| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
| |
from attempting to use it for good. There is a catch, kvm_proc.c needs
to '#define _KERNEL' to get at the ucred.
Requested by: rwatson
|
|
|
|
|
|
|
|
|
| |
correctly.
PR: 24393
Submitted by: semenu
Approved by: rwatson (mentor)
MFC after: 1 week
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
expensive (!) 64bit multiply, divide, and comparison aren't necessary
(this came in originally from rev 1.19 to fix an overflow with large
sb_max or MCLBYTES).
The 64bit math in this function was measured in some kernel profiles as
being as much as 5-8% of the total overhead of the TCP/IP stack and
is eliminated with this commit. There is a harmless rounding error (of
about .4% with the standard values) introduced with this change,
however this is in the conservative direction (downward toward a
slightly smaller maximum socket buffer size).
MFC after: 3 days
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
|
| |
Check if the trapped pc is inside of the demarked sections to implement
fault recovery for copyin etc, instead of pcb_onfault. Handle recovery
from data access exceptions as well as page faults.
Inspired by: bde's sys.dif
|
| |
|
|
|
|
| |
were reversed. Correct this with no functional change.
|
|
|
|
|
|
|
|
|
|
|
| |
in an if clause.
PR:
Submitted by:
Reviewed by:
Approved by:
Obtained from:
MFC after:
|
|
|
|
|
|
| |
for LOCKD_MSG instead.
Requested by: rwatson
|
|
|
|
| |
Missed by: kern/39809,njl
|
| |
|
|
|
|
|
| |
PR: kern/39809
Approved by: gibbs
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
make a series of modifications to the credential arguments relating
to file read and write operations to cliarfy which credential is
used for what:
- Change fo_read() and fo_write() to accept "active_cred" instead of
"cred", and change the semantics of consumers of fo_read() and
fo_write() to pass the active credential of the thread requesting
an operation rather than the cached file cred. The cached file
cred is still available in fo_read() and fo_write() consumers
via fp->f_cred. These changes largely in sys_generic.c.
For each implementation of fo_read() and fo_write(), update cred
usage to reflect this change and maintain current semantics:
- badfo_readwrite() unchanged
- kqueue_read/write() unchanged
pipe_read/write() now authorize MAC using active_cred rather
than td->td_ucred
- soo_read/write() unchanged
- vn_read/write() now authorize MAC using active_cred but
VOP_READ/WRITE() with fp->f_cred
Modify vn_rdwr() to accept two credential arguments instead of a
single credential: active_cred and file_cred. Use active_cred
for MAC authorization, and select a credential for use in
VOP_READ/WRITE() based on whether file_cred is NULL or not. If
file_cred is provided, authorize the VOP using that cred,
otherwise the active credential, matching current semantics.
Modify current vn_rdwr() consumers to pass a file_cred if used
in the context of a struct file, and to always pass active_cred.
When vn_rdwr() is used without a file_cred, pass NOCRED.
These changes should maintain current semantics for read/write,
but avoid a redundant passing of fp->f_cred, as well as making
it more clear what the origin of each credential is in file
descriptor read/write operations.
Follow-up commits will make similar changes to other file descriptor
operations, and modify the MAC framework to pass both credentials
to MAC policy modules so they can implement either semantic for
revocation.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
|
|
|
|
| |
PR: kern/39809
Approved by: gibbs
|
|
|
|
|
|
|
| |
are about equally as alphabetized.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
|
|
|
|
|
|
|
|
| |
Label link layer mbufs as they are created for transmission, check
mbufs before delivering them to sockets, label mbufs as they are created
from sockets, and preserve mbuf labels if mbufs are copied.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
|
|
|
|
|
|
|
| |
we can use the names _receive() and _send() for the receive() and send()
checks. Rename related constants, policy implementations, etc.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
we can use the names _receive() and _send() for the receive() and send()
checks. Rename related constants, policy implementations, etc.
PR:
Submitted by:
Reviewed by:
Approved by:
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
MFC after:
|
|
|
|
|
|
| |
rather than immediately returning, or we may not unlock necessary locks.
Noticed by: Mike Heffner <mheffner@acm.vt.edu>
|
|
|
|
|
|
| |
Follow-on to rev 1.39.
Reviewed by: jayanth, Thomas R Henderson <thomas.r.henderson@boeing.com>, silby, dillon
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
When a pipe or queue has the "noerror" attribute, do not report
drops to the caller (ip_output() and friends).
(2 lines to implement it, 2 lines to document it.)
This will let you simulate losses on the sender side as if they
happened in the middle of the network, i.e. with no explicit feedback
to the sender.
manpage and ipfw2.c changes to follow shortly, together with other
ipfw2 changes.
Requested by: silby
MFC after: 3 days
|
|
|
|
|
|
|
|
| |
handling, rather than returning directly to prevent leaking of vnode
reference/lock.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
|
|
|
|
|
|
| |
all structures in ip_var.h are defined, so remove include of mac.h.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
|
|
|
|
|
|
|
| |
satisfy consumers of ip_var.h that need a complete definition of
struct ipq and don't include mac.h.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
|
|
|
|
|
|
|
| |
is no longer present.
Pointed out by: bmilekic
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
|
|
|
|
|
|
|
|
| |
type of the 'flags' argument m_getcl() was using anyway; m_extadd()
needed to be changed to accept an int instead of a short for 'flags.'
This makes things more consistent and also gives us more bits to
use for m_flags in the future (we have almost run out).
Requested by: sam (Sam Leffler)
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
Define some basic firmware downloading commands.
|
|
|
|
| |
This makes truss work on sparc64.
|
|
|
|
| |
have any reason to; force alternat globals instead, which is what we want.
|
|
|
|
|
| |
Find the prom node for the boot cpu earlier and store it in the per-cpu
area, so that cache_init can be called earlier.
|
|
|
|
|
|
|
|
|
|
| |
elimiates the driver lockup problem reported by many.
Concepts used were taken from Via's if_fet driver. Verification
and implementation were done by Thomas Nystrom.
Submitted by: Thomas Nystrom <thn@saeab.se>
MFC after: 3 days
|
| |
|
|
|
|
|
|
|
|
|
| |
during a label change resulting in an mmap removal. This is "fail stop"
behavior, which is preferred, although it offers slightly less
transparency.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
| |
|
|
|
|
|
|
| |
Significantly de-obfuscate udf_lookup
Inspired By: tes@sgi.com
|
|
|
|
|
|
| |
the BSS (so that it can be binary-patched).
Inspired by: bde
|
|
|
|
|
|
| |
it's const.
Inspired by: bde
|
|
|
|
| |
Inspired by: bde
|
| |
|
|
|
|
|
|
|
| |
the DIOCGDINFO ioctl into DIOCGDVIRGIN. This allows the newfs(8) to
work on vinum volumes without the now removed -v option.
Approved by: grog
|
|
|
|
|
|
|
|
| |
pollution.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
Suggested by: bde
|
|
|
|
|
|
|
|
|
| |
(Most of the places where mac.h was recursively included from another
kernel header file. net/netinet to follow.)
Obtained from: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
Suggested by: bde
|
| |
|
| |
|