OpenBSD src changes summary for 2016-10-23 to 2016-10-30 inclusive ==================================================================
bin/ls bin/ps distrib/miniroot distrib/sets lib/libc libexec/ld.so regress/lib regress/sys sbin/pfctl sbin/ping share/man sys/arch/alpha/alpha sys/arch/alpha/conf sys/arch/amd64/amd64 sys/arch/amd64/conf sys/arch/amd64/include sys/arch/armv7/armv7 sys/arch/armv7/conf sys/arch/armv7/exynos sys/arch/armv7/omap sys/arch/armv7/stand/efiboot sys/arch/armv7/sunxi sys/arch/hppa/conf sys/arch/i386/conf sys/arch/i386/i386 sys/arch/i386/include sys/arch/landisk/conf sys/arch/loongson/conf sys/arch/luna88k/conf sys/arch/macppc/conf sys/arch/mips64/mips64 sys/arch/octeon/conf sys/arch/octeon/dev sys/arch/octeon/include sys/arch/octeon/octeon sys/arch/sgi/conf sys/arch/sgi/sgi sys/arch/socppc/conf sys/arch/sparc64/conf sys/dev/acpi sys/dev/ic sys/dev/pci sys/dev/pckbc sys/dev/pv sys/dev/usb sys/dev/wscons sys/kern sys/net sys/netinet sys/netinet6 sys/sys usr.bin/basename usr.bin/cmp usr.bin/colrm usr.bin/column usr.bin/csplit usr.bin/cut usr.bin/cvs usr.bin/dirname usr.bin/env usr.bin/fmt usr.bin/fold usr.bin/getconf usr.bin/less usr.bin/locale usr.bin/make usr.bin/mg usr.bin/netstat usr.bin/nice usr.bin/nl usr.bin/rev usr.bin/rs usr.bin/sed usr.bin/sndiod usr.bin/ssh usr.bin/tee usr.bin/tmux usr.bin/ul usr.bin/uname usr.bin/uniq usr.bin/wc usr.bin/which usr.sbin/bgpctl usr.sbin/bgpd usr.sbin/config usr.sbin/dhcpd usr.sbin/makefs usr.sbin/nsd usr.sbin/pstat usr.sbin/rebound usr.sbin/snmpctl usr.sbin/snmpd usr.sbin/tcpdump usr.sbin/vmctl usr.sbin/vmd == bin =============================================================== 01/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/bin ls ~ ls.1 > Unify wording for LC_CTYPE in ENVIRONMENT: > * Consistently use "character encoding locale" as suggested by stsp@. > * Resolve various gratuitious wording variations. > OK jmc@. (schwarze@) ps ~ ps.1 > Document LC_CTYPE. > The lack of this entry was reported by Jan Stary <hans at stare dot cz>. > OK czarkoff@ jmc@ (schwarze@) == distrib =========================================================== 02/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib miniroot ~ install.sub > Exit autoinstall in case of missing / or duplicate mountpoints. > This also covers the case when a template is rejected by disklabel. > OK krw (rpe@) ~ install.sub > - move SHA256 SHA256.sig h fail from _tmpsrc to /tmp > - cleanup SHA256 and SHA256.sig before download > - move assignment of _cfile and _srclocal to the top > In a later step, this allows verification of local sets without the > need of a prefetch area which is not used in this case anyway. > Idea from and OK naddy@ > OK krw@ (rpe@) ~ install.sub > Fix an issue found by naddy@ where the installer was not able > to fetch local sets without a SHA256.sig file in a directory > unreachable by the unprivileged users. The missing SHA256.sig > file caused an early exit from the for-loop where the _unpriv > variable is unset in case of local sets. > - Move the check of the set location (local/net) to the top > - Set the ftp command title based on the _srclocal variable > - Remove the now unnecessary second _unpriv= > OK naddy@ (rpe@) ~ install.sub > Search for and create a prefetch area only for nonlocal sources. > This enables the installer to verify local set files even if the > prefetch area would not fit on the local disk. > OK krw@ on a similar diff > Idea from and OK naddy@ > Feedback and OK tb@ (rpe@) sets ~ lists/base/md.i386 > sync (deraadt@) ~ lists/base/md.alpha ~ lists/base/md.amd64 ~ lists/base/md.armv7 ~ lists/base/md.hppa ~ lists/base/md.i386 ~ lists/base/md.landisk ~ lists/base/md.loongson ~ lists/base/md.luna88k ~ lists/base/md.macppc ~ lists/base/md.octeon ~ lists/base/md.sgi ~ lists/base/md.socppc ~ lists/base/md.sparc64 ~ lists/comp/mi > sync (deraadt@) == lib =============================================================== 03/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libc ~ sys/pledge.2 > For consistency, allow symlinkat(2) in the same way as symlink(2); > no need to wait until the first program using it breaks... > "could make sense" semarie@ (and thanks for the cluestick) > OK deraadt@ (schwarze@) ~ stdlib/malloc.c > Pages in the malloc cache are either reused quickly or unmapped > quickly. In both cases it does not make sense to set hints on them. > So remove that option, which is just a remainder of old times when > malloc used to hold on to pages. ok stefan@ (otto@) ~ stdio/vfscanf.c ~ stdio/vfwscanf.c > include float.h for the LDBL_MAX_EXP cpp test in floatio.h (jsg@) == libexec =========================================================== 04/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/libexec ld.so ~ malloc.c > bring canaries for > page sized objects from libc to ld.so; ok guenther@ > (otto@) == regress =========================================================== 05/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/regress lib ~ libm/lgamma/lgamma.c > fix lgamma test on i386 and use symbolic constant; ok martynas@ (otto@) ~ libm/tgamma/tgamma.c > using exact valus in floating point tests often does not work as expected, > use epsilon test (otto@) ~ libm/fenv/Makefile > use -ffloat-store to avoid too much precision which breaks the subtle test > on some platforms; suggested by and ok martynas@ (otto@) sys + netinet/carp/Makefile + netinet/carp/README + netinet/carp/carp_1.sh + netinet/carp/carp_2.sh + netinet/carp/carp_3.sh + netinet/carp/carp_4.sh + netinet/carp/carp_subr > Add regress tests for carp(4). (yasuoka@) ~ net/pflow/Makefile ~ net/pflow/flow.pl ~ net/pflow/gen_traffic.c ~ net/pflow/template.pl > Cleanup pflow test before fixing it. Be more verbose to make > debugging easier. Handle EINPROGRESS connect(2) error correctly. > Perl pack Q fails on 32 bit machines, add workaround. Restore > interfaces in END block, works also if script dies. > OK florian@ (bluhm@) ~ net/pf_forward/Makefile > In addition to forwarding and path MTU discovery with pf, check > that ICMP Time Exceeded packets are generated. Traceroute output > from packets forwarded through pf and a router must contain 3 hops > and every hop must respond. > Do not test with af-to and reply-to rules as this does not work > right now. (bluhm@) == sbin ============================================================== 06/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sbin pfctl ~ pfctl_parser.c > When using a /32 IPv4 interface address, pfctl(8) reports a 0.0.0.0 > as broadcast address. The kernel does not consider this a broadcast > address and ifconfig(8) has a check to exclude it. Use the same > check in pfctl(8). > Found by regress/sbin/pfctl pfi2; OK mikeb@ (bluhm@) ping ~ ping.8 > Due to 64 bit seconds + 64 bit nano seconds resolution and the > addition of a MAC we need at least 24 bytes packet size these days to > show timing information. > Pointed out by Tamas Horvath, thanks! > OK jmc (florian@) ~ ping.8 > in florian;s last commit i urged him to change "twenty-four" to > "twenty four", arguing, i think, that the internet is wrong; well > seemingly i'm wrong, and you should hyphenate numbers when spelled out > - who'd have thought it. apologies to florian and the diff submitter > (and the internet); > still, what i should have advised, and what i've done here, is use "24", > which is much simpler, fits the surrounding text, and agrees with oed > style advice; (jmc@) == share ============================================================= 07/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share man ~ man4/mfii.4 > Make mfii(4) bio(4) capable. > ok dlg (yasuoka@) ~ man4/mfii.4 > fix SEE ALSO; (jmc@) ~ man9/cpumem_get.9 ~ man9/counters_alloc.9 > start documenting allocating per cpu data at boot time, and adding > memory for new cpus after theyve attached. > some tweaks from jmc@ who will probably find more things wrong after this. > im putting some suggestions in from bluhm@ shortly (dlg@) ~ man9/cpumem_get.9 ~ man9/counters_alloc.9 > bluhm@ suggests that it is enough to say that the allocations will > be zeroed, and how they're zeroed is an implementation detail that > doesnt really help the reader. (dlg@) ~ man9/cpumem_get.9 ~ man9/counters_alloc.9 > bluhm@ suggested pointing out that cpumem_malloc_ncpus and > counters_alloc_ncpus preserve the contents of memory used by the > boot cpu. (dlg@) ~ man9/counters_alloc.9 > provide an example based on the mbuf code (dlg@) ~ man9/counters_alloc.9 ~ man9/cpumem_get.9 > minor tweaks; (jmc@) ~ man4/pvbus.4 > Section name references are case sensitive (mikeb@) ~ man5/malloc.conf.5 > H is no more (otto@) ~ man5/port-modules.5 > Update the man page after the addition of MODPY_ABI_TAG > From sthen@ (danj@) == sys =============================================================== 08/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/alpha/alpha ~ cpu.c > increment ncpus when a cpu is attached, not when its booted. > fixes percpu allocations, like visa@ just did on mips64. (dlg@) ~ cpu.c > revert 1.41 now that subr_percpu is using ncpusfound instead of ncpus. > (dlg@) arch/alpha/conf ~ Makefile.alpha > make cleandir should skip the version file; ok otto millert (deraadt@) ~ Makefile.alpha > We don't generate an eddep script for kernel builds nowadays. The last > reference to eddep in the kernel Makefile I could find is in 4.3BSD, > released some 30 years ago. > ok tb millert (natano@) arch/amd64/amd64 ~ vmm.c > Further improve vmm's security model by restricting pledged vmm > processes to only do VMM_IOC_ ioctls on their associated VM (these > ioctls are _RUN, _RESETCPU, _INTR, _READREGS, or _WRITEREGS at > present). The vmm monitor (parent) process or any non-pledged > processes can still do ioctls on any VM. For example, a VM can only > terminate itself but vmctl or the monitor can terminate any VM. > This prevents reachover into other VMs: while escaping from a VM to > the host side (eg. through a bug in virtio etc.) pledge already kept > the attacker in a pledged and privsep'ed process, but now it also > prevents vmm ioctls on "other VMs". > OK mlarkin@ (reyk@) arch/amd64/conf ~ Makefile.amd64 > make cleandir should skip the version file; ok otto millert (deraadt@) ~ Makefile.amd64 > We don't generate an eddep script for kernel builds nowadays. The last > reference to eddep in the kernel Makefile I could find is in 4.3BSD, > released some 30 years ago. > ok tb millert (natano@) arch/amd64/include ~ vmmvar.h > Don't use a bitfield in the msr store index structure. This may not end up > initializing the unused bits, leading to VMABORTs during vmentry. Found the > hard way on i386 vmm, but the problem could occur on amd64 as well. > (mlarkin@) arch/armv7/armv7 ~ platform.c > De-platformize sunxi. This removes the board initialization code that sets > up > SRAM for the EMAC. Instead we rely on u-boot setting this up for us. > ok jsg@, patrick@ (kettenis@) ~ armv7var.h ~ intr.c > Remove sunxi board IDs. (kettenis@) ~ armv7_machdep.c ~ armv7_machdep.h ~ platform.c > Remove now unused disable_l2_if_needed interface. > ok kettenis@ patrick@ (jsg@) arch/armv7/conf ~ GENERIC ~ RAMDISK > De-platformize sunxi. This removes the board initialization code that sets > up > SRAM for the EMAC. Instead we rely on u-boot setting this up for us. > ok jsg@, patrick@ (kettenis@) ~ Makefile.armv7 > make cleandir should skip the version file; ok otto millert (deraadt@) ~ Makefile.armv7 > We don't generate an eddep script for kernel builds nowadays. The last > reference to eddep in the kernel Makefile I could find is in 4.3BSD, > released some 30 years ago. > ok tb millert (natano@) arch/armv7/exynos ~ exynos_machdep.c > Remove now unused disable_l2_if_needed interface. > ok kettenis@ patrick@ (jsg@) arch/armv7/omap ~ omap_machdep.c > stop disabling the external pl310 l2 cache on pandaboard > The consensus is that this was done before the bugs in the cache > flushing code were fixed. The pl310 has been enabled on imx for some > time now and it works fine here on pandaboard as well. > ok patrick@ kettenis@ bmercer@ (jsg@) ~ omap_machdep.c > Remove now unused disable_l2_if_needed interface. > ok kettenis@ patrick@ (jsg@) arch/armv7/stand/efiboot ~ conf.c ~ efiboot.c > Remove sunxi board IDs. (kettenis@) arch/armv7/sunxi ~ sxitimer.c > Only attach on sun4i and sun5i. The timer implemented on later SoCs lacks > the 64-bit counter that we use as timecounter. Those SoCs have a generic > timer so we don't need the SoC-specific one. (kettenis@) - sun4i.c - sun7i.c - sunxi.c - sunxi_machdep.c ~ files.sunxi > De-platformize sunxi. This removes the board initialization code that sets > up > SRAM for the EMAC. Instead we rely on u-boot setting this up for us. > ok jsg@, patrick@ (kettenis@) arch/hppa/conf ~ Makefile.hppa > make cleandir should skip the version file; ok otto millert (deraadt@) ~ Makefile.hppa > We don't generate an eddep script for kernel builds nowadays. The last > reference to eddep in the kernel Makefile I could find is in 4.3BSD, > released some 30 years ago. > ok tb millert (natano@) arch/i386/conf ~ Makefile.i386 > make cleandir should skip the version file; ok otto millert (deraadt@) ~ Makefile.i386 > We don't generate an eddep script for kernel builds nowadays. The last > reference to eddep in the kernel Makefile I could find is in 4.3BSD, > released some 30 years ago. > ok tb millert (natano@) arch/i386/i386 ~ vmm.c > Fix a few misc bugs in i386 vmm: > 1. Include ioctls needed for pledge support (to be used with the upcoming > i386 vmd diff) > 2. Don't assume we can enter an IA32e mode guest on entry when the host > doesn't have unrestricted guest capability > 3. Don't enable PAE in the guest CR4 when launching on hosts without > unrestricted guest capability (vmd does not set up PAE bootstrap page > tables) > 4. Don't use a bitfield for the MSR bitmap index (same fix as just > committed > for amd64) > 5. Store and restore EFER properly on exit to ensure that the host NXE > is recovered on exit (mlarkin@) ~ vmm.c > sync with -r1.95 of amd64/vmm.c: > Further improve vmm's security model by restricting pledged vmm > processes to only do VMM_IOC_ ioctls on their associated VM (these > ioctls are _RUN, _RESETCPU, _INTR, _READREGS, or _WRITEREGS at > present). The vmm monitor (parent) process or any non-pledged > processes can still do ioctls on any VM. For example, a VM can only > terminate itself but vmctl or the monitor can terminate any VM. > This prevents reachover into other VMs: while escaping from a VM to > the host side (eg. through a bug in virtio etc.) pledge already kept > the attacker in a pledged and privsep'ed process, but now it also > prevents vmm ioctls on "other VMs". > OK mlarkin@ (reyk@) arch/i386/include ~ vmmvar.h > Fix a few misc bugs in i386 vmm: > 1. Include ioctls needed for pledge support (to be used with the upcoming > i386 vmd diff) > 2. Don't assume we can enter an IA32e mode guest on entry when the host > doesn't have unrestricted guest capability > 3. Don't enable PAE in the guest CR4 when launching on hosts without > unrestricted guest capability (vmd does not set up PAE bootstrap page > tables) > 4. Don't use a bitfield for the MSR bitmap index (same fix as just > committed > for amd64) > 5. Store and restore EFER properly on exit to ensure that the host NXE > is recovered on exit (mlarkin@) arch/landisk/conf ~ Makefile.landisk > make cleandir should skip the version file; ok otto millert (deraadt@) ~ Makefile.landisk > We don't generate an eddep script for kernel builds nowadays. The last > reference to eddep in the kernel Makefile I could find is in 4.3BSD, > released some 30 years ago. > ok tb millert (natano@) arch/loongson/conf ~ Makefile.loongson > make cleandir should skip the version file; ok otto millert (deraadt@) ~ Makefile.loongson > We don't generate an eddep script for kernel builds nowadays. The last > reference to eddep in the kernel Makefile I could find is in 4.3BSD, > released some 30 years ago. > ok tb millert (natano@) arch/luna88k/conf ~ Makefile.luna88k > make cleandir should skip the version file; ok otto millert (deraadt@) ~ Makefile.luna88k > We don't generate an eddep script for kernel builds nowadays. The last > reference to eddep in the kernel Makefile I could find is in 4.3BSD, > released some 30 years ago. > ok tb millert (natano@) arch/macppc/conf ~ Makefile.macppc > make cleandir should skip the version file; ok otto millert (deraadt@) ~ Makefile.macppc > We don't generate an eddep script for kernel builds nowadays. The last > reference to eddep in the kernel Makefile I could find is in 4.3BSD, > released some 30 years ago. > ok tb millert (natano@) arch/mips64/mips64 ~ cpu.c > Increment `ncpus' to its final value already during autoconfiguration so > that percpu data areas get allocated properly on mips64 platforms. It is > too late to set the value during launch of secondary CPUs. > ok jasper@ kettenis@ dlg@ (visa@) ~ cpu.c > Revert previous `ncpus' change because the percpu code now works > without it. (visa@) arch/octeon/conf ~ Makefile.octeon > make cleandir should skip the version file; ok otto millert (deraadt@) ~ Makefile.octeon > We don't generate an eddep script for kernel builds nowadays. The last > reference to eddep in the kernel Makefile I could find is in 4.3BSD, > released some 30 years ago. > ok tb millert (natano@) arch/octeon/dev ~ cn30xxgmx.c > Make PHY address lookups fail instead of using CAM-0100 entries > when the system board is unhandled. (visa@) ~ cn30xxgmx.c > If the system has fdt, use it for locating network PHYs. > Skip a network port if its PHY cannot be found. > Tested on Lanner MR-326B (has fdt) by pirofti@, and > on EdgeRouter Pro (has fdt) and on EdgeRouter Lite (no fdt) by me. (visa@) arch/octeon/include ~ octeonvar.h > Make PHY address lookups fail instead of using CAM-0100 entries > when the system board is unhandled. (visa@) arch/octeon/octeon ~ machdep.c > Increment `ncpus' to its final value already during autoconfiguration so > that percpu data areas get allocated properly on mips64 platforms. It is > too late to set the value during launch of secondary CPUs. > ok jasper@ kettenis@ dlg@ (visa@) ~ machdep.c > Revert previous `ncpus' change because the percpu code now works > without it. (visa@) arch/sgi/conf ~ Makefile.sgi > make cleandir should skip the version file; ok otto millert (deraadt@) ~ Makefile.sgi > We don't generate an eddep script for kernel builds nowadays. The last > reference to eddep in the kernel Makefile I could find is in 4.3BSD, > released some 30 years ago. > ok tb millert (natano@) arch/sgi/sgi ~ ip27_machdep.c ~ ip30_machdep.c > Increment `ncpus' to its final value already during autoconfiguration so > that percpu data areas get allocated properly on mips64 platforms. It is > too late to set the value during launch of secondary CPUs. > ok jasper@ kettenis@ dlg@ (visa@) ~ ip27_machdep.c ~ ip30_machdep.c > Revert previous `ncpus' change because the percpu code now works > without it. (visa@) arch/socppc/conf ~ Makefile.socppc > make cleandir should skip the version file; ok otto millert (deraadt@) ~ Makefile.socppc > We don't generate an eddep script for kernel builds nowadays. The last > reference to eddep in the kernel Makefile I could find is in 4.3BSD, > released some 30 years ago. > ok tb millert (natano@) arch/sparc64/conf ~ Makefile.sparc64 > make cleandir should skip the version file; ok otto millert (deraadt@) ~ Makefile.sparc64 > We don't generate an eddep script for kernel builds nowadays. The last > reference to eddep in the kernel Makefile I could find is in 4.3BSD, > released some 30 years ago. > ok tb millert (natano@) dev/acpi ~ acpi.c ~ acpiprt.c ~ bytgpio.c ~ chvgpio.c ~ dsdt.c ~ dsdt.h ~ dwiic.c ~ sdhc_acpi.c ~ tpm.c > Add the resource index to aml_parse_resource() callback function. > This is needed by an upcoming acpiec commit that handles machines breaking > the current ACPI specifications. > Change suggested by and ok kettenis@, guenther@ (pirofti@) ~ acpidev.h ~ acpiec.c > Deduplicate the CRS parsing code and handle broken ACPI implementations. > This change was prompted by a report from Ilya Kaliman where acpiec(4) > failed to initialize on his Acer Aspire S7. > Further investigations showed that the machine had 4 instead of 2 resources > defined inside the EC device which is a violation of all existing ACPI > revisions. > We now handle such machines by using the aml resource parser directly, > which > lead to the removal of the existing one from acpiec.c, and ignoring extra > resources (although they are reported in the dmesg). > In the process I also done a couple of more style(9) fixes. > Suggested by and ok guenther@ (pirofti@) dev/ic ~ nvme.c ~ nvmevar.h > mask and unmask the interrupt source in an intx specific intr handler. > it seems devices using levelled intx interrupts need to explicitely ack > interrupts by masking and unmasking the source around the completion > ring handling. without this completions can be lost, which in turn > causes long (permanent?) stalls in the block layer under heavy write > load. > ive experienced this problem with an intel nvme part that only has > intx and msix support. because we dont support msix yet we only > use intx on it. it appeared to lock up before this fix. > this has been tested on both that intel board and a samsung with msi. > this fix was based on work found in code by nonaka (dlg@) dev/pci ~ mpii.c ~ mpiireg.h > augment the scsi_probe handler so it tries to query the sas dev pg 0 > sas dev pg0 tells us interesting things, like the devices sas addresses > and if it is ATAPI or not. (dlg@) ~ mfii.c > Add scsi ioctl hook to do a special treatment for DIOC{G,S}CACHE which > is already done in mfi(4). > ok dlg (yasuoka@) ~ mfii.c > Make mfii(4) bio(4) capable. > ok dlg (yasuoka@) ~ mfii.c > Backout last 2 revisions. Requested by deraadt. (yasuoka@) ~ nvme_pci.c > mask and unmask the interrupt source in an intx specific intr handler. > it seems devices using levelled intx interrupts need to explicitely ack > interrupts by masking and unmasking the source around the completion > ring handling. without this completions can be lost, which in turn > causes long (permanent?) stalls in the block layer under heavy write > load. > ive experienced this problem with an intel nvme part that only has > intx and msix support. because we dont support msix yet we only > use intx on it. it appeared to lock up before this fix. > this has been tested on both that intel board and a samsung with msi. > this fix was based on work found in code by nonaka (dlg@) ~ if_em.c ~ if_ix.c ~ if_em.h > tell ix and em to use 2k+ETHER_ALIGN clusters for rx on all archs. > this means that the ethernet header and therefore its payload will > be aligned correctly for the stack. without this em and ix are > sufferring a 30 to 40 percent hit in forwarding performance because > the ethernet stack expects to be able to prepend 8 bytes for an > ethernet header so it can gaurantee its alignment. because em and > ix only had 6 bytes where the ethernet header was, it always prepends > an mbuf which turns out to be expensive. this way the prepend will > be cheap because the 8 byte space will exist. > 2k+ETHER_ALIGN clusters will end up using the newly created mcl2k2 > pool. > the regression was isolated and the fix tested by hrvoje popovski. > ok mikeb@ (dlg@) ~ if_iwn.c > In iwn(4), stop forcing RTS for every frame in 11n mode. > The RTS threshold should be good enough and applies to all modes. > A similar change was made in iwm(4) not long ago. > tested by myself and benno@ (stsp@) ~ if_myx.c > get rid of the custom pool in myx for jumbo frames. > now it asks the mbuf layer for the 9k from its pools. > a question from chris@ made me go look at the chip doco again and i > realised that the chip only requires 4 byte alignment for rx buffers, > no 4k alignment for jumbo buffers. > i also found that the chip is supposed to be able to rx up to 9400 > bytes instead of 9000. ill fix that later though. (dlg@) dev/pckbc ~ pms.c > Improved parameter handling in wsmouse and new ioctls for reading and > setting parameter values. > ok matthieu@ (bru@) dev/pv ~ hyperv.c ~ hypervic.c ~ hypervicreg.h ~ hypervvar.h ~ if_hvn.c > Channel API users should pick the bufring size > hvn(4) needs to be able to put up to 128 RNDIS data messages on the > channel ring each pointing up to 16 fragments in addition to a small > number of RNDIS control messages. This simplifies accounting of > available TX descriptors in relation to the available space on the > channel ring and as a results prevents packet drops due to the ring > being full. (mikeb@) ~ hyperv.c > Improve channel ring locking strategy > Make sure to hold the ring buffer lock for the complete duration > of a channel ring I/O operation. For read operations this means > peeking and reading is done uninterrupted and for both reads and > writes this places the buffer space availability check under the > same lock as well. (mikeb@) ~ pvbus.c > vmm is also available on i386 now, so don't restrict it to amd64. > OK mikeb@ mlarkin@ (reyk@) ~ hypervic.c > Improve protocol version negotiation for Integrated Components > modelled on the upstream version. (mikeb@) dev/usb ~ if_umb.c > Make kernel without INET6 compile again. > OK mikeb@ (bluhm@) ~ uaudio.c > Uniformize debug printfs, by using consistently __func__ everywhere. > From Michael W. Bombardieri <mb at ii.net> (ratchov@) dev/wscons ~ wsconsio.h ~ wsmouse.c ~ wsmouseinput.h ~ wsmousevar.h > Improved parameter handling in wsmouse and new ioctls for reading and > setting parameter values. > ok matthieu@ (bru@) kern ~ uipc_syscalls.c > dns hijacking must be af specific. move it into the port check function, > and redirect inet6 sockets to the ::1 flavor of localhost. (tedu@) ~ uipc_syscalls.c > handle non-INET6 kernels in some way (deraadt@) ~ uipc_syscalls.c > unbreak by fixing obvious pastos (naddy@) ~ subr_percpu.c > non-MP vs MP codepaths were confusingly split between the .c and .h file. > Unify these by placing #ifdef MULTIPROCESSOR inside the functions, then > collapse further to reduce _KERNEL blocks > ok dlg (deraadt@) ~ init_main.c ~ kern_sysctl.c ~ uipc_mbuf.c > move the mbstat structure to percpu counters > each cpus counters still have to be protected by splnet, but this > is better thana single set of counters protected by a global mutex. > ok bluhm@ (dlg@) ~ subr_percpu.c ~ uipc_mbuf.c > avoid using realloc in the name of things that dont work like realloc. > cpumem_realloc and counters_realloc actually allocated new per cpu data > for new cpus, they didnt resize the existing allocation. > specifically, this renames cpumem_reallod to cpumem_malloc_ncpus, and > counters_realloc to counters_alloc_ncpus. > ok (and with some fixes by) bluhm@ (dlg@) ~ uipc_mbuf.c > add a new pool for 2k + 2 byte (mcl2k2) clusters. > a certain vendor likes to make chips that specify the rx buffer > sizes in kilobyte increments. unfortunately it places the ethernet > header on the start of the rx buffer, which means if you give it a > mcl2k cluster, the ethernet header will not be ETHER_ALIGNed cos > mcl2k clusters are always allocated on 2k boundarys (cos they pack > into pages well). that in turn means the ip header wont be aligned > correctly. > the current workaround on these chips has been to let non-strict > alignment archs just use the normal 2k cluster, but use whatever > cluster can fit 2k + 2 on strict archs. that turns out to be the > 4k cluster, meaning we waste nearly 2k of space on every packet. > properly aligning the ethernet header and ip headers gives a > performance boost, even on non-strict archs. (dlg@) ~ uipc_mbuf.c > refactor m_pullup a bit. > the most important change is that if the requested data is already > in the first mbuf in the chain, return quickly. > if that isnt true, the code will try to use the first mbuf to fit > the requested data. > if that isnt true, it will prepend an mbuf, and maybe a cluster, > to fit the requested data. > m_pullup will now try to maintain the alignment of the original > payload, even when prepending a new mbuf for it. > ok mikeb@ (dlg@) ~ subr_percpu.c > use ncpusfound to size the percpu allocations. > ncpus is used on half the architectures to indicate the number of > cpus that have been hatched, and is used on them in things like ddb > to figure out how many cpus to shut down again. > ncpusfound is incremented during autoconf on MP machines to show > how big ncpus will probably become. percpu is initted after autoconf > but before cpus are hatched, so this works well. (dlg@) ~ kern_pledge.c > For consistency, allow symlinkat(2) in the same way as symlink(2); > no need to wait until the first program using it breaks... > "could make sense" semarie@ (and thanks for the cluestick) > OK deraadt@ (schwarze@) net ~ switchofp.c > Don't free mbuf on error during swofp_flow_entry_put_instructions() parse, > otherwise we won't have the request ofp_header to send in the error > message. > ok jca@ (rzalamena@) ~ if_vxlan.c > Make kernel without INET6 compile again. > OK mikeb@ (bluhm@) ~ if_pflog.c ~ pf.c ~ pf_ioctl.c ~ pf_lb.c ~ pf_norm.c ~ pf_osfp.c ~ pf_table.c ~ pfvar.h + pfvar_priv.h > Put union pf_headers and struct pf_pdesc into separate header file > pfvar_priv.h. The pf_headers had to be defined in multiple .c files > before. In pfvar.h it would have unknown storage size, this file > is included in too many places. The idea is to have a private pf > header that is only included in the pf part of the kernel. For now > it contains pf_pdesc and pf_headers, it may be extended later. > discussion, input and OK henning@ procter@ sashan@ (bluhm@) ~ if.h > add a new pool for 2k + 2 byte (mcl2k2) clusters. > a certain vendor likes to make chips that specify the rx buffer > sizes in kilobyte increments. unfortunately it places the ethernet > header on the start of the rx buffer, which means if you give it a > mcl2k cluster, the ethernet header will not be ETHER_ALIGNed cos > mcl2k clusters are always allocated on 2k boundarys (cos they pack > into pages well). that in turn means the ip header wont be aligned > correctly. > the current workaround on these chips has been to let non-strict > alignment archs just use the normal 2k cluster, but use whatever > cluster can fit 2k + 2 on strict archs. that turns out to be the > 4k cluster, meaning we waste nearly 2k of space on every packet. > properly aligning the ethernet header and ip headers gives a > performance boost, even on non-strict archs. (dlg@) ~ switchofp.c > Avoid a use after free in swofp_flow_timeout(). The > swofp_flow_entry_delete() call frees the memory pointed to by the swfe > variable which was used later in the loop. > ok rzalamena@ (jsg@) ~ if_pfsync.c ~ pf.c ~ pfvar.h > Pass a struct pf_pdesc to pf_route() like it is done in the other > pf functions. That means less parameters, more consistency and > later we can call functions that need a pd from pf_route(). > OK sashan@ (bluhm@) ~ pf_ioctl.c ~ pf.c > - once rule should not attempt to remove its parent rule. > (problem pointed out by Petr, fix proposed by Dilli) _at_ oracle (sashan@) ~ if_switch.c ~ if_switch.h ~ switchofp.c > When doing pktout we must run the classifier again, because some action(s) > might want to use it. For buffered packets we probably need to save that > somehow else, but we don't support it now. > ok reyk@ (rzalamena@) ~ if_switch.c > Remove unused function, the code is already inlined in action_output > function. > ok reyk@ (rzalamena@) ~ ofp.h > Rename pad fields to have struct prefixes, remove useless whitespaces and > add missing action_set_queue struct. > ok reyk@ (rzalamena@) ~ switchofp.c > Simplify the OFP_FLOW_MOD_MSG_INSTRUCTION_OFFSET() by using another macro > already does exactly what it wants to do. > ok reyk@ (rzalamena@) ~ switchofp.c > Change swofp_flow_table_add() malloc() behaviour to be non-blocking like > all others that we can find in switch(4). > ok reyk@ (rzalamena@) ~ switchofp.c > The function swofp_flow_entry_put_instructions() doesn't need to receive > a pointer to a mbuf pointer, because it only uses the mbuf for reading. > ok reyk@ (rzalamena@) ~ bpf.h > add __BEGIN_DECLS/__END_DECLS to the public userland side of net/bpf.h, > so c++ programs can use them. > OK jca@ (phessler@) netinet ~ ip_carp.c > Accept CARP advertisement packets whose destination is not for multicast. > When both "carppeer" and "real mac-address" are used at once and the > BACKUP is to take over the new MASTER, the present MASTER receives > such packets. Found by and diff from nagasaka at iij. > ok henning bluhm (yasuoka@) netinet6 ~ frag6.c > When the IPv6 network stack receives an empty non atomic fragment, > just drop it. It can never overlap existing content, there is no > ambiguous payload. So save resources and do not try to insert it > into the queue. This makes our IPv6 stack behave like pf fragment > reassembly. > OK deraadt@ (bluhm@) ~ raw_ip6.c > Fix bind(2)ing link local addresses to raw sockets by calling > in6_pcbaddrisavail() which does all the checking for us instead of > hand rolling half of it. > Input & OK bluhm@ > bluhm@ also points out that this relaxes the check for valid addresses > a bit, deprecated addresses become valid for raw sockets. This should > be fine, it brings raw sockets in line with udp/tcp sockets and it > might be particularly interesting for debugging purposes. (florian@) ~ raw_ip6.c > bluhm@ pointed out that addr->sin6_port should be forced to zero since > a port doesn't make sense for a raw socket. > I forgot to commit this hunk in the previous commit. Sorry about that. > (florian@) sys ~ percpu.h > non-MP vs MP codepaths were confusingly split between the .c and .h file. > Unify these by placing #ifdef MULTIPROCESSOR inside the functions, then > collapse further to reduce _KERNEL blocks > ok dlg (deraadt@) ~ mbuf.h > move the mbstat structure to percpu counters > each cpus counters still have to be protected by splnet, but this > is better thana single set of counters protected by a global mutex. > ok bluhm@ (dlg@) ~ percpu.h > avoid using realloc in the name of things that dont work like realloc. > cpumem_realloc and counters_realloc actually allocated new per cpu data > for new cpus, they didnt resize the existing allocation. > specifically, this renames cpumem_reallod to cpumem_malloc_ncpus, and > counters_realloc to counters_alloc_ncpus. > ok (and with some fixes by) bluhm@ (dlg@) == usr.bin =========================================================== 09/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin basename ~ basename.c > Delete some useless setlocale(3) calls in /usr/bin, no functional change. > Patches from Jan Stary <hans at stare dot cz>, tweaked by me and tb@. > While here, apply some simple style improvements: > Sort headers, static void __dead usage(), return from main(), > zap case '?', drop /* NOTREACHED */, drop break after usage(), ... > OK tb@ millert@ (schwarze@) cmp ~ cmp.c > Delete some useless setlocale(3) calls in /usr/bin, no functional change. > Patches from Jan Stary <hans at stare dot cz>, tweaked by me and tb@. > While here, apply some simple style improvements: > Sort headers, static void __dead usage(), return from main(), > zap case '?', drop /* NOTREACHED */, drop break after usage(), ... > OK tb@ millert@ (schwarze@) colrm ~ colrm.1 > Unify wording for LC_CTYPE in ENVIRONMENT: > * Consistently use "character encoding locale" as suggested by stsp@. > * Resolve various gratuitious wording variations. > OK jmc@. (schwarze@) ~ colrm.c > obvious case of s/LC_ALL/LC_CTYPE/, noticed by Jan Stary (schwarze@) column ~ column.1 > As suggested by martijn@, delete absurd EXAMPLES section and two > irrelevant .Xr links. While here, add two .Xr links that are relevant. > OK martijn@ jmc@ (schwarze@) csplit ~ csplit.c > Delete some useless setlocale(3) calls in /usr/bin, no functional change. > Patches from Jan Stary <hans at stare dot cz>, tweaked by me and tb@. > While here, apply some simple style improvements: > Sort headers, static void __dead usage(), return from main(), > zap case '?', drop /* NOTREACHED */, drop break after usage(), ... > OK tb@ millert@ (schwarze@) cut ~ cut.1 > Unify wording for LC_CTYPE in ENVIRONMENT: > * Consistently use "character encoding locale" as suggested by stsp@. > * Resolve various gratuitious wording variations. > OK jmc@. (schwarze@) cvs ~ tag.c > minor whitespace fixes. (joris@) dirname ~ dirname.c > Delete some useless setlocale(3) calls in /usr/bin, no functional change. > Patches from Jan Stary <hans at stare dot cz>, tweaked by me and tb@. > While here, apply some simple style improvements: > Sort headers, static void __dead usage(), return from main(), > zap case '?', drop /* NOTREACHED */, drop break after usage(), ... > OK tb@ millert@ (schwarze@) env ~ env.c > Delete some useless setlocale(3) calls in /usr/bin, no functional change. > Patches from Jan Stary <hans at stare dot cz>, tweaked by me and tb@. > While here, apply some simple style improvements: > Sort headers, static void __dead usage(), return from main(), > zap case '?', drop /* NOTREACHED */, drop break after usage(), ... > OK tb@ millert@ (schwarze@) fmt ~ fmt.1 > Unify wording for LC_CTYPE in ENVIRONMENT: > * Consistently use "character encoding locale" as suggested by stsp@. > * Resolve various gratuitious wording variations. > OK jmc@. (schwarze@) fold ~ fold.1 > Unify wording for LC_CTYPE in ENVIRONMENT: > * Consistently use "character encoding locale" as suggested by stsp@. > * Resolve various gratuitious wording variations. > OK jmc@. (schwarze@) getconf ~ getconf.c > Delete some useless setlocale(3) calls in /usr/bin, no functional change. > Patches from Jan Stary <hans at stare dot cz>, tweaked by me and tb@. > While here, apply some simple style improvements: > Sort headers, static void __dead usage(), return from main(), > zap case '?', drop /* NOTREACHED */, drop break after usage(), ... > OK tb@ millert@ (schwarze@) less ~ less.1 > Unify wording for LC_CTYPE in ENVIRONMENT: > * Consistently use "character encoding locale" as suggested by stsp@. > * Resolve various gratuitious wording variations. > OK jmc@. (schwarze@) locale ~ locale.1 > Document the LC_* variables in more detail > and explain what is special about locales in OpenBSD. > Lots of feedback and OK jmc@. (schwarze@) ~ locale.1 > Polishing together with jmc@: > Avoid the impression that we unconditionally recommend > LC_CTYPE=en_US.UTF-8. > Make it clear that not all parts of the system fully support it yet. > Collect the sentences drawing the big picture into a single paragraph, > and move it to a less unusual place, right after the option list. > (schwarze@) make ~ make.1 ~ parse.c ~ parsevar.c ~ var.c ~ var.h > add !!= > feedback and okay millert@ (espie@) ~ make.1 > zap trailing whitespace; (jmc@) mg ~ echo.c > remove double semicolon > from Brian Callahan (jasper@) netstat ~ mbuf.c > there's a new mbuf cluster pool. (dlg@) nice ~ nice.c > Delete some useless setlocale(3) calls in /usr/bin, no functional change. > Patches from Jan Stary <hans at stare dot cz>, tweaked by me and tb@. > While here, apply some simple style improvements: > Sort headers, static void __dead usage(), return from main(), > zap case '?', drop /* NOTREACHED */, drop break after usage(), ... > OK tb@ millert@ (schwarze@) nl ~ nl.1 > Document that "nl -d" uses LC_CTYPE. > Triggered by an incorrect patch from Jan Stary. > Feedback and OK jmc@, OK millert@. (schwarze@) rev ~ rev.1 > Document that rev(1) uses LC_CTYPE. > Triggered by an incorrect patch from Jan Stary. > While here, add an .Xr to cut(1). > OK millert@ jmc@ (schwarze@) rs ~ rs.1 > Unify wording for LC_CTYPE in ENVIRONMENT: > * Consistently use "character encoding locale" as suggested by stsp@. > * Resolve various gratuitious wording variations. > OK jmc@. (schwarze@) sed ~ sed.1 > make it clear that the s/// numeric flag can contain > more than one digit but cannot start with zero; > feedback and OK jmc@, OK jca@, OK millert@ on an earlier version > (schwarze@) sndiod ~ dsp.c ~ file.c ~ siofile.c ~ sock.c > Fix many typos in comments, from Michael W. Bombardieri <mb at ii.net> > (ratchov@) ssh ~ misc.c ~ misc.h ~ readconf.c ~ serverloop.c > Factor out "can bind to low ports" check into its own function. This will > make > it easier for Portable to support platforms with permissions models other > than > uid==0 (eg bz#2625). ok djm@, "doesn't offend me too much" deraadt@. > (dtucker@) ~ sshkey.c ~ servconf.c > Remove dead breaks, found via opencoverage.net. ok deraadt@ (dtucker@) ~ readconf.c > Fix logic in add_local_forward() that inverted a test when code was > refactored out into bind_permitted(). This broke ssh port forwarding > for non-priv ports as a non root user. > ok dtucker@ 'looks good' deraadt@ (jsg@) ~ ssh-pkcs11.c > Improve pkcs11_add_provider() logging: demote some excessively > verbose error()s to debug()s, include PKCS#11 provider name and slot > in log messages where possible. > bz#2610, based on patch from Jakub Jelen (djm@) tee ~ tee.c > Delete some useless setlocale(3) calls in /usr/bin, no functional change. > Patches from Jan Stary <hans at stare dot cz>, tweaked by me and tb@. > While here, apply some simple style improvements: > Sort headers, static void __dead usage(), return from main(), > zap case '?', drop /* NOTREACHED */, drop break after usage(), ... > OK tb@ millert@ (schwarze@) tmux ~ alerts.c > Do not handle activity or silence alerts in the current window, reported > by jasper@. (nicm@) ~ cmd-load-buffer.c > Buffer name can be NULL, check before strdup(). (nicm@) ul ~ ul.1 > Unify wording for LC_CTYPE in ENVIRONMENT: > * Consistently use "character encoding locale" as suggested by stsp@. > * Resolve various gratuitious wording variations. > OK jmc@. (schwarze@) uname ~ uname.c > Delete some useless setlocale(3) calls in /usr/bin, no functional change. > Patches from Jan Stary <hans at stare dot cz>, tweaked by me and tb@. > While here, apply some simple style improvements: > Sort headers, static void __dead usage(), return from main(), > zap case '?', drop /* NOTREACHED */, drop break after usage(), ... > OK tb@ millert@ (schwarze@) uniq ~ uniq.1 > Unify wording for LC_CTYPE in ENVIRONMENT: > * Consistently use "character encoding locale" as suggested by stsp@. > * Resolve various gratuitious wording variations. > OK jmc@. (schwarze@) wc ~ wc.1 > Unify wording for LC_CTYPE in ENVIRONMENT: > * Consistently use "character encoding locale" as suggested by stsp@. > * Resolve various gratuitious wording variations. > OK jmc@. (schwarze@) which ~ which.c > Delete some useless setlocale(3) calls in /usr/bin, no functional change. > Patches from Jan Stary <hans at stare dot cz>, tweaked by me and tb@. > While here, apply some simple style improvements: > Sort headers, static void __dead usage(), return from main(), > zap case '?', drop /* NOTREACHED */, drop break after usage(), ... > OK tb@ millert@ (schwarze@) == usr.sbin ========================================================== 10/10 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin bgpctl ~ bgpctl.8 > nicer list width; from julien dhaille (jmc@) bgpd ~ rde.h > Huawei squatted on BGP Path Attribute 30, and Cisco squatted on 31. So, > IANA moved the Large Communities attribute to 32, which is a nice pun on > the problem it is solving. (phessler@) ~ bgpd.conf.5 > large-community needs to have an argument (phessler@) config ~ ukcutil.c > Remove OLDSCSIBUS conditional. Unused since it was imported 21 years ago. > ok natano (tb@) ~ mkioconf.c > Remove some code that was already disabled when it was committed > 20 years ago. While there, eliminate two dead assignments. > ok natano (tb@) dhcpd ~ dhcp.c > Compare server-identifiers and reject packets only *after* applying > value specified in dhcpd.conf. > i.e. don't assume it is always the primary address of the interface > the packet arrived on. > Fixes issues with redundant dhcpd servers and CARP'd interfaces. > Issue reported and fix tested by Johan Huldtgren (krw@) makefs ~ cd9660.c ~ ffs.c ~ makefs.c ~ makefs.h ~ msdos.c ~ msdos/mkfs_msdos.h > Remove short option names for -o. (natano@) ~ cd9660.c ~ cd9660.h ~ makefs.8 ~ cd9660/cd9660_write.c > Remove cd9660's keep-bad-images option. (natano@) ~ msdos/mkfs_msdos.c ~ msdos/mkfs_msdos.h > Remove the msdos no_create option. (natano@) ~ cd9660.c ~ cd9660.h ~ cd9660/cd9660_eltorito.c ~ cd9660/cd9660_write.c ~ msdos/msdosfs_vfsops.c > No verbose flag for cd9660. (natano@) ~ makefs.8 > document the options for msdos systems; help/ok natano (jmc@) ~ makefs.c > convert usage() to just spit out the normal options list, > instead of trying to list all the fs-specific stuff; > help/ok natano (jmc@) ~ cd9660.c ~ cd9660.h ~ ffs.c ~ makefs.8 ~ makefs.c ~ makefs.h ~ msdos.c ~ msdos/mkfs_msdos.h > Remove FS-specific option descriptions from the source code. We have a > manual for that. While there document the isolevel option and remove > some dysfunctional cd9660 options. (natano@) ~ cd9660.c > Use OPT_BOOL, not OPT_INT32 for boolean cd9660 options. (natano@) ~ cd9660.c ~ cd9660.h ~ makefs.8 ~ cd9660/cd9660_eltorito.c > Remove cd9660's chrp-boot option. deraadt confirmed we don't support any > CHRP hardware. (natano@) ~ makefs.8 > Add the omit-trailing-period cd9660 option to the manual. (natano@) ~ makefs.8 ~ cd9660/cd9660_eltorito.c > mac68k is discontinued (natano@) ~ cd9660.c ~ cd9660.h ~ ffs.c ~ cd9660/cd9660_eltorito.c ~ cd9660/cd9660_write.c ~ ffs/buf.c ~ ffs/ffs_alloc.c ~ ffs/mkfs.c > s/EXIT_FAILURE/1/ (natano@) nsd ~ Makefile.in ~ axfr.c ~ configlexer.lex ~ configparser.y ~ configure.ac ~ difffile.c ~ dns.c ~ dns.h ~ edns.c ~ edns.h ~ namedb.c ~ namedb.h ~ nsd-checkconf.c ~ nsd-control.c ~ nsd-mem.c ~ nsd.conf.5.in ~ nsd.conf.sample.in ~ nsec3.c ~ options.c ~ options.h ~ query.c ~ query.h ~ remote.c ~ tsig-openssl.c ~ tsig.c ~ xfrd-disk.c ~ xfrd-tcp.c ~ xfrd.c ~ xfrd.h ~ zlexer.lex ~ zparser.y > Update to 4.1.13 > Testing millert, brad and myself. > OK millert@ (florian@) ~ configure > regen (florian@) ~ configlexer.lex ~ zlexer.lex > do not ignore -Wsign-compare; requested by deraadt@ (florian@) pstat ~ pstat.c > For -d, if there is no modifier, don't go down the "longformat" path. > Fixes cases like "pstat -d x ticks" on armv7. > ok jca@, deraadt@ (kettenis@) rebound ~ rebound.c > listen on inet6 sockets as well. we need this because stolen inet6 sockets > can't be redirected to inet4 listeners. (tedu@) ~ rebound.c > unbreak by fixing obvious pastos (naddy@) snmpctl ~ snmpctl.c > Make snmpctl compile again after the env -> snmpd_env rename in snmpd's > smi.c r1.20. > ok cc(1) (natano@) snmpd ~ kroute.c ~ mib.c ~ mps.c ~ smi.c ~ snmpd.h ~ snmpe.c ~ timer.c ~ trap.c ~ usm.c > Use snmpd_env as the only global variable for env to simplify the daemon > and avoid problems. > ok jca@ (rzalamena@) ~ proc.c ~ snmpd.c ~ snmpd.h ~ snmpe.c ~ traphandler.c > Sync snmpd(8) with other daemons proc.c and teach him how to fork+exec. > ok jca@, reyk@ (rzalamena@) tcpdump ~ print-ofp.c > Add missing OpenBSD keyword in the first line. (rzalamena@) ~ print-bgp.c > Huawei squatted on BGP Path Attribute 30, and Cisco squatted on 31. So, > IANA moved the Large Communities attribute to 32, which is a nice pun on > the problem it is solving. (phessler@) ~ print-pfsync.c > Don't assume clr->ifname is a NUL-terminated printable string. > Use vis(3) to safely print ifname and stop at IFNAMSIZ bytes. > Found with afl by jsg@. OK jsg@ (millert@) ~ pf_print_state.c > Don't assume s->ifname is NUL terminated and printable. > As in pfsync_print_clr() use vis(3) in print_state(). This was also > found with afl though with a different input. (jsg@) ~ print-atalk.c > Return early from atalk_print_llap() if the length is less than the > size of a header to avoid an integer underflow. > Found with afl. (jsg@) ~ print-ip.c > Replace a snapend test in ip_print() with a call to TCHECK2 as there > is already a trunc label with the same printf in the function. (jsg@) ~ print-ip.c > If a length from an ip packet encapsulated in gre or etherip would cause > the position to go past snapend truncate. Found with afl. (jsg@) vmctl ~ Makefile > vmd(8)/vmctl(8) for i386. Some ugliness in #ifdef __i386__ areas will be > fixed in tree, but the changes required were pretty minimal. > Note that i386 hosts are still presently limited to running i386 guests. > ok deraadt, stefan, jca (mlarkin@) vmd ~ Makefile ~ i8253.c ~ loadfile_elf.c ~ mc146818.c ~ ns8250.c ~ vmm.c > vmd(8)/vmctl(8) for i386. Some ugliness in #ifdef __i386__ areas will be > fixed in tree, but the changes required were pretty minimal. > Note that i386 hosts are still presently limited to running i386 guests. > ok deraadt, stefan, jca (mlarkin@) ~ config.c ~ parse.y ~ priv.c ~ vmd.c ~ vmd.h ~ vmm.c > Separate parsing vms and switches from starting them in vmd(8). > Brings us one step closer to having disabled by default vms is vm.conf(5), > which can be started with vmctl(8). > Input, testing and OK reyk@. Thanks. (edd@) ~ parse.y > Simple grammar tweak: allow to specify interface options in a single line. > (reyk@) =============================================================================== _______________________________________________ owc mailing list [email protected] http://www.squish.net/mailman/listinfo/owc
