danger [Tue, 24 Oct 2006 20:45:28 +0000 (20:45 +0000)]
Sync with HEAD. This includes:
- convert to the current style of section 4 man pages
- s/ip.forwarding/net.inet.ip.forwarding/ to match reality
- s/ifconfig tunnel greN/ifconfig greN tunnel/
Approved by: re (bmah), keramida (mentor), trhodes (mentor)
rwatson [Tue, 24 Oct 2006 13:23:03 +0000 (13:23 +0000)]
Reduce the size of a number of race windows in the TCP socket options
processing code: a RST may arrive during a socket option call, causing
the PCB to be freed, leading to an invalid pointer dereference. When
the kernel blocks in a socket option copyin or memory allocation (such
as during heavy paging), the race window is greatly widened. This
change re-validates the PCB pointer after returning from the copy/alloc
operation. This does not eliminate the problem, but does narrow the
window significantly (to the point where it may not be observed at all).
The proper fix is in 7.x, which significantly re-works the socket and
PCB code so that PCB's are not ripped out from under sockets on reset.
However, those changes are not appropriate for an MFC during a release
cycle. As a result, this is not an MFC, but new code crafted for 6.x.
PR: kern/102412
Reported by: Daniel Austin <daniel at kewlio dot net>
Tested by: Diane Bruce <db at db dot net>
Reviewed by: Diane Bruce <db at db dot net>
Approved by: re (kensmith)
jhb [Mon, 23 Oct 2006 20:07:45 +0000 (20:07 +0000)]
MFC: Various uthread fixes:
- Delay setting wakeup time until after poll array has been allocated.
Blocking on the malloc spinlock would cause the select timeout to be lost.
(uthread_select.c 1.22)
- Delay unblocking signal and restoring process signal mask until the
thread signal mask has been updated to avoid stack overflow during signal
bursts.
Don't block signal forever if no threads can currently handle signal.
Check for pending signal after direct invocation of signal handler.
(uthread_select.c 1.47)
- Backout unblocking of signal if no threads can currently handle it.
The check for pending signal after direct invocation of signal handler
is sufficient.
(uthread_select.c 1.48)
rink [Mon, 23 Oct 2006 06:46:34 +0000 (06:46 +0000)]
MFC revision 1.90, log:
My previous commit made it impossible to export / over NFS; this small
change fixes this.
Reported by: Lin Jui-Nan Eric < ericlin dot jnlin at gmail dot com >
Submitted by: Erik Trulsson < ertr1013 at student dot uu dot se > (commit is i
nspired by a patch from Erik)
Pointyhat to: me
Reviewed by: stable@
Approved by: re (bmah), imp (mentor)
danger [Sun, 22 Oct 2006 22:26:54 +0000 (22:26 +0000)]
- Move available kernel options to SYNOPSIS, describe how to enable
ipfw from within loader.conf
- Remove IPDIVERT kernel option
- Add notes about IPFIREWALL_DEFAULT_TO_ACCEPT and IPFIREWALL_FORWARD
This change syncs this man page with the -CURRENT version.
Approved by: re (bmah), keramida (mentor), trhodes (mentor)
thompsa [Sat, 21 Oct 2006 19:10:39 +0000 (19:10 +0000)]
MFC bridgestp.c r1.15, if_bridge.c r1.73, if_bridgevar.h r1.15
Add some statistics that are needed to support RFC4188 as part of the SoC2006
work on a bridge monitoring module for BSNMP.
maxim [Sat, 21 Oct 2006 16:02:08 +0000 (16:02 +0000)]
MFC revs. 1.50 - 1.52: prevents statistics displayed by SIGINFO
handler from overflow, avoid division by zero, place error checking
code near to the syscall, style.
delphij [Sat, 21 Oct 2006 15:03:53 +0000 (15:03 +0000)]
MFC: mailwrapper(8) enhancements on -HEAD. The most visiable
feature is that we can now specify additional command line
parameters, which makes it possible to use applications, e.g.
mini_sendmail as a sendmail replacement.
glebius [Sat, 21 Oct 2006 05:43:29 +0000 (05:43 +0000)]
- Before doing ioctl(SIOCGIFNETMASK) put the proper IP address into the ifreq,
to obtain correct netmask in case of interface with multiple aliases.
- While here, remove a comment with a bad idea.
scottl [Sat, 21 Oct 2006 05:28:50 +0000 (05:28 +0000)]
Sync the MFI driver to HEAD. This fixes a potential problem with AEN
events, adds many debugging and informational tools, and increases support
for running the linux management apps.
jmg [Tue, 17 Oct 2006 03:42:43 +0000 (03:42 +0000)]
MFC: devd.conf.5 v1.9
> flesh out the devd.conf man page... Mostly from the PR, but did a couple
> gramatical tweaks along w/ sorting the list, and adding that serial is
> available for USB....
ume [Mon, 16 Oct 2006 15:09:24 +0000 (15:09 +0000)]
MFC: Revert the default value of net.inet6.ip6.auto_linklocal to 1.
If ipv6_enable is not set to "YES", net.inet6.ip6.auto_linklocal
is turned to 0 at boot.
ru [Mon, 16 Oct 2006 11:54:36 +0000 (11:54 +0000)]
MFC: 1.100:
- Improve description of the -A option.
- Document how whiteouts look in the long output. [1]
- Sort entry types.
- Fix description of the socket type.
bde [Mon, 16 Oct 2006 09:00:30 +0000 (09:00 +0000)]
Unbreak syscons' support for ddb mode by reactivating old fixes
(syscons.c 1.331 and 1.372 are reactivated by restoring this part of
db_interface.c (i386 version 1.48, ...) in a different file).
This is not a MFC because larger changes than I have time for are
needed there.
The most noticeable effect of this fix is that syscons switches to the
console vty on entry to ddb. The most important effect of this fix
is that switching vtys in ddb doesn't try (and sometimes succeed) to
crash the system by calling wakeup().
mlaier [Fri, 13 Oct 2006 18:32:43 +0000 (18:32 +0000)]
MFC, if_iwi.c 1.40:
Remind firmware of the ESSID to use in a directed scan. This fixes
scanning for hidden APs when we are not comming from iwi_config.