freebsd kernel with SKQ
Go to file
Simon J. Gerraty 212e103f2f veloader use vectx API for kernel and modules
The vectx API, computes the hash for verifying a file as it is read.
This avoids the overhead of reading files twice - once to verify, then
again to load.

For doing an install via loader, avoiding the need to rewind
large files is critical.

This API is only used for modules, kernel and mdimage as these are the
biggest files read by the loader.
The reduction in boot time depends on how expensive the I/O is
on any given platform.  On a fast VM we see 6% improvement.

For install via loader the first file to be verified is likely to be the
kernel, so some of the prep work (finding manifest etc) done by
verify_file() needs to be factored so it can be reused for
vectx_open().

For missing or unrecognized fingerprint entries, we fail
in vectx_open() unless verifying is disabled.

Otherwise fingerprint check happens in vectx_close() and
since this API is only used for files which must be verified
(VE_MUST) we panic if we get an incorrect hash.

Reviewed by:	imp,tsoome
MFC after:	1 week
Sponsored by:	Juniper Networks
Differential Revision:	https://reviews.freebsd.org//D23827
2020-03-09 15:48:53 +00:00
bin sh: fix read builtin on 32-bit systems 2020-02-22 03:14:05 +00:00
cddl Do not load dtraceall.ko if dtrace.ko is already loaded. 2020-02-28 17:05:27 +00:00
contrib readelf: print GNU Build-ID 2020-03-06 17:24:51 +00:00
crypto Add a note about deleted files in OpenSSH upgrade instructions 2020-02-25 22:15:25 +00:00
etc Finish removal of bktr 2020-03-01 20:37:42 +00:00
gnu retire in-tree GPL dtc devicetree compiler 2020-02-29 17:10:54 +00:00
include Import ntp-4.2.8p14. 2020-03-04 13:59:29 +00:00
kerberos5 Update Makefile.depend files 2019-12-11 17:37:53 +00:00
lib veloader use vectx API for kernel and modules 2020-03-08 17:42:42 +00:00
libexec tftpd: tests: raise targeted cstd to c11 2020-03-05 22:45:16 +00:00
release pkgbase: remove logic for _profile packages 2020-03-02 15:58:50 +00:00
rescue Remove unused defines since r147075 2019-07-12 04:44:50 +00:00
sbin Align the buffer to the alignment of the structure we expect. 2020-03-05 21:01:47 +00:00
secure pkgbase: fix caroot packaging and add post-install script 2020-01-29 18:47:08 +00:00
share arch.7: remove note about GCC 4.2.1 removal date 2020-03-08 21:30:55 +00:00
stand veloader use vectx API for kernel and modules 2020-03-09 15:48:53 +00:00
sys make lacp's use_numa hashing aware of send tags 2020-03-09 13:44:51 +00:00
targets retire in-tree GPL dtc devicetree compiler 2020-02-29 17:10:54 +00:00
tests fusefs: fix fsync for files with multiple open handles 2020-03-09 01:57:21 +00:00
tools Add extremely useful calendar(1) application to FreeBSD 2020-03-03 00:20:08 +00:00
usr.bin Fix an issue of net.inet.igmp.stats handler. 2020-03-07 08:41:10 +00:00
usr.sbin MFV r358616: 2020-03-04 21:45:12 +00:00
.arcconfig
.arclint
.cirrus.yml Cirrus-CI: increase timeout to 120m 2020-02-19 15:56:40 +00:00
.clang-format Add a basic clang-format configuration file 2019-06-07 15:23:52 +00:00
.gitattributes Add a basic clang-format configuration file 2019-06-07 15:23:52 +00:00
.gitignore .gitignore: Add LINT kernel configurations generated into SRCDIR 2019-08-10 18:22:22 +00:00
COPYRIGHT Import ntp-4.2.8p14. 2020-03-04 13:59:29 +00:00
LOCKS LOCKS: update current locks 2018-06-09 03:08:04 +00:00
MAINTAINERS Move all sources from the llvm project into contrib/llvm-project. 2019-12-20 19:53:05 +00:00
Makefile Per the firm plan, start to remove sparc64 2020-02-02 11:37:27 +00:00
Makefile.inc1 retire in-tree GPL dtc devicetree compiler 2020-02-29 17:10:54 +00:00
Makefile.libcompat libcompat: build 32-bit rtld and ldd as part of "everything" 2019-11-07 22:58:10 +00:00
Makefile.sys.inc
ObsoleteFiles.inc Remove duplicate usr/libexec/cc1plus entry from ObsoleteFiles.inc. 2020-03-05 17:53:38 +00:00
README README: add generic notes about GENERIC and NOTES 2018-06-17 19:44:24 +00:00
README.md README: add generic notes about GENERIC and NOTES 2018-06-17 19:44:24 +00:00
RELNOTES Add elf2aout removal 2020-02-06 18:00:50 +00:00
UPDATING Remove bktr(4) 2020-03-01 19:15:03 +00:00

FreeBSD Source:

This is the top level of the FreeBSD source directory. This file was last revised on: FreeBSD

FreeBSD is an operating system used to power modern servers, desktops, and embedded platforms. A large community has continually developed it for more than thirty years. Its advanced networking, security, and storage features have made FreeBSD the platform of choice for many of the busiest web sites and most pervasive embedded networking and storage devices.

For copyright information, please see the file COPYRIGHT in this directory. Additional copyright information also exists for some sources in this tree - please see the specific source directories for more information.

The Makefile in this directory supports a number of targets for building components (or all) of the FreeBSD source tree. See build(7), config(8), https://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/makeworld.html, and https://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/kernelconfig.html for more information, including setting make(1) variables.

Source Roadmap:

bin		System/user commands.

cddl		Various commands and libraries under the Common Development
		and Distribution License.

contrib		Packages contributed by 3rd parties.

crypto		Cryptography stuff (see crypto/README).

etc		Template files for /etc.

gnu		Various commands and libraries under the GNU Public License.
		Please see gnu/COPYING* for more information.

include		System include files.

kerberos5	Kerberos5 (Heimdal) package.

lib		System libraries.

libexec		System daemons.

release		Release building Makefile & associated tools.

rescue		Build system for statically linked /rescue utilities.

sbin		System commands.

secure		Cryptographic libraries and commands.

share		Shared resources.

stand		Boot loader sources.

sys		Kernel sources.

sys/<arch>/conf Kernel configuration files. GENERIC is the configuration
		used in release builds. NOTES contains documentation of
		all possible entries.

tests		Regression tests which can be run by Kyua.  See tests/README
		for additional information.

tools		Utilities for regression testing and miscellaneous tasks.

usr.bin		User commands.

usr.sbin	System administration commands.

For information on synchronizing your source tree with one or more of the FreeBSD Project's development branches, please see:

https://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/current-stable.html