#
342229 |
|
19-Dec-2018 |
emaste |
MFC r342227: bootpd: validate hardware type
Due to insufficient validation of network-provided data it may have been possible for a malicious actor to craft a bootp packet which could cause a stack buffer overflow.
admbugs: 850 Reported by: Reno Robert Reviewed by: markj Approved by: so Security: FreeBSD-SA-18:15.bootpd Sponsored by: The FreeBSD Foundation
|
#
302408 |
|
07-Jul-2016 |
gjb |
Copy head@r302406 to stable/11 as part of the 11.0-RELEASE cycle. Prune svn:mergeinfo from the new branch, as nothing has been merged here.
Additional commits post-branch will follow.
Approved by: re (implicit) Sponsored by: The FreeBSD Foundation |
#
229780 |
|
07-Jan-2012 |
uqs |
Spelling fixes for libexec/
|
#
153706 |
|
24-Dec-2005 |
trhodes |
Make tv_sec a time_t on all platforms but alpha. Brings us more in line with POSIX. This also makes the struct correct we ever implement an i386-time64 architecture. Not that we need too.
Reviewed by: imp, brooks Approved by: njl (acpica), des (no objects, touches procfs) Tested with: make universe
|
#
141918 |
|
14-Feb-2005 |
stefanf |
Fix most cases where the address of an int is passed to a function expecting a socklen_t * argument.
|
#
125769 |
|
13-Feb-2004 |
roam |
Add the '-h hostname' to usage(), too. While I'm here, sync the usage() synopsis with the manual page synopsis: make the [-i | -s] explicit and sort the options alphabetically.
Reminded by: ru MFC after: 3 days
|
#
116371 |
|
15-Jun-2003 |
jmg |
fix a couple typos in the comments
From NetBSD's bootpd (in src/usr.sbin/bootp)
|
#
116370 |
|
15-Jun-2003 |
jmg |
fix bootpd to use fd_set. For some reason on Sparc, using int with select is broken.
|
#
110395 |
|
05-Feb-2003 |
charnier |
Add FBSDID. udp/bootps -> bootps/udp. Use err(3).
|
#
97417 |
|
28-May-2002 |
alfred |
This code defined a private __P, nuke it.
|
#
97416 |
|
28-May-2002 |
alfred |
Assume __STDC__, remove non-__STDC__ code.
Reviewed by: md5
|
#
90159 |
|
03-Feb-2002 |
kris |
Mark report() as printflike and fix resulting warnings, including one bug (get_errmsg -> get_errmsg())
|
#
83941 |
|
25-Sep-2001 |
iedowse |
RFC2132 is not clear about whether the "Maximum DHCP Message Size" refers to the size of the whole ethernet packet, just the DHCP message within the UDP payload, or something else. bootpd interpreted it as a maximum UDP payload size, so it could end up sending fragmented packets to clients (such as some versions of Etherboot) that used different interpretations of the maximum message size.
Switch to the most conservative interpretation: ensure that the ethernet packet containing the response is no larger than the specified maximum message size. This matches the behaviour of the ISC dhcpd.
MFC after: 1 week
|
#
69793 |
|
09-Dec-2000 |
obrien |
Add `_PATH_DEVZERO'. Use _PATH_* where where possible.
|
#
50476 |
|
27-Aug-1999 |
peter |
$Id$ -> $FreeBSD$
|
#
46078 |
|
25-Apr-1999 |
imp |
More egcs warning fixes: o main returns int not void o use return 0 at end of main when needed o use braces to avoid potentially ambiguous else o don't default to type int (and also remove a useless register modifier).
Reviewed by: obrien and chuckr
|
#
45422 |
|
07-Apr-1999 |
brian |
Ensure that things returned by gethostname() and friends are terminated and allow for a maximum host name length of MAXHOSTNAMELEN - 1. Put parenthesis around sizeof args. Make some variables static. Fix telnetd -u (broken by my last commit)
Prompted by: bde
|
#
41734 |
|
13-Dec-1998 |
eivind |
Block for buffer overflow.
|
#
41699 |
|
12-Dec-1998 |
dillon |
PR: bin/9031
Changed unbounded strcpy() to snprintf() to fix buffer overrun exploit
|
#
36617 |
|
03-Jun-1998 |
joerg |
Use gethostname(3) to obtain the local host name, as opposed to uname(3). Otherwise the length of the name is limited to 32 characters only.
|
#
25717 |
|
11-May-1997 |
phk |
Don't rely on stderr to report bad news.
|
#
22989 |
|
22-Feb-1997 |
peter |
Revert $FreeBSD$ to $Id$
|
#
21673 |
|
14-Jan-1997 |
jkh |
Make the long-awaited change from $Id$ to $FreeBSD$
This will make a number of things easier in the future, as well as (finally!) avoiding the Id-smashing problem which has plagued developers for so long.
Boy, I'm glad we're not using sup anymore. This update would have been insane otherwise.
|
#
18471 |
|
22-Sep-1996 |
wosch |
add forgotten $Id$
|
#
13575 |
|
22-Jan-1996 |
pst |
Fix conflicts from 2.4.3 merge
|
#
8870 |
|
30-May-1995 |
rgrimes |
Remove trailing whitespace.
|
#
3230 |
|
30-Sep-1994 |
pst |
This commit was generated by cvs2svn to compensate for changes in r3229, which included commits to RCS files with non-trunk default branches.
|
#
3229 |
|
30-Sep-1994 |
pst |
Rearrange bootpd
|