Re: fixes for ipfw and pf lock ordering issues

On Saturday 25 September 2004 00:37, Christian S.J. Peron wrote: > Good day folks, we need some beta testers > > Currently, those who utilize ucred based firewalling, i.e. firewall > rules which match based on UID, GID or JAIL ID are subject to lock order > problems which often results in the syste

fixes for ipfw and pf lock ordering issues

Good day folks, we need some beta testers Currently, those who utilize ucred based firewalling, i.e. firewall rules which match based on UID, GID or JAIL ID are subject to lock order problems which often results in the system hard locking. (when giant is not present ... debug.mpsafenet=1). This p

Re: execute a user process in the kernel

Robert Watson <[EMAIL PROTECTED]> writes: > Well, we have kproc/kthread APIs, but none of that is semantically > compatible with the notion of execve(), which is a very user-centric > concept ("replace the address space with a mapping of binary "). You > could fudge together a related notion, thou

Re: execute a user process in the kernel

On Fri, 24 Sep 2004, Dag-Erling Smørgrav wrote: > execve(2) assumes you already have a process. You get a process by > forking another process. The only process we ever create from scratch > is init(8), and that takes a s**tload of work (see kern/init_main.c). > This is why we have stuff like

Re: execute a user process in the kernel

Mike Meyer <[EMAIL PROTECTED]> writes: > Gordon David <[EMAIL PROTECTED]> writes: > > Kqueue is a good method to notify the user. But I want the code in > > the kernel directly calls a user program. > How about starting with the code in kern/kern_exec.c? execve(2) assumes you already have a proces

Re: Older releases? was Re: FreeBSD Security Advisory FreeBSD-SA-02:21.tcpip

On Fri, Apr 19, 2002 at 09:59:14AM -0500, D J Hawkey Jr wrote: > Developers: Userland is affected here - /usr/lib/libz. Would a > "make && make install" (sic) in /usr/src/lib/libz before building the > kernel suffice for a solid upgrade? No, the src/lib/libz is --- as you note --- for userland. I

Re: Kernel-loadable Root Kits

On Sat, Sep 08, 2001 at 05:43:41AM -0400, Deepak Jain wrote: > > Short question: > > Is there a way to prevent the kernel from allowing loadable modules? Run your system in securelevel 1 or higher. See the init(8) manual page and the kern_securelevel_enable and kern_securelevel variables in the

Re: Crystalfontz LCD display from kernel?

Daniel O'Connor wrote: On Thu, 23 Sep 2004 04:18, Tim Pushor wrote: My question is, I would really like to be able to display various things during startup, shutdown, and once shutdown is complete to the LCD. I assume I would have to modify the kernel for this. I done lots of C programming, and

Re: execute a user process in the kernel

In <[EMAIL PROTECTED]>, Gordon David <[EMAIL PROTECTED]> typed: > > >From: "Bjoern A. Zeeb" <[EMAIL PROTECTED]> > >To: Gordon David <[EMAIL PROTECTED]> > >CC: [EMAIL PROTECTED] > >Subject: Re: execute a user process in the kernel > >Date: Thu, 23 Sep 2004 08:02:18 + (UTC) > > > >On Thu, 23 Sep

Re: Copy data from kernel to user space memory

Niels Heinen <[EMAIL PROTECTED]> writes: > The module buffers packets and currently copies it into user memory > when its system call interface is used. At the moment my user space > application is the one that allocates the memory. I want the memory > to be allocated by the module in order to mak