CVS commit: src/sys/opencrypto

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:16:29 UTC 2017 Modified Files: src/sys/opencrypto: ocryptodev.c Log Message: Avert userland-controlled integer overflow. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u -r1.9 -r1.10

CVS commit: src/sys/dev/pci

Module Name:src Committed By: msaitoh Date: Fri Jul 28 10:21:10 UTC 2017 Modified Files: src/sys/dev/pci: if_wm.c Log Message: Check some wm_nvm_read()'s return vale. To generate a diff of this commit: cvs rdiff -u -r1.534 -r1.535 src/sys/dev/pci/if_wm.c Please note

CVS commit: src/sys/dev/pci

Module Name:src Committed By: msaitoh Date: Fri Jul 28 10:21:10 UTC 2017 Modified Files: src/sys/dev/pci: if_wm.c Log Message: Check some wm_nvm_read()'s return vale. To generate a diff of this commit: cvs rdiff -u -r1.534 -r1.535 src/sys/dev/pci/if_wm.c Please note

CVS commit: src/sys/altq

Module Name:src Committed By: riastradh Date: Fri Jul 28 13:53:17 UTC 2017 Modified Files: src/sys/altq: altq_cbq.c altq_hfsc.c altq_jobs.c altq_priq.c Log Message: Zero buffers copied to userland to avoid stack disclosure. >From Ilja Van Sprundel. To generate a diff

CVS commit: src/sys/altq

Module Name:src Committed By: riastradh Date: Fri Jul 28 13:58:47 UTC 2017 Modified Files: src/sys/altq: altq_wfq.c Log Message: Reject negative indices. (Would be nice to change the types too, and it's *probably* safe to replace int by u_int, but I'm reluctant to touch

CVS commit: src/sys/arch/i386/conf

Module Name:src Committed By: maxv Date: Fri Jul 28 13:59:07 UTC 2017 Modified Files: src/sys/arch/i386/conf: GENERIC Log Message: Disable vm86 by default. The use case is limited, and the potential for damage is too high. This code is fragile, and relies on a certain

CVS commit: src/sys/arch/i386/conf

Module Name:src Committed By: maxv Date: Fri Jul 28 13:59:07 UTC 2017 Modified Files: src/sys/arch/i386/conf: GENERIC Log Message: Disable vm86 by default. The use case is limited, and the potential for damage is too high. This code is fragile, and relies on a certain

CVS commit: src/sys/altq

Module Name:src Committed By: riastradh Date: Fri Jul 28 13:58:47 UTC 2017 Modified Files: src/sys/altq: altq_wfq.c Log Message: Reject negative indices. (Would be nice to change the types too, and it's *probably* safe to replace int by u_int, but I'm reluctant to touch

CVS commit: src/sys/opencrypto

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:13:56 UTC 2017 Modified Files: src/sys/opencrypto: ocryptodev.c Log Message: Don't disclose uninitialized 32-bit word if cryptodev_session fails. >From Ilja Van Sprundel. To generate a diff of this commit: cvs

CVS commit: src/sys/opencrypto

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:13:56 UTC 2017 Modified Files: src/sys/opencrypto: ocryptodev.c Log Message: Don't disclose uninitialized 32-bit word if cryptodev_session fails. >From Ilja Van Sprundel. To generate a diff of this commit: cvs

CVS commit: src/sys/arch/i386/conf

Module Name:src Committed By: maxv Date: Fri Jul 28 14:13:13 UTC 2017 Modified Files: src/sys/arch/i386/conf: GENERIC XEN3_DOM0 XEN3_DOMU Log Message: Disable svr4 and ibcs2 by default. These options are not well-tested, of a limited use case, and the potential for

CVS commit: src/sys/altq

Module Name:src Committed By: riastradh Date: Fri Jul 28 13:53:17 UTC 2017 Modified Files: src/sys/altq: altq_cbq.c altq_hfsc.c altq_jobs.c altq_priq.c Log Message: Zero buffers copied to userland to avoid stack disclosure. >From Ilja Van Sprundel. To generate a diff

CVS commit: src/sys/dev/pci

Module Name:src Committed By: knakahara Date: Fri Jul 28 10:34:58 UTC 2017 Modified Files: src/sys/dev/pci: if_wm.c Log Message: add comment about confusing wm_rxeof() calling. pointed out by msaitoh@n.o. To generate a diff of this commit: cvs rdiff -u -r1.535 -r1.536

CVS commit: src/sys/kern

Module Name:src Committed By: martin Date: Fri Jul 28 12:28:48 UTC 2017 Modified Files: src/sys/kern: kern_malloc.c Log Message: Avoid integer overflow in kern_malloc(). Reported by Ilja Van Sprundel. XXX Time to kill malloc() completely! To generate a diff of this

CVS commit: src/sys/kern

Module Name:src Committed By: martin Date: Fri Jul 28 12:28:48 UTC 2017 Modified Files: src/sys/kern: kern_malloc.c Log Message: Avoid integer overflow in kern_malloc(). Reported by Ilja Van Sprundel. XXX Time to kill malloc() completely! To generate a diff of this

CVS commit: src/sys/arch/x86/x86

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:12:26 UTC 2017 Modified Files: src/sys/arch/x86/x86: cpu.c Log Message: cpu_trace is no more, remove vestige of it that broke ALL kernel. To generate a diff of this commit: cvs rdiff -u -r1.131 -r1.132

CVS commit: src/sys/arch/x86/x86

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:12:26 UTC 2017 Modified Files: src/sys/arch/x86/x86: cpu.c Log Message: cpu_trace is no more, remove vestige of it that broke ALL kernel. To generate a diff of this commit: cvs rdiff -u -r1.131 -r1.132

CVS commit: src/sys/arch/x86/x86

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:13:11 UTC 2017 Modified Files: src/sys/arch/x86/x86: pmap.c Log Message: #if DIAGNOSTIC panic ---> KASSERTMSG To generate a diff of this commit: cvs rdiff -u -r1.255 -r1.256 src/sys/arch/x86/x86/pmap.c Please

CVS commit: src/sys/arch/i386/conf

Module Name:src Committed By: maxv Date: Fri Jul 28 14:13:13 UTC 2017 Modified Files: src/sys/arch/i386/conf: GENERIC XEN3_DOM0 XEN3_DOMU Log Message: Disable svr4 and ibcs2 by default. These options are not well-tested, of a limited use case, and the potential for

CVS commit: src/sys/arch/x86/x86

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:13:11 UTC 2017 Modified Files: src/sys/arch/x86/x86: pmap.c Log Message: #if DIAGNOSTIC panic ---> KASSERTMSG To generate a diff of this commit: cvs rdiff -u -r1.255 -r1.256 src/sys/arch/x86/x86/pmap.c Please

CVS commit: src/sys/dev/pci

Module Name:src Committed By: knakahara Date: Fri Jul 28 10:34:58 UTC 2017 Modified Files: src/sys/dev/pci: if_wm.c Log Message: add comment about confusing wm_rxeof() calling. pointed out by msaitoh@n.o. To generate a diff of this commit: cvs rdiff -u -r1.535 -r1.536

CVS commit: src/sys/dev/usb

Module Name:src Committed By: skrll Date: Fri Jul 28 13:23:01 UTC 2017 Modified Files: src/sys/dev/usb: if_ural.c Log Message: Free the RX list if ural_alloc_rx_list fails part way through. Reported by Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u

CVS commit: src/sys/dev/usb

Module Name:src Committed By: skrll Date: Fri Jul 28 13:23:01 UTC 2017 Modified Files: src/sys/dev/usb: if_ural.c Log Message: Free the RX list if ural_alloc_rx_list fails part way through. Reported by Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u

CVS commit: src/sys/netsmb

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:20:46 UTC 2017 Modified Files: src/sys/netsmb: smb_usr.c Log Message: Reject allocations for too-small buffers from userland. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u -r1.16

CVS commit: src/sys/dev/ic

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:02:52 UTC 2017 Modified Files: src/sys/dev/ic: isp_netbsd.c Log Message: Reject out-of-bounds channel index. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u -r1.88 -r1.89

CVS commit: src/sys/dev/ic

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:02:52 UTC 2017 Modified Files: src/sys/dev/ic: isp_netbsd.c Log Message: Reject out-of-bounds channel index. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u -r1.88 -r1.89

CVS commit: src/share/man/man4/man4.pmax

Module Name:src Committed By: flxd Date: Fri Jul 28 15:58:24 UTC 2017 Modified Files: src/share/man/man4/man4.pmax: intro.4 sii.4 Log Message: * sii(4) was never used in VAXstation 3100 (uses si(4) and is NCR-based). * Reference scsi(4) in sii(4). * Add more machines to

CVS commit: src/share/man/man4/man4.pmax

Module Name:src Committed By: flxd Date: Fri Jul 28 15:58:24 UTC 2017 Modified Files: src/share/man/man4/man4.pmax: intro.4 sii.4 Log Message: * sii(4) was never used in VAXstation 3100 (uses si(4) and is NCR-based). * Reference scsi(4) in sii(4). * Add more machines to

CVS commit: src/sys/dev

Module Name:src Committed By: riastradh Date: Fri Jul 28 16:30:41 UTC 2017 Modified Files: src/sys/dev: vnd.c Log Message: Appease toxic bullshit warning from gcc. If you have a better way to write a useful bounds check that happens to always pass on LP64 but doesn't

CVS commit: src/sys/dev

Module Name:src Committed By: riastradh Date: Fri Jul 28 16:30:41 UTC 2017 Modified Files: src/sys/dev: vnd.c Log Message: Appease toxic bullshit warning from gcc. If you have a better way to write a useful bounds check that happens to always pass on LP64 but doesn't

CVS commit: src/sys/kern

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:37:23 UTC 2017 Modified Files: src/sys/kern: vfs_getcwd.c Log Message: Don't walk off the end of the dirent buffer. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u -r1.51 -r1.52

CVS commit: src/sys/kern

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:37:23 UTC 2017 Modified Files: src/sys/kern: vfs_getcwd.c Log Message: Don't walk off the end of the dirent buffer. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u -r1.51 -r1.52

CVS commit: src/sys/dev

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:52:53 UTC 2017 Modified Files: src/sys/dev: vndvar.h Log Message: Tweak whitespace to make this definition more greppable. To generate a diff of this commit: cvs rdiff -u -r1.35 -r1.36 src/sys/dev/vndvar.h

CVS commit: src/sys/dev

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:52:53 UTC 2017 Modified Files: src/sys/dev: vndvar.h Log Message: Tweak whitespace to make this definition more greppable. To generate a diff of this commit: cvs rdiff -u -r1.35 -r1.36 src/sys/dev/vndvar.h

CVS commit: src/share/man/man4/man4.pmax

Module Name:src Committed By: wiz Date: Fri Jul 28 16:11:03 UTC 2017 Modified Files: src/share/man/man4/man4.pmax: intro.4 Log Message: New sentence, new line. To generate a diff of this commit: cvs rdiff -u -r1.21 -r1.22 src/share/man/man4/man4.pmax/intro.4 Please

CVS commit: src/share/man/man4/man4.pmax

Module Name:src Committed By: wiz Date: Fri Jul 28 16:11:03 UTC 2017 Modified Files: src/share/man/man4/man4.pmax: intro.4 Log Message: New sentence, new line. To generate a diff of this commit: cvs rdiff -u -r1.21 -r1.22 src/share/man/man4/man4.pmax/intro.4 Please

CVS commit: src/sys/dev

Module Name:src Committed By: riastradh Date: Fri Jul 28 16:19:20 UTC 2017 Modified Files: src/sys/dev: vnd.c Log Message: Put in a litany of judicious bounds checks around vnd headers. Thought I was done with this crap after I rewrote vndcompress(1)! >From Ilja Van

CVS commit: src/sys/opencrypto

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:16:29 UTC 2017 Modified Files: src/sys/opencrypto: ocryptodev.c Log Message: Avert userland-controlled integer overflow. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u -r1.9 -r1.10

CVS commit: src/sys/netsmb

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:37:27 UTC 2017 Modified Files: src/sys/netsmb: smb_subr.c smb_subr.h smb_usr.c Log Message: Plug another overflow: refuse bogus sa_len from user. To generate a diff of this commit: cvs rdiff -u -r1.37 -r1.38

CVS commit: src/sys/netsmb

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:37:27 UTC 2017 Modified Files: src/sys/netsmb: smb_subr.c smb_subr.h smb_usr.c Log Message: Plug another overflow: refuse bogus sa_len from user. To generate a diff of this commit: cvs rdiff -u -r1.37 -r1.38

CVS commit: src/sys/compat/svr4

Module Name:src Committed By: riastradh Date: Fri Jul 28 16:55:48 UTC 2017 Modified Files: src/sys/compat/svr4: svr4_stream.c Log Message: Fix some of the multitudinous holes in svr4 streams. We should never have enabled this by default; it is a minefield. >From Ilja

CVS commit: src/sys/compat/svr4

Module Name:src Committed By: riastradh Date: Fri Jul 28 16:55:48 UTC 2017 Modified Files: src/sys/compat/svr4: svr4_stream.c Log Message: Fix some of the multitudinous holes in svr4 streams. We should never have enabled this by default; it is a minefield. >From Ilja

CVS commit: src/sys/arch/x86/pci

Module Name:src Committed By: maxv Date: Fri Jul 28 14:26:51 UTC 2017 Modified Files: src/sys/arch/x86/pci: msipic.c pci_addr_fixup.c pci_intr_machdep.c pci_msi_machdep.c Log Message: Don't include malloc.h. To generate a diff of this commit: cvs rdiff -u

CVS commit: src/sys/arch/x86/pci

Module Name:src Committed By: maxv Date: Fri Jul 28 14:26:51 UTC 2017 Modified Files: src/sys/arch/x86/pci: msipic.c pci_addr_fixup.c pci_intr_machdep.c pci_msi_machdep.c Log Message: Don't include malloc.h. To generate a diff of this commit: cvs rdiff -u

CVS commit: src/sys/netsmb

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:40:42 UTC 2017 Modified Files: src/sys/netsmb: smb_usr.c Log Message: Reject negative ioc_setupcnt. To generate a diff of this commit: cvs rdiff -u -r1.18 -r1.19 src/sys/netsmb/smb_usr.c Please note that diffs

CVS commit: src/sys/netsmb

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:40:42 UTC 2017 Modified Files: src/sys/netsmb: smb_usr.c Log Message: Reject negative ioc_setupcnt. To generate a diff of this commit: cvs rdiff -u -r1.18 -r1.19 src/sys/netsmb/smb_usr.c Please note that diffs

CVS commit: src/sys/netsmb

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:45:59 UTC 2017 Modified Files: src/sys/netsmb: smb_dev.c Log Message: Reject negative offset/count for smb read/write. Not clear that this is actually a problem for the kernel -- might overwrite user's buffers

CVS commit: src/sys/netsmb

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:45:59 UTC 2017 Modified Files: src/sys/netsmb: smb_dev.c Log Message: Reject negative offset/count for smb read/write. Not clear that this is actually a problem for the kernel -- might overwrite user's buffers

CVS commit: src/sys/compat/ibcs2

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:47:23 UTC 2017 Modified Files: src/sys/compat/ibcs2: ibcs2_exec_coff.c Log Message: Check for NUL termination within the buffer we have. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u

CVS commit: src/sys/compat/ibcs2

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:47:23 UTC 2017 Modified Files: src/sys/compat/ibcs2: ibcs2_exec_coff.c Log Message: Check for NUL termination within the buffer we have. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u

CVS commit: src/sys/compat/ibcs2

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:51:35 UTC 2017 Modified Files: src/sys/compat/ibcs2: ibcs2_exec_coff.c Log Message: Make sure we move forward over the buffer. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u -r1.28

Re: CVS commit: src/sys

On Fri, Jul 28, 2017 at 03:34:07PM +, Taylor R Campbell wrote: > Log Message: > Fail, don't panic, on bad dirents from file system. > > Controllable via puffs from userland. I hope the filesystem code itself would still panic on a corrupted filesystem ? On a server I want a panic on

CVS commit: src/sys/compat/svr4

Module Name:src Committed By: riastradh Date: Fri Jul 28 16:57:12 UTC 2017 Modified Files: src/sys/compat/svr4: svr4_lwp.c Log Message: Zero stack data before copyout. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u -r1.19 -r1.20

CVS commit: src/sys

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:34:07 UTC 2017 Modified Files: src/sys/compat/common: vfs_syscalls_12.c vfs_syscalls_43.c src/sys/compat/ibcs2: ibcs2_misc.c src/sys/compat/linux/common: linux_file64.c linux_misc.c

CVS commit: src/sys

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:34:07 UTC 2017 Modified Files: src/sys/compat/common: vfs_syscalls_12.c vfs_syscalls_43.c src/sys/compat/ibcs2: ibcs2_misc.c src/sys/compat/linux/common: linux_file64.c linux_misc.c

CVS commit: src/sys/compat/ibcs2

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:51:35 UTC 2017 Modified Files: src/sys/compat/ibcs2: ibcs2_exec_coff.c Log Message: Make sure we move forward over the buffer. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u -r1.28

CVS commit: src/sys/compat/svr4

Module Name:src Committed By: riastradh Date: Fri Jul 28 16:57:12 UTC 2017 Modified Files: src/sys/compat/svr4: svr4_lwp.c Log Message: Zero stack data before copyout. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u -r1.19 -r1.20

CVS commit: src/sys/arch/xen/xen

Module Name:src Committed By: cherry Date: Fri Jul 28 07:42:41 UTC 2017 Modified Files: src/sys/arch/xen/xen: pci_intr_machdep.c Log Message: APIC related macros are mixed with IOAPIC related ones. This needs separation. Until then, band-aid it. This fixes

CVS commit: src/sys/arch/xen/xen

Module Name:src Committed By: cherry Date: Fri Jul 28 07:42:41 UTC 2017 Modified Files: src/sys/arch/xen/xen: pci_intr_machdep.c Log Message: APIC related macros are mixed with IOAPIC related ones. This needs separation. Until then, band-aid it. This fixes

CVS commit: src/sys/dev/pci

Module Name:src Committed By: msaitoh Date: Fri Jul 28 09:12:40 UTC 2017 Modified Files: src/sys/dev/pci: if_wm.c Log Message: Qemu's e1000e emulation (82574L)'s SPI has only 64 words. I've never seen on real 82574 hardware with such small SPI ROM. Check

CVS commit: src/sys/dev/pci

Module Name:src Committed By: msaitoh Date: Fri Jul 28 09:12:40 UTC 2017 Modified Files: src/sys/dev/pci: if_wm.c Log Message: Qemu's e1000e emulation (82574L)'s SPI has only 64 words. I've never seen on real 82574 hardware with such small SPI ROM. Check

CVS commit: src/sys/netsmb

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:20:46 UTC 2017 Modified Files: src/sys/netsmb: smb_usr.c Log Message: Reject allocations for too-small buffers from userland. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u -r1.16

CVS commit: src/sys/dev/ic

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:49:55 UTC 2017 Modified Files: src/sys/dev/ic: ciss.c Log Message: Reject negative indices from userland. To generate a diff of this commit: cvs rdiff -u -r1.36 -r1.37 src/sys/dev/ic/ciss.c Please note that

CVS commit: src/sys/dev/ic

Module Name:src Committed By: riastradh Date: Fri Jul 28 14:49:55 UTC 2017 Modified Files: src/sys/dev/ic: ciss.c Log Message: Reject negative indices from userland. To generate a diff of this commit: cvs rdiff -u -r1.36 -r1.37 src/sys/dev/ic/ciss.c Please note that

CVS commit: src/sys/kern

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:16:39 UTC 2017 Modified Files: src/sys/kern: kern_ktrace.c Log Message: Clamp the length we use, not the length we don't. Avoids uninitialized memory disclosure to userland. >From Ilja Van Sprundel. To

CVS commit: src/sys/arch/amd64/conf

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:40:38 UTC 2017 Modified Files: src/sys/arch/amd64/conf: ALL Log Message: Add some more bogus compat options to amd64/ALL for compile-testing. To generate a diff of this commit: cvs rdiff -u -r1.60 -r1.61

CVS commit: src/sys/arch/amd64/conf

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:40:38 UTC 2017 Modified Files: src/sys/arch/amd64/conf: ALL Log Message: Add some more bogus compat options to amd64/ALL for compile-testing. To generate a diff of this commit: cvs rdiff -u -r1.60 -r1.61

CVS commit: src/sys/compat/ibcs2

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:50:04 UTC 2017 Modified Files: src/sys/compat/ibcs2: ibcs2_exec_coff.c Log Message: Make sure we have enough space in the buffer before reading it. >From Ilja Van Sprundel. To generate a diff of this commit:

CVS commit: src/sys/compat/ibcs2

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:50:04 UTC 2017 Modified Files: src/sys/compat/ibcs2: ibcs2_exec_coff.c Log Message: Make sure we have enough space in the buffer before reading it. >From Ilja Van Sprundel. To generate a diff of this commit:

CVS commit: src/sys/dev

Module Name:src Committed By: riastradh Date: Fri Jul 28 16:19:20 UTC 2017 Modified Files: src/sys/dev: vnd.c Log Message: Put in a litany of judicious bounds checks around vnd headers. Thought I was done with this crap after I rewrote vndcompress(1)! >From Ilja Van

CVS commit: src/sys/dev

Module Name:src Committed By: riastradh Date: Fri Jul 28 16:22:01 UTC 2017 Modified Files: src/sys/dev: vnd.c Log Message: Fix indentation. u_intN_t -> uintN_t. ntohl -> be32toh. No functional change intended. To generate a diff of this commit: cvs rdiff -u -r1.260

CVS commit: src/sys/dev

Module Name:src Committed By: riastradh Date: Fri Jul 28 16:22:01 UTC 2017 Modified Files: src/sys/dev: vnd.c Log Message: Fix indentation. u_intN_t -> uintN_t. ntohl -> be32toh. No functional change intended. To generate a diff of this commit: cvs rdiff -u -r1.260

Re: CVS commit: src/sys/netinet

On Fri, 28 Jul 2017, Maxime Villard wrote: Module Name:src Committed By: maxv Date: Fri Jul 28 19:16:41 UTC 2017 Modified Files: src/sys/netinet: tcp_timer.c tcp_usrreq.c tcp_var.h Log Message: Remove TCP_COMPAT_42. This feature is a workaround for a bug in the TCP

CVS commit: src/external/gpl3/gcc.old/dist/gcc/config/i386

Module Name:src Committed By: maya Date: Fri Jul 28 22:24:27 UTC 2017 Modified Files: src/external/gpl3/gcc.old/dist/gcc/config/i386: i386.c Log Message: Apply upstream patch: Incorrect codegen from rdseed intrinsic use (CVE-2017-11671) We should not expand call

CVS commit: src/external/gpl3/gcc/dist/gcc/config/i386

Module Name:src Committed By: maya Date: Fri Jul 28 22:23:05 UTC 2017 Modified Files: src/external/gpl3/gcc/dist/gcc/config/i386: i386.c Log Message: Apply upstream patch: Incorrect codegen from rdseed intrinsic use (CVE-2017-11671) We should not expand call arguments in

CVS commit: src/external/gpl3/gcc/dist/gcc/config/i386

Module Name:src Committed By: maya Date: Fri Jul 28 22:23:05 UTC 2017 Modified Files: src/external/gpl3/gcc/dist/gcc/config/i386: i386.c Log Message: Apply upstream patch: Incorrect codegen from rdseed intrinsic use (CVE-2017-11671) We should not expand call arguments in

Re: CVS commit: src/sys/arch/amd64/conf

On Fri, 28 Jul 2017, Maxime Villard wrote: Module Name:src Committed By: maxv Date: Fri Jul 28 16:10:29 UTC 2017 Modified Files: src/sys/arch/amd64/conf: GENERIC XEN3_DOM0 XEN3_DOMU Log Message: After a careful review, and all things considered, disable compat43 by

CVS commit: src/external/gpl3/gcc.old/dist/gcc/config/i386

Module Name:src Committed By: maya Date: Fri Jul 28 22:24:27 UTC 2017 Modified Files: src/external/gpl3/gcc.old/dist/gcc/config/i386: i386.c Log Message: Apply upstream patch: Incorrect codegen from rdseed intrinsic use (CVE-2017-11671) We should not expand call

CVS commit: src/sys/compat/svr4

Module Name:src Committed By: riastradh Date: Fri Jul 28 17:52:47 UTC 2017 Modified Files: src/sys/compat/svr4: svr4_stream.c Log Message: Check bounds in svr4_sys_putmsg. Check more svr4_strmcmd bounds. svr4 streams code is still a disaster. >From Ilja Van Sprundel.

CVS commit: src/sys/compat/svr4

Module Name:src Committed By: riastradh Date: Fri Jul 28 17:52:47 UTC 2017 Modified Files: src/sys/compat/svr4: svr4_stream.c Log Message: Check bounds in svr4_sys_putmsg. Check more svr4_strmcmd bounds. svr4 streams code is still a disaster. >From Ilja Van Sprundel.

CVS commit: src/sys/arch

Module Name:src Committed By: maxv Date: Fri Jul 28 19:26:16 UTC 2017 Modified Files: src/sys/arch/acorn32/conf: EB7500ATX GENERIC INSTALL LOWMEM_WSCONS NC src/sys/arch/amd64/conf: ALL src/sys/arch/amiga/conf: DRACO GENERIC GENERIC.in

CVS commit: src/sys/arch

Module Name:src Committed By: maxv Date: Fri Jul 28 19:26:16 UTC 2017 Modified Files: src/sys/arch/acorn32/conf: EB7500ATX GENERIC INSTALL LOWMEM_WSCONS NC src/sys/arch/amd64/conf: ALL src/sys/arch/amiga/conf: DRACO GENERIC GENERIC.in

CVS commit: src/sys/netinet

Module Name:src Committed By: maxv Date: Fri Jul 28 19:16:41 UTC 2017 Modified Files: src/sys/netinet: tcp_timer.c tcp_usrreq.c tcp_var.h Log Message: Remove TCP_COMPAT_42. This feature is a workaround for a bug in the TCP stack of BSD4.2. Having such features just does

CVS commit: src/sys/netinet

Module Name:src Committed By: maxv Date: Fri Jul 28 19:16:41 UTC 2017 Modified Files: src/sys/netinet: tcp_timer.c tcp_usrreq.c tcp_var.h Log Message: Remove TCP_COMPAT_42. This feature is a workaround for a bug in the TCP stack of BSD4.2. Having such features just does

CVS commit: src/doc

Module Name:src Committed By: wiz Date: Fri Jul 28 19:31:59 UTC 2017 Modified Files: src/doc: 3RDPARTY Log Message: binutils-2.29 out. To generate a diff of this commit: cvs rdiff -u -r1.1458 -r1.1459 src/doc/3RDPARTY Please note that diffs are not public domain; they

CVS commit: src/doc

Module Name:src Committed By: wiz Date: Fri Jul 28 19:31:59 UTC 2017 Modified Files: src/doc: 3RDPARTY Log Message: binutils-2.29 out. To generate a diff of this commit: cvs rdiff -u -r1.1458 -r1.1459 src/doc/3RDPARTY Please note that diffs are not public domain; they

Re: CVS commit: src/sys

> Date: Fri, 28 Jul 2017 17:59:23 +0200 > From: Manuel Bouyer > > On Fri, Jul 28, 2017 at 03:34:07PM +, Taylor R Campbell wrote: > > Log Message: > > Fail, don't panic, on bad dirents from file system. > > > > Controllable via puffs from userland. > > I hope the

CVS commit: src/sys/opencrypto

Module Name:src Committed By: riastradh Date: Fri Jul 28 17:14:04 UTC 2017 Modified Files: src/sys/opencrypto: ocryptodev.c Log Message: Avoid another userland-controlled integer overflow. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u -r1.10

CVS commit: src/sys/compat

Module Name:src Committed By: riastradh Date: Fri Jul 28 17:38:36 UTC 2017 Modified Files: src/sys/compat/svr4: svr4_signal.c src/sys/compat/svr4_32: svr4_32_signal.c Log Message: Fix indexing of svr4 signals. >From Ilja Van Sprundel. To generate a diff of this

CVS commit: src/sys/compat

Module Name:src Committed By: riastradh Date: Fri Jul 28 17:38:36 UTC 2017 Modified Files: src/sys/compat/svr4: svr4_signal.c src/sys/compat/svr4_32: svr4_32_signal.c Log Message: Fix indexing of svr4 signals. >From Ilja Van Sprundel. To generate a diff of this

CVS commit: src/sys/compat/svr4

Module Name:src Committed By: riastradh Date: Fri Jul 28 17:43:46 UTC 2017 Modified Files: src/sys/compat/svr4: svr4_stream.c Log Message: Feebly attempt to get this reference counting less bad. This svr4 streams code is bad and it should feel bad. >From Ilja Van

CVS commit: src/sys/compat/svr4

Module Name:src Committed By: riastradh Date: Fri Jul 28 17:43:46 UTC 2017 Modified Files: src/sys/compat/svr4: svr4_stream.c Log Message: Feebly attempt to get this reference counting less bad. This svr4 streams code is bad and it should feel bad. >From Ilja Van

CVS commit: src/sys/opencrypto

Module Name:src Committed By: riastradh Date: Fri Jul 28 17:14:04 UTC 2017 Modified Files: src/sys/opencrypto: ocryptodev.c Log Message: Avoid another userland-controlled integer overflow. >From Ilja Van Sprundel. To generate a diff of this commit: cvs rdiff -u -r1.10

CVS commit: src/sys/compat/ibcs2

Module Name:src Committed By: riastradh Date: Fri Jul 28 17:57:48 UTC 2017 Modified Files: src/sys/compat/ibcs2: ibcs2_ioctl.c Log Message: Zero buffers in ibcs2 ioctl to avoid disclosing stack to userland. >From Ilja Van Sprundel. To generate a diff of this commit:

CVS commit: src/sys/compat/ibcs2

Module Name:src Committed By: riastradh Date: Fri Jul 28 17:57:48 UTC 2017 Modified Files: src/sys/compat/ibcs2: ibcs2_ioctl.c Log Message: Zero buffers in ibcs2 ioctl to avoid disclosing stack to userland. >From Ilja Van Sprundel. To generate a diff of this commit:

CVS commit: src/doc

Module Name:src Committed By: wiz Date: Fri Jul 28 22:53:32 UTC 2017 Modified Files: src/doc: 3RDPARTY Log Message: expat-2.2.2 security fix release out. To generate a diff of this commit: cvs rdiff -u -r1.1459 -r1.1460 src/doc/3RDPARTY Please note that diffs are not

CVS commit: src/doc

Module Name:src Committed By: wiz Date: Fri Jul 28 22:53:32 UTC 2017 Modified Files: src/doc: 3RDPARTY Log Message: expat-2.2.2 security fix release out. To generate a diff of this commit: cvs rdiff -u -r1.1459 -r1.1460 src/doc/3RDPARTY Please note that diffs are not

Re: CVS commit: src/sys/netinet

Date:Fri, 28 Jul 2017 19:16:41 + From:"Maxime Villard" Message-ID: <20170728191641.cf10cf...@cvs.netbsd.org> | Remove TCP_COMPAT_42. This feature is a workaround for a bug in the TCP | stack of BSD4.2. Having such features just does not make

CVS commit: src/sys/kern

Module Name:src Committed By: riastradh Date: Fri Jul 28 15:16:39 UTC 2017 Modified Files: src/sys/kern: kern_ktrace.c Log Message: Clamp the length we use, not the length we don't. Avoids uninitialized memory disclosure to userland. >From Ilja Van Sprundel. To

CVS commit: src/sys/arch/amd64/conf

Module Name:src Committed By: maxv Date: Fri Jul 28 16:10:29 UTC 2017 Modified Files: src/sys/arch/amd64/conf: GENERIC XEN3_DOM0 XEN3_DOMU Log Message: After a careful review, and all things considered, disable compat43 by default on amd64. The use case is limited, the

  1   2   >