d/freebsd-nq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
freebsd-nq/sys
History
Marcin Wojtas b01edfb515 Fix AES-CTR compatibility issue in ipsec 
r361390 decreased blocksize of AES-CTR from 16 to 1.
Because of that ESP payload is no longer aligned to 16 bytes
before being encrypted and sent.
This is a good change since RFC3686 specifies that the last block
doesn't need to be aligned.
Since FreeBSD before r361390 couldn't decrypt partial blocks encrypted
with AES-CTR we need to enforce 16 byte alignment in order to preserve
compatibility.
Add a sysctl(on by default) to control it.

Submitted by: Kornel Duleba <mindal@semihalf.com>
Reviewed by: jhb
Obtained from: Semihalf
Sponsored by: Stormshield
Differential Revision: https://reviews.freebsd.org/D24999
2020-05-26 14:16:26 +00:00
..
amd64
xen-locore: fix size in GDT descriptor
2020-05-26 10:24:06 +00:00
arm
Restore XHCI operation on Armada 38x
2020-05-26 14:10:53 +00:00
arm64
copystr(9): Move to deprecate (attempt #2)
2020-05-25 16:40:48 +00:00
bsm
bsm: add AUE_CLOSERANGE
2020-04-24 01:27:25 +00:00
cam
Do not remove upcall if we haven't yet.
2020-05-26 13:57:14 +00:00
cddl
Don't block on the range lock in zfs_getpages().
2020-05-20 18:29:23 +00:00
compat
linuxkpi: Fix mod_timer and del_timer_sync
2020-05-25 12:46:05 +00:00
conf
copystr(9): Move to deprecate (attempt #2)
2020-05-25 16:40:48 +00:00
contrib
[ath] [ath_hal] Propagate the HAL_RESET_TYPE through to the chip reset; set it during ath_reset()
2020-05-25 22:31:45 +00:00
crypto
Support separate output buffers for aesni(4).
2020-05-25 22:30:44 +00:00
ddb
kernel: provide panicky version of __unreachable
2020-05-13 18:07:37 +00:00
dev
Sync with Linux packet pacing enhancements in mlx5en(4).
2020-05-26 07:41:46 +00:00
dts
allwinner: aw_thermal: Cope with DTS changes
2020-04-14 19:05:17 +00:00
fs
copystr(9): Move to deprecate (attempt #2)
2020-05-25 16:40:48 +00:00
gdb
Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many)
2020-02-26 14:26:36 +00:00
geom
This commit enables a UFS filesystem to do a forcible unmount when
2020-05-25 23:47:31 +00:00
gnu
dts: Import DTS from Linux 5.6
2020-04-14 18:57:00 +00:00
i386
copystr(9): Move to deprecate (attempt #2)
2020-05-25 16:40:48 +00:00
isa
sc(4) md bits: stop setting sc->kbd entirely
2019-12-30 02:07:55 +00:00
kern
Fix build issue after r360292 when using both RSS and KERN_TLS options.
2020-05-26 08:25:24 +00:00
kgssapi
Add support for optional separate output buffers to in-kernel crypto.
2020-05-25 22:12:04 +00:00
libkern
libkern: Add arc4random_uniform
2020-05-23 17:51:06 +00:00
mips
Update cryptocteon(4) and nlmsec(4) for changes in r361481.
2020-05-25 23:49:46 +00:00
modules
Introduce support for Epson RX-8803 RTC.
2020-05-25 15:40:02 +00:00
net
Move <add|del|change>_route() functions to route_ctl.c in preparation of
2020-05-23 19:06:57 +00:00
net80211
net80211: post RTM_IFINFO notification after toggling IFF_DRV_RUNNING
2020-05-22 11:25:45 +00:00
netgraph
Fix Typo in ng_hci_le_connection_complete_ep struct.
2020-05-19 13:58:52 +00:00
netinet
bbr: Use arc4random_uniform from libkern.
2020-05-23 19:52:20 +00:00
netinet6
Move <add|del|change>_route() functions to route_ctl.c in preparation of
2020-05-23 19:06:57 +00:00
netipsec
Fix AES-CTR compatibility issue in ipsec
2020-05-26 14:16:26 +00:00
netpfil
pf: Add a new zone for per-table entry counters.
2020-05-16 00:28:12 +00:00
netsmb
Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many)
2020-02-26 14:26:36 +00:00
nfs
Use epoch(9) for rtentries to simplify control plane operations.
2020-05-23 10:21:02 +00:00
nfsclient
nfsserver
nlm
Make nfslockd depend on xdr.
2020-04-23 09:37:22 +00:00
ofed
Convert OFED rtable interactions to the new routing KPI.
2020-04-15 13:06:55 +00:00
opencrypto
Add a sysctl knob to use separate output buffers for /dev/crypto.
2020-05-25 22:21:09 +00:00
powerpc
powerpc/booke pmap: Fix iteration for 64-bit kernel page table creation
2020-05-26 03:58:19 +00:00
riscv
copystr(9): Move to deprecate (attempt #2)
2020-05-25 16:40:48 +00:00
rpc
Split XDR into separate kernel module. Make krpc depend on xdr.
2020-04-17 06:04:20 +00:00
security
Deduplicate fsid comparisons
2020-05-21 01:55:35 +00:00
sys
This commit enables a UFS filesystem to do a forcible unmount when
2020-05-25 23:47:31 +00:00
teken
tests
Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many)
2020-02-26 14:26:36 +00:00
tools
vfs: stop null checking routines in vop wrappers
2020-01-26 00:41:38 +00:00
ufs
This commit enables a UFS filesystem to do a forcible unmount when
2020-05-25 23:47:31 +00:00
vm
Allocate UMA per-CPU counters earlier.
2020-05-14 16:06:54 +00:00
x86
amd64: Add a knob to flush RSB on context switches if machine has SMEP.
2020-05-20 22:00:31 +00:00
xdr
Split XDR into separate kernel module. Make krpc depend on xdr.
2020-04-17 06:04:20 +00:00
xen
Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (16 of many)
2020-02-25 19:04:39 +00:00
Makefile
Remove sparc64 kernel support
2020-02-03 17:35:11 +00:00