OpenBSD src changes summary for 2015-11-16 ==========================================
bin/cp distrib/sets lib/libc lib/libcrypto libexec/ftpd libexec/getty sbin/shutdown sys/arch/amd64/amd64 sys/arch/amd64/include sys/arch/amd64/stand/pxeboot sys/arch/aviion/stand/boot sys/arch/aviion/stand/libsa sys/arch/hppa/stand/libsa sys/arch/hppa64/stand/libsa sys/arch/loongson/stand/libsa sys/arch/octeon/stand/libsa sys/arch/sgi/stand/libsa sys/arch/sparc/stand/boot sys/arch/sparc/stand/libsa sys/arch/sparc64/stand/libsa sys/arch/sparc64/stand/ofwboot sys/arch/vax/stand/boot sys/dev/ic sys/dev/pci sys/dev/pv sys/kern sys/lib/libsa usr.bin/at usr.bin/calendar usr.bin/gprof usr.bin/mail usr.bin/ssh usr.bin/tmux usr.bin/tput usr.bin/tset usr.sbin/apmd usr.sbin/kgmon usr.sbin/mopd usr.sbin/rebound usr.sbin/tcpdump == bin =============================================================== 01/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/bin cp ~ utils.c > rename link to name to avoid shadowing the function (tedu@) == distrib =========================================================== 02/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib sets ~ lists/comp/mi > sync (deraadt@) == lib =============================================================== 03/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libc ~ sys/revoke.2 > Only perform revoke(2) on tty cdevs. Others paths return ENOTTY. > ok millert semarie tedu guenther (deraadt@) ~ sys/pledge.2 > Permit revoke(2) for a pledge "rpath tty" > ok millert semarie tedu guenther (deraadt@) ~ sys/pledge.2 ~ sys/revoke.2 > minor tweaks; (jmc@) libcrypto ~ cert.pem > add QuoVadis root certificates, present in Mozilla/Chrome/Apple/Windows/etc > req by and OK dlg, no objections in 5 days (sthen@) == libexec =========================================================== 04/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/libexec ftpd ~ Makefile ~ ftpcmd.y ~ ftpd.c ~ monitor.c > don't need to ifdef setproctitle (tedu@) getty ~ main.c > Observe that FIOASYNC clearing for stdin is only done in the case where > getty receives the fd from init, so hoist it upwards. Since revoke(2) > is now allowed by pledge "rpath tty", the pledges can be hoisted much > higher. > ok millert semarie tedu guenther (deraadt@) == sbin ============================================================== 05/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sbin shutdown ~ shutdown.c > initially, pledge "stdio rpath wpath cpath getpw tty id proc exec", yes > it sounds like a lot, but this will eventually run the /etc/rc scripts > to shutdown, then run reboot or halt. After looking at getpw*, drop > pledge "getpw". Later drop to just "stdio exec"... > This depends on new pledge semantics for revoke(2). > with help from jca > ok guenther millert semarie tedu jca (deraadt@) == sys =============================================================== 06/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/amd64/amd64 ~ cpu.c ~ vmm.c ~ vmm_support.S > Some minor tweaks: > - Add $OpenBSD$ tag, > - constify "struct cfattach", > - Use <uvm/uvm_extern.h> rather than <uvm/uvm.h>, it's enough. > - Keep the "struct vm" private. This allows us to not pull > <uvm/uvm_extern.h> > in <macine/vmmvar.h> > - Prefer DPRINTF() for debug macro as dprintf(3) is a standard function > name. > - Add vmm_debug and fix VMM_DEBUG build > - Remove unneeded <sys/rwlock.h> from <machine/vmmvar.h> > - Kill whitespaces > ok mlarkin@ (mpi@) arch/amd64/include ~ vmmvar.h > Some minor tweaks: > - Add $OpenBSD$ tag, > - constify "struct cfattach", > - Use <uvm/uvm_extern.h> rather than <uvm/uvm.h>, it's enough. > - Keep the "struct vm" private. This allows us to not pull > <uvm/uvm_extern.h> > in <macine/vmmvar.h> > - Prefer DPRINTF() for debug macro as dprintf(3) is a standard function > name. > - Add vmm_debug and fix VMM_DEBUG build > - Remove unneeded <sys/rwlock.h> from <machine/vmmvar.h> > - Kill whitespaces > ok mlarkin@ (mpi@) arch/amd64/stand/pxeboot ~ Makefile > Replace unbounded gets() in libsa with getln() which takes a buffer size, > and convert all gets() users. > ok deraadt@ (miod@) arch/aviion/stand/boot ~ boot.c > Replace unbounded gets() in libsa with getln() which takes a buffer size, > and convert all gets() users. > ok deraadt@ (miod@) arch/aviion/stand/libsa ~ Makefile > Replace unbounded gets() in libsa with getln() which takes a buffer size, > and convert all gets() users. > ok deraadt@ (miod@) arch/hppa/stand/libsa ~ Makefile > Replace unbounded gets() in libsa with getln() which takes a buffer size, > and convert all gets() users. > ok deraadt@ (miod@) arch/hppa64/stand/libsa ~ Makefile > Replace unbounded gets() in libsa with getln() which takes a buffer size, > and convert all gets() users. > ok deraadt@ (miod@) arch/loongson/stand/libsa ~ Makefile > Replace unbounded gets() in libsa with getln() which takes a buffer size, > and convert all gets() users. > ok deraadt@ (miod@) arch/octeon/stand/libsa ~ Makefile > Replace unbounded gets() in libsa with getln() which takes a buffer size, > and convert all gets() users. > ok deraadt@ (miod@) arch/sgi/stand/libsa ~ Makefile > Replace unbounded gets() in libsa with getln() which takes a buffer size, > and convert all gets() users. > ok deraadt@ (miod@) arch/sparc/stand/boot ~ boot.c > Replace unbounded gets() in libsa with getln() which takes a buffer size, > and convert all gets() users. > ok deraadt@ (miod@) arch/sparc/stand/libsa ~ Makefile > Replace unbounded gets() in libsa with getln() which takes a buffer size, > and convert all gets() users. > ok deraadt@ (miod@) arch/sparc64/stand/libsa ~ Makefile > Replace unbounded gets() in libsa with getln() which takes a buffer size, > and convert all gets() users. > ok deraadt@ (miod@) arch/sparc64/stand/ofwboot ~ boot.c > Replace unbounded gets() in libsa with getln() which takes a buffer size, > and convert all gets() users. > ok deraadt@ (miod@) arch/vax/stand/boot ~ boot.c > Replace unbounded gets() in libsa with getln() which takes a buffer size, > and convert all gets() users. > ok deraadt@ (miod@) dev/ic ~ malo.c > Check for space on the ring before dequeuing packets. > Allows us to get rid of mq_requeue(9) and IFQ_POLL(9) because wireless > drivers use a special queue for management frames. > Tested by stsp@, ok dlg@, stsp@ (mpi@) dev/pci ~ if_vge.c > rework vge_start to avoid IFQ_POLL > firstly, this checks for space in the tx ring before looking at the > send queue. if there's no space, then IFF_OACTIVE is set and break. > if there's space use IFQ_DEQUEUE to pull a packet off. if we fail > to encapsulate it, it gets dropped. > encap has been changed so the dmamaps the mbufs are loaded into are > created with 7 segments instead of 32. this means we detect when > the packet would overflow the tx descriptor at dmamap load time, > rather than after we've looped over the segments writing them into > the descriptor. we now use m_defrag to defrag the mbuf instead of > allocating a new one and using m_copydata. > now if we have any encap error on the first mbuf, we no longer set > IFF_OACTIVE and wait for an interrupt that never comes to clear it. > testing and (excellent) code review by richard proctor (dlg@) ~ drm/radeon/radeon_kms.c > Don't attempt to restore the framebuffer mode in > radeon_driver_lastclose_kms() > if the mode config stuff has not been initialized yet. Fixes a panic that > happens when radeondrm(4) detaches because the hardware couldn't be > initialized > properly. > Tested by Lubos Boucek. (kettenis@) dev/pv ~ pvbus.c > pvbus_types isnt full on i386 cos the openbsd vmm entry is only set > on amd64. make sure the signature is not null before using it in > pvbus_attach. > fixes a panic on i386 under vmware. (dlg@) kern ~ kern_pledge.c > brk/sbrk's use case is way too narrow to be a default stdio pledge. > Since this only affects base gcc and the ports most in need of PCHs are > compiled with ports compilers anyway, let's see what happens if we break > it. > discussed with and ok deraadt@ (pascal@) ~ vfs_subr.c > In getdevvp() set the VISTTY flag on a vnode to indicate the underlying > device is a D_TTY device. (Like spec_open, but this sets the flag to > satisfy pre-VOP_OPEN situations) > ok millert semarie tedu guenther (deraadt@) ~ vfs_syscalls.c > Only perform revoke(2) on tty cdevs. Others paths return ENOTTY. > ok millert semarie tedu guenther (deraadt@) ~ kern_pledge.c ~ vfs_syscalls.c > Permit revoke(2) for a pledge "rpath tty" > ok millert semarie tedu guenther (deraadt@) ~ kern_pledge.c > Allow TIOCEXT in pledge "tty" > Discussed with millert (deraadt@) lib/libsa - gets.c ~ Makefile ~ getfile.c ~ stand.h + getln.c > Replace unbounded gets() in libsa with getln() which takes a buffer size, > and convert all gets() users. > ok deraadt@ (miod@) == usr.bin =========================================================== 07/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin at ~ at.1 ~ at.c > Make "at -l" comply with POSIX. Our "at -l" currently acts like > the historic BSD atq which takes a list of users instead of a list > of jobs. We now accept either a user or a job number for "at -l". > The "at -l user" syntax is still accepted but no longer documented. > This is similar to how we handle differences in "at -r" vs. atrm. > OK deraadt@ jmc@ (millert@) calendar ~ calendar.c > pledge calendar: > * "stdio rpath proc exec" in normal mode (execs cpp) > * "stdio rpath tmppath fattr id proc exec" in -a mode, which is typically > run as root (hint hint) > ok deraadt@ (pascal@) gprof ~ gprof.c ~ gprof.h > pledge for gprof: "stdio rpath wpath cpath" in the beginning, then drop > wpath and cpath if we don't need to write a gmon.sum file (-s flag). > ok deraadt@ (pascal@) mail ~ main.c > pledge "stdio rpath wpath cpath tmppath fattr tty flock proc exec" > (deraadt@) ssh ~ auth-options.c ~ sshd.8 > Add a new authorized_keys option "restrict" that includes all current > and future key restrictions (no-*-forwarding, etc). Also add permissive > versions of the existing restrictions, e.g. "no-pty" -> "pty". This > simplifies the task of setting up restricted keys and ensures they are > maximally-restricted, regardless of any permissions we might implement > in the future. > Example: > restrict,pty,command="nethack" ssh-ed25519 AAAAC3NzaC1lZDI1... > Idea from Jann Horn; ok markus@ (djm@) ~ sftp-server.c > 1) Use xcalloc() instead of xmalloc() to check for potential overflow. > (Feedback from both mmcc@ and djm@) > 2) move set_size just before the for loop. (suggested by djm@) > OK djm@ (logan@) ~ sshkey.c > improve sshkey_read() semantics; only update *cpp when a key > is successfully read; ok markus@ (djm@) ~ sshd.c > always call privsep_preauth_child() regardless of whether sshd > was started by root; it does important priming before sandboxing > and failing to call it could result in sandbox violations later; > ok markus@ (djm@) ~ ssh-keygen.c > Allow fingerprinting from standard input "ssh-keygen -lf -" > Support fingerprinting multiple plain keys in a file and authorized_keys > files too (bz#1319) > ok markus@ (djm@) ~ sshkey.c > Replace remaining calls to index(3) with strchr(3). OK jca@ krw@ > (millert@) tmux ~ input-keys.c > 0x7f is a valid key. (nicm@) tput ~ tput.c > pledge "stdio rpath wpath tty" (deraadt@) tset ~ tset.c > pledge "stdio rpath wpath tty" (deraadt@) == usr.sbin ========================================================== 08/08 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin apmd ~ apmd.c > fix log messages, from jan stary (tedu@) kgmon ~ Makefile ~ kgmon.c > delete setuid code (which we disabled in 2002) > ok guenther millert (deraadt@) mopd ~ mopd/process.c > Replace remaining calls to index(3) with strchr(3). OK jca@ krw@ > (millert@) rebound ~ rebound.c > the list insertion needs to occur right after we get a valid socket, > as that is the hint that the request is on the list. (tedu@) ~ rebound.c > improve logging slightly (tedu@) tcpdump ~ print-decnet.c ~ print-dhcp6.c ~ print-domain.c ~ print-dvmrp.c ~ print-ether.c ~ print-fddi.c ~ print-frag6.c ~ print-gtp.c ~ print-hsrp.c ~ print-icmp6.c ~ print-igrp.c ~ print-ip.c ~ print-ip6.c ~ print-ip6opts.c ~ print-ipsec.c ~ print-ipx.c ~ print-isoclns.c ~ print-krb.c ~ print-llc.c ~ print-lwres.c ~ print-nfs.c ~ print-ntp.c ~ print-ospf.c ~ print-ospf6.c ~ print-pflog.c ~ print-pfsync.c ~ print-pim.c ~ print-ppp.c ~ print-radius.c ~ print-rip.c ~ print-ripng.c ~ print-rt6.c ~ print-skip.c ~ print-sl.c ~ print-slow.c ~ print-snmp.c ~ print-sunrpc.c ~ print-tcp.c ~ print-tftp.c ~ print-timed.c ~ print-udp.c ~ print-vrrp.c ~ print-wb.c ~ savestr.c ~ tcpdump.c ~ util.c > Remove remaining instances of the register keyword. > ok deraadt@ (mmcc@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
