FreeBSD Security Advisory FreeBSD-SA-18:01.ipsec [REVISED]

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 = FreeBSD-SA-18:01.ipsec [REVISED]Security Advisory The FreeBSD Project Topic:

Re: FreeBSD Security Advisory FreeBSD-SA-18:02.ntp

Harlan Stenn wrote: I still think y'all write great security advisories, and I keep aiming to get our "originals" up to your quality. High quality work to be sure. It is still unfortunate that time had to be wasted on this (and other ntpd advisories). Much time and insecurity could have been

Re: FreeBSD Security Advisory FreeBSD-SA-18:02.ntp

I still think y'all write great security advisories, and I keep aiming to get our "originals" up to your quality. I hope that whoever did this got a smile out of my '--- wait for it---' comment on the ntpq decodearr() description. I think I added that after many continuous hours' writing of

Re: FreeBSD Security Advisory FreeBSD-SA-18:02.ntp

Sorry about that. I thought I had everything but I missed that piece. They should be coming shortly. That said, I’m seeing reports of the ipsec patches for 10.x not compiling. Will look into that shortly. Gordon > On Mar 7, 2018, at 06:40, Philip M. Gollucci wrote: >

Re: FreeBSD Security Advisory FreeBSD-SA-18:02.ntp

The links are 404ing On Wed, Mar 7, 2018 at 2:10 AM, FreeBSD Security Advisories < security-advisor...@freebsd.org> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA512 > > > = > FreeBSD-SA-18:02.ntp

Re: [FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-18:02.ntp

> On 7 Mar 2018, at 12:50, David Chisnall wrote: > > Were these changes and the kernel changes tested together on Xen? After > updating to -p7, I get about 10 seconds of uptime on a Xen VM before the > kernel panics with a double fault and reboots. Disabling ntpd

Re: [FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-18:02.ntp

On Wed, 7 Mar 2018 14:30+0100, Remko Lodder wrote: > > On 7 Mar 2018, at 12:50, David Chisnall wrote: > > > > Were these changes and the kernel changes tested together on Xen? > > After updating to -p7, I get about 10 seconds of uptime on a Xen > > VM before the kernel

Re: [FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-18:02.ntp

> On 7 Mar 2018, at 12:50, David Chisnall wrote: > > Were these changes and the kernel changes tested together on Xen? After > updating to -p7, I get about 10 seconds of uptime on a Xen VM before the > kernel panics with a double fault and reboots. Disabling ntpd

Re: [FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-18:02.ntp

Were these changes and the kernel changes tested together on Xen? After updating to -p7, I get about 10 seconds of uptime on a Xen VM before the kernel panics with a double fault and reboots. Disabling ntpd results in a stable system. On an AMD system without a hypervisor, I don’t see any

Re: FreeBSD Security Advisory FreeBSD-SA-18:01.ipsec

Hi, the committed patch for FreeBSD 10.4 and 10.3 does not compile: /usr/src/sys/netipsec/xform_ah.c:622:43: error: use of undeclared identifier 'buf' ipsec_address(>sah->saidx.dst, buf, sizeof(buf)), ^