OpenBSD src changes summary for 2017-01-05 ==========================================
distrib/sets etc/examples/pkg.conf lib/libcrypto lib/librthread lib/libssl libexec/ld.so sbin/iked sbin/ipsecctl sbin/pfctl share/man sys/arch/amd64/stand/libsa sys/arch/arm/arm sys/arch/arm/include sys/arch/arm64/dev sys/arch/armv7/include sys/dev/pv sys/netinet usr.bin/mandoc usr.bin/tmux usr.sbin/acme-client usr.sbin/bgpd usr.sbin/dvmrpd usr.sbin/eigrpd usr.sbin/hostapd usr.sbin/httpd usr.sbin/ifstated usr.sbin/iscsictl usr.sbin/ldapd usr.sbin/ldpd usr.sbin/ospf6d usr.sbin/ospfd usr.sbin/relayd usr.sbin/ripd usr.sbin/smtpd usr.sbin/snmpd usr.sbin/switchd usr.sbin/vmd usr.sbin/ypldap == distrib =========================================================== 01/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib sets ~ lists/comp/mi > sync (deraadt@) == etc =============================================================== 02/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/etc examples/pkg.conf ~ examples/pkg.conf > sync (sthen@) == lib =============================================================== 03/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libcrypto ~ man/ASN1_STRING_new.3 > Complete rewrite, documenting 16 additional constructor/destructor pairs. > While OpenSSL does not document them, they are public in <openssl/asn1.h>, > and OpenSSL does document the related decoders and encoders. > It makes no sense to me to document object methods without documenting > the public constructors as well. > While here: > Bugfix: The type assigned by ASN1_STRING_new() was wrong. > Remove implementation details. > Add small amounts of useful auxiliary information. (schwarze@) ~ man/ASN1_STRING_new.3 ~ man/d2i_ASN1_OBJECT.3 > minor tweaks; (jmc@) ~ ecdsa/ecs_ossl.c > Avoid a side-channel cache-timing attack that can leak the ECDSA private > keys when signing. This is due to BN_mod_inverse() being used without the > constant time flag being set. > This issue was reported by Cesar Pereida Garcia and Billy Brumley > (Tampere University of Technology). The fix was developed by Cesar Pereida > Garcia. (jsing@) ~ man/ASN1_STRING_new.3 ~ man/Makefile + man/d2i_ASN1_OCTET_STRING.3 > Write new d2i_ASN1_OCTET_STRING(3) manual page from scratch. > All 36 functions listed in <openssl/asn1.h> > and in OpenSSL doc/man3/d2i_X509.pod, > six of them with wrong prototypes. (schwarze@) ~ man/d2i_ASN1_OCTET_STRING.3 > Also document the weird d2i_ASN1_UINTEGER(3), listed in <openssl/asn1.h> > and in OpenSSL doc/man3/d2i_X509.pod (with wrong prototype). (schwarze@) librthread ~ arch/arm/_atomic_lock.c > Now that all non-ARMv7 platforms are gone, tedu the legacy atomic > locking code. > ok kettenis@ (patrick@) libssl ~ src/crypto/ecdsa/ecs_ossl.c TAGGED OPENBSD_5_9 > MFC: Avoid a side-channel cache-timing attack that can leak the ECDSA > private keys when signing. This is due to BN_mod_inverse() being used > without the constant time flag being set. > This issue was reported by Cesar Pereida Garcia and Billy Brumley > (Tampere University of Technology). The fix was developed by Cesar Pereida > Garcia. (jsing@) ~ src/crypto/ecdsa/ecs_ossl.c TAGGED OPENBSD_6_0 > MFC: Avoid a side-channel cache-timing attack that can leak the ECDSA > private keys when signing. This is due to BN_mod_inverse() being used > without the constant time flag being set. > This issue was reported by Cesar Pereida Garcia and Billy Brumley > (Tampere University of Technology). The fix was developed by Cesar Pereida > Garcia. (jsing@) == libexec =========================================================== 04/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/libexec ld.so ~ Makefile > Build with -fno-builtin to keep clang from optimizing the _dl_memset() > and _dl_bcopy() functions into calls to memset() and memcpy(). > ok kettenis@ (naddy@) == sbin ============================================================== 05/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sbin iked ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ipsecctl ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) pfctl ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) == share ============================================================= 06/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share man ~ man5/port-modules.5 > Document cargo module. > Joint work with semarie, rewording from sthen@, tweaks from jmc@. > ok sthen@, jmc@, semarie (cargo maintainer) (danj@) == sys =============================================================== 07/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/amd64/stand/libsa ~ softraid_amd64.c > Fix boot(8) crashing on some amd64 machines when booting from softraid > crypto. > Allocate a 4k temp buffer on the heap instead of the stack. > Problem was introduced in arch/amd64/stand/libsa/softraid_amd64.c r1.3. > Reported by Andreas Bartelt on bugs@ > ok krw@ kettenis@ yasuoka@ (stsp@) arch/arm/arm ~ cpu.c > Complete idle PCB allocation for secondary processors so that it makes > sense and builds as part of an MP kernel. > ok kettenis@ mpi@ (patrick@) arch/arm/include ~ cpu.h > Complete idle PCB allocation for secondary processors so that it makes > sense and builds as part of an MP kernel. > ok kettenis@ mpi@ (patrick@) arch/arm64/dev ~ agtimer.c > Pass value as input instead of output register, otherwise we write > garbage into the control register. While there remove positional > argument leftover from the 32-bit version. (patrick@) arch/armv7/include ~ spinlock.h > Now that all non-ARMv7 platforms are gone, tedu the legacy atomic > locking code. > ok kettenis@ (patrick@) dev/pv ~ hyperv.c > Don't let producer index become equal with the consumer when writing > A nod to the re.c commit by dlg@, perhaps pure paranoia, but works > nevertheless. While here replace a more expensive modulo operation > with a subtraction. (mikeb@) ~ hyperv.c ~ hypervreg.h > Microsoft has allocated us a SubID that we can use to identify OpenBSD > (mikeb@) ~ if_hvn.c ~ if_xnf.c > Checking whether mbuf list is empty is done by the if_input now (mikeb@) netinet ~ ip_mroute.c > Remove some unnecessary code abstractions and while here remove a > splsoftnet. > ok mikeb@ (rzalamena@) == usr.bin =========================================================== 08/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin mandoc ~ man.1 > sort options list; (jmc@) tmux ~ cmd-queue.c ~ key-string.c ~ screen-write.c ~ status.c ~ tmux.h ~ window-copy.c > Highlight all occurrences of search string after searching in copy mode. > (nicm@) == usr.sbin ========================================================== 09/09 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin acme-client ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) bgpd ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) dvmrpd ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) eigrpd ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) hostapd ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) httpd ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) ifstated ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) iscsictl ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) ldapd ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) ldpd ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) ospf6d ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) ospfd ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) relayd ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) ripd ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) smtpd ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) snmpd ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) switchd ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) vmd ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) ypldap ~ parse.y > Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ > with more modern TAILQ_FOREACH(). This what symget() was already > doing. > Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). > No intentional functional change. > ok bluhm@ otto@ (krw@) ~ parse.y > Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with more > modern TAILQ_FOREACH_SAFE(). > No intentional functional change. > ok millert@ bluhm@ gilles@ (krw@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
