system/freebsd-src
system/freebsd-src
1
0
Fork 0
mirror of https://github.com/freebsd/freebsd-src synced 2024-09-06 17:18:32 +00:00
Code Issues Packages Projects Releases Wiki Activity
freebsd-src/sys
History
Andrey V. Elsukov 0bf5377b6b Avoid IPv6 source address selection on accepting TCP connections 
When an application listens IPv6 TCP socket, due to ipfw
forwarding tag it may handle connections for addresses that do not
belongs to the jail or even current host (transparent proxy).
Syncache code can successfully handle TCP handshake for such connections.
When syncache finally accepts connection it uses in6_pcbconnect() to
properly initlize new connection info.

For IPv4 this scenario just works, but for IPv6 it fails when
local address doesn't belongs to the jail. This check occurs when
in6_pcbladdr() applies IPv6 SAS algorithm.
We need IPv6 SAS when we are connection initiator, but in the above
case connection is already established and both source and destination
addresses are known.

Use unused argument to notify in6_pcbconnect() when we don't need
source address selection. This will fix `ipfw fwd` to jailed IPv6
address.

When we are connection initiator, we stil use IPv6 SAS algorithm and
apply all related restrictions.

MFC after:              1 month
Sponsored by:           Yandex LLC
Differential Revision:  https://reviews.freebsd.org/D41685
2023-09-14 11:39:06 +03:00
..
amd64 linux(4): Cleanup includes under amd64/linux32 2023-09-11 21:29:40 +03:00
arm gic_acpi: Limit the number of CPUs to GIC_MAXCPU 2023-09-09 12:13:57 -07:00
arm64 linux(4): Cleanup dummy syscall list on arm64 2023-09-12 13:37:45 +03:00
bsm timerfd: Move implementation from linux compat to sys/kern 2023-08-24 14:28:56 -06:00
cam cam: Remove extra break 2023-09-09 11:13:25 -06:00
cddl dtrace: Fix a kernel panic in printm() 2023-09-06 10:00:59 -04:00
compat LinuxKPI: skbuff: remove assumption about mac_header 2023-09-11 14:31:35 +00:00
conf newvers.sh: Avoid picking up stray envars. 2023-09-13 18:10:46 +00:00
contrib zfs: merge openzfs/zfs@0ee9b0239 2023-09-11 09:18:48 +02:00
crypto armv8_crypto: fix recursive fpu_kern_enter call 2023-09-01 10:56:58 +01:00
ddb sys: Remove $FreeBSD$: one-line .c pattern 2023-08-16 11:54:36 -06:00
dev Hyper-V: vmbus: implementat bus_get_dma_tag in vmbus 2023-09-14 07:11:25 +00:00
dts sys: Remove $FreeBSD$: one-line bare tag 2023-08-16 11:55:17 -06:00
fs vfs: copy_file_range() between multiple mountpoints of the same fs type 2023-09-06 14:28:23 +02:00
gdb sys: Remove $FreeBSD$: one-line .c pattern 2023-08-16 11:54:36 -06:00
geom geom_linux_lvm: Check the offset of physical volume header 2023-08-22 17:20:10 +08:00
gnu sys: Remove $FreeBSD$: one-line .c pattern 2023-08-16 11:54:36 -06:00
i386 linux(4): Deduplicate mmap2 2023-09-05 21:16:39 +03:00
isa sys: Remove $FreeBSD$: one-line sh pattern 2023-08-16 11:54:58 -06:00
kern shmfd: hide direct rangelock(9) use under a wrapper 2023-09-10 01:00:06 +03:00
kgssapi sys: Remove $FreeBSD$: one-line sh pattern 2023-08-16 11:54:58 -06:00
libkern sys: Remove $FreeBSD$: one-line sh pattern 2023-08-16 11:54:58 -06:00
modules zfs: merge openzfs/zfs@0ee9b0239 2023-09-11 09:18:48 +02:00
net Assert that ifnet_detach_sxlock is held where needed. 2023-09-08 10:06:11 +00:00
net80211 net80211: fix ddb print alignment 2023-09-11 14:28:04 +00:00
netgraph sys: Remove $FreeBSD$: one-line bare tag 2023-08-16 11:55:17 -06:00
netinet sctp: further improve shutting down the read side of a socket 2023-09-13 13:02:51 +02:00
netinet6 Avoid IPv6 source address selection on accepting TCP connections 2023-09-14 11:39:06 +03:00
netipsec sys: Remove $FreeBSD$: one-line .c pattern 2023-08-16 11:54:36 -06:00
netlink sys: Remove $FreeBSD$: one-line .c pattern 2023-08-16 11:54:36 -06:00
netpfil ipfilter: Avoid allocating a new ipf token when not needed 2023-09-12 19:10:40 -07:00
netsmb sys: Remove $FreeBSD$: one-line .c pattern 2023-08-16 11:54:36 -06:00
nfs sys: Remove $FreeBSD$: one-line .c pattern 2023-08-16 11:54:36 -06:00
nfsclient sys: Remove $FreeBSD$: one-line .h pattern 2023-08-16 11:54:18 -06:00
nfsserver sys: Remove $FreeBSD$: one-line .h pattern 2023-08-16 11:54:18 -06:00
nlm sys: Remove $FreeBSD$: one-line .c pattern 2023-08-16 11:54:36 -06:00
ofed ofed: mask seq_num identifier to occupy only 3 bytes 2023-08-22 16:09:13 -07:00
opencrypto sys: Remove $FreeBSD$: one-line sh pattern 2023-08-16 11:54:58 -06:00
powerpc powerpc pmap: initialize kernel pmap radix trie 2023-09-13 13:17:57 -05:00
riscv riscv: Print stval in dump_regs for fatal exceptions 2023-09-08 16:35:59 -07:00
rpc sys: Remove $FreeBSD$: one-line .c pattern 2023-08-16 11:54:36 -06:00
security mac_ipacl: Use IfAPI 2023-08-25 12:50:39 -04:00
sys Move kern_extattr_* prototypes to <sys/syscallsubr.h> 2023-09-08 16:36:28 -07:00
teken sys: Remove $FreeBSD$: two-line nroff pattern 2023-08-16 11:55:06 -06:00
tests sys: Remove $FreeBSD$: one-line sh pattern 2023-08-16 11:54:58 -06:00
tools pccarddevs2h.awk: Remove 2023-08-25 15:12:44 -06:00
ufs ufs: restore name cache fast path lookup 2023-09-09 21:48:57 +00:00
vm vm_radix: add a missing paren 2023-09-12 04:19:51 -05:00
x86 x86: Introduce APIC ID limit by default on AMD hardware 2023-08-29 13:25:30 -04:00
xdr sys: Remove $FreeBSD$: one-line .c pattern 2023-08-16 11:54:36 -06:00
xen sys: Remove $FreeBSD$: one-line sh pattern 2023-08-16 11:54:58 -06:00
Makefile sys: Remove $FreeBSD$: one-line sh pattern 2023-08-16 11:54:58 -06:00
README.md sys/README.md: Add a section for documentation 2023-08-03 11:07:41 -03:00

README.md

FreeBSD Kernel Source:

This directory contains the source files and build glue that make up the FreeBSD kernel and its modules, including both original and contributed software.

Kernel configuration files are located in the conf/ subdirectory of each architecture. GENERIC is the configuration used in release builds. NOTES contains documentation of all possible entries. LINT is a compile-only configuration used to maximize build coverage and detect regressions.

Documentation:

Source code documentation is maintained in a set of man pages, under section 9. These pages are located in share/man/man9, from the top-level of the src tree. Consult intro(9) for an overview of existing pages.

Some additional high-level documentation of the kernel is maintained in the Architecture Handbook.

Source Roadmap:

Directory Description
amd64 AMD64 (64-bit x86) architecture support
arm 32-bit ARM architecture support
arm64 64-bit ARM (AArch64) architecture support
cam Common Access Method storage subsystem - cam(4) and ctl(4)
cddl CDDL-licensed optional sources such as DTrace
conf kernel build glue
compat Linux compatibility layer, FreeBSD 32-bit compatibility
contrib 3rd-party imported software such as OpenZFS
crypto crypto drivers
ddb interactive kernel debugger - ddb(4)
fs most filesystems, excluding UFS, NFS, and ZFS
dev device drivers and other arch independent code
gdb kernel remote GDB stub - gdb(4)
geom GEOM framework - geom(4)
i386 i386 (32-bit x86) architecture support
kern main part of the kernel
libkern libc-like and other support functions for kernel use
modules kernel module infrastructure
net core networking code
net80211 wireless networking (IEEE 802.11) - net80211(4)
netgraph graph-based networking subsystem - netgraph(4)
netinet IPv4 protocol implementation - inet(4)
netinet6 IPv6 protocol implementation - inet6(4)
netipsec IPsec protocol implementation - ipsec(4)
netpfil packet filters - ipfw(4), pf(4), and ipfilter(4)
opencrypto OpenCrypto framework - crypto(7)
powerpc PowerPC/POWER (32 and 64-bit) architecture support
riscv 64-bit RISC-V architecture support
security security facilities - audit(4) and mac(4)
sys kernel headers
tests kernel unit tests
ufs Unix File System - ffs(7)
vm virtual memory system
x86 code shared by AMD64 and i386 architectures