Author: csjp
Date: Mon Jan 3 21:28:12 2011
New Revision: 216932
URL: http://svn.freebsd.org/changeset/base/216932
Log:
expand checkuser() to support the propagation of error codes back to
the caller. Currently, checkuser() does not differentiate between the
failure to open the file and the
Author: csjp
Date: Sat Jan 8 23:06:54 2011
New Revision: 217174
URL: http://svn.freebsd.org/changeset/base/217174
Log:
Change some variables from int to size_t. This is more accurate since
these variables represent sizes in one capacity or another. There is
no reason to allow negative num
Author: csjp
Date: Wed Jan 12 23:07:51 2011
New Revision: 217333
URL: http://svn.freebsd.org/changeset/base/217333
Log:
Un-break the build: use the correct format specifier for sizeof()
Modified:
head/sys/netinet/if_ether.c
Modified: head/sys/netinet/if_ether.c
==
Author: csjp
Date: Fri Jan 14 04:24:53 2011
New Revision: 217388
URL: http://svn.freebsd.org/changeset/base/217388
Log:
Correct bogus initialization. It should be noted that this change
has been corrected in the vendor branch, but for now, silence clang
warnings.
Found by: clang
Author: csjp
Date: Fri Jun 3 14:57:38 2011
New Revision: 222654
URL: http://svn.freebsd.org/changeset/base/222654
Log:
Explicitly initialize the packet buffer to NULL after we unmap the zero copy
buffers. This fixes a segfault on exit due to calling free on a bogus
pointer.
This should be
Author: csjp
Date: Fri Mar 20 00:34:50 2009
New Revision: 190118
URL: http://svn.freebsd.org/changeset/base/190118
Log:
MFC r181060
- Add vn_fullpath_global()
- Fix issues in auditing pathnames within chroot/jail envs
Modified:
stable/7/sys/ (props changed)
stable/7/sys/contrib/pf/
Author: csjp
Date: Fri Mar 20 00:38:14 2009
New Revision: 190119
URL: http://svn.freebsd.org/changeset/base/190119
Log:
MFC r182090
- use sbuf_putc instead of sbuf_cat
Modified:
stable/7/sys/ (props changed)
stable/7/sys/contrib/pf/ (props changed)
stable/7/sys/dev/ath/ath_hal/
Author: csjp
Date: Fri Mar 20 00:55:38 2009
New Revision: 190120
URL: http://svn.freebsd.org/changeset/base/190120
Log:
MFC r184660
- Dont hold Giant around vn_fullpath and vn_fullpath_global
Modified:
stable/7/sys/ (props changed)
stable/7/sys/contrib/pf/ (props changed)
stable/
Author: csjp
Date: Fri Mar 20 01:15:50 2009
New Revision: 190121
URL: http://svn.freebsd.org/changeset/base/190121
Log:
MFC r182120
- Avoid printing warning message for vnodes that have dead fileops
when MAC is enabled
Modified:
stable/7/sys/ (props changed)
stable/7/sys/contrib/
Author: csjp
Date: Fri Mar 20 18:00:19 2009
New Revision: 190165
URL: http://svn.freebsd.org/changeset/base/190165
Log:
MFC r189490
- Mark bpf(4) stats sysctl as mpsafe. We do not require Giant here.
Modified:
stable/7/sys/ (props changed)
stable/7/sys/contrib/pf/ (props changed)
Author: csjp
Date: Fri Mar 20 18:04:20 2009
New Revision: 190167
URL: http://svn.freebsd.org/changeset/base/190167
Log:
MFC r189590
- Mark the mac_bsdextended rules sysctl as mpsafe.
Modified:
stable/7/sys/ (props changed)
stable/7/sys/contrib/pf/ (props changed)
stable/7/sys/dev
Author: csjp
Date: Sat Apr 4 20:58:18 2009
New Revision: 190700
URL: http://svn.freebsd.org/changeset/base/190700
Log:
Fixup the parameters to audit_submit(3) the order is errno then return
value. This bug went un-noticed for so long because EPERM == 1
MFC after:1 week
Spotted by:
Author: csjp
Date: Fri Jan 17 03:30:24 2014
New Revision: 260800
URL: http://svnweb.freebsd.org/changeset/base/260800
Log:
fix a regression introduced in r237618 that would result in
killall confusing killall -INT with killall -I (interactive
confirmation) which resulted in the wrong signal
Author: csjp
Date: Fri Jan 17 04:16:39 2014
New Revision: 260801
URL: http://svnweb.freebsd.org/changeset/base/260801
Log:
Re-work r260800 to include other signals which start with 'I'
such as ILL, INFO etc..
Submitted by: delphij
MFC after:2 weeks
Modified:
head/usr.bin/killall/
Author: csjp
Date: Tue Jan 28 01:49:49 2014
New Revision: 261220
URL: http://svnweb.freebsd.org/changeset/base/261220
Log:
Allow sigwait(2) in capabilities mode.
It's common for multi-threaded processes to create a thread for
the purpose of synchronously processing signals. Allow such pro
Author: csjp
Date: Sat Jan 14 22:51:34 2012
New Revision: 230119
URL: http://svn.freebsd.org/changeset/base/230119
Log:
Revert to the old behavior of allocating table/table entries using
M_NOWAIT. Currently, the code allows for sleeping in the ioctl path
to guarantee allocation. However co
Author: csjp
Date: Thu Jan 17 21:02:53 2013
New Revision: 245573
URL: http://svnweb.freebsd.org/changeset/base/245573
Log:
Implement the zonename token for jailed processes. If
a process has an auditid/preselection masks specified, and
is jailed, include the zonename (jailname) token as a
Author: csjp
Date: Mon Mar 2 19:42:01 2009
New Revision: 189286
URL: http://svn.freebsd.org/changeset/base/189286
Log:
Switch the default buffer mode in bpf(4) to zero-copy buffers.
Discussed with: rwatson
Modified:
head/sys/net/bpf.c
Modified: head/sys/net/bpf.c
Author: csjp
Date: Sat Mar 7 17:07:29 2009
New Revision: 189490
URL: http://svn.freebsd.org/changeset/base/189490
Log:
Mark the bpf stats sysctl as being mpsafe. We do not require
Giant here.
Modified:
head/sys/net/bpf.c
Modified: head/sys/net/bpf.c
===
Author: csjp
Date: Mon Mar 9 17:42:18 2009
New Revision: 189590
URL: http://svn.freebsd.org/changeset/base/189590
Log:
Mark the bsdextended rules sysctl as being mpsafe.
Discussed with: rwatson
Modified:
head/sys/security/mac_bsdextended/mac_bsdextended.c
Modified: head/sys/secur
Author: csjp
Date: Tue Mar 10 14:28:19 2009
New Revision: 189620
URL: http://svn.freebsd.org/changeset/base/189620
Log:
Disable zerocopy by default for now. It's causing some problems in pcap
consumers which fork after the shared pages have been setup. pflogd(8)
is an example. The problem
Author: csjp
Date: Thu Aug 5 18:49:06 2010
New Revision: 210878
URL: http://svn.freebsd.org/changeset/base/210878
Log:
Enable closefrom(2) here, as we have supported it for some time now.
Discussed with: mlaier
MFC after:2 weeks
Modified:
head/contrib/pf/pflogd/pflogd.c
Mod
Author: csjp
Date: Fri Aug 6 15:04:40 2010
New Revision: 210935
URL: http://svn.freebsd.org/changeset/base/210935
Log:
Add Xen to the list of virtual vendors. In the non PV (HVM) case this fixes
the virtualization detection successfully disabling the clflush instruction.
This fixes insta-p
Author: csjp
Date: Sun Jan 31 22:31:01 2010
New Revision: 203328
URL: http://svn.freebsd.org/changeset/base/203328
Log:
Make sure we convert audit records that were produced as the result of the
closefrom(2) syscall.
Modified:
head/sys/security/audit/audit_bsm.c
Modified: head/sys/security
Author: csjp
Date: Fri Dec 12 01:36:50 2008
New Revision: 185963
URL: http://svn.freebsd.org/changeset/base/185963
Log:
Consider processes attaching/detaching from tun(4) devices as being link
state changes. This change modifies tunopen and tunclose to call the
if_link_state_change() functi
Author: csjp
Date: Sat Dec 20 19:39:09 2008
New Revision: 186363
URL: http://svn.freebsd.org/changeset/base/186363
Log:
MFC revision 185713 from head.
Make sure we are maintaining the reference count on the route eliminating
another:
rtfree: 0xc841ee88 has 1 refs
Reviewed by: b
Author: csjp
Date: Sat Dec 20 19:45:22 2008
New Revision: 186364
URL: http://svn.freebsd.org/changeset/base/186364
Log:
MFC revision 185713 from head.
Make sure we are maintaining the reference count on the route eliminating
another:
rtfree: 0xc841ee88 has 1 refs
Reviewed by: b
Author: csjp
Date: Fri Jun 19 20:31:44 2009
New Revision: 194512
URL: http://svn.freebsd.org/changeset/base/194512
Log:
Implement the -z (zero counters) option for the various bpf counters.
Add necessary changes to the kernel for this (basically introduce a
bpf_zero_counters() function). As
Author: csjp
Date: Sun Oct 12 23:19:23 2008
New Revision: 183812
URL: http://svn.freebsd.org/changeset/base/183812
Log:
MFC revision 183744
Improve entropy in source port generation for libalias consumers.
Approved by: re (kib)
Modified:
stable/7/sys/ (props changed)
stable/7/s
Author: csjp
Date: Sun Oct 12 23:47:06 2008
New Revision: 183813
URL: http://svn.freebsd.org/changeset/base/183813
Log:
MFC revision 183744
Improve entropy in source port generation for libalias consumers.
Approved by: re (kib)
Modified:
stable/6/sys/ (props changed)
stable/6/s
Author: csjp
Date: Mon Oct 13 16:46:24 2008
New Revision: 183824
URL: http://svn.freebsd.org/changeset/base/183824
Log:
MFC change 181604
Fix preselection on auditpipes if they have a different selection mask
Approved by: re (kib)
Modified:
stable/7/sys/ (props changed)
stable/
Author: csjp
Date: Mon Oct 13 17:33:44 2008
New Revision: 183826
URL: http://svn.freebsd.org/changeset/base/183826
Log:
MFC change 182311
Fix panics with MAC kernels when a labeled security policy is used
and IP options are present on an mbuf.
Approved by: re (kib)
Modified:
stab
Author: csjp
Date: Mon Oct 13 18:44:59 2008
New Revision: 183837
URL: http://svn.freebsd.org/changeset/base/183837
Log:
MFC change 182488
Improve entropy in source port generation for libalias consumers.
Approved by: re (kib)
Modified:
releng/6.4/sys/ (props changed)
releng/6.4
Author: csjp
Date: Tue Oct 28 17:01:16 2008
New Revision: 184417
URL: http://svn.freebsd.org/changeset/base/184417
Log:
MFC SVN rev 181647
- Reduce the scope of the vnode lock such that it does not
cover the various copyouts associated with initializing
the process's argv/env data i
Author: csjp
Date: Tue Nov 11 21:57:03 2008
New Revision: 184856
URL: http://svn.freebsd.org/changeset/base/184856
Log:
Add support for extended header BSM tokens. Currently we use the
regular header tokens. The extended header tokens contain an IP
or IPv6 address which makes it possible t
Author: csjp
Date: Sun Nov 30 15:35:24 2008
New Revision: 185476
URL: http://svn.freebsd.org/changeset/base/185476
Log:
Enable getaudit_addr(2) for sshd again. This will un-break the subject
BSM audit tokens for IPv6.
Modified:
head/secure/usr.sbin/sshd/Makefile
Modified: head/secure/usr.
Author: csjp
Date: Sun Nov 30 19:58:03 2008
New Revision: 185484
URL: http://svn.freebsd.org/changeset/base/185484
Log:
Partially roll back a revision which changed the error code being returned
by getaudit(2). Some applications such has su, id will interpret E2BIG as
requiring the use of g
Author: csjp
Date: Sun Nov 30 21:00:22 2008
New Revision: 185486
URL: http://svn.freebsd.org/changeset/base/185486
Log:
MFC revision 185484
- fixup ABI issues with ip6/audit
Approved by: re@ (kib)
Modified:
stable/7/sys/ (props changed)
stable/7/sys/security/audit/audit_syscall
Author: csjp
Date: Sun Nov 30 21:06:23 2008
New Revision: 185488
URL: http://svn.freebsd.org/changeset/base/185488
Log:
MFC revision 185484
- fixup ABI issues with ip6/audit
Approved by: re@ (kib)
Modified:
releng/7.1/sys/ (props changed)
releng/7.1/sys/security/audit/audit_sys
Author: csjp
Date: Sat Dec 6 19:09:38 2008
New Revision: 185713
URL: http://svn.freebsd.org/changeset/base/185713
Log:
in_rtalloc1(9) returns a locked route, so make sure that we use
RTFREE_LOCKED() here. This macro makes sure the reference count
on the route is being managed properly. Th
Author: csjp
Date: Tue May 4 15:29:07 2010
New Revision: 207615
URL: http://svn.freebsd.org/changeset/base/207615
Log:
Add a case to make sure that internal audit records get converted
to BSM format for lpathconf(2) events.
MFC after:2 weeks
Modified:
head/sys/security/audit/audit
Author: csjp
Date: Fri Jun 7 14:51:55 2019
New Revision: 348776
URL: https://svnweb.freebsd.org/changeset/base/348776
Log:
Teach readelf about some OpenBSD ELF program headers
- Add constants for OpenBSD wxneeded, bootdata and randomize to the
FreeBSD elf_common.h file. This is the fil
Author: csjp
Date: Fri May 15 20:24:08 2020
New Revision: 361089
URL: https://svnweb.freebsd.org/changeset/base/361089
Log:
Remove references to pdwait4(2). This syscall was never implemented
and its presence just creates confusion.
Discussed with: cem
MFC after:1 week
Modifi
Author: csjp
Date: Fri May 15 20:29:41 2020
New Revision: 361090
URL: https://svnweb.freebsd.org/changeset/base/361090
Log:
Bump revision date to today.
MFC after:1 week
Modified:
head/share/man/man4/procdesc.4
Modified: head/share/man/man4/procdesc.4
===
Author: csjp
Date: Fri May 15 23:44:52 2020
New Revision: 361094
URL: https://svnweb.freebsd.org/changeset/base/361094
Log:
Fix typo that snuck in
Reported by: Jose Luis Duran
MFC after:1 week
Modified:
head/share/man/man4/procdesc.4
Modified: head/share/man/man4/procdesc.4
=
Author: csjp
Date: Sat May 16 03:45:15 2020
New Revision: 361103
URL: https://svnweb.freebsd.org/changeset/base/361103
Log:
Add BSM record conversion for a number of syscalls:
- thr_kill(2) and thr_exit(2) generally (no argument auditing here.
- A set of syscalls for the process descripto
Author: csjp
Date: Thu May 21 02:10:45 2020
New Revision: 361316
URL: https://svnweb.freebsd.org/changeset/base/361316
Log:
Decode the file descriptor argument to closefrom(2) as an Integer.
This is consistent with what we are doing for close(2) and it makes
it a bit easier to follow when de
Author: csjp
Date: Tue Jul 28 20:06:16 2020
New Revision: 363655
URL: https://svnweb.freebsd.org/changeset/base/363655
Log:
Fixup some incorrect information and some comments. These changes
were cherry picked up the upstream OpenBSD repository. At some point we
will look at doing another imp
Author: csjp
Date: Mon Mar 30 18:15:36 2020
New Revision: 359450
URL: https://svnweb.freebsd.org/changeset/base/359450
Log:
Make sure we convert internal audit records for thr_new
into BSM records.
MFC after:2 weeks
Modified:
head/sys/security/audit/audit_bsm.c
Modified: head/sys/
Author: csjp
Date: Wed Mar 21 17:22:42 2018
New Revision: 331313
URL: https://svnweb.freebsd.org/changeset/base/331313
Log:
Document the limitations associated with using the audit syscalls
from jailed process. These might get implemented in jails in the
future, but for now they are not sup
Author: csjp
Date: Thu Feb 20 21:12:10 2020
New Revision: 358181
URL: https://svnweb.freebsd.org/changeset/base/358181
Log:
- Implement -h (human readable) for the size of the underlying block disk.
Currently, the size of the swap device is unconditionally reported using
blocks, even if
Author: csjp
Date: Mon Feb 24 02:11:54 2020
New Revision: 358267
URL: https://svnweb.freebsd.org/changeset/base/358267
Log:
MFC r348776
Teach readelf about some OpenBSD ELF program headers
Discussed with: emaste
Reviewed by:imp
Differential Revision: https://reviews.freebsd.or
Author: csjp
Date: Sat Feb 29 19:17:24 2020
New Revision: 358471
URL: https://svnweb.freebsd.org/changeset/base/358471
Log:
Currently kernel audit events for jail_set(2), jail_get(2), jail_attach(2),
jail_remove(2) and finally setloginclass(2) are not being converted and
committed into users
Author: csjp
Date: Tue Mar 3 01:46:35 2020
New Revision: 358564
URL: https://svnweb.freebsd.org/changeset/base/358564
Log:
In r358471, we interrupted the case block that would eventually lead
to the path related tokens not being processed. Restore this behavior and
and move AUE_JAIL_SET in
54 matches
Mail list logo
