Page MenuHomeFreeBSD

stevek (Stephen J. Kiernan)
Principal Engineer, Core OS/Kernel group, Juniper Networks, Inc.

Projects

User does not belong to any projects.

User Details

User Since
Jun 13 2015, 3:41 PM (174 w, 5 d)

Recent Activity

Sep 11 2018

stevek added a comment to D6814: Add libfdt user space library.
In D6814#362680, @ian wrote:

This should be attached to the build, and used by the GNU dtc.

I'm wondering should libfdt be conditionally built and, if so, should it be based on MK_FDT and MK_GPL_DTC (since the dtc build will be using it after the suggested changes)?

I think it should be conditional on MK_FDT, but not on MK_GPL_DTC, because the library itself is BSD-licensed.

Sep 11 2018, 4:47 PM

Jul 31 2018

stevek added inline comments to D16305: Table driven hypervisor detection and addition of VirtualBox..
Jul 31 2018, 8:39 PM

Jul 25 2018

stevek updated the diff for D16305: Table driven hypervisor detection and addition of VirtualBox..

Fixed bhyve detection string, as pointed out by bryanv

Jul 25 2018, 6:09 PM

Jul 19 2018

stevek updated the diff for D16305: Table driven hypervisor detection and addition of VirtualBox..

Removed duplicate comment and replaced it with a more appropriate one
that explains if CPUID2_HV is set, we are running in a hypervisor environment.

Jul 19 2018, 8:50 PM

Jul 17 2018

stevek added a comment to D1435: paravirt: Add KVM clock timecounter support.

The change in this review depends on some hypervisor detection changes that I don't think make sense anymore. @stevek has done the work to refactor this change on to HEAD that I hope he's able to submit soon.

Jul 17 2018, 7:46 PM
stevek updated the summary of D16306: paravirt: Add KVM clock timecounter support.
Jul 17 2018, 7:40 PM
stevek created D16306: paravirt: Add KVM clock timecounter support.
Jul 17 2018, 7:39 PM
stevek created D16305: Table driven hypervisor detection and addition of VirtualBox..
Jul 17 2018, 7:32 PM

Jul 14 2018

stevek committed rS336289: Add mpo_vnode_check_setmode MAC method to MAC/veriexec..
Add mpo_vnode_check_setmode MAC method to MAC/veriexec.
Jul 14 2018, 5:21 PM
stevek committed rS336287: Add config(8) options that can be used to enable building MAC/veriexec.
Add config(8) options that can be used to enable building MAC/veriexec
Jul 14 2018, 5:18 PM
stevek committed rS336286: Fix a typo which could cause a build breakage when building with MAC/veriexec.
Fix a typo which could cause a build breakage when building with MAC/veriexec
Jul 14 2018, 5:15 PM
stevek committed rS336284: Remove RIPEMD-160 fingerprint modules for veriexec, since it has very.
Remove RIPEMD-160 fingerprint modules for veriexec, since it has very
Jul 14 2018, 4:59 PM

Jul 11 2018

stevek created P189 Get FILES_CPU_FUNC from SFILES.
Jul 11 2018, 8:55 PM

Jun 28 2018

stevek created P187 VMware GuestRPC.
Jun 28 2018, 2:31 PM

Jun 26 2018

stevek committed rS335682: Partial revert of r335399 and r335400:.
Partial revert of r335399 and r335400:
Jun 26 2018, 11:28 PM
stevek committed rS335681: Revert r335402.
Revert r335402
Jun 26 2018, 11:20 PM

Jun 20 2018

stevek committed rS335430: Fix build breakage in veriexec for 32-bit architectures..
Fix build breakage in veriexec for 32-bit architectures.
Jun 20 2018, 6:54 AM
stevek committed rS335402: This application (veriexecctl) handles reading a fingerprints file.
This application (veriexecctl) handles reading a fingerprints file
Jun 20 2018, 1:09 AM
stevek closed D8575: Verified execution (veriexec) fingerprint loader.
Jun 20 2018, 1:09 AM
stevek committed rS335401: This library allows for user space applications to check file descriptors.
This library allows for user space applications to check file descriptors
Jun 20 2018, 12:55 AM
stevek closed D8562: Verified execution (veriexec) library interface to MAC/veriexec per-policy syscall.
Jun 20 2018, 12:55 AM
stevek committed rS335400: Device for user space to interface with MAC/veriexec..
Device for user space to interface with MAC/veriexec.
Jun 20 2018, 12:48 AM
stevek closed D8561: Verified execution (veriexec) device interface to MAC/veriexec.
Jun 20 2018, 12:48 AM
stevek committed rS335399: MAC/veriexec implements a verified execution environment using the MAC.
MAC/veriexec implements a verified execution environment using the MAC
Jun 20 2018, 12:41 AM
stevek closed D8554: Verified execution (veriexec) as a MAC module..
Jun 20 2018, 12:41 AM

Jan 28 2018

stevek added a comment to D14064: Change the installer default to not install ports.

Maybe as a separate change, but is it time to stop shipping lib32 by default as well?

Jan 28 2018, 8:06 PM

Jan 9 2018

stevek added inline comments to D8575: Verified execution (veriexec) fingerprint loader.
Jan 9 2018, 9:09 PM
stevek added inline comments to D8575: Verified execution (veriexec) fingerprint loader.
Jan 9 2018, 9:06 PM
stevek added inline comments to D8575: Verified execution (veriexec) fingerprint loader.
Jan 9 2018, 9:02 PM
stevek added a comment to D8554: Verified execution (veriexec) as a MAC module..
In D8554#289494, @jtl wrote:

I think one of the few weaknesses I see is the way the hash result is cached.

Have you considered mitigations, such as:

  • not caching hash results for remote volumes (e.g. NFS)?
Jan 9 2018, 8:54 PM
stevek added a comment to D8554: Verified execution (veriexec) as a MAC module..
In D8554#289476, @jtl wrote:

It seems like this could use a man page to describe the mechanism. There are some subtleties that are not immediately obvious, such as the way that shared libraries are protected. In addition, the O_VERIFY flag should probably be documented in the open() man page with a pointer to the verified exec man page.

Jan 9 2018, 8:50 PM
stevek accepted D13814: Fix backwards MD_VERIFY logic for md devices.

looks good.

Jan 9 2018, 8:42 PM

Dec 6 2017

stevek committed rS326636: The function make_relative_prefix_1 does not properly free locally.
The function make_relative_prefix_1 does not properly free locally
Dec 6 2017, 9:18 PM
stevek closed D9691: Fix a memory leak in libiberty.
Dec 6 2017, 9:18 PM
stevek committed rS326635: The function fwscanf() return value is wrong when encountering an early.
The function fwscanf() return value is wrong when encountering an early
Dec 6 2017, 9:12 PM
stevek closed D13288: fwscanf returns EOF instead of ZERO in the event of matching failure.
Dec 6 2017, 9:12 PM
stevek added a comment to D9691: Fix a memory leak in libiberty.

@stevek will you commit (with style fix)?

Dec 6 2017, 8:51 PM

Dec 1 2017

stevek added a comment to D13288: fwscanf returns EOF instead of ZERO in the event of matching failure.
In D13288#277164, @jhb wrote:

My only other thought is it would be nice to add a test case for this.

Dec 1 2017, 7:32 PM

Nov 30 2017

stevek added a comment to D13287: Allow using libkvm on kernel modules.
In D13287#277145, @imp wrote:

looks good to me. IIRC, this isn't true for every architecture, but there's no reason I know of to disallow it there.

Nov 30 2017, 8:39 PM

Nov 28 2017

stevek added a comment to D9637: Fix a memory leak with the variable logfname.

Fine with me as well.

Nov 28 2017, 9:42 PM
stevek created D13288: fwscanf returns EOF instead of ZERO in the event of matching failure.
Nov 28 2017, 9:27 PM
stevek created D13287: Allow using libkvm on kernel modules.
Nov 28 2017, 9:19 PM

Oct 28 2017

stevek added a comment to D12808: Don't set a harvest_mask by default..

The proposed patch would effectively disable all entropy gathering sources by default. Thus, systems would boot up without any entropy, save the cached entropy from last reboot. On freshly installed systems, there is no cached entropy. The state of the entropy subsystem would be subpar.

Oct 28 2017, 6:44 PM

Oct 26 2017

stevek abandoned D11765: Fall back to md(4) in rc.initdiskless if tmpfs(5) is not available.

D12301 takes care of things better.

Oct 26 2017, 6:37 PM

Sep 23 2017

stevek added inline comments to D12301: Enhance mdmfs(8) to work with tmpfs(5).
Sep 23 2017, 7:06 PM

Sep 13 2017

stevek added inline comments to D12301: Enhance mdmfs(8) to work with tmpfs(5).
Sep 13 2017, 7:35 PM

Sep 9 2017

stevek accepted D12291: Add AT_HWCAP flags for VFP settings for FreeBSD/arm..

Makes sense. HWCAP_ARM_* values look sane.

Sep 9 2017, 6:11 PM
stevek removed a reviewer for D10161: Continuation of D9903.: stevek.
Sep 9 2017, 3:21 PM
stevek added a reviewer for D12293: Add a NT_ARM_VFP ELF core note to hold VFP registers for each thread.: stevek.
Sep 9 2017, 3:16 PM
stevek added a reviewer for D12294: Add ptrace operations to fetch and store VFP registers.: stevek.
Sep 9 2017, 3:16 PM
stevek added a reviewer for D12291: Add AT_HWCAP flags for VFP settings for FreeBSD/arm.: stevek.
Sep 9 2017, 3:15 PM
stevek added inline comments to D12291: Add AT_HWCAP flags for VFP settings for FreeBSD/arm..
Sep 9 2017, 3:15 PM
stevek accepted D12292: Only mess with VFP state on the CPU for curthread for get/set_vfpcontext..

Looks good.

Sep 9 2017, 3:04 PM
stevek added a reviewer for D12292: Only mess with VFP state on the CPU for curthread for get/set_vfpcontext.: stevek.
Sep 9 2017, 3:03 PM
stevek added a comment to D12290: Add AT_HWCAP and AT_EHDRFLAGS on all platforms..

One common typo: "CPU featire flags" should be "CPU feature flags".

Sep 9 2017, 2:44 PM

Jul 28 2017

stevek added inline comments to D11765: Fall back to md(4) in rc.initdiskless if tmpfs(5) is not available.
Jul 28 2017, 5:13 PM
stevek updated the diff for D11765: Fall back to md(4) in rc.initdiskless if tmpfs(5) is not available.

Edited comment for load_tmpfs

Jul 28 2017, 3:43 AM
stevek updated the summary of D11765: Fall back to md(4) in rc.initdiskless if tmpfs(5) is not available.
Jul 28 2017, 3:41 AM
stevek created D11765: Fall back to md(4) in rc.initdiskless if tmpfs(5) is not available.
Jul 28 2017, 3:40 AM

Jun 15 2017

stevek closed D11106: Use tmpfs in rc.initdiskless by committing rS319987: Replace md(4) usage in diskless(8) script rc.initdiskless with tmpfs(5)..
Jun 15 2017, 8:06 PM
stevek committed rS319987: Replace md(4) usage in diskless(8) script rc.initdiskless with tmpfs(5)..
Replace md(4) usage in diskless(8) script rc.initdiskless with tmpfs(5).
Jun 15 2017, 8:06 PM

Jun 13 2017

stevek committed rS319903: The variable nargv is allocated but never freed, so free it when the it.
The variable nargv is allocated but never freed, so free it when the it
Jun 13 2017, 3:50 PM
stevek closed D9652: fix memory leak in 'finger' by committing rS319903: The variable nargv is allocated but never freed, so free it when the it.
Jun 13 2017, 3:50 PM
stevek added a reviewer for D11106: Use tmpfs in rc.initdiskless: brooks.
Jun 13 2017, 3:34 PM

Jun 9 2017

stevek created D11106: Use tmpfs in rc.initdiskless.
Jun 9 2017, 1:06 AM

Jun 6 2017

stevek committed rS319639: When the input parameter node is NULL, memory is allocated to it..
When the input parameter node is NULL, memory is allocated to it.
Jun 6 2017, 10:18 PM
stevek closed D9878: Fix a memory leak in bluetooth/hccontrol by committing rS319639: When the input parameter node is NULL, memory is allocated to it..
Jun 6 2017, 10:18 PM
stevek committed rS319638: Before returning because of an memory allocation error, free the memory.
Before returning because of an memory allocation error, free the memory
Jun 6 2017, 9:51 PM
stevek closed D9852: Fix a memory leak in ppp by committing rS319638: Before returning because of an memory allocation error, free the memory.
Jun 6 2017, 9:51 PM
stevek committed rS319636: The memory assigned to the local variable 'copy' needs to be freed..
The memory assigned to the local variable 'copy' needs to be freed.
Jun 6 2017, 9:40 PM
stevek closed D9663: Fix a memory leak with add_mapping by committing rS319636: The memory assigned to the local variable 'copy' needs to be freed..
Jun 6 2017, 9:40 PM

Jun 2 2017

stevek committed rS319508: Fix a memory leak with last.
Fix a memory leak with last
Jun 2 2017, 8:25 PM
stevek closed D9850: Fix 'last' memory leak by committing rS319508: Fix a memory leak with last.
Jun 2 2017, 8:25 PM

Jun 1 2017

stevek committed rS319453: Fix memory leak in edithost.
Fix memory leak in edithost
Jun 1 2017, 7:21 PM
stevek closed D9689: Fix a memory leak in telnetd by committing rS319453: Fix memory leak in edithost.
Jun 1 2017, 7:21 PM
stevek committed rS319443: When sysctlbyname fails, free buf before returning..
When sysctlbyname fails, free buf before returning.
Jun 1 2017, 4:45 PM
stevek closed D9867: Fix a memory leak in libutil by committing rS319443: When sysctlbyname fails, free buf before returning..
Jun 1 2017, 4:45 PM

May 31 2017

stevek closed D9899: Fix memory leaks in dhclient by committing rS319361: parse.c parse_string.
May 31 2017, 9:31 PM
stevek committed rS319361: parse.c parse_string.
parse.c parse_string
May 31 2017, 9:31 PM
stevek added inline comments to D9691: Fix a memory leak in libiberty.
May 31 2017, 9:26 PM
stevek committed rS319358: Add MD_VERIFY option to enable O_VERIFY in open for vnode type..
Add MD_VERIFY option to enable O_VERIFY in open for vnode type.
May 31 2017, 9:18 PM

May 25 2017

stevek committed rS318893: MFC r318314.
MFC r318314
May 25 2017, 6:55 PM

May 15 2017

stevek added inline comments to D10701: Make ld-elf.so.1 directly executable.
May 15 2017, 7:34 PM
stevek committed rS318314: Add information to open(2) man page about the O_VERIFY flag..
Add information to open(2) man page about the O_VERIFY flag.
May 15 2017, 7:32 PM
stevek added inline comments to D10701: Make ld-elf.so.1 directly executable.
May 15 2017, 5:11 PM

Apr 19 2017

stevek accepted D10321: tpm: unifdef -D__FreeBSD__ to remove the OpenBSD support..

Looks good.

Apr 19 2017, 3:10 PM

Mar 2 2017

stevek accepted D9852: Fix a memory leak in ppp.

Looks reasonable to me.

Mar 2 2017, 10:39 PM

Feb 28 2017

stevek added inline comments to D9433: Add 64-bit support for PowerPC Book-E.
Feb 28 2017, 4:36 PM

Feb 13 2017

stevek committed rS313703: Fix typo where opening brace was needed..
Fix typo where opening brace was needed.
Feb 13 2017, 6:52 PM
stevek committed rS313701: For MD_PRELOAD type md(4) devices, if there is a file name in the preloaded.
For MD_PRELOAD type md(4) devices, if there is a file name in the preloaded
Feb 13 2017, 5:44 PM
stevek closed D9529: Output file name from "preload" type md(4) device by committing rS313701: For MD_PRELOAD type md(4) devices, if there is a file name in the preloaded.
Feb 13 2017, 5:44 PM
stevek added inline comments to D9529: Output file name from "preload" type md(4) device.
Feb 13 2017, 5:41 PM

Feb 10 2017

stevek retitled D9529: Output file name from "preload" type md(4) device from to Output file name from "preload" type md(4) device.
Feb 10 2017, 5:22 PM
stevek added inline comments to D9433: Add 64-bit support for PowerPC Book-E.
Feb 10 2017, 5:19 PM

Jan 31 2017

stevek added a comment to D9246: hwpmc module log with full path.

There's also the problem that this will still have issues when dealing with re-root and/or chroot environments.

Jan 31 2017, 7:58 PM
stevek committed rS313019: Add the folowing set accessor functions for recently-added members of ifnet.
Add the folowing set accessor functions for recently-added members of ifnet
Jan 31 2017, 4:12 PM
stevek closed D8544: Add accessor functions for the if_hw_tsomax* members of ifnet structure. by committing rS313019: Add the folowing set accessor functions for recently-added members of ifnet.
Jan 31 2017, 4:12 PM

Nov 20 2016

stevek added inline comments to D8575: Verified execution (veriexec) fingerprint loader.
Nov 20 2016, 10:39 PM

Nov 18 2016

stevek retitled D8575: Verified execution (veriexec) fingerprint loader from to Verified execution (veriexec) fingerprint loader.
Nov 18 2016, 4:50 PM
stevek added a child revision for D8561: Verified execution (veriexec) device interface to MAC/veriexec: D8575: Verified execution (veriexec) fingerprint loader.
Nov 18 2016, 4:50 PM