csjp2005-11-05 23:38:08 UTC
FreeBSD src repository
Modified files:
usr.bin/fstatfstat.c
Log:
Un-break processing of device major/minor values with fstat -n. We do
this by accessing the cdev_priv element of the cdev structure. Looking
forward we need a better way t
csjp2005-11-08 16:28:19 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/dev/aac aac.c
Log:
MFC: Pickup I/O locks around aac_alloc_sync_fib().
Revision ChangesPath
1.109.2.4 +6 -0 src/sys/dev/aac/aac.c
__
csjp2005-11-08 16:38:21 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/net if_mib.c
Log:
MFC Log:
Before we export network interface data through the ifmibdata structure,
OR the flags bits with the driver managed status flags.
csjp2005-11-08 17:11:03 UTC
FreeBSD src repository
Modified files:
sys/kern kern_exit.c
Log:
Giant clean up for exit(2)
-Change unconditional aquisition of Giant to only pickup Giant if the vnode
for the controlling tty resides on a non-mpsafe file system.
csjp2005-11-12 20:55:59 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/kern kern_acl.c
sys/sys acl.h kernel.h
sys/ufs/ufs ufs_vnops.c
Log:
MFC Log:
Convert the primary ACL allocator from malloc(9) to u
csjp2005-11-12 20:58:03 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
usr.bin/fstatfstat.c
Log:
MFC Log:
Un-break processing of device major/minor values with fstat -n. We do
this by accessing the cdev_priv element of the cdev structure
csjp2005-11-12 21:00:00 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
usr.bin/lockflockf.c
Log:
Sync with head:
-style(9) nits
MFC Log:
Fix long standing race condition associated with how lockf uses open(2)
for mutual exclusio
csjp2005-11-12 21:21:46 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
bin/cp cp.c extern.h utils.c
bin/mv mv.c
Log:
MFC Log:
Attempt to complete the userspace integration of POSIX.1e extended ACLs.
This includes
csjp2005-11-13 03:12:32 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/kern kern_jail.c
Log:
MFC revision 1.51
Giant push down.
Revision ChangesPath
1.50.2.1 +15 -16src/sys/kern/kern_jail.c
_
csjp2005-11-13 03:14:01 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/kern kern_acl.c
Log:
MFC revision 1.47
Giant push down
Revision ChangesPath
1.45.8.2 +45 -44src/sys/kern/kern_acl.c
csjp2005-11-21 01:12:38 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/kern syscalls.master vfs_syscalls.c
Log:
MFC sycalls.master revision 1.199
MFC vfs_syscalls.c revision 1.395
- Push Giant down in for extended attributes
- Ma
csjp2005-11-21 01:36:28 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/kern init_sysent.c syscalls.c
sys/sys syscall.h syscall.mk sysproto.h
Log:
Regenerate "generated from" portions of various files after a:
make s
csjp2005-11-22 02:06:59 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/security/mac mac_process.c
Log:
MFC revision 1.111
MFC revision 1.110
MFC revision 1.109
- Lock the object while traversing the list of it's backing objects
- Use t
csjp2005-11-22 02:12:09 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/kern kern_mac.c
Log:
MFC revision 1.119
Giant push down
Revision ChangesPath
1.117.2.1 +27 -34src/sys/kern/kern_mac.c
__
csjp2005-11-29 04:12:32 UTC
FreeBSD ports repository (src committer)
Modified files:
net/ipex Makefile distinfo
Log:
Update 2.4.4 -> 3.0
Approved by:lawrance
Revision ChangesPath
1.14 +5 -1 ports/net/ipex/Makefile
1.10 +3 -2
held, and it looks like
bpf_jitter() will call malloc with M_WAITOK. Are you sure you want
to do this?
--
Christian S.J. Peron
[EMAIL PROTECTED]
FreeBSD Committer
FreeBSD Security Team
___
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mai
csjp2005-12-10 20:14:42 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/kern kern_exit.c
Log:
MFC revision 1.272
Giant clean up for exit(2)
Revision ChangesPath
1.263.2.5 +7 -7 src/sys/kern/kern_exit.c
csjp2005-12-18 19:38:43 UTC
FreeBSD src repository
Modified files:
usr.bin/netstat netstat.1
Log:
Provide some basic documentation explaining what the bpf(4) flags are
supposed to mean. Also, add an external references for bpf now that we
reference flags from that ma
t sure that these operations are MP safe yet, in which case we might
run into problems without the Giant aquisition.
--
Christian S.J. Peron
[EMAIL PROTECTED]
FreeBSD Committer
FreeBSD Security Team
___
cvs-all@freebsd.org mailing list
http://lists.fre
csjp2005-12-27 23:34:13 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
usr.bin/netstat Makefile main.c netstat.1 netstat.h
Added files: (Branch: RELENG_6)
usr.bin/netstat bpf.c
Log:
MFC bpf stats functionality into netstat
csjp2005-12-30 06:16:21 UTC
FreeBSD src repository
Modified files:
lib/libutil login_class.3
Log:
Document the LOGIN_SETMAC setusercontext(3) flag. While we are here, drop
in an external reference to mac_set_proc(3).
Revision ChangesPath
1.18 +5 -0
csjp2005-12-30 20:10:21 UTC
FreeBSD src repository
Modified files:
usr.bin/mktemp mktemp.1
Log:
mkstemp(3) and friends use a combination of base 10 digits, along
with upper and lower case letters from the English alphabet. Change
the number of possible file names mk
csjp2005-12-31 05:06:59 UTC
FreeBSD src repository
Modified files:
sys/security/mac_biba mac_biba.c
Log:
Introduce a new sysctl variable:
security.mac.biba.interfaces_equal
If non-zero, all network interfaces be created with the label:
biba/equal(equal-equal)
csjp2006-01-15 01:02:20 UTC
FreeBSD src repository
Modified files:
sys/security/mac_bsdextended mac_bsdextended.c
Log:
Fix potential overrun of static stack allocated array which stores
the rules. If an array is N elements large, we can only access
elements 0..(N-1).
csjp2006-01-15 01:55:45 UTC
FreeBSD src repository
Modified files:
sys/kern vfs_aio.c
Log:
Initialize ki to p->p_aioinfo after we know it's going to be referencing
a valid kaioinfo structure. This avoids a potential NULL pointer dereference.
Found with:
csjp2006-01-15 20:14:11 UTC
FreeBSD src repository
Modified files:
sys/kern vfs_mount.c
Log:
vfs_busy can only return something useful if MNTK_UNMOUNT has been set.
Since we are using vfs_busy() on a freshly allocated mount structure, use
(void) to show that w
csjp2006-01-15 20:30:14 UTC
FreeBSD src repository
Modified files:
lib/libkvm kvm.c
Log:
Validate that the supplied file is not empty before trying mmap(2) it
and access the pages associated with it.
Submitted by: Wojciech A. Koszek
PR: bin/91
csjp2006-01-16 17:03:21 UTC
FreeBSD src repository
Modified files:
sys/netsmb smb_subr.c
Log:
Although we check the return value of copyin(9) while determaining how
long the string is in userspace, afterwards we call malloc(M_WAITOK),
which could sleep for an un
csjp2006-01-20 03:21:25 UTC
FreeBSD src repository
Modified files:
sys/netinet ip_fw2.c
Log:
Destroy the dynamic rule zone in the event that we fail to insert the
initial default rule.
MFC after: 1 week
Revision ChangesPath
1.122 +1 -0
csjp2006-01-20 05:35:28 UTC
FreeBSD src repository
Modified files:
sys/netinet ip_fw2.c
Log:
- Change the return type for init_tables from void to int so we can propagate
errors from rn_inithead back to the ipfw initialization function.
- Check return value of
csjp2006-01-24 04:05:48 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
lib/libkvm kvm.c
Log:
MFC revision 1.28
date: 2006/01/15 20:30:13; author: csjp; state: Exp; lines: +5 -0
Validate that the supplied file is not empty before trying m
csjp2006-01-24 04:07:07 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
lib/libutil login_class.3
Log:
MFC revision 1.18
date: 2005/12/30 06:16:20; author: csjp; state: Exp; lines: +5 -0
Document the LOGIN_SETMAC setusercontext(3) flag. Wh
csjp2006-01-24 04:08:48 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/netsmb smb_subr.c
Log:
MFC revision 1.20
date: 2006/01/16 17:03:21; author: csjp; state: Exp; lines: +6 -2
Although we check the return value of copyin(9) while d
csjp2006-01-24 04:10:26 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/security/mac_biba mac_biba.c
Log:
MFC the security.mac.biba.interfaces_equal sysctl variable
Revision ChangesPath
1.87.2.4 +6 -1 src/sys/security/mac_biba/mac_bi
csjp2006-01-24 04:11:45 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/security/mac_bsdextended mac_bsdextended.c
Log:
MFC revision 1.27
date: 2006/01/15 01:02:20; author: csjp; state: Exp; lines: +1 -1
Fix potential overrun of static stack al
csjp2006-01-24 04:13:02 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
usr.bin/mktemp mktemp.1
Log:
MFC revision 1.20
date: 2005/12/30 20:10:21; author: csjp; state: Exp; lines: +1 -1
mkstemp(3) and friends use a combination of base 10 digit
csjp2006-01-24 04:20:24 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/kern vfs_mount.c
Log:
MFC revision 1.214
date: 2006/01/15 20:14:11; author: csjp; state: Exp; lines: +1 -1
vfs_busy can only return something useful if MNTK_UNM
csjp2006-01-27 02:39:46 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/netinet ip_fw2.c
Log:
MFC revision 1.122
date: 2006/01/20 03:21:25; author: csjp; state: Exp; lines: +1 -0
Destroy the dynamic rule zone in the event that we fail
in -STABLE/-RELEASE when they are
ready.
--
Christian S.J. Peron
[EMAIL PROTECTED]
FreeBSD Committer
FreeBSD Security Team
___
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/cvs-all
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
csjp2006-01-28 19:24:40 UTC
FreeBSD src repository
Modified files:
sys/nfsservernfs.h nfs_serv.c nfs_srvsock.c
nfs_syscalls.c
Log:
Manage the ucred for the NFS server using the crget/crfree API defined in
kern_prot.c. This API handles refer
csjp2006-01-31 17:17:45 UTC
FreeBSD src repository
Modified files:
sys/kern tty_pty.c
Log:
Allow root in the host environment to open ptys within jailed environments.
This logic change was introduced in revision 1.74:
Correct an oversight in jail() that all
csjp2006-01-31 22:19:37 UTC
FreeBSD src repository
Modified files:
sys/kern tty_pts.c
Log:
Allow root to open prison pts devices too.
Pointed out by: rwatson
Revision ChangesPath
1.7 +1 -1 src/sys/kern/tty_pts.c
csjp2006-02-02 03:13:16 UTC
FreeBSD src repository
Modified files:
sys/net pfil.c pfil.h
sys/netinet ip_fastfwd.c ip_fw2.c ip_input.c
ip_output.c
sys/netinet6 ip6_forward.c ip6_input.c ip6_output.c
Log:
Somewha
csjp2006-02-02 16:41:20 UTC
FreeBSD src repository
Modified files:
sys/netinet ip_fw2.c
sys/net if_bridge.c
Log:
Use PFIL_HOOKED macros in if_bridge and pass the right argument to
rw_assert. This un-breaks the build.
Submitted by: Kostik Be
Michal Mertl wrote:
Christian S.J. Peron wrote:
csjp2006-02-02 03:13:16 UTC
FreeBSD src repository
Modified files:
sys/net pfil.c pfil.h
sys/netinet ip_fastfwd.c ip_fw2.c ip_input.c
ip_output.c
sys/netinet6
csjp2006-02-02 20:33:10 UTC
FreeBSD src repository
Modified files:
sys/net pfil.h
Log:
define lock.h before rwlock.h for DEBUG_LOCKS
Revision ChangesPath
1.15 +1 -0 src/sys/net/pfil.h
___
cvs-all@f
ed by: James dot Juran at baesystems dot com
Reviewed by:gnn
MFC after: 1 week
Revision ChangesPath
1.60 +1 -1 src/sys/netinet6/in6.c
I sure hope gnn reviewed it, especially if gnn committed it :)
--
Christian S.J. Peron
[EMAIL PROTECTED]
FreeBSD Committer
Fr
csjp2006-02-12 07:19:46 UTC
FreeBSD src repository
Modified files:
secure/usr.sbin/sshd Makefile
Log:
Hook audit into OpenSSH. Now that the necessary bits for OpenSSH support
have been added with the latest OpenBSM import, hook USE_BSM_AUDIT into
build conditionally.
csjp2006-02-12 17:06:14 UTC
FreeBSD src repository
Modified files:
share/man/man5 make.conf.5
Log:
Document NO_AUDIT make variable.
Obtained from: TrustedBSD Project
Revision ChangesPath
1.130 +3 -0 src/share/man/man5/make.conf.5
_
Christian Brueffer wrote:
On Sun, Feb 12, 2006 at 08:43:58PM +0100, Niclas Zeising wrote:
Christian S.J. Peron wrote:
csjp2006-02-12 17:06:14 UTC
FreeBSD src repository
Modified files:
share/man/man5 make.conf.5
Log:
Document NO_AUDIT make variable.
Obtained from
these system calls:
fstatfs, fchdir, open, mknod, chflags, lchflags, fchflags, chmod, lchmod,
fchmod, chown, lchown, fchown, futimes, ftruncate, fsync, mkdir,
getdirentries.
Revision ChangesPath
1.408 +129 -50 src/sys/kern/vfs_syscalls.c
Thanks!
--
Christian S.J. Peron
csjp2006-03-03 05:58:18 UTC
FreeBSD src repository
Modified files:
sys/net if_bridge.c
Log:
Slightly re-worked bpf(4) code associated with bridging: if we have a
destination interface as a member of our bridge or this is a unicast packet,
push it through the
csjp2006-03-03 17:21:09 UTC
FreeBSD src repository
Modified files:
sys/net if_ethersubr.c
Log:
Unbreak byte counters when network interfaces are in monitor mode by
re-organizing the monitor return logic. We perform interface monitoring
checks after we have de
csjp2006-03-11 17:14:05 UTC
FreeBSD src repository
Modified files:
sys/kern vfs_vnops.c
Log:
Make sure that we are adding a path token to the audit record in open(2).
Do this by making sure we are using the AUDITVNODE1 mask in the namei flags.
Obtained from
csjp2006-03-18 23:27:22 UTC
FreeBSD src repository
Modified files:
sys/kern kern_descrip.c
Log:
Back out fd optimization introduced in revision 1.280 as it appears to be
really breaking things. Simple "close(0); dup(fd)" does not return descriptor
"0" in some
csjp2006-03-20 00:13:47 UTC
FreeBSD src repository
Modified files:
sys/kern kern_descrip.c
Log:
Restore fd optimization with a few minor tweaks, to quote tegge:
"fdinit() fails to initialize newfdp->fd_fd.fd_lastfile to -1. This breaks
fdcopy() which will
csjp2006-03-23 04:07:01 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/kern kern_descrip.c
Log:
MFC descriptor fixes in hopes of killing the "dup(2) regression on 6.x" show
stopper item on the 6.1-RELEASE TODO list.
Approved by:
csjp2006-03-30 16:46:56 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/kern tty_pty.c
Log:
MFC 1.144 tty_pty.c
Allow root to open jail PTYs from the host environment. This un-breaks using
utilities like watch(8) (or other programs
csjp2006-03-30 21:04:52 UTC
FreeBSD src repository
Modified files:
usr.sbin/syslogd syslogd.c
Log:
Currently, if writing out a log entry fails, we unlink that log entry from our
internal list of logfiles. So if writev(2) fails for potentially transient
errors like ENO
Robert Watson wrote:
On Fri, 31 Mar 2006, Peter Jeremy wrote:
On Thu, 2006-Mar-30 21:04:52 +, Christian S.J. Peron wrote:
This change allows syslogd to ignore ENOSPC space errors, so that
when the
filesystem is cleaned up, syslogd will automatically start logging
again
without
Robert Watson wrote:
On Fri, 31 Mar 2006, Christian S.J. Peron wrote:
Although I agree this is a good idea, I think it would be more
appropriate to place these kinds of checks in newsyslog(8) so that
other programs logging can take advantage of this.
The program generating the log
Christian S.J. Peron wrote:
Robert Watson wrote:
On Fri, 31 Mar 2006, Christian S.J. Peron wrote:
Although I agree this is a good idea, I think it would be more
appropriate to place these kinds of checks in newsyslog(8) so that
other programs logging can take advantage of this.
The
csjp2006-04-06 23:33:11 UTC
FreeBSD src repository
Modified files:
sys/nfsservernfs_srvsock.c
sys/security/mac mac_vfs.c
sys/sys mac.h mac_policy.h
Log:
Introduce a new MAC entry point for label initialization of the NFS daemon's
credentia
csjp2006-04-10 14:07:28 UTC
FreeBSD src repository
Modified files:
sys/kern kern_exit.c
Log:
Kill the last Giant acquisition in the exit(2) code. This Giant acquisition
doesn't appear to be protecting anything. Most of consumers funsetownlst(9)
do not appear t
Brooks Davis wrote:
On Fri, Mar 31, 2006 at 09:06:32AM +, Robert Watson wrote:
On Fri, 31 Mar 2006, Peter Jeremy wrote:
On Thu, 2006-Mar-30 21:04:52 +, Christian S.J. Peron wrote:
This change allows syslogd to ignore ENOSPC space errors, so that when
the
filesystem is
csjp2006-05-07 03:21:43 UTC
FreeBSD src repository
Modified files:
sys/net bpf.c
Log:
Pickup locks for the BPF interface structure. It's quite possible that
bpf(4) descriptors can be added and removed on this interface while we
are processing stats.
MFC
csjp2006-05-17 00:07:42 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/net bpf.c
Log:
MFC revision 1.164
Pickup locks for the BPF interface structure. It's quite possible that
bpf(4) descriptors can be added and removed on this in
csjp2006-05-17 00:09:24 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/net if_ethersubr.c
Log:
MFC revision 1.215
Unbreak byte counters when network interfaces are in monitor mode by
re-organizing the monitor return logic. We pe
csjp2006-05-17 00:11:27 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/net if_bridge.c
Log:
MFC revision 1.55
Slightly re-worked bpf(4) code associated with bridging: if we have a
destination interface as a member of our bridge
csjp2006-05-17 00:18:58 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/net if_bridge.c
Log:
MFC revision 1.56
date: 2006/03/03 09:12:21; author: thompsa; state: Exp; lines: +22 -7
Since we are using random ethernet addresses fo
csjp2006-05-17 13:17:02 UTC
FreeBSD src repository
Modified files:
share/man/man4 isp.4
Log:
Fix typo in device hint variable
Revision ChangesPath
1.22 +1 -1 src/share/man/man4/isp.4
___
cvs-all@freebsd.o
csjp2006-05-20 02:54:35 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/kern kern_exit.c
Log:
MFC revision 1.288
date: 2006/04/10 14:07:28; author: csjp; state: Exp; lines: +0 -2
Kill the last Giant acquisition in the exit(2) code.
csjp2006-05-20 16:03:12 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
share/man/man4 isp.4
Log:
MFC typo fix
Revision ChangesPath
1.20.2.2 +1 -1 src/share/man/man4/isp.4
___
cvs-all@fre
csjp2006-06-01 14:14:58 UTC
FreeBSD src repository
Modified files:
etc hosts.allow
Log:
Since NIS is an RPC based service, add a note that when adjusting access
controls in NIS, similar access controls should be considered for the
rpcbind as well.
Re
csjp2006-06-01 15:38:30 UTC
FreeBSD src repository
Modified files:
sys/security/audit audit_bsm_klib.c
Log:
Check to see if the rootdir is the same as the current working directory.
If it is, and the pathname was relative, do not separate the componenets
with a '/' char
csjp2006-06-02 19:59:33 UTC
FreeBSD src repository
Modified files:
sys/dev/ath if_ath.c
sys/dev/ipw if_ipw.c
sys/dev/iwi if_iwi.c
sys/dev/ral rt2560.c rt2661.c
sys/dev/usb if_ural.c
sys/dev/wi if_wi.c
src/sys/dev/usb/if_ural.c
1.40 +1 -1 src/sys/net/if_faith.c
1.21 +2 -2 src/sys/net/if_fwsubr.c
1.47 +1 -1 src/sys/netgraph/ng_iface.c
Thanks!
--
Christian S.J. Peron
[EMAIL PROTECTED]
FreeBSD Committer
FreeBSD Security Team
csjp2006-06-03 06:37:00 UTC
FreeBSD src repository
Modified files:
sys/net bpf.h
Log:
Make sure we don't try to dereference the the if_bpf pointer when bpf has
not been compiled into the the kernel.
Submitted by: benno
Revision ChangesPath
1.
Committed, thanks.
Benno Rice wrote:
Christian S.J. Peron wrote:
[snip]
Log:
Fix the following bpf(4) race condition which can result in a panic:
[snip]
This change causes panics in kernels that don't have device bpf present.
The attached patch fixes
csjp2006-06-03 18:16:54 UTC
FreeBSD src repository
Modified files:
sys/net bpf.h
Log:
Temporarily include files so that our macro checks do something useful.
Revision ChangesPath
1.43 +3 -0 src/sys/net/bpf.h
_
csjp2006-06-03 18:48:14 UTC
FreeBSD src repository
Modified files:
sys/net bpf.h
Log:
Back out previous two commits, this caused some problems in the namespace
resulting in some build failures. Instead, to fix the problem of bpf not
being present, check the p
Can you try this patch:
http://people.freebsd.org/~csjp/no.bpf.1149425152.diff
and tell me how it works for you?
Benno Rice wrote:
Christian S.J. Peron wrote:
[snip]
Log:
Fix the following bpf(4) race condition which can result in a panic:
[snip]
This change causes panics in
csjp2006-08-26 20:13:35 UTC
FreeBSD src repository
Modified files:
sys/security/mac_mls mac_mls.c
Log:
Fix panic associated with file creation via RPC/NFS when the MLS policy
is loaded. This problem stems from the fact that the policy is not properly
initializing the mac
csjp2006-09-01 13:39:02 UTC
FreeBSD src repository
Modified files:
usr.bin/su Makefile su.c
Log:
Integrate audit_submit(3) bits into su. This means that records for
successful and failed su attempts will be recorded using the AUE_su
event type (login or lo class
csjp2006-09-02 21:54:08 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/nfsservernfs.h nfs_serv.c nfs_srvsock.c
nfs_syscalls.c
Log:
MFC revision 1.79 nfs.h
MFC revision 1.161 nfs_serv.c
MFC revision 1.96 nfs_srvso
csjp2006-09-02 23:58:21 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/nfsservernfs_srvsock.c
sys/security/mac mac_vfs.c
sys/sys mac.h mac_policy.h
Log:
MFC revision 1.99 nfs_srvsock.c
MFC revision 1.111 mac_vfs.c
csjp2006-09-03 02:24:48 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/security/mac_biba mac_biba.c
Log:
MFC revision 1.92
This should take care of kernel panics that are a result on non
initialized labels associated with the NFC credential.
csjp2006-09-03 02:26:48 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/security/mac_mls mac_mls.c
Log:
MFC revision 1.76
Axe kernel panic associated with un-initialized NFS credentials while the
MLS mac policy is loaded.
Revision Changes
csjp2006-09-05 03:23:02 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/kern vfs_cache.c
Log:
MFC vfs_cache.c revision 1.106
Axe Giant from vn_fullpath(9). The vnode -> pathname lookup should be
filesystem agnostic. We are not touch
csjp2006-09-05 23:51:32 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
secure/usr.sbin/sshd Makefile
Log:
Hook audit into the OpenSSH build, this results in audit records being
submitted for successful/failed logins, as well as having OpenSSH set
the
csjp2006-09-05 23:53:21 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
usr.bin/loginMakefile login.1 login.c login.h
Added files: (Branch: RELENG_6)
usr.bin/loginlogin_audit.c
Log:
MFC the audit modifications to login so
being able to utilize all 64 gigs of their memory now!
--
Christian S.J. Peron
[EMAIL PROTECTED]
FreeBSD Committer
FreeBSD Security Team
___
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/cvs-all
To unsubscribe, send any
csjp2006-09-12 04:25:13 UTC
FreeBSD src repository
Modified files:
sys/contrib/pf/net pf.c
sys/modules/ipfw Makefile
sys/modules/pf Makefile
sys/netinet ip_fw2.c
sys/security/mac mac_inet.c
sys/security/mac_biba mac_biba.c
sys
f references to t_session here. None should cause problems
directly,
since callers are required to provide Giant locking. ttymodem() should
only be called from device driver interrupt handlers and these require
Giant locking for ordinary i/o too, so the problem is unlikely to be
at this level.
Bru
csjp2006-09-13 15:47:53 UTC
FreeBSD src repository
Modified files:
sys/kern kern_exit.c
Log:
Back out one of the Giant removals from revision 1.272. Giant was not here to
protect the vnode, it was present to synchronize access to TTY session
information betwee
Discussed with: jhb
MFC after: 1 week
Revision ChangesPath
1.290 +2 -2 src/sys/kern/kern_exit.c
--
Christian S.J. Peron
[EMAIL PROTECTED]
FreeBSD Committer
FreeBSD Security Team
___
cvs-all@freebsd.org mailing list
http://li
csjp2006-09-17 17:52:57 UTC
FreeBSD src repository
Modified files:
sys/security/audit audit.c audit_private.h audit_syscalls.c
audit_worker.c
Log:
Correct a slight regression which was introduced with the implementation of
audit pipes. If the ker
csjp2006-09-18 17:55:32 UTC
FreeBSD src repository
Modified files:
sys/security/audit audit_bsm.c
Log:
Make sure that lutimes(2) gets processed and converted into a BSM record.
Submitted by: rwatson
MFC after: 1 day
Revision ChangesPath
1.13 +
time
permitting.
--
Christian S.J. Peron
[EMAIL PROTECTED]
FreeBSD Committer
FreeBSD Security Team
___
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/cvs-all
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
csjp2006-09-19 15:45:22 UTC
FreeBSD src repository
Modified files:(Branch: RELENG_6)
sys/contrib/pf/net pf.c
sys/modules/ipfw Makefile
sys/modules/pf Makefile
sys/netinet ip_fw2.c
sys/security/mac mac_inet.c
sys/security/ma
1 - 100 of 248 matches
Mail list logo
