14836 Commits

Author SHA1 Message Date
gshapiro
f50f4be157 By default, sendmail 8.15 uses uncompressed IPv6 addresses. Keep
current FreeBSD 10 and earlier behavior of using compressed IPv6
addresses in configuration, maps, rulesets, etc.  (FreeBSD 11 and
later will use the new default of uncompressed IPv6 addresses.)

Approved by:	re (gjb)
2015-07-09 05:00:19 +00:00
des
a060063a48 MFH (r276605, r282089): upgrade to latest Unbound
MFH (r276699, r276702, r277057): local control socket
MFH (r276599, r276612, r282087, r282088): build fixes

This brings in Unbound 1.5.3 from head.  Local control sockets are now
supported and will be used by default for new installations.  Existing
systems will continue to use TCP control sockets until the automated
setup script is re-run ("service local_unbound setup") and the service
restarted ("service local_unbound restart").

Approved by:	re (kib)
Relnotes:	yes
2015-07-06 13:23:27 +00:00
garga
c49abb198d MFC r285050, r285053, r285059:
When passwd or group information is changed (by pw, vipw, chpass, ...)
temporary file is created and then a rename() call move it to official file.
This operation didn't have any check to make sure data was written to disk
and if a power cycle happens system could end up with a 0 length passwd
or group database.

There is a pfSense bug with more information about it:

https://redmine.pfsense.org/issues/4523

The following changes were made to protect passwd and group operations:

* lib/libutil/gr_util.c:
 - Replace mkstemp() by mkostemp() with O_SYNC flag to create temp file
 - After rename(), fsync() call on directory for faster result

* lib/libutil/pw_util.c
 - Replace mkstemp() by mkostemp() with O_SYNC flag to create temp file

* usr.sbin/pwd_mkdb/pwd_mkdb.c
 - Added O_SYNC flag on dbopen() calls
 - After rename(), fsync() call on directory for faster result

* lib/libutil/pw_util.3
 - pw_lock() returns a file descriptor to master password file on success

Differential Revision:	https://reviews.freebsd.org/D2978
Approved by:	re (kib), bapt (implicit agreed)
Sponsored by:	Netgate
2015-07-06 13:01:01 +00:00
bapt
9420a4ea0e MFC: r274011,r274022,r274453,r274542,r274632,r274727,r275653,r275656,r275657,
r275658,r275829,r277652,r277764,r278475,r278767,r278819,r278902,r279256,
     r282681,r282683,r282685,r282686,r282687,r282697,r282698,r282699,r282700,
     r282709,r282712,r282713,r282716,r282718,r282719,r282720,r282721,r283809,
     r283810,r283811,r283814,r283815,r283816,r283818,r283841,r283842,r283843,
     r283961,r283962,r284110,r284111,r284112,r284113,r284114,r284117,r284118,
     r284119,r284120,r284121,r284122,r284123,r284124,r284126,r284128,r284129,
     r284130,r284133,r284135,r284137,r284139,r284140,r284148,r284149,r284392

Lots of cleanup in the pw(8) code
Add pw -R <rootdir>
Add lots of regression tests
More accurate error messages

Approved by:	re (kib)
Sponsored by:	gandi.net
2015-07-03 14:22:44 +00:00
pfg
517a5ffe96 MFC 284913:
dconschat(8): Use NULL instead of 0 for the last argument in execl(3)

Found while experimenting with the gcc sentinel attribute.
2015-07-01 15:03:49 +00:00
des
c24def1a4e MFH (r275765): clean up, add special case for + line 2015-07-01 07:31:39 +00:00
delphij
e2ee19fb34 MFC r279901 (kmoore):
- Include commas in valid file-name chars freebsd-update will support
2015-06-29 19:09:16 +00:00
delphij
fd9ce43d97 MFC r256594 (cperciva):
Speed up `freebsd-update IDS` by using IFS to split fields instead of
forking lots of processes to run echo|cut.  In one test this reduced
the CPU time from 980s to 134s and the wallclock time from 806s to
132s.

Submitted by:	Oleg Ginzburg
2015-06-29 19:02:30 +00:00
delphij
98418eeaa2 MFC r274630,r274653 (feld):
Add logic for detecting non-persistent filesystems being utilized by
workdir which would break the upgrade process upon reboot.

Currently we check for tmpfs and md.
2015-06-29 18:56:53 +00:00
delphij
87c40e2ead MFC r276095 (des)
Use "RCS tag" instead of "$FreeBSD$ tag", since svn will obediently
expand the latter.
2015-06-29 18:51:08 +00:00
delphij
affd7b4176 MFC r284425:
Skip src component if /usr/src is empty.

Submitted by:		kczekirda
Reviewed by:		cperciva, delphij, nwhitehorn, allanjude
2015-06-29 18:44:15 +00:00
mav
5c19f61c8d MFC r284765, r284875:
Teach ctld about CTL's physical_port and virtual_port fields.

This allows ctld to work with isp(4) virtual ports, specifying them as
isp0/1, isp0/2, etc.  There are still problems on isp(4) layer with
disabling those ports after enabling, but hopefully they can be fixed.
2015-06-28 09:41:10 +00:00
neel
79b96fdbcb MFC r282209:
Emulate the 'bit test' instruction.

MFC r282259:
Re-implement RTC current time calculation to eliminate the possibility of
losing time.

MFC r282281:
Advertise the MTRR feature via CPUID and emulate the minimal set of MTRR MSRs.

MFC r282284:
When an instruction cannot be decoded just return to userspace so bhyve(8)
can dump the instruction bytes.

MFC r282287:
Don't require <sys/cpuset.h> to be always included before <machine/vmm.h>.

MFC r282296:
Emulate MSR_SYSCFG which is accessed by Linux on AMD cpus when MTRRs are
enabled.

MFC r282301:
Relax limits when transitioning a vector from the IRR to the ISR and also
when extinguishing it from the ISR in response to an EOI.

MFC r282335:
Advertise an additional memory BAR in the "dummy" device emulation.

MFC r282336:
Emulate machine check related MSRs to allow guest OSes like Windows to boot.

MFC r282351:
Don't advertise the Intel SMX capability to the guest.

MFC r282407:
Emulate the 'CMP r/m8, imm8' instruction.

MFC r282519:
Add macros for AMD-specific bits in MSR_EFER: LMSLE, FFXSR and TCE.

MFC r282520:
Emulate guest writes to EFER_MSR properly.

MFC r282558:
Deprecate the 3-way return values from vm_gla2gpa() and vm_copy_setup().

MFC r282571:
Check 'td_owepreempt' and yield the vcpu thread if it is set.

MFC r282595:
Allow byte reads of AHCI registers.

MFC r282784:
Handling indirect descriptors is a capability of the host and not one that
needs to be negotiated. Use the host capabilities field and not the negotiated
field when verifying that indirect descriptors are supported.

MFC r282788:
Allow configuration of the sector size advertised to the guest.

MFC r282865:
Set the subvendor field in config space to the vendor ID. This is required
by the Windows virtio drivers to correctly match a device.

MFC r282922:
Bump the size of the blockif scatter-gather list to 67.

MFC r283075:
Fix off-by-one in array index bounds check. bhyveload would allow you to
create 33 entries on an array that only has 32 slots

MFC r283168:
Temporarily revert r282922 which bumped the max descriptors.

MFC r283255:
Emulate the "CMP r/m, reg" instruction (opcode 39H).

MFC r283256:
Add an option "--get-vmcs-exit-inst-length" to display the instruction length
of the instruction that caused the VM-exit.

MFC r283264:
Change the header type of the emulated host-bridge from type 1 to type 0.

MFC r283293:
Don't rely on the 'VM-exit instruction length' field in the VMCS to always
have an accurate length on an EPT violation.

MFC r283299:
Remove bogus verification of instruction length after instruction decode.

MFC r283308:
Exceptions don't deliver an error code in real mode.

MFC r283657:
Fix non-deterministic delays when accessing a vcpu that was in "running" or
"sleeping" state.

MFC r283973:
Use tunable 'hw.vmm.svm.features' to disable specific SVM features even
though they might be available in hardware. Use tunable 'hw.vmm.svm.num_asids'
to limit the number of ASIDs used by the hypervisor.

MFC r284046:
Fix regression in 'verify_gla()' with the RIP-relative addressing mode.

MFC r284174:
Support guest writes to the TSC by enabling the "use TSC offsetting"
execution control.
2015-06-28 03:22:26 +00:00
neel
c85aee0195 MFC r279444:
Allow passthrough devices to be hinted.

MFC r279683:
When ICW1 is issued the edge sense circuit is reset which means that
following an initialization a low-to-high transistion is necesary to
generate an interrupt.

MFC r279925:
Add -p parameter to list PCI device to pass through to the guest.

MFC r281559:
Fix handling of BUS_PROBE_NOWILDCARD in 'device_probe_child()'.

MFC r280447:
When fetching an instruction in non-64bit mode, consider the value of the
code segment base address.

MFC r280725:
Move legacy interrupt allocation for virtio devices to common code.

MFC r280775:
Fix the RTC device model to operate correctly in 12-hour mode.

MFC r280929:
Fix "MOVS" instruction memory to MMIO emulation.

MFC r280968:
Display instruction bytes and %rip prior to aborting due to an instruction
emulation error.

MFC r281145:
Enhance the support for Group 1 Extended opcodes for CMP, AND, OR instructions.

MFC r281542:
Initialize 'error' before use (Coverity IDs 1249748, 1249747, 1249751, 1249749)

MFC r281561:
Prior to aborting due to an ioport error, it is always interesting to see what
the guest's %rip is.

MFC r281611:
If the number of guest vcpus is less than '1' then flag it as an error.

MFC r281612:
Prefer 'vcpu_should_yield()' over checking 'curthread->td_flags' directly.

MFC r281630:
Relax the check on which vectors can be delivered through the APIC. According
to the Intel SDM vectors 16 through 255 are allowed to be delivered via the
local APIC.

MFC r281879:
Missing break in switch case (Coverity ID 1292499)

MFC r281946:
Don't allow guest to modify readonly bits in the PCI config 'status' register.

MFC r281987:
STOS/STOSB/STOSW/STOSD/STOSQ instruction emulation.

MFC r282206:
Implement the century byte in the RTC.
2015-06-28 01:21:55 +00:00
neel
115742fae3 MFC r276428:
Replace bhyve's minimal RTC emulation with a fully featured one in vmm.ko.

MFC r276432:
Initialize all fields of 'struct vm_exception exception' before passing it
to vm_inject_exception().

MFC r276763:
Clear blocking due to STI or MOV SS in the hypervisor when an instruction is
emulated or when the vcpu incurs an exception.

MFC r277149:
Clean up usage of 'struct vm_exception' to only to communicate information
from userspace to vmm.ko when injecting an exception.

MFC r277168:
Fix typo (missing comma).

MFC r277309:
Make the error message explicit instead of just printing the usage if the
virtual machine name is not specified.

MFC r277310:
Simplify instruction restart logic in bhyve.

MFC r277359:
Fix a bug in libvmmapi 'vm_copy_setup()' where it would return success even
if the 'gpa' was in the guest MMIO region.

MFC r277360:
MOVS instruction emulation.

MFC r277626:
Add macro to identify AVIC capability (advanced virtual interrupt controller)
in AMD processors.

MFC r279220:
Don't close a block context if it couldn't be opened avoiding a null deref.

MFC r279225:
Add "-u" option to bhyve(8) to indicate that the RTC should maintain UTC time.

MFC r279227:
Emulate MSR 0xC0011024 when running on AMD processors.

MFC r279228:
Always emulate MSR_PAT on Intel processors and don't rely on PAT save/restore
capability of VT-x. This lets bhyve run nested in older VMware versions that
don't support the PAT save/restore capability.

MFC r279540:
Fix warnings/errors when building vmm.ko with gcc.
2015-06-27 22:48:22 +00:00
dteske
cd6c92a5e0 MFC r284609: Interim fix for "Login not found" error.
PR:		bin/196514
2015-06-23 04:17:12 +00:00
trasz
7c999938ee MFC r283141:
Remove the warning about invalid PE checksum; apparently nothing
cares about those checksums anyway.

Sponsored by:	The FreeBSD Foundation
2015-06-21 07:00:54 +00:00
trasz
88bb9f05c4 MFC r283285:
Advertise ctlstat(8) a little better.

Sponsored by:	The FreeBSD Foundation
2015-06-21 06:54:54 +00:00
trasz
c2390610a5 MFC r281820:
Add hint about "volmode=dev" to ctl.conf(5).

Sponsored by:	The FreeBSD Foundation
2015-06-20 15:55:53 +00:00
jkim
0a885a0637 MFC: r283092, r283966
Merge ACPICA 20150515.

Relnotes:	yes
2015-06-16 20:00:53 +00:00
jhb
017f11d1f3 MFC 281887:
Reassign copyright statements on several files from Advanced
Computing Technologies LLC to Hudson River Trading LLC.
2015-06-02 19:20:39 +00:00
hiren
651b599a09 MFC: r282866
Fix pmcstat symbol resolution for userland processes.

When examining existing processes pmcstat fails to
correctly determine the locations of executable sections
of the process due to a miscalculated virtual load address.
This does not affect the newly launched processes as the
same value passed as a "start address" to the pmcstat_image_link()
thus nullifying the effect of it.  The issue manifests itself
in processes not being reported in the pmcstat(8) output and
"dubious frames" being reported.

Fix it for now by ignoring all the sections except the executable
one.  This won't fix the issue for objects with multiple
executable sections but helps in majority of real world usecases.
The real solution would be to modify the MAP-IN event to include
the appropriate load address so pmcstat(8) won't have to manually
parse object files to try to determine it.

PR:		198147, 198148
Submitted by:	stas
2015-06-02 08:03:28 +00:00
jhb
ed437ec23c MFC 282643:
Use the kern.bootfile sysctl to set the default kernel path rather than
hardcoding /boot/kernel. This allows pmcstat(8) to work without -k when
using nextboot -k or 'boot foo' at the loader to boot alternate kernels.

Sponsored by:	Norse Corp, Inc.
2015-06-01 18:05:30 +00:00
smh
3236725806 MFC r282208:
Standardise chmod, chflags, chown and chgrp recursive symlink processing

Relnotes:	Yes
Sponsored by:	Multiplay
2015-06-01 09:04:57 +00:00
dteske
d2338369a2 MFC SVN revisions 280310-280311,281160,281167,282443,283023,283288:
r280310: Whitespace cleanup(s)
r280311: Update copyright(s)
r281160: [mergeinfo only] Fix root encryption key permissions (see r281230)
r281167: [mergeinfo only] Unbreak ZFS+GELI install option (see r281230)
r282443: Add swap size sanity check (allanjude)
r283023: Skip adding swap to fstab(5) if unused (allanjude)
r283288: Fix a syntax error (allanjude)
2015-06-01 01:50:09 +00:00
dteske
274e0fc8a5 MFC SVN revisions 280234-280235:
r280234: Fix the handbook install option in bsdinstall (allanjude)
r280235: Fixup to previous (allanjude)
2015-06-01 01:31:50 +00:00
dteske
7cf02110b8 MFC SVN revisions 272278,272379,275874:
r272278: Prevent buffer overflow(s) + style(9) nits
r272379: Optimize program performance + style(9) nits
r275874: Improve feedback to user by using dpv(3)
2015-06-01 01:06:33 +00:00
dteske
88051ad98d MFC r280921: Fix typo in a comment. 2015-06-01 00:09:21 +00:00
bapt
6d659fd65b MFC: r283695
Remove dead declaration

PR:		195928
2015-05-31 00:52:45 +00:00
bapt
0479e26254 MFC: r281039
Allow fetching pkg(8) even if servers/proxies are not passing Content-length
2015-05-30 21:49:18 +00:00
bapt
f11dbe130e MFC: r273778 (by nwhitehorn)
Remove spurious libelf dependency.

Submitted by:	pluknet
2015-05-30 21:47:25 +00:00
bapt
e5d700b499 MFC: r273754 (by nwhitehorn)
Use pkg-1.4-style platform identifiers based on MACHINE_ARCH (e.g.
FreeBSD:11:amd64 instead of freebsd:11:x86:64) when bootstrapping pkg.
Thanks to portmgr for providing symlinks so both styles work.

Reviewed by:	bapt
MFC after:	3 weeks
2015-05-30 21:45:46 +00:00
bapt
051d0fa6db MFC: r259773, r259774, r259775
Do not print a question in non-interractive mode but explain why boostrapping
has failed and how to allow it to happen

Reported by:	jmmv
2015-05-30 21:32:02 +00:00
bapt
b5d16437e1 MFC: r258226
argc is now used
2015-05-30 21:28:55 +00:00
bapt
0f4e3f90c5 MFC: r258020 (by bdrewery)
Remove useless checks for NULL pointer before free(3)

Reported by:		eadler
Approved by:		eadler
2015-05-30 21:25:32 +00:00
bapt
644eb326fc MFC: r257701 (by bdrewery)
Remove condition which can never be true as the previous loop
is never exited while remote == NULL.
2015-05-30 21:23:41 +00:00
rmacklem
8389b2b3fd MFC: r283008
Add a warning message to mountd for exported file
systems that are automounted, since that configuration
isn't supported. This still allows the export, since
two emails I received felt that this should not be
disabled. It sends the message to syslog(LOG_ERR..), so that
it goes to the same places as the other messages related
to /etc/exports problems, even though it is a warning and not an error.
2015-05-30 01:04:45 +00:00
emaste
a071e4290a MFC r282144: crunchide: add basic string table sanity checks
Reported by:	Coverity Scan
CID:		978805, 980919
Sponsored by:	The FreeBSD Foundation
2015-05-21 19:16:28 +00:00
trasz
df07ae934b MFC r279955:
Add -noauto autofs map, for automatic handling of fstab entries
marked "noauto".

Relnotes:	yes
Sponsored by:	The FreeBSD Foundation
2015-05-21 13:42:37 +00:00
trasz
792cf9363b MFC r279954:
Get executable direct maps to work.

Sponsored by:	The FreeBSD Foundation
2015-05-21 13:41:08 +00:00
trasz
766efdb26c MFC r279953:
Rework the concat() algorithm to be correct in all cases.

Sponsored by:	The FreeBSD Foundation
2015-05-21 13:39:38 +00:00
trasz
936900ca6b MFC r279916:
Make "automount -LL -o whatever" present options in the same order
as used by automountd(8).

Sponsored by:	The FreeBSD Foundation
2015-05-21 13:37:48 +00:00
trasz
ffdd97ce45 MFC r279915:
Make concat() accept NULL arguments.

Sponsored by:	The FreeBSD Foundation
2015-05-21 13:36:00 +00:00
trasz
5d932fec11 MFC r279914:
Options from auto_master must be appended to options from maps,
not prepended.

Sponsored by:	The FreeBSD Foundation
2015-05-21 13:34:33 +00:00
trasz
decca16d96 MFC r279851:
Fix typo.

Sponsored by:	The FreeBSD Foundation
2015-05-21 13:33:06 +00:00
trasz
bb27657bec MFC r279846:
Properly pass options for direct maps.

Sponsored by:	The FreeBSD Foundation
2015-05-21 13:31:44 +00:00
trasz
9a9f3ecf67 MFC r279845:
Fix handling of direct maps, broken in r275756.  Previously, running
automount(8) would unmount direct map trigger nodes every second time.

Sponsored by:	The FreeBSD Foundation
2015-05-21 13:29:34 +00:00
trasz
b8ffded4a6 MFC r279843:
Refactor.

Sponsored by:	The FreeBSD Foundation
2015-05-21 13:26:52 +00:00
trasz
938b0cc7dd MFC r279813:
Make things more readable; no functional changes.

Sponsored by:	The FreeBSD Foundation
2015-05-21 13:25:28 +00:00
trasz
c0941dd28e MFC r279812:
Remove some particularly bad code; no functional changes.

MFC r279815:

Erm, revert chunk committed by mistake.

Sponsored by:	The FreeBSD Foundation
2015-05-21 13:23:49 +00:00