OpenBSD src changes summary for 2016-05-17 ==========================================
lib/libc libexec/spamd share/man sys/arch/armv7/conf sys/arch/armv7/imx sys/arch/armv7/stand/efiboot sys/dev sys/dev/usb sys/kern sys/netinet6 sys/sys usr.bin/skeyinit usr.sbin/httpd usr.sbin/pppd == lib =============================================================== 01/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libc ~ regex/engine.c > Fix a one-byte buffer underflow (read access only). > This change touches code that only runs when REG_BASIC is given and > the regular expression is anchored with ^ _and_ uses backreferences. > The segfault could only be triggered when the ^ anchor was inside > a leading () subexpression quantified with *. > OK martijn@ > Patch also proofread by Pedro Giffuni <pfg at FreeBSD dot org>. (schwarze@) == libexec =========================================================== 02/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/libexec spamd ~ spamd.c > tyop (jca@) == share ============================================================= 03/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share man ~ man5/bsd.port.mk.5 > Deprecate PLIST_DB. Prefer PLIST_REPOSITORY (same semantics, except that > ARCH gets appended automatically) (espie@) == sys =============================================================== 04/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/armv7/conf ~ GENERIC > Enable the pcf8523 RTC on Hummingboard and CuBox-i. > ok patrick@ (kettenis@) arch/armv7/imx ~ imx.c ~ imxiic.c > Enable the pcf8523 RTC on Hummingboard and CuBox-i. > ok patrick@ (kettenis@) arch/armv7/stand/efiboot ~ Makefile ~ efiboot.c ~ efiboot.h ~ exec.c + fdt.c + fdt.h > Add support for passing an FDT. The bootloader will update the "bootargs" > property of the "/chosen" node to pass arguments to the kernel. (kettenis@) ~ Makefile ~ efiboot.c ~ efiboot.h ~ exec.c ~ fdt.c ~ fdt.h > Enable -Wall -Werror. Fix warnings uncovered by this. > Set board IDs for i.IMX6 boards based on the "compatible" property of the > root node for now to ease the transition to full FDT support in the > kernel. (kettenis@) ~ exec.c ~ fdt.c ~ libsa.h ~ self_reloc.c > Fix a few more warnings such that this compiles again. (kettenis@) dev ~ softraid_crypto.c > remove VOP_CLOSE and vput that will be handled in the epilogue. > part of a diff by bytevolcano. ok jung (tedu@) ~ rnd.c ~ rndvar.h > Change the random event buffer from a queue to an endless ring. This way > we don't drop any events when the queue is full. They are instead mixed > into previous events. > The mixing function selected is addition instead of xor to reduce the > possibility that new values effectively erase existing ones. > Convert some types to u_int to ensure defined overflow. > ok deraadt djm (tedu@) ~ cons.c ~ cons.h > Allow sendsyslog(2) with LOG_CONS even when /dev/console has not > been opened during init(8). Only log with cnwrite() if cn_devvp > exists, otherwise use cnputc() as fallback. While there move extern > declarations to dev/cons.h. > input and OK deraadt@ (bluhm@) dev/usb ~ uvideo.c > Plug some gaping holes in the v4l2 ioctl interfaces that would leak kernel > memory to a local user. Found by Patrick Keshisian. Fix a potential > integer overflow issue in related code while I'm there. > ok mglocker@, deraadt@ (kettenis@) ~ uvideo.c TAGGED OPENBSD_5_9 > Plug some gaping holes in the v4l2 ioctl interfaces that would leak kernel > memory to a local user. Found by Patrick Keshisian. Fix a potential > integer overflow issue in related code while I'm there. > ok mglocker@, deraadt@ (kettenis@) ~ uvideo.c TAGGED OPENBSD_5_8 > Plug some gaping holes in the v4l2 ioctl interfaces that would leak kernel > memory to a local user. Found by Patrick Keshisian. Fix a potential > integer overflow issue in related code while I'm there. > ok mglocker@, deraadt@ (kettenis@) kern ~ syscalls.master > Document NOLOCK, from Michal Mazurek. (mpi@) ~ init_main.c ~ subr_log.c > Backout the previous fix for the sendsyslog(2) with LOG_CONS solution. > Permanently holding /dev/console open in the kernel works only until > init(8) calls revoke(2). After that the console device vnode cannot > be used anymore. It still resulted in a hanging init(8) if it tried > to syslog(3) something. With the backout also dmesg -s works again. > (bluhm@) ~ subr_log.c ~ subr_prf.c ~ tty.c > Allow sendsyslog(2) with LOG_CONS even when /dev/console has not > been opened during init(8). Only log with cnwrite() if cn_devvp > exists, otherwise use cnputc() as fallback. While there move extern > declarations to dev/cons.h. > input and OK deraadt@ (bluhm@) netinet6 ~ nd6.c > Completely skip link-layer address resolution and NUD on gif(4). > Tested by naddy@ (mpi@) sys ~ systm.h > Backout the previous fix for the sendsyslog(2) with LOG_CONS solution. > Permanently holding /dev/console open in the kernel works only until > init(8) calls revoke(2). After that the console device vnode cannot > be used anymore. It still resulted in a hanging init(8) if it tried > to syslog(3) something. With the backout also dmesg -s works again. > (bluhm@) == usr.bin =========================================================== 05/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin skeyinit ~ skeyinit.c > Fix "skeyinit username" run as root. Also reduce the pledge > promise when run as root since we don't need proc or exec as > root. OK tb@, earlier version OK deraadt@ (millert@) ~ skeyinit.c > Move the code block that builds up a default seed further down in order > to reduce the noise in the next commit. While there, fix the indent > level of a bit introduced in the previous commit. > ok millert@ (tb@) ~ skeyinit.c > Refactor the handling of pledge and the optional user string: The three > way pledge introduced by millert@ in -r1.70 is now a two way pledge, one > for non-root and one for root. This also ensures that root drops the > id promise in all cases early on. > This disentangling of the bits for root and non-root simplifies the code > paths in all cases. > ok millert@ (tb@) == usr.sbin ========================================================== 06/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin httpd ~ server_file.c > Repair some file descriptor leaks. > ok beck krw millert (deraadt@) pppd ~ auth.c > remove pam and shadow code that's not used. ok deraadt jca (tedu@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
