d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
140,506 Commits 4 Branches 49 Tags
Commit Graph

140506 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
rwatson
6a481435b2 In preparation to sync Apple and FreeBSD versions of security audit, 
pick up the Apple Computer -> Apple change in their copyright and
license templates.

Obtained from:	Apple Inc.
MFC after:	3 days
 2008-07-22 15:29:48 +00:00
ache
639d7e6fa8 Change /dev/urandom to /dev/random since urandom marked as 
XXX Deprecated
alias in /sys/dev/random/randomdev.c
 2008-07-22 15:25:35 +00:00
rwatson
c3ca4b7705 Use unsigned int when iterating over groupsets in audit_arg_groupset(). 
Obtained from:	Apple Inc.
MFC after:	3 days
 2008-07-22 15:17:21 +00:00
ache
e3afb9ef3c Use arc4random_uniform(3) since modulo size is not power of 2 2008-07-22 15:08:50 +00:00
maxim
3348213ee8 o Alan Shepard was first American in the space; fix attribution. 
o Correct Alan's surname.

PR:		bin/125812
Submitted by:	Derek Taylor [1], gavin [2]
MFC after:	1 week
 2008-07-22 14:21:56 +00:00
stas
442ea27fed - Whitespace fixes. 
Approved by:	gonzo
MFC after:	1 week
 2008-07-22 14:04:06 +00:00
marius
9bda798c14 o Fix style(9) bugs and similar nits. 
o Merge ncr53c9x.c from NetBSD:
  1.115: fix variable shadowing
  1.118: __inline -> inline
  1.121: fix empty if
 2008-07-22 13:51:21 +00:00
ache
d3860f979e Bump __FreeBSD_version for arc4random_buf() and arc4random_uniform() 
added.
 2008-07-22 13:38:17 +00:00
ache
1cdd160d50 In arc4random_uniform() detect simple "power of two" case and 
return just (arc4random() % upper_bound)
 2008-07-22 12:43:09 +00:00
ache
e1bf8eba27 Add arc4random_uniform() 
Obtained from:  OpenBSD
 2008-07-22 11:40:42 +00:00
ache
06e39c3b36 Add arc4random_uniform() function (to avoid "modulo bias") 
Obtained from:  OpenBSD
 2008-07-22 11:33:49 +00:00
ache
31393d8a07 Increase initially dropped bytes from 512 to 768 (768 is also 
suggested in the Ilya Mironov's article). 768 taken from another
research where it treats as default for RC4-drop(768):
http://www.users.zetnet.co.uk/hopwood/crypto/scan/cs.html#RC4-drop

Minor style tweak.
 2008-07-22 10:31:29 +00:00
marius
f3fc48dfb6 For sun4v ensure there is an opt_global.h with SUN4V defined included, 
even for the stand-alone build.
 2008-07-22 09:56:45 +00:00
cognet
c79e409a88 Disable SSP for the kernel on arm as well (see rev 180605). 
I overlooked this because a SSP kernel booted for me.

Apologises to:	ticso
 2008-07-22 09:38:12 +00:00
bmah
944512f805 Add a sentence of credits to the KSE removal note. 
Requested by:	brooks
 2008-07-22 05:02:46 +00:00
avatar
d4098f774e Trying to fix compilation bustage: 
- removing 'const' qualifier from an input parameter to conform to the type
  required by rw_assert();
- using in_addr->s_addr to retrive 32 bits address value.

Observed by:	tinderbox
 2008-07-22 04:23:57 +00:00
attilio
823ce79a5b - Disallow XFS mounting in write mode. The write support never worked really 
and there is no need to maintain it.
- Fix vn_get() in order to let it call vget(9) with a valid locking
  request.  vget(9) returns the vnode locked in order to prevent recycling,
  but in this case internal XFS locks alredy prevent it from happening, so
  it is safe to drop the vnode lock before to return by vn_get().
- Add a VNASSERT() in vget(9) in order to catch malformed locking requests.

Discussed with:	kan, kib
Tested by:	Lothar Braun <lothar at lobraun dot de>
 2008-07-21 23:01:09 +00:00
thompsa
412a8c5e97 Change the module example to kldload since this is the resume side. 2008-07-21 22:55:40 +00:00
marcel
c1cdcb99f3 Remove sioX as an alias for uartX. It is believed to be 
more confusing than helpful.

Suggested by: jhb
 2008-07-21 22:38:00 +00:00
kmacy
887a78e4a4 make new accessor functions consistent with existing style 2008-07-21 22:11:39 +00:00
jhb
9d2fb35751 Add feature_present(3) to the FBSD 1.1 symbol map. 2008-07-21 22:07:59 +00:00
ache
c65a53e702 1) Use __packed attr on rdat structure to make it exact 128 bytes. 
2) Use gettimeofday() and getpid() only if reading from /dev/urandom
fails or impossible.
3) Discard N bytes on very first initialization only (i.e. don't
discard on re-stir).
4) Reduce N from 1024 to 512 as really suggested in the
"(Not So) Random Shuffles of RC4" paper:
http://research.microsoft.com/users/mironov/papers/rc4full.pdf
 2008-07-21 21:57:30 +00:00
kmacy
52a393acad remove call to unsafe tcp_twstart function 2008-07-21 21:23:43 +00:00
kmacy
bffea91419 - Switch to INP_WLOCK macro from inp_wlock 
- calling sodisconnect after tcp_twstart is both gratuitous and unsafe - remove

Submitted by:	rwatson
 2008-07-21 21:22:56 +00:00
rwatson
f3c6f1e959 If run_interrupt_driven_config_hooks() waits 360 seconds and INVARIANTS 
is compiled into the kernel, then panic.

MFC after:	3 days
Discussed with:	scottl
 2008-07-21 20:50:49 +00:00
ache
d42754352a 1) Update copyright notice. 
2) Eliminate "struct arc4_stream *as" arg since only single arg is
possible.
3) Set rs.j = rs.i after arc4random key schedule to be more like arc4
stream cipher.

Obtained from:  OpenBSD
 2008-07-21 20:04:32 +00:00
jhb
6b7ad7a6fa Allocate a single CCB at the start of the main loop of the RAID monitoring 
kthread of the mpt(4) driver that hangs around for the entire lifetime of
the thread.  Previously the driver would allocate a new CCB using M_WAITOK
with a lock held each time it updated its state.  While here, use the
CAM API for allocating a CCB rather than raw malloc(9).

Reviewed by:	scottl
MFC after:	1 week
 2008-07-21 18:43:02 +00:00
ache
d9075774c1 Add arc4random_buf to FBSD_1.1 space 2008-07-21 18:03:31 +00:00
marius
a94ec32bd7 - Remove redundant inclusion of opt_global.h. 
- Use __FBSDID in autoconf.c.

MFC after:	3 days
 2008-07-21 17:15:51 +00:00
pjd
9d11b5b5b3 Implement the following macros for completeness: 
SYSCTL_QUAD()
	SYSCTL_ADD_QUAD()
	TUNABLE_QUAD()
	TUNABLE_QUAD_FETCH()

Now we can use 64bit tunables on 32bit systems.
 2008-07-21 15:05:25 +00:00
pjd
372e777769 We want to use LBOLT instead of lbolt on FreeBSD. 
I've this already fixed in p4, but the fix was never integrated into HEAD.

Reported by:	ed
 2008-07-21 14:35:48 +00:00
ache
fa504793b9 Add arc4random_buf.3 to MLINKS 2008-07-21 14:33:11 +00:00
ache
fc34cf9d89 Add arc4random_buf. 
Style: remove arg names from arc4random_addrandom.
 2008-07-21 14:03:04 +00:00
ache
5ed3228d52 Implement arc4random_buf() function 
Obtained from:  OpenBSD
 2008-07-21 13:52:06 +00:00
ache
101cbb7cb3 Decrease arc4_count only when needed and with proper bytes amount. 
Obtained from:  OpenBSD
 2008-07-21 12:44:47 +00:00
ache
4497a308d1 1) Set stired flag after forced initialization. 
2) Increase arc4_count to the limit OpenBSD use.

Submitted by:   Thorsten Glaser <tg@mirbsd.de> (1)
Obtained from:  OpenBSD (2)
 2008-07-21 10:31:28 +00:00
maxim
06823fc47f o Document "show conifhk", wording from r180610 commit log. 
Reviewed by:	rwatson
 2008-07-21 10:03:02 +00:00
pjd
129b3149d8 We want to check new options given, not the current ones. 
This fixes 'zpool import -o <mntopt> <name>' not working properly.
 2008-07-21 09:45:44 +00:00
kmacy
673bf0fe8a remove unneeded declarations 2008-07-21 02:34:52 +00:00
kmacy
cccf5dd0cc remove local version of tcp_offload_* functions 2008-07-21 02:29:40 +00:00
kmacy
b6ccefc36f update syncache function names 2008-07-21 02:26:49 +00:00
kmacy
2eb3c40f89 Add versions of tcp_twstart, tcp_close, and tcp_drop that hide the acquisition the tcbinfo lock. 
MFC after:	1 week
 2008-07-21 02:23:02 +00:00
kmacy
7658528ea7 remove cxgb local definition of locked syncache_expand 2008-07-21 02:17:27 +00:00
edwin
7b9be5566f After the commit of SVN rev 180236, wilko@ noticed that the approach 
doesn't work on the Alpha platform: machine/elf.h doesn't include
sys/elf32.h there.

PR:		related to bin/124906
Approved by:	bde@
MFC after:	1 week
 2008-07-21 02:13:14 +00:00
kmacy
fd0203e881 add interface for external consumers to syncache_expand - rename syncache_add in a manner consistent with other bits intended for offload 2008-07-21 02:11:06 +00:00
kmacy
a6eb23b528 remove cxgb local definitions of socket accessor functions 2008-07-21 01:23:19 +00:00
kmacy
565bc001a5 Add accessor functions for socket fields. 
MFC after:	1 week
 2008-07-21 00:49:34 +00:00
kmacy
d24f4bd48a add inpcb accessor functions for fields needed by TOE devices 2008-07-21 00:08:34 +00:00
julian
739989a3ea Add support for actually sending WCCP return packets via GRE. 
This MAY be combined by a clever person with the 'key' code recently
added, however a cursary glance suggest that it would be safer to just keep
the patches as it is unlikely that the two modes would be used together
and the separate patch has been extensively tested.

Obtained from:	 here and there
MFC after:	1 week
 2008-07-20 21:45:15 +00:00
pjd
b1fb19aba8 Clear passphrase buffer after use. 
Submitted by:	Fabian Keil <fk@fabiankeil.de> (a bit different version)
 2008-07-20 19:56:13 +00:00