CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2017/08/10 23:37:50 Modified files: lib/libtls : shlib_version Log message: Bump minor due to symbol addition. Prompted by jsg@, since I apparently left it sitting in my tree...
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2017/08/10 23:06:34 Modified files: lib/libssl : ssl_locl.h ssl_tlsext.c ssl_tlsext.h t1_lib.c regress/lib/libssl/tlsext: tlsexttest.c Log message: Rewrite the ECPointFormats TLS extension handling using CBB/CBS and the new extension framework. input + ok jsing@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2017/08/10 22:47:12 Modified files: usr.bin/ssh: sshconnect2.c Log message: refuse to a private keys when its corresponding .pub key does not match. bz#2737 ok dtucker@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2017/08/10 22:41:08 Modified files: usr.bin/ssh: sftp-client.c Log message: don't print verbose error message when ssh disconnects under sftp; bz#2750; ok dtucker@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: dtuc...@cvs.openbsd.org 2017/08/10 22:16:35 Modified files: usr.bin/ssh: serverloop.c Log message: Tweak previous keepalive commit: if last_time + keepalive <= now instead of just "<" so client_alive_check will fire if the select happens to return on exact second of the timeout. ok djm@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2017/08/10 22:07:20 Modified files: distrib/sets/lists/base: md.alpha md.amd64 md.armv7 md.hppa md.i386 md.landisk md.loongson md.luna88k md.macppc md.octeon md.sgi md.socppc md.sparc64 distrib/sets/lists/comp: gcc.alpha gcc.amd64 gcc.armv7 gcc.hppa gcc.i386 gcc.landisk gcc.loongson gcc.luna88k gcc.macppc gcc.octeon gcc.sgi gcc.socppc gcc.sparc64 Log message: sync
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: dtuc...@cvs.openbsd.org 2017/08/10 21:58:36 Modified files: usr.bin/ssh: serverloop.c Log message: Keep track of the last time we actually heard from the client and use this to also schedule a client_alive_check(). Prevents activity on a forwarded port from indefinitely preventing the select timeout so that client_alive_check() will eventually (although not optimally) be called. Analysis by willchan at google com via bz#2756, feedback & ok djm@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2017/08/10 16:59:42 Modified files: usr.sbin/ntpd : ntpd.conf.5 Log message: naddy@ reported confusion on why "query from" seemed to be ignored in some cases. OK naddy@ henning@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mi...@cvs.openbsd.org 2017/08/10 14:13:57 Modified files: sys/dev/pv : xen.c Log message: Don't forget to call va_end in xen_hypercall Coverity CID 1453343
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: m...@cvs.openbsd.org2017/08/10 13:39:38 Modified files: sys/ddb: db_command.c db_ctf.c db_elf.c db_expr.c db_sym.h sys/arch/sparc64/sparc64: openfirm.c Log message: With a CTF kernel, DDB's print command will now pretty-print symbols. Casting a type is not yet supported. ok kettenis@, jasper@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: m...@cvs.openbsd.org2017/08/10 13:20:43 Modified files: sys/kern : uipc_socket.c uipc_syscalls.c sys/net: if_pflow.c sys/nfs: krpc_subr.c nfs_socket.c Log message: Move the solock()/sounlock() dance outside of sobind(). ok phessler@, visa@, bluhm@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: m...@cvs.openbsd.org2017/08/10 13:19:18 Modified files: sys/kern : kern_rwlock.c Log message: Make rw_enter() always succeed after a panic. This prevents deadlocks when doing 'boot reboot' after the kernel panic'd. Discussed with bluhm@ and guenther@, ok visa@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: jas...@cvs.openbsd.org 2017/08/10 13:17:43 Modified files: usr.sbin/vmctl : vmctl.c Log message: don't have cu try to open '/dev', instead check if there's a valid tty associated with the vm upfront as discussed with and ok mlarkin@ pd@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2017/08/10 13:07:14 Modified files: usr.sbin/rtadvd: if.c if.h rtadvd.c Log message: No need to handle multiple routing messages here. route(4) sockets only ever ship a single routing message per read(2) call, so simplify this. Mostly mechanical diff for now, some further cleanups will follow. ok rob@ florian@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2017/08/10 12:57:20 Modified files: sys/crypto : cryptodev.h Log message: the userland crypto interface died long ago, can clean up the header
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: r...@cvs.openbsd.org2017/08/10 12:38:33 Modified files: sys/net: if_vxlan.c Log message: A missing break in vxlan_sockaddr_cmp() could eventually trick an vxlan interface into accepting packets for the wrong destination (if the sockaddr_in6 checks somehow match on sockaddr_in addresses). Coverity CID 1452902; Severity: Moderate OK mikeb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: r...@cvs.openbsd.org2017/08/10 12:19:08 src/regress/usr.sbin/snmpd Update of /cvs/src/regress/usr.sbin/snmpd In directory cvs.openbsd.org:/tmp/cvs-serv28510/snmpd Log Message: Directory /cvs/src/regress/usr.sbin/snmpd added to the repository
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2017/08/10 12:18:30 Modified files: lib/libtls : Symbols.list tls.h tls_client.c tls_config.c tls_internal.h tls_server.c lib/libtls/man : tls_config_set_protocols.3 Log message: Add a tls_config_set_ecdhecurves() function to libtls, which allows the names of the elliptic curves that may be used during client and server key exchange to be specified. This deprecates tls_config_set_ecdhecurve(), which could only be used to specify a single supported curve. ok beck@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mi...@cvs.openbsd.org 2017/08/10 12:14:56 Modified files: sys/dev/pv : xenstore.c Log message: Prevent an unlikely resource leak Coverity CID 1453069; Severity: unlikely, not user-visible.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: r...@cvs.openbsd.org2017/08/10 12:06:58 Modified files: sys/dev/pv : vioblk.c Log message: sector_count is uninitialized if the SCSI cmdlen is not 6, 10, 12 or 16 bytes long. This cannot happen. But it is good to silence the uninitialized variable warning. Coverity CID 1453104; Severity: Insignificant OK mikeb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: r...@cvs.openbsd.org2017/08/10 12:03:51 Modified files: sys/dev/pv : if_vio.c Log message: Fix copy-paste error in the error path of vio_alloc_mem() that checked the wrong variable (sc_tx_dmamaps[i] instead of sc_rx_dmamaps[i]). Coverity CID 1452937; Severity: Minor OK mikeb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: r...@cvs.openbsd.org2017/08/10 12:00:59 Modified files: sys/dev/pv : virtio.c Log message: Add missing comma that caused a concatenated string. Fixes printing of the device names of "9P Transport" and "mac80211 wlan" virtio devices. Coverity CID 1453254; Severity: Insignificant OK mikeb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: be...@cvs.openbsd.org 2017/08/10 11:47:31 Modified files: sbin/route : route.8 Log message: document use of del as short form for delete, from jca ok schwarze@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2017/08/10 11:24:30 Modified files: games/caesar : caesar.c Log message: convert source code frequencies to match those in the man page
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mi...@cvs.openbsd.org 2017/08/10 11:22:48 Modified files: sys/dev/pv : hvs.c Log message: Correct the upper bound for the command size before the passthrough Coverity CID 1453317; Severity: unlikely, not user-visible.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2017/08/10 11:18:38
Modified files:
lib/libssl : s3_lib.c ssl.h ssl_cert.c ssl_lib.c ssl_locl.h
ssl_srvr.c t1_lib.c
Log message:
Clean up the EC key/curve configuration handling.
Over the years OpenSSL grew multiple ways of being able to specify EC keys
(and/or curves) for use with ECDH and ECDHE key exchange. You could specify
a static EC key (SSL{_CTX,}_set_tmp_ecdh()), use that as a curve and
generate ephemeral keys (SSL_OP_SINGLE_ECDH_USE), provide the EC key via
a callback that was provided with insufficient information
(SSL{_CTX,}_set_tmp_ecdh_cb()) or enable automatic selection and generation
of EC keys via SSL{_CTX,}_set_ecdh_auto(). This complexity leads to
problems (like ECDHE not being enabled) and potential weird configuration
(like being able to do ECDHE without the ephemeral part...).
We no longer support ECDH and ECDHE can be disabled by removing ECDHE
ciphers from the cipher list. As such, permanently enable automatic EC
curve selection and generation, effectively disabling all of the
configuration knobs. The only exception is the
SSL{_CTX,}_set_tmp_ecdh() functions, which retain part of their previous
behaviour by configuring the curve of the given EC key as the only curve
being enabled. Everything else becomes a no-op.
ok beck@ doug@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: k...@cvs.openbsd.org2017/08/10 11:15:05 Modified files: sbin/dhclient : dhclient.c dhcpd.h kroute.c privsep.c privsep.h Log message: Add IMSG_SET_RESOLV_CONF and keep the cached contents in the priv process, so that they do not have to be continually retransmitted. IMSG_WRITE_RESOLV_CONF now just triggers a write of the cached info. Simplifies a bunch of logic.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mlar...@cvs.openbsd.org 2017/08/10 11:11:47 Modified files: usr.sbin/vmd : pci.c Log message: vmd: partially back out a change committed yesterday regarding guest changing IRQs. After discussing with kettenis, that wasn't the right way to do things, and this diff fixes that. ok kettenis
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mi...@cvs.openbsd.org 2017/08/10 11:11:49 Modified files: sys/dev/pv : hvs.c Log message: Buffer size for the SCSI vendor string should be 8 char long A vendor and part of the product string got copied into a larger on-stack buffer as a result of an out-of-bounds access, however only 4 characters are meaningful in this context. Coverity CID 1453206; Severity: insignificant.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mill...@cvs.openbsd.org 2017/08/10 11:00:08 Modified files: games/fortune/fortune: fortune.c Log message: Treat backspace as printable in sanitize() for non-UTF8 locales. Fixes printing of fortunes that use a combination of backspace and underbars for underlining in non-UTF8 locales. OK schwarze@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mlar...@cvs.openbsd.org 2017/08/10 10:59:04 Modified files: usr.sbin/vmd : virtio.c Log message: whitespace
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: bl...@cvs.openbsd.org 2017/08/10 10:54:28 Modified files: regress/misc : Makefile Removed files: regress/misc/objc: Makefile main.m Log message: Objective-C has been removed from base, do not test whether compiling it works.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mi...@cvs.openbsd.org 2017/08/10 10:48:47 Modified files: sys/dev/pv : if_hvn.c Log message: Fixup upper bound for the completion descriptor identifier Coverity CID 1452864; Severity: unlikely, not user-visible.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: bl...@cvs.openbsd.org 2017/08/10 10:48:25 Modified files: sys/kern : uipc_socket.c sys/net: if.c Log message: The socket field so_proto can never be NULL. Remove the checks. OK mpi@ visa@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: bl...@cvs.openbsd.org 2017/08/10 10:38:37 Modified files: sys/net: bfd.c Log message: The caller of sobind() has to free the name mbuf. Plug a mbuf leak in bfd_listener(). OK phessler@
Re: CVS: cvs.openbsd.org: src
On Thu, Aug 10, 2017 at 10:03:10AM -0600, Rob Pierce wrote: > CVSROOT: /cvs > Module name: src > Changes by: r...@cvs.openbsd.org2017/08/10 10:03:10 > > Modified files: > usr.sbin/snmpctl: snmpclient.c snmpctl.c > > Log message: > Pledge snmpctl. Ok jca@, tb@ Also ok benno@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: morti...@cvs.openbsd.org2017/08/10 10:06:59 Modified files: gnu/lib: Makefile Log message: Unlink libobjc. It is not used in base, and ports are pulling in libobjc2 from ports. ok bluhm@ sebastia@ dcoppa@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: be...@cvs.openbsd.org 2017/08/10 10:05:23 Modified files: sbin/route : route.8 route.c Log message: autodetect AF when setting inet6 default route >From Denis Fondras, thanks! ok phessler@ bluhm@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: r...@cvs.openbsd.org2017/08/10 10:03:10 Modified files: usr.sbin/snmpctl: snmpclient.c snmpctl.c Log message: Pledge snmpctl. Ok jca@, tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: be...@cvs.openbsd.org 2017/08/10 09:44:09 Modified files: usr.sbin/bgpd : rde.c Log message: Fix a comment and line length. Noted by Dennis fondras. ok benno@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mi...@cvs.openbsd.org 2017/08/10 09:25:57 Modified files: sys/dev/pv : hypervic.c Log message: Fail if unknown type of an address family was specified Coverity CID 1452981; Severity: unlikely, not user-visible.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2017/08/10 09:25:52 Modified files: sys/dev/pci: azalia.c Log message: Power off all codecs on shutdown to eliminate static noise in speakers or headphones on reboot. >From Manuel Giraud Tweaks & ok ratchov
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: m...@cvs.openbsd.org2017/08/10 09:11:34 Modified files: sys/dev/usb: umcs.c Log message: Deactivate the device if I/O fails in attach. Coverity CID 1453399; ok deraadt@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mi...@cvs.openbsd.org 2017/08/10 09:01:42 Modified files: sys/dev/pci: mpii.c Log message: Remove a leftover bit that was dereferencing an uninitialized pointer Coverity CID 1453398; ok deraadt.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: schwa...@cvs.openbsd.org2017/08/10 08:45:42 Added files: regress/lib/libc/locale/uselocale: Makefile uselocale.c Log message: first draft of tests for newlocale(3), duplocale(3), uselocale(3)
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mes...@cvs.openbsd.org 2017/08/10 08:36:34 Modified files: sys/miscfs/fuse: fuse_device.c Log message: Avoid possible NULL pointer dereference on fuseioctl() Found by Coverity Scan (CID 1453387) OK mpi@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2017/08/10 08:26:31 Modified files: usr.bin/calendar: io.c Log message: Remove KOI8 lines after 5.9 is out. >From Jan Stary, Klemens Nanni and others
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: be...@cvs.openbsd.org 2017/08/10 08:22:59 Modified files: usr.sbin/bgpctl: bgpctl.c Log message: replace memcpy() with assignements where the type is the same. noticed by deraadt@, ok claudio@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: schwa...@cvs.openbsd.org2017/08/10 08:19:58 src/regress/lib/libc/locale/uselocale Update of /cvs/src/regress/lib/libc/locale/uselocale In directory cvs.openbsd.org:/tmp/cvs-serv67320/uselocale Log Message: Directory /cvs/src/regress/lib/libc/locale/uselocale added to the repository
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: guent...@cvs.openbsd.org2017/08/10 08:18:31 Modified files: sys/dev/pci/drm: drm_linux.h Log message: Add glue for passing through file+line when WITNESS is enabled ok kettenis@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: be...@cvs.openbsd.org 2017/08/10 08:12:34 Modified files: usr.sbin/bgpctl: bgpctl.c parser.c parser.h usr.sbin/bgpd : bgpd.h control.c rde.c Log message: handle extended communities in bgpctl. >From Dennis Fondras, thanks! ok phessler@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: be...@cvs.openbsd.org 2017/08/10 07:44:48 Modified files: sbin/route : keywords.h keywords.sh route.c Log message: allow "del" in addition to "delete" from Denis Fondras, positive feedback from sthen@ and deraadt@ ok jca@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: guent...@cvs.openbsd.org2017/08/10 07:35:18 Modified files: include: tib.h Log message: fix typo in comment
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: guent...@cvs.openbsd.org2017/08/10 07:34:46 Modified files: include: errno.h Log message: ___errno (three underbars) is long gone
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: m...@cvs.openbsd.org2017/08/10 07:06:12 Modified files: regress/sbin/route: Makefile Log message: Test that 'route change' has no effect on a RTF_LOCAL route.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: m...@cvs.openbsd.org2017/08/10 07:08:39 Modified files: regress/sbin/route: Makefile Log message: Use "! cmd" for commands that are expected to fail. Suggested by bluhm@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: bl...@cvs.openbsd.org 2017/08/10 07:05:58 Modified files: sys/netinet6 : nd6.c Log message: Do not invalidate ND for local routes, make it consistent like ARP. OK mpi@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: m...@cvs.openbsd.org2017/08/10 07:00:30 Modified files: sys/net: rtsock.c Log message: Prevent userland to modify RTF_LOCAL route entries. In particular setting an expiration timer on a route entry which would confuse L2 state machines. ok bluhm@
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: s...@cvs.openbsd.org2017/08/10 06:19:53 Modified files: . : support.html Log message: regen
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: s...@cvs.openbsd.org2017/08/10 06:19:38 Modified files: build : support.dat Log message: add some additional keywords to my support entry, and add German ones, too
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: fcam...@cvs.openbsd.org 2017/08/10 03:12:32 Modified files: sys/dev/wscons : wsemul_vt100.c Log message: Remove some case statements which have been compiled out since 2000. OK mpi@
