CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/11 19:41:32 Modified files: usr.bin/ssh: PROTOCOL.u2f Log message: fix non-ASCII quote that snuck in; spotted by Gabriel Kihlman
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: to...@cvs.openbsd.org 2020/05/11 14:11:35 Modified files: sbin/iked : ikev2.c ikev2_pld.c policy.c Log message: Fix policy lookup edge case for simultaneous transport and tunnel mode SAs. Only the initiator can use 'msg_policy' to determine if the policy is supposed to be transport mode, the responder has to check for a received USE_TRANSPORT notify to find a matching policy during the lookup. ok markus@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: kette...@cvs.openbsd.org2020/05/11 13:42:53 Modified files: sys/arch/alpha/alpha: clock.c machdep.c Log message: Use the same inittodr()/resettodr() implementation as on amd64/arm64/armv7/hppa/i386/landisk/macppc/mips64/sparc64 and move it to the end of machdep.c. Wrap the existing clockfns hooks into something that can be used as a todr_handle. ok deraadt@
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: na...@cvs.openbsd.org 2020/05/11 13:24:58 Modified files: . : 67.html Log message: aarch64, amd64, i386, sparc64 package count
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2020/05/11 12:20:24 Modified files: regress/lib/libssl/interop/libressl: Makefile regress/lib/libssl/interop/netcat: Makefile regress/lib/libssl/interop/session: Makefile Log message: Revise regress for TLSv1.3 server being enabled.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2020/05/11 12:20:01 Modified files: regress/lib/libssl/tlsext: tlsexttest.c Log message: Revise regress for TLSv1.3 server being enabled.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2020/05/11 12:18:21 Modified files: regress/lib/libssl/server: Makefile servertest.c Log message: Use tls_legacy_server_method() for SSLv2 record tests.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2020/05/11 12:19:19 Modified files: lib/libssl : ssl_locl.h Log message: Enable the TLSv1.3 server. ok beck@ tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2020/05/11 12:08:37 Modified files: regress/lib/libssl/record: recordtest.c Log message: Revise regress now that record overflows are propagated.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2020/05/11 12:08:11 Modified files: lib/libssl : tls13_internal.h tls13_record.c tls13_record_layer.c Log message: Propagate record overflows to the record layer and alert. ok beck@ tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2020/05/11 12:03:51 Modified files: lib/libssl : tls13_internal.h tls13_record.c tls13_record_layer.c Log message: Add record version checks. When legacy version is below TLSv1.2 ensure that the record version is SSL3/TLS, however when the legacy version is set to TLSv1.2 require this specifically. ok beck@ tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2020/05/11 11:57:17 Modified files: sys/dev/acpi : acpi.c Log message: More accurate remaining power reporting with disparate batteries Overall remaining power was computed as the average of the remaining power of each battery, in percents. This doesn't work with batteries of different capacity, so use the total capacity and remaining power instead. Reported by lidstah, successful tests by lidstah and benno@, ok kettenis@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2020/05/11 11:49:46 Modified files: lib/libssl : tls13_server.c Log message: Set the record layer legacy version from the TLSv1.3 server. This will be used to handle record version checks. ok tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2020/05/11 11:46:46 Modified files: lib/libssl : tls13_internal.h tls13_legacy.c tls13_lib.c tls13_record_layer.c Log message: Provide an alert sent record layer callback. Use this to push an error on to the SSL error stack so that we report the details of the alert that we sent, rather than failing with an unknown error. ok tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2020/05/11 11:28:33 Modified files: lib/libssl : tls13_internal.h tls13_lib.c tls13_record_layer.c Log message: Move the record layer callbacks into a struct. This makes the code more readable, requires less code churn when adding a new callback and is likely to avoid bugs due to function argument ordering. ok beck@ inoguchi@ tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2020/05/11 11:23:35 Modified files: lib/libssl : tls13_server.c Log message: Use ssl_get_new_session() in the TLSv1.3 server. This correctly handles session being non-NULL and sets up a few more things, including ssl_version. Also stop setting the ssl_version to the server_version, as this is only used on the client side. ok tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: clau...@cvs.openbsd.org 2020/05/11 10:59:19 Modified files: usr.sbin/bgpd : bgpd.c Log message: There is no reason to limit the string length of log_reason() to REASON_LEN charactars. Also fix a long line. OK benno@ deraadt@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: kette...@cvs.openbsd.org2020/05/11 10:13:14 Modified files: sys/arch/arm64/stand/efiboot: conf.c Log message: Should have bumped this to 1.0 a long time ago.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: kette...@cvs.openbsd.org2020/05/11 10:12:46 Modified files: sys/arch/arm64/stand/efiboot: efiacpi.c Log message: On ACPI systems, if there is no SPCR table (or if it doesn't provide us with a usable serial console) switch to the framebuffer console. This makes the rpi4 do the right thing since the SPCR table is suppressed when you select "Graphics" as the display. ok patrick@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: kette...@cvs.openbsd.org2020/05/11 07:27:38 Modified files: sys/arch/sh/sh : clock.c sh_machdep.c Log message: Use the same inittodr()/resettodr() implementation as on amd64/arm64/armv7/hppa/i386/macppc/mips64/sparc64 and move it to the end of sh_machdep.c. Wrap the existing sh_clock.rtc hooks into something that can be used as a todr_handle. ok mpi@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: kette...@cvs.openbsd.org2020/05/11 07:25:32 Modified files: sys/arch/amd64/amd64: machdep.c sys/arch/arm/arm: arm32_machdep.c sys/arch/arm64/arm64: machdep.c sys/arch/hppa/hppa: machdep.c sys/arch/macppc/macppc: machdep.c sys/arch/mips64/mips64: mips64_machdep.c sys/arch/sparc64/sparc64: machdep.c Log message: Initialize the timeval passed to todr_gettime() with the base time from the file system such that implementations can use it to guess the right century. ok mpi@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: clau...@cvs.openbsd.org 2020/05/11 04:40:12 Modified files: usr.sbin/slowcgi: slowcgi.c Log message: Allow specifying -d multiple times. Only print the fcgi header data if debug > 1 (-dd) since it adds a lot of noise to the output. In syslog_debug do not check for the debug variable instead let syslog handle it. Currently syslog_debug() would never print anything since it is only called with debug = 0 (debug > 0 implies the console logger). OK florian@
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: be...@cvs.openbsd.org 2020/05/11 02:31:59 Modified files: . : 67.html Log message: Reorder and improve the rpki-client(8) entries.
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: be...@cvs.openbsd.org 2020/05/11 02:32:56 Modified files: . : 67.html Log message: be more specific what is random now
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: be...@cvs.openbsd.org 2020/05/11 02:26:50 Modified files: . : 67.html Log message: rdr-to is a thing in pf(4)
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: be...@cvs.openbsd.org 2020/05/11 02:24:51 Modified files: . : 67.html Log message: put slaacd(8) entries next to each other
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: be...@cvs.openbsd.org 2020/05/11 02:14:38 Modified files: . : 67.html Log message: Move a line to a better spot
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: be...@cvs.openbsd.org 2020/05/11 02:12:26 Modified files: . : 67.html Log message: fix mixed past/present tense in sentence
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: clau...@cvs.openbsd.org 2020/05/11 01:55:18 Modified files: usr.sbin/bgpctl: parser.c Log message: Add support for VPNv6 in the family keyword of show rib OK benno@ phessler@