Differential D20233

netdump: Don't store sensitive key data we don't need
ClosedPublic
Actions

Authored by cem on May 10 2019, 8:35 PM.

Tags

None

Referenced Files

	F140627510: D20233.diff
	Fri, Dec 26, 3:27 AM

	Unknown Object (File)
	Wed, Dec 17, 7:55 PM

	Unknown Object (File)
	Sat, Dec 13, 7:00 PM

	Unknown Object (File)
	Fri, Dec 12, 11:14 AM

	Unknown Object (File)
	Mon, Dec 8, 10:04 PM

	Unknown Object (File)
	Thu, Nov 27, 6:02 PM

	Unknown Object (File)
	Thu, Nov 27, 10:32 AM

	Unknown Object (File)
	Thu, Nov 27, 8:42 AM

Subscribers

Details

Reviewers

markj
vangyzen

Commits

rS347467: netdump: Don't store sensitive key data we don't need

Summary

The diocskerneldump_arg and netdump_conf (with embedded diocskerneldump_arg)
before it were copied in whole to the global nd_conf variable. After EKCD,
the diocskerneldump_arg contains sensitive key material. Before this
revision, de-configuring netdump would not remove the the key material from
global nd_conf.

Netdump doesn't have any use for the key data (that is handled in the core
dumper code), so just don't store it.

Unfortunately, I think this dates to the initial import of netdump in
r333283.

Diff Detail

Lint

Lint Passed

Unit

No Test Coverage

Build Status

Buildable 24191
Build 23034: arc lint + arc unit

Event Timeline

cem created this revision.May 10 2019, 8:35 PM

Harbormaster completed remote builds in B24191: Diff 57287.May 10 2019, 8:35 PM

cem edited the summary of this revision. (Show Details)May 10 2019, 8:54 PM

cem edited the summary of this revision. (Show Details)

cem mentioned this in D20206: netdump: Ref the interface we're attached to.May 10 2019, 8:59 PM

cem added a child revision: D20206: netdump: Ref the interface we're attached to.May 10 2019, 8:59 PM

markj accepted this revision.May 10 2019, 9:10 PM

This revision is now accepted and ready to land.May 10 2019, 9:10 PM

Closed by commit rS347467: netdump: Don't store sensitive key data we don't need (authored by cem). · Explain WhyMay 10 2019, 9:55 PM

This revision was automatically updated to reflect the committed changes.

Herald added a subscriber: imp. · View Herald TranscriptMay 10 2019, 9:55 PM

Revision Contents
Changeset List

Path

Size

sys/

netinet/

netdump/

netdump_client.c

34 lines

Diff 57287

sys/netinet/netdump/netdump_client.c

Loading...