) ignoring characters of a passphrase. [12:02] Security: FreeBSD-SA-12:01.openssl (revised) Security: FreeBSD-SA-12:02.crypt Approved by: so (bz, simon) Notes: svn path=/releng/7.4/; revision=236304
* Fix multiple OpenSSL vulnerabilities.Bjoern A. Zeeb2012-05-0313-40/+166
| | | | | | | | | | Security: CVE-2011-4576, CVE-2011-4619, CVE-2011-4109 Security: CVE-2012-0884, CVE-2012-2110 Security: FreeBSD-SA-12:01.openssl Approved by: so (bz,simon) Notes: svn path=/releng/7.4/; revision=234954
* Extend the character set accepted by freebsd-update(8) in fileColin Percival2012-01-043-2/+6
| | | | | | | | | | names in order to allow upgrades to FreeBSD 9.0-RELEASE. Approved by: so (cperciva) Errata Notice: FreeBSD-EN-12:01.freebsd-update Notes: svn path=/releng/7.4/; revision=229539
* Fix a problem whereby a corrupt DNS record can cause named to crash. [11:06]Colin Percival2011-12-2317-24/+150
| | | | | | | | | | | | | | | | | | | | | | | Add an API for alerting internal libc routines to the presence of "unsafe" paths post-chroot, and use it in ftpd. [11:07] Fix a buffer overflow in telnetd. [11:08] Make pam_ssh ignore unpassphrased keys unless the "nullok" option is specified. [11:09] Add sanity checking of service names in pam_start. [11:10] Approved by: so (cperciva) Approved by: re (bz) Security: FreeBSD-SA-11:06.bind Security: FreeBSD-SA-11:07.chroot Security: FreeBSD-SA-11:08.telnetd Security: FreeBSD-SA-11:09.pam_ssh Security: FreeBSD-SA-11:10.pam Notes: svn path=/releng/7.4/; revision=228843
* Fix a bug in UNIX socket handling in the linux emulator which wasColin Percival2011-10-043-1/+20
| | | | | | | | | | | | exposed by the security fix in FreeBSD-SA-11:05.unix. Approved by: so (cperciva) Approved by: re (kib) Security: Related to FreeBSD-SA-11:05.unix, but not actually a security fix. Notes: svn path=/releng/7.4/; revision=226023
* Fix handling of corrupt compress(1)ed data. [11:04]Bjoern A. Zeeb2011-09-285-19/+46
| | | | | | | | | | | | | Add missing length checks on unix socket addresses. [11:05] Approved by: so (cperciva) Approved by: re (kensmith) Security: FreeBSD-SA-11:04.compress Security: CVE-2011-2895 [11:04] Security: FreeBSD-SA-11:05.unix Notes: svn path=/releng/7.4/; revision=225827
* Fix an off by one which can result in a assertion failure in BINDSimon L. B. Nielsen2011-05-283-2/+6
| | | | | | | | | | | | | | related to large RRSIG RRsets and Negative Caching. This can cause named to crash. Security: FreeBSD-SA-11:02.bind Security: CVE-2011-1910 Security: https://www.isc.org/software/bind/advisories/cve-2011-1910 Obtained from: ISC Approved by: so (simon) Notes: svn path=/releng/7.4/; revision=222416
* Fix CIDR parsing bug in mountd ACLs.Colin Percival2011-04-203-2/+5
| | | | | | | | Approved by: so (cperciva) Security: FreeBSD-SA-11:01.mountd Notes: svn path=/releng/7.4/; revision=220901
* Ready for 7.4-RELEASE builds to start.release/7.4.0Ken Smith2011-02-161-1/+1
| | | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=218739 svn path=/release/7.4.0/; revision=218743; tag=release/7.4.0
* Guess when all the bits will be in place for announcing 7.4-RELEASE.Ken Smith2011-02-161-0/+3
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=218736
* MFS 218634:Simon L. B. Nielsen2011-02-131-1/+7
| | | | | | | | | | | | | | | | | | | Fix Incorrectly formatted ClientHello SSL/TLS handshake messages could cause OpenSSL to parse past the end of the message. Note: Applications are only affected if they act as a server and call SSL_CTX_set_tlsext_status_cb on the server's SSL_CTX. This includes Apache httpd >= 2.3.3, if configured with "SSLUseStapling On". The very quick merge is done to get this fix into 7.4 / 8.2. Approved by: re (bz) Obtained from: OpenSSL CVS Security: http://www.openssl.org/news/secadv_20110208.txt Security: CVE-2011-0014 Notes: svn path=/releng/7.4/; revision=218636
* MFC 218271:John Baldwin2011-02-111-2/+3
| | | | | | | | | | When turning off TCP_NOPUSH, only call tcp_output() to immediately flush any pending data if the connection is established. Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=218576
* MFC r218134:Ken Smith2011-01-311-36/+23
| | | | | | | | | Update to reflect the package layout for 7.4-RELEASE. Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=218135
* Ready for 7.4-RC3 builds.Ken Smith2011-01-281-1/+1
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=218024
* MFC r217872: Unbreak .Dd line.Colin Percival2011-01-271-1/+1
| | | | | | | Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=217987
* MFC r217869,217870: Fix .Dd lines in re(4) and nfe(4).Colin Percival2011-01-272-2/+2
| | | | | | | Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=217931
* MFC stable/7 r217724Jack F Vogel2011-01-251-5/+10
| | | | | | | | | | | Fix to kern/152853, misplaced pullup in em_xmit breaks UDP tx, thanks to Petr Lampa for the patch. Approved by: re (bz) Notes: svn path=/releng/7.4/; revision=217866
* MFC stable/7 r217723Jack F Vogel2011-01-251-3/+11
| | | | | | | | | | | | - Pieces of the failure path in em_xmit got mangled, correct it. - local_timer had a leftover TX_UNLOCK without a matching TX_LOCK in the error path, remove it. Approved by: re (bz) Notes: svn path=/releng/7.4/; revision=217862
* MFC r217548:Pyun YongHyeon2011-01-241-91/+90
| | | | | | | | | | | | | | | | | | | | Rework RX filter programming by providing separate handler for DP8381[56] and SiS 900/7016 controllers. After r212119, sis(4) no longer reinitializes controller if ALLMULTI/PROMISC was changed. However, RX filter handling code assumed some bits of the RX filter is programmed by driver initialization. This caused ALLMULTI/PROMISC configuration is ignored under certain conditions. Fix that issue by reprogramming all bits of RX filter register. While I'm here follow recommended RX filter programming steps recommended by National DP8381[56] data sheet(RX filter should be is disabled before programming). Reported by: Paul Schenkeveld < freebsd () psconsult dot nl > Tested by: Paul Schenkeveld < freebsd () psconsult dot nl > Approved by: re (bz) Notes: svn path=/releng/7.4/; revision=217804
* MFC r217383:Konstantin Belousov2011-01-221-0/+1
| | | | | | | | | | The (%esp & 0xf) == 0 should be true before the call instruction is executed, for the properly aligned stack. Approved by: re (bz) Notes: svn path=/releng/7.4/; revision=217721
* MFC: r217464, r217468, r217475Marius Strobl2011-01-218-6/+109
| | | | | | | | | | | Add a manual page for rgephy(4) and reference it as appropriate. The motivation for having rgephy.4 is to document the special media option added in r217415 (MFC'ed to releng/7.4 in r217667). Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=217695
* MFC: r217415Marius Strobl2011-01-211-22/+29
| | | | | | | | | | | | | | | | | | | | | | | - Allow IFM_FLAG0 to be set indicating that auto-negotiation with manual configuration, which is used to work around issues with certain setups (see r161237) by default, should not be triggered as it may in turn cause harm in some edge cases. - Even after masking the media with IFM_GMASK the result may have bits besides the duplex ones set so just comparing it with IFM_FDX may lead to false negatives. - Announce PAUSE support also for manually selected 1000BASE-T, but for all manually selected media types only in full-duplex mode. Announce asymmetric PAUSE support only for manually selected 1000BASE-T. - Simplify setting the manual configuration bits to only once after we have figured them all out. This also means we no longer unnecessarily update the hardware along the road. - Remove a stale comment. Reviewed by: yongari (plus additional testing) Approved by: re (bz) Notes: svn path=/releng/7.4/; revision=217667
* MFC r217296:Pyun YongHyeon2011-01-201-2/+7
| | | | | | | | | | | | | | | | | | | | | | | For re(4) controllers that uses new jumbo frame scheme(RTL8168C/D/E), limit maximum RX buffer size to RE_RX_DESC_BUFLEN instead of blindly configuring it to 16KB. Due to lack of documentation, re(4) didn't allow jumbo frame on these controllers. However it seems controller is confused with jumbo frame such that it can DMA the received frame to wrong address instead of splitting it into multiple RX buffers. Of course, this caused panic. Since re(4) does not support jumbo frames on these controllers, make controller drop frame that is longer than RE_RX_DESC_BUFLEN sized frame. Fortunately RTL810x controllers, which do not support jumbo frame, have no such issues but this change also limited maximum RX buffer size allowed to RTL810x controllers. Allowing 16KB RX buffer for controllers that have no such capability is meaningless. Approved by: re (bz) Notes: svn path=/releng/7.4/; revision=217648
* MFS7 r217562:Simon L. B. Nielsen2011-01-192-2/+6
| | | | | | | | | | | | | | | | | | | | Decrease the libcrypto and libssl shared object version numbers from 6 to 5. They were accidentally bumped in r215997 (on 2010-11-28) with the merge of OpenSSL 0.9.8p, but unfortunately this was not caught until now. Also add compat links for libcrypto.so.6 / libssl.so.6 (pointing to their .5 counterparts) in case any users have compiled any third party during the time stable/7 (and releng/7.4) were broken. This is deemed the last poor of bad options. Had the number bump not been reverted binary packages for stable/7 would not have worked on the still supported 7.3 and 7.1 releases. Approved by: re (kensmith) Notes: svn path=/releng/7.4/; revision=217574
* Ready for 7.4-RC2.Ken Smith2011-01-111-1/+1
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=217256
* MFC r217226:Pyun YongHyeon2011-01-101-1/+11
| | | | | | | | | | | | | | | | | | | Apply DMA address space restriction to controllers that have 4GB DMA boundary bug and runs with PCI-X mode. watchdog timeout was observed on BCM5704 which lives behind certain PCI-X bridge(e.g. AMD 8131 PCI-X bridge). It's still not clear whether the root cause came from that PCI-X bridge or not. The watchdog timeout indicates the issue is in TX path. If the bridge reorders TX mailbox write accesses it would generate all kinds of problems but I'm not sure. This should be revisited. Early MFC requested by re@ for inclusion in 8.2-RC2/7.4-RC2. Tested by: Michael L. Squires (mikes <> siralan dot org) Approved by: re (kensmith) Notes: svn path=/releng/7.4/; revision=217235
* - Bump version numbers for the upcoming release.Hiroki Sato2011-01-10248-43738/+62
| | | | | | | | | - Clean-up old entries. Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=217228
* MFC r216832: Make -S functionalBrian Somers2011-01-071-1/+1
| | | | | | | Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=217116
* MFC r210144 (originally committed by imp):Lawrence Stewart2011-01-073-41/+54
| | | | | | | | | Put warnings out to stderr rather than stdout. Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=217086
* MFC: r216891Marius Strobl2011-01-051-6/+6
| | | | | | | | | | | | | | | Extend the section in which interrupts are disabled in the TLB demap functions, otherwise if we get preempted after checking whether a certain pmap is active on the current CPU but before disabling interrupts we might operate on an outdated state as the pmap might have been deactivated in the meantime. As the same issue may arises when the TLB demap function is interrupted by a TLB demap IPI, just entering a critical section before the check isn't sufficient so we have to fully disable interrupts instead. Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=217007
* MFC r216848:Bjoern A. Zeeb2010-12-312-3/+3
| | | | | | | | | | | Happy New Year 2011. Approved by: core (kib) Approved by: re (kib) Notes: svn path=/releng/7.4/; revision=216853
* Ready for RC1 builds.Ken Smith2010-12-221-1/+1
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=216664
* Add release package directories for upcoming releases, and one past release.Ken Smith2010-12-221-0/+3
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=216648
* Adjust __FreeBSD_version for upcoming FreeBSD 7.4 release.Ken Smith2010-12-221-1/+1
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=216647
* Adjust branch tag in example.Ken Smith2010-12-221-1/+1
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=216646
* Misc. 7.3 -> 7.4 adjustments for upcoming release.Ken Smith2010-12-221-2/+2
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=216645
* Adjust FreeBSD version printed for manual pages.Ken Smith2010-12-221-1/+1
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=216644
* Adjust branch tag for 'make update'.Ken Smith2010-12-221-1/+1
| | | | | | | Approved by: re (implicit) Notes: svn path=/releng/7.4/; revision=216643
* MFC r216371:Andrew Thompson2010-12-211-2/+2
| | | | | | | | | | | Fix race in devfs by using LIST_FIRST() instead of LIST_FOREACH_SAFE() when freeing the devfs private data entries. Approved by: re (kib) Notes: svn path=/stable/7/; revision=216612
* MFC r216187:Doug Barton2010-12-191-0/+2
| | | | | | | | | | | Add MAKEDEV.8 Submitted by: Alex Kozlov <spam@rm-rf.kiev.ua> Approved by: re (kib) Notes: svn path=/stable/7/; revision=216571
* MFC r215824:Doug Barton2010-12-191-2/+2
| | | | | | | | | | | | | Add a sync to the shutdown step. In the common case this will be harmless at worst. On a heavily loaded server it will give the fs a chance to do its business without the axe hanging over its head. Submitted by: ivoras Approved by: re (kib) Notes: svn path=/stable/7/; revision=216569
* MFC r216335:Max Laier2010-12-192-1/+61
| | | | | | | | | | | | | | | Fix a long standing (from the original 4.4BSD lite sources) race between vmspace_fork and vm_map_wire that would lead to "vm_fault_copy_wired: page missing" panics. While faulting in pages for a map entry that is being wired down, mark the containing map as busy. In vmspace_fork wait until the map is unbusy, before we try to copy the entries. Sponsored by: Isilon Systems, Inc. Approved by: re (kib) Notes: svn path=/stable/7/; revision=216554
* MFC r216173Jack F Vogel2010-12-151-2/+0
| | | | | | | | | | | Remove the test for a minimum frame size from the IPV6 TX context descriptor setup, when using VLANs and HW TAGGING the length of an ICMP6 frame will fail this test and be discarded. Approved by: re Notes: svn path=/stable/7/; revision=216465
* When the per-queueset transmit kthread is idle, do not pass a sleepJohn Baldwin2010-12-141-1/+1
| | | | | | | | | | | | | | | priority of '1' to tsleep(). This caused the priority of this kthread to be raised higher than every other thread in the system. Instead, leave the priority of the kthread at its existing level. This is a direct commit to stable/7 as this code is no longer present in 8.x and later. Reviewed by: np Approved by: re (kib) Notes: svn path=/stable/7/; revision=216449
* MFC r216172, r216176Jack F Vogel2010-12-141-37/+32
| | | | | | | | | | | | Correct the RX discard and refresh_mbuf logic to match igb, the old discard code could cause panics due to a bad pointer, now simply have discard always free mbufs and depend on refresh. In the refresh code, make sure the mbuf and soft buf struct are properly reset. Approved by: re Notes: svn path=/stable/7/; revision=216441
* MFC r216351:Tijl Coosemans2010-12-141-9/+30
| | | | | | | | | | | | Add a .note.ABI-tag section to ia64 startup files by linking crtbrand.c in crt1.o. On other architectures crtbrand.c is included from crt1.c, but that's not a C source code file on ia64. Instead it is compiled separately and included in crt1.o using incremental linking. Approved by: re (kensmith), kib (mentor) Notes: svn path=/stable/7/; revision=216435
generated by cgit v1.3 (git 2.53.0) at 2026-04-18 15:32:34 +0000