rpki-client: fix ip_addr_afi_parse()
The somewhat weird length checks would nominally accept an octet string
of length 1, in which case the subsequent memcpy() would perform a 1-byte
overread (harmless since libcrypto 'helpfully' adds a trailing NUL) since
ip.c r1.12.
The only allowed length for an AFI are 2 and 3 per RFC 3779 and SAFI is
out, so pull the check for presence of the SAfI up and reject other
lengths != 2.
Also convert this function to opaque ASN1_STRING.
ok job
rpki-client: convert cms.c to opaque ASN1_STRING
Add length checks for the eContent to avoid malloc(0) and malloc(huge).
Neither of these should be reachable, but who knows for sure...
feedback/ok claudio
Fix possible use-after-free in up_generate_addpath()
adjout_prefix_withdraw() is too complex to be sure that there is never a
case where the prefix is removed and freed. So use the safe idiom and fetch
the next element before calling adjout_prefix_withdraw().
Fix for CID 500335
OK tb@
Let the page daemon recover when uao_set_swslot() returns ENOMEM.
When all available pages have been exhausted it might not be possible for the
aobj layer to allocate a new element for a hash table. In that case simply
skip the page. The page daemon will likely find a page that can be added to
the cluster without requiring any allocation in uao_set_swslot().
Not that this edge case, reported by bluhm@, can be triggered because the
aiodone daemon releases the memory reserved for the page daemon asynchronously.
So there might always be a window where no page are available to write pages
to disk.
Tested by and ok bluhm@
Fixes for vulnerabilities found in xkbcommon also present in xkbcomp
CVE-2018-15863 Don't crash on no-op modmask expressions
CVE-2018-15861 Don't falsely promise from ExprResolveLhs
CVE-2018-15859 Fail expression lookup on invalid atoms
CVE-2018-15853 fix stack overflow when evaluating boolean negation
from matthieu@
this is errata/7.8/009_xkbcomp.patch.sig
Fixes for vulnerabilities found in xkbcommon also present in xkbcomp
CVE-2018-15863 Don't crash on no-op modmask expressions
CVE-2018-15861 Don't falsely promise from ExprResolveLhs
CVE-2018-15859 Fail expression lookup on invalid atoms
CVE-2018-15853 fix stack overflow when evaluating boolean negation
from matthieu@
this is errata/7.7/016_xkbcomp.patch.sig
Fixes for vulnerabilities found in xkbcommon also present in xkbcomp
CVE-2018-15863 Don't crash on no-op modmask expressions
CVE-2018-15861 Don't falsely promise from ExprResolveLhs
CVE-2018-15859 Fail expression lookup on invalid atoms
CVE-2018-15853 fix stack overflow when evaluating boolean negation
add veb-port kstats to count which of the many reasons a packet was dropped
this adds them to the per cpu mem on each port that the refcnt
"hazards" are on.
