| Age | Commit message (Collapse) | Author |
|---|
|
|
|
|
|
directory was written as "//". If there is no non-slash character
in the path name, use the spacial case for root.
found by gmake regression tests; OK naddy@ benno@
|
|
restrictions and apply the default size only to the matching key
type.
tweak and ok dtucker@
|
|
|
|
to allocate virtual CPUs but not assign them to domains. This way you
can give domains exclusive access to a core without assigning all threads
of that core to the domain.
|
|
carry on if it can't be accessed. e.g. if /var/db is not present in
single user mode.
|
|
and carry-on. Similar to treatment of /etc/resolv.conf[.tail].
Lets /var/db/dhclient.leases.if be on RO filesystem.
|
|
|
|
Use umount(8) to check that the mountpoint leaks no vnode.
from Moritz Buhl
|
|
If parent and lookup vnode are equal, namei(9) locks them once but
reference counts twice.
from Moritz Buhl
|
|
|
|
send_filterset() would result in a use after free because send_filterset()
frees the set after sending but network_bulk() runs in a loop.
|
|
OIDS. This can result in false equality matches.
OK claudio@
|
|
OK claudio@
"Good find" deraadt@
|
|
ok schwarze@
|
|
now return SSH_ERR_KEY_BAD_PERMISSIONS in that case. Patch from
jitendra.sharma at intel.com, ok djm@
|
|
i hope, i didn't test this that hard.
|
|
and l3vpns instead of temporary globals. Also rework rde_reload_done to
free filters and sets earlier. The soft-reconfiguration process no longer
needs the previous filters / sets to do its work since there is a full
Adj-RIB-Out.
OK benno@
|
|
caused by calling vn_open() with write permissions must be reverted.
Otherwise, the vfs subsystem could panic while releasing the last vnode
reference if the writecount is still positive.
ok visa@
Reported-by: syzbot+4724df09d9ab0fdca28a@syzkaller.appspotmail.com
Reported-by: syzbot+a430606fd528645559db@syzkaller.appspotmail.com
|
|
of sending them after e.g. the filter rule send them before. The benefit
is that the filterset is present when a rule is added and so the filter
rule is complete at that moment.
OK benno@
|
|
serializing both read/write operations using the existing file mutex.
The vnode lock still grants exclusive write access to the offset; the
mutex is only used to make the actual write atomic and prevent any
concurrent reader from observing intermediate values.
ok mpi@ visa@
|
|
from grunk@
|
|
ok kettenis@
|
|
|
|
|
|
|
|
the idea and a good chunk of the implementation is copied from
bridge(4).
note that IP packets inside "service delimited" traffic, ie, vlan,
svlan, or bpe encapsulated traffic, are not considered IP and will
therefore not be given to pf to look at. if you want to filter that
you'll need to configure vlan/svlan/bpe interfaces to get past their
headers, and then configure them with their own tpmrs. hopefully
the interface input handlers were established in the right order.
|
|
the spec says we should filter packets destined to a list of ethernet
addresses. im currently interpreting "filter" as meaning dropping,
which this diff does.
however, one of the addresses to filter is the one lacp uses by
default and not a lot of lacp implementations (read switches) support
the configuration of a different address. i still need lacp to go
over tpmr, and because i can't change the address, this diff also
has a way to configure tpmr to still allow the packets through.
|
|
- the symbol it found, returned via the second argument
- the base offset of the the object it was found in, via the return value
- optionally: the object it was found in, returned via the last argument
Instead, return a struct with the symbol and object pointers and let the
caller get the base offset from the object's obj_base member. On at least
aarch64, amd64, mips64, powerpc, and sparc64, a two word struct like this
is passed in registers.
ok mpi@, kettenis@
|
|
(stirng -> string)
ok kettenis@ who pointed out I should fix the new arm64 smbiosvar.h too
|
|
or sending an IPI.
|
|
|
|
|
|
differences between the i386 and amd64 versions of the code and
switch to using the standard C integer exact width integer types.
ok deraadt@
|
|
|
|
|
|
ok deraadt@, jsg@
|
|
directories obtained by chdir(2).
|
|
|
|
|
|
approach was not right, and there is still room for improvement.
OK deraadt@
|
|
if the parent and the lookup vnode are equal, namei(9) reference
counts both. So release the parent vnode uncoditionally.
OK visa@
|
|
ok jmatthew
|
|
|
|
Use umount(8) to check that the mountpoint leaks no vnode.
|
|
|
|
release.
|
|
|
|
|
