OpenBSD src changes summary for 2017-04-05 ==========================================
distrib/sets lib/libc lib/libtls regress/usr.sbin sbin/dhclient sbin/ifconfig sys/dev/usb sys/kern sys/net sys/netinet sys/netinet6 usr.bin/nc usr.bin/systat usr.bin/tmux usr.sbin/dhcrelay usr.sbin/pkg_add usr.sbin/rtadvd usr.sbin/syslogd == distrib =========================================================== 01/07 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib sets ~ lists/base/mi > sync (deraadt@) == lib =============================================================== 02/07 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libc ~ sys/mmap.2 > Not all devices support mmap, document EINVAL in this case too. > OK deraadt@ (millert@) libtls ~ Symbols.list ~ tls.c ~ tls_config.c ~ tls_conninfo.c ~ tls_internal.h > Internal changes to allow for relayd engine privsep. sends the hash of the > public key as an identifier to RSA, and adds an function for relayd to > use to disable private key checking when doing engine privsep. > ok jsing@ (beck@) ~ Symbols.list ~ shlib_version ~ tls.c ~ tls.h ~ tls_conninfo.c ~ tls_internal.h ~ tls_peer.c > Add tls_peer_cert_chain_pem - To retreive the peer certificate and chain > as PEM format. This allows for it to be used or examined with tools > external to libtls > bump minor > ok jsing@ (beck@) == regress =========================================================== 03/07 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/regress usr.sbin ~ syslogd/args-client-tcp-close.pl ~ syslogd/args-client-tcp-error.pl ~ syslogd/args-client-tcp.pl ~ syslogd/args-client-tls-close.pl ~ syslogd/args-client-tls-error.pl ~ syslogd/args-client-tls-fake.pl ~ syslogd/args-client-tls-tcp.pl ~ syslogd/args-client-tls.pl ~ syslogd/args-dropped-sighup-tcp.pl ~ syslogd/args-dropped-sighup-tls.pl ~ syslogd/args-dropped-sigterm-tcp.pl ~ syslogd/args-dropped-sigterm-tls.pl ~ syslogd/args-dropped-tcp.pl ~ syslogd/args-dropped-tls.pl ~ syslogd/args-error.pl ~ syslogd/args-fdexhaustion-tcp.pl ~ syslogd/args-maxhostlen.pl ~ syslogd/args-maxloghostlen.pl ~ syslogd/args-maxportlen.pl ~ syslogd/args-proto-invalid.pl ~ syslogd/args-proto-udp4-host6.pl ~ syslogd/args-proto-udp4-only6.pl ~ syslogd/args-proto-udp6-host4.pl ~ syslogd/args-proto-udp6-only4.pl ~ syslogd/args-rsyslog-client-tcp.pl ~ syslogd/args-rsyslog-client-tls.pl ~ syslogd/args-server-tcp-close.pl ~ syslogd/args-server-tcp-error.pl ~ syslogd/args-server-tcp-reconnect.pl ~ syslogd/args-server-tls-client-fake.pl ~ syslogd/args-server-tls-close.pl ~ syslogd/args-server-tls-error.pl ~ syslogd/args-server-tls-reconnect.pl ~ syslogd/args-server-tls-tcp.pl ~ syslogd/args-sigterm.pl ~ syslogd/args-sync-tcp.pl ~ syslogd/args-tls-cafile-default.pl ~ syslogd/args-tls-cafile-empty.pl ~ syslogd/args-tls-cafile-fake.pl ~ syslogd/args-tls-cafile-noexist.pl ~ syslogd/args-tls-cafile-toobig.pl ~ syslogd/args-tls-cert-empty.pl ~ syslogd/args-tls-cert-noexist.pl ~ syslogd/args-tls-cipher-null.pl ~ syslogd/args-tls-host-bad.pl ~ syslogd/args-tls-key-empty.pl ~ syslogd/args-tls-key-noexist.pl > Syslogd's debug and error messages have changed a bit, adapt test. (bluhm@) == sbin ============================================================== 04/07 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sbin dhclient ~ dhcpd.h ~ dispatch.c ~ kroute.c > Shuffle sendhup() into dispatch.c, the only place it is used. (krw@) ifconfig ~ ifconfig.8 > various improvements, from klemens nanni; > i've omitted hunk 3 of his diff, as what's there now is correct; > ok mikeb (jmc@) == sys =============================================================== 05/07 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys dev/usb ~ uaudio.c ~ usb_subr.c > 3 more mallocarray() uses (deraadt@) kern ~ kern_clock.c > clear structure on the stack before copying out for sysctl. At present > it has no pads, but a future ABI change could add something and leak > kernel memory. (deraadt@) ~ kern_sysctl.c > Here at OpenBSD we change ABIs at the fling of a hat. Just in case a > future disk info sysctl has pads in the structures, use M_ZERO when > allocating the storage to avoid leaking kernel memory. (deraadt@) ~ kern_sysctl.c > timeval has trailing padding on powerpc and m88k, so memset it before > copyout to avoid leaking kernel stack > ok deraadt@ (guenther@) net ~ if_pfsync.c ~ rtsock.c > When building counter memory in preparation to copy to userland, always > zero the buffers first. All the current objects appear to be safe, > however future changes might introduce structure pads. > Discussed with guenther, ok bluhm (deraadt@) netinet ~ igmp.c ~ ip_carp.c ~ ip_divert.c ~ ip_icmp.c ~ ip_input.c ~ ip_ipip.c ~ tcp_usrreq.c ~ udp_usrreq.c > When building counter memory in preparation to copy to userland, always > zero the buffers first. All the current objects appear to be safe, > however future changes might introduce structure pads. > Discussed with guenther, ok bluhm (deraadt@) ~ ip_ipcomp.c > Replace 2 bcopy()'s with a simple assignment as both variables are > properly aligned malloc(9)d data and sockaddr_union fields. While here, > convert the remaining bcopy() to memmove(). > with and ok @bluhm (dhill@) netinet6 ~ icmp6.c > When building counter memory in preparation to copy to userland, always > zero the buffers first. All the current objects appear to be safe, > however future changes might introduce structure pads. > Discussed with guenther, ok bluhm (deraadt@) == usr.bin =========================================================== 06/07 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin nc ~ nc.1 ~ netcat.c > Allow nc to save the peer certificate and chain in a pem file specified > with -Z > ok jsing@ (beck@) ~ nc.1 ~ netcat.c > - -Z before -z in options list > - add -Z to help and usage() (jmc@) systat ~ engine.c > an annoying whitespace glitch (deraadt@) ~ engine.c > Clamp size to length if snprintf ever indicates overflow > w/ millert (deraadt@) tmux ~ tty.c > Change tty_repeat_space to write large sets of spaces together instead > of writing them individually. (nicm@) ~ cfg.c > cfg_file can be static. (nicm@) ~ cmd-choose-client.c ~ cmd-find.c ~ cmd-list-clients.c ~ format.c ~ screen-redraw.c ~ server-client.c ~ tmux.1 ~ tmux.h ~ tty.c > Give each client a name. This defaults to the tty name as before but > falls back to an alternative if the tty name is not available. This is > clearer than overloading the client ttyname member and allows us to > remove the path stored in the tty struct, it should always be the same > as the client. (nicm@) ~ cmd-find.c > Try again to resolve problems with mistaking sessions for windows: now > do not look up windows as sessions (and panes as windows) when they are > qualified with a ':' or a '.'. So 'foo' as a window target will look for > windows and sessions called 'foo', but ':foo' will only look for > windows, and 'foo:' only for sessions. This means the common case of > using an unadorned session as a window target (send -tfoo) should > continue to work, but an explicit window will not get confused with a > session (send -t:foo). (nicm@) ~ key-bindings.c > Add Home and End for copy mode. (nicm@) == usr.sbin ========================================================== 07/07 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin dhcrelay ~ bpf.c ~ dhcpd.h ~ packet.c > Rework the packet.c code for decoding and assembling DHCP messages. > This code suffered from many years of incremental improvements, fix it to: > - verify available buffer space in all cases and don't just trust the > caller > - have an API where you always pass the full buffer length and absolute > offset > - use consistent types for lengths and buffer offsets (int vs. size_t, > ssize_t) > - don't just ignore errors, return and fail when something is wrong > OK rzalamena@ (reyk@) ~ Makefile > We can enable many -W compiler warnings now. > OK rzalamena@ (reyk@) pkg_add ~ OpenBSD/Delete.pm > For a non-interactive attempt to pkg_delete a firmware package, print a > message advising use of "fw_update -d" rather than saying "ok" and doing > nothing. (pkg_delete intentionally makes it hard to uninstall firmware > to prevent surprises when cleaning a machine). > aja and I were surprised by the "ok" leaving the fw package installed. > suggestion from espie to mention fw_update -d in the message. (sthen@) rtadvd ~ dump.c > Don't rely on asprintf setting pointer to NULL on failure. > ok millert@ deraadt@ tom@ (jca@) ~ rtadvd.c > sendmsg returns a signed value, fix error check > ok millert@ deraadt@ (jca@) ~ rtadvd.c > Unify variables used for recvmsg/sendmsg > ok millert@ deraadt@ (jca@) syslogd ~ syslogd.c > Do not print a warning if closing the control socket fails. It > cannot happen and there is nothing that could be done about it. > OK deraadt@ (bluhm@) ~ log.c ~ log.h ~ privsep.c ~ syslogd.c ~ syslogd.h ~ ttymsg.c > Replace logdebug() with generic log_debug() from log.c. Implement > log_debugadd() to construct debug message incrementally. > OK deraadt@ (bluhm@) ~ syslogd.c > Replace all combinations of logerror() and die() with log.c fatal(). > Internally syslogd's fatal() calls die() to do cleanup if necessary. > Also replace all err(3) after log_init() with fatal(). > OK millert@ (bluhm@) ~ syslogd.c > Replace logerror() functions with generic log_warn() from log.c. > Make messages a bit more consistent. Note that the new function > supports format strings. Replace some log_debug() with log_warn(). > OK millert@ (bluhm@) ~ syslogd.c > The function logmsg() was used to generate local messages and to > process incoming messages. Split this functionality into log_info() > and logline(). Sort the parameters like they appear in the syslog > line. > OK millert@ (bluhm@) ~ syslogd.c ~ syslogd.h ~ ttymsg.c > As we did not have nice log functions before, ttymsg() had to return > the error string. Log the message when the error happens and make > the function void. > OK millert@ (bluhm@) ~ syslogd.c ~ syslogd.h > The global variable Startup is not used anymore and can be deleted. > The functionality has moved into log_setdebug(). > OK millert@ (bluhm@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
