OpenBSD src changes summary for 2016-05-01 to 2016-05-08 inclusive ==================================================================
bin/ksh distrib/sets distrib/special etc/mail/smtpd.conf etc/rc etc/rc.d/rc.subr gnu gnu/usr.bin/perl include/Makefile include/dbm.h include/tib.h lib/csu lib/libc lib/libedit lib/libkvm lib/libpcap lib/librthread lib/libssl libexec/ftpd libexec/ld.so regress/lib regress/sys regress/usr.bin regress/usr.sbin sbin/dhclient sbin/ifconfig sbin/sysctl share/man sys/arch/alpha/include sys/arch/alpha/pci sys/arch/amd64/amd64 sys/arch/amd64/conf sys/arch/amd64/include sys/arch/amd64/pci sys/arch/amd64/stand/efiboot sys/arch/arm/conf sys/arch/arm/cortex sys/arch/arm/include sys/arch/arm/mainbus sys/arch/arm/simplebus sys/arch/arm/xscale sys/arch/armish/conf sys/arch/armish/dev sys/arch/armv7/armv7 sys/arch/armv7/conf sys/arch/armv7/exynos sys/arch/armv7/imx sys/arch/armv7/include sys/arch/armv7/omap sys/arch/armv7/sunxi sys/arch/armv7/vexpress sys/arch/hppa/include sys/arch/hppa64/include sys/arch/i386/i386 sys/arch/i386/pci sys/arch/landisk/include sys/arch/loongson/include sys/arch/macppc/dev sys/arch/macppc/include sys/arch/octeon/include sys/arch/powerpc/include sys/arch/sgi/pci sys/arch/socppc/include sys/arch/sparc64/dev sys/arch/sparc64/include sys/arch/sparc64/sparc64 sys/conf sys/dev/acpi sys/dev/ic sys/dev/pci sys/dev/sdmmc sys/kern sys/net sys/net80211 sys/netinet sys/netinet6 sys/sys sys/tmpfs sys/uvm usr.bin/file usr.bin/fstat usr.bin/ftp usr.bin/midiplay usr.bin/mklocale usr.bin/passwd usr.bin/ssh usr.bin/telnet usr.bin/tmux usr.bin/vi usr.bin/wall usr.sbin/ldapctl usr.sbin/ldapd usr.sbin/ndp usr.sbin/ntpd usr.sbin/pkg_add usr.sbin/rebound usr.sbin/rtadvd usr.sbin/smtpd usr.sbin/tcpdump usr.sbin/user usr.sbin/vmd == bin =============================================================== 01/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/bin ksh ~ sh.1 > line editing correction; from andras farkas (jmc@) ~ sh.1 > Correct the description of the != operator in arithmetic expansion; > from Andras Farkas <deepbluemistake at gmail dot com>. (schwarze@) == distrib =========================================================== 02/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib sets ~ lists/base/md.armish ~ lists/base/md.armv7 ~ lists/base/md.zaurus ~ lists/comp/md.armish ~ lists/comp/md.armv7 ~ lists/comp/md.zaurus > sync (jsg@) ~ lists/base/md.alpha ~ lists/base/md.amd64 ~ lists/base/md.armish ~ lists/base/md.armv7 ~ lists/base/md.hppa ~ lists/base/md.hppa64 ~ lists/base/md.i386 ~ lists/base/md.landisk ~ lists/base/md.loongson ~ lists/base/md.luna88k ~ lists/base/md.macppc ~ lists/base/md.octeon ~ lists/base/md.sgi ~ lists/base/md.socppc ~ lists/base/md.sparc ~ lists/base/md.sparc64 ~ lists/base/md.zaurus ~ lists/base/mi ~ lists/comp/mi > Use a Thread Information Block in both single and multi-threaded programs. > This stores errno, the cancelation flags, and related bits for each thread > and is allocated by ld.so or libc.a. This is an ABI break from 5.9-stable! > Make libpthread dlopen'able by moving the cancelation wrappers into libc > and doing locking and fork/errno handling via callbacks that libpthread > registers when it first initializes. 'errno' *must* be declared via > <errno.h> now! > Clean up libpthread's symbol exports like libc. > On powerpc, offset the TIB/TCB/TLS data from the register per the ELF spec. > Testing by various, particularly sthen@ and patrick@ > ok kettenis@ (guenther@) ~ lists/base/mi ~ lists/man/mi > sync (deraadt@) ~ lists/base/md.alpha ~ lists/base/md.amd64 ~ lists/base/md.armish ~ lists/base/md.armv7 ~ lists/base/md.hppa ~ lists/base/md.hppa64 ~ lists/base/md.i386 ~ lists/base/md.landisk ~ lists/base/md.loongson ~ lists/base/md.luna88k ~ lists/base/md.macppc ~ lists/base/md.octeon ~ lists/base/md.sgi ~ lists/base/md.socppc ~ lists/base/md.sparc ~ lists/base/md.sparc64 ~ lists/base/md.zaurus ~ lists/base/mi > sync (deraadt@) ~ lists/base/md.alpha ~ lists/base/md.amd64 ~ lists/base/md.armish ~ lists/base/md.armv7 ~ lists/base/md.hppa ~ lists/base/md.hppa64 ~ lists/base/md.i386 ~ lists/base/md.landisk ~ lists/base/md.loongson ~ lists/base/md.luna88k ~ lists/base/md.macppc ~ lists/base/md.octeon ~ lists/base/md.sgi ~ lists/base/md.socppc ~ lists/base/md.sparc ~ lists/base/md.sparc64 ~ lists/base/md.zaurus ~ lists/comp/mi ~ lists/man/mi > sync (deraadt@) special ~ ifconfig/Makefile > Also remove -DINET6 here, noticed by tedu > -DKAME_SCOPEID can go away too, meaningless since 2006 (jca@) ~ ftp/Makefile > Kill #ifdef INET6 occurrences in userland. > Prompted by and ok millert@ > (tcpdump and libpcap left untouched, the #ifdef force is too strong with > those) (jca@) ~ libstubs/Makefile > Use a Thread Information Block in both single and multi-threaded programs. > This stores errno, the cancelation flags, and related bits for each thread > and is allocated by ld.so or libc.a. This is an ABI break from 5.9-stable! > Make libpthread dlopen'able by moving the cancelation wrappers into libc > and doing locking and fork/errno handling via callbacks that libpthread > registers when it first initializes. 'errno' *must* be declared via > <errno.h> now! > Clean up libpthread's symbol exports like libc. > On powerpc, offset the TIB/TCB/TLS data from the register per the ELF spec. > Testing by various, particularly sthen@ and patrick@ > ok kettenis@ (guenther@) == etc =============================================================== 03/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/etc mail/smtpd.conf ~ mail/smtpd.conf > listen directive may use a table for authentication, to make this work the > table has to be defined BEFORE > consequently move all tables in the examples to the beginning and before > the > listen directive to avoid tables not being found > no functional change > ran into this myself earlier, also reported by cjones via irc > ok gilles (jung@) rc ~ rc > show what we're doing when reordering libraries, otherwise the text > above it is "starting network", which can make you think something is > broken when your machine is as slow as some of mine. > "Yeah, that's a pretty crappy machine" deraadt@ (sthen@) rc.d/rc.subr ~ rc.d/rc.subr > signal name should be first, fixes reload; ok deraadt@ (otto@) == gnu =============================================================== 04/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/gnu gnu ~ gcc/gcc/c-typeck.c > Add support for named initializers for anonymous structs/unions. This is a > C11 feature that is starting to get used in places such as Mesa. > This implementation takes a different approach to upstream and is therefore > not covered by GPLv3. > ok stefan@, jsg@ (kettenis@) usr.bin/perl + cpan/Term-ReadKey/META.yml + cpan/Term-ReadKey/genchars.pl + cpan/Term-ReadKey/Makefile.PL + cpan/Term-ReadKey/MANIFEST.SKIP + cpan/Term-ReadKey/ReadKey.xs + cpan/Term-ReadKey/ReadKey.pm + cpan/Term-ReadKey/Configure.pm + cpan/Term-ReadKey/MANIFEST + cpan/Term-ReadKey/META.json + cpan/Term-ReadKey/ppport.h + cpan/Term-ReadKey/Changes + cpan/Term-ReadKey/README + cpan/Term-ReadKey/example/test.pl + cpan/Term-ReadKey/t/02_terminal_functions.t + cpan/Term-ReadKey/t/01_basic.t > New import: > Term::ReadKey vendor import, as discussed with millert@ and afresh1@ ~ cpan/Term-ReadKey/Makefile.PL > same patch as ports tree (espie@) ~ cpan/Term-ReadKey/Configure.pm > fix build within perl (espie@) ~ MANIFEST ~ Makefile.bsd-wrapper1 > ... and link into the build (espie@) ~ Makefile.bsd-wrapper1 > remove reference to file that's only built when dbm is present (tedu@) ~ cpan/OpenBSD-MkTemp/lib/OpenBSD/MkTemp.pm ~ cpan/OpenBSD-MkTemp/t/OpenBSD-MkTemp.t > Correct return value of OpenBSD::MkTemp in scalar context > From Francesco Toscan < f.toscan AT hotmail DOT it > > ok guenther@ (afresh1@) == include =========================================================== 05/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/include Makefile ~ Makefile > Use a Thread Information Block in both single and multi-threaded programs. > This stores errno, the cancelation flags, and related bits for each thread > and is allocated by ld.so or libc.a. This is an ABI break from 5.9-stable! > Make libpthread dlopen'able by moving the cancelation wrappers into libc > and doing locking and fork/errno handling via callbacks that libpthread > registers when it first initializes. 'errno' *must* be declared via > <errno.h> now! > Clean up libpthread's symbol exports like libc. > On powerpc, offset the TIB/TCB/TLS data from the register per the ELF spec. > Testing by various, particularly sthen@ and patrick@ > ok kettenis@ (guenther@) ~ Makefile > remove dbm.h (tedu@) dbm.h - dbm.h > remove dbm.h (tedu@) tib.h ~ tib.h > Use a Thread Information Block in both single and multi-threaded programs. > This stores errno, the cancelation flags, and related bits for each thread > and is allocated by ld.so or libc.a. This is an ABI break from 5.9-stable! > Make libpthread dlopen'able by moving the cancelation wrappers into libc > and doing locking and fork/errno handling via callbacks that libpthread > registers when it first initializes. 'errno' *must* be declared via > <errno.h> now! > Clean up libpthread's symbol exports like libc. > On powerpc, offset the TIB/TCB/TLS data from the register per the ELF spec. > Testing by various, particularly sthen@ and patrick@ > ok kettenis@ (guenther@) == lib =============================================================== 06/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib csu ~ crt0.c > Declare moncontrol(3) APIs in <sys/gmon.h> > Export _gmonparam again. > Make gcrt0.o use an reserved name for _monstartup() > ok millert@ (guenther@) libc ~ net/res_comp.c > Remove old NeXT-specific cruft. From mmcc@ (millert@) ~ stdlib/Makefile.inc > Remove a vax remnant (that was really a no-op anyway). (millert@) - regex/WHATSNEW > Remove old cruft. > okay millert@ (zhuk@) - arch/alpha/sys/fork.S - arch/amd64/sys/cerror.S - arch/amd64/sys/fork.S - arch/arm/sys/fork.S - arch/hppa/sys/cerror.S - arch/hppa/sys/fork.S - arch/hppa64/sys/cerror.S - arch/hppa64/sys/fork.S - arch/i386/sys/cerror.S - arch/i386/sys/fork.S - arch/m88k/sys/fork.S - arch/mips64/sys/fork.S - arch/powerpc/sys/fork.S - arch/sh/sys/fork.S - arch/sparc/sys/cerror.S - arch/sparc/sys/fork.S - arch/sparc64/sys/cerror.S - arch/sparc64/sys/fork.S - thread/unithread_malloc_lock.c - thread/unithread_mutex.c - thread/unithread_tag.c ~ Makefile.inc ~ Symbols.list ~ shlib_version ~ arch/alpha/Makefile.inc ~ arch/alpha/sys/Ovfork.S ~ arch/alpha/sys/cerror.S ~ arch/alpha/sys/sigsuspend.S ~ arch/amd64/SYS.h ~ arch/amd64/sys/Ovfork.S ~ arch/amd64/sys/brk.S ~ arch/amd64/sys/sbrk.S ~ arch/amd64/sys/sigprocmask.S ~ arch/amd64/sys/sigsuspend.S ~ arch/amd64/sys/syscall.S ~ arch/amd64/sys/tfork_thread.S ~ arch/arm/Makefile.inc ~ arch/arm/SYS.h ~ arch/arm/sys/Ovfork.S ~ arch/arm/sys/cerror.S ~ arch/arm/sys/sigsuspend.S ~ arch/hppa/SYS.h ~ arch/hppa/sys/Ovfork.S ~ arch/hppa/sys/sigsuspend.S ~ arch/hppa64/SYS.h ~ arch/hppa64/sys/Ovfork.S ~ arch/hppa64/sys/sigsuspend.S ~ arch/i386/SYS.h ~ arch/i386/sys/Ovfork.S ~ arch/i386/sys/brk.S ~ arch/i386/sys/sbrk.S ~ arch/i386/sys/sigprocmask.S ~ arch/i386/sys/sigsuspend.S ~ arch/i386/sys/syscall.S ~ arch/i386/sys/tfork_thread.S ~ arch/m88k/Makefile.inc ~ arch/m88k/sys/Ovfork.S ~ arch/m88k/sys/cerror.S ~ arch/m88k/sys/sigsuspend.S ~ arch/mips64/Makefile.inc ~ arch/mips64/SYS.h ~ arch/mips64/sys/Ovfork.S ~ arch/mips64/sys/cerror.S ~ arch/mips64/sys/sigsuspend.S ~ arch/powerpc/Makefile.inc ~ arch/powerpc/SYS.h ~ arch/powerpc/sys/Ovfork.S ~ arch/powerpc/sys/brk.S ~ arch/powerpc/sys/cerror.S ~ arch/powerpc/sys/sbrk.S ~ arch/powerpc/sys/sigprocmask.S ~ arch/powerpc/sys/sigsuspend.S ~ arch/powerpc/sys/tfork_thread.S ~ arch/sh/Makefile.inc ~ arch/sh/SYS.h ~ arch/sh/sys/Ovfork.S ~ arch/sh/sys/cerror.S ~ arch/sh/sys/sigsuspend.S ~ arch/sparc/SYS.h ~ arch/sparc/sys/Ovfork.S ~ arch/sparc/sys/sigsuspend.S ~ arch/sparc64/SYS.h ~ arch/sparc64/sys/Ovfork.S ~ arch/sparc64/sys/sigsuspend.S ~ dlfcn/Makefile.inc ~ dlfcn/init.c ~ gen/errno.c ~ gen/getcwd.c ~ hidden/errno.h ~ hidden/fcntl.h ~ hidden/signal.h ~ hidden/stdio.h ~ hidden/time.h ~ hidden/unistd.h ~ hidden/sys/mman.h ~ hidden/sys/socket.h ~ hidden/sys/wait.h ~ include/namespace.h ~ include/thread_private.h ~ stdio/flockfile.c ~ stdio/local.h ~ sys/Makefile.inc ~ sys/pread.c ~ sys/preadv.c ~ sys/pwrite.c ~ sys/pwritev.c ~ sys/w_fork.c ~ termios/tcdrain.c ~ thread/Makefile.inc + dlfcn/tib.c + hidden/poll.h + hidden/tib.h + hidden/sys/msg.h + hidden/sys/select.h + hidden/sys/uio.h + include/cancel.h + sys/canceled.c + sys/w_accept.c + sys/w_accept4.c + sys/w_close.c + sys/w_closefrom.c + sys/w_connect.c + sys/w_fcntl.c + sys/w_fsync.c + sys/w_msgrcv.c + sys/w_msgsnd.c + sys/w_msync.c + sys/w_nanosleep.c + sys/w_open.c + sys/w_openat.c + sys/w_poll.c + sys/w_ppoll.c + sys/w_pread.c + sys/w_preadv.c + sys/w_pselect.c + sys/w_pwrite.c + sys/w_pwritev.c + sys/w_read.c + sys/w_readv.c + sys/w_recvfrom.c + sys/w_recvmsg.c + sys/w_select.c + sys/w_sendmsg.c + sys/w_sendto.c + sys/w_sigsuspend.c + sys/w_vfork.c + sys/w_wait4.c + sys/w_write.c + sys/w_writev.c + thread/callbacks.c > Use a Thread Information Block in both single and multi-threaded programs. > This stores errno, the cancelation flags, and related bits for each thread > and is allocated by ld.so or libc.a. This is an ABI break from 5.9-stable! > Make libpthread dlopen'able by moving the cancelation wrappers into libc > and doing locking and fork/errno handling via callbacks that libpthread > registers when it first initializes. 'errno' *must* be declared via > <errno.h> now! > Clean up libpthread's symbol exports like libc. > On powerpc, offset the TIB/TCB/TLS data from the register per the ELF spec. > Testing by various, particularly sthen@ and patrick@ > ok kettenis@ (guenther@) ~ gmon/moncontrol.3 ~ gmon/gmon.c ~ Symbols.list > Declare moncontrol(3) APIs in <sys/gmon.h> > Export _gmonparam again. > Make gcrt0.o use an reserved name for _monstartup() > ok millert@ (guenther@) ~ gen/getcwd.c > Avoid a transient PLT entry for the internal __getcwd syscall stub for > slightly better code on some archs (guenther@) ~ gen/getpwent.c > stop opening the shadow database by default. only programs that request it > via the _shadow functions will open now, preventing some programs running > as root from accidentally loading password hashes it into their memory. > ok deraadt (tedu@) - db/man/dbm.3 - hidden/dbm.h ~ Symbols.list ~ db/hash/ndbm.c > remove ancient dbm functions (ndbm remains). nothing uses them in forever. > (tedu@) ~ db/Makefile.inc ~ db/man/ndbm.3 > remove more dbm pieces (naddy@) ~ Symbols.list > Unexport sigreturn. Nobody should use it anymore, and it will be removed > from libc completely in the near future. Riding the libc bump that > appeared > a few moments ago. > ok deraadt@ (kettenis@) ~ arch/sparc64/gen/sigsetjmp.S > Simplify sig{set,long}jmp(): just Do The Job instead of calling others > ok kettenis@ (guenther@) ~ arch/sparc64/Symbols.list ~ arch/sparc64/fpu/Makefile.inc ~ arch/sparc64/fpu/fpu_explode.c ~ arch/sparc64/fpu/fpu_extern.h ~ arch/sparc64/fpu/fpu_q.h ~ arch/sparc64/fpu/fpu_qp.c > Hide __fpu_* and make internal _Qp_* calls go direct. > ok kettenis@ (guenther@) ~ arch/powerpc/gen/setjmp.S > No, sigaltstack's onstack flag shouldn't be saved. Delete comment > wondering about that (guenther@) ~ arch/mips64/gen/_setjmp.S ~ arch/mips64/gen/setjmp.S ~ arch/mips64/gen/sigsetjmp.S > Implement longjmp directly and not on top of sigreturn. > Use the hidden symbols for internal calls to abort, longjmp, etc > ok deraadt@ (guenther@) libedit ~ Makefile ~ makelist + editline.c + historyn.c + tokenizern.c > The files editline.c, historyn.c, and tokenizern.c are completely > constant and very short and simple. Check them into CVS rather > than generating them at build time in a complicated way. > OK martijn@, also proofread by Christian Heckendorf <mbie at ulmus dot me> > (schwarze@) ~ Makefile ~ editline.c ~ makelist ~ map.c > Combine help.h and help.c into a simplified help.h > and include it only in the one file needing it, map.c. > Also delete makelist -bc. > OK martijn@, also proofread by Christian Heckendorf <mbie at ulmus dot me> > (schwarze@) ~ Makefile ~ chared.c ~ common.c ~ editline.c ~ el.h ~ emacs.c ~ keymacro.c ~ makelist ~ map.c ~ map.h ~ read.c ~ readline.c ~ search.c ~ terminal.c ~ tty.c ~ vi.c > Replace the generated file "fcns.c" by a simpler header "func.h" > included only in the one file needing it, "map.c". > That allows to define el_action_t directly in "map.h", > which in turn allows to stop including "fcns.h" from "el.h" > and include it only in the modules needing it. > Now we no longer autogenerate any C files. > Feedback and OK martijn@. > First version also proofread by Christian Heckendorf <mbie at ulmus dot > me>. (schwarze@) ~ chartype.h ~ refresh.c > typos in comments; from Pedro Giffuni (FreeBSD) via Christos Zoulas > (NetBSD) (schwarze@) ~ readline.c > Make the history_set_pos() return values agree with the GNU implementation. > Patch from Bastian Maerkisch <bmaerkisch at web dot de> > with a minor tweak from Christos Zoulas. > Fixes the test_set_pos_return_values() regression test. > OK czarkoff@, > also proofread by zhuk@ and by Christian Heckendorf <mbie at ulmus dot me>. > (schwarze@) ~ readline.c > Change where_history() to agree with the GNU implementation: > Return 0 for the oldest entry and increment by 1 for each newer, > non-deleted entry. > This fixes the test_where() regression test. > OK czarkoff@. (schwarze@) libkvm ~ kvm_file2.c > Make KERN_FILE_BYPID return ESRCH when PID not found, both in sysctl and > offline paths. More polishing to come. > Input and okay bluhm@ & kettenis@. (zhuk@) ~ kvm_getfiles.3 > Add ERRORS section (requested by bluhm@). While there, move start of > RETURN VALUES section upper, where it belongs more. (zhuk@) libpcap ~ pcap-bpf.c > Move to /dev/bpf; ok lteo (natano@) ~ pcap-bpf.c > Use /dev/bpf0 instead of /dev/bpf (without loop though), as suggested by > sthen@. to make remote upgrades without media less painful. > ok tb@ (natano@) librthread - rthread_cancel.c - tcb.h - arch/alpha/cerror.S - arch/amd64/cerror.S - arch/arm/cerror.S - arch/hppa/cerror.S - arch/hppa64/cerror.S - arch/i386/cerror.S - arch/m88k/cerror.S - arch/mips64/cerror.S - arch/powerpc/cerror.S - arch/sh/cerror.S - arch/sparc/cerror.S - arch/sparc64/cerror.S ~ Makefile ~ rthread.c ~ rthread.h ~ rthread_attr.c ~ rthread_file.c ~ rthread_fork.c ~ rthread_getcpuclockid.c ~ rthread_libc.c ~ rthread_np.c ~ rthread_sem.c ~ rthread_sig.c ~ rthread_sync.c ~ shlib_version + Symbols.map + rthread_cb.h > Use a Thread Information Block in both single and multi-threaded programs. > This stores errno, the cancelation flags, and related bits for each thread > and is allocated by ld.so or libc.a. This is an ABI break from 5.9-stable! > Make libpthread dlopen'able by moving the cancelation wrappers into libc > and doing locking and fork/errno handling via callbacks that libpthread > registers when it first initializes. 'errno' *must* be declared via > <errno.h> now! > Clean up libpthread's symbol exports like libc. > On powerpc, offset the TIB/TCB/TLS data from the register per the ELF spec. > Testing by various, particularly sthen@ and patrick@ > ok kettenis@ (guenther@) libssl ~ src/crypto/asn1/a_d2i_fp.c ~ src/crypto/asn1/a_type.c ~ src/crypto/asn1/tasn_dec.c ~ src/crypto/asn1/tasn_enc.c ~ src/crypto/evp/e_aes_cbc_hmac_sha1.c ~ src/crypto/evp/encode.c ~ src/crypto/evp/evp_enc.c + src/crypto/constant_time_locl.h > patch from openssl for multiple issues: > missing padding check in aesni functions > overflow in evp encode functions > use of invalid negative asn.1 types > ok beck (tedu@) ~ src/crypto/asn1/a_d2i_fp.c ~ src/crypto/asn1/a_type.c ~ src/crypto/asn1/tasn_dec.c ~ src/crypto/asn1/tasn_enc.c ~ src/crypto/evp/e_aes_cbc_hmac_sha1.c ~ src/crypto/evp/encode.c ~ src/crypto/evp/evp_enc.c + src/crypto/constant_time_locl.h TAGGED OPENBSD_5_8 > backport patch from openssl for multiple issues: > missing padding check in aesni functions > overflow in evp encode functions > use of invalid negative asn.1 types > ok beck (tedu@) ~ src/crypto/asn1/a_d2i_fp.c ~ src/crypto/asn1/a_type.c ~ src/crypto/asn1/tasn_dec.c ~ src/crypto/asn1/tasn_enc.c ~ src/crypto/evp/e_aes_cbc_hmac_sha1.c ~ src/crypto/evp/encode.c ~ src/crypto/evp/evp_enc.c ~ src/ssl/s3_pkt.c + src/crypto/constant_time_locl.h TAGGED OPENBSD_5_9 > backport patch from openssl for multiple issues: > missing padding check in aesni functions > overflow in evp encode functions > use of invalid negative asn.1 types > ok beck (tedu@) ~ src/crypto/opensslv.h TAGGED OPENBSD_5_9 > bump to 2.3.4 (bcook@) ~ src/crypto/evp/encode.c TAGGED OPENBSD_5_9 > prefer limits.h over sys/limits.h (bcook@) ~ src/crypto/opensslv.h TAGGED OPENBSD_5_8 > bump to 2.2.7 (bcook@) ~ src/crypto/evp/encode.c TAGGED OPENBSD_5_8 > prefer limits.h over sys/limits.h (bcook@) ~ src/crypto/evp/encode.c TAGGED OPENBSD_5_8 > prefer limits.h over sys/limits.h (bcook@) ~ src/ssl/s3_pkt.c TAGGED OPENBSD_5_9 > this chunk was NOT supposed to be committed. spotted by jsg. (tedu@) ~ src/crypto/asn1/a_d2i_fp.c ~ src/crypto/asn1/a_type.c ~ src/crypto/asn1/tasn_dec.c ~ src/crypto/asn1/tasn_enc.c ~ src/crypto/evp/e_aes_cbc_hmac_sha1.c ~ src/crypto/evp/encode.c ~ src/crypto/evp/evp_enc.c TAGGED OPENBSD_5_9 > revert the big change from yesterday to prepare for smaller commits. > (tedu@) ~ src/crypto/asn1/a_d2i_fp.c TAGGED OPENBSD_5_9 > be careful about consuming excessive memory by reading in chunks. > CVE-2016-2109 from openssl. (tedu@) ~ src/crypto/asn1/a_type.c ~ src/crypto/asn1/tasn_dec.c ~ src/crypto/asn1/tasn_enc.c TAGGED OPENBSD_5_9 > internal only negative types should not be handled here. > CVE-2016-2108 from openssl. (tedu@) ~ src/crypto/evp/e_aes_cbc_hmac_sha1.c TAGGED OPENBSD_5_9 > fix a padding oracle in aesni cbc mac check. there must be enough data > for both the mac and padding bytes. > CVE-2016-2107 from openssl (tedu@) ~ src/crypto/evp/encode.c ~ src/crypto/evp/evp_enc.c TAGGED OPENBSD_5_9 > fix for integer overflow in encode and encrypt update functions. > additionally, in EncodeUpdate, if the amount written would overflow, > return 0 instead to prevent bugs in the caller. > CVE-2016-2105 and CVE-2016-2106 from openssl. (tedu@) == libexec =========================================================== 07/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/libexec ftpd ~ Makefile ~ ftpd.c > Kill #ifdef INET6 occurrences in userland. > Prompted by and ok millert@ > (tcpdump and libpcap left untouched, the #ifdef force is too strong with > those) (jca@) ld.so ~ Makefile ~ Symbols.map ~ library.c ~ library_mquery.c ~ loader.c ~ resolve.h ~ alpha/ldasm.S ~ alpha/syscall.h ~ amd64/ldasm.S ~ amd64/syscall.h ~ arm/ldasm.S ~ arm/syscall.h ~ hppa/ldasm.S ~ hppa/syscall.h ~ i386/ldasm.S ~ i386/syscall.h ~ m88k/ldasm.S ~ m88k/syscall.h ~ mips64/ldasm.S ~ mips64/syscall.h ~ powerpc/ldasm.S ~ powerpc/syscall.h ~ sh/ldasm.S ~ sh/syscall.h ~ sparc/ldasm.S ~ sparc/syscall.h ~ sparc64/ldasm.S ~ sparc64/syscall.h + tib.c > Use a Thread Information Block in both single and multi-threaded programs. > This stores errno, the cancelation flags, and related bits for each thread > and is allocated by ld.so or libc.a. This is an ABI break from 5.9-stable! > Make libpthread dlopen'able by moving the cancelation wrappers into libc > and doing locking and fork/errno handling via callbacks that libpthread > registers when it first initializes. 'errno' *must* be declared via > <errno.h> now! > Clean up libpthread's symbol exports like libc. > On powerpc, offset the TIB/TCB/TLS data from the register per the ELF spec. > Testing by various, particularly sthen@ and patrick@ > ok kettenis@ (guenther@) ~ sh/ldasm.S > Move the set_tcb after getdents to keep L_cerr in range. > ok deraadt@ (guenther@) == regress =========================================================== 08/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/regress lib + libedit/readline/Makefile + libedit/readline/history.c > A few regression tests for libedit readline(3) compat code. > Not linked to the build for now because these tests still fail for > our libedit and because readline compat is not enabled in our build. > Test suite written by Bastian Maerkisch <[email protected]>. > KNF and some minor tweaks by me. (schwarze@) sys ~ kern/sosplice/Proc.pm ~ kern/sosplice/Remote.pm ~ kern/sosplice/funcs.pl ~ kern/sosplice/error/remote.pl ~ net/pf_divert/Proc.pm ~ net/pf_divert/Remote.pm > Fix some Perl statements perlcritic was bitching about: Variable > declared in conditional statement. (bluhm@) usr.bin ~ file/Makefile + file/t31.in + file/t31.out > Test for default (RTF file with an unrecognized character set). (nicm@) ~ file/Makefile + file/t32.in + file/t32.out > Add a PPM file test (truncated to just the header so it is text only). > (nicm@) - file/t23.in - file/t23.out ~ file/Makefile > Remove some unnecessary comments and t23 which has been disabled forever. > (nicm@) ~ file/Makefile + file/t11.in + file/t11.out > pcap file test (header of file only). (nicm@) ~ file/Makefile ~ file/t18.in + file/t19.in + file/t19.out > BE ELF object (just the header); also trim the LE object to just the > header as well. (nicm@) ~ file/Makefile + file/t33.in + file/t33.out > Add a test for pstring (a QDOS executable header). (nicm@) ~ ssh/cert-hostkey.sh ~ ssh/cert-userkey.sh ~ ssh/unittests/sshkey/test_sshkey.c > unit and regress tests for SHA256/512; ok markus (djm@) ~ ssh/cert-userkey.sh > Use a subshell for constructing key types to work around different sed > behaviours for -portable. (dtucker@) ~ ssh/unittests/sshbuf/test_sshbuf_misc.c > unit tests for sshbuf_dup_string() (djm@) ~ ssh/agent-getpeereid.sh > support doas (djm@) ~ ssh/cfginclude.sh > Set umask to prevent "Bad owner or permissions" errors. (dtucker@) ~ Makefile + fold/Makefile + fold/fold.sh > Regression tests for fold(1). > The lines containing SKIPUTF8 will be removed once the utility is fixed. > (schwarze@) ~ fmt/fmt.sh > These tests depended on whatever the user's locale was, > and the last one failed for LC_CTYPE=C. > Instead, ignore the user's locale and run each test twice, > once for UTF-8 and once for US-ASCII. > Problem reported by deraadt@. (schwarze@) ~ sed/sedtest.expected > Fix test after changing default column size from 60 to 80. > OK bentley@ (martijn@) usr.sbin ~ syslogd/RSyslogd.pm ~ syslogd/args-rsyslog-client-tcp.pl ~ syslogd/args-rsyslog-client-tls.pl ~ syslogd/args-rsyslog-client-udp.pl ~ syslogd/args-rsyslog-tcp.pl ~ syslogd/args-rsyslog-tls.pl ~ syslogd/args-rsyslog-udp.pl > To test syslogd compatibility rsyslog is used as remote server. > New rsyslog has other options and debug output, adapt test. (bluhm@) ~ httpd/tests/Proc.pm ~ httpd/tests/funcs.pl ~ httpd/tests/httpd.pl ~ ospfd/Proc.pm ~ relayd/Proc.pm ~ relayd/Remote.pm ~ relayd/funcs.pl ~ relayd/relayd.pl ~ relayd/remote.pl ~ syslogd/Proc.pm ~ syslogd/syslogd.pl > Fix some Perl statements perlcritic was bitching about: Variable > declared in conditional statement. (bluhm@) == sbin ============================================================== 09/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sbin dhclient ~ bpf.c ~ dhclient.8 > Move to /dev/bpf; ok tb jmc (natano@) ~ bpf.c > Use /dev/bpf0 instead of /dev/bpf (without loop though), as suggested by > sthen@. to make remote upgrades without media less painful. > ok tb@ (natano@) ifconfig ~ Makefile ~ ifconfig.c > Remove INET6 #ifdefs > ifconfig.c doesn't build without -DINET6, and those #ifdefs clutter the > code. ok bluhm@ henning@ (jca@) ~ brconfig.h > Do not print MPSAFE when the corresponding bit is set on the interface > flags. > This read-only flag is a hint for the network stack and does not matter > for end user, in fact exposing it just creates confusion. > ok kettenis@, deraadt@ (mpi@) sysctl ~ Makefile ~ sysctl.c > Kill #ifdef INET6 occurrences in userland. > Prompted by and ok millert@ > (tcpdump and libpcap left untouched, the #ifdef force is too strong with > those) (jca@) == share ============================================================= 10/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share man ~ man4/acpi.4 + man4/chvgpio.4 > chvgpio(4) (kettenis@) ~ man4/chvgpio.4 > spelling; (jmc@) == sys =============================================================== 11/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/alpha/include ~ bus.h > alias bus_space_{read,write}_raw to the non-raw counterparts > busses are little endian, so the non-raw ops are raw anyway. fixes > the kernel build after xge grew the use of the raw ops. (dlg@) arch/alpha/pci ~ pci_machdep.h > Initial support for MSI-X. Only supported on amd64 for now. I have diffs > to > actually use this in em(4) and xhci(4), but I'm not committing those yet > because we almost certainly need to save and restore the MSI-X registers > during suspend/resume. However, this allows mpi@ to play with > multiple-vector > support in networking hardware. > Requested by mpi@ > ok mlarkin@, mikeb@ (kettenis@) arch/amd64/amd64 ~ cpu.c > Revert previous commit. Calling sched_init_cpu() from > cpu_boot_secondary_processors() break suspend/resume. (kettenis@) ~ ioapic.c > Stop printing the "ioapic0: misconfigured as apic..." messages. Basically > all modern machines are "misconfigured". We simply have to configure them > and it is pointless to complain. (kettenis@) arch/amd64/conf ~ GENERIC > Add chvgpio(4), a driver for the GPIO controllers found on Intel's Cherry > View > SoC. (kettenis@) arch/amd64/include ~ i82093var.h ~ pci_machdep.h > Initial support for MSI-X. Only supported on amd64 for now. I have diffs > to > actually use this in em(4) and xhci(4), but I'm not committing those yet > because we almost certainly need to save and restore the MSI-X registers > during suspend/resume. However, this allows mpi@ to play with > multiple-vector > support in networking hardware. > Requested by mpi@ > ok mlarkin@, mikeb@ (kettenis@) arch/amd64/pci ~ pci_machdep.c > Initial support for MSI-X. Only supported on amd64 for now. I have diffs > to > actually use this in em(4) and xhci(4), but I'm not committing those yet > because we almost certainly need to save and restore the MSI-X registers > during suspend/resume. However, this allows mpi@ to play with > multiple-vector > support in networking hardware. > Requested by mpi@ > ok mlarkin@, mikeb@ (kettenis@) arch/amd64/stand/efiboot ~ efidev.c > Shuffle gpt/mbr code around a bit to make it more like other searches > for the disklabel. Tweak a few comments to make it more clear what > is happening. No intentional functional change. > ok yasuoka@ (krw@) ~ efidev.c > Fix efiboot not to hang with a disk whose block size < 512. > Report and diff from Vegar Linge Haaland > ok krw (yasuoka@) arch/arm/conf ~ files.arm > Rework mainbus and implement simplebus to be able to span a tree-like > topology based on device tree information. Introduce a common attach > args structure to be used for all fdt-capable bus devices. > ok jsg@ kettenis@ (patrick@) arch/arm/cortex ~ cortex.c ~ files.cortex > Rework mainbus and implement simplebus to be able to span a tree-like > topology based on device tree information. Introduce a common attach > args structure to be used for all fdt-capable bus devices. > ok jsg@ kettenis@ (patrick@) arch/arm/include + fdt.h > Rework mainbus and implement simplebus to be able to span a tree-like > topology based on device tree information. Introduce a common attach > args structure to be used for all fdt-capable bus devices. > ok jsg@ kettenis@ (patrick@) ~ pci_machdep.h > Initial support for MSI-X. Only supported on amd64 for now. I have diffs > to > actually use this in em(4) and xhci(4), but I'm not committing those yet > because we almost certainly need to save and restore the MSI-X registers > during suspend/resume. However, this allows mpi@ to play with > multiple-vector > support in networking hardware. > Requested by mpi@ > ok mlarkin@, mikeb@ (kettenis@) arch/arm/mainbus ~ cpu_mainbus.c ~ mainbus.c ~ mainbus.h > Rework mainbus and implement simplebus to be able to span a tree-like > topology based on device tree information. Introduce a common attach > args structure to be used for all fdt-capable bus devices. > ok jsg@ kettenis@ (patrick@) arch/arm/simplebus + simplebus.c > Rework mainbus and implement simplebus to be able to span a tree-like > topology based on device tree information. Introduce a common attach > args structure to be used for all fdt-capable bus devices. > ok jsg@ kettenis@ (patrick@) arch/arm/xscale ~ pxa2x0_mmc.c > Add support for changing the bus width to the sdmmc subsystem and the > sdhc(4) > controller. Use this to switch SD cards to a 4-bit bus if they support it. > ok deraadt@, jsg@ (kettenis@) ~ files.pxa2x0 > Rework mainbus and implement simplebus to be able to span a tree-like > topology based on device tree information. Introduce a common attach > args structure to be used for all fdt-capable bus devices. > ok jsg@ kettenis@ (patrick@) ~ pxa2x0_mmc.c > Add Dual Data Rate support for eMMC at 52MHz. (kettenis@) arch/armish/conf ~ files.armish > Rework mainbus and implement simplebus to be able to span a tree-like > topology based on device tree information. Introduce a common attach > args structure to be used for all fdt-capable bus devices. > ok jsg@ kettenis@ (patrick@) arch/armish/dev ~ i80321_mainbus.c ~ obio.c > Rework mainbus and implement simplebus to be able to span a tree-like > topology based on device tree information. Introduce a common attach > args structure to be used for all fdt-capable bus devices. > ok jsg@ kettenis@ (patrick@) arch/armv7/armv7 ~ armv7.c ~ armv7var.h > Remove unused match function. The armv7 platforms implement their own, > which are more specific. > ok kettenis@ (patrick@) arch/armv7/conf ~ GENERIC ~ RAMDISK ~ files.armv7 > Rework mainbus and implement simplebus to be able to span a tree-like > topology based on device tree information. Introduce a common attach > args structure to be used for all fdt-capable bus devices. > ok jsg@ kettenis@ (patrick@) arch/armv7/exynos ~ exesdhc.c > Add support for changing the bus width to the sdmmc subsystem and the > sdhc(4) > controller. Use this to switch SD cards to a 4-bit bus if they support it. > ok deraadt@, jsg@ (kettenis@) ~ files.exynos > Rework mainbus and implement simplebus to be able to span a tree-like > topology based on device tree information. Introduce a common attach > args structure to be used for all fdt-capable bus devices. > ok jsg@ kettenis@ (patrick@) ~ exynos.c > Add check to armv7 platform bus match code, so that those busses only > attach if we are running in legacy mode. > ok jsg@ (patrick@) ~ exesdhc.c > Add Dual Data Rate support for eMMC at 52MHz. (kettenis@) arch/armv7/imx ~ imxesdhc.c > Add support for changing the bus width to the sdmmc subsystem and the > sdhc(4) > controller. Use this to switch SD cards to a 4-bit bus if they support it. > ok deraadt@, jsg@ (kettenis@) ~ files.imx > Rework mainbus and implement simplebus to be able to span a tree-like > topology based on device tree information. Introduce a common attach > args structure to be used for all fdt-capable bus devices. > ok jsg@ kettenis@ (patrick@) ~ imx.c > Add check to armv7 platform bus match code, so that those busses only > attach if we are running in legacy mode. > ok jsg@ (patrick@) ~ imxesdhc.c > Add Dual Data Rate support for eMMC at 52MHz. (kettenis@) ~ imxesdhc.c > Reset the bus width back to 1-bit when resetting the host. Makes > imxesdhc(4) > work on the cubox-i, whereu-boot leaves the controller in 4-bit mode. > (kettenis@) ~ imxesdhc.c > add support for changing the bus width and set the 4-bit mode capability > ok patrick@ kettenis@ (jsg@) ~ imxesdhc.c > Add DMA support. It uses ADMA2 "Internal DMA" that is compatible with the > SD Host Controller standard. > ok patrick@ (kettenis@) arch/armv7/include + fdt.h > Rework mainbus and implement simplebus to be able to span a tree-like > topology based on device tree information. Introduce a common attach > args structure to be used for all fdt-capable bus devices. > ok jsg@ kettenis@ (patrick@) arch/armv7/omap ~ ommmc.c > Add support for changing the bus width to the sdmmc subsystem and the > sdhc(4) > controller. Use this to switch SD cards to a 4-bit bus if they support it. > ok deraadt@, jsg@ (kettenis@) ~ ommmc.c > add support for changing the bus width to ommmc and set the 4-bit mode > capability > ok kettenis@ (jsg@) ~ ommmc.c > add an empty ommmc_dump_regs() to fix the SDHC_DEBUG build (jsg@) ~ files.omap > Rework mainbus and implement simplebus to be able to span a tree-like > topology based on device tree information. Introduce a common attach > args structure to be used for all fdt-capable bus devices. > ok jsg@ kettenis@ (patrick@) ~ omap.c > Add check to armv7 platform bus match code, so that those busses only > attach if we are running in legacy mode. > ok jsg@ (patrick@) ~ ommmc.c > Add Dual Data Rate support for eMMC at 52MHz. (kettenis@) ~ ommmc.c > set the high speed enable bit if the timing isn't SDMMC_TIMING_LEGACY > ok patrick@ kettenis@ (jsg@) arch/armv7/sunxi ~ files.sunxi > Rework mainbus and implement simplebus to be able to span a tree-like > topology based on device tree information. Introduce a common attach > args structure to be used for all fdt-capable bus devices. > ok jsg@ kettenis@ (patrick@) ~ sunxi.c > Add check to armv7 platform bus match code, so that those busses only > attach if we are running in legacy mode. > ok jsg@ (patrick@) arch/armv7/vexpress ~ files.vexpress > Rework mainbus and implement simplebus to be able to span a tree-like > topology based on device tree information. Introduce a common attach > args structure to be used for all fdt-capable bus devices. > ok jsg@ kettenis@ (patrick@) ~ vexpress.c > Add check to armv7 platform bus match code, so that those busses only > attach if we are running in legacy mode. > ok jsg@ (patrick@) arch/hppa/include ~ pci_machdep.h > Initial support for MSI-X. Only supported on amd64 for now. I have diffs > to > actually use this in em(4) and xhci(4), but I'm not committing those yet > because we almost certainly need to save and restore the MSI-X registers > during suspend/resume. However, this allows mpi@ to play with > multiple-vector > support in networking hardware. > Requested by mpi@ > ok mlarkin@, mikeb@ (kettenis@) arch/hppa64/include ~ pci_machdep.h > Initial support for MSI-X. Only supported on amd64 for now. I have diffs > to > actually use this in em(4) and xhci(4), but I'm not committing those yet > because we almost certainly need to save and restore the MSI-X registers > during suspend/resume. However, this allows mpi@ to play with > multiple-vector > support in networking hardware. > Requested by mpi@ > ok mlarkin@, mikeb@ (kettenis@) arch/i386/i386 ~ cpu.c > Revert previous commit. Calling sched_init_cpu() from > cpu_boot_secondary_processors() break suspend/resume. (kettenis@) ~ ioapic.c > Stop printing the "ioapic0: misconfigured as apic..." messages. Basically > all modern machines are "misconfigured". We simply have to configure them > and it is pointless to complain. (kettenis@) arch/i386/pci ~ pci_machdep.h > Initial support for MSI-X. Only supported on amd64 for now. I have diffs > to > actually use this in em(4) and xhci(4), but I'm not committing those yet > because we almost certainly need to save and restore the MSI-X registers > during suspend/resume. However, this allows mpi@ to play with > multiple-vector > support in networking hardware. > Requested by mpi@ > ok mlarkin@, mikeb@ (kettenis@) arch/landisk/include ~ pci_machdep.h > Initial support for MSI-X. Only supported on amd64 for now. I have diffs > to > actually use this in em(4) and xhci(4), but I'm not committing those yet > because we almost certainly need to save and restore the MSI-X registers > during suspend/resume. However, this allows mpi@ to play with > multiple-vector > support in networking hardware. > Requested by mpi@ > ok mlarkin@, mikeb@ (kettenis@) arch/loongson/include ~ pci_machdep.h > Initial support for MSI-X. Only supported on amd64 for now. I have diffs > to > actually use this in em(4) and xhci(4), but I'm not committing those yet > because we almost certainly need to save and restore the MSI-X registers > during suspend/resume. However, this allows mpi@ to play with > multiple-vector > support in networking hardware. > Requested by mpi@ > ok mlarkin@, mikeb@ (kettenis@) arch/macppc/dev ~ smu.c > Fall back to "safe-value" when "unmanage-value" is not evailable to > configure fan speeds. > from mglocker@, ok kettenis@ (mpi@) arch/macppc/include ~ bus.h > implement bus_space_read_raw_X and bus_space_write_raw_X > with feedback from kettenis@ > fixes building a kernel with xge, which might actually work on these > machines now. (dlg@) ~ pci_machdep.h > Initial support for MSI-X. Only supported on amd64 for now. I have diffs > to > actually use this in em(4) and xhci(4), but I'm not committing those yet > because we almost certainly need to save and restore the MSI-X registers > during suspend/resume. However, this allows mpi@ to play with > multiple-vector > support in networking hardware. > Requested by mpi@ > ok mlarkin@, mikeb@ (kettenis@) arch/octeon/include ~ pci_machdep.h > Initial support for MSI-X. Only supported on amd64 for now. I have diffs > to > actually use this in em(4) and xhci(4), but I'm not committing those yet > because we almost certainly need to save and restore the MSI-X registers > during suspend/resume. However, this allows mpi@ to play with > multiple-vector > support in networking hardware. > Requested by mpi@ > ok mlarkin@, mikeb@ (kettenis@) arch/powerpc/include ~ tcb.h > Use a Thread Information Block in both single and multi-threaded programs. > This stores errno, the cancelation flags, and related bits for each thread > and is allocated by ld.so or libc.a. This is an ABI break from 5.9-stable! > Make libpthread dlopen'able by moving the cancelation wrappers into libc > and doing locking and fork/errno handling via callbacks that libpthread > registers when it first initializes. 'errno' *must* be declared via > <errno.h> now! > Clean up libpthread's symbol exports like libc. > On powerpc, offset the TIB/TCB/TLS data from the register per the ELF spec. > Testing by various, particularly sthen@ and patrick@ > ok kettenis@ (guenther@) ~ cpu.h > Flush page (through the direct map) before mapping it into AGP. Fixes > artifacts seen in X on some G5 machines. Unfortunately not enough to fix > G4 machines. With help from Marcus Glocker. > ok mpi@ (kettenis@) arch/sgi/pci ~ pci_machdep.h > Initial support for MSI-X. Only supported on amd64 for now. I have diffs > to > actually use this in em(4) and xhci(4), but I'm not committing those yet > because we almost certainly need to save and restore the MSI-X registers > during suspend/resume. However, this allows mpi@ to play with > multiple-vector > support in networking hardware. > Requested by mpi@ > ok mlarkin@, mikeb@ (kettenis@) arch/socppc/include ~ pci_machdep.h > Initial support for MSI-X. Only supported on amd64 for now. I have diffs > to > actually use this in em(4) and xhci(4), but I'm not committing those yet > because we almost certainly need to save and restore the MSI-X registers > during suspend/resume. However, this allows mpi@ to play with > multiple-vector > support in networking hardware. > Requested by mpi@ > ok mlarkin@, mikeb@ (kettenis@) arch/sparc64/dev ~ iommu.c ~ iommuvar.h ~ viommu.c > Some hardware (such as the onboard dc(4) of the Netra X1) has a broken DMA > engine that might attempt to read beyond the end of the buffer that was > programmed. The IOMMU catches this "DMA overrun" and throws an > unrecoverable > error at us, at which point we have no choice but to panic. To avoid this > implement a BUS_DMA_OVERRUN flag that maps an additional scratch page at > the > end of the vdma address range. DMA requests will spill over into this > page, > which just returns zeroes. > Thanks to matthieu@ for giving me access to a machine with the problem. > ok deraadt@, beck@ (kettenis@) arch/sparc64/include ~ pci_machdep.h > Initial support for MSI-X. Only supported on amd64 for now. I have diffs > to > actually use this in em(4) and xhci(4), but I'm not committing those yet > because we almost certainly need to save and restore the MSI-X registers > during suspend/resume. However, this allows mpi@ to play with > multiple-vector > support in networking hardware. > Requested by mpi@ > ok mlarkin@, mikeb@ (kettenis@) ~ bus.h > Some hardware (such as the onboard dc(4) of the Netra X1) has a broken DMA > engine that might attempt to read beyond the end of the buffer that was > programmed. The IOMMU catches this "DMA overrun" and throws an > unrecoverable > error at us, at which point we have no choice but to panic. To avoid this > implement a BUS_DMA_OVERRUN flag that maps an additional scratch page at > the > end of the vdma address range. DMA requests will spill over into this > page, > which just returns zeroes. > Thanks to matthieu@ for giving me access to a machine with the problem. > ok deraadt@, beck@ (kettenis@) arch/sparc64/sparc64 ~ cpu.c > Revert previous commit. Calling sched_init_cpu() from > cpu_boot_secondary_processors() break suspend/resume. (kettenis@) conf ~ files > Stop using a soft-interrupt context to process incoming network packets. > Use a new task that runs holding the KERNEL_LOCK to execute mp-unsafe > code. Our current goal is to progressively move input functions to the > unlocked task. > This gives a small performance boost confirmed by Hrvoje Popovski's > IPv4 forwarding measurement: > before: after: > send receive send receive > 400kpps 400kpps 400kpps 400kpps > 500kpps 500kpps 500kpps 500kpps > 600kpps 600kpps 600kpps 600kpps > 650kpps 650kpps 650kpps 640kpps > 700kpps 700kpps 700kpps 700kpps > 720kpps 640kpps 720kpps 710kpps > 800kpps 640kpps 800kpps 650kpps > 1.4Mpps 570kpps 1.4Mpps 590kpps > 14Mpps 570kpps 14Mpps 590kpps > ok kettenis@, bluhm@, dlg@ (mpi@) ~ param.c > Revert the previous commit. There still are bad interactions between the > pagedaemon and the buffer cache. > requested by deraadt@ (kettenis@) dev/acpi ~ bytgpio.c > Print missing newline if we bail out because of a uid mismatch. (kettenis@) ~ bytgpio.c > Don't mask pins configured as direct IRQ. Those are tied directly to the > APIC > and don't generate a GPIO controller interrupt. Masking them menas devices > relying on those APIC interrupts will break. Unbreaks the keyboard on the > Asus x205ta, which got broken in rev 1.6. (kettenis@) ~ acpithinkpad.c > Return ENOTTY in acpithinkpad backlight get/set ioctls if the maximum > value is 0 to match the behaviour when the callbacks are not set. > Prevents a divide by zero in wsconsctl(8) reported by Caspar Schutijser. > earlier version ok jung@ deraadt@ kettenis@ (jsg@) ~ acpireg.h ~ acpiec.c > Add defines for Operation Region Address Space Identifiers and use them > when > acpiec(4) calls the _REG method. > ok mlarkin@ (kettenis@) ~ bytgpio.c ~ dsdt.c > Implement ACPI 5.0 GeneralPurposeIo OpRegion support. This basically > allows > AML to peek and poke at GPIO pins as if it were reading and writing > registers. For now this only implements peeking at pins. It will print > a message if AML attempt to poke at a pin. And it will panic if the > assumptions made in the code are violated. > ok mlarkin@ (kettenis@) ~ files.acpi + chvgpio.c > Add chvgpio(4), a driver for the GPIO controllers found on Intel's Cherry > View > SoC. (kettenis@) ~ dsdt.h > Add macros for interrupt trigger mode as encoded in GPIO resources. > (kettenis@) ~ bytgpio.c ~ chvgpio.c > Plug some memory leaks and do proper cleanup in error paths. (kettenis@) ~ acpi.c ~ amltypes.h > Make sure devices listed by a device's _DEP method are attached before > we attach the device itself. The _DEP methode, introduced in ACPI 5.0, > is a hint that the device in question depends on OpRegion support from > the devices listed by _DEP, so we have to order them the proper way. > To prevent us from attaching those devices again when we encounter them > later walking down the device tree, keep track of our attempts to > attach a device driver to them using aflag in the aml_node structure. > ok guenther@ (kettenis@) ~ amltypes.h ~ bytgpio.c ~ chvgpio.c ~ dsdt.c > Add support for writing gpio pins. (kettenis@) ~ chvgpio.c > Call _REG to register GeneralPuproseIo address space support. (kettenis@) ~ chvgpio.c > Add support for level, active low gpio interrupts. (kettenis@) dev/ic ~ rtsx.c ~ w83l518d_sdmmc.c > Add support for changing the bus width to the sdmmc subsystem and the > sdhc(4) > controller. Use this to switch SD cards to a 4-bit bus if they support it. > ok deraadt@, jsg@ (kettenis@) ~ dc.c > Use BUS_DMA_OVERRUN to cope with the broken DMA engine of the Davicom > DM9102 > found on some Sun sparc64 machines. This fixes the unrecoverable DMA > errors > people have been seeing ever since dlg@ made changes to the pool code that > changes the memory layout. (kettenis@) ~ rtsx.c ~ w83l518d_sdmmc.c > Add Dual Data Rate support for eMMC at 52MHz. (kettenis@) ~ rtsx.c > Fix the DMA transfer code to repect the block size in the sdmmc command. > ok stsp@ (kettenis@) ~ rtsx.c > Round the requested clock frequency down to a support value instead of > insisting on an exact match. Add support for a 50 MHz clock. > ok stsp@ (kettenis@) ~ rtsx.c > Make sure we always update both bits that control the bus width. Also make > sure that we reset the bus width (to 1-bit) after powering up the bus. > Apparently the register write fails if the bus isn't powered on. > Implement the chip callback function and advertise 4-bit bus support. > ok stsp@ (kettenis@) dev/pci ~ pcidevs > samsung use the same pci device id for multiple nvme parts (dlg@) ~ pcidevs.h ~ pcidevs_data.h > regen (dlg@) ~ pcireg.h > Initial support for MSI-X. Only supported on amd64 for now. I have diffs > to > actually use this in em(4) and xhci(4), but I'm not committing those yet > because we almost certainly need to save and restore the MSI-X registers > during suspend/resume. However, this allows mpi@ to play with > multiple-vector > support in networking hardware. > Requested by mpi@ > ok mlarkin@, mikeb@ (kettenis@) ~ if_bnx.c > r1.10 of if_bnx.c effectively removed the limit on the number of segments > in > the tx dma maps, apparently to allow heavily fragmented packets to be sent. > The tx ring accounting in bnx_start assumed that the longest fragment chain > we'd see was BNX_MAX_SEGMENTS, so sending a heavily fragmented packet when > the > ring was already full could cause it to overflow. > In the 10 years since r1.10, we've started defragmenting packets if they > won't fit in the dma map, so we can limit the maps to BNX_MAX_SEGMENTS > again. > While we're here, ensure there's always at least one slot on the tx ring > free, > for consistency between drivers. > Fixes packet corruption seen by otto@ > ok mpi@ dlg@ (jmatthew@) ~ if_bnx.c TAGGED OPENBSD_5_9 > r1.10 of if_bnx.c effectively removed the limit on the number of segments > in > the tx dma maps, apparently to allow heavily fragmented packets to be sent. > The tx ring accounting in bnx_start assumed that the longest fragment chain > we'd see was BNX_MAX_SEGMENTS, so sending a heavily fragmented packet when > the > ring was already full could cause it to overflow. > In the 10 years since r1.10, we've started defragmenting packets if they > won't fit in the dma map, so we can limit the maps to BNX_MAX_SEGMENTS > again. > While we're here, ensure there's always at least one slot on the tx ring > free, > for consistency between drivers. > Fixes packet corruption seen by otto@ > ok mpi@ dlg@ (jmatthew@) ~ agp_apple.c TAGGED OPENBSD_5_9 > Flush page (through the direct map) before mapping it into AGP. Fixes > artifacts seen in X on some G5 machines. Unfortunately not enough to fix > G4 machines. With help from Marcus Glocker. > ok mpi@ (kettenis@) dev/sdmmc ~ sdhc.c ~ sdmmc.c ~ sdmmc_mem.c ~ sdmmcchip.h ~ sdmmcreg.h ~ sdmmcvar.h > Add support for changing the bus width to the sdmmc subsystem and the > sdhc(4) > controller. Use this to switch SD cards to a 4-bit bus if they support it. > ok deraadt@, jsg@ (kettenis@) ~ sdhc.c > Always write block count. This fixes the DMA issues on Bay Trail. > (kettenis@) ~ sdmmc_mem.c > Add a small delay after switching an MMC card into high-speed mode to make > sure it has witched before changing the bus clock speed. (kettenis@) ~ sdhc.c ~ sdmmc_mem.c > Add bus width switching support for MMC. Enable 8-bit bus support on > sdhc(4) controllers that support it. Mostly from NetBSD. > This makes the raw transfer rate of the eMMC on the Lenovo Ideacentre > Stick 300 go up to 40 MB/s. (kettenis@) ~ sdhc.c > Print base clock frequency. > ok deraadt@, patrick@ (kettenis@) ~ sdmmc.c > Print some capabilities. > ok deraadt@, patrick@ (kettenis@) ~ sdmmc.c ~ sdmmc_io.c ~ sdmmc_mem.c ~ sdmmcreg.h ~ sdmmcvar.h > Add high-speed support for SD cards. In theory this should double the > transfer rates to and from the card. In practice the improvement will be > smaller, but I am seeing serious improvement in the read speeds. > (kettenis@) ~ sdhc.c > Print SD host controller version. (kettenis@) ~ sdmmc_scsi.c > Populate SCSI inquiry data with information from SD and MMC cards. > Code is slightly more convoluted to avoid using strncpy(9). > ok jsg@, millert@, deraadt@ (kettenis@) ~ sdhc.c ~ sdmmc.c ~ sdmmc_io.c ~ sdmmc_mem.c ~ sdmmcchip.h ~ sdmmcreg.h ~ sdmmcvar.h > Add Dual Data Rate support for eMMC at 52MHz. (kettenis@) ~ sdmmc_mem.c ~ sdmmcchip.h > Bump up the clock to 25 MHz before trying to read the SCR register of an SD > card. Data transfers don't seem to work on the Realtek RTS5229 Card Reader > if the clock frequency is too low, and reading the SCR requires a data > transfer. (kettenis@) kern ~ init_main.c > Stop using a soft-interrupt context to process incoming network packets. > Use a new task that runs holding the KERNEL_LOCK to execute mp-unsafe > code. Our current goal is to progressively move input functions to the > unlocked task. > This gives a small performance boost confirmed by Hrvoje Popovski's > IPv4 forwarding measurement: > before: after: > send receive send receive > 400kpps 400kpps 400kpps 400kpps > 500kpps 500kpps 500kpps 500kpps > 600kpps 600kpps 600kpps 600kpps > 650kpps 650kpps 650kpps 640kpps > 700kpps 700kpps 700kpps 700kpps > 720kpps 640kpps 720kpps 710kpps > 800kpps 640kpps 800kpps 650kpps > 1.4Mpps 570kpps 1.4Mpps 590kpps > 14Mpps 570kpps 14Mpps 590kpps > ok kettenis@, bluhm@, dlg@ (mpi@) ~ kern_sysctl.c > Make KERN_FILE_BYPID return ESRCH when PID not found, both in sysctl and > offline paths. More polishing to come. > Input and okay bluhm@ & kettenis@. (zhuk@) net ~ if_spppsubr.c > Remove a bogus "else" that was causing breakage with LCP echoes, > bug introduced in r1.138. > Reported at https://twitter.com/DarkSoul4242/status/722365165262405633 > (twitter is *NOT* the place to report bugs!) and in > https://marc.info/?l=openbsd-bugs&m=145988918010707&w=2, > pointed out by tb@ (sthen@) ~ if_spppsubr.c ~ rtable.c ~ route.c > Simplify life for routing table implementations by requiring that > rtable_walk > callbacks return EAGAIN if they modify the routing table. While we're > here, > simplify life for rtable_walk callers by moving the loop that restarts the > walk on EAGAIN into rtable_walk itself. > Flushing cloned routes on interface state changes becomes a bit more > inefficient, but this can be improved later. > ok mpi@ dlg@ (jmatthew@) ~ pf.c > Put back a panic() if an incoming packet already has a statekey. > Apparently nobody can hit this condition anymore or people do not > report bugs if their kernel do not panic. > ok dlg@, sashan@ (mpi@) - netisr.c ~ if.c ~ netisr.h > Stop using a soft-interrupt context to process incoming network packets. > Use a new task that runs holding the KERNEL_LOCK to execute mp-unsafe > code. Our current goal is to progressively move input functions to the > unlocked task. > This gives a small performance boost confirmed by Hrvoje Popovski's > IPv4 forwarding measurement: > before: after: > send receive send receive > 400kpps 400kpps 400kpps 400kpps > 500kpps 500kpps 500kpps 500kpps > 600kpps 600kpps 600kpps 600kpps > 650kpps 650kpps 650kpps 640kpps > 700kpps 700kpps 700kpps 700kpps > 720kpps 640kpps 720kpps 710kpps > 800kpps 640kpps 800kpps 650kpps > 1.4Mpps 570kpps 1.4Mpps 590kpps > 14Mpps 570kpps 14Mpps 590kpps > ok kettenis@, bluhm@, dlg@ (mpi@) ~ if_spppsubr.c TAGGED OPENBSD_5_9 > MFC if_spppsubr.c r1.151 > Remove a bogus "else" that was causing breakage with LCP echoes, > bug introduced in r1.138. > (specifically, when the line was quiescent we should have been sending > echoes, the bug caused this not to occur resulting in some unwanted > termination req's). (sthen@) ~ if.c TAGGED OPENBSD_5_9 > Do not export the IFXF_MPSAFE flag to userland, it is a kernel-only > hint. > ok kettenis@, deraadt@ (mpi@) net80211 ~ ieee80211_input.c > IEEE 802.11 sequence numbers wrap at 12 bit. > Fix a case where ieee80211_ba_input() failed to account for that. > ok tb@ (stsp@) ~ ieee80211_input.c > Fix a corner case of 12-bit arithmetic: also increment the ba_winmiss > counter if sn == 0 and ba_missedsn == 0xfff. > ok stsp@ (tb@) ~ ieee80211_node.c TAGGED OPENBSD_5_9 > Merge ieee80211_node.c r1.100 to 5.9-stable. > Fixes iwi(4) and perhaps other wireless devices. > ok sthen@ (stsp@) netinet ~ ip_input.c > Make ip_forward() use the route entry fetched in in_ouraddr() when it is > possible. > This reduce the number of lookups to 1 for non-multicast traffic when PF > is disable. > Tested by Hrvoje Popovski who confirmed that benchmark numbers are now as > good as with a single cache entry. > ok visa@, bluhm@ (mpi@) ~ ip_output.c > Preserve DiffServ value when fragmenting an ipv4 packet. > Ok phessler@, henning@ (vgross@) ~ ip_input.c > Use rtalloc_mpath() when checking for local route entries because we > are now using the returned route for forwarding as well. > This restore the behavior of r1.274 when using mpath entries for > forwarding. > ok visa@, henning@ (mpi@) netinet6 ~ ip6_forward.c > Merge two identical code paths. > ok benno@, visa@ (mpi@) ~ nd6_rtr.c > Simplify life for routing table implementations by requiring that > rtable_walk > callbacks return EAGAIN if they modify the routing table. While we're > here, > simplify life for rtable_walk callers by moving the loop that restarts the > walk on EAGAIN into rtable_walk itself. > Flushing cloned routes on interface state changes becomes a bit more > inefficient, but this can be improved later. > ok mpi@ dlg@ (jmatthew@) ~ ip6_input.c > Remove duplicate check. > ok sthen@, visa@ (mpi@) sys ~ gmon.h > Declare moncontrol(3) APIs in <sys/gmon.h> > Export _gmonparam again. > Make gcrt0.o use an reserved name for _monstartup() > ok millert@ (guenther@) tmpfs ~ tmpfs_vnops.c > Fix some issues wrt timestamp updating. The tmpfs_read() and > tmpfs_readlink() functions ignore the noatime mount option, tmpfs_read() > should not update atime when zero bytes have been requested (as per > posix) and tmpfs_write() should update mtime and ctime (as per posix). > ok espie (natano@) uvm ~ uvm_map.c > Remove uvm_mapentry_freecmp which has been unused for years > Found by David Hill with clang. (stefan@) ~ uvm_amap.c ~ uvm_amap.h ~ uvm_anon.c ~ uvm_anon.h ~ uvm_fault.c ~ uvm_stat.c ~ uvmexp.h > Wait for RAM in uvm_fault when allocating uvm structures fails > Only fail hard when running out of swap space also, as suggested by > kettenis@ > While there, let amap_add() return a success status and handle > amap_add() errors in uvm_fault() similar to other out of RAM situations. > These bits are needed for further amap reorganization diffs. > lots of feedback and ok kettenis@ (stefan@) ~ uvm_amap.c ~ uvm_amap.h ~ uvm_map.c > Additional parameter for amap_alloc(). > It is supposed to control whether an amap should allocate memory > to store anon pointers lazily or upfront. Needed for upcoming amap > changes. > ok kettenis@ (stefan@) == usr.bin =========================================================== 12/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin file ~ magic-load.c ~ magic-test.c ~ magic.h > Add support for 'clear' test, and fix 'default' to expand the result > string if any (used by, for example, rtf). (nicm@) ~ magic-test.c > Remove __unused that are now lies. (nicm@) ~ magic-load.c > Trim = prefix from regex (it a noop). (nicm@) ~ magic-dump.c ~ magic-load.c ~ magic-test.c ~ magic.h > Add support for 'name' and 'use' which allows more of the latest magic > files to work unchanged. (We are still missing 'indirect' and a few > other bits.) (nicm@) ~ magic-test.c > Use the right size (include the length byte) when working out if a > pstring is too big. (nicm@) ~ magic-load.c > Exact match use and name with strcmp rather than prefix with strncmp. > (nicm@) ~ file.c ~ magic.h > Tidy up some #include lines. (nicm@) fstat ~ Makefile ~ fstat.c > Kill #ifdef INET6 occurrences in userland. > Prompted by and ok millert@ > (tcpdump and libpcap left untouched, the #ifdef force is too strong with > those) (jca@) ftp ~ Makefile ~ fetch.c ~ main.c > Remove #ifdef INET6 bits, missed in a commit earlier this week > This probably broke passive FTP on IPv6 and [ip::v6]:port syntax in > RAMDISK ftp(1), sorry about that. > The diff was initially ok millert@ (jca@) midiplay ~ midiplay.c > Fix one of the reads past the end of the buffer. Found > by Geoff Hill, fix proposed by jsg@ and zhuk@. (ratchov@) mklocale ~ mklocale.1 ~ yacc.y > Delete encoding code for the unused TODIGIT information. > I'm not aware of plans to add any TODIGIT support, > and when shown on tech@, people were more or less indifferent > and showed confusion about what this code even did. > But the encoding code was buggy, in particular lacking validity > checks, and hence clobbered other important data, in particular > character type and character width data, with consequences that > are hard to judge. (schwarze@) passwd ~ local_passwd.c > Switch to getpwnam_shadow() now that getpwnam() no longer opens the shadow > database; OK deraadt@ sthen@ (tim@) ssh ~ auth2-chall.c ~ auth2.c ~ kex.h ~ kexc25519.c ~ monitor.c ~ servconf.c ~ sftp-client.c ~ ssh-agent.c ~ ssh-keygen.c ~ sshbuf-misc.c ~ sshbuf.h ~ sshconnect2.c ~ sshd.c > fix signed/unsigned errors reported by clang-3.7; add > sshbuf_dup_string() to replace a common idiom of > strdup(sshbuf_ptr()) with better safety checking; > feedback and ok markus@ (djm@) ~ key.c ~ ssh-keygen.c ~ sshkey.c ~ sshkey.h > support SHA256 and SHA512 RSA signatures in certificates; > ok markus@ (djm@) ~ dh.c ~ dh.h ~ kex.c ~ kex.h ~ kexdh.c ~ kexdhc.c ~ kexdhs.c ~ monitor.c ~ myproposal.h ~ ssh-keyscan.c ~ ssh_api.c ~ sshconnect2.c ~ sshd.c > add support for additional fixed DH groups from > draft-ietf-curdle-ssh-kex-sha2-03 > diffie-hellman-group14-sha256 (2K group) > diffie-hellman-group16-sha512 (4K group) > diffie-hellman-group18-sha512 (8K group) > based on patch from Mark D. Baushke and Darren Tucker > ok markus@ (djm@) ~ sshd.c > unbreak config parsing on reexec from previous commit (djm@) ~ ttymodes.h > Implement IUTF8 as per draft-sgtatham-secsh-iutf8-00. Patch from Simon > Tatham, ok markus@ (dtucker@) ~ PROTOCOL.agent > add ed25519 keys that are supported but missing from this > documents; from Peter Moody (djm@) ~ PROTOCOL.certkeys > correct some typos and remove a long-stale XXX note. > add specification for ed25519 certificates > mention no host certificate options/extensions are currently defined > pointed out by Simon Tatham (djm@) ~ PROTOCOL.chacha20poly1305 > clarify ordering of subkeys; pointed out by ietf-ssh AT stbuehler.de (djm@) ~ ssh-keygen.1 > make nethack^wrandomart fingerprint flag more readily searchable > pointed out by Matt Johnston (djm@) ~ servconf.c > don't forget to include StreamLocalBindUnlink in the config > dump output (djm@) ~ servconf.c > fix overriding of StreamLocalBindMask and StreamLocalBindUnlink in > Match blocks; found the hard way Rogan Dawes (djm@) ~ ssh-keygen.1 > correct article; (jmc@) ~ PROTOCOL.agent > fix junk characters after quotes (djm@) ~ readconf.c ~ readconf.h ~ ssh.1 ~ ssh.c ~ ssh_config.5 > IdentityAgent for specifying specific agent sockets; ok djm@ (markus@) ~ servconf.c > Fix inverted logic for updating StreamLocalBindMask which would cause the > server to set an invalid mask. ok djm@ (dtucker@) ~ auth.h > missing const in prototypes (ssh1) (markus@) ~ auth-krb5.c ~ ssh1.h ~ ssh2.h ~ ssh_api.c ~ ttymodes.c > move SSH_MSG_NONE, so we don't have to include ssh1.h; ok deraadt@ > (markus@) ~ readconf.c ~ ssh.c ~ ssh_config.5 ~ sshd_config.5 > allow setting IdentityAgent to SSH_AUTH_SOCK; ok djm@ (markus@) ~ scp.1 ~ sftp.1 > add IdentityAgent; noticed & ok jmc@ (markus@) - sandbox-systrace.c > systrace is dead. long live systrace. (deraadt@) telnet ~ commands.c > telnet should not verify if hostname is a fully qualified domain > telnet would perform a gethostbyname on close/quit commands > when the machine hostname is not a fully qualified domain. > This behavior added on 12-March-98 breaks the current pledge > that "dns" operations are not needed after establishing > a connection leading to a coredump from telnet when > quiting or closing an existing connection. > OK chris@ (awolk@) tmux ~ tmux.1 > Missing format (window_activity_flag) and a missing Ta. (nicm@) ~ cmd-copy-mode.c ~ tmux.h ~ window-copy.c > Use the same code for half page scrolling as full, from Michal Mazurek. > (nicm@) ~ window-copy.c > Some tidying of copy mode search functions, based on a diff from Lukasz > Piatkowski (initial changes to help some more to come). (nicm@) ~ options-table.c ~ tmux.c > Fix up a couple of long lines. (nicm@) vi ~ cl/cl.h ~ cl/cl_funcs.c ~ cl/cl_read.c ~ cl/cl_term.c ~ common/args.h ~ common/cut.c ~ common/cut.h ~ common/exf.c ~ common/gs.h ~ common/key.c ~ common/key.h ~ common/log.c ~ common/main.c ~ common/mark.c ~ common/mark.h ~ common/put.c ~ common/screen.h ~ common/seq.c ~ common/seq.h ~ common/util.c ~ docs/interp/interp ~ ex/ex.h ~ ex/ex_abbrev.c ~ ex/ex_append.c ~ ex/ex_argv.c ~ ex/ex_at.c ~ ex/ex_cd.c ~ ex/ex_display.c ~ ex/ex_file.c ~ ex/ex_global.c ~ ex/ex_map.c ~ ex/ex_print.c ~ ex/ex_read.c ~ ex/ex_script.c ~ ex/ex_subst.c ~ ex/ex_txt.c ~ include/cl_extern.h ~ include/com_extern.h ~ include/ex_extern.h ~ include/vi_extern.h ~ vi/v_at.c ~ vi/v_ch.c ~ vi/v_put.c ~ vi/v_txt.c ~ vi/v_ulcase.c ~ vi/vi.c ~ vi/vi.h ~ vi/vs_line.c ~ vi/vs_msg.c ~ vi/vs_split.c > Remove CHAR_T in favor of native types. > schwarze@ agrees with the direction. > Few tweaks and OK tb@ (martijn@) ~ ex/ex_cd.c > Remove pointless comment. getcwd(3) is safe. > OK millert@ (martijn@) ~ cl/cl_main.c > Remove __sigblockset. This is a leftover after the removal of the signal > blocking code in common/gs.h rev 1.14. > Remove a redundant return while here. > OK millert@ (martijn@) ~ common/mem.h > Free memory if realloc fails. The application is most likely to terminate > after > a failure, but if it does not we better clean up after ourselfs. > OK deraadt@ and stefan@ (martijn@) wall ~ wall.c ~ wall.1 > Enable UTF-8 detection in wall(1). This deliberately ignores UTF-8 > characters > and replaces them with a single question mark. Similar to write(1). > code OK and tweaks schwarze@ > man page adjustment by schwarze@ and OK jmc@ (martijn@) ~ wall.c > The header <vis.h> is no longer needed; ok martijn@. (schwarze@) == usr.sbin ========================================================== 13/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin ldapctl ~ Makefile > unbreak the tree: > after moving ldapd to the libtls api, ldapctl needs to link against > libtls instead of libcrypto > ok krw@, jmatthew@ (tb@) ldapd - ssl.c - ssl_privsep.c ~ Makefile ~ conn.c ~ ldapd.c ~ ldapd.h ~ ldape.c ~ parse.y + evbuffer_tls.c + evbuffer_tls.h > convert ldapd to use the libtls api, bringing in a copy of the evbuffer_tls > code from syslogd. > ok beck@ benno@ (jmatthew@) ndp ~ Makefile > Kill useless CPPFLAGS > usr.sbin/ndp has no #ifdef INET6 test, and doesn't need an explicit -I. > directive. > ok sha256 mpi@ (jca@) ntpd ~ ntpd.c > prepare userland for removing chroot(2) from allowed syscalls under > pledge(2). > for ntpd(8), removing the pledge call is a first step: futher redesign will > occurs later. > ok reyk@ benno@ (semarie@) ~ constraint.c > Unconfuse things by renaming variables to match their contents. > ok deraadt@ reyk@ (jsing@) pkg_add ~ OpenBSD/ArcCheck.pm > allow root files to be root-writable. > common work with aja@, okay aja@ (espie@) rebound ~ rebound.c > prepare userland for removing chroot(2) from allowed syscalls under > pledge(2). > in rebound(8), the worker is still chrooted (and pledged). The supervisor > process remains unpledged in order to create workers. > ok tedu@ (semarie@) rtadvd ~ rtadvd.conf.5 > Document that both raflags and rtflags can hold route preference flags. > Input from an ok jmc@ (jca@) ~ rtadvd.conf.5 > Replace .Po/.Pc with .Pq, and drop extra .Li; suggested by jmc@ (jca@) smtpd ~ smtpd.conf.5 > listen directive may use a table for authentication, to make this work the > table has to be defined BEFORE > consequently move all tables in the examples to the beginning and before > the > listen directive to avoid tables not being found > no functional change > ran into this myself earlier, also reported by cjones via irc > ok gilles (jung@) ~ smtp_session.c > The "loop detected" message should not print the errno string. > OK gilles@ (millert@) tcpdump ~ privsep_pcap.c ~ tcpdump.8 > Move to /dev/bpf; ok lteo (natano@) ~ print-icmp6.c > In verbose mode, print the router preference contained in RAs. > "pref" keyword taken from tcpdump.org. > ok mpi@ sthen@ deraadt@ (jca@) ~ print-icmp6.c > Print RA Route Information prefix, preference and lifetime. > ok mpi@ (jca@) ~ privsep_pcap.c ~ tcpdump.8 > Use /dev/bpf0 instead of /dev/bpf (without loop though), as suggested by > sthen@. to make remote upgrades without media less painful. > ok tb@ (natano@) user ~ user.c > When writing master.password entries, use %lld for time_t and cast > to long long. OK ajacoutot@ (millert@) ~ user.c > Fix regression on usermod/userdel by calling getpwnam_shadow(3) and saving > passwd hash early, instead of getpwnam(3), then close fds by calling > endpwent(3) and finally only call pledge(2) after it, otherwise on any > modification to the user it would destroy the passwd hash and therefore > forbidding him/her to login again to the machine. > Reported and tested by Edgar Pettijohn <edgar ! pettijohn-web at com> > According to deraadt@ "that looks better then" (mestre@) vmd ~ vm.conf.5 > Fix a pasto; from Michal Mazurek <akfaew at jasminek dot net>. > OK mlarkin (schwarze@) =============================================================================== _______________________________________________ owc mailing list [email protected] http://www.squish.net/mailman/listinfo/owc
