1e13299f emaste Dec. 19, 2018, 6:16 p.m.
Due to insufficient validation of network-provided data it may have been
possible for a malicious actor to craft a bootp packet which could cause
a stack buffer overflow.

admbugs:	850
Reported by:	Reno Robert
Reviewed by:	markj
Approved by:	so
Security:	FreeBSD-SA-18:15.bootpd
Sponsored by:	The FreeBSD Foundation
cgit ViewVC
53941c0a markj Dec. 19, 2018, 5:52 p.m.
The sbadaddr register was renamed in version 1.10 of the privileged
architecture specification.  No functional change intended.

Submitted by:	Mitchell Horne <mhorne063@gmail.com>
MFC after:	1 week
Differential Revision:	https://reviews.freebsd.org/D18594
cgit ViewVC
5268e098 markj Dec. 19, 2018, 5:45 p.m.
Submitted by:	Mitchell Horne <mhorne063@gmail.com>
MFC after:	1 week
Differential Revision:	https://reviews.freebsd.org/D18595
cgit ViewVC
39a8ee13 dab Dec. 19, 2018, 4:45 p.m.
PR:		203431
Submitted by:	jjr@alisa.org & holindho@saunalahti.fi
Reported by:	jjr@alisa.org
MFC after:	1 week
cgit ViewVC
0e4a3d93 markj Dec. 19, 2018, 4:54 a.m.
This fixes a warning seen when compiling amd64 GENERIC with clang 7.
Also remove the workaround added in r337324.  clang 7 and gcc 4.2
generate the same code with or without the code change.

Reviewed by:	imp (previous version)
MFC after:	3 days
Differential Revision:	https://reviews.freebsd.org/D18603
cgit ViewVC
627bd78e avos Dec. 19, 2018, 3:08 a.m.
ieee80211_alloc_node() does not initialize rateset tables; that's not
expected by rate control modules and will result in array access at
index -1 - where ni_essid[] array is located (zeroed at allocation, so
there are no user-visible consequences).

Just delay rate control initialization to the moment, when rateset
tables are initiaziled; nothing will use rates here anyway.

MFC after:	4 days
cgit ViewVC
b156a400 np Dec. 19, 2018, 1:37 a.m.
- Fix PR 227760 by getting the TOE to respond to the SYN after the call
  to toe_syncache_add, not during it.  The kernel syncache code calls
  syncache_respond just before syncache_insert.  If the ACK to the
  syncache_respond is processed in another thread it may run before the
  syncache_insert and won't find the entry.  Note that this affects only
  t4_tom because it's the only driver trying to insert and expand
  syncache entries from different threads.

- Do not leak resources if an embryonic connection terminates at
  SYN_RCVD because of L2 lookup failures.

- Retire lctx->synq and associated code because there is never a need to
  walk the list of embryonic connections associated with a listener.
  The per-tid state is still called a synq entry in the driver even
  though the synq itself is now gone.

PR:		227760
MFC after:	2 weeks
Sponsored by:	Chelsio Communications
cgit ViewVC
26e9d9b0 markj Dec. 19, 2018, 12:17 a.m.
MFC after:	3 days
Sponsored by:	The FreeBSD Foundation
cgit ViewVC
00f198de behlendorf1 Dec. 18, 2018, 10:47 p.m.
In dfbe2675 zfs_dirty_data_sync was changed to a new tunable named
zfs_dirty_data_sync_percent. Unfortunately, the module parameter
documentation is the code was not updated accordingly. This patch
simply corrects that.

Reviewed-by: George Melikov <mail@gmelikov.ru>
Reviewed-by: Brian Behlendorf <behlendorf1@llnl.gov>
Signed-off-by: Tom Caputi <tcaputi@datto.com>
Closes #8212
cgit
d4ee9420 avg Dec. 18, 2018, 9:43 p.m.
PR:		218632
Reported by:	Denis Kozadaev <denis@tambov.ru>
MFC after:	1 week
cgit ViewVC
32c4f3bb glebius Dec. 18, 2018, 7:38 p.m.
c08ef044 imp Dec. 18, 2018, 7:05 p.m.
5211a86d imp Dec. 18, 2018, 6:52 p.m.
Move dev/usb/wlan to sys/dev/usb/wlan as it was the odd-man-out.
cgit ViewVC
3e9ec69a avg Dec. 18, 2018, 5:17 p.m.
Those should ensure correctness of ichwd_find_ich_lpc_bridge() and
ichwd_find_ich_lpc_bridge() as well as make it easier for both humans
and static analyzers to see the relation between tco_version and ich and
smb variables in ichwd_identify().

Reported by:	Coverity
CID:		1396314, 1396317
MFC after:	10 days
cgit ViewVC
18fcfaa4 markj Dec. 18, 2018, 4:47 p.m.
Reported by:	oshogbo
MFC with:	r341837
Sponsored by:	The FreeBSD Foundation
cgit ViewVC