src/libexec, branch releng/8.0 FreeBSD source tree Disable SSL renegotiation in order to protect against a serious 2009-12-03T09:18:40+00:00 Colin Percival cperciva@FreeBSD.org 2009-12-03T09:18:40+00:00 c08f10bc4888982e18312f4b2bd817d0aca58314 protocol flaw. [09:15] Correctly handle failures from unsetenv resulting from a corrupt environment in rtld-elf. [09:16] Fix permissions in freebsd-update in order to prevent leakage of sensitive files. [09:17] Approved by: so (cperciva) Security: FreeBSD-SA-09:15.ssl Security: FreeBSD-SA-09:16.rtld Security: FreeBSD-SA-09:17.freebsd-udpate 
protocol flaw. [09:15]

Correctly handle failures from unsetenv resulting from a corrupt
environment in rtld-elf. [09:16]

Fix permissions in freebsd-update in order to prevent leakage of
sensitive files. [09:17]

Approved by:	so (cperciva)
Security:	FreeBSD-SA-09:15.ssl
Security:	FreeBSD-SA-09:16.rtld
Security:	FreeBSD-SA-09:17.freebsd-udpate
MFC r197931: 2009-10-20T13:26:58+00:00 Konstantin Belousov kib@FreeBSD.org 2009-10-20T13:26:58+00:00 b6124fac40e3946f52439be7261305c7e874afe2 Apply relocations for PIE binary ELF data structures pointers in rtld. Approved by: re (kensmith) 
Apply relocations for PIE binary ELF data structures pointers in rtld.

Approved by:	re (kensmith)
MFC r196787 2009-09-07T14:10:55+00:00 Remko Lodder remko@FreeBSD.org 2009-09-07T14:10:55+00:00 07c141a646dc3d416d70e8feb751e2a4089b9e4f Do the first step in removing lukemftpd from the base system. Disconnect it from the build. If you are using the FTP daemon, please consider using the port ftp/tnftpd which is the same FTP server, but newer and might have more/better functionality. This results in us providing only one ftp daemon by default. Reviewed by: bz Approved by: imp (mentor, implicit) MFC after: 3 days Silence from: obrien Approved by: re (kib), imp (mentor, implicit) 
  Do the first step in removing lukemftpd from the base system. Disconnect
  it from the build.

  If you are using the FTP daemon, please consider using the port ftp/tnftpd
  which is the same FTP server, but newer and might have more/better
  functionality.

  This results in us providing only one ftp daemon by default.

  Reviewed by:        bz
  Approved by:        imp (mentor, implicit)
  MFC after:        3 days
  Silence from:        obrien

Approved by:	re (kib), imp (mentor, implicit)
Implement RTLD_NOLOAD flag for dlopen(3). 2009-07-17T19:45:42+00:00 Konstantin Belousov kib@FreeBSD.org 2009-07-17T19:45:42+00:00 49e8c06b454b9a37d48ea7c1c47fdf7230acafb9 Requested and tested by: jkim Reviewed by: kan Approved by: re (kensmith) 
Requested and tested by:	jkim
Reviewed by:	kan
Approved by:	re (kensmith)
Only perform .bss mapping and cleaning operations when segment file size 2009-07-17T19:32:04+00:00 Konstantin Belousov kib@FreeBSD.org 2009-07-17T19:32:04+00:00 69ca61ba5e482dda9410c227ca300218bf56c95a is not equal to its memory size. This eliminates unneeded clearing of the text segment that often happens due to text end not being page-aligned. For instance, $ readelf -l /lib/libedit.so.6 Program Headers: Type Offset VirtAddr PhysAddr FileSiz MemSiz Flg Align LOAD 0x000000 0x00000000 0x00000000 0x139e1 0x139e1 R E 0x1000 LOAD 0x014000 0x00014000 0x00014000 0x00f04 0x00f14 RW 0x1000 DYNAMIC 0x014cc4 0x00014cc4 0x00014cc4 0x000d0 0x000d0 RW 0x4 $ procstat -v $$ (for /bin/sh) 68585 0x28097000 0x280aa000 r-x 6 0 21 14 CN vn /lib/libedit.so.6 68585 0x280aa000 0x280ab000 r-x 1 0 1 0 CN vn /lib/libedit.so.6 <== 68585 0x280ab000 0x280ac000 rwx 1 0 1 0 CN vn /lib/libedit.so.6 Note the splitted map entry marked by '<=='. Reviewed by: kan Approved by: re (kensmith) MFC after: 1 month 
is not equal to its memory size.

This eliminates unneeded clearing of the text segment that often
happens due to text end not being page-aligned.

For instance,
$ readelf -l /lib/libedit.so.6
Program Headers:
  Type           Offset   VirtAddr   PhysAddr   FileSiz MemSiz  Flg Align
  LOAD           0x000000 0x00000000 0x00000000 0x139e1 0x139e1 R E 0x1000
  LOAD           0x014000 0x00014000 0x00014000 0x00f04 0x00f14 RW  0x1000
  DYNAMIC        0x014cc4 0x00014cc4 0x00014cc4 0x000d0 0x000d0 RW  0x4
$ procstat -v $$ (for /bin/sh)
68585 0x28097000 0x280aa000 r-x    6    0  21  14 CN vn /lib/libedit.so.6
68585 0x280aa000 0x280ab000 r-x    1    0   1   0 CN vn /lib/libedit.so.6 <==
68585 0x280ab000 0x280ac000 rwx    1    0   1   0 CN vn /lib/libedit.so.6
Note the splitted map entry marked by '<=='.

Reviewed by:	kan
Approved by:	re (kensmith)
MFC after:	1 month
Second attempt at eliminating .text relocations in shared libraries 2009-07-14T21:19:13+00:00 Alexander Kabaev kan@FreeBSD.org 2009-07-14T21:19:13+00:00 2286fe763592aa13d320186bf3e233a560af749b compiled with stack protector. Use libssp_nonshared library to pull __stack_chk_fail_local symbol into each library that needs it instead of pulling it from libc. GCC generates local calls to this function which result in absolute relocations put into position-independent code segment, making dynamic loader do extra work every time given shared library is being relocated and making affected text pages non-shareable. Reviewed by: kib Approved by: re (kib) 
compiled with stack protector.

Use libssp_nonshared library to pull __stack_chk_fail_local symbol into
each library that needs it instead of pulling it from libc. GCC
generates local calls to this function which result in absolute
relocations put into position-independent code segment, making dynamic
loader do extra work every time given shared library is being relocated
and making affected text pages non-shareable.

Reviewed by:        kib
Approved by:        re (kib)
Back out previous revision until better tested fix is ready. 2009-06-29T01:33:59+00:00 Alexander Kabaev kan@FreeBSD.org 2009-06-29T01:33:59+00:00 d48890cfb8cf92f9f2d49763781b20fd01e1e9d4 Approved by: re (impliciti, by approving previos check-in) 
Approved by: re (impliciti, by approving previos check-in)
Eliminate .text relocations in shared libraries compiled with stack protector. 2009-06-28T23:51:39+00:00 Alexander Kabaev kan@FreeBSD.org 2009-06-28T23:51:39+00:00 a162c9ae9c55a9593b15ef618f4df0a045e39dbd Use libssp_nonshared library to pull __stack_chk_fail_local symbol into each library that needs it instead of pulling it from libc. GCC generates local calls to this function which result in absolute relocations put into position-independent code segment, making dynamic loader do extra work everys time given shared library is being relocated and making affected text pages non-shareable. Reviewed by: kib Approved by: re (kensmith) 
Use libssp_nonshared library to pull __stack_chk_fail_local symbol into
each library that needs it instead of pulling it from libc. GCC generates
local calls to this function which result in absolute relocations put into
position-independent code segment, making dynamic loader do extra work everys
time given shared library is being relocated and making affected text pages
non-shareable.

Reviewed by:        kib
Approved by:        re (kensmith)
Fix a typo in the same comment, one line below. 2009-06-23T14:12:49+00:00 Ed Schouten ed@FreeBSD.org 2009-06-23T14:12:49+00:00 26d0788e89d872ccbfe8d28412972e50f19d0b43 Submitted by: bf1783 googlemail com 
Submitted by:	bf1783 googlemail com
Fix typo in comment. 2009-06-23T09:50:50+00:00 Ed Schouten ed@FreeBSD.org 2009-06-23T09:50:50+00:00 75b872ee53cd9d08ef38cdd78aa22b78304ce1bb Submitted by: Christoph Mallon 
Submitted by:	Christoph Mallon