OpenBSD src changes summary for 2016-12-04 ==========================================
lib/libcrypto lib/libssl regress/lib sys/arch/octeon/dev sys/net usr.bin/ssh == lib =============================================================== 01/04 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libcrypto ~ man/UI_new.3 > Add Copyright and license. > Mention that UI_free(3) accepts NULL. > One minor clarification from OpenSSL. (schwarze@) ~ man/Makefile + man/X509V3_get_d2i.3 + man/X509_ALGOR_dup.3 + man/X509_CRL_get0_by_serial.3 + man/X509_EXTENSION_set_object.3 + man/X509_LOOKUP_hash_dir.3 > import five newish X509 pages from OpenSSL (schwarze@) libssl ~ man/SSL_library_init.3 > Add Copyright and license. > In the SYNOPSIS, show prototypes, not #defines. > Delete a note about ancient OpenSSL versions. (schwarze@) ~ man/SSL_read.3 > Add Copyright and license. > Merge documentation of SSL_peek(3) from OpenSSL. > Stop taking about SSLv2. > Many wording improvements, most from OpenSSL. (schwarze@) ~ man/SSL_load_client_CA_file.3 ~ man/SSL_rstate_string.3 ~ man/SSL_session_reused.3 ~ man/SSL_set_bio.3 ~ man/SSL_set_connect_state.3 ~ man/SSL_set_fd.3 ~ man/SSL_set_session.3 ~ man/SSL_set_shutdown.3 ~ man/SSL_set_verify_result.3 ~ man/SSL_state_string.3 ~ man/SSL_want.3 > Copyright and license (schwarze@) ~ man/SSL_new.3 ~ man/SSL_shutdown.3 > Add Copyright and license. > Stop talking about SSLv2 and SSLv3. (schwarze@) ~ man/SSL_pending.3 > Add Copyright and license. > Wording improvements and a bit of additional information from OpenSSL. > (schwarze@) ~ man/SSL_write.3 > Add Copyright and license. > Stop talking about SSLv2 and SSLv3. > Some minor tweaks. (schwarze@) ~ s3_srvr.c > Convert ssl3_send_server_hello() to CBB. > ok beck@ doug@ (jsing@) ~ s3_clnt.c > Cleanup some of ssl3_send_client_kex_rsa() - tmp_buf is really the > premaster secret, so name it accordingly. Also, remove bogus assignment > of master_key_length - the correct value is assigned when the master_key > is set. > ok beck@ doug@ (jsing@) ~ s23_clnt.c ~ s3_clnt.c ~ ssl_lib.c ~ ssl_locl.h > Convert ssl_cipher_list_to_bytes() to CBB, changing the function to return > the number of bytes written via an explicit *outlen argument and retaining > the return value to indicate success or failure. > ok doug@ (jsing@) == regress =========================================================== 02/04 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/regress lib ~ libssl/unit/cipher_list.c > Update regress test to handle change to ssl_cipher_list_to_bytes(). > (jsing@) == sys =============================================================== 03/04 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/octeon/dev ~ octeon_intr.c > Add handling for the second interrupt bank. > Needed by an upcoming driver. (visa@) net ~ route.c > Since net/route.c r1.337 interface priority factors into route priority > when RTF_CONNECTED routes are added to the routing table. > Specify a route priority calculated in the same way when deleting such > routes. > Makes route add and delete code paths consistent again. > ok mpi@ (stsp@) == usr.bin =========================================================== 04/04 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin ssh ~ sshd.c > Unlink PidFile on SIGHUP and always recreate it when the new sshd starts. > Regression tests (and possibly other things) depend on the pidfile being > recreated after SIGHUP, and unlinking it means it won't contain a stale > pid if sshd fails to restart. ok djm@ markus@ (dtucker@) ~ sshconnect2.c > Fix public key authentication when multiple authentication is in use. > Instead of deleting and re-preparing the entire keys list, just reset > the 'used' flags; the keys list is already in a good order (with already- > tried keys at the back) > Analysis and patch from Vincent Brillault on bz#2642; ok dtucker@ (djm@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
