OpenBSD src changes summary for 2015-11-13 ==========================================
distrib/sets gnu gnu/usr.bin/binutils-2.17 libexec/fingerd sbin/fdisk share/man sys/arch/amd64/amd64 sys/arch/amd64/conf sys/arch/amd64/include sys/arch/octeon/dev sys/crypto sys/dev/pci sys/dev/pv sys/dev/usb sys/kern sys/net sys/netinet sys/netinet6 sys/sys usr.bin/at usr.bin/file usr.bin/less usr.bin/nc usr.bin/nm usr.bin/ssh usr.bin/tcpbench usr.bin/telnet usr.bin/tmux usr.sbin/apmd usr.sbin/rarpd == distrib =========================================================== 01/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib sets ~ lists/base/mi > sync (deraadt@) ~ lists/base/md.amd64 ~ lists/comp/md.amd64 > sync (deraadt@) == gnu =============================================================== 02/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/gnu gnu ~ gcc/gcc/gcc.c ~ gcc/gcc/collect2.c > Both gcc & collect2 can pledge "stdio rpath wpath cpath proc exec". > (cc1 "toplev.c" uses brk/sbrk, so it is on hold to figure out the right > direction...) > ok semarie pascal (deraadt@) usr.bin/binutils-2.17 ~ gas/as.c ~ ld/ldmain.c > pledge "stdio rpath wpath cpath fattr" for both as & ld > ok semarie (deraadt@) == libexec =========================================================== 03/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/libexec fingerd ~ fingerd.c > _exit() in the child; as a result, must use syslog() directly. (deraadt@) ~ fingerd.c > 4-step pledge in a program noone really uses anymore. > pledge "stdio inet dns proc exec" at startup. > In the logging codepath, "stdio dns proc exec" after getpeername() > drop to stdio proc exec(), before fork / execve > Parent moving data out of the pipe only needs "stdio" (deraadt@) == sbin ============================================================== 04/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sbin fdisk ~ cmd.c ~ disk.c ~ disk.h ~ fdisk.c ~ gpt.c ~ gpt.h ~ mbr.c ~ mbr.h ~ user.c > Move from opening/closing disk for every i/o to opening the disk once > and saving the fd in the global 'disk' structure. Stop passing around > fd's and just use the global. > Makes pledge() feasible. > Prompted by and ok deraadt@ (krw@) ~ fdisk.c > Make usage() output fit on a 'normal' 80-character line. Tweak some > verbiage in the usage() output. (krw@) ~ fdisk.c > No need to zero a global variable before use. (krw@) ~ fdisk.c > No need to supplement usage() with extra messages about -b needing -i, or > -g needing -i. The usage() text is quite clear. > usage() doesn't return so eliminate unneeded 'else'. (krw@) == share ============================================================= 05/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share man ~ man4/man4.amd64/Makefile + man4/man4.amd64/vmm.4 > man pages for vmm (mlarkin@) ~ man4/man4.amd64/vmm.4 > rephrase some odd wording. (mlarkin@) ~ man4/man4.amd64/vmm.4 > tweaks; (jmc@) ~ man9/mbuf.9 > Use ph_ prefix for tag-related fields. > ok dlg@ (mpi@) ~ man9/crypto.9 > Update the list of supported cryptographic algorithms; reminded by naddy@ > (mikeb@) ~ man9/crypto.9 > remove unused ARC4 support; ok mikeb@ (naddy@) ~ man4/hifn.4 > ARC4 and non-HMAC MD5 & SHA1 have been removed; prodded by mikeb@ (naddy@) == sys =============================================================== 06/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/amd64/amd64 ~ cacheinfo.c ~ conf.c ~ cpu.c ~ identcpu.c ~ ipifuncs.c ~ mainbus.c + vmm.c + vmm_support.S > vmm(4) kernel code > circulated on hackers@, no objections. Disabled by default. (mlarkin@) arch/amd64/conf ~ GENERIC ~ Makefile.amd64 ~ files.amd64 > vmm(4) kernel code > circulated on hackers@, no objections. Disabled by default. (mlarkin@) arch/amd64/include ~ cpu.h ~ intrdefs.h ~ pmap.h ~ specialreg.h + vmmvar.h > vmm(4) kernel code > circulated on hackers@, no objections. Disabled by default. (mlarkin@) arch/octeon/dev ~ if_cnmac.c > Remove an unnecessary IFQ_POLL(), along with an unused #ifdef block. > ok mpi@ (visa@) crypto ~ cryptodev.h ~ cryptosoft.c ~ xform.c ~ xform.h > Remove unused non HMAC versions of MD5 and SHA1; ok mpi, deraadt, naddy > (mikeb@) ~ cryptodev.h ~ xform.c ~ xform.h > remove unused ARC4 support; ok mikeb@ (naddy@) dev/pci ~ hifn7751.c > Remove unused non HMAC versions of MD5 and SHA1; ok mpi, deraadt, naddy > (mikeb@) ~ hifn7751.c > remove unused ARC4 support; ok mikeb@ (naddy@) dev/pv ~ pvbus.c ~ pvvar.h > vmm(4) kernel code > circulated on hackers@, no objections. Disabled by default. (mlarkin@) ~ pvbus.c > vmm is i386 only for now (deraadt@) dev/usb ~ if_ral.c ~ if_rum.c ~ if_uath.c ~ if_urtw.c > Check for space on the ring before dequeuing packets. > Allows us to get rid of mq_requeue(9) and IFQ_POLL(9) because wireless > drivers use a special queue for management frames. > Tested by stsp@, ok dlg@, stsp@ (mpi@) ~ usbdevs > Add USB device ID found in an RTL8192EU device. > ok mpi@ (stsp@) ~ usbdevs.h ~ usbdevs_data.h > regen (stsp@) kern ~ uipc_mbuf.c ~ uipc_mbuf2.c > Use ph_ prefix for tag-related fields. > ok dlg@ (mpi@) ~ kern_pledge.c > All setsockopt IPPROTO_IPV6 IPV6_TCLASS (v4 calls this IP_TOS) (deraadt@) net ~ if.c > Sore the index of the interface used for revarp instead of a pointer to > its descriptor. Get rid of a if_ref(). > ok dlg@ (mpi@) netinet ~ if_ether.c ~ if_ether.h > Sore the index of the interface used for revarp instead of a pointer to > its descriptor. Get rid of a if_ref(). > ok dlg@ (mpi@) ~ ip_mroute.c > Kill another tunnel leftover and keep PIM stuff inside #ifdef PIM. (mpi@) ~ ip_mroute.c > Do not cast malloc(9) results. (mpi@) netinet6 ~ ip6_mroute.c > Do not cast malloc(9) results. (mpi@) sys ~ mbuf.h > Use ph_ prefix for tag-related fields. > ok dlg@ (mpi@) == usr.bin =========================================================== 07/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin at ~ at.c ~ at.h > There's no need for at.c globals to be extern. (millert@) ~ at.c > Use crontab-style syslog calls in at. > Remove check_permission and just call allowed() directly. (millert@) file ~ file.c > Call stat not lstat with -L, makes links actually be followed. Reported > by and ok semarie@. (nicm@) ~ file.c > Break the message preparation bit of the main loop into its own function > for less excessive level of indentation. (nicm@) less ~ command.c ~ edit.c ~ funcs.h ~ lsystem.c ~ main.c ~ os.c ~ output.c ~ signal.c > Add a flag argument to flush() to stop it calling quit() on error, then > use this from quit() to stop less blowing up the stack looping through > quit()/flush() if stderr is closed (for example "less /missing > 2</dev/null"). ok millert (nicm@) nc ~ netcat.c > Since rtable was hoisted to the top with setrtable, it should have no > bearing on the following pledge setups anymore. > ok benno (deraadt@) nm ~ nm.c > ratchet pledge from the start; from Theo Buehler (deraadt@) ssh ~ sshd_config.5 > list a couple more options usable in Match blocks; bz#2489 (djm@) ~ ssh-keygen.1 ~ ssh-keygen.c > support multiple certificates (one per line) and reading from > standard input (using "-f -") for "ssh-keygen -L"; > ok dtucker@ (djm@) ~ servconf.c ~ sshd_config.5 > Support "none" as an argument for sshd_config ForceCommand and > ChrootDirectory. Useful inside Match blocks to override a global > default. bz#2486 ok dtucker@ (djm@) ~ kex.c > send SSH2_MSG_UNIMPLEMENTED replies to unexpected messages during > KEX; bz#2949, ok dtucker@ (djm@) tcpbench ~ tcpbench.c > pledge tcpbench, from David Hill, tweaked the -s case. > ok deraadt@ (benno@) telnet ~ Makefile ~ commands.c ~ telnet.1 > remove skey support > ok millert (deraadt@) ~ commands.c ~ telnet.1 > remove support for !shell > ok millert (deraadt@) ~ commands.c ~ telnet.1 > Delete tracefile command. Tracefiles can now only be specified at > program startup. Who uses that? Noone... > ok millert (deraadt@) ~ commands.c ~ main.c ~ telnet.1 ~ telnet.c > Remove support for the debug command; noone needs setsockopt SO_DEBUG > (deraadt@) ~ commands.c ~ main.c > Use setrtable() for the entire process, rather than doing it for the > socket later. Same idea as in nc(1). (deraadt@) ~ main.c ~ telnet.c > pledge "stdio rpath wpath getpw inet tty" at startup. After opening > the socket and entering the main loop, pledge "stdio tty". > For my next trick, I will be adding chacha20-poly1305 support. (deraadt@) ~ main.c > move pledge(2) after setrtable(2), like in nc(1); > OK deraadt@ (schwarze@) ~ telnet.1 > remove -d from SYNOPSIS; (jmc@) ~ telnet.1 > Ev SHELL no longer relevant; (jmc@) tmux - grid-cell.c ~ Makefile ~ format.c ~ grid-view.c ~ grid.c ~ input.c ~ screen-write.c ~ status.c ~ tmux.h ~ tty.c ~ utf8.c ~ window-copy.c > Long overdue change to the way we store cells in the grid: now, instead > of storing a full grid_cell with UTF-8 data and everything, store a new > type grid_cell_entry. This can either be the cell itself (for ASCII > cells), or an offset into an extended array (per line) for UTF-8 > data. > This avoid a large (8 byte) overhead on non-UTF-8 cells (by far the > majority for most users) without the complexity of the shadow array we > had before. Grid memory without any UTF-8 is about half. > The disadvantage that cells can no longer be modified in place and need > to be copied out of the grid and back but it turned out to be lot less > complicated than I expected. (nicm@) ~ control-notify.c ~ format.c ~ tmux.1 > Add window_visible_layout which ignores zoomed panes and use it for > control mode (which needs to know all panes), from George Nachman. (nicm@) ~ format.c ~ grid-view.c > Two spacing and spelling nits. (nicm@) ~ options.c > Log option names in fatal() for missing option. (nicm@) == usr.sbin ========================================================== 08/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin apmd ~ apmd.c > apmd doesn't connect to the socket, it binds on it; tweak error message > (jca@) rarpd ~ rarpd.c > pledge "stdio rpath dns" right at the start of the servicing loop. > Commiting to gather reports. (deraadt@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
