| Age | Commit message (Collapse) | Author |
|---|
|
engine that might attempt to read beyond the end of the buffer that was
programmed. The IOMMU catches this "DMA overrun" and throws an unrecoverable
error at us, at which point we have no choice but to panic. To avoid this
implement a BUS_DMA_OVERRUN flag that maps an additional scratch page at the
end of the vdma address range. DMA requests will spill over into this page,
which just returns zeroes.
Thanks to matthieu@ for giving me access to a machine with the problem.
ok deraadt@, beck@
|
|
additionally, in EncodeUpdate, if the amount written would overflow,
return 0 instead to prevent bugs in the caller.
CVE-2016-2105 and CVE-2016-2106 from openssl.
|
|
for both the mac and padding bytes.
CVE-2016-2107 from openssl
|
|
CVE-2016-2108 from openssl.
|
|
CVE-2016-2109 from openssl.
|
|
|
|
|
|
actually use this in em(4) and xhci(4), but I'm not committing those yet
because we almost certainly need to save and restore the MSI-X registers
during suspend/resume. However, this allows mpi@ to play with multiple-vector
support in networking hardware.
Requested by mpi@
ok mlarkin@, mikeb@
|
|
|
|
|
|
|
|
|
|
server to set an invalid mask. ok djm@
|
|
Ok phessler@, henning@
|
|
|
|
|
|
transfer rates to and from the card. In practice the improvement will be
smaller, but I am seeing serious improvement in the read speeds.
|
|
from Andras Farkas <deepbluemistake at gmail dot com>.
|
|
and don't generate a GPIO controller interrupt. Masking them menas devices
relying on those APIC interrupts will break. Unbreaks the keyboard on the
Asus x205ta, which got broken in rev 1.6.
|
|
configure fan speeds.
from mglocker@, ok kettenis@
|
|
|
|
okay millert@
|
|
RETURN VALUES section upper, where it belongs more.
|
|
offline paths. More polishing to come.
Input and okay bluhm@ & kettenis@.
|
|
|
|
passwd hash early, instead of getpwnam(3), then close fds by calling
endpwent(3) and finally only call pledge(2) after it, otherwise on any
modification to the user it would destroy the passwd hash and therefore
forbidding him/her to login again to the machine.
Reported and tested by Edgar Pettijohn <edgar ! pettijohn-web at com>
According to deraadt@ "that looks better then"
|
|
declared in conditional statement.
|
|
table has to be defined BEFORE
consequently move all tables in the examples to the beginning and before the
listen directive to avoid tables not being found
no functional change
ran into this myself earlier, also reported by cjones via irc
ok gilles
|
|
|
|
OK bentley@
|
|
-DKAME_SCOPEID can go away too, meaningless since 2006
|
|
ifconfig.c doesn't build without -DINET6, and those #ifdefs clutter the
code. ok bluhm@ henning@
|
|
New rsyslog has other options and debug output, adapt test.
|
|
and the last one failed for LC_CTYPE=C.
Instead, ignore the user's locale and run each test twice,
once for UTF-8 and once for US-ASCII.
Problem reported by deraadt@.
|
|
The lines containing SKIPUTF8 will be removed once the utility is fixed.
|
|
Match blocks; found the hard way Rogan Dawes
|
|
|
|
dump output
|
|
pointed out by Matt Johnston
|
|
Use a new task that runs holding the KERNEL_LOCK to execute mp-unsafe
code. Our current goal is to progressively move input functions to the
unlocked task.
This gives a small performance boost confirmed by Hrvoje Popovski's
IPv4 forwarding measurement:
before: after:
send receive send receive
400kpps 400kpps 400kpps 400kpps
500kpps 500kpps 500kpps 500kpps
600kpps 600kpps 600kpps 600kpps
650kpps 650kpps 650kpps 640kpps
700kpps 700kpps 700kpps 700kpps
720kpps 640kpps 720kpps 710kpps
800kpps 640kpps 800kpps 650kpps
1.4Mpps 570kpps 1.4Mpps 590kpps
14Mpps 570kpps 14Mpps 590kpps
ok kettenis@, bluhm@, dlg@
|
|
|
|
|
|
|
|
Piatkowski (initial changes to help some more to come).
|
|
|
|
missing padding check in aesni functions
overflow in evp encode functions
use of invalid negative asn.1 types
ok beck
|
|
with feedback from kettenis@
fixes building a kernel with xge, which might actually work on these
machines now.
|
|
possible.
This reduce the number of lookups to 1 for non-multicast traffic when PF
is disable.
Tested by Hrvoje Popovski who confirmed that benchmark numbers are now as
good as with a single cache entry.
ok visa@, bluhm@
|
|
behaviours for -portable.
|
|
Apparently nobody can hit this condition anymore or people do not
report bugs if their kernel do not panic.
ok dlg@, sashan@
|
