OpenBSD src changes summary for 2016-11-21 ==========================================
distrib/sets lib/libcrypto lib/libssl regress/sys share/man sys/arch/armv7/sunxi sys/arch/mips64/mips64 sys/dev/pci sys/dev/usb sys/kern sys/net sys/netinet sys/netinet6 sys/sys usr.sbin/smtpd usr.sbin/switchd usr.sbin/syslogd usr.sbin/syspatch == distrib =========================================================== 01/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib sets ~ lists/comp/mi > sync (sthen@) == lib =============================================================== 02/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libcrypto ~ man/BN_generate_prime.3 ~ man/BN_rand.3 ~ man/DES_set_key.3 ~ man/DH_generate_key.3 ~ man/DH_generate_parameters.3 ~ man/DSA_do_sign.3 ~ man/DSA_generate_key.3 ~ man/DSA_generate_parameters.3 ~ man/DSA_sign.3 ~ man/EVP_BytesToKey.3 ~ man/EVP_OpenInit.3 ~ man/EVP_SealInit.3 ~ man/PKCS5_PBKDF2_HMAC.3 ~ man/crypto.3 > replace cross-references to the rand(3) manual that no longer exists > (schwarze@) ~ man/BIO_s_bio.3 ~ man/BUF_MEM_new.3 ~ man/lh_stats.3 > fix references to bio(3) to point to BIO(3) instead (schwarze@) ~ man/Makefile + man/BN_get0_nist_prime_521.3 > import DH_get_1024_160(3) from OpenSSL, > but do not include the functions we don't have (schwarze@) ~ man/DH_generate_key.3 > Copyright and license (schwarze@) ~ man/DH_generate_parameters.3 > Add Copyright and license. > Improve description of DH_check(3) results using information from > OpenSSL manual and a look at the source code, leaving out the bits > we don't have. (schwarze@) ~ man/DH_new.3 > Add Copyright and license. > Mention that DH_free(3) accepts NULL. (schwarze@) ~ man/DH_set_method.3 > Add Copyright and license. > Do not talk about DH_set_default_openssl_method() and > DH_get_default_openssl_method(). They were short-lived > functions that only existed in OpenSSL 0.9.6. > Remove inclusion of a header that is not needed (from OpenSSL). > Remove one ugly custom section header. (schwarze@) ~ man/DH_size.3 > Add Copyright and license, and minor improvements from OpenSSL: > Mention that DH_size(3) does not accept NULL. > Add two cross references. (schwarze@) ~ man/DSA_set_method.3 > Add Copyright and license. > Do not talk about DSA_set_default_openssl_method(3) and > DSA_get_default_openssl_method(3). They were short-lived > functions that only existed in OpenSSL 0.9.6. > Remove one ugly custom section header. (schwarze@) ~ man/DSA_SIG_new.3 ~ man/DSA_new.3 > Add Copyright and license. > Mention that DSA_SIG_free(3) and DSA_free(3) accept NULL. (schwarze@) ~ man/DSA_do_sign.3 ~ man/DSA_dup_DH.3 ~ man/DSA_generate_key.3 ~ man/DSA_generate_parameters.3 ~ man/DSA_sign.3 ~ man/DSA_size.3 > Copyright and license (schwarze@) ~ man/ECDSA_SIG_new.3 > Add Copyright and license. > Merge some additional information from OpenSSL. (schwarze@) ~ man/BN_get0_nist_prime_521.3 > tweak previous; (jmc@) ~ man/EC_GROUP_copy.3 ~ man/EVP_AEAD_CTX_init.3 ~ man/EVP_BytesToKey.3 ~ man/EVP_DigestInit.3 ~ man/EVP_EncryptInit.3 ~ man/EVP_OpenInit.3 ~ man/EVP_PKEY_CTX_ctrl.3 ~ man/EVP_PKEY_CTX_new.3 ~ man/EVP_PKEY_cmp.3 ~ man/EVP_PKEY_decrypt.3 ~ man/EVP_PKEY_derive.3 ~ man/EVP_PKEY_encrypt.3 ~ man/EVP_PKEY_keygen.3 ~ man/EVP_PKEY_print_private.3 ~ man/EVP_PKEY_sign.3 ~ man/EVP_PKEY_verify.3 ~ man/EVP_PKEY_verify_recover.3 ~ man/EVP_SealInit.3 ~ man/EVP_SignInit.3 ~ man/EVP_VerifyInit.3 ~ man/bn_dump.3 ~ man/evp.3 > various cleanup; (jmc@) libssl ~ man/Makefile + man/DTLSv1_listen.3 > Import the DTLSv1_listen(3) manual from OpenSSL, > excluding interface changes that don't apply to LibreSSL, > except that i left the confusing discussion of RETURN VALUES > completely unchanged, to warn users that this is a mess: > OpenSSL first published this interface, then later changed > its syntax and semantics in multiple ways. (schwarze@) == regress =========================================================== 03/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/regress sys + netinet6/frag6/frag6_mf0atomic.py + netinet6/frag6/frag6_mf0long.py + netinet6/frag6/frag6_mf0middle.py + netinet6/frag6/frag6_mf0short.py + netinet6/frag6/frag6_mf1end.py > Test that IPv6 framents with invalid length or more-fragment bit > drop the whole fragment cache. (bluhm@) ~ net/pf_state/Makefile ~ net/pf_state/challenge_ack.py > Print better error message if test fails. (bluhm@) == share ============================================================= 04/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share man ~ man9/srpl_rc_init.9 ~ man9/SRPL_EMPTY_LOCKED.9 > tweak the pages based on feedback from jmc@ > they could do with some examples too. (dlg@) ~ man9/SRPL_EMPTY_LOCKED.9 ~ man9/srpl_rc_init.9 > jmc@ pointed out i forgot to fix the missing SRPL_LEAVE in the synopsis. > sprinkle some .Ft on the things that act like functions while here. (dlg@) == sys =============================================================== 05/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/armv7/sunxi ~ sxiccmu.c > Add support for "allwinner,sun9i-a80-usb-mod-clk" and > "allwinner,sun9i-a80-usb-phy-clk" compatile clocks. > Enable parent clock of clock gates. (kettenis@) arch/mips64/mips64 ~ pmap.c > Enabling Loongson 3A bits turned on a code path that uses a MIPS64r2 > register on Loongson 2. This causes a boot failure on LS2 because > the CPU does not implement the register. Disable the code on LS2 > similarly to mips64 pte.h. > Yeelong boot hang reported and fix tested by matthieu@ (visa@) dev/pci ~ if_ix.c > Turn on the PHY power during attach > After a cold boot the PHY power might be disabled by another OS: > https://svnweb.freebsd.org/base?view=revision&revision=295093 (mikeb@) ~ if_ix.c > Correct the test for requiring a 64 bit mem bar. > ok mikeb@ who tested on 82599, x540 and x550. (jsg@) ~ ixgbe.c > Correctly set the default value for the FCRTH > X540 datasheet specifies that Flow Control Receive Threshold High > should be set to the Rx Buffer Size minus the delay value which is > different for different modes of operation, however the minimum is > 0x6000 (24576). > Mirrors the bc1fc64fd2d9093496e5b04c6d94d26bfa629c9c commit to the > Linux source code, but picked up from the 280182 commit to FreeBSD. > (mikeb@) ~ if_ix.c > Factor out RSS initialization into a separate function > No functional change. (mikeb@) ~ ixgbe.c > Fixup a PCIe transaction completion timeout issue > Mirrors the change 71bde60191a9fa44d33b582c5e3713ffe99b0fef in Linux; > taken as a part of the 280182 commit to FreeBSD. (mikeb@) ~ if_ix.c ~ if_ix.h > Add ability to change media type > Tested with a X540 interconnected with a X550 via a CAT6 twisted > pair cable, but is expected to work on multi-speed fiber modules > as well to select between 10GbaseLR and 1000baseLX or 10GbaseSR > and 1000baseSX, etc. > This is largely required because X550 doesn't provide support for > auto-negotiation and requires manual configuration. > Obtained from FreeBSD. (mikeb@) dev/usb ~ if_umb.c ~ if_umb.h ~ mbim.h > Some MBIM devices need a FCC Authentication before they're willing to > turn on the radio. This is done by encapsulating QMI requests inside > a MBIM message. > Based on prio work by sthen@, tested by Bryan Vyhmeister. > ok sthen@ (gerhard@) kern ~ subr_pool.c > let pool page allocators advertise what sizes they can provide. > to keep things concise i let the multi page allocators provide > multiple sizes of pages, but this feature was implicit inside > pool_init and only usable if the caller of pool_init did not specify > a page allocator. > callers of pool_init can now suplly a page allocator that provides > multiple page sizes. pool_init will try to fit 8 items onto a page > still, but will scale its page size down until it fits into what > the allocator provides. > supported page sizes are specified as a bit field in the pa_pagesz > member of a pool_allocator. setting the low bit in that word indicates > that the pages can be aligned to their size. (dlg@) ~ sys_socket.c ~ uipc_socket.c ~ uipc_syscalls.c > Enforce that pr_usrreq functions are called at IPL_SOFTNET. > This will allow us to keep locking simple as soon as we trade > splsoftnet() for a rwlock. > ok bluhm@, claudio@ (mpi@) ~ sys_socket.c > Kill rtioctl() stub, returning EOPNOTSUPP since tree import. > ok jsg@ (mpi@) net ~ if_bridge.c > bridge(4) does not distinguish between routing/forwarding ports, so > make "addlocal" an alias to "add" on bridge. addlocal is handled > differently on switch(4). > OK yasuoka@ (reyk@) ~ switchofp.c > Include the OFP header of the message that caused the error on error > messages. > ok reyk@ (rzalamena@) ~ if.c ~ raw_usrreq.c ~ rtsock.c > Enforce that pr_usrreq functions are called at IPL_SOFTNET. > This will allow us to keep locking simple as soon as we trade > splsoftnet() for a rwlock. > ok bluhm@, claudio@ (mpi@) ~ bpf.c > Rename bpf_reset_d() to match bpf_{attach,reset}d(). (mpi@) ~ bpf.c > Make sure bpf_wakeup() is called at most once when matching conditions > are fulfilled in bpf_catchpacket(). (mpi@) ~ route.c ~ route.h > Kill rtioctl() stub, returning EOPNOTSUPP since tree import. > ok jsg@ (mpi@) ~ pf.c > In pf_route() and pf_route6() the !r->rt case was only used by > af-to. pf_route6() called ip6_output() to do the work while > pf_route() had some custom implementation for that. It is simpler > to call ip_output() or ip6_output() from pf_test() directly. > OK procter@ sashan@ (bluhm@) ~ pf_norm.c > Follow RFC 5722 more strictly when handling overlapping fragments > in pf. Drop the whole fragment state if IPv6 fragments appear which > have invalid length or fragment-offset or more-fragment-bit. In > IPv4 they are considered invalid and just dropped like before. > Found by Antonios Atlasis; OK sashan@ sthen@ (bluhm@) ~ switchofp.c > Simplify pad calculation for flow match on swofp_put_flow(). > ok reyk@ (rzalamena@) netinet ~ ip_divert.c ~ raw_ip.c ~ tcp_usrreq.c ~ udp_usrreq.c > Enforce that pr_usrreq functions are called at IPL_SOFTNET. > This will allow us to keep locking simple as soon as we trade > splsoftnet() for a rwlock. > ok bluhm@, claudio@ (mpi@) netinet6 ~ ip6_divert.c ~ raw_ip6.c > Enforce that pr_usrreq functions are called at IPL_SOFTNET. > This will allow us to keep locking simple as soon as we trade > splsoftnet() for a rwlock. > ok bluhm@, claudio@ (mpi@) ~ nd6_rtr.c > Assert that in6_ifadd() is always called at IPL_SOFTNET. > While here us __func__ in debug strings to reduce noise when grepping. > (mpi@) ~ nd6.h ~ nd6_rtr.c > Assert that prelist_update() is always called at IPL_SOFTNET. > While here use __func__ in debug strings to reduce noise when grepping. > (mpi@) ~ nd6_rtr.c > Assert that defrtrlist_update() is always called at IPL_SOFTNET. (mpi@) sys ~ pool.h > let pool page allocators advertise what sizes they can provide. > to keep things concise i let the multi page allocators provide > multiple sizes of pages, but this feature was implicit inside > pool_init and only usable if the caller of pool_init did not specify > a page allocator. > callers of pool_init can now suplly a page allocator that provides > multiple page sizes. pool_init will try to fit 8 items onto a page > still, but will scale its page size down until it fits into what > the allocator provides. > supported page sizes are specified as a bit field in the pa_pagesz > member of a pool_allocator. setting the low bit in that word indicates > that the pages can be aligned to their size. (dlg@) == usr.sbin ========================================================== 06/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin smtpd ~ bounce.c ~ filter.c ~ mda.c ~ mta_session.c ~ smtp_session.c > replace calls to iobuf_*() functions with the corresponding io_*() > wrappers. > ok sunil@ gilles@ (eric@) switchd ~ ofp13.c > Parse flow-status instructions in multipart replies, so we can see what > instructions are used by the flow. (rzalamena@) ~ ofp13.c > Implement better table features validation. With this we get free switchctl > display of table features. > ok reyk@ (rzalamena@) ~ ofp10.c ~ ofp13.c > Fix jumbo regress test for ofp10.c and use htonl() with > OFP_PKTOUT_NO_BUFFER > for consistency. > ok reyk@ (rzalamena@) ~ ofp13.c > Add truncation validation for packet-out and reuse the action validation > function instead of manually rolling the code again. > ok reyk@ (rzalamena@) ~ ofp13.c > Do more strict checks of OXM by looking at mask restrictions and add > missing OXM type (IP_PROTO). > ok reyk@ (rzalamena@) syslogd ~ syslogd.c > Check return value of tls_config_set_protocols(3) and log if it fails > OK bluhm@ (mestre@) syspatch ~ syspatch.sh > Tweak comment. Reverse cmp logic while here. (ajacoutot@) ~ syspatch.sh > Use the same basename for the rollback tarball as the original patch.sig. > (ajacoutot@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
