d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
FreeBSD src
272,623 Commits 72 Branches 135 Tags 3.2 GiB
C 59.6%
C++ 25.5%
Roff 5.1%
Shell 2.9%
Assembly 2.7%
Other 3.6%
f01c863337
Go to file
Stefan Eßer f01c863337 dev/pci: fix potential panic due to bogus VPD data 
A panic has been observed on a system with a Intel X520 dual LAN
device. The panic is caused by a KASSERT() noticing that the amount
of VPD data copied out to the pciconf command does not match the
amount of data read from the device.

The cause of the size mismatch was VPD data that started with 0x82,
the VPD tag that indicates that a VPD ident follows, but with a length
of more than 255 characters, which happens to be the maximum ident
size supported by the API between kernel and the pciconf program.
The data provided did not resemble an actual VPD identifier, and it
can be assumed that the initial tag value 0x82 happens to be there
by accident.

An ident size of 255 far exceeds the sensible length of that data
element, which is in the order of at most 30 to 40 bytes.

This patch adds several consitstency checks to the VPD parser, the
most critical being that ident lengths of more than 255 bytes are
rejected. Other checks reject VPD with more than one ident tag or
with an empty (zero length) ident string.

This patch prevents the panic that occured when "pciconf -lV" was
executed on the affected system.

During the anaylsis of the issue and the VPD code it has been
found that the VPD parser uses a state machine that accepts tags
in any order and combination. This is a bad match for the actual
VPD data, which has a very simple structure that can be parsed
with a non-recursive direct descent parser (which always knows
exactly which token to expect next).

A review fpr a much simpler VPD parser that performs many more
consistency checks and rejects invalid VPD has been proposed in
review https://reviews.freebsd.org/D34268.

Reported by:	mikej at paymentallianceintl.com (Michael Jung)
Approved by:	jhb
MFC after:	3 days
Differential Revision:	https://reviews.freebsd.org/D34255
2022-02-20 22:36:04 +01:00
.cirrus-ci
.github Update vendor/libarchive to libarchive/libarchive@72ce1ff7c 2022-02-19 00:49:06 +01:00
bin bin/df: allow -t option to be used together with -l 2022-02-10 21:09:34 +01:00
cddl ctfconvert: Rip out STABS support 2022-02-10 15:41:10 -05:00
contrib libarchive: merge vendor bugfixes 2022-02-19 01:00:15 +01:00
crypto OpenSSL: Fix the same BIO_FLAGS macro definition 2022-02-01 10:38:49 -08:00
etc Integrate contrib/file/tests with kyua/atf 2022-02-16 13:02:45 -06:00
gnu libdialog: Bump shared library version to 10. 2021-10-27 09:30:24 -07:00
include Install unwind.h into /usr/include 2022-02-10 19:00:32 +01:00
kerberos5 pkgbase: Create a FreeBSD-kerberos package 2021-09-07 10:23:14 +02:00
lib libpmc: Allow specifying explicit EVENT_xxH events on armv7 and arm64 2022-02-15 16:10:34 +00:00
libexec gssd: Modify /etc/rc.d/gssd so that it starts after NETWORKING 2022-02-15 14:18:23 -08:00
release release: Don't install ubldr.bin 2022-02-07 13:19:20 -07:00
rescue rescue: Link with -lncursesw instead of -lncursesw_real. 2022-02-11 13:58:59 -08:00
sbin Avoid unaligned writes by fsck_ffs(8). 2022-02-20 13:21:12 -08:00
secure OpenSSL: Merge OpenSSL 1.1.1m 2021-12-14 16:03:52 -05:00
share share/mk: Fix obvious typo in README (TAREGT -> TARGET) 2022-02-20 17:26:04 +01:00
stand Add support for getting early entropy from UEFI 2022-02-17 13:01:11 -08:00
sys dev/pci: fix potential panic due to bogus VPD data 2022-02-20 22:36:04 +01:00
targets Retire obsolete iscsi_initiator(4) 2021-10-26 16:17:35 -04:00
tests pf tests: Test per-anchor tables 2022-02-17 14:13:50 +01:00
tools Clean up warnings in pthread tests 2022-02-16 16:28:31 -05:00
usr.bin fetch: make -S argument accept values > 2GB 2022-02-20 15:24:43 +01:00
usr.sbin bhyve/snapshot: use a string for cmd element in the nvlist 2022-02-15 08:12:15 -09:00
.arcconfig
.arclint
.cirrus.yml Cirrus-CI: add a manual amd64-gcc9 build and smoketest job 2022-02-15 12:55:14 -05:00
.clang-format clang-format: Add bitset loop macros 2021-09-21 12:08:01 -04:00
.gitattributes
.gitignore .gitignore: Restore inadvertently deleted file 2022-01-18 08:00:42 -08:00
COPYRIGHT Welcome 2022, update copyrights. 2022-01-01 09:49:49 -07:00
LOCKS
MAINTAINERS Remove myself from bhyve maintenance; ENOTIME. 2021-11-19 07:09:30 +10:00
Makefile cleankernel: A target to delete the kernel compile file 2022-02-11 12:51:24 -07:00
Makefile.inc1 cleankernel: A target to delete the kernel compile file 2022-02-11 12:51:24 -07:00
Makefile.libcompat Makefile.libcompat: Sort 2022-02-02 14:34:29 -07:00
Makefile.sys.inc
ObsoleteFiles.inc Install unwind.h into /usr/include 2022-02-10 19:00:32 +01:00
README.md unbound: Vendor import 1.15.0 2022-02-17 14:47:14 -08:00
RELNOTES RELNOTES: Note support for KTLS RX for TLS 1.3. 2021-12-14 11:02:45 -08:00
UPDATING Fix minor grammar nit. 2022-01-31 15:35:23 -08:00

README.md

FreeBSD Source:

This is the top level of the FreeBSD source directory.

FreeBSD is an operating system used to power modern servers, desktops, and embedded platforms. A large community has continually developed it for more than thirty years. Its advanced networking, security, and storage features have made FreeBSD the platform of choice for many of the busiest web sites and most pervasive embedded networking and storage devices.

For copyright information, please see the file COPYRIGHT in this directory. Additional copyright information also exists for some sources in this tree - please see the specific source directories for more information.

The Makefile in this directory supports a number of targets for building components (or all) of the FreeBSD source tree. See build(7), config(8), FreeBSD handbook on building userland, and Handbook for kernels for more information, including setting make(1) variables.

Source Roadmap:

Directory Description
bin System/user commands.
cddl Various commands and libraries under the Common Development and Distribution License.
contrib Packages contributed by 3rd parties.
crypto Cryptography stuff (see crypto/README).
etc Template files for /etc.
gnu Commands and libraries under the GNU General Public License (GPL) or Lesser General Public License (LGPL). Please see gnu/COPYING and gnu/COPYING.LIB for more information.
include System include files.
kerberos5 Kerberos5 (Heimdal) package.
lib System libraries.
libexec System daemons.
release Release building Makefile & associated tools.
rescue Build system for statically linked /rescue utilities.
sbin System commands.
secure Cryptographic libraries and commands.
share Shared resources.
stand Boot loader sources.
sys Kernel sources.
sys/arch/conf Kernel configuration files. GENERIC is the configuration used in release builds. NOTES contains documentation of all possible entries.
tests Regression tests which can be run by Kyua. See tests/README for additional information.
tools Utilities for regression testing and miscellaneous tasks.
usr.bin User commands.
usr.sbin System administration commands.

For information on synchronizing your source tree with one or more of the FreeBSD Project's development branches, please see FreeBSD Handbook.