d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
337a0778fc
freebsd-skq/sys
History
kp 337a0778fc pf: Improve ioctl validation for DIOCRGETTABLES, DIOCRGETTSTATS, DIOCRCLRTSTATS and DIOCRSETTFLAGS 
These ioctls can process a number of items at a time, which puts us at
risk of overflow in mallocarray() and of impossibly large allocations
even if we don't overflow.

Limit the allocation to required size (or the user allocation, if that's
smaller). That does mean we need to do the allocation with the rules
lock held (so the number doesn't change while we're doing this), so it
can't M_WAITOK.

MFC after:	1 week
2018-04-06 15:54:30 +00:00
..
amd64 remove GiB/MiB macros from param.h 2018-04-06 11:20:06 +00:00
arm aw_sid(4): Use prctl read for all reads when it's required 2018-04-06 15:17:09 +00:00
arm64 Add support for the Coresight technology from ARM Ltd. 2018-04-05 15:45:54 +00:00
bsm
cam Flag when we have a pending TUR. Don't schedule another one when we 2018-03-23 16:23:15 +00:00
cddl 9434 Speculative prefetch is blocked by device removal code. 2018-04-03 21:16:41 +00:00
compat Fix the definitions of get_cpu() and put_cpu(). 2018-04-05 17:26:03 +00:00
conf Add support for the Coresight technology from ARM Ltd. 2018-04-05 15:45:54 +00:00
contrib Import CK as of commit b19ed4c6a56ec93215ab567ba18ba61bf1cfbac8 2018-04-02 23:40:50 +00:00
crypto opencrypto: Integrate Chacha20 algorithm into OCF 2018-03-29 04:02:50 +00:00
ddb db_script_exec: use a saved script name when reporting commands executed 2018-03-04 13:27:21 +00:00
dev In cases where an application issues certain IPMI commands at a high 2018-04-06 15:15:21 +00:00
dts Match Marvell Armada38X PCIE ranges in dts with Linux 2018-04-04 13:01:14 +00:00
fs Add isoboot(8) for booting BIOS systems from HDDs containing ISO images. 2018-04-05 19:40:46 +00:00
gdb amd64: Protect the kernel text, data, and BSS by setting the RW/NX bits 2018-03-06 14:28:37 +00:00
geom Squash error from geom by sizing ident strings to DISK_IDENT_SIZE. 2018-04-05 13:56:40 +00:00
gnu bwn(4): txpid2g/txpid5g[lh] are not defined after sromrev 7; the default 2018-02-13 17:43:54 +00:00
i386 x86: improve reservation of AP trampoline memory 2018-04-05 14:39:51 +00:00
isa Revert r330780, it was improperly tested and results in taking a spin 2018-03-11 20:13:15 +00:00
kern Added SAL annotatations to system calls. 2018-04-05 20:31:45 +00:00
kgssapi kgssapi: Remove trivial deadcode 2018-02-14 00:12:03 +00:00
libkern iconv uses strlen directly on user supplied memory 2018-02-26 18:23:36 +00:00
mips bhnd(4): Use the new BHND_CAP_BP64 capability flag to exclude DMA 2018-03-29 19:48:50 +00:00
modules Add nvme_da back. 2018-04-04 02:37:05 +00:00
net pf: Improve ioctl validation for DIOCRGETTABLES, DIOCRGETTSTATS, DIOCRCLRTSTATS and DIOCRSETTFLAGS 2018-04-06 15:54:30 +00:00
net80211 Use an accessor function to access ifr_data. 2018-03-30 18:50:13 +00:00
netgraph Correct pseudo misspelling in sys/ comments 2018-02-23 18:15:50 +00:00
netinet Fix kernel memory disclosure in tcp_ctloutput 2018-04-04 21:12:35 +00:00
netinet6 Document and enforce assumptions about struct (in6_)ifreq. 2018-03-30 21:38:53 +00:00
netipsec Set the proper vnet in IPsec callback functions. 2018-03-20 17:05:23 +00:00
netpfil pf: Improve ioctl validation for DIOCRGETTABLES, DIOCRGETTSTATS, DIOCRCLRTSTATS and DIOCRSETTFLAGS 2018-04-06 15:54:30 +00:00
netsmb Unsign some values related to allocation. 2018-01-22 02:08:10 +00:00
nfs Remove infrastructure for token-ring networks. 2018-03-28 23:33:26 +00:00
nfsclient
nfsserver
nlm Use syscall_helper_register() to register syscalls and initialize though 2018-02-10 01:09:22 +00:00
ofed Improve copy-and-pasted versions of SIOCGIFADDR. 2018-03-27 20:51:49 +00:00
opencrypto cryptosoft: Remove a dead store 2018-04-03 22:11:39 +00:00
powerpc Correct the ilog2() for calculating memory sizes. 2018-04-04 02:13:27 +00:00
riscv Rename assym.s to assym.inc 2018-03-20 17:58:51 +00:00
rpc Do pass removing some write-only variables from the kernel. 2017-12-25 04:48:39 +00:00
security Use an accessor function to access ifr_data. 2018-03-30 18:50:13 +00:00
sparc64 Mark psycho interrupts as MPSAFE. It's safe to do so now that we don't 2018-03-21 14:47:17 +00:00
sys Let syslog(3) use RFC 5424. 2018-04-06 13:00:45 +00:00
teken sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
tests
tools Add dtb overlays support 2018-03-24 21:30:24 +00:00
ufs Renumber soft-update types starting at 1 instead of 0 to avoid confusion 2018-04-05 00:32:01 +00:00
vm Ensure the background laundering threshold is positive after a scan. 2018-04-02 15:07:41 +00:00
x86 remove GiB/MiB macros from param.h 2018-04-06 11:20:06 +00:00
xdr
xen sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
Makefile