OpenBSD src changes summary for 2016-06-26 to 2016-07-03 inclusive ==================================================================
bin/cat bin/rm distrib/notes distrib/sets etc/etc.amd64/login.conf etc/etc.i386/login.conf etc/etc.macppc/login.conf etc/etc.sparc64/login.conf gnu/usr.bin/binutils gnu/usr.bin/binutils-2.17 gnu/usr.bin/perl lib/libc lib/libcrypto lib/libssl regress/lib regress/usr.sbin sbin/mount sbin/sysctl share/man sys/arch/alpha/conf sys/arch/amd64/amd64 sys/arch/amd64/conf sys/arch/amd64/include sys/arch/armish/conf sys/arch/armv7/conf sys/arch/armv7/omap sys/arch/armv7/stand/efiboot sys/arch/hppa/conf sys/arch/i386/conf sys/arch/i386/i386 sys/arch/landisk/conf sys/arch/loongson/conf sys/arch/macppc/conf sys/arch/macppc/dev sys/arch/octeon/conf sys/arch/octeon/include sys/arch/octeon/octeon sys/arch/sgi/conf sys/arch/sparc64/conf sys/arch/zaurus/conf sys/dev sys/dev/acpi sys/dev/ofw sys/dev/pci sys/dev/pv sys/dev/usb sys/kern sys/netinet sys/netinet6 sys/sys usr.bin/doas usr.bin/mandoc usr.bin/nc usr.bin/sndiod usr.bin/ssh usr.bin/units usr.bin/vi usr.sbin/bgpd usr.sbin/ldpd usr.sbin/pkg_add usr.sbin/rebound usr.sbin/rtadvd usr.sbin/smtpd usr.sbin/syslogd usr.sbin/vmd == bin =============================================================== 01/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/bin cat ~ cat.c > For -ne, indent the '$' on blank lines. > Patch from Giles Lean (NetBSD PR bin/4841), tweaked by kleink at > NetBSD (rev. 1.17 1998-01-27), version for OpenBSD sent in by Sevan > Janiyan <venture37 at geeklan dot co dot uk>. > OK deraadt@ (schwarze@) rm ~ rm.c > don't report errors for 'rm -rf ""'. report by rkitover. > ok benno deraadt (tedu@) ~ rm.c > revert previous. better fix applied to fts_open. (tedu@) == distrib =========================================================== 02/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib notes ~ armv7/hardware > Don't list cubieboard2, pmap can't handle allwinner a20. (jsg@) sets ~ lists/base/md.alpha ~ lists/base/md.amd64 ~ lists/base/md.armish ~ lists/base/md.armv7 ~ lists/base/md.hppa ~ lists/base/md.i386 ~ lists/base/md.landisk ~ lists/base/md.loongson ~ lists/base/md.luna88k ~ lists/base/md.macppc ~ lists/base/md.octeon ~ lists/base/md.sgi ~ lists/base/md.socppc ~ lists/base/md.sparc ~ lists/base/md.sparc64 ~ lists/base/md.zaurus ~ lists/comp/mi > sync (deraadt@) ~ lists/man/mi > sync (deraadt@) ~ lists/base/md.alpha ~ lists/base/md.amd64 ~ lists/base/md.armish ~ lists/base/md.armv7 ~ lists/base/md.hppa ~ lists/base/md.i386 ~ lists/base/md.landisk ~ lists/base/md.loongson ~ lists/base/md.luna88k ~ lists/base/md.macppc ~ lists/base/md.octeon ~ lists/base/md.sgi ~ lists/base/md.socppc ~ lists/base/md.sparc ~ lists/base/md.sparc64 ~ lists/base/md.zaurus ~ lists/base/mi > sync (deraadt@) == etc =============================================================== 03/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/etc etc.amd64/login.conf ~ etc.amd64/login.conf > upgrade selected login.conf to use auto rounds for bcrypt. the installer > already does this, so we don't want to go backwards on password changes. > ok krw (tedu@) etc.i386/login.conf ~ etc.i386/login.conf > upgrade selected login.conf to use auto rounds for bcrypt. the installer > already does this, so we don't want to go backwards on password changes. > ok krw (tedu@) etc.macppc/login.conf ~ etc.macppc/login.conf > upgrade selected login.conf to use auto rounds for bcrypt. the installer > already does this, so we don't want to go backwards on password changes. > ok krw (tedu@) etc.sparc64/login.conf ~ etc.sparc64/login.conf > upgrade selected login.conf to use auto rounds for bcrypt. the installer > already does this, so we don't want to go backwards on password changes. > ok krw (tedu@) == gnu =============================================================== 04/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/gnu usr.bin/binutils ~ gas/doc/as.texinfo > Add missing words to help the reader. > ok mikeb@ (jca@) usr.bin/binutils-2.17 ~ gas/doc/as.texinfo > Add missing words to help the reader. > ok mikeb@ (jca@) usr.bin/perl ~ Makefile.bsd-wrapper ~ hints/openbsd.sh > Stop linking perl to libutil, never necessary > from guenther@ ok sthen@ (afresh1@) ~ Makefile.SH > Stop linking perl to libpthread > No longer necessary with TIB work > from guenther@ ok sthen@ (afresh1@) ~ cpan/Time-HiRes/HiRes.pm ~ cpan/Time-HiRes/HiRes.xs ~ cpan/Time-HiRes/Makefile.PL ~ cpan/Time-HiRes/fallback/const-c.inc ~ cpan/Time-HiRes/t/Watchdog.pm ~ cpan/Time-HiRes/t/alarm.t ~ cpan/Time-HiRes/t/clock.t ~ cpan/Time-HiRes/t/gettimeofday.t ~ cpan/Time-HiRes/t/itimer.t ~ cpan/Time-HiRes/t/nanosleep.t ~ cpan/Time-HiRes/t/sleep.t ~ cpan/Time-HiRes/t/stat.t ~ cpan/Time-HiRes/t/time.t ~ cpan/Time-HiRes/t/tv_interval.t ~ cpan/Time-HiRes/t/ualarm.t ~ cpan/Time-HiRes/t/usleep.t + cpan/Time-HiRes/t/utime.t > Update perl Time::HiRes to 1.9739 > Which provides hires `utime` > requested by espie@ OK millert@ (afresh1@) ~ AUTHORS ~ Configure ~ INSTALL ~ MANIFEST ~ META.json ~ META.yml ~ Makefile.SH ~ Makefile.bsd-wrapper ~ README.haiku ~ README.macosx ~ README.os2 ~ README.vms ~ cop.h ~ embed.fnc ~ embed.h ~ gv.c ~ hv.c ~ hv_func.h ~ inline.h ~ intrpvar.h ~ locale.c ~ mg.c ~ mg.h ~ op.c ~ op.h ~ pad.c ~ patchlevel.h ~ perl.c ~ pp_sys.c ~ proto.h ~ regcomp.c ~ regexec.c ~ sv.c ~ sv.h ~ toke.c ~ util.c ~ Cross/config.sh-arm-linux ~ Cross/config.sh-arm-linux-n770 ~ NetWare/Makefile ~ NetWare/config_H.wc ~ Porting/Maintainers.pl ~ Porting/checkAUTHORS.pl ~ Porting/cmpVERSION.pl ~ Porting/config.sh ~ Porting/config_H ~ Porting/epigraphs.pod ~ Porting/perldelta_template.pod ~ Porting/release_managers_guide.pod ~ Porting/todo.pod ~ cpan/OpenBSD-MkTemp/t/OpenBSD-MkTemp.t ~ cpan/OpenBSD-Pledge/lib/OpenBSD/Pledge.pm ~ cpan/OpenBSD-Pledge/t/OpenBSD-Pledge.t ~ cpan/Term-ReadKey/Configure.pm ~ cpan/Term-ReadKey/Makefile.PL ~ cpan/Term-ReadKey/ReadKey.xs ~ cpan/Term-ReadKey/genchars.pl ~ cpan/Term-ReadKey/example/test.pl ~ dist/Module-CoreList/Changes ~ dist/Module-CoreList/lib/Module/CoreList.pm ~ dist/Module-CoreList/lib/Module/CoreList.pod ~ dist/Module-CoreList/lib/Module/TieHashDelta.pm ~ dist/Module-CoreList/lib/Module/Utils.pm ~ dist/Module-CoreList/t/corelist.t ~ dist/Module-CoreList/t/is_core.t ~ dist/Module-CoreList/t/utils.t ~ ext/Errno/Errno_pm.PL ~ hints/catamount.sh ~ hints/darwin.sh ~ hints/os390.sh ~ lib/h2ph.t ~ lib/perl5db.pl ~ plan9/config.plan9 ~ plan9/config_sh.sample ~ pod/perl.pod ~ pod/perlclib.pod ~ pod/perldelta.pod ~ pod/perlfunc.pod ~ pod/perlguts.pod ~ pod/perlhacktips.pod ~ pod/perlhist.pod ~ pod/perlpod.pod ~ pod/perlpodspec.pod ~ pod/perlpolicy.pod ~ pod/perlunicook.pod ~ regen/lib_cleanup.pl ~ t/base/lex.t ~ t/base/rs.t ~ t/comp/parser.t ~ t/lib/feature/bundle ~ t/lib/warnings/toke ~ t/op/crypt.t ~ t/op/lex.t ~ t/op/sub.t ~ t/op/taint.t ~ t/op/threads.t ~ t/porting/customized.dat ~ t/re/pat_advanced.t ~ t/re/re_tests ~ t/re/reg_mesg.t ~ t/run/switchd.t ~ utils/h2ph.PL ~ vms/descrip_mms.template ~ win32/Makefile ~ win32/config_H.gc ~ win32/makefile.mk ~ win32/pod.mak ~ win32/win32.c ~ win32/win32.h + pod/perl5202delta.pod + t/perf/taint.t + t/porting/re_context.t > Update to perl 5.20.3 > OK bluhm@ (afresh1@) == lib =============================================================== 05/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libc ~ crypt/bcrypt.c > increase the minimum for auto rounds to 6. that was the previous low bound > for login.conf, and we don't want to go lower. (tedu@) ~ gen/ttyname.c > make the fallback code more accurate (in particular, it should return names > based on the actual device, not any kind of inode equality which won't hold > for duplicates of the dev tree in a chroot) > no bump as it doesn't change any API. > okay and improvements guenther@ (espie@) ~ stdlib/malloc.c > defer munmap to after unlocking malloc. this can (unfortunately) be an > expensive syscall, and we don't want to tie up other threads. there's no > need to hold the lock, so defer it to afterwards. > from Michael McConville > ok deraadt (tedu@) ~ gen/ttyname.c > make proper use of fstatat, as suggested by guenther@ > okay millert@ (espie@) ~ stdlib/malloc.c > Back out previous; otto saw a potential race that could lead to a > double unmap and I experienced a much more unstable firefox. > discussed with otto on icb (tb@) ~ locale/wctomb.3 > fix a couple of errors in the page; > from henning petersen, netbsd pr lib/51284 > ok semarie (jmc@) ~ gen/fts.c > Do not return an error in fts_open(3) if one of the paths in argv > is empty. Otherwise, programs using fts(3) will report an error > if one of the paths is empty instead of just treating it as a > non-existent file. OK guenther@ (millert@) ~ gen/sysctl.3 > Add sysctl for arp timers: net.inet.ip.arptimeout (expire timer for > resolved > entries) and net.inet.ip.arpdown (expire timer for unresolved entries) > ok mpi@ (chris@) ~ gen/fts.3 ~ gen/fts.c > fts_open() requires that the list passed as argument to contain at least > one path. When the list is empty (contain only a NULL pointer), return > EINVAL instead of pretending to succeed, which will cause a NULL pointer > deference in a later fts_read() call. From FreeBSD. (millert@) ~ gen/fts.3 > For the EINVAL case there can be more than a single option. (millert@) ~ stdlib/malloc.c > adapt S option: add C, rm F (not relevant with 0 cache and disables > chunk rnd), rm P: is default (otto@) ~ gen/sysctl.3 > nptys sysctls were removed (tedu@) ~ sys/pledge.2 > introduces new promise "chown" to allow changing owner/group with *chown(2) > family > it splits PLEDGE_FATTR in two ("fattr" stills grant the 2 flags, so no > functional changes): > - PLEDGE_CHOWN : to be able to call *chown(2) syscalls > - PLEDGE_FATTR : the rest > it introduces "chown" which grant: > - PLEDGE_CHOWN : be able to call *chown(2) > - PLEDGE_CHOWNUID : be able to modifying owner/group > ok deraadt@ tedu@ (semarie@) libcrypto ~ crypto/arc4random_win.h > Tighten behavior of _rs_allocate on Windows. > For Windows, we are simply using calloc, which has two annoyances: > the memory has more permissions than needed by default, and it comes > from the process heap, which looks like a memory leak since this memory > is rightfully never freed. > This switches _rs_alloc on Windows to use VirtualAlloc, which restricts the > memory to READ|WRITE and keeps the memory out of the process heap. > ok deraadt@ (bcook@) ~ crypto/arc4random_aix.h ~ crypto/arc4random_freebsd.h ~ crypto/arc4random_hpux.h ~ crypto/arc4random_linux.h ~ crypto/arc4random_netbsd.h ~ crypto/arc4random_osx.h ~ crypto/arc4random_solaris.h > Tighten behavior of _rs_allocate failure for portable arc4random > implementations. > In the event of a failure in _rs_allocate for rsx, we still have a > reference to > freed memory for rs on return. Not a huge deal since we subsequently abort > in > _rs_init, but it looks strange on its own. > ok deraadt@ (bcook@) libssl ~ src/crypto/ocsp/ocsp_cl.c ~ src/crypto/ocsp/ocsp_srv.c TAGGED OPENBSD_5_8 > Incorrect/unneeded fix for 5.8 > noticed by jsing@ (beck@) ~ src/crypto/dh/dh.h ~ src/crypto/dh/dh_key.c ~ src/crypto/dsa/dsa.h ~ src/crypto/dsa/dsa_key.c ~ src/crypto/rsa/rsa.h ~ src/crypto/rsa/rsa_crpt.c ~ src/crypto/rsa/rsa_eay.c ~ src/crypto/rsa/rsa_gen.c TAGGED OPENBSD_5_8 > Remove flags for disabling constant-time operations. > This removes support for DSA_FLAG_NO_EXP_CONSTTIME, > DH_FLAG_NO_EXP_CONSTTIME, > and RSA_FLAG_NO_CONSTTIME flags, making all of these operations > unconditionally > constant-time. > Based on the original patch by César Pereid. ok beck@ (bcook@) ~ src/crypto/opensslv.h TAGGED OPENBSD_5_8 > bump to 2.4.2 (bcook@) ~ src/crypto/opensslv.h TAGGED OPENBSD_5_9 > bump for 2.3.7 (bcook@) == regress =========================================================== 06/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/regress lib ~ libcrypto/dh/dhtest.c ~ libcrypto/dsa/dsatest.c > Remove flags for disabling constant-time operations. > This removes support for DSA_FLAG_NO_EXP_CONSTTIME, > DH_FLAG_NO_EXP_CONSTTIME, > and RSA_FLAG_NO_CONSTTIME flags, making all of these operations > unconditionally > constant-time. > Based on the original patch by César Pereid. ok beck@ (bcook@) usr.sbin ~ syslogd/args-server-tcp-reconnect.pl > Timing changed, now a syslogd test may get EPIPE instead of > ECONNREFUSED error. (bluhm@) == sbin ============================================================== 07/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sbin mount ~ mount.c > somebody forgot to look at format string warnings (tedu@) sysctl ~ sysctl.8 > Document arptimeout, arpdown. Prodded by and ok jmc@ (chris@) ~ sysctl.8 > ntpys sysctl was removed (tedu@) == share ============================================================= 08/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share man ~ man4/man4.armv7/omdog.4 > Dynamically attach omdog(4) using the FDT. (jsg@) ~ man4/man4.armv7/cpsw.4 > Dynamically attach cpsw(4) with the FDT. (jsg@) ~ man4/man4.armv7/imx.4 ~ man4/man4.armv7/omap.4 ~ man4/man4.armv7/sunxi.4 > remove devices from soc abstraction device lists that now attach to fdt > (jsg@) ~ man4/man4.armv7/sxie.4 > sxie(4) is only for integrated 'EMAC' 10/100 Ethernet. Make this a bit > more obvious. The Gigabit 'GMAC' controller used by some A20 systems > is not supported. (jsg@) ~ man8/release.8 > Document how to create full boot and installation images containing > release tarballs and ports, suitable for installs without network. > Idea and patch from Bryan Everly, thanks! > With input from deraadt, jmc and myself. > ok jmc (tb@) ~ man4/ip6.4 > Implement IPV6_MINHOPCOUNT support. > Useful to implement GTSM support in daemons such as bgpd(8). Diff from > 2013 revived by renato@. Input from bluhm@, ok bluhm@ deraadt@ (jca@) ~ man9/usbd_open_pipe.9 > the flag is USBD_EXCLUSIVE_USE, not USBD_EXCLUSIVE_ACCESS (jmatthew@) ~ man4/Makefile + man4/ure.4 > add ure(4) man page (jmatthew@) ~ man4/ure.4 ~ man4/usb.4 > Improve .Nd, and Xr from usb(4) (deraadt@) ~ man4/usb.4 ~ man4/ure.4 > more standard Nd, and zap an unbalanced "; > ok jmatthew (jmc@) ~ man4/ip6.4 > IPV6_MINHOPCOUNT now supports UDP (unicast and multicast) (jca@) ~ man4/ip.4 ~ man4/ip6.4 > IP_MINTTL and IPV6_MINHOPCOUNT work on TCP and UDP sockets > Input from and ok bluhm@ (jca@) ~ man4/pty.4 > 992 ptys is the hard max. (tedu@) ~ man4/pty.4 > don't need the .xr to sysctl now either (tedu@) ~ man9/usbd_ref_wait.9 > Also mention the term 'USB device' in the title to make clear that the > reference count is on a device level. > ok jmc (mglocker@) ~ man4/man4.macppc/aoa.4 > Get 'AOAShasta' soundchip working found on PowerMac9,1. > ok deraadt (mglocker@) == sys =============================================================== 09/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/alpha/conf ~ GENERIC ~ RAMDISKBIG > enable ure(4) where we already have url(4) (jmatthew@) arch/amd64/amd64 ~ cpu.c > Enable UMIP feature if present. miod originally pointed this out to me. > ok deraadt@ (mlarkin@) ~ vmm.c > Don't panic on null vmxon region or vmxon failure - this will be handled > in the calling function which will return EIO back up the stack to vmd(8). > Fixes a panic when CPUs fail to spin up for other reasons during boot, > noticed by reyk. (mlarkin@) ~ ioapic.c > Don't write a 1 to the RIRR bit in the IOAPIC redirection register. This > bit > is R/O, and although it should not matter what value is written there, > Hyper-V's emulated IOAPIC interprets a write of 1 in some unexpected way > and > subsequently blocks interrupt delivery. This primarily manifests itself as > de(4) timeouts when using Hyper-V VMs with the "Legacy Network Adapter" > interface. > This diff has been in snaps for almost a month with no reported fallout. > Based on an idea originally from mikeb with further input from kettenis and > deraadt. (mlarkin@) arch/amd64/conf ~ GENERIC ~ RAMDISK_CD > enable ure(4) where we already have url(4) (jmatthew@) ~ GENERIC > add a simple keyboard backlight driver for some chromebooks, > adjustable with wsconsctl keyboard.backlight > ok bmercer, kettenis (jcs@) arch/amd64/include ~ i82093reg.h > Don't write a 1 to the RIRR bit in the IOAPIC redirection register. This > bit > is R/O, and although it should not matter what value is written there, > Hyper-V's emulated IOAPIC interprets a write of 1 in some unexpected way > and > subsequently blocks interrupt delivery. This primarily manifests itself as > de(4) timeouts when using Hyper-V VMs with the "Legacy Network Adapter" > interface. > This diff has been in snaps for almost a month with no reported fallout. > Based on an idea originally from mikeb with further input from kettenis and > deraadt. (mlarkin@) arch/armish/conf ~ GENERIC ~ RAMDISK > enable ure(4) where we already have url(4) (jmatthew@) arch/armv7/conf ~ GENERIC ~ RAMDISK > Dynamically attach omdog(4) using the FDT. (jsg@) ~ GENERIC ~ RAMDISK > Dynamically attach tiiic using the FDT. > Only match on omap4 compatible controllers such as the one in the > am335x on bbb. omap3 has different register offsets and a different > compatible string. > This reuses kettenis' fdt i2c scan function from imxiic(4). (jsg@) ~ GENERIC ~ RAMDISK > Dynamically attach cpsw(4) with the FDT. (jsg@) ~ GENERIC ~ RAMDISK > enable ure(4) where we already have url(4) (jmatthew@) arch/armv7/omap ~ files.omap ~ omap.c ~ omdog.c > Dynamically attach omdog(4) using the FDT. (jsg@) ~ ti_iic.c > destatic (jsg@) ~ ti_iic.c > add a missing argument specified in format string so this builds again > (jsg@) ~ files.omap ~ omap.c ~ ti_iic.c > Dynamically attach tiiic using the FDT. > Only match on omap4 compatible controllers such as the one in the > am335x on bbb. omap3 has different register offsets and a different > compatible string. > This reuses kettenis' fdt i2c scan function from imxiic(4). (jsg@) ~ files.omap ~ if_cpsw.c ~ omap.c > Dynamically attach cpsw(4) with the FDT. (jsg@) arch/armv7/stand/efiboot ~ efiboot.c > SolidRun's HummingBoards and CuBoxes are also available with > the i.MX6 Solo and DualLite SoCs. Those are slightly different > to the bigger versions and thus have a different FDT compatible > name. To be able for us to boot on those machines, add those > compatible names to the list and re-use the board ids. > ok kettenis@ (patrick@) arch/hppa/conf ~ GENERIC ~ RAMDISK > enable ure(4) where we already have url(4) (jmatthew@) arch/i386/conf ~ GENERIC ~ RAMDISK_CD > enable ure(4) where we already have url(4) (jmatthew@) arch/i386/i386 ~ cpu.c > Enable UMIP feature if present. miod originally pointed this out to me. > ok deraadt@ (mlarkin@) arch/landisk/conf ~ GENERIC ~ RAMDISK > enable ure(4) where we already have url(4) (jmatthew@) arch/loongson/conf ~ GENERIC ~ RAMDISK > enable ure(4) where we already have url(4) (jmatthew@) arch/macppc/conf ~ GENERIC ~ RAMDISK > enable ure(4) where we already have url(4) (jmatthew@) arch/macppc/dev ~ i2s.c > Make i2s compile with I2S_DEBUG; %x -> %p. (mglocker@) ~ i2s.c > Oups, remove '#define I2S_DEBUG' again. (mglocker@) ~ aoa.c > Get 'AOAShasta' soundchip working found on PowerMac9,1. > ok deraadt (mglocker@) arch/octeon/conf ~ GENERIC ~ RAMDISK > enable ure(4) where we already have url(4) (jmatthew@) ~ files.octeon > Add fdt init for octeon. (visa@) arch/octeon/include ~ octeonvar.h > Add fdt init for octeon. (visa@) arch/octeon/octeon ~ machdep.c > Add fdt init for octeon. (visa@) arch/sgi/conf ~ GENERIC-IP27 ~ GENERIC-IP30 ~ GENERIC-IP32 ~ RAMDISK-IP27 ~ RAMDISK-IP30 ~ RAMDISK-IP32 > enable ure(4) where we already have url(4) (jmatthew@) arch/sparc64/conf ~ GENERIC ~ RAMDISK > enable ure(4) where we already have url(4) (jmatthew@) arch/zaurus/conf ~ GENERIC ~ RAMDISK > enable ure(4) where we already have url(4) (jmatthew@) dev - videovar.h ~ video.c > Move videovar.h in to video.c since it isn't used anywhere else. > Suggested by mpi@ diff from Patrick Keshishian. > ok mpi (mglocker@) dev/acpi ~ files.acpi + acpicbkbd.c > add a simple keyboard backlight driver for some chromebooks, > adjustable with wsconsctl keyboard.backlight > ok bmercer, kettenis (jcs@) dev/ofw ~ fdt.c > Make the fdt parser skip nop tokens. This is needed on some > octeon boards. > Feedback and ok kettenis@ (visa@) dev/pci ~ if_iwn.c > Revert if_iwm.c r1.166. We are still seeing links dropping upon HT > protection > updates with some iwn chips, such as the 2200. Reported by mlarkin and krw. > (stsp@) dev/pv ~ hyperv.c > Correct the order of memset arguments. > ok mikeb@ (jsg@) ~ hyperv.c > Fix a memory leak in an error path. > ok mikeb@ (jsg@) dev/usb ~ files.usb + if_ure.c + if_urereg.h > add ure(4), a driver for Realtek RTL8152 10/100 USB Ethernet adapters, > ported from FreeBSD. > ok dereaadt@ (jmatthew@) kern ~ vfs_syscalls.c > use error code path instead of return early without calling VOP_ABORTOP() > and > vrele()/vput(). > ok deraadt@ (semarie@) ~ vfs_syscalls.c > sys_revoke: call vrele() before returning ENOTTY > ok guenther@ (semarie@) ~ vfs_syscalls.c > dovutimens: call vrele(9) before returning EINVAL > ok guenther@ (semarie@) ~ kern_pledge.c > Implement IPV6_MINHOPCOUNT support. > Useful to implement GTSM support in daemons such as bgpd(8). Diff from > 2013 revived by renato@. Input from bluhm@, ok bluhm@ deraadt@ (jca@) ~ kern_pledge.c ~ kern_sig.c > Restore the sys_o58_kill system call. > By keeping both the new (sys_kill/sys_thrkill) and old (sys_o58_kill) > system calls for the OpenBSD 6.0 release, code that uses either of these > mechanisms will work on both of the supported OpenBSD releases. This > provides a clean transition for runtimes that make direct system calls > (namely the Go programming language). > This requires a minimal amount of non-intrusive code and does not block > development progress within OpenBSD. > ok deraadt@ guenther@ (jsing@) ~ syscalls.master > Restore the sys_o58_kill system call. (jsing@) ~ init_sysent.c ~ syscalls.c > Regen. (jsing@) ~ kern_proc.c ~ kern_sig.c > Repair kill(2) on zombie processes. > kill(2) is supposed to find zombie processes, this probably got broken > when the process reaper was introduced. As a temporary(tm) workaround, > walk the list of zombie processes if we can't find the target pid in the > main process list. > Problem with zsh initially reported by Geoff Wozniak on misc@, analysis > done by naddy@. ok kettenis@ tedu@ (jca@) ~ kern_pledge.c > in pledgereq (the array for doing correspondance between textual promise as > in pledge(2) and internal PLEDGE_* flag), the flags member should be a > uint64_t and not a int. > ok deraadt@ (semarie@) ~ uipc_socket2.c > introduce rwlock for socketbuf instead of the old flag and tsleep dance. > ok mikeb bluhm (tedu@) ~ kern_pledge.c ~ vfs_syscalls.c > introduces new promise "chown" to allow changing owner/group with *chown(2) > family > it splits PLEDGE_FATTR in two ("fattr" stills grant the 2 flags, so no > functional changes): > - PLEDGE_CHOWN : to be able to call *chown(2) syscalls > - PLEDGE_FATTR : the rest > it introduces "chown" which grant: > - PLEDGE_CHOWN : be able to call *chown(2) > - PLEDGE_CHOWNUID : be able to modifying owner/group > ok deraadt@ tedu@ (semarie@) netinet ~ tcp_input.c > The variable swapping between inp, newinp and oldinpcb in syn_cache_get() > was overly complicated. Simplify the code without functional change. > OK jca@ (bluhm@) ~ tcp_input.c > Copy inp_hops from the listening socket to the accepted one and use > its value for the SYN+ACK packet. This makes the IPV6_UNICAST_HOPS > socket option usable for incoming TCP connections. > tested by renato@; OK jca@ (bluhm@) ~ in_pcb.h ~ tcp_input.c > Implement IPV6_MINHOPCOUNT support. > Useful to implement GTSM support in daemons such as bgpd(8). Diff from > 2013 revived by renato@. Input from bluhm@, ok bluhm@ deraadt@ (jca@) ~ tcp_input.c > Missing "break;" in switch statement; repairs IP_MINTTL. (jca@) ~ udp_usrreq.c > Add UDP unicast and multicast support for IP_MINTTL/IPV6_MINHOPCOUNT > Requested by renato@, ok blumh@ (jca@) ~ if_ether.c ~ if_ether.h ~ in.h > Add sysctl for arp timers: net.inet.ip.arptimeout (expire timer for > resolved > entries) and net.inet.ip.arpdown (expire timer for unresolved entries) > ok mpi@ (chris@) ~ in_pcb.c > Use ``rt_addr'' rather than ``rt_ifa'' to get the source address > corresponding to a route. > ok florian@ on a previous version, input and ok bluhm@ (mpi@) ~ ip_output.c > Allow resetting the IP_TTL and IP_MINTTL sockopts > IP_TTL can be reset by passing -1, IP_MINTTL can be reset by passing 0. > This is consistent with what Linux does and > IPV6_UNICAST_HOPS/IPV6_MINHOPCOUNT. > ok bluhm@ (jca@) ~ tcp_input.c > Make accepted sockets inherit IP_TTL from the listening socket. > This is consistent with the IPV6_UNICAST_HOPS behavior, and is the only > way to allow applications to completely control the TTL of outgoing > packets (else an application could temporariy send packets with the > default TTL, until it sets again IP_TTL ; this is harmful eg for GTSM). > ok bluhm@ (jca@) netinet6 ~ in6.h ~ ip6_output.c > Implement IPV6_MINHOPCOUNT support. > Useful to implement GTSM support in daemons such as bgpd(8). Diff from > 2013 revived by renato@. Input from bluhm@, ok bluhm@ deraadt@ (jca@) ~ in6_src.c > Kill outdated comment. Reading the code is enough. > ok sthen@ bluhm@ (jca@) ~ in6_ifattach.c > Restore the automagically added /64 route on p2p interfaces in order to > send traffic to link-local addresses without default route. > Fix a regression reported by Michael Lechtermann, ok stsp@, sthen@ (mpi@) ~ in6_src.c > Use ``rt_addr'' rather than ``rt_ifa'' to get the source address > corresponding to a route. > ok florian@ on a previous version, input and ok bluhm@ (mpi@) ~ ip6_output.c > Unbreak getsockopt(IPV6_MINHOPCOUNT) > ok bluhm@ (jca@) sys ~ syscall.h ~ syscallargs.h > Regen. (jsing@) ~ proc.h > Repair kill(2) on zombie processes. > kill(2) is supposed to find zombie processes, this probably got broken > when the process reaper was introduced. As a temporary(tm) workaround, > walk the list of zombie processes if we can't find the target pid in the > main process list. > Problem with zsh initially reported by Geoff Wozniak on misc@, analysis > done by naddy@. ok kettenis@ tedu@ (jca@) ~ socketvar.h > introduce rwlock for socketbuf instead of the old flag and tsleep dance. > ok mikeb bluhm (tedu@) ~ pledge.h > introduces new promise "chown" to allow changing owner/group with *chown(2) > family > it splits PLEDGE_FATTR in two ("fattr" stills grant the 2 flags, so no > functional changes): > - PLEDGE_CHOWN : to be able to call *chown(2) syscalls > - PLEDGE_FATTR : the rest > it introduces "chown" which grant: > - PLEDGE_CHOWN : be able to call *chown(2) > - PLEDGE_CHOWNUID : be able to modifying owner/group > ok deraadt@ tedu@ (semarie@) == usr.bin =========================================================== 10/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin doas ~ doas.conf.5 ~ env.c ~ parse.y > revise environment handling. > Add a setenv keyword for manipulating the environment. keepenv now means > only retain everything. (for one release, the old use of keepenv will still > work.) > Allow setting variables to new or existing values, and also removing vars > when keepenv is used. > ok djm martijn tb (tedu@) ~ doas.conf.5 > somehow nopass snuck onto the :wheel example. i think it's better without. > (tedu@) ~ doas.conf.5 > minor tweaks; ok tedu (jmc@) mandoc ~ man.1 > Update and simplify the documentation of the -s option, > which was forgotten when implementing the new man.conf(5) format. > The outdated information was originally pointed out > by Andy Bradford <amb dash openbsd at bradfords dot org> on misc@. > OK jmc@ (schwarze@) nc ~ socks.c > whitespace (deraadt@) ~ netcat.c > Be more careful initializing and tracking socket s through main, this is > so complicated that a future refactoring could easily in introduce a bug. > ok millert krw (deraadt@) ~ netcat.c > If an error path if close() is called, save errno so that original error > is shown by errx > ok millert krw (deraadt@) ~ nc.1 ~ netcat.c > Add -M and -m options to specify the outgoing and incoming minimum TTL > Req by and ok blumh@ (jca@) ~ netcat.c > Simplify IP proto-specific sockopt error handling. > This makes error messages more specific and simplifies > masking compatible sections for the portable version. > ok beck@ (bcook@) ~ nc.1 > do not uppercase "hop limit"; (jmc@) sndiod ~ file.c > Use CLOCK_UPTIME instead of CLOCK_MONOTONIC, as the later makes jumps > during suspend/resume cycles which triggers watchdog time-outs and > in turn prevents sndiod from resuming. (ratchov@) ssh ~ scp.1 ~ sftp.1 ~ ssh.1 > sort the -o list; (jmc@) ~ progressmeter.c > Explicitly check for 100% completion to avoid potential floating point > rounding error, which could cause progressmeter to report 99% on > completion. > While there invert the test so the 100% case is clearer. with & ok djm@ > (dtucker@) units ~ units.lib > update currency exchange rates; (jmc@) vi ~ common/recover.c > If /tmp/vi.recover doesn't exist, don't create it. Warn once > that it doesn't exist, afterwards fail silently. > ok millert (tb@) == usr.sbin ========================================================== 11/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin bgpd ~ bgpd.conf.5 ~ session.c > Use IPV6_MINHOPCOUNT to finish implementing ttl-security for IPv6. > ok renato@ deraadt@ (jca@) ldpd ~ address.c ~ hello.c ~ init.c ~ labelmapping.c ~ ldpe.h ~ notification.c > Handle ibuf_add() errors. > tweaks from claudio@ (renato@) ~ l2vpn.c > Remove superfluous call to l2vpn_pw_exit(). (renato@) ~ hello.c > Fix inverted logic in recv_hello(). > Bug introduced by rev1.48 two weeks ago. We were not respecting the > advertised transport connection preference (LDPoIPv4 or LDPoIPv6), > the fix is pretty obvious. (renato@) ~ hello.c ~ ldp.h ~ ldpd.8 ~ ldpd.c ~ ldpd.conf.5 ~ ldpd.h ~ ldpe.h ~ neighbor.c ~ packet.c ~ parse.y ~ printconf.c ~ socket.c > Add GTSM support (RFC 6720). > This also finishes the missing bits from our RFC 7552 implementation > because GTSM is mandatory for LDPv6. > To avoid any kind of interoperability problems, I included a few > knobs to enable/disable GTSM on a per-address-family and per-neighbor > basis. Cisco's LDPv6 implementation, for instance, doesn't support GTSM. > "reads good" claudio@ (renato@) ~ hello.c ~ ldp.h > Rename hello flags to keep consistent with the rest of the code. > Flag constants should start with F_. (renato@) ~ ldp.h ~ neighbor.c > Decrease the initialization FSM timeout. > The previous value of 180 was just too long. If a neighbor get stuck in > the initialization FSM for more than 15 seconds, then there's certainly > something wrong and the session should be dropped. > A potential case of a neighbor getting stuck in the initialization > FSM is when both the local and the remote LSRs disable the LDPv4 GTSM > negotiation and there's a mismatch in their GTSM configuration (one is > enabled for GTSM while the other is not). > In this case, a smaller timeout allows for a quicker recovery of the > session when the configuration is fixed on either side. (renato@) ~ address.c ~ hello.c ~ init.c ~ interface.c ~ labelmapping.c ~ lde_lib.c ~ ldpd.c ~ ldpd.conf.5 ~ ldpe.h ~ neighbor.c ~ notification.c ~ packet.c ~ socket.c > Several minor tweaks. (renato@) ~ l2vpn.c ~ labelmapping.c ~ lde.c ~ lde.h ~ ldpd.h ~ ldpe.h ~ notification.c > Be more compliant with RFC 4447. > When sending a label withdraw during the pseudowire Control Word > negotiation, append a "Wrong C-bit" status TLV after the FEC TLV (in > conformance to RFC 4447 section 6.2). Apparently this has no use other > than aiding in troubleshooting. > Also, extend the recv_labelmessage() function to accept Status TLVs and > ignore them instead of shutting down the session. (renato@) ~ address.c ~ hello.c ~ init.c ~ keepalive.c ~ l2vpn.c ~ labelmapping.c ~ lde.c ~ lde.h ~ lde_lib.c ~ ldp.h ~ ldpd.h ~ log.c ~ log.h ~ notification.c ~ packet.c > More renaming and whitespace cleanup. > No binary change after "strip -s". (renato@) ~ ldpd.conf.5 > do not uppercase "hop limit"; (jmc@) pkg_add ~ OpenBSD/PackageRepository.pm ~ OpenBSD/PackageRepository/Persistent.pm > surprised nobody noticed before me > let scp:// work with PKG_CACHE > basically, we do an extra fork, so we end up cleaning up the connection > twice > that's okay for the handles, but not for the commands, since we do a > spurious > ABORT BYE BYE on cleanup. (espie@) ~ pkg_create.1 > document is-branch (espie@) ~ pkg_info.1 ~ OpenBSD/PkgInfo.pm > option -z that uses is-branch info to produce "complete" > stem--[flavor][%branch] listing. > feedback and suggestions semarie@ (espie@) ~ OpenBSD/PkgInfo.pm > oops, $pkg can be more than a pkgname. We have the right information > in the plist, so use it instead. (espie@) rebound ~ rebound.c > check cache tree for collisions when inserting replies. > if two identical requests are sent out, the first will create a cache > entry. the second will not go into the cache tree, but will linger around, > causing a crash when we free it and try to remove from the tree. instead, > give up if insert fails. > diagnosis and initial patch from Duncan. (tedu@) rtadvd ~ config.c ~ dump.c ~ if.c ~ if.h ~ rtadvd.c ~ rtadvd.h > Spring cleanup > - pointless casts, kill caddr_t or replace it with char * > - signed counters > - simplify if_getmtu, only one method is needed and SIOCGIFMTU is the > cheapest > - we no longer have drivers for IFT_FDDI > - hide details of iflist management > - if (dflag) log_debug -> log_debug > - dead code and comments > - etc etc > Input from and ok florian@ (jca@) ~ rtadvd.c > Prevent NULL deref, pointed out by llvm's scan-build. > OK jca, millert (florian@) smtpd ~ filter.c ~ smtp_session.c ~ smtpd-api.h > Explicitely enclose SMTP transactions between BEGIN and COMMIT/ROLLBACK > filter events. Bump filter API version. > ok gilles@ jung@ (eric@) ~ aliases.5 > update aliases documentation to reflect reality (gilles@) ~ parse.y ~ smtp_session.c > flag the local socket listener as local. > clarify check for local listeners. > ok gilles@ millert@ (eric@) ~ smtp_session.c > always refer to the helo string stored on the session > ok gilles@ (eric@) ~ smtp_session.c > set the msgid on the transaction > ok gilles@ jung@ (eric@) ~ smtp_session.c > datain counter is part of the transaction state > ok gilles@ (eric@) ~ smtp_session.c > remove misleading comment. it's not true anymore. > ok gilles@ (eric@) ~ enqueue.c > add -r option to enqueuer as compat interface for mailx > diff by Richard <[email protected]> (gilles@) syslogd ~ privsep.c > whitespace nit (jca@) ~ syslogd.c > Include errno string in log message when we fail to open a file. > The privileged process sends the errno value back when it cannot > open a file. OK gilles@ (millert@) ~ syslogd.c > Avoid printing f->f_lasttime and/or f->f_prevhost if they are empty. > This fixes a long-standing issue where syslogd would print 15 NUL > bytes followed by two blank spaces before the log message for > warnings generated while parsing syslog.conf. OK bluhm@ (millert@) vmd ~ virtio.c > remove some unused variables (that were commented out anyway) (mlarkin@) ===============================================================================
_______________________________________________ owc mailing list [email protected] http://www.squish.net/mailman/listinfo/owc
