Aren
/
NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
NetBSD/sys
History
tls 88ad351cb1 Re-fix 'fix' for SA-2013-003. Because the original fix evaluated a flag 
backwards, in low-entropy conditions there was a time interval in which
/dev/urandom could still output bits on an unacceptably short key.  Output
from /dev/random was *NOT* impacted.

Eliminate the flag in question -- it's safest to always fill the requested
key buffer with output from the entropy-pool, even if we let the caller
know we couldn't provide bytes with the full entropy it requested.

Advisory will be updated soon with a full worst-case analysis of the
/dev/urandom output path in the presence of either variant of the
SA-2013-003 bug.  Fortunately, because a large amount of other input
is mixed in before users can obtain any output, it doesn't look as dangerous
in practice as I'd feared it might be.
 		2013-03-28 18:06:48 +00:00
..
altq
arch Fix loop bug (Phileas Fogg) 2013-03-28 00:22:21 +00:00
coda
compat Fix stat64 by making it match i386. Other archs might still be broken, 2013-03-21 15:03:47 +00:00
conf Retire OSI network stack. OK core@ 2013-03-01 18:25:13 +00:00
crypto
ddb need <sys/types.h> for various crap that other headers use (pid_t etc). 2013-02-10 14:44:14 +00:00
dev clear screen when leaving X so we don't leave garbage in the borders 2013-03-28 17:25:10 +00:00
dist/pf
external call mutex destroy in fini, so that we don't end up with a lockdebug panic 2013-03-27 23:49:02 +00:00
fs C99 section 6.7.2.3 (Tags) Note 3 states that: 2013-03-18 19:35:35 +00:00
gdbscripts update script 2013-03-06 11:26:22 +00:00
ipkdb
kern Re-fix 'fix' for SA-2013-003. Because the original fix evaluated a flag 2013-03-28 18:06:48 +00:00
lib Remove duplicate source files. 2013-03-17 04:47:16 +00:00
miscfs C99 section 6.7.2.3 (Tags) Note 3 states that: 2013-03-18 19:35:35 +00:00
modules normali{s,z}e 2013-03-12 20:47:48 +00:00
net Make ALG's autoloadable by providing in the config file: 2013-03-20 00:29:46 +00:00
net80211 Instead of always checking for ANYC, make it a valid channel 2013-03-21 18:30:09 +00:00
netatalk
netbt CID/90001: missing va_end() 2013-02-09 01:19:05 +00:00
netinet PR/47693: Erik E. Fair: Add missing code to icmp handling. 2013-03-25 18:43:30 +00:00
netinet6 Initialize variable used as (conditional) result parameter. 2013-03-18 19:31:39 +00:00
netipsec rename pcb_sp to policy to avoid: 2012-12-07 15:29:38 +00:00
netisdn
netkey
netmpls
netnatm
netsmb Improve smbfs timestamp handling. 2012-11-30 23:24:21 +00:00
nfs C99 section 6.7.2.3 (Tags) Note 3 states that: 2013-03-18 19:35:35 +00:00
opencrypto fix compilation 2013-02-02 21:38:24 +00:00
rump can we please stop breaking the build? These get compiled by the kernel 2013-03-19 02:07:43 +00:00
secmodel Make the callback deal with embryonic connections which do not have 2013-02-28 15:23:24 +00:00
stand
sys Bump minor number for removal of kauth_access_action(), as per 2013-03-21 20:05:56 +00:00
ufs C99 section 6.7.2.3 (Tags) Note 3 states that: 2013-03-18 19:35:35 +00:00
uvm Remove __BEGIN_DECLS/__END_DECLS 2013-02-02 14:06:58 +00:00
Makefile Retire OSI network stack. OK core@ 2013-03-01 18:25:13 +00:00