OpenBSD src changes summary for 2017-03-13 ==========================================
distrib/miniroot lib/libc sbin/iked sys/arch/arm64/arm64 sys/dev/acpi sys/dev/pv sys/kern sys/net sys/net80211 sys/netinet sys/netinet6 sys/sys usr.bin/mandoc usr.bin/mg usr.bin/tmux usr.sbin/pkg_add usr.sbin/radiusd usr.sbin/route6d == distrib =========================================================== 01/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib miniroot ~ install.sub > Remove leading slashes from response to ensure a proper url. > Feedback and OK halex@ tb@ (rpe@) == lib =============================================================== 02/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libc ~ gen/sysctl.3 > for each sysctl name, attach the variable name as seen by sysctl(8); > includes some fixes from schwarze, as well as some general tweaking; > ok deraadt schwarze (jmc@) ~ gen/sysctl.3 > - no KERN_RND: from schwarze > - remove some XXX i no longer need (jmc@) == sbin ============================================================== 03/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sbin iked ~ policy.c > We need to call policy_ref() for policies that have refcounting > enabled. Refcounting is enabled when a policy is removed during > 'ikectl reload' and still has SAs point to it. On IKESA rekeying > such a policy will be referenced by the new IKESA, so we need to > adjust the refcount -- otherwise the policies get free()d too > early and we will crash at some point. > ok markus@ mikeb@ reyk@ (patrick@) ~ iked.h ~ ikev2.c ~ policy.c > flow_cmp() must compare the same flow-attributes as the kernel, > otherwise we never can keep the in-daemon and the in-kernel idea > of flows in sync and iked ends up deleting flows that are still > in use. Make use of flow_cmp() and a new flow_equal() instead > of handcrafting the compare in an if. > ok markus@ reyk@ (patrick@) ~ ikev2.c ~ ikev2_pld.c > Improve reporting of authentication errors > From and OK markus, OK reyk (mikeb@) ~ iked.h ~ ikev2.c > Fix and improve the IKE SA rekeying timeout, add a randomized jitter. > Diff from markus@ with a small tweak from me. > OK mikeb@ patrick@ (reyk@) ~ policy.c > When freeing a Child SA make sure it's peer no longer points to it > From and OK markus, OK reyk (mikeb@) ~ iked.h ~ ikev2.c ~ pfkey.c > When setting up IPcomp flows for the networks 'A' and 'B' between > gateways 'a' and 'b', we replace the ESP flow "A->B ESP" with an > IPCOMP flow "A->B IPCOMP" and add a matching (transport mode) ESP > flow between the gateways "a->b ESP". The later is now marked with > flow_ipcomp so it is not translated into "a->b IPCOMP" on rekeying. > When SAs get deleted we do an extra loop to figure out if matching > IPcomp SAs can now be removed, too. This allows faster expiry of > unused IPcomp SAs. > Disable bytes lifetime for IP compression. > ok markus@ reyk@ (patrick@) ~ iked.conf.5 > Clarify iked.conf(5) manpage in regards to IP compression. > ok markus@ reyk@ (patrick@) ~ iked.h ~ ikev2.c > Don't rekey acquired Child SAs > From and OK markus, OK reyk (mikeb@) ~ ikev2.c ~ ikev2_msg.c ~ pfkey.c > NAT-T improvements > Move repeated creation of the NAT-T payload into a function, remove > erroneous msg_offset, and improve NAT-T handling. > From and OK markus, OK mikeb (reyk@) ~ iked.h ~ ikev2.c > Make sure that proposal contains a DH group when rekeying with PFS enabled > Via markus, OK mikeb@ (reyk@) ~ iked.h ~ ikev2.c ~ ikev2_pld.c ~ policy.c > Resolve simultaneous IKE SA rekeying > From and OK markus, OK reyk (mikeb@) ~ config.c ~ iked.h ~ ikev2.c > Resolve simultaneous Child SA rekeying > From and OK markus, OK reyk (mikeb@) == sys =============================================================== 04/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/arm64/arm64 ~ machdep.c > Don't limit physmem to 2GB confirmed to work with 16GB by deraadt@. (jsg@) ~ pmap.c > When we do an ASID rollover, we unassign all ASIDs and do a complete > TLB flush to remove any cached translations. The problem is that we > do this while we're still running with the page tables of the old > process. Even if we don't actually reference any userland pages, the > CPU can speculatively load translations into the TLB. And those might > survive until we reassign the ASID of the old process to a new > process. This new process will then see the wrong physical page, > which inevitably leads to corruption of some sorts. > Fix this issue by delaying the TLB flush until after we switch to the > page tables and ASID of the new process. > ok patrick@, drahn@ (kettenis@) dev/acpi ~ acpi.c > allow ramdisks to build; ok jcs (deraadt@) ~ acpisbs.c > Register for notifications on the subsystem (parent device) instead > of the HID device, gets SCI events working properly. > But still keep ACPIDEV_POLL enabled just in case some systems never > generate these, like acpibat does. (jcs@) ~ acpials.c > Don't attach on Apple hardware, asmc(4) is already providing an > ambient light sensor. > ok jung (jcs@) dev/pv ~ if_hvn.c ~ if_xnf.c ~ xbf.c ~ xen.c ~ xenstore.c > Fixup format string and type issues found by cppcheck (mikeb@) ~ if_hvn.c ~ if_xnf.c ~ xbf.c ~ xenstore.c > Fixup format strings in debug messages found by cppcheck (mikeb@) kern ~ uipc_proto.c ~ uipc_socket.c ~ uipc_socket2.c ~ uipc_usrreq.c > Move PRU_ATTACH out of the pr_usrreq functions into pr_attach. > Attach is quite a different thing to the other PRU functions and > this should make locking a bit simpler. This also removes the ugly > hack on how proto was passed to the attach function. > OK bluhm@ and mpi@ on a previous version (claudio@) net ~ pfkey.c ~ raw_usrreq.c ~ rtsock.c > Move PRU_ATTACH out of the pr_usrreq functions into pr_attach. > Attach is quite a different thing to the other PRU functions and > this should make locking a bit simpler. This also removes the ugly > hack on how proto was passed to the attach function. > OK bluhm@ and mpi@ on a previous version (claudio@) net80211 ~ ieee80211_input.c > Make 'ifconfig scan' show WPA information for other APs correctly while > the interface operates in hostap mode. > test & ok tb@ (stsp@) netinet ~ in_proto.c ~ ip_divert.c ~ ip_divert.h ~ ip_var.h ~ raw_ip.c ~ tcp_usrreq.c ~ tcp_var.h ~ udp_usrreq.c ~ udp_var.h > Move PRU_ATTACH out of the pr_usrreq functions into pr_attach. > Attach is quite a different thing to the other PRU functions and > this should make locking a bit simpler. This also removes the ugly > hack on how proto was passed to the attach function. > OK bluhm@ and mpi@ on a previous version (claudio@) netinet6 ~ in6_proto.c ~ ip6_divert.c ~ ip6_divert.h ~ ip6_var.h ~ raw_ip6.c > Move PRU_ATTACH out of the pr_usrreq functions into pr_attach. > Attach is quite a different thing to the other PRU functions and > this should make locking a bit simpler. This also removes the ugly > hack on how proto was passed to the attach function. > OK bluhm@ and mpi@ on a previous version (claudio@) sys ~ protosw.h ~ socketvar.h ~ unpcb.h > Move PRU_ATTACH out of the pr_usrreq functions into pr_attach. > Attach is quite a different thing to the other PRU functions and > this should make locking a bit simpler. This also removes the ugly > hack on how proto was passed to the attach function. > OK bluhm@ and mpi@ on a previous version (claudio@) == usr.bin =========================================================== 05/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin mandoc ~ html.c ~ mdoc_html.c > Print title="..." in addition to id="..." attributes for macro keys > that can be searched for by apropos(1), such that you see the > semantic function in a tooltip when hovering with the mouse. (schwarze@) ~ mandoc.css ~ mdoc_html.c > Port ctags-style, less(1) :t internal searching from terminal output > to HTML output. For certain macros appearing at the beginning of .It > heads, write HTML id="..." attributes such that deep linking works. > Write HTML <a> attributes such that you can easily copy out link > targets with the mouse. Try: http://man.openbsd.org/vmctl.8#create > Feature suggested by <guettliml at Thomas dash Guettler dot de>, > some details of the design and implementation by me. (schwarze@) mg ~ buffer.c > When aborting switch-to-buffer keep current buffer instead of > switching to *scratch*. (Which seems to be the least useful thing to > do.) > This brings mg in line with emacs. > OK lum; deraadt@ was bugged by this, too (florian@) tmux ~ cmd-find.c > Revert previous, breaks normal short targets, reported by Theo Buehler. > (nicm@) ~ window.c > Log where panes are created. (nicm@) == usr.sbin ========================================================== 06/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin pkg_add ~ OpenBSD/PkgAdd.pm ~ OpenBSD/PkgDelete.pm > fix usage order, as reminded by jmc@ (espie@) radiusd ~ radiusd.conf.5 > Fix typo in FILES section > from Pierre Emeriaud (jca@) route6d ~ log.c ~ log.h > Add OpenBSD RCS id. (bluhm@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
