OpenBSD src changes summary for 2015-10-28 ==========================================
bin/csh lib/libc share/man sys/arch/amd64/stand/libsa sys/arch/i386/stand/libsa sys/arch/octeon/dev sys/arch/sparc64/dev sys/arch/sparc64/stand/ofwboot sys/kern sys/net sys/netinet sys/netinet6 sys/sys usr.bin/at usr.bin/kdump usr.bin/tmux usr.sbin/apm usr.sbin/cron usr.sbin/httpd usr.sbin/installboot usr.sbin/lpr usr.sbin/mrouted usr.sbin/ndp usr.sbin/pppd usr.sbin/rarpd usr.sbin/rbootd usr.sbin/rebound usr.sbin/smtpd usr.sbin/tcpdump usr.sbin/ypserv == bin =============================================================== 01/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/bin csh ~ csh.c ~ csh.h ~ exec.c > unifdef _PATH_* (naddy@) == lib =============================================================== 02/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libc ~ locale/mbtowc.3 > Rewrite the mbtowc(3) page for clarity. Explain what needs to be done on > error. > With input from jmc, zhuk, schwarze, and bentley. > ok jmc zhuk bentley (stsp@) ~ asr/asr.c > Remove support for [addr]:port syntax from the "nameserver" line. > This extension never made it to other systems. (pledge is also happy > with this. The idea of DNS @ any port collides with pledge encouraring > differentiation between DNS and non-DNS sockets) > ok phessler jung sthen kettenis (deraadt@) ~ asr/asr.c ~ asr/asr_debug.c ~ asr/asr_private.h > We are always using _PATH_RESCONF, so no need to remember the path on > the resolver. > ok millert@ deraadt@ (eric@) == share ============================================================= 03/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share man ~ man5/resolv.conf.5 > Remove support for [addr]:port syntax from the "nameserver" line. > This extension never made it to other systems. (pledge is also happy > with this. The idea of DNS @ any port collides with pledge encouraring > differentiation between DNS and non-DNS sockets) > ok phessler jung sthen kettenis (deraadt@) == sys =============================================================== 04/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/amd64/stand/libsa ~ softraid.c > Support backspace in softraid boot passphrase prompt. > From uwe@ (jsing@) arch/i386/stand/libsa ~ softraid.c > Support backspace in softraid boot passphrase prompt. > From uwe@ (jsing@) arch/octeon/dev ~ cn30xxpipreg.h ~ if_cnmac.c > Add proper padding to packets that the hardware does not recognize as > IP, to avoid memory alignment issues in the IP stack. > ok miod@, mpi@ (visa@) ~ if_cnmac.c > Enable TCP/UDP checksum offloading on packet transmission. > ok mpi@ (visa@) arch/sparc64/dev ~ z8530kbd.c > missing splx in error path > same change made in the sparc equivalent a while ago (jsg@) arch/sparc64/stand/ofwboot ~ softraid.c > Support backspace in softraid boot passphrase prompt. > From uwe@ (jsing@) kern ~ kern_pledge.c > support kern.cptime also (deraadt@) ~ kern_pledge.c > kern.cptime is length 2 (deraadt@) ~ kern_exec.c > move p_pledgenote setting next to NDINIT() (deraadt@) ~ kern_ktrace.c > Though sys_ktrace is not yet pledge allowed, prepare by setting > p_pledgenote as required. > XXX open question to guenther regarding FREAD to vnopen() / vnclose() > (deraadt@) ~ tty.c > TIOCCONS will probably never be permitted, but it is good style to set > p_pledgenote before NDINIT() (deraadt@) ~ vfs_syscalls.c > Set pledgenote to PLEDGE_RPATH in chdir & chroot > noticed by semarie (deraadt@) ~ tty_pty.c > There are three situations where pty ioctl's result in a NDINIT. > NDINIT should be preceded by setting pledgenote to indicate what > the operation is for. (deraadt@) ~ exec_elf.c > Paranoa: p_pledgenote the NAMEI for ld.so loading (deraadt@) ~ syscalls.master ~ kern_pledge.c ~ uipc_syscalls.c > The short-lived dnssocket/dnsconnect calls are being required because we > suspect everyone has upgraded through the approx week-long window since > SOCK_DNS became available and the libc resolver started using them. > (deraadt@) ~ init_sysent.c ~ syscalls.c > sync (deraadt@) ~ kern_descrip.c ~ kern_pledge.c > Prevent F_SETOWN, unless a "proc" pledge was made. (deraadt@) ~ kern_pledge.c > in pledge_namei(), move PLEDGE_EXEC check sooner: it doesn't depend of path > processing. (semarie@) ~ kern_pledge.c > canonpath() error isn't related to p_pledgenote requirement (only possible > error currently is ENAMETOOLONG), so don't use p_pledgenote when failing. > (semarie@) ~ kern_pledge.c > refactor pledge_namei() a bit > - remove all explicit checks that ensure p_pledgenote have counterpart in > ps_pledge by one unique check. It makes management of explicit whitelisted > operations on some paths more simple to manage. And now, we can use > p_pledgenote for more fined checking in namei usage. > - add special case for unsetted p_pledgenote: the behaviour is the same as > previously (we allow the operation with "rpath", "wpath" or "cpath" > request) > but it should be changed soon to be more strict. > "go ahead" deraadt@ (semarie@) ~ kern_pledge.c ~ vfs_syscalls.c > make sys_chroot() only allowed to be used when pledged, with "rpath id > proc". > the previous check in pledge_namei() was incomplete. For using SYS_chroot > we > needed "id", and we could have passed pledge_namei() just with "rpath" > (without > using the now removed whitelisted entry). > the check for "rpath id proc" is now done using p_pledgenote: > pledge_namei() > will check that the pledgenote is permitted by your pledge. > "go ahead" deraadt@ (semarie@) ~ vfs_syscalls.c > remove duplicate setting of p_pledgenote: > - in sys_access() which call dofaccessat() and where the same note is > already setted > - in sys_mkdir() which call domkdirat() and where the same note is already > setted > - in sys_rmdir() which call dounlinkat() and where the same note is already > setted > it makes the p_pledgenote affectation be near NDINIT/NDINITAT call. > (semarie@) ~ kern_pledge.c > merge whitelisted r/w paths and rd paths switch to only one. It becomes > possible due to the move of failing case later. (semarie@) ~ uipc_syscalls.c > more accurate pledge_fail() error and code for sys_socket > - use the error returned by pledge_socket_check() > - make the code to reflect the socket request (set code to PLEDGE_DNS for > dns-scoket, and to PLEDGE_INET else) (semarie@) ~ kern_pledge.c > cleanup indentation and comments in sysctl whitelist (deraadt@) ~ vfs_syscalls.c > mkdir is PLEDGE_CPATH, not PLEDGE_CPATH | PLEDGE_RPATH... > ok semarie (deraadt@) net ~ if.c > Remove linkmtu and maxmtu from struct nd_ifinfo. IN6_LINKMTU can now > die and ifp->if_mtu is the one true mtu. > Suggested by and OK mpi@ (florian@) netinet ~ tcp_input.c > Remove linkmtu and maxmtu from struct nd_ifinfo. IN6_LINKMTU can now > die and ifp->if_mtu is the one true mtu. > Suggested by and OK mpi@ (florian@) netinet6 ~ icmp6.c ~ ip6_forward.c ~ ip6_mroute.c ~ ip6_output.c ~ nd6.c ~ nd6.h ~ nd6_rtr.c > Remove linkmtu and maxmtu from struct nd_ifinfo. IN6_LINKMTU can now > die and ifp->if_mtu is the one true mtu. > Suggested by and OK mpi@ (florian@) ~ nd6.c > Add a missing splx for a return path introduced in rev 1.163 > ok mpi@ bluhm@ (jsg@) sys ~ syscall.h ~ syscallargs.h > sync (deraadt@) ~ pledge.h > Prevent F_SETOWN, unless a "proc" pledge was made. (deraadt@) == usr.bin =========================================================== 05/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin at ~ at.c > pledge > ok millert (deraadt@) kdump ~ kdump.c > remove knowledge of dnssocket/dnsconnect (deraadt@) tmux ~ client.c ~ cmd-attach-session.c ~ cmd-find.c ~ cmd-new-session.c ~ cmd-new-window.c ~ cmd-respawn-pane.c ~ cmd-respawn-window.c ~ cmd-set-environment.c ~ cmd-show-environment.c ~ cmd-split-window.c ~ cmd-string.c ~ cmd-switch-client.c ~ environ.c ~ format.c ~ job.c ~ server-client.c ~ session.c ~ tmux.c ~ tmux.h > Like options, move the environ struct into environ.c. (nicm@) == usr.sbin ========================================================== 06/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin apm ~ apm.c > By hoisting sysctl hw.cpuspeed towards the top, it is possible to > pledge "stdio rpath wpath cpath unix". I wonder what we can do in > apmd... (deraadt@) cron ~ cron.c ~ crontab.c > pledge > ok millert (deraadt@) httpd ~ httpd.c > While I'm in here, drop a NULL-check before free. (mmcc@) ~ httpd.c > Remove a few more NULL-checks before free. (mmcc@) installboot ~ i386_softraid.c > In sr_install_bootblk for i386, don't clobber 'part' in non-GPT case. > Found the hard way by reyk@. > stupid mistake stsp@ > ok reyk@ (stsp@) ~ i386_softraid.c > Revert GPT change. Breaks non-GPT install/upgrade. > Found the hard way by reyk@ (krw@) ~ i386_softraid.c > Backout the backout of installboot softraid non-gpt case fix. > krw and I crossed streams (stsp@) lpr ~ lpd/lpd.8 ~ lpd/lpd.c ~ SMM.doc/7.t ~ common_source/pathnames.h > Remove support for lpd.pid file. OK deraadt@ (millert@) mrouted ~ mrouted.8 > pid removal; from jan stary (jmc@) ndp ~ ndp.c > Remove linkmtu and maxmtu from struct nd_ifinfo. IN6_LINKMTU can now > die and ifp->if_mtu is the one true mtu. > Suggested by and OK mpi@ (florian@) pppd ~ pppd.8 > pid removal; from jan stary (jmc@) rarpd ~ rarpd.8 > pid removal; from jan stary (jmc@) rbootd ~ rbootd.8 > pid removal; from jan stary (jmc@) rebound ~ rebound.c > use an rb tree for finding requests. from Dimitris Papastamos (tedu@) ~ rebound.c > use an rb tree for the cache too. modelled after the reqtree. (tedu@) ~ rebound.c > add pledge to main process, though it needs a few more options (tedu@) ~ rebound.c > twiddle with rlimit to give us a few more files. use rlimit as a hint as > to how many requests to allow open at once. start closing old ones as we > approach the limit, which means we track the number of outstanding requests > (and count tcp as two). > also rename tcp "phase" to tcp, and use it as a more direct indicator. > (tedu@) ~ rebound.c > bug in the request tree code: requests were being added to the tree before > the socket (the key) was being set. move the enqueue code later, and fix > freerequest to only dequeue if socket is set. (tedu@) ~ rebound.c > if accept() fails due to fd exhaustion, stop accepting for one second. > should only happen for ENFILE, but check for EMFILE too. (tedu@) ~ rebound.c > impose some limit on the cache size as well. (tedu@) smtpd ~ smtpctl.c > Remove dead code. > Ok jung@ gilles@ (sunil@) ~ aliases.5 ~ lka_session.c ~ smtpd.h ~ to.c > aliases support resolving to maildir:/path > ok sunil@ millert@ (gilles@) ~ dns.c > dns_lookup_host() needs to remove brackets and IPv6: prefix when receiving > a text representation otherwise getaddrinfo_async() will choke > ok eric@ (gilles@) ~ lka_session.c > remove old check on username length that simply makes no sense nowadays > ok millert@ sunil@ (gilles@) ~ aliases.5 > various macro fixes; (jmc@) ~ smtpd.h + mailaddr.c > masquerade and senders map require being able to lookup mailaddr structures > in tables, prepare for such features by bringing the helpers + smtpd.h part > ok millert@ (gilles@) tcpdump ~ tcpdump.c > pcap_stat fields are unsigned, print them as such > Patch from Kevin Reay. (jca@) ypserv ~ ypserv/ypserv.8 > pid removal; from jan stary (jmc@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
