http://cia.vc/stats/author/pjd21231306267812Built-in Subversion repository interface1.0FreeBSD222268pjdDon't pass pointer to name buffer which is on the stack to another thread, because the stack might be paged out once the other thread tries to use the data. Instead, just allocate memory. MFC after: 2 weeks http://svn.freebsd.org/viewvc/base?view=revision&revision=222268head/sys/cddl/contrib/opensolaris/uts/common/fs/zfs/zfs_dir.c1306267635Built-in Subversion repository interface1.0FreeBSD222267pjdDon't access task structure once we call task function. The task structure might be no longer available. This also allows to eliminates the need for two tasks in the zio structure. Submitted by: anonymous MFC after: 2 weeks http://svn.freebsd.org/viewvc/base?view=revision&revision=222267head/sys/cddl/contrib/opensolaris/uts/common/fs/zfs/zio.chead/sys/cddl/contrib/opensolaris/uts/common/fs/zfs/sys/zio.hhead/sys/cddl/compat/opensolaris/kern/opensolaris_taskq.chead/sys/cddl/compat/opensolaris/sys/taskq.h1305847122Built-in Subversion repository interface1.0FreeBSD222108pjdIn preparation for IPv6 support allow to specify multiple addresses to listen on. MFC after: 3 weeks http://svn.freebsd.org/viewvc/base?view=revision&revision=222108head/sbin/hastd/parse.yhead/sbin/hastd/hastd.chead/sbin/hastd/hast.hhead/sbin/hastd/hast.conf.51305758636Built-in Subversion repository interface1.0FreeBSD222087pjd- Add support for AF_INET6 sockets for %S format character. - Use inet_ntop(3) instead of reimplementing it. - Use %hhu for unsigned char instead of casting it to unsigned int and using %u. MFC after: 1 week http://svn.freebsd.org/viewvc/base?view=revision&revision=222087head/sbin/hastd/pjdlog.c1305392523Built-in Subversion repository interface1.0FreeBSD221899pjdCurrently we are unable to use capsicum for the primary worker process, because we need to do ioctl(2)s, which are not permitted in the capability mode. What we do now is to chroot(2) to /var/empty, which restricts access to file system name space and we drop privileges to hast user and hast group. This still allows to access to other name spaces, like list of processes, network and sysvipc. To address that, use jail(2) instead of chroot(2). Using jail(2) will restrict access to process table, network (we use ip-less jails) and sysvipc (if security.jail.sysvipc_allowed is turned off). This provides much better separation. MFC after: 1 week http://svn.freebsd.org/viewvc/base?view=revision&revision=221899head/sbin/hastd/subr.hhead/sbin/hastctl/hastctl.chead/sbin/hastd/primary.chead/sbin/hastd/secondary.chead/sbin/hastd/subr.c1305392124Built-in Subversion repository interface1.0FreeBSD221898pjdWhen using capsicum to sanbox, still use other methods first, just in case one of them have some problems. http://svn.freebsd.org/viewvc/base?view=revision&revision=221898head/sbin/hastd/subr.c1304853056Built-in Subversion repository interface1.0FreeBSD221643pjdAllow to specify remote as 'none' again which was broken by r219351, where 'none' was defined as a value for checksum. Reported by: trasz MFC after: 1 week http://svn.freebsd.org/viewvc/base?view=revision&revision=221643head/sbin/hastd/parse.y1304847969Built-in Subversion repository interface1.0FreeBSD221633pjdDocument the following sysctls: kern.geom.eli.version kern.geom.eli.key_cache_limit kern.geom.eli.key_cache_hits kern.geom.eli.key_cache_misses MFC after: 1 week http://svn.freebsd.org/viewvc/base?view=revision&revision=221633head/sbin/geom/class/eli/geli.81304846961Built-in Subversion repository interface1.0FreeBSD221631pjdExport GELI class version via sysctl kern.geom.eli.version. MFC after: 1 week http://svn.freebsd.org/viewvc/base?view=revision&revision=221631head/sys/geom/eli/g_eli.c1304846754Built-in Subversion repository interface1.0FreeBSD221630pjdVersion 6 is compatible with version 5 when it comes to control commands. MFC after: 1 week http://svn.freebsd.org/viewvc/base?view=revision&revision=221630head/sys/geom/eli/g_eli_ctl.c1304846716Built-in Subversion repository interface1.0FreeBSD221629pjdDetect and handle metadata of version 6. MFC after: 1 week http://svn.freebsd.org/viewvc/base?view=revision&revision=221629head/sys/geom/eli/g_eli.h1304846276Built-in Subversion repository interface1.0FreeBSD221628pjdWhen support for multiple encryption keys was committed, GELI integrity mode was not updated to pass CRD_F_KEY_EXPLICIT flag to opencrypto. This resulted in always using first key. We need to support providers created with this bug, so set special G_ELI_FLAG_FIRST_KEY flag for GELI provider in integrity mode with version smaller than 6 and pass the CRD_F_KEY_EXPLICIT flag to opencrypto only if G_ELI_FLAG_FIRST_KEY doesn't exist. Reported by: Anton Yuzhaninov <citrin@citrin.ru> MFC after: 1 week http://svn.freebsd.org/viewvc/base?view=revision&revision=221628head/sys/geom/eli/g_eli.hhead/sys/geom/eli/g_eli_integrity.chead/sys/geom/eli/g_eli.c1304845864Built-in Subversion repository interface1.0FreeBSD221626pjdRemove prototype for a function that no longer exist. MFC after: 1 week http://svn.freebsd.org/viewvc/base?view=revision&revision=221626head/sys/geom/eli/g_eli.h1304845789Built-in Subversion repository interface1.0FreeBSD221625pjdDrop proper key. MFC after: 1 week http://svn.freebsd.org/viewvc/base?view=revision&revision=221625head/sys/geom/eli/g_eli_integrity.c1304845730Built-in Subversion repository interface1.0FreeBSD221624pjdAdd magic field to the g_eli_key structure to detect if we are really operating on proper structures. MFC after: 1 week http://svn.freebsd.org/viewvc/base?view=revision&revision=221624head/sys/geom/eli/g_eli_key_cache.c1303641673Built-in Subversion repository interface1.0FreeBSD220984pjdOne key is expected from providers smaller than or equal to (2^20)*sectorsize bytes. Remove bogus assertion and while here remove another too obvious assertion. Reported by: Fabian Keil <freebsd-listen@fabiankeil.de> MFC after: 2 weeks http://svn.freebsd.org/viewvc/base?view=revision&revision=220984head/sys/geom/eli/g_eli_key_cache.c1303420511Built-in Subversion repository interface1.0FreeBSD220930pjdAdd g_eli_key_cache.c to GELI. MFC after: 2 weeks http://svn.freebsd.org/viewvc/base?view=revision&revision=220930head/sys/conf/files1303392920Built-in Subversion repository interface1.0FreeBSD220923pjdIf number of keys for the given provider doesn't exceed the limit, allocate all of them at attach time. This allows to avoid moving keys around in the most-recently-used queue and needs no mutex synchronization nor refcounting. MFC after: 2 weeks http://svn.freebsd.org/viewvc/base?view=revision&revision=220923head/sys/geom/eli/g_eli_key_cache.c1303392703Built-in Subversion repository interface1.0FreeBSD220922pjdInstead of allocating memory for all the keys at device attach, create reasonably large cache for the keys that is filled when needed. The previous version was problematic for very large providers (hundreds of terabytes or serval petabytes). Every terabyte of data needs around 256kB for keys. Make the default cache limit big enough to fit all the keys needed for 4TB providers, which will eat at most 1MB of memory. MFC after: 2 weeks http://svn.freebsd.org/viewvc/base?view=revision&revision=220922head/sys/geom/eli/g_eli_ctl.chead/sys/geom/eli/g_eli.hhead/sys/geom/eli/g_eli_key.chead/sys/geom/eli/g_eli_key_cache.chead/sys/modules/geom/geom_eli/Makefilehead/sys/geom/eli/g_eli_privacy.chead/sys/geom/eli/g_eli_integrity.chead/sys/geom/eli/g_eli.c1303325352Built-in Subversion repository interface1.0FreeBSD220899pjdCorrect comment. MFC after: 1 week http://svn.freebsd.org/viewvc/base?view=revision&revision=220899head/sbin/hastd/hastd.c