OpenBSD src changes summary for 2016-05-10 ==========================================
bin/ln lib/libc lib/libedit regress/lib sbin/init share/man sys/arch/alpha/alpha sys/arch/alpha/include sys/arch/amd64/amd64 sys/arch/amd64/include sys/arch/arm/arm sys/arch/arm/include sys/arch/hppa/hppa sys/arch/hppa/include sys/arch/hppa64/hppa64 sys/arch/hppa64/include sys/arch/i386/i386 sys/arch/i386/include sys/arch/m88k/m88k sys/arch/macppc/macppc sys/arch/mips64/include sys/arch/mips64/mips64 sys/arch/powerpc/include sys/arch/sh/include sys/arch/sh/sh sys/arch/socppc/socppc sys/arch/sparc/include sys/arch/sparc/sparc sys/arch/sparc64/include sys/arch/sparc64/sparc64 sys/dev/ic sys/kern sys/net sys/net80211 sys/sys sys/ufs/ffs usr.sbin/pkg_add usr.sbin/vmctl == bin =============================================================== 01/07 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/bin ln ~ ln.c > Fix operator precedence error; OK guenther@ millert@ (tim@) == lib =============================================================== 02/07 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libc ~ include/cancel.h > Oops: the caching of TCB address in single-threaded processes on archs with > slow TCB_GET (alpha, arm, mips64, sh) was broken when I switched CPP > symbols. (guenther@) libedit ~ readline.c > Fix history_get(): > * Respect history_base. > * Bail out early for arguments that are too small. > * Select entry by readline offset, not by editline event number. > * Restore history cursor in case of failure. > This fixes the test_remove() regression test. > Based on a patch from Bastian Maerkisch <bmaerkisch at web dot de>. > Dmitrij Czarkoff pointed out a flaw in it that i fixed. > OK czarkoff@. (schwarze@) ~ editline.3 ~ editline.7 ~ readline.c > Fix next_history() and previous_history(): > * The meaning of "next" and "previous" is exchanged in readline(3) with > respect to editline(3); this part of the patch from Bastian Maerkisch. > * next_history() can move beyond the newest entry; issue pointed out > by Bastian Maerkisch, fix by me. > While here, make the documentation of ed-next-history, ed-prev-history, > H_NEXT, and H_PREV more precise. > OK czarkoff@. (schwarze@) - editline.c ~ Makefile ~ sys.h > Enable separate compilation while keeping internal interfaces hidden. > Simplifies the build system and prevents modules > from stomping on each other's static symbols. > Based on a hint from guenther@, > using feedback from kettenis@ and deraadt@. (schwarze@) == regress =========================================================== 03/07 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/regress lib ~ libpthread/Makefile + libpthread/dlopen/Makefile + libpthread/dlopen/dlopen.c > Test that various calls can be interrupted in a non-threaded process, > then dlopen() libpthread and do that again in a second thread, > and then verify that they're all correctly acting as cancellation points. > (guenther@) ~ libpthread/pthread_kill/pthread_kill.c > In a signal handler use snprintf()+local buffer instead of asprintf+free > (guenther@) ~ libedit/read/test_getcmd.c > adapt to recently changed internal interface of read_getcmd() (schwarze@) ~ libedit/Makefile > Enable the readline(3) regression test provided by Bastian Maerkisch, > all bugs tested so far have been fixed. (schwarze@) == sbin ============================================================== 04/07 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sbin init ~ init.c > Do not close the stdio file desciptors in init(8), but dup2(2) them > from /dev/null. The code is taken from daemon(3). Also move this > operation to the beginning. > OK millert@ deraadt@ (bluhm@) == share ============================================================= 05/07 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share man ~ man9/bpf_mtap.9 > the bpf_mtap functions take const struct mbuf *s now (dlg@) == sys =============================================================== 06/07 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/alpha/alpha ~ locore.s ~ machdep.c > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/alpha/include ~ signal.h > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/amd64/amd64 ~ locore.S > Fill Xen hypercall page with int3's like the hypervisor does. > Idea from deraadt@ and mlarkin@. (mikeb@) ~ locore.S ~ machdep.c > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/amd64/include ~ signal.h > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/arm/arm ~ sig_machdep.c ~ sigcode.S > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/arm/include ~ signal.h > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/hppa/hppa ~ locore.S ~ machdep.c > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/hppa/include ~ cpu.h > The hppa trapframe PC is marked (in the low two bits) to indicate a > userland addressspace address. Those bits should be masked to > callers of the PROC_PC() macro. > ok kettenis (deraadt@) ~ signal.h > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/hppa64/hppa64 ~ locore.S ~ machdep.c > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/hppa64/include ~ signal.h > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/i386/i386 ~ locore.s ~ machdep.c > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/i386/include ~ signal.h > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/m88k/m88k ~ sig_machdep.c ~ subr.S > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/macppc/macppc ~ locore.S ~ machdep.c > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/mips64/include ~ signal.h > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/mips64/mips64 ~ lcore_access.S ~ sendsig.c > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/powerpc/include ~ signal.h > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/sh/include ~ signal.h > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/sh/sh ~ locore_subr.S ~ sh_machdep.c > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/socppc/socppc ~ locore.S ~ machdep.c > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/sparc/include ~ signal.h > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/sparc/sparc ~ machdep.c > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/sparc64/include ~ signal.h > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) arch/sparc64/sparc64 ~ locore.s ~ machdep.c > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) dev/ic ~ qlareg.h ~ qla.c > make qla_iocb_seg structs 4 byte aligned and use htolem32 to set it. > shaves ~256 bytes off of qla_put_data_seg on sparc64 > ok kettenis@ jmatthew@ (dlg@) kern ~ exec_elf.c ~ init_main.c ~ kern_exec.c > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) ~ init_main.c ~ subr_log.c > If sendsyslog(2) is called with LOG_CONS before syslogd(8) has been > started and before init(8) has opened the console, the kernel could > crash as the console device has not been initialized. Open > /dev/console in the kernel before starting init(8) and keep it open. > This way sendsyslog(2) can be called early in the system. > OK beck@ deraadt@ (bluhm@) net ~ if.c > make bpf_mtap callers set the M_FILDROP flag if they care about it. > ok mpi@ (dlg@) ~ bpf.c ~ bpf.h > make the bpf tap functions take const struct mbuf * > this makes it more obvious that the bpf code should only read > packets, never modify them. > now possible because the paths that care about M_FILDROP set it > after calling bpf_mtap. > ok mpi@ visa@ deraadt@ (dlg@) net80211 ~ ieee80211_input.c > make bpf_mtap callers set the M_FILDROP flag if they care about it. > ok mpi@ (dlg@) sys ~ sysctl.h > rename an unused field in struct kinfo_file (it related to systrace..) > (deraadt@) ~ proc.h > SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie > inside the sigcontext. sigreturn(2) checks syscall entry was from the > exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie, > and clears it to prevent sigcontext reuse. > not yet tested on landisk, sparc, *88k, socppc. > ok kettenis (deraadt@) ~ systm.h > If sendsyslog(2) is called with LOG_CONS before syslogd(8) has been > started and before init(8) has opened the console, the kernel could > crash as the console device has not been initialized. Open > /dev/console in the kernel before starting init(8) and keep it open. > This way sendsyslog(2) can be called early in the system. > OK beck@ deraadt@ (bluhm@) ufs/ffs ~ ffs_vfsops.c > FFS2 does lazy inode initialization, so try harder to avoid using > random data on the disk as an inode. Thus avoiding crashes when > translating a bogus filehandle to a vnode. Yes, I'm looking at you, > NFS! > Adapted from a diff by Christos Zoulas via NetBSD, pointed out by > kurt@. > ok beck@ (krw@) == usr.sbin ========================================================== 07/07 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin pkg_add ~ OpenBSD/ProgressMeter/Term.pm > go deeper in Term::ReadKey, we don't need smart guesses. > okay afresh@/millert@ (espie@) vmctl ~ vmctl.c > typo in comment (mlarkin@) ~ main.c ~ vmctl.c > move some argument checking from vmmaction() to start_vm() > from a diff posted to tech@ by Fabien Siron, thanks. (mlarkin@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
