CyberLeo.Net >> Repos - FreeBSD/releng/10.0.git/log

Fix integer overflow in IGMP protocol. [SA-15:04]

Fix vt(4) crash with improper ioctl parameters. [EN-15:01]

Updated base system OpenSSL to 1.0.1l. [EN-15:02]

Fix freebsd-update libraries update ordering issue. [EN-15:03]

Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@279264 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix SCTP SCTP_SS_VALUE kernel memory corruption and disclosure vulnerability
and SCTP stream reset vulnerability.

Security: FreeBSD-SA-15:02.kmem
Security: CVE-2014-8612
Security: FreeBSD-SA-15:03.sctp
Security: CVE-2014-8613
Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@277808 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix multiple vulnerabilities in OpenSSL. [SA-15:01]

Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@277195 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

[SA-14:31] Fix multiple vulnerabilities in NTP suite.
[EN-14:13] Fix directory deletion issue in freebsd-update.

Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@276158 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix unbound remote denial of service vulnerability.

Security: FreeBSD-SA-14:30.unbound
Security: CVE-2014-8602
Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@275854 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix multiple vulnerabilities in file(1) and libmagic(3).

Security: FreeBSD-SA-14:28.file
Security: CVE-2014-3710, CVE-2014-8116, CVE-2014-8117
Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@275671 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

[SA-14:24] Fix denial of service attack against sshd(8).
[SA-14:25] Fix kernel stack disclosure in setlogin(2) / getlogin(2).
[SA-14:26] Fix remote command execution in ftp(1).
[EN-14:12] Fix NFSv4 and ZFS cache consistency issue.

Approved by: so (des)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@274110 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Time zone data file update. [EN-14:10]

Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@273439 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix rtsold(8) remote buffer overflow vulnerability. [SA-14:20]

Fix routed(8) remote denial of service vulnerability. [SA-14:21]

Fix memory leak in sandboxed namei lookup. [SA-14:22]

Fix OpenSSL multiple vulnerabilities. [SA-14:23]

Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@273415 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix Denial of Service in TCP packet processing.

Security: FreeBSD-SA-14:19.tcp
Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@271669 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix multiple OpenSSL vulnerabilities:

The receipt of a specifically crafted DTLS handshake message may cause OpenSSL
to consume large amounts of memory. [CVE-2014-3506]

The receipt of a specifically crafted DTLS packet could cause OpenSSL to leak
memory. [CVE-2014-3507]

A flaw in OBJ_obj2txt may cause pretty printing functions such as
X509_name_oneline, X509_name_print_ex et al. to leak some information from
the stack. [CVE-2014-3508]

OpenSSL DTLS clients enabling anonymous (EC)DH ciphersuites are subject to
a denial of service attack. [CVE-2014-3510]

If a multithreaded client connects to a malicious server using a resumed
session and the server sends an ec point format extension it could write
up to 255 bytes to freed memory. [CVE-2014-3509]

A flaw in the OpenSSL SSL/TLS server code causes the server to negotiate
TLS 1.0 instead of higher protocol versions when the ClientHello message
is badly fragmented. [CVE-2014-3511]

A malicious client or server can send invalid SRP parameters and overrun
an internal buffer. [CVE-2014-3512]

A malicious server can crash the client with a NULL pointer dereference by
specifying a SRP ciphersuite even though it was not properly negotiated
with the client. [CVE-2014-5139]

Security: CVE-2014-3506, CVE-2014-3507, CVE-2014-3508, CVE-2014-3510,
CVE-2014-3509, CVE-2014-3511, CVE-2014-3512, CVE-2014-5139
Security: FreeBSD-SA-14:18.openssl
Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@271304 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix kernel memory disclosure in control message and SCTP notifications.

Security: FreeBSD-SA-14:17.kmem
Security: CVE-2014-3952, CVE-2014-3953
Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@268434 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix iconv(3) NULL pointer dereference and out-of-bounds array
access. [SA-14:15]

Fix multiple vulnerabilities in file(1) and libmagic(3).
[SA-14:16]

Worked around bug with PCID implementation. [EN-14:07]

Security: CVE-2014-3951
Security: FreeBSD-SA-14:15.iconv
Security: CVE-2013-7345, CVE-2014-1943, CVE-2014-2270
Security: FreeBSD-SA-14:16.file
Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@267829 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix OpenSSL multiple vulnerabilities.

Security: CVE-2014-0195, CVE-2014-0221, CVE-2014-0224,
CVE-2014-3470
Security: SA-14:14.openssl
Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@267104 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix sendmail improper close-on-exec flag handling. [SA-14:11]

Fix incorrect error handling in PAM policy parser. [SA-14:13]

Fix triple-fault when executing from a threaded process. [EN-14:06]

Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@267017 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix OpenSSL NULL pointer deference vulnerability. [SA-14:09]

Security: FreeBSD-SA-14:09.openssl
Security: CVE-2014-0198

Fix data corruption with ciss(4). [EN-14:05]

Errata: FreeBSD-EN-14:05.ciss

Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@265987 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix devfs rules not applied by default for jails.

Fix OpenSSL use-after-free vulnerability.

Fix TCP reassembly vulnerability.

Security: FreeBSD-SA-14:07.devfs
Security: CVE-2014-3001
Security: FreeBSD-SA-14:08.tcp
Security: CVE-2014-3000
Security: FreeBSD-SA-14:09.openssl
Security: CVE-2010-5298
Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@265124 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix NFS deadlock vulnerability. [SA-14:05]

Fix "Heartbleed" vulnerability and ECDSA Cache Side-channel
Attack in OpenSSL. [SA-14:06]

Approved by: so

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@264267 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFreleng10 r259582 (reverse), MFstable10 r259491, r259492, r260781:

r259582 (reverted):
  Set PACKAGESITE to 'release/0' for the pkg-stage target to pull
  the release set of packages.  (Required to eliminate conflicts.)

r259491:
  Prevent release build errors found during snapshot builds where if
  NOPORTS=1, pkg-stage.sh cannot build the ports-mgmt/pkg port if
  WITH_DVD=1.

r259492:
  Add NOPKG to disable pkg-stage.

r260781:
  Update the pkg-stage target to be more compatible with pkg-1.2:

- Add a release-dvd.conf pkg(8) configuration file to override
   the default FreeBSD.conf configuration.
- Remove architecture-specific pkg-stage.conf files, consolidate,
   and move their contents to scripts/pkg-stage.sh.
- Use 'pkg -vv' to determine the ABI, which is used as the
   cache directory.

  Prior to these changes, it would be possible for pkg-stage to fetch
  conflicting binary packages from multiple repositories.

  A change local to releng/10.0 sets the package fetch URL to
  'release/0'.

Approved by: re (delphij)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260787 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Update releng/10.0 to -RELEASE as part of the 10.0-RELEASE cycle.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260664 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Record a missing mergeinfo.

Approved by: re (implicitly)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260658 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

- MFC 260656:

* Purge old translations.
* Add missing footer due to DSSSL->XSLT migration and use XML catalog to
resolve URI.
* Add missing arch= and revision= support.
* Update release.ent and fix release number in Errata.

- Trim copyright year.
- Trim merged= attr. It is useless for release branch.
- Move entities into release.ent.
- Update footer for a release.
- Document rc.d/sendmail certification support[1].
- Update BIND removal entry to mention NLnet Labs[2].

Submitted by: jmg[1]
Suggested by: erwin[2]
Approved by: re (implicitly)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260657 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Document recent security advisories (since 9.2-RELEASE is released).

Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260649 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFS r260639 (MFC r260637):

Disable 'monitor' feature in ntpd by default.

Security: FreeBSD-SA-14:02.ntpd
Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260641 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFS r260638 (MFC r260636):

Fix bsnmpd remote denial of service vulnerability.

Reported by: dinoex
Submitted by: harti
Security: FreeBSD-SA-14:01.bsnmpd
Security: CVE-2014-1452
Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260640 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Revert r260613, iw_cxgbe is correct, but does not have a manual page.

Submitted by: np
Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260620 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Clean up unnecessary blank lines.
Clean up leading/trailing whitespace.
Wrap long lines.
End 'para' tags on the correct line.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260616 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix various release notes nits.

Submitted by: dt71@gmx.com (via -doc@)
Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260615 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Add punctuation to sentences where missing.
Remove one instance of unneeded punctuation.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260614 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Add entity for if_cxgbe(4) manual.
Fix a typo.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260613 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Update copyright year.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260611 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFS r260608:

Remove scary comment about this being a test key.

There has been no need to regenerate the signing key.

Approved by: bapt (mentor, implicit)
Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260609 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Update releng/10.0/ to -RC5 as part of the 10.0-RELEASE cycle.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260430 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFC r260232:
Don't check for fd limits in fdgrowtable_exp.

Callers do that already and additional check races with process
decreasing limits and can result in not growing the table at all, which
is currently not handled.

Approved by: re

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260409 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFstable/10 r260402:

Bring back the old size of the kinfo_file structure to preserve ABI.
Keep only one uint64_t spare for further cap_rights_t expension.

Add a comment clarifying that if the size of this structure changes,
a new sysctl MIB has to be allocate for it and the old structure has
to be returned by the old sysctl MIB.

Requested by: re
Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260406 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFS r260404 (MFC r260403 (MFV r260399)):

Apply vendor commits:

197e0ea Fix for TLS record tampering bug.  (CVE-2013-4353).
3462896 For DTLS we might need to retransmit messages from the
previous session so keep a copy of write context in DTLS
retransmission buffers instead of replacing it after
sending CCS.  (CVE-2013-6450).
ca98926 When deciding whether to use TLS 1.2 PRF and record hash
algorithms use the version number in the corresponding
SSL_METHOD structure instead of the SSL structure.  The
SSL structure version is sometimes inaccurate.
Note: OpenSSL 1.0.2 and later effectively do this already.
(CVE-2013-6449).

Security: CVE-2013-4353
Security: CVE-2013-6449
Security: CVE-2013-6450
Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260405 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Merge r260319 from stable/10 (r260188 from head):

Fix regression from r249894. Now we pass "gw" as argument to if_output
method, thus for multicast case we need it to point at "dst".

PR: 185395
Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260378 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Update releng/10.0/ to -RC4 as part of the 10.0-RELEASE cycle.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260130 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFC r260125:
Bump copyright year.
Happy New Year 2014!

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260129 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFC r259951:
Do not coalesce stack entry. Pass MAP_STACK_GROWS_DOWN and
MAP_STACK_GROWS_UP flags to vm_map_insert() from vm_map_stack()

Approved by: re (delphij)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260122 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Add manual page entities needed for the -RELEASE build that
do not exist in the doc/release/10.0.0/ tag.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@260094 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MF10 r259974 (MFC r259973):

Tighten default restrictions for ntpd(8) server and provide a link
to NTP access restriction documentation.

Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259975 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFstable10 r259809 (rodrigc):
Add pointer to wiki for Hyper-V information.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259810 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Link the installation article to the build.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259807 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix a typo in an XML element, incorrectly updated for docbook 5.0

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259806 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Add the installation article, copied from releng/9.2,
modified for releng/10.0/.

It is not yet linked to the build.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259805 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Fix an undo error that crept in during formatting changes.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259803 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Add list of rc(8) scripts added/removed in 10.0-RELEASE.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259802 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Specify there are no security advisories.
Comment the 'doc' and 'rc-scripts' sections.

This is done to silence tidy(1) when cleaning up
the generated html.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259800 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Add a note that the latest version of the release notes will exist
on the website.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259797 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Update release.url from snapshots/ to releases/.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259794 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFstable10 r259788, r259789:

r259788:
Update FreeBSD version entity values.

r259789:
Switch references from -CURRENT to -STABLE.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259790 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFstable10 r259277, r259494, r259577, r259768, r259783:

r259277 (rodrigc):
   Mention BIND removal in release notes.

r259494 (rodrigc):
  Add OFED and Mellanox items to release notes.
  Add release note items from Chelsio.

r259577 (rodrigc):
  Add SVN revision numbers for Mellanox updates.
  Add SVN revision numbers for Chelsio updates.
  Indent.

r259768 (rodrigc):
  Merge release note updates.

r259783 (rodrigc):
  Mention jemalloc upgrade to 3.4.0

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259786 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Update releng/10.0 to -RC3 as part of the 10.0-RELEASE cycle.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259778 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFS r249447:
  Apply patch from upstream Heimdal for encoding fix

  RFC 4402 specifies the implementation of the gss_pseudo_random()
  function for the krb5 mechanism (and the C bindings therein).
  The implementation uses a PRF+ function that concatenates the output
  of individual krb5 pseudo-random operations produced with a counter
  and seed.  The original implementation of this function in Heimdal
  incorrectly encoded the counter as a little-endian integer, but the
  RFC specifies the counter encoding as big-endian.  The implementation
  initializes the counter to zero, so the first block of output (16 octets,
  for the modern AES enctypes 17 and 18) is unchanged.  (RFC 4402 specifies
  that the counter should begin at 1, but both existing implementations
  begin with zero and it looks like the standard will be re-issued, with
  test vectors, to begin at zero.)

  This is upstream's commit f85652af868e64811f2b32b815d4198e7f9017f6,
  from 13 October, 2013:
  % Fix krb5's gss_pseudo_random() (n is big-endian)
  %
  % The first enctype RFC3961 prf output length's bytes are correct because
  % the little- and big-endian representations of unsigned zero are the
  % same.  The second block of output was wrong because the counter was not
  % being encoded as big-endian.
  %
  % This change could break applications.  But those applications would not
  % have been interoperating with other implementations anyways (in
  % particular: MIT's).

Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259758 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Revert one line from r248885, which uncovered several bugs in processing
interaction between ksocket_incoming2() and soreceive().

This is direct commit to releng/10.0. A conservative solution for releng
branch. Proper fix in head is r259681.

PR: 184601
Sponsored by: Nginx, Inc.
Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259757 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Merge from stable/10, r259745:

drm: Lower priority of "EDID checksum is invalid" message

The priority goes from "error" to "debug".

Connectors are polled every 10 seconds. Reading EDID is part of this
polling. However, when an invalid EDID is returned, this error message
is logged. When using Newcons for instance, having a kernel message
every 10 seconds is getting annoying.

Now that it's a debug message, it'll be logged only if hw.dri.debug is
enabled. This fix console spamming for some users.

Tested by: Larry Rosenman <ler@lerctr.org>
Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259755 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Merge from stable/10, r259742:

drm/ttm, drm/radeon: Replace EINTR/ERESTART by ERESTARTSYS...

... for msleep/cv_*wait() return values, where wait_event*() is used
on Linux. ERESTARTSYS is the return code expected by callers when the
operation was interrupted.

For instance, this is the case of radeon_cs_ioctl() (radeon_cs.c): if
an error occurs, and the code isn't ERESTARTSYS (eg. EINTR), it logs an
error.

Note that ERESTARTSYS is defined as ERESTART, but this keeps callers'
code close to Linux.

Submitted by: avg@ (previous version)
Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259754 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Merge from stable/10, r259741:

vga_pci: Improve boot display detection

The previous code was checking the "VGA Enable" bit on the video card's
parent PCI-to-PCI bridge only. This didn't work for the case where the
video card is attached to the root PCI bus (ie. the card has no parent
PCI-to-PCI bridge).

Now, the new code:
    1. checks the "VGA Enable" bit on the parent bridge only if it's a
       PCI-to-PCI bridge;
    2. always checks the "I/O" and "Memory address space decoding" bits
       on the video card itself.

However, vendor-specific bits are not used.

This fixes the use of many integrated Radeon cards: without this patch,
we fail to detect them as the boot display and, when radeonkms looks for
the Video BIOS, it skips the shadow copy made by the System BIOS. It
then fails to fully initialize the card, because the shadow copy is the
only way to read the Video BIOS in these situations. A workaround was to
force the boot display selection using the "hw.pci.default_vgapci_unit"
tunable.

A previous version of this patch added a new function doing the checks.
Now, the vga_pci_is_boot_display() function is used to perform the
checks (only until the boot display is found) and return if the given
device is the boot display or not.

Furthermore, vga_pci_attach() logs "Boot video device" if the card being
attached it the Chosen One:
    vgapci0: <VGA-compatible display> [...]
    vgapci0: Boot video device

Reviewed by: kib@, jhb@ (both a previous version)
Tested by: lunatic_ (#freebsd-xorg, integrated Radeon card,
xmj (#freebsd-xorg, i915+NVIDIA cards)
Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259752 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Direct commit: not relevant to other branches.

Fix mountroot> prompt eating most of the characters by not enabling
RXRDY interrupts in the attach routine. Instead, defer this until the
first interrupt we see after the device is opened. Given the console
use case, we're guaranteed to get a TXRDY interrupt before any reads
are posted due to boot messages, which makes this work.

The real fix is to use cngrab/cnungrab function pointers to disable
RXRDY interrupts while grabbed. However, that touches the MI uart
code, so was disallowed for 10.0 due to the lateness of the hour this
fix was proposed. It works for mountroot, the most common atmel kernel
prompt use cases, but wouldn't work for GELI since it prompts later in
the boot process.

Approved by: re@ (gjb@)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259748 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Merge from stable/10 r259381:

MFC r259212, r259220:

Fix one race and one fence post error. When the TX buffer was
completely full, we'd not complete any of the mbufs due to the fence
post error (this creates a large leak). When this is fixed, we still
leak, but at a much smaller rate due to a race between ateintr and
atestart_locked as well as an asymmetry where atestart_locked is
called from elsewhere. Ensure that we free in-flight packets that
have completed there as well. Also remove needless check for NULL on
mb, checked earlier in the loop and simplify a redundant if.

Approved by: re@ (gjb@)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259747 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Merge from stable/10 r259380:

MFC r259038, r259039:

Bump the maximum VM space from 3 * memory size to a fixed
256MB. That's all we have room for since we map the hardware registers
starting at 0xd0000000. This allows my 64MB AT91SAM9G20 to boot again
after the unmmaped I/O changes were MFC'd at r251897. Other
subplatforms may need similar treatment.

Although not strictly required to boot a 64MB board, bump
vm_max_virtual_address to be KERNVIRTADDR + 256MB. This allows some
future shock protection since the KVA requirements have gone up since
the unmapped changes have gone in, as well as preventing us from
overlapping with the hardware devices, which we map at 0xd0000000,
which we'd hit with anything more than 85MB...

Approved by: re@ (gjb@)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259746 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFC r259734:

MFV r258923: 4188 assertion failed in dmu_tx_hold_free(): dn_datablkshift != 0

illumos/illumos-gate@bb411a08b05466bfe0c7095b6373bbc1587e259a

Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259738 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFS10 SVN r259621:

MFC r259276,259468-259470,259472,259474,259476-259478,259480-259481,259570,
259572, and 259597-259598...

r259276: Fix bug in `services' script in adding dumpdev comment to rc.conf
r259468: Ignore spurious escape generated by VMware's Ctrl-Cmd combination
r259469: Mask errors in `config' script from newaliases(1) about non-FQHN
r259470: Set atime=on for /var/mail zfsboot dataset to support mail server
r259472: Accept NULL input for zfsboot SWAP to indicate SWAP of zero bytes
r259474: Multiple changes, including bug-fixes and debugging improvements
r259476: Change default ZFS disk layout, making it easier to resize
r259477: fletcher4 is now the default (zfsboot related)
r259478: De-uglify the geli(8)-setup infobox (zfsboot related)
r259480: Fix ghosted zroot issue by always performing labelclear on swap
r259481: Auto-enable 4k sector alignmet when geli(8) is enabled (zfsboot)
r259570: Fix numerical comparison error (zfsboot)
r259572: Mask spurious rm error in bsdinstall_log from `auto' script
r259597: Fix zfsboot regression when installing to 3+ disks
r259598: Set cachefile property of bootpool so it imports to new system

Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259652 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFStable r259536
  MFC r259302,r259413

  r259302
    bhyve(8) man page

  r259413
    mdoc: sort SEE ALSO

Approved by: re@ (glebius)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259639 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Merge r259541 from stable/10:

Merge r256868,257276-257277,257515,257913 from head. These are fixes
required to make Xen buildable w/o INET.

Approved by: re (delphij)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259637 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Merge r259622:
cxgbe.4: Belated update to the man page to reflect T5 support.

Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259623 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Defer start/stop port to workqueues.
MF10: r259608

Approved by: re

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259616 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFS r259613:

  Fix multi-repository support by properly respecting 'enabled' flag.

  This will read the REPOS_DIR env/config setting (default is /etc/pkg
  and /usr/local/etc/pkg/repos) and use the last enabled repository.

  This can be changed in the environment using a comma-separated list,
  or in /usr/local/etc/pkg.conf with JSON array syntax of:
      REPOS_DIR: ["/etc/pkg", "/usr/local/etc/pkg/repos"]

Approved by: bapt (mentor)
Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259614 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Set PACKAGESITE to 'release/0' for the pkg-stage target to pull
the release set of packages.

This is a direct commit to releng/10.0/.

Approved by: re (rodrigc)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259582 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFC r259426, r259427:

r259426:
  Add a pkg(8) repository configuration file for cdrom-based package
  installation.

  As part of the 'pkg-stage' target, copy the configuration file
  to the 'packages/repos/' directory on the DVD filesystem.

r259427:
  Export 'REPOS_DIR' when the selected source medium for package
  installation is cdrom.  This enables bsdconfig(8) to make use
  of the on-disc pkg(8) repository configuration, which fixes
  package selection and installation from the dvd installer.

Approved by: re (delphij, glebius)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259534 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MF10 259465:
Add new sysctl, kern.supported_archs, containing the list of FreeBSD
MACHINE_ARCH values whose binaries this kernel can run. This patch provides
a feature requested for implementing pkgng ABI identifiers in a robust
way.

The list is designed to indicate whether, say, an i386 package can be run on
the current system. If kern.supported_abis contains "i386", then the answer
is yes. Otherwise, the answer is no.

At the moment, this only supports MACHINE_ARCH and MACHINE_ARCH32. As we
gain support for more interesting combinations, this needs to become more
flexible, possibily through the sysent framework, along with the
hw.machine_arch emulation immediately preceding this code in kern_mib.c.

Reviewed by: imp
Approved by: re (glebius)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259515 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFStable-10 r259301

  MFC r256657,r257018,r257347,r257423,r257729,r257767,
      r257933,r258609,r258614,r258668,r258673,r258855

  Pull in some minor bugfixes and functionality enhancements
  from CURRENT. These are candidates to be moved to 10.0-release.

  r258855
  mdoc: quote string properly.

  r258673
  Don't create an initial value for the host filesystem of "/".

  r258668
  Allow bhyve and bhyveload to attach to tty devices.

  r258614
  The 22-bit Data Byte Count (DBC) field of a Physical Region Descriptor was
  being read as a 32-bit quantity by the bhyve AHCI driver.

  r258609
  Fix discrepancy between the IOAPIC ID advertised by firmware tables and the
  actual value read by the guest.

  r257933
  Route the legacy timer interrupt (IRQ0) to pin 2 of the IOAPIC.

  r257767
  Fix an off-by-one error when iterating over the emulated PCI BARs.

  r257729
  Add the VM name to the process name with setproctitle().

  r257423
  Make the virtual ioapic available unconditionally in a bhyve virtual machine.

  r257347
  Update copyright to include the author of the LPC bridge emulation code.

  hand-merge r257018
  Tidy usage messages for bhyve and bhyveload.

  r256657
  Add an option to bhyveload(8) that allows setting a loader environment variable
  from the command line.

Approved by: re@ (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259496 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Update releng/10.0 to -RC2 as part of the 10.0-RELEASE cycle.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259404 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFC r256430, r259400:

r256430:
  Reduce disc1.iso image size by installing the userland with
  the WITHOUT_PROFILE=1 option set, trimming 56MB from the image.

r259400:
  Reduce disc1.iso size by 74MB by removing lib32 libraries, sendmail,
  and atf.

Approved by: re (glebius)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259403 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFC r259113, r259115, r259144, r259148:

r259113 (dteske):
  Fix failed attempt to send pkg(8) stderr to /dev/null

r259115 (dteske):
  Prevent truncating /tmp/bsdinstall_log each time we
  exec a module.

r259144 (dteske):
  Fix a regression after successfully installing to encrypted
  ZFS root, the passphrase is not accepted and a message about
  "incorrect key" is displayed.

r259148 (dteske):
  Fix a regression resulting in mountroot prompt after attempting
  to install to encrypted ZFS root (caused by a typo in a
  variable name -- ZFSBOOT_BOOT_FSNAME -> ZFSBOOT_BOOTFS_NAME).

Approved by: re (glebius)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259402 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFC r259003:
Initialize modesetting sysctls in radeonkms.

Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259388 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFC r259237:

drm: Read PCIER_LINK_CAP/PCIER_LINK_CAP2 from the PCI bridge

Before this fix, capabilities were read from vgapci and were incorrect.

Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259376 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFC r259236:

drm/radeon: radeon_dp_i2c_aux_ch() must return 0 on FreeBSD

The code was unmodified compared to Linux and returned the amount of
received bytes from the i2c bus. This led to non-working i2c bus and
failure to eg. read monitor's EDID, if connected to DisplayPort.

Tested by: Mikaël Urankar <mikael.urankar@gmail.com>
Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259370 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFC r259234:

drm/radeon: agp_info->ai_aperture_size is in bytes, not Mbytes

This fixes radeon_agp_init() and gtt_size is now correct. However, this
is not enough to make Radeon AGP cards work: ttm_agp_backend.c isn't
implemented yet.

Submitted by: tijl@
Approved by: re (gjb)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259367 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFC r259183:

Properly refuse handoff requests on already connected sessions. Previously
this would result in dropping the session.

Approved by: re (gjb)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259336 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFC r259182:

Fix handling for empty auth-groups. Without it, ctld child process
would either exit on assertion, or, if assertions are not enabled,
fail to authenticate the target.

Approved by: re (gjb)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259333 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFC r258871:

Properly report an error instead of panicing when user tries to create
LUN backed by non-disk device, e.g. /dev/null.

Approved by: re (glebius)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259332 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Merge r259216 from stable/10 (head r259111):

Use correct casts in gcc's emmintrin.h for the first arguments of the
following builtin functions:

* __builtin_ia32_pslldi128() takes __v4si instead of __v8hi
* __builtin_ia32_psllqi128() takes __v2di instead of __v8hi
* __builtin_ia32_psradi128() takes __v4si instead of __v8hi

This should fix the following errors when building the LINT kernel with
gcc:

sys/crypto/aesni/aesni_wrap.c:191: error: incompatible type for argument 1 of
'__builtin_ia32_psradi128'
sys/crypto/aesni/aesni_wrap.c:195: error: incompatible type for argument 1 of
'__builtin_ia32_pslldi128'

Approved by: re (glebius)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259279 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Merge r259214 from stable/10 (head r259100):

Pull in r196658 from upstream clang trunk:

  CodeGen: Don't emit linkage on thunks that aren't emitted because they're
  vararg.

  This can happen when we're trying to emit a thunk with available_externally
  linkage with optimization enabled but bail because it doesn't make sense for
  vararg functions.

  [LLVM] PR18098.

This should fix clang "Broken module found, compilation aborted" errors when
building the qt4-based dvbcut port.

Reported by: se
Approved by: re (glebius)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259278 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Merge r259175 from stable/10 (head r257065 by adrian):

Fix a use-after-free node reference issue when waiting for a return
from a management frame transmission.

Approved by: re (glebius)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259188 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Merge r259174 from stable/10 (head r256294 by adrian):

  Fix the "am I a net80211 vap" check for bpf listeners.

  I changed it to use if_transmit a while ago but apparently with monitor
  mode the if_transmit method is overridden.

  This is (mostly) a workaround until a more permanent solution can be
  found.

Submitted by: Patrick Kelsey <kelsey@ieee.org>
Approved by: re (glebius)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259187 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Merge r259173 from stable/10 (head r258758 by adrian):

  Make sure any waiters on the scan results get notified if the scan task
  decides to do nothing.

  If this isn't done, then a scan request whilst a scan occurs in an
  active channel set or a completed channel set will hang.

Approved by: re (glebius)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259185 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Merge r259172 from stable/10 (head r257754 by adrian):

Don't return ENOBUFS if the transmit path handles the frame but queues
it (eg in power save.)

PR: kern/183727
Approved by: re (glebius)

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259184 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

MFstable10 r259151:
Add WITH_DVD to RELEASE_RMAKEFLAGS, otherwise it is not actually
passed to 'make release'.

Approved by: re (glebius)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259181 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Remove svn:mergeinfo from the releng/10.0 branch.

After branch creation from stable/10, the stable/10 branch mergeinfo
was moved to the root of the branch.

Since there have not been any merges from stable/10 to releng/10.0
yet, we do not need to track any of the existing mergeinfo here.

Merges to releng/10.0 should now be done to the root of the branch.

For future branches during the release cycle, unless otherwise noted,
this change will be done as part of the stable/ and releng/ branch
creation.

Discussed with: peter
Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259128 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

Forced commit to mark the real -RC1 point.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259068 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

When stable/10 was branched from head/, __FreeBSD_version was bumped
to 1000500 from 1000055 when it should not have been bumped yet.

At the risk of having non-standard '5XX' __FreeBSD_version suffix
in a -RELEASE, bump __FreeBSD_version in releng/10.0 from 1000100
to 1000510 to prevent the value from going backwards as part of the
stable/10 -> releng/10.0 branch.

A commit to bump __FreeBSD_version in stable/10 will follow.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259067 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f

- Copy stable/10 (r259064) to releng/10.0 as part of the
  10.0-RELEASE cycle.
- Update __FreeBSD_version [1]
- Set branch name to -RC1

[1] 10.0-CURRENT __FreeBSD_version value ended at '55', so
    start releng/10.0 at '100' so the branch is started with
    a value ending in zero.

Approved by: re (implicit)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/releng/10.0@259065 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f