70a98c11 rwatson Aug. 20, 2016, 8:28 p.m.
(NB: This was likely a mismerge from XNU in audit support, where the
text argument to setlogin(2) is captured -- but as a text token,
whereas this change uses the dedicated login-name field in struct
audit_record.)

MFC after:	2 weeks
Sponsored by:	DARPA, AFRL
cgit ViewVC
e1949767 tuexen Aug. 20, 2016, 8:15 p.m.
MFC after: 3 days
cgit ViewVC
f1b4dbdf dim Aug. 20, 2016, 7:48 p.m.
behavior" in jemalloc, by defining JEMALLOC_CLOCK_GETTIME in a portable
manner.
cgit ViewVC
113c14a0 dim Aug. 20, 2016, 7:33 p.m.
d6c3ea5e dim Aug. 20, 2016, 7:33 p.m.
65e1b138 dim Aug. 20, 2016, 6:52 p.m.
c3c0088b rwatson Aug. 20, 2016, 6:51 p.m.
ftruncate(2) system call.  This was not required by the Common
Criteria, which needed only open-time audit.

MFC after:	2 weeks
Sponsored by:	DARPA, AFRL
cgit ViewVC
9228435a dim Aug. 20, 2016, 6:45 p.m.
initialization and termination code which reference plugins and
components that we don't use.
cgit ViewVC
2382c29e bapt Aug. 20, 2016, 4:36 p.m.
Most important change being:
dma - Fix security hole (#46)

Affecting DragonFly 4.6 and earlier, Matt Dillon fixed this in base after
finding out from BSDNow Episode 152. Comments following were from his commit
which explains better than I. Just taking his change and putting it here as well.

* dma makes an age-old mistake of not properly checking whether a file
owned by a user is a symlink or not, a bug which the original mail.local
also had.

* Add O_NOFOLLOW to disallow symlinks.

Thanks-to: BSDNow Episode 152, made me dive dma to check when they talked
about the mail.local bug.

MFC After:	2 days
cgit ViewVC
eb8bc562 bapt Aug. 20, 2016, 4:28 p.m.
5b6123e3 tsoome Aug. 20, 2016, 4:23 p.m.
strings provided by user/config files. This update is replacing sprintf with
snprintf for cases the command_errbuf is built from dynamic content.

PR:		211958
Reported by:	ecturt@gmail.com
Reviewed by:	imp, allanjude
Approved by:	imp (mentor), allanjude (mentor)
Differential Revision:	https://reviews.freebsd.org/D7563
cgit ViewVC
0c6be762 dim Aug. 20, 2016, 3:20 p.m.
6ca8079c dim Aug. 20, 2016, 2:04 p.m.
Fix for pr24346: arm asm label calculation error in sub

  Some ARM instructions encode 32-bit immediates as a 8-bit integer
  (0-255) and a 4-bit rotation (0-30, even) in its least significant 12
  bits. The original fixup, FK_Data_4, patches the instruction by the
  value bit-to-bit, regardless of the encoding. For example, assuming
  the label L1 and L2 are 0x0 and 0x104 respectively, the following
  instruction:

    add r0, r0, #(L2 - L1) ; expects 0x104, i.e., 260

  would be assembled to the following, which adds 1 to r0, instead of
  260:

    e2800104 add r0, r0, #4, 2 ; equivalently 1

  The new fixup kind fixup_arm_mod_imm takes care of the encoding:

    e2800f41 add r0, r0, #260

  Patch by Ting-Yuan Huang!

This fixes label calculation for ARM assembly, and is needed to enable
ARM assembly sources for OpenSSL.

Requested by:	jkim
MFC after:	3 days
cgit ViewVC
6975a721 avg Aug. 20, 2016, 9:13 a.m.
Discussed with:	mav
MFC after:	3 days
cgit ViewVC
723af042 avg Aug. 20, 2016, 9:12 a.m.
There are two cases where changing canmount should result in an action:
- canmount is set to off for a mounted filesystem
- canmount is set to on for an unmounted filesystem
Before r297521 we could unmount and re-mount a filesystem when that was
not necessary, but after r297521 we only handled the first of the above
cases.

MFC after:	5 days
cgit ViewVC