Page MenuHomeFreeBSD
Feed Advanced Search

Wed, Jul 3

gordon committed rD53209: Add EN-19:12 and SA-19:09 to SA-19:11.
Add EN-19:12 and SA-19:09 to SA-19:11
Wed, Jul 3, 12:32 AM
gordon committed rS349626: Update UPDATING and bump newvers.sh.
Update UPDATING and bump newvers.sh
Wed, Jul 3, 12:04 AM
gordon committed rS349625: Fix privilege escalation in cd(4) driver..
Fix privilege escalation in cd(4) driver.
Wed, Jul 3, 12:04 AM
gordon committed rS349623: Fix kernel stack disclosure in UFS/FFS..
Fix kernel stack disclosure in UFS/FFS.
Wed, Jul 3, 12:02 AM
gordon committed rS349621: Fix iconv buffer overflow..
Fix iconv buffer overflow.
Wed, Jul 3, 12:00 AM

Tue, Jul 2

gordon committed rS349620: Import tzdata 2019b..
Import tzdata 2019b.
Tue, Jul 2, 11:59 PM

Sat, Jun 29

gordon committed rS349542: Restart local_unbound service after the future build, if it is running..
Restart local_unbound service after the future build, if it is running.
Sat, Jun 29, 1:30 PM

Fri, Jun 21

gordon committed rS349274: Add 11.3-RC2 configuration..
Add 11.3-RC2 configuration.
Fri, Jun 21, 3:56 PM

Jun 19 2019

gordon committed rD53171: Add SA-19:08 and EN-19:11..
Add SA-19:08 and EN-19:11.
Jun 19 2019, 4:54 PM
gordon committed rS349200: Add UPDATING entries for today's release. Bump patch version..
Add UPDATING entries for today's release. Bump patch version.
Jun 19 2019, 4:44 PM
gordon committed rS349199: Add ability to limit split map entries to prevent resource.
Add ability to limit split map entries to prevent resource
Jun 19 2019, 4:43 PM
gordon committed rS349198: Fix incorrect locking in networking stack..
Fix incorrect locking in networking stack.
Jun 19 2019, 4:41 PM

Jun 18 2019

gordon committed rS349169: Add the ability to switch the uarch flag to keep 12.0 from breaking..
Add the ability to switch the uarch flag to keep 12.0 from breaking.
Jun 18 2019, 5:59 AM

Jun 17 2019

D20392: random(4): Add regression tests for uint128 implementation, Chacha CTR is now accepted and ready to land.

This looks straightforward. Approved.

Jun 17 2019, 12:11 PM

Jun 14 2019

gordon committed rS349037: Add 11.3-RC1..
Add 11.3-RC1.
Jun 14 2019, 6:34 PM

Jun 7 2019

gordon committed rS348789: Add 11.3-BETA1/3..
Add 11.3-BETA1/3.
Jun 7 2019, 8:43 PM

May 31 2019

gordon committed rS348475: Add 11.3-BETA2..
Add 11.3-BETA2.
May 31 2019, 6:46 PM

May 25 2019

gordon committed rS348272: Switch logic in indexfiles to always remove the uarch flag..
Switch logic in indexfiles to always remove the uarch flag.
May 25 2019, 3:57 PM
gordon committed rS348266: Add limit for XZ_THREADS to the buildworld invocation..
Add limit for XZ_THREADS to the buildworld invocation.
May 25 2019, 4:31 AM
gordon committed rS348265: Cleanup: Update EOL for 11.0-RELEASE to reflect reality..
Cleanup: Update EOL for 11.0-RELEASE to reflect reality.
May 25 2019, 4:23 AM
gordon committed rS348264: Only fetch the iso (and hence overwrite) if the file isn't already there..
Only fetch the iso (and hence overwrite) if the file isn't already there.
May 25 2019, 4:16 AM
gordon committed rS348263: Fix for newer versions of openssl..
Fix for newer versions of openssl.
May 25 2019, 3:18 AM

May 15 2019

gordon committed rD53031: Republish the SA-19:07.mds advisory due to 12.0-RELEASE i386 panic..
Republish the SA-19:07.mds advisory due to 12.0-RELEASE i386 panic.
May 15 2019, 11:33 PM
gordon committed rS347633: Bump patch revision for updated mds patches..
Bump patch revision for updated mds patches.
May 15 2019, 9:26 PM
gordon committed rD53030: Correct a few small details in advisories..
Correct a few small details in advisories.
May 15 2019, 7:52 PM
gordon committed rD53029: Update version of MDS advisory.
Update version of MDS advisory
May 15 2019, 6:02 PM
gordon committed rD53028: Correct announcement date..
Correct announcement date.
May 15 2019, 3:23 PM
gordon committed rD53025: Update to correct date..
Update to correct date.
May 15 2019, 1:40 PM

May 14 2019

gordon committed rD53024: Done with the large patches..
Done with the large patches.
May 14 2019, 11:49 PM
gordon committed rD53023: Add SA-19:03 to SA-19:07 and EN-19:08 to EN-19:10..
Add SA-19:03 to SA-19:07 and EN-19:08 to EN-19:10.
May 14 2019, 11:49 PM
gordon committed rD53022: I need to commit some large patches..
I need to commit some large patches.
May 14 2019, 11:48 PM
gordon committed rS347597: Bump newvers.sh and add UPDATING block..
Bump newvers.sh and add UPDATING block.
May 14 2019, 11:22 PM
gordon committed rS347595: Mitigations for Microarchitectural Data Sampling..
Mitigations for Microarchitectural Data Sampling.
May 14 2019, 11:20 PM
gordon committed rS347594: Mitigations for Microarchitectural Data Sampling..
Mitigations for Microarchitectural Data Sampling.
May 14 2019, 11:19 PM
gordon committed rS347593: Fix ICMP/ICMP6 packet filter bypass in pf..
Fix ICMP/ICMP6 packet filter bypass in pf.
May 14 2019, 11:12 PM
gordon committed rS347591: Fix IPv6 fragment reassembly panic in pf.
Fix IPv6 fragment reassembly panic in pf
May 14 2019, 11:10 PM
gordon committed rS347590: Update ntpd to 4.2.8p13 to fix authenticated denial of service..
Update ntpd to 4.2.8p13 to fix authenticated denial of service.
May 14 2019, 11:08 PM
gordon committed rS347589: Update ntpd to 4.2.8p13 to fix authenticated denial of service..
Update ntpd to 4.2.8p13 to fix authenticated denial of service.
May 14 2019, 11:05 PM
gordon committed rS347588: Update hostapd/wpa_supplicant to 2.8 to fix multiple vulnerabilities..
Update hostapd/wpa_supplicant to 2.8 to fix multiple vulnerabilities.
May 14 2019, 11:00 PM
gordon committed rS347587: Update hostapd/wpa_supplicant to 2.8 to fix multiple vulnerabilities..
Update hostapd/wpa_supplicant to 2.8 to fix multiple vulnerabilities.
May 14 2019, 10:58 PM
gordon committed rS347586: Fix insufficient filename validation in scp client.
Fix insufficient filename validation in scp client
May 14 2019, 10:54 PM
gordon committed rS347585: Fix partially matching relative paths in xinstall..
Fix partially matching relative paths in xinstall.
May 14 2019, 10:52 PM
gordon committed rS347584: Import tzdata 2019a..
Import tzdata 2019a.
May 14 2019, 10:48 PM

Mar 21 2019

gordon requested changes to D19620: Add an option to use TPM as entropy source.
Mar 21 2019, 6:10 PM
gordon added a comment to D19620: Add an option to use TPM as entropy source.

Strong agree on separating any whitespace commits from functional commits. This is especially important for security sensitive content.

Mar 21 2019, 6:09 PM

Mar 9 2019

gordon committed rS344952: Correct wording around '-' masks..
Correct wording around '-' masks.
Mar 9 2019, 12:30 AM

Mar 6 2019

gordon committed rD52844: Correct correction date..
Correct correction date.
Mar 6 2019, 4:55 PM

Feb 5 2019

gordon committed rD52797: Add SA-19:01, SA-19:02, EN-19:06, and EN-19:07..
Add SA-19:01, SA-19:02, EN-19:06, and EN-19:07.
Feb 5 2019, 6:39 PM

Jan 9 2019

gordon committed rD52759: Correct wrong year in advisory text..
Correct wrong year in advisory text.
Jan 9 2019, 8:10 PM
gordon committed rD52757: Hopefully I won't need this again..
Hopefully I won't need this again.
Jan 9 2019, 7:18 PM
gordon committed rD52756: Add EN-19:01 through EN-19:05..
Add EN-19:01 through EN-19:05.
Jan 9 2019, 7:18 PM
gordon committed rD52755: The sqlite patch is large.....
The sqlite patch is large....
Jan 9 2019, 7:17 PM

Dec 19 2018

gordon committed rD52700: Add SA-18:15 and EN-18:16 through EN-18:18..
Add SA-18:15 and EN-18:16 through EN-18:18.
Dec 19 2018, 7:51 PM

Dec 12 2018

gordon committed rD52684: Adjust section for secteam..
Adjust section for secteam.
Dec 12 2018, 7:24 PM
gordon closed D17984: Update secteam. Promote remko to Deputy. Update core team liason to reflect brooks taking the job..

Forgot to add this to the commit message to auto-close. This was committed as r52684.

Dec 12 2018, 7:24 PM

Dec 6 2018

gordon accepted D18443: Fix bugs in plugable CC algorithm and siftr sysctls..

Based on conversation with brooks, this doesn't need an advisory. Local DoS are exempt from SAs and the information leak is very low quality.

Dec 6 2018, 5:05 PM

Dec 4 2018

gordon committed rD52569: Publish FreeBSD-SA-18:14.bhyve..
Publish FreeBSD-SA-18:14.bhyve.
Dec 4 2018, 6:46 PM
gordon committed rS341488: Fix insufficient bounds checking in bhyve(8) device model. [SA-18:14.bhyve].
Fix insufficient bounds checking in bhyve(8) device model. [SA-18:14.bhyve]
Dec 4 2018, 6:38 PM
gordon committed rS341487: Fix insufficient bounds checking in bhyve(8) device model. [SA-18:14.bhyve].
Fix insufficient bounds checking in bhyve(8) device model. [SA-18:14.bhyve]
Dec 4 2018, 6:38 PM
gordon committed rS341486: MFC r341484.
MFC r341484
Dec 4 2018, 6:33 PM
gordon committed rS341485: MFC r341484.
MFC r341484
Dec 4 2018, 6:31 PM
gordon committed rS341484: Always treat firmware request and response sizes as unsigned..
Always treat firmware request and response sizes as unsigned.
Dec 4 2018, 6:29 PM

Nov 27 2018

gordon committed rD52522: Add SA-18:13 and EN-18:13 through EN-18:15..
Add SA-18:13 and EN-18:13 through EN-18:15.
Nov 27 2018, 8:02 PM
gordon committed rS341093: Fix deferred kernel loading breaks loader password. [EN-18:15.loader].
Fix deferred kernel loading breaks loader password. [EN-18:15.loader]
Nov 27 2018, 7:48 PM
gordon committed rS341091: Timezone database information update. [EN-18:14.tzdata].
Timezone database information update. [EN-18:14.tzdata]
Nov 27 2018, 7:44 PM
gordon committed rS341089: Fix ICMP buffer underwrite. [EN-18:13.icmp].
Fix ICMP buffer underwrite. [EN-18:13.icmp]
Nov 27 2018, 7:44 PM
gordon committed rS341088: Fix multiple vulnerabilities in NFS server code. [SA-18:13.nfs].
Fix multiple vulnerabilities in NFS server code. [SA-18:13.nfs]
Nov 27 2018, 7:44 PM

Nov 14 2018

gordon added a reviewer for D17984: Update secteam. Promote remko to Deputy. Update core team liason to reflect brooks taking the job.: secteam.
Nov 14 2018, 5:08 AM
gordon created D17984: Update secteam. Promote remko to Deputy. Update core team liason to reflect brooks taking the job..
Nov 14 2018, 5:07 AM

Oct 25 2018

gordon resigned from D4964: Protect calls to explicit_bzero() via by explicitly disabling the link-time and other optimizations that can cause code elimination..

I don't know enough to review this request. Maybe delphij, emaste or one of the other secteam members has more domain experience here.

Oct 25 2018, 3:23 AM

Oct 24 2018

gordon accepted D16935: rijndael (AES): Avoid leaking sensitive data on kernel stack.

Approved based on timeout from delphij.

Oct 24 2018, 6:04 PM

Oct 20 2018

gordon added a comment to D16985: Fortuna: fix a correctness issue in reseed (fortuna_pre_read).

I have no objection. I'm not sure I'm qualified to weigh in on it. If markm is okay with it, then I would go ahead with it.

Oct 20 2018, 10:57 PM
gordon accepted D17252: random(4): Match enabled sources mask to build options.

Logic looks reasonable to me. I have only read through the logic, not tested it myself.

Oct 20 2018, 10:47 PM

Sep 27 2018

gordon committed rD52312: Add errata notices EN-18:09 through EN-18:12.
Add errata notices EN-18:09 through EN-18:12
Sep 27 2018, 7:12 PM
gordon committed rS338987: Check to ensure the buffer returned is not NULL..
Check to ensure the buffer returned is not NULL.
Sep 27 2018, 6:55 PM
gordon committed rS338986: There are various cases where we modify the inp_vflag and inp_inc.inc_flags.
There are various cases where we modify the inp_vflag and inp_inc.inc_flags
Sep 27 2018, 6:50 PM
gordon committed rS338985: There are various cases where we modify the inp_vflag and inp_inc.inc_flags.
There are various cases where we modify the inp_vflag and inp_inc.inc_flags
Sep 27 2018, 6:49 PM
gordon committed rS338984: MFC r338982..
MFC r338982.
Sep 27 2018, 6:44 PM
gordon committed rS338983: MFC r338982..
MFC r338982.
Sep 27 2018, 6:42 PM
gordon committed rS338982: Clear stack allocated data structure to prevent kernel memory leak..
Clear stack allocated data structure to prevent kernel memory leak.
Sep 27 2018, 6:40 PM
gordon committed rS338981: Fix small kernel memory disclosures. [EN-18:12.mem].
Fix small kernel memory disclosures. [EN-18:12.mem]
Sep 27 2018, 6:36 PM
gordon committed rS338980: Fix DoS in listen syscall over IPv6 socket. [EN-18:11.listen].
Fix DoS in listen syscall over IPv6 socket. [EN-18:11.listen]
Sep 27 2018, 6:34 PM
gordon committed rS338979: Fix NULL pointer dereference in freebsd4_getfsstat. [EN-18:10.syscall].
Fix NULL pointer dereference in freebsd4_getfsstat. [EN-18:10.syscall]
Sep 27 2018, 6:32 PM
gordon committed rS338978: Fix regression in IPv6 fragment reassembly. [EN-18:09.ip].
Fix regression in IPv6 fragment reassembly. [EN-18:09.ip]
Sep 27 2018, 6:30 PM

Sep 12 2018

gordon committed rD52250: Add SA-18:12, EN-18:08..
Add SA-18:12, EN-18:08.
Sep 12 2018, 5:23 AM
gordon committed rS338607: Fix regression in Lazy FPU remediation. [EN-18:08.lazyfpu].
Fix regression in Lazy FPU remediation. [EN-18:08.lazyfpu]
Sep 12 2018, 5:08 AM
gordon committed rS338606: Fix improper elf header parsing. [SA-18:12.elf].
Fix improper elf header parsing. [SA-18:12.elf]
Sep 12 2018, 5:07 AM
gordon committed rS338605: MFC 338603:.
MFC 338603:
Sep 12 2018, 5:03 AM
gordon committed rS338604: MFC 338603:.
MFC 338603:
Sep 12 2018, 5:02 AM
gordon committed rS338603: Correct ELF header parsing code to prevent invalid ELF sections from.
Correct ELF header parsing code to prevent invalid ELF sections from
Sep 12 2018, 4:57 AM

Aug 24 2018

gordon added a comment to D16873: Limit the harvest rate of "fast" entropy for random(4) so as not to overload the system..

@markm Can you please specifically address the comment @jmg posted on this review (and it's ancestor)?

Aug 24 2018, 6:11 PM

Aug 23 2018

gordon added a reviewer for D16860: Use arc4rand() instead of read_random(): secteam.

Add secteam instead of just me.

Aug 23 2018, 3:48 PM

Jun 21 2018

gordon committed rD51892: Add today's advisory and notices..
Add today's advisory and notices.
Jun 21 2018, 5:38 AM
gordon committed rS335466: Fix TLB shootdown for Xen based guests. [EN-18:07.pmap].
Fix TLB shootdown for Xen based guests. [EN-18:07.pmap]
Jun 21 2018, 5:18 AM
gordon committed rS335465: Fix Lazy FPU information disclosure. [SA-18:07.lazyfpu].
Fix Lazy FPU information disclosure. [SA-18:07.lazyfpu]
Jun 21 2018, 5:17 AM

May 20 2018

gordon committed rD51679: Remove references to Perforce from the website..
Remove references to Perforce from the website.
May 20 2018, 11:11 PM
gordon closed D15392: Remove Perforce from the documentation tree..
May 20 2018, 11:11 PM
gordon committed rP470436: MFH: r469706.
MFH: r469706
May 20 2018, 12:02 AM

May 12 2018

gordon updated the diff for D15392: Remove Perforce from the documentation tree..

Address feedback from bjk.

May 12 2018, 6:36 AM
gordon added inline comments to D15392: Remove Perforce from the documentation tree..
May 12 2018, 6:35 AM