OpenBSD src changes summary for 2017-03-03 ==========================================
lib/libcrypto regress/lib regress/sys sys/arch/amd64/amd64 sys/arch/amd64/stand/efiboot sys/arch/arm/include sys/arch/arm64/conf sys/arch/armv7/conf sys/arch/i386/i386 sys/kern sys/net sys/netinet sys/netinet6 sys/nfs sys/sys usr.bin/mandoc usr.bin/ssh usr.sbin/ldapd usr.sbin/ldpd usr.sbin/pkg_add usr.sbin/syslogd usr.sbin/vmctl == lib =============================================================== 01/05 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libcrypto ~ hmac/hmac.c > Ensure MD and key initialized before processing HMAC > Ensure both MD and key have been initialized before processing HMAC. > Releasing HMAC_CTX in error path of HMAC(). > In regress test, added test 4,5,6 and cleaned up the code. > ok jsing@ (inoguchi@) == regress =========================================================== 02/05 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/regress lib ~ libcrypto/hmac/hmactest.c > Ensure MD and key initialized before processing HMAC > Ensure both MD and key have been initialized before processing HMAC. > Releasing HMAC_CTX in error path of HMAC(). > In regress test, added test 4,5,6 and cleaned up the code. > ok jsing@ (inoguchi@) sys - net/pflow/Net/Flow.pm ~ net/pflow/Makefile ~ net/pflow/flow.pl ~ net/pflow/template.pl > Do not use an obsolete copy of a Perl module from CPAN for testing. > Require that the p5-Net-Flow package is installed and use it. (bluhm@) == sys =============================================================== 03/05 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/amd64/amd64 ~ db_interface.c ~ trap.c > Whan an amd64 machine got an NMI, the current process in user land > was killed with SIGBUS. Better drop to ddb regardless wether a > user process is currently scheduled or not. NMI signals hardware > failure or a debug button. The code in i386 trap() has always been > that way. The switch in db_ktrap() must also not depend on the > fact wether kernel or user land is running. > OK deraadt@ (bluhm@) arch/amd64/stand/efiboot ~ efiboot.c > Delete "comspeed" which had been mistakenly added as a int value. > (yasuoka@) arch/arm/include ~ cpu.h > Fix the lidsuspend sysctl name in arm/include/cpu.h > From Markus Hennecke, thanks (tom@) arch/arm64/conf ~ RAMDISK > enable FFS2 on armv7 and arm64 ramdisks (jsg@) arch/armv7/conf ~ RAMDISK > enable FFS2 on armv7 and arm64 ramdisks (jsg@) arch/i386/i386 ~ db_interface.c ~ trap.c > Whan an amd64 machine got an NMI, the current process in user land > was killed with SIGBUS. Better drop to ddb regardless wether a > user process is currently scheduled or not. NMI signals hardware > failure or a debug button. The code in i386 trap() has always been > that way. The switch in db_ktrap() must also not depend on the > fact wether kernel or user land is running. > OK deraadt@ (bluhm@) kern ~ uipc_socket.c > Prevent a recursion in the socket layer. > Always defere soreceive() to an nfsd(8) process instead of doing it in > the 'softnet' thread. Avoiding this recursion ensure that we do not > introduce a new sleeping point by releasing and grabbing the netlock. > Tested by many, committing now in order to find possible performance > regression. (mpi@) net ~ if_ppp.c > Remove non longer needed splsoftnet()/splx() dances. (mpi@) ~ rtsock.c > It is allowed to sleep in route_output() as we run in process context > and do no critical operations on global structures or per socket. > The route entry we are working on is reference counted. Call > malloc(9) with M_WAITOK and remove the NULL result checks. > OK mpi@ (bluhm@) ~ pfkey.c ~ raw_usrreq.c ~ route.h ~ rtsock.c > Convert the variable argument list of the pr_output functions to > fixed parameters. > OK mpi@ claudio@ dhill@ (bluhm@) netinet ~ ip_var.h ~ raw_ip.c > Convert the variable argument list of the pr_output functions to > fixed parameters. > OK mpi@ claudio@ dhill@ (bluhm@) netinet6 ~ nd6_rtr.c > Iterate over the global list of interfaces instead of using the global > list of IPv6 addresses. > ok bluhm@ (mpi@) ~ nd6.c > Iterate over the global list of interfaces instead of using the global > list of IPv6 addresses. > ok bluhm@ (mpi@) ~ icmp6.c > Replace a panic with a compile time assert in icmp6_reflect(). > OK mpi@ (bluhm@) ~ ip6_var.h ~ raw_ip6.c > Convert the variable argument list of the pr_output functions to > fixed parameters. > OK mpi@ claudio@ dhill@ (bluhm@) nfs ~ nfs_socket.c > Prevent a recursion in the socket layer. > Always defere soreceive() to an nfsd(8) process instead of doing it in > the 'softnet' thread. Avoiding this recursion ensure that we do not > introduce a new sleeping point by releasing and grabbing the netlock. > Tested by many, committing now in order to find possible performance > regression. (mpi@) sys ~ protosw.h > Convert the variable argument list of the pr_output functions to > fixed parameters. > OK mpi@ claudio@ dhill@ (bluhm@) == usr.bin =========================================================== 04/05 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin mandoc ~ roff.c > Fix previous: do not access the byte before the string if the string > is empty; found by jsg@ with afl(1). (schwarze@) ~ mansearch.c > A missing initialization could randomly cause regular expression > searches to be case-insensitive that ought to be case sensitive. > Found by jsg@ with scan-build. (schwarze@) ~ mandocdb.c > Fix a copy-and-paste error that caused man(7) manuals without > a section number in .TH to be misinterpreted as preformatted. > Found by jsg@ with cppcheck. (schwarze@) ~ man.c ~ mdoc.c ~ mdoc_html.c ~ roff.c > remove a few redundant conditions that jsg@ found with cppcheck (schwarze@) ~ Makefile ~ main.c ~ main.h ~ mandoc.1 + mdoc_markdown.c > new -mdoc -Tmarkdown output mode; OK millert@ reyk@ tb@; > thanks to reyk@ and to Vsevolod at FreeBSD for suggesting it (schwarze@) ~ mdoc_argv.c > Markdown output mode helped us to find the first parser bug (as such, > this bug could cause wrong output in other modes as well): > Do not misinterpret tab characters as .Ta macros when they appear > on non-column .It lines in non-column .Bl lists that are nested > inside a parent .Bl -column list. (Admittedly, such constructions > are not very useful; don't use them!) > Found by tb@ with afl(1) because the resulting tree corruption > triggered an assertion in the markdown output module. (schwarze@) ssh ~ ssh-keygen.c > fix ssh-keygen -H accidentally corrupting known_hosts that contained > already-hashed entries. HKF_MATCH_HOST_HASHED is only set by > hostkeys_foreach() when hostname matching is in use, so we need to look > for the hash marker explicitly. (djm@) == usr.sbin ========================================================== 05/05 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin ldapd ~ evbuffer_tls.c > Internally libssl uses 16k buffer, the libevent TLS wrapper uses > 4k read buffer. This can hang ldapd(8). Setting both to 16k > improves the situation. > report Seiya Kawashima; feedback Robert Klein; test and OK gsoares@ > (bluhm@) ldpd ~ control.c ~ control.h ~ ldpd.8 ~ ldpd.c ~ ldpd.h ~ ldpe.c ~ ldpe.h > Allow to specify an alternate control socket. > This is required to run multiple instances of ldpd. > OK claudio@ (renato@) ~ interface.c ~ kroute.c ~ ldpd.c ~ ldpd.conf.5 ~ ldpd.h ~ parse.y ~ printconf.c > Allow to run on a non-default rdomain. > OK claudio@ (renato@) ~ interface.c ~ kroute.c ~ labelmapping.c ~ lde.c ~ lde.h ~ lde_lib.c ~ ldp.h ~ ldpe.c ~ parse.y > Minor tweaks. (renato@) ~ address.c ~ init.c ~ labelmapping.c ~ ldpe.h ~ notification.c ~ packet.c > Kill send_notification_nbr(). > Be more clever and trigger the PDU SENT event inside send_notification() > when tcp->nbr is set. This way we can eliminate send_notification_nbr() > and always use send_notification() instead. (renato@) ~ notification.c > Provide more detailed output when logging notification messages. (renato@) ~ address.c ~ labelmapping.c ~ notification.c > Create helper functions to log sent/received messages. (renato@) ~ address.c > Send correct status code on error condition. > The Unknown TLV status code is reserved for cases where we don't know > how to process a given TLV and its Unknown TLV bit is not set. > In the case of Address Messages, the Address List TLV is mandatory and > should appear before any optional TLV in the message. If that doesn't > happen the correct status notification to send is "Missing Message > Parameters" (non-fatal error). > Also, add a missing htons when creating an Address List TLV. Since the > value of TLV_TYPE_ADDRLIST is 0x0101 this missing htons wasn't noticed > earlier. (renato@) ~ ldp.h > The PW Status is an unknown TLV. > Without this fix, any LDP speaker that doesn't implement RFC 4447 will > shut down the session upon receipt of a PWid Label Mapping (unless the > use of the PW-Status TLV is disabled via configuration). (renato@) ~ lde_lib.c > Fix processing of Label Withdraw messages. > Whenever we receive a Label Withdraw message with an optional Label > TLV, we should check if this label matches the label previously > received from this neighbor for this FEC. If they don't match then we > shouldn't uninstall the previous label from the kernel. This fixes a > misinterpretation from the "Receive Label Withdraw" algorithm described > in the A.1.5 section of RFC 5036. > Also, simplify the check of pending withdraws in lde_check_release() > and lde_check_release_wcard(). (renato@) pkg_add ~ OpenBSD/Add.pm ~ OpenBSD/PackingElement.pm > pass @sysctl into old stuff > okay sthen@ (espie@) ~ pkg_create.1 ~ pod/OpenBSD::PackingElement.pod > spring cleanup, remove sysctl from doc, and finally gc some older > annotations > which don't even exist in the PackingElement hierarchy anymore. (espie@) ~ pod/OpenBSD::PackingElement.pod > Remove a "=over 4" after the corresponding "=back" has been removed > in the previous commit. Makes pod2man compile again. (bluhm@) syslogd ~ evbuffer_tls.c > Internally libssl uses 16k buffer, the libevent TLS wrapper uses > 4k read buffer. This can hang ldapd(8). Setting both to 16k > improves the situation. > report Seiya Kawashima; feedback Robert Klein; test and OK gsoares@ > (bluhm@) vmctl ~ vmctl.c > Undefined behavior: Variable 'user' was used as parameter and > destination in snprintf(). Use a temporary variable instead. > Found and OK by jsg@ (reyk@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
