freebsd kernel with SKQ
Go to file
Jonathan T. Looney 1e9f3b734e Implement a limit on on the number of IPv6 reassembly queues per bucket.
There is a hashing algorithm which should distribute IPv6 reassembly
queues across the available buckets in a relatively even way. However,
if there is a flaw in the hashing algorithm which allows a large number
of IPv6 fragment reassembly queues to end up in a single bucket, a per-
bucket limit could help mitigate the performance impact of this flaw.

Implement such a limit, with a default of twice the maximum number of
reassembly queues divided by the number of buckets. Recalculate the
limit any time the maximum number of reassembly queues changes.
However, allow the user to override the value using a sysctl
(net.inet6.ip6.maxfragbucketsize).

Reviewed by:	jhb
Security:	FreeBSD-SA-18:10.ip
Security:	CVE-2018-6923
2018-08-14 17:27:41 +00:00
bin ls(1): Enable colors with COLORTERM is set in the environment 2018-08-08 21:51:19 +00:00
cddl libbe(3)/bectl(8): Remove now-redundant include paths 2018-08-13 05:01:19 +00:00
contrib MFV r337744: 2018-08-14 11:42:32 +00:00
crypto Merge upstream patch to unbreak tunnel forwarding. 2018-05-16 14:04:39 +00:00
etc Move inetd.conf to usr.sbin/inetd/ 2018-08-12 13:29:40 +00:00
gnu Update libstdc++ configuration. 2018-07-16 18:53:28 +00:00
include Import latest DTS files from Linux 4.18 2018-08-13 05:53:54 +00:00
kerberos5 krb5-config build: Remove gratuitous escaping 2018-08-12 00:06:21 +00:00
lib Add library and kernel support for AMD Family 17h counters 2018-08-14 05:18:43 +00:00
libexec Remove pointless comment. 2018-08-03 10:59:05 +00:00
release Add a space between a variable and escaped new line. 2018-08-13 17:24:31 +00:00
rescue
sbin Add init_exec kenv(1) variable, to make init(8) execute a file 2018-08-14 11:01:52 +00:00
secure Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
share Add good description of init and lock devices from sio to uart. 2018-08-14 13:52:10 +00:00
stand Add init_exec kenv(1) variable, to make init(8) execute a file 2018-08-14 11:01:52 +00:00
sys Implement a limit on on the number of IPv6 reassembly queues per bucket. 2018-08-14 17:27:41 +00:00
targets Remove special cases for armeb in the build. 2018-07-17 23:23:54 +00:00
tests pf tests: Basic test for 'set skip in $groupname' 2018-08-11 16:41:07 +00:00
tools Make distribution now happens from top of source tree. 2018-08-10 06:28:25 +00:00
usr.bin tftp: Close a resource leak when putting files 2018-08-14 17:20:31 +00:00
usr.sbin Add the "autoro" flag to /media. This makes it attempt to mount 2018-08-14 13:52:08 +00:00
.arcconfig
.arclint
.gitattributes Remove spuriously added svn properties 2018-08-02 18:37:02 +00:00
.gitignore Ignore _.universe-toolchain file. 2018-07-01 13:50:37 +00:00
COPYRIGHT Remove 'All Rights Reserved' from the collection copyright and templates. 2018-05-09 02:02:49 +00:00
LOCKS LOCKS: update current locks 2018-06-09 03:08:04 +00:00
MAINTAINERS Add pointer to freebsd-numerics for libm. 2018-07-16 15:29:32 +00:00
Makefile As discussed several times on freebsd-arch, start to decommission armeb. 2018-07-17 23:23:34 +00:00
Makefile.inc1 libbe(3)/bectl(8): More SYSROOT/GCC build fixes 2018-08-11 22:45:39 +00:00
Makefile.libcompat Install the 32-bit compat sanitizer libraries. 2018-08-03 18:52:51 +00:00
Makefile.sys.inc
ObsoleteFiles.inc Add a few forgotten files to ObsoleteFiles.inc: 2018-07-25 17:14:05 +00:00
README README: add generic notes about GENERIC and NOTES 2018-06-17 19:44:24 +00:00
README.md README: add generic notes about GENERIC and NOTES 2018-06-17 19:44:24 +00:00
UPDATING Switch the default pager for most commands to less 2018-08-08 19:24:20 +00:00

FreeBSD Source:

This is the top level of the FreeBSD source directory. This file was last revised on: FreeBSD

FreeBSD is an operating system used to power modern servers, desktops, and embedded platforms. A large community has continually developed it for more than thirty years. Its advanced networking, security, and storage features have made FreeBSD the platform of choice for many of the busiest web sites and most pervasive embedded networking and storage devices.

For copyright information, please see the file COPYRIGHT in this directory. Additional copyright information also exists for some sources in this tree - please see the specific source directories for more information.

The Makefile in this directory supports a number of targets for building components (or all) of the FreeBSD source tree. See build(7), config(8), https://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/makeworld.html, and https://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/kernelconfig.html for more information, including setting make(1) variables.

Source Roadmap:

bin		System/user commands.

cddl		Various commands and libraries under the Common Development
		and Distribution License.

contrib		Packages contributed by 3rd parties.

crypto		Cryptography stuff (see crypto/README).

etc		Template files for /etc.

gnu		Various commands and libraries under the GNU Public License.
		Please see gnu/COPYING* for more information.

include		System include files.

kerberos5	Kerberos5 (Heimdal) package.

lib		System libraries.

libexec		System daemons.

release		Release building Makefile & associated tools.

rescue		Build system for statically linked /rescue utilities.

sbin		System commands.

secure		Cryptographic libraries and commands.

share		Shared resources.

stand		Boot loader sources.

sys		Kernel sources.

sys/<arch>/conf Kernel configuration files. GENERIC is the configuration
		used in release builds. NOTES contains documentation of
		all possible entries.

tests		Regression tests which can be run by Kyua.  See tests/README
		for additional information.

tools		Utilities for regression testing and miscellaneous tasks.

usr.bin		User commands.

usr.sbin	System administration commands.

For information on synchronizing your source tree with one or more of the FreeBSD Project's development branches, please see:

https://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/current-stable.html