OpenBSD src changes summary for 2016-10-04 ==========================================
Makefile distrib/sets etc/Makefile lib/libc regress/usr.sbin sbin/mount share/misc sys/arch/alpha/alpha sys/dev sys/dev/acpi sys/dev/pv sys/dev/usb sys/net sys/netinet sys/netinet6 usr.bin/signify usr.bin/ssh usr.sbin/acme-client usr.sbin/dhcpd usr.sbin/pkg_add usr.sbin/smtpd usr.sbin/syslogd usr.sbin/vmctl usr.sbin/vmd == Makefile ========================================================== 01/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/Makefile Makefile > stop supporting SUDO builds. Something better is coming, so let's > align everyone who is using SUDO builds towards the new strategy. > ok natano (deraadt@) == distrib =========================================================== 02/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib sets ~ lists/base/mi > remove signify.pm and x509.pm (tb@) == etc =============================================================== 03/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/etc Makefile ~ Makefile > stop supporting SUDO builds. Something better is coming, so let's > align everyone who is using SUDO builds towards the new strategy. > ok natano (deraadt@) == lib =============================================================== 04/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libc ~ arch/arm/sys/cerror.S > Use the userspace-visible thread register directly in __cerror instead > of indirecting through __errno(). > Register naming tweaks and clang testing by patrick@ and jsg@ > ok kettenis@ (guenther@) == regress =========================================================== 05/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/regress usr.sbin + syslogd/args-zulu.pl > Add test for syslogd(8) -Z ISO timestamp format. (bluhm@) == sbin ============================================================== 06/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sbin mount ~ mount.8 > Improve description of the noperm option. > ok jmc (on an earlier version of the diff), tb (who found a typo) and > deraadt (natano@) == share ============================================================= 07/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share misc ~ airport > Specify update rules, and add my home airport to the list > OK deraadt@ (fcambus@) == sys =============================================================== 08/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/alpha/alpha ~ vm_machdep.c > The new thread's userspace v0, a3, and a4 registers are updated in > child_return() like on other archs, so cpu_fork() doesn't need to > touch them. > ok kettenis@ deraadt@ (guenther@) dev ~ audio.c > At acpithinkpad attach time determine the value of the mute, and defer > telling the audio subsystem about this later on in boot. (Mute state > is maintained by the BIOS over a suspend, hibernate, reboot, etc -- this > may be last missing piece of the puzzle we tore our hair out in Brisbane) > diagnosis and code by Anton Lindqvist, ok ratchov (deraadt@) dev/acpi ~ acpithinkpad.c > At acpithinkpad attach time determine the value of the mute, and defer > telling the audio subsystem about this later on in boot. (Mute state > is maintained by the BIOS over a suspend, hibernate, reboot, etc -- this > may be last missing piece of the puzzle we tore our hair out in Brisbane) > diagnosis and code by Anton Lindqvist, ok ratchov (deraadt@) dev/pv ~ hyperv.c > Check the actual pointer returned by km_alloc(9) instead of the array. The > latter will always be non-NULL, and therefore the test will always be > false. > Caught by clang. > ok jca@, mikeb@, jsg@ (kettenis@) ~ vmt.c > Use "%s" in vm_rpc_send_rpci_tx() call. Avoids a "format string is not a > string literal" warning from clang. > ok jca@ (kettenis@) dev/usb ~ usbdi.c > Let the stack perform DMA synchronization instead of doing it (partially) > in HC drivers. > Only ehci(4) was performing pre & post synchronization completly. Now > pre-synchronization is done in usbd_transfer() and post-synchronization > in usbd_transfer_complete(). This will allow us to remove the partial > synchronization primitives from the pipe handlers. > This is similar to what FreeBSD did in r158998, r164519 and r176203. > From Marius Strobl. > ok kettenis@ (mpi@) net ~ if_pflow.c ~ if_pfsync.c > Convert timeouts that need a process context to timeout_set_proc(9). > The current reason is that rtalloc_mpath(9) inside ip_output() might > end up inserting a RTF_CLONED route and that require a write lock. > ok kettenis@, bluhm@ (mpi@) ~ route.c > Correct the flag checks inside rt_ifa_addlocal(9) and rt_ifa_dellocal(9). > There's no need to insert an RTF_LOCAL route if it is already there, not > if a route with the same destination exist. > This fixes a KASSERT() triggered by adding an alias for an address already > present in the ARP cache as reported by weerd@ and Peter J. Philipp. > This should also fix a KASSERT() triggered by a NDP change reported by > Sebastien Marie. > ok bluhm@ (mpi@) ~ switchofp.c > Don't use padding for ofp_action_header when building the table property > response thus respecting what the OpenFlow 1.3.5 spec says. > ok reyk@ (rzalamena@) netinet ~ ip_carp.c ~ tcp_timer.h ~ tcp_var.h > Convert timeouts that need a process context to timeout_set_proc(9). > The current reason is that rtalloc_mpath(9) inside ip_output() might > end up inserting a RTF_CLONED route and that require a write lock. > ok kettenis@, bluhm@ (mpi@) ~ tcp_input.c > One more timeout_set_proc(9) conversion. > Found by Chris Jackman, thanks! (mpi@) netinet6 ~ in6.c > Correct the flag checks inside rt_ifa_addlocal(9) and rt_ifa_dellocal(9). > There's no need to insert an RTF_LOCAL route if it is already there, not > if a route with the same destination exist. > This fixes a KASSERT() triggered by adding an alias for an address already > present in the ARP cache as reported by weerd@ and Peter J. Philipp. > This should also fix a KASSERT() triggered by a NDP change reported by > Sebastien Marie. > ok bluhm@ (mpi@) == usr.bin =========================================================== 09/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin signify ~ zsig.c > typo (espie@) ssh ~ sshkey.c > add a comment about implicitly-expected checks to > sshkey_ec_validate_public() (djm@) == usr.sbin ========================================================== 10/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin acme-client ~ http.c > tls_close() can return TLS_WANT_POLLIN/TLS_WANT_POLLOUT - handle this > case correctly. > ok florian@ (jsing@) ~ netproc.c > s/letsencrypt/ACME/ (jsing@) ~ http.c ~ http.h ~ netproc.c > Avoid a potential MITM - calling tls_config_insecure_noverify() is a bad > idea, so stop doing that. Instead, use a single tls_config, set it up and > configure the CA file to use while we still have rpath, then drop rpath. > This also avoids creating a new tls_config for each and every HTTPS > connection, which is unnecessary. > ok benno@ florian@ (jsing@) dhcpd ~ dhcp.c ~ options.c ~ sync.c ~ sync.h > Zap stray whitespace. (krw@) pkg_add ~ OpenBSD/PackageLocation.pm ~ OpenBSD/PkgInfo.pm > remove may_check_data logic, since signatures are now handled externally > (espie@) ~ OpenBSD/PackingList.pm > check_signature is gone (espie@) - OpenBSD/signify.pm - OpenBSD/x509.pm ~ Makefile > no longer needed (espie@) ~ OpenBSD/PackageRepository.pm > slightly smarter parsing of error log (espie@) smtpd ~ smtp_session.c TAGGED OPENBSD_6_0 > OpenBSD 6.0 errata 10, Oct 3, 2016 > A bug in the smtp session logic can lead to a server crash. > Found and reported by Mickael Torres. (jsg@) syslogd ~ syslogd.8 ~ syslogd.c > When doing global remote logging and archiving, it is inconvenient > that the syslog timestamp does not contain the year and the timezone, > but has local time with daylight saving time. > Now with -Z syslogd(8) switches to RFC 5424 ISO format for timestamps. > Then all logging is also done in UTC. Default is to keep local > time and BSD syslog RFC 3164 format. > BIG BIG BIG OK for the feature ajacoutot@; OK deraadt@ (bluhm@) vmctl ~ vmctl.8 > Add an example to find the generated tap(4) interface description. (reyk@) vmd ~ Makefile ~ config.c ~ proc.c ~ proc.h ~ vmd.c ~ vmd.h ~ vmm.c + priv.c > Add a new "priv" process that is responsible for ioctls and restricted > operations that aren't allowed under pledge. This is a companion to > the "vmd" process that runs as root but with pledge. > With the "priv" process, each new tap(4) interface now gets a > description to indicate the vm, eg. "vm1-if0-myvm". For network > configuration will be done by vmd/priv later. > OK mlarkin@ (reyk@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
