OpenBSD src changes summary for 2017-09-10 to 2017-09-17 inclusive ==================================================================
Makefile.cross bin/md5 bin/pax distrib/alpha distrib/armv7 distrib/ramdisk gnu/usr.bin/binutils-2.17 include/strings.h lib/libc libexec/login_yubikey regress/sbin regress/sys regress/usr.bin regress/usr.sbin sbin/dhclient sbin/ifconfig sbin/slaacd share/man sys/arch/alpha/alpha sys/arch/alpha/conf sys/arch/amd64/amd64 sys/arch/amd64/conf sys/arch/arm/mainbus sys/arch/arm64/arm64 sys/arch/arm64/conf sys/arch/armv7/conf sys/arch/armv7/omap sys/arch/hppa/conf sys/arch/i386/conf sys/arch/i386/i386 sys/arch/landisk/conf sys/arch/loongson/conf sys/arch/luna88k/conf sys/arch/macppc/conf sys/arch/mips64/mips64 sys/arch/octeon/conf sys/arch/octeon/octeon sys/arch/powerpc/powerpc sys/arch/sgi/conf sys/arch/socppc/conf sys/arch/sparc64/conf sys/conf sys/ddb sys/dev/fdt sys/dev/usb sys/kern usr.bin/awk usr.bin/mandoc usr.bin/nm usr.bin/pctr usr.bin/ssh usr.bin/tftp usr.bin/tmux usr.sbin/bgpd usr.sbin/pkg_add usr.sbin/pwd_mkdb usr.sbin/relayd usr.sbin/rtadvd usr.sbin/smtpd usr.sbin/syslogd usr.sbin/vmd == Makefile.cross ==================================================== 01/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/Makefile.cross Makefile.cross > Fix cross-compiling GCC toolchains on Clang archs. > ok patrick@ (mpi@) == bin =============================================================== 02/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/bin md5 ~ md5.c > Use getrusage(2) for the built-in time trial instead of getttimeofday(2). > This makes it possible to measure just the ellapsed user time, which > is what we really care about when benchmarking an algorithm. > OK deraadt@ (millert@) pax ~ pat_rep.c > Backslash escapes the next character in filename patterns. > ok millert@ (guenther@) ~ cpio.c ~ extern.h ~ pax.h ~ tables.c ~ tar.c > there is no offical way to get the max value of time_t, but this one works > on any sensible posix system (in which time_t must be an integer type) > ok deraadt@ millert@ (otto@) ~ cpio.c ~ ftree.c ~ pat_rep.c ~ tables.c ~ tar.c > Carefully add casts to silence clang sign-compare warnings. ok millert@ > (otto@) == distrib =========================================================== 03/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib alpha ~ Makefile > Give up on alpha floppies for now (deraadt@) ~ bsd.rd/Makefile ~ common/Makefile.inc ~ inst-common/Makefile.inc > Some further shrinking, but obviously not enough. Something unknown > caused bloat about a month ago (and it wasn't purely the ctf additions > since those are being stripped). Maybe the compiler generates > different code when stronger debugging information is requested? (deraadt@) armv7 ~ miniroot/am335x/Makefile ~ ramdisk/list > Add dtbs the am335x_boneblack U-Boot image may use if a matching model > is found. (jsg@) ramdisk ~ Makefile > use strip directly. The layers if macros are not actually helpful. > (deraadt@) == gnu =============================================================== 04/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/gnu usr.bin/binutils-2.17 ~ bfd/Makefile.in > missing parts for arm64, dependencies needed. > spotted by deraadt@, fix turns out to be identical to more recent binutils. > (espie@) == include =========================================================== 05/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/include strings.h ~ strings.h > str[n]casecmp_l(3) appeared in POSIX 2008, not in XPG 4; > phessler@ reported that this oversight broke an armv7 bulk build; > OK guenther@ (schwarze@) == lib =============================================================== 06/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libc ~ gen/sysctl.3 > sysctl strings include the termingating NUL character in both in and out > lengths > Prompted by Nan Xiao noticing the redundancy of bzero+termination - thanks. > ok deraadt@ (tom@) ~ gen/getcwd.3 > Fix spelling of 4.3BSD-Net/2. (schwarze@) ~ termios/tcflow.c ~ termios/tcsendbreak.c ~ gen/sysconf.c ~ gen/shm_open.c > shm_open(), sysconf(), tcflow(), and tcsendbreak() are not permitted to be > cancellation points in POSIX, so change them to invoke the non-cancellation > point versions of open(), close(), nanosleep(), and write() > ok deraadt@ millert@ (guenther@) ~ stdlib/malloc.c > check double free before canary for chunks; ok millert@ (otto@) ~ gen/sysctl.3 > Update the documentation regarding /dev/mem and /dev/kmem; > Theo already clamped down on these devices last year. > Triggered by a question from Nan Xiao <xiaonan830818 at gmail dot com>. > OK deraadt@ (schwarze@) ~ stdlib/malloc.c > mapalign returns MAP_FAILED for failuer; from George Koehler (otto@) ~ gen/setprogname.c > __progname has type char *, we cannot change its type without causing > havoc all over the place. So add some casts to silence the compiler. > ok deraadt@ guenther@ (otto@) == libexec =========================================================== 07/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/libexec login_yubikey ~ yubikey.c > Make sure to freezero() the wide-character copy of the user supplied > password. > While here, change the mbstowcs() error checking making it complaint with > what's > documented in the manual and zap some stray whitespace. > ok benno@ tb@ (anton@) == regress =========================================================== 08/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/regress sbin ~ route/Makefile ~ route/rttest30.ok > Sleep for some time to avoid race reporting a different number of reference > count. > Iterating over the routing table implies using SRP which bump the refcount > of routes for a short period of time. Depending on how work is schedule > the second ifconfig(8) command might run before the timer dereference the > route. > Should fix races on bluhm@'s test setup. (mpi@) sys ~ netinet/frag/Makefile ~ netinet/frag/pf.conf ~ netinet6/frag6/Makefile ~ netinet6/frag6/pf.conf > Clean up pf rules and states on remote machine so that they do not > interfere with later tests. (bluhm@) ~ kern/ptrace/ptrace.c > The copyin(9) family of functions should return EFAULT for all memory > protection issues. So make amd64 do that instead of passing through > uvm_fault()'s return value, which lead to other possible errors > (particularly EACCES) being returned to userspace. Clean up a vestige > on arm64 too. > ok bluhn@ deraadt@ (guenther@) usr.bin ~ ssh/agent-getpeereid.sh > Print SKIPPED if sudo and doas configuration is missing. Prevents > that running the regression test with wrong environment is reported > as failure. Keep the fatal there to avoid interfering with other > setups for portable ssh. > OK dtucker@ (bluhm@) usr.sbin ~ syslogd/ttylog.c > Use signed ssize_t to make read(2) error check actually work. > found by clang warning (bluhm@) ~ syslogd/args-client-bind-port.pl ~ syslogd/args-client-bind.pl ~ syslogd/args-client-bind4-port.pl ~ syslogd/args-client-bind4.pl ~ syslogd/args-client-bind6-port.pl ~ syslogd/args-client-bind6.pl ~ syslogd/args-client-tcp.pl ~ syslogd/args-client-tcp4.pl ~ syslogd/args-client-tcp6.pl ~ syslogd/args-client-tls.pl ~ syslogd/args-client-tls4.pl ~ syslogd/args-client-tls6.pl ~ syslogd/args-fdexhaustion-sighup.pl ~ syslogd/args-privsep-daemon.pl ~ syslogd/args-privsep-foreground.pl ~ syslogd/args-privsep.pl ~ syslogd/args-secure-udp.pl ~ syslogd/args-selector-syslog.pl ~ syslogd/args-server-tcp.pl ~ syslogd/args-server-tcp4.pl ~ syslogd/args-server-tcp6.pl ~ syslogd/args-server-tls.pl ~ syslogd/args-server-tls4.pl ~ syslogd/args-server-tls6.pl ~ syslogd/args-socket.pl ~ syslogd/args-zulu.pl + syslogd/args-send46.pl > Syslogd does no longer keep the *:514 UDP sockets open by default. > Adapt tests. (bluhm@) ~ syslogd/Client.pm ~ syslogd/Makefile ~ syslogd/args-client-multilisten.pl ~ syslogd/args-dropped-sighup-tcp.pl ~ syslogd/args-dropped-sighup-tls.pl ~ syslogd/args-secure-udp.pl ~ syslogd/args-server-tcp-reconnect.pl ~ syslogd/args-server-tls-reconnect.pl ~ syslogd/args-sighup-tcp.pl ~ syslogd/args-sighup-tls.pl ~ syslogd/args-sync-tcp.pl ~ syslogd/funcs.pl + syslogd/args-hostname.pl > Check that the hostname added by syslogd -h in file and server log > is correct. Use generic redo functions. Do syntax check for all > Perl files. (bluhm@) + syslogd/args-repeat-sighup.pl + syslogd/args-repeat-sigterm.pl > Check that pending "message repeated" is printed at exit and restart. > (bluhm@) ~ syslogd/Makefile ~ syslogd/args-fdexhaustion-config.pl ~ syslogd/args-fdexhaustion-sighup.pl ~ syslogd/args-fdexhaustion-tcp.pl > If file descriptors are exhausted during initialization, we see > better log messages on the console now. (bluhm@) == sbin ============================================================== 09/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sbin dhclient ~ bpf.c ~ clparse.c ~ dhclient.c ~ dispatch.c ~ kroute.c ~ options.c ~ parse.c ~ privsep.c > Strive to rationalize fatal[x]() usage and > verbiage. (krw@) ~ dhclient.c > Move/add log_procinit() and setproctitle() calls so they reliably work > both early and after forking. Makes fatal[x]() messages more > informative by always including the relevant interface name. And > "[proc]" in privileged process messages. > Simplify some logic by avoiding error message construction that is > no longer required. (krw@) ~ kroute.c ~ privsep.c > Use a poll() loop when trying read the default route from > a routing socket. Fixes at least one cause of resolv.conf > confusion and possibly hanging/looping dhclient if the > RTM_GET gets lost. > Fingered by phessler@ when doing many suspend/resumes > while switching between wifi and wired interfaces. > Testing & ok phessler@ (krw@) ~ bpf.c ~ clparse.c ~ dhclient.c ~ dhcpd.h ~ dispatch.c ~ kroute.c ~ options.c ~ packet.c ~ privsep.c > Create global 'log_procname' and set it to '<ifname>' or > '<ifname> [priv]' as appropriate for the process doing the > setting. Use it as the prefix in all log_*() output. Makes > tracking messages for an interface or a process much easier. (krw@) ~ parse.c > Oops. Missed a file. > Create global 'log_procname' and set it to '<ifname>' or > '<ifname> [priv]' as appropriate for the process doing the > setting. Use it as the prefix in all log_*() output. Makes > tracking messages for an interface or a process much easier. (krw@) ifconfig ~ ifconfig.8 > clarify what inet6 autoconf does, mention and link to slaacd(8) > ok/feedback sthen@ jmc@ (benno@) slaacd ~ slaacd.8 > clarify that slaacd is a client; Xr to rtadvd. feedback/ok benno jmc > (sthen@) == share ============================================================= 10/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share man ~ man7/securelevel.7 ~ man4/man4.alpha/mem.4 ~ man4/man4.amd64/mem.4 ~ man4/man4.hppa/mem.4 ~ man4/man4.i386/mem.4 ~ man4/man4.landisk/mem.4 ~ man4/man4.loongson/mem.4 ~ man4/man4.luna88k/mem.4 ~ man4/man4.macppc/mem.4 ~ man4/man4.socppc/mem.4 ~ man4/man4.sparc64/mem.4 > Update the documentation regarding /dev/mem and /dev/kmem; > Theo already clamped down on these devices last year. > Triggered by a question from Nan Xiao <xiaonan830818 at gmail dot com>. > OK deraadt@ (schwarze@) ~ man4/ddb.4 ~ man4/options.4 > option DDB_STRUCT is gone, 'show struct' now work in GENERIC. (mpi@) ~ man4/wsdisplay.4 > standard .Fa markup for ioctl(2) args, and add one missing .Dv; > from <ScottCheloha at gmail dot com> (schwarze@) ~ man4/wsdisplay.4 > minor markup corrections: Cd for options(4), Vt for data types (schwarze@) ~ man4/gpio.4 ~ man4/radio.4 ~ man4/uhid.4 > use the standard .Fa idiom for ioctl(2) args (schwarze@) ~ man4/usb.4 > use the standard .Fa idiom for ioctl(2) args, and kill .Tn (schwarze@) ~ man4/vscsi.4 > use .Dv for ioctl(2) request names; > from <ScottCheloha at gmail dot com> (schwarze@) ~ man1/clang-local.1 > Fix typo; ok benno@ jmc@ sthen@ tb@ (anton@) ~ man4/man4.amd64/mem.4 ~ man4/man4.i386/mem.4 > link to mtrr(4) because the mem(4) driver supports ioctl(2) > in addition to read(2) and write(2) and because > that ioctl(2) support is documented in mtrr(4); > OK jmc@ (schwarze@) == sys =============================================================== 11/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/alpha/alpha ~ mutex.c > Sync alpha/mips64/powerpc mutex implementations. > No functionnal change. > ok visa@ (mpi@) arch/alpha/conf ~ Makefile.alpha > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) arch/amd64/amd64 ~ vm_machdep.c > add a guard page on the end of each threads kernel stack. > this protects the process control block. it also makes the kernel > fault hard when the guard page gets hit by the stack, allowing > debugging of the problem set of function calls at the time the > problem occurs. without this, a big stack can overwrite the pcb, > which makes the thread generate a fault when it is switched back > onto a cpu, which is way too late. > discussed with guenther@ > ok deraadt@ (dlg@) ~ vm_machdep.c > rename setredzone to setguardpage. > a redzone means something else on amd64, so im renaming this to > avoid confusion. (dlg@) ~ trap.c ~ copy.S > The copyin(9) family of functions should return EFAULT for all memory > protection issues. So make amd64 do that instead of passing through > uvm_fault()'s return value, which lead to other possible errors > (particularly EACCES) being returned to userspace. Clean up a vestige > on arm64 too. > ok bluhn@ deraadt@ (guenther@) arch/amd64/conf ~ Makefile.amd64 > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) arch/arm/mainbus ~ mainbus.c > Remove whitespace in inline assembly output constraint strings. While > gcc is documented as ignoring whitespace in any position but the first > clang gives "error: invalid output constraint '=r ' in asm". (jsg@) arch/arm64/arm64 ~ trap.c > The copyin(9) family of functions should return EFAULT for all memory > protection issues. So make amd64 do that instead of passing through > uvm_fault()'s return value, which lead to other possible errors > (particularly EACCES) being returned to userspace. Clean up a vestige > on arm64 too. > ok bluhn@ deraadt@ (guenther@) arch/arm64/conf ~ Makefile.arm64 > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) arch/armv7/conf ~ Makefile.armv7 > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) arch/armv7/omap ~ nxphdmi.c > Don't test if an array is NULL. Fixes the build with clang which raised > a -Wtautological-pointer-compare warning. > ok ians@ (jsg@) ~ amdisplay.c > Avoid using an uninitialised variable. Found by the clang static analyser. > ok ians@ (jsg@) arch/hppa/conf ~ Makefile.hppa > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) arch/i386/conf ~ Makefile.i386 > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) arch/i386/i386 ~ trap.c > wrap a long line (mlarkin@) arch/landisk/conf ~ Makefile.landisk > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) arch/loongson/conf ~ Makefile.loongson > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) arch/luna88k/conf ~ Makefile.luna88k > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) arch/macppc/conf ~ Makefile.macppc > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) arch/mips64/mips64 ~ mutex.c > Sync alpha/mips64/powerpc mutex implementations. > No functionnal change. > ok visa@ (mpi@) ~ fp_emulate.c > Make sure that `fsr' is always initialized. Non-DEBUG kernels > have not been affected. > From miod@ (visa@) arch/octeon/conf ~ Makefile.octeon > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) arch/octeon/octeon ~ machdep.c > Do not print "cpuX launched" any longer. This reduces dmesg spam > on multicore systems. (visa@) arch/powerpc/powerpc ~ mutex.c > Sync alpha/mips64/powerpc mutex implementations. > No functionnal change. > ok visa@ (mpi@) arch/sgi/conf ~ Makefile.sgi > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) arch/socppc/conf ~ Makefile.socppc > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) arch/sparc64/conf ~ Makefile.sparc64 > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) conf ~ files > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) ddb ~ db_ctf.c > Skip forward declarations until ctfconv(1) properly merge them with > the corresponding struct definitions. > ok dlg@ (mpi@) - db_struct.c - db_structinfo.c - parse_structinfo.pl ~ db_command.c > Remove option DDB_STRUCTINFO. Now that ddb(4) is CTF aware, similar > functionnalities are available in GENERIC. > ok jasper@, deraadt@, guenther@, dlg@ (mpi@) dev/fdt ~ sxitwi.c > Add missing pipe in sxitwi(4)'s match code to actually make > it a logical OR intead of a binary OR. > From Artturi Alm (patrick@) dev/usb ~ urng.c > - call usbd_deactivate() rather than simply returning in case of errors > - explicitly clear sc_xfer upon detach > - fix spacing in urng_softc definition (jasper@) ~ urng.c > - sprinkle variable name and printf tweaks > - save product type for future use (jasper@) kern ~ uipc_socket.c > Coverty complains that the return value of sblock() is not checked > in sorflush(), but in other places it is. See CID 1453099. The > flags SB_NOINTR and M_WAITOK should avoid failure. Put an assert > there to be sure. > OK visa@ mpi@ (bluhm@) ~ uipc_mbuf.c > Coverity complained that the while loop at the end of m_adj() could > dereference m if it is NULL. See CID 501458. > - Remove the m NULL check from the final for loop, it is not > necessary. This cannot happen due to the length calculation. > The inconsistent code caused the coverity issue. > - Move the m = mp close to all the loops where the mbuf > chain is traversed. > - Use mp to access the m_pkthdr consistently. > - Move the next assignemnt from for (;;m = m->m_next) to the > end of the loop to make it consistent to the previous for (;;) > where the total length is calculated. > OK visa@ mpi@ (bluhm@) ~ uipc_socket.c > Coverity complains that top == NULL was checked and further down > top->m_pkthdr.len was accessed without check. See CID 1452933. > In fact top cannot be NULL there and the condition was always false. > m_getuio() did never reserve space for the header. The correct > check is m == top to find the first mbuf. > OK visa@ (bluhm@) == usr.bin =========================================================== 12/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin awk ~ run.c > Fix bitwise operations error messages; from FreeBSD > ok deraadt@ (ajacoutot@) mandoc ~ mdoc_validate.c > Do not segfault when there are two .Dt macros, the first without > an architecture argument and the second with an invalid one. > Bug found by jsg@ with afl(1). (schwarze@) nm ~ nm.c > Include room for NUL-termination when calculating the length of archive > member name. > Fix an of by one found by sthen@ with MALLOC_OPTIONS=C. > From Matthew Martin, ok deraadt@ (mpi@) pctr ~ pctr.c > sysctl strings include the termingating NUL character in both in and out > lengths > Prompted by Nan Xiao noticing the redundancy of bzero+termination - thanks. > ok deraadt@ (tom@) ssh ~ auth-options.c ~ auth.c ~ channels.c ~ channels.h ~ clientloop.c ~ clientloop.h ~ monitor.c ~ monitor_wrap.c ~ mux.c ~ nchan.c ~ packet.c ~ packet.h ~ servconf.c ~ servconf.h ~ serverloop.c ~ serverloop.h ~ session.c ~ session.h ~ ssh.c ~ sshbuf.h ~ sshconnect.c ~ sshconnect.h ~ sshd.c ~ ssherr.c ~ ssherr.h > refactor channels.c > Move static state to a "struct ssh_channels" that is allocated at > runtime and tracked as a member of struct ssh. > Explicitly pass "struct ssh" to all channels functions. > Replace use of the legacy packet APIs in channels.c. > Rework sshd_config PermitOpen handling: previously the configuration > parser would call directly into the channels layer. After the refactor > this is not possible, as the channels structures are allocated at > connection time and aren't available when the configuration is parsed. > The server config parser now tracks PermitOpen itself and explicitly > configures the channels code later. > ok markus@ (djm@) ~ channels.c ~ channels.h ~ clientloop.c ~ mux.c ~ nchan.c ~ serverloop.c > Make remote channel ID a u_int > Previously we tracked the remote channel IDs in an int, but this is > strictly incorrect: the wire protocol uses uint32 and there is nothing > in-principle stopping a SSH implementation from sending, say, 0xffff0000. > In practice everyone numbers their channels sequentially, so this has > never been a problem. > ok markus@ (djm@) ~ channels.c > fix tun/tap forwarding case in previous (djm@) ~ channels.c > unused variable (djm@) ~ dns.c ~ dns.h ~ sshconnect.c > Revert commitid: gJtIN6rRTS3CHy9b. > ------------- > identify the case where SSHFP records are missing but other DNS RR > types are present and display a more useful error message for this > case; patch by Thordur Bjornsson; bz#2501; ok dtucker@ > ------------- > This caused unexpected failures when VerifyHostKeyDNS=yes, SSHFP results > are missing but the user already has the key in known_hosts > Spotted by dtucker@ (djm@) tftp ~ tftp.c > Use monotonic clock for statistics display. From Scott Cheloha. > ok dlg (tb@) tmux ~ input.c > Apply timeout to CAN and RS which also wait for ST. (nicm@) ~ grid.c > Previously, extended cell data was never reduced in size even when the > cell was overwritten. With a large history this can be a substantial > amount of memory. To reduce this, compact each extended cell list to > only cells in use as it is scrolled off the visible screen into the > history. From Dan Aloni in GitHub issue 1062. (nicm@) ~ grid.c > Do not free more lines than are available in the history. (nicm@) ~ tmux.1 > Mention that filter is a format. (nicm@) ~ alerts.c > Check event is initialized before delete; fixes crash reported by > Michael Nickerson in GitHub issue 1068. (nicm@) ~ window-copy.c > Remove unused (always 1) arguments from some functions, from Daniel > Mueller in GitHub issue 1073. (nicm@) == usr.sbin ========================================================== 13/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin bgpd ~ rde.c > fix accounting for received prefixes per neighbor > noticed by deraadt@ and job@ > OK benno@ deraadt@ job@ (phessler@) pkg_add ~ OpenBSD/PackingElement.pm ~ OpenBSD/PackingList.pm > recognize @version, to be used for a system-wide version marker (espie@) ~ OpenBSD/LibSpec.pm ~ OpenBSD/SharedLibs.pm > we already have a comparison function for libobjects, so move it up to > the best class, and sort bad libraries in dependency solving accordingly > (espie@) pwd_mkdb ~ pwd_mkdb.8 > Assorted simple improvements: > - Considerably simplify the first paragraph; suggested by Raf Czlonka. > - No need to say twice that "file" must be in the correct format. > - Clarify which file is checked by -c. > - Clarify that -p creates passwd(5) in addition, not instead. > - Simplify reference to the master.passwd(5) format. > - Turn one sentence into a standard EXIT STATUS section. > - New HISTORY and AUTHORS sections, based on the CSRG archive CDs. > (schwarze@) relayd ~ config.c > Differentiate between a style string not being specified and an empty > style string by including NUL in imsg and set the pointer in the struct > passed over imsg to NULL in the receiving process to be sure nothing > tries to use it. > Avoids a crash when specifying an empty style string reported by > Karl-Andre' Skevik. ok bluhm@ (jsg@) rtadvd ~ rtadvd.8 > clarify that slaacd is a client; Xr to rtadvd. feedback/ok benno jmc > (sthen@) smtpd ~ mta.c > remove dead code. > ok gilles@ (eric@) ~ mta.c > move the envelope handling code to its own function to clarify the > imsg dispatch function. > ok gilles@ (eric@) syslogd ~ syslogd.c > In the default configuration syslogd(8) kept two *:514 UDP sockets > open. These sockets are used for sending UDP packets if there is > a UDP loghost in syslog.conf(5). If syslogd is started with -u, > they can receive packets, otherwise they are disabled with > shutdown(SHUT_RD). In case syslogd does neither send nor receive, > close the sockets after reading the configuration file. This gives > us a cleaner netstat output, and the ports are not reported by port > scanners. This has no security implication. > OK benno@ jca@ sthen@ deraadt@ (bluhm@) ~ syslogd.c > When writing local output, syslogd ignores EAGAIN. Unfortunately > it has closed the file descriptor before checking the errno. So > f_file contained a bad file descriptor that could be reused at the > next open. Keep the file open if errno is EAGAIN. Move the close(2) > down where the old file descriptor in f_file is overwritten in all > cases. > OK deraadt@ jca@ (bluhm@) ~ syslogd.c > syslogd has special code to report errors before it has been > initialized. For every message it did reopen the console with file > descriptor passing from the privsep parent. Now preopen the console, > so writing the message out works in more cases. If the console has > been revoked, a reopen via privsep and write again is tried anyway. > OK brynet@ deraadt@ jca@ (bluhm@) vmd ~ vmd.h > bring SET, CLR, and ISSET macros in > they make bit fiddling easier to read in later diffs. > ok mlarkin@ (dlg@) ~ vm.c ~ vmd.h > add functions to provide direct access to guest memory as vmd addresses > iovec_mem() populates an iovec array based on guest physical > addresses. this allows the use of things like readv and writev for > moving data between the guest and a disk image file without having > to bounce the memory. > vaddr_mem() provides a vmd usable pointer based on a guests physical > address. this makes it possible to directly reference things like > virtio rings without having to bounce that memory either. however, > it assumes that a contiguous range of guest physical memory will > sit in a single vm memory range. mlarkin@ says this is right. > ok mlarkin@ (dlg@) ~ config.c ~ vmm.c > spacing (reyk@) ~ ns8250.c > vmd: emulate UART scratch register, seems to be required by GRUB and > doesn't seem to cause any side effects with other guest types. (mlarkin@) ~ vmm.c > vmd: improve a debug message with more information (mlarkin@) + task.c + task.h > port taskqs to vmd for use in future work on virtio devices > these are backed by pthreads rather than kthreads and mutexes, and > only support creating a taskq serviced by a single worker thread. > task_set, task_add, and task_del all work the same though. > these are not linked into the build yet. > ok mlarkin@ (dlg@) ~ vm.c > vmd: re add rtc.per and rtc.sec evtimers on receive > This was missed in receive. mc146818_start is already defined. This fixes > rtc > time resync on receive. > ok mlarkin@ (pd@) ~ pci.c ~ pci.h ~ virtio.c ~ virtio.h ~ vm.c > vmd: send/recv pci config space instead of recreating pci devices on > receive > ok mlarkin@ (pd@) =============================================================================== _______________________________________________ owc mailing list [email protected] http://www.squish.net/mailman/listinfo/owc
