”~172994 6 379 1348 201 152 446 125 K 10 svn:author V 3 alc K 8 svn:date V 27 2007-10-26T00:12:23.000000Z K 7 svn:log V 286 MFC revision 1.237 Correct an error of omission in the reimplementation of the page cache: vnode_pager_setsize() must handle the case where a file is truncated to a non-page-size-aligned boundary and there is a cached page underlying the new end of file. Approved by: re (gnn) END K 10 svn:author V 4 csjp K 8 svn:date V 27 2007-10-26T01:23:07.000000Z K 7 svn:log V 1253 Implement AUE_CORE, which adds process core dump support into the kernel. This change introduces audit_proc_coredump() which is called by coredump(9) to create an audit record for the coredump event. When a process dumps a core, it could be security relevant. It could be an indicator that a stack within the process has been overflowed with an incorrectly constructed malicious payload or a number of other events. The record that is generated looks like this: header,111,10,process dumped core,0,Thu Oct 25 19:36:29 2007, + 179 msec argument,0,0xb,signal path,/usr/home/csjp/test.core subject,csjp,csjp,staff,csjp,staff,1101,1095,50457,10.37.129.2 return,success,1 trailer,111 - We allocate a completely new record to make sure we arent clobbering the audit data associated with the syscall that produced the core (assuming the core is being generated in response to SIGABRT and not an invalid memory access). - Shuffle around expand_name() so we can use the coredump name at the very beginning of the coredump call. Make sure we free the storage referenced by "name" if we need to bail out early. - Audit both successful and failed coredump creation efforts Obtained from: TrustedBSD Project Reviewed by: rwatson MFC after: 1 month END K 10 svn:author V 3 imp K 8 svn:date V 27 2007-10-26T02:20:29.000000Z K 7 svn:log V 108 Add usb serial devices by default. I'm tired of telling people how to do this that should know better :-). END K 10 svn:author V 3 imp K 8 svn:date V 27 2007-10-26T02:35:42.000000Z K 7 svn:log V 60 Ooops. Put back Invariants and witness Submitted by: csjp END K 10 svn:author V 5 peter K 8 svn:date V 27 2007-10-26T03:23:54.000000Z K 7 svn:log V 351 Split /dev/nvram driver out of isa/clock.c for i386 and amd64. I have not refactored it to be a generic device. Instead of being part of the standard kernel, there is now a 'nvram' device for i386/amd64. It is in DEFAULTS like io and mem, and can be turned off with 'nodevice nvram'. This matches the previous behavior when it was first committed. END K 10 svn:author V 3 imp K 8 svn:date V 27 2007-10-26T05:02:47.000000Z K 7 svn:log V 33 Simplify the old compat #ifdefs. END