Aren/NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
258,283 Commits 606 Branches 0 Tags 3.1 GiB
C 85.3%
Roff 7.2%
Assembly 3.1%
Shell 1.7%
Makefile 1.2%
Other 0.9%
a7d0cc8839
Go to file
maxv a7d0cc8839 Fix the checks in compute_ipsec_pos, otherwise m_copydata could crash. I 
already fixed half of the problem two months ago in rev1.67, back then I
thought it was not triggerable because each packet we emit is guaranteed
to have correctly formed IPv6 options; but it is actually triggerable via
IPv6 forwarding, we emit a packet we just received, and we don't sanitize
its options before invoking IPsec.

Since it would be wrong to just stop the iteration and continue the IPsec
processing, allow compute_ipsec_pos to fail, and when it does, drop the
packet entirely.
2018-05-01 05:42:26 +00:00
bin In uses like $(( var )) (un-dollared vars in arithmetic) we allow 2018-04-21 23:01:29 +00:00
common Complete previous by complteley removing the _DIAGASSERT from memmove - 2018-02-12 11:14:15 +00:00
compat fix a comment. 2018-02-06 10:00:00 +00:00
crypto The secret key is required for decryption and signing. Indicate it by setting 2018-04-30 22:17:46 +00:00
dist/pf
distrib Add missing netpgp.html (for new lua binding) 2018-04-30 09:59:09 +00:00
doc netpgp(3lua) 2018-04-30 21:02:39 +00:00
etc Create bpf and openfirm devices 2018-04-28 12:45:03 +00:00
external gmake: Revert configure r1.2 and configure.in r1.2. 2018-05-01 00:39:58 +00:00
extsrc
games wtf(6): use character classes 2018-03-07 08:25:43 +00:00
include Mark in string.h: memccpy(3) and strdup(3) as _POSIX_C_SOURCE >= 2001 2018-02-20 02:35:24 +00:00
lib Add some compat stubs for aarch64. Not providing any actual compatibility 2018-04-29 17:47:06 +00:00
libexec Add -f option to ftpd to stay in foreground with -D. 2018-04-28 13:38:00 +00:00
regress
rescue Add progress(1) into /rescue. 2018-04-11 00:26:38 +00:00
sbin Add code 3 of paramprob, part of RFC7112: "IPv6 First Fragment has 2018-04-24 07:22:32 +00:00
share Fix copyright year. Fix whitespace, slightly improve wording. 2018-04-30 07:10:04 +00:00
sys Fix the checks in compute_ipsec_pos, otherwise m_copydata could crash. I 2018-05-01 05:42:26 +00:00
tests Add two new ptrace(2) ATF tests 2018-04-29 13:56:00 +00:00
tools PR/53238: Robert Elz: Disable MKREPRO in tools; the host compiler might 2018-05-01 00:04:34 +00:00
usr.bin print the mprotect perm argument symbolically. 2018-04-29 18:00:31 +00:00
usr.sbin Back out part of the prior commit where we added space for IPV6_HOPLIMIT 2018-04-24 18:31:48 +00:00
build.sh Add initial support for ARMv8 (AARCH64) (by nisimura@ and ryo@) 2018-04-01 04:35:01 +00:00
BUILDING regen 2018-02-16 10:05:22 +00:00
Makefile include bsd.clean.mk so that we actually clean up the attempted "params" 2018-03-13 03:06:28 +00:00
Makefile.inc
UPDATING Add a note about potential tools build failure due to yesterday's 2018-04-15 17:22:03 +00:00