CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: an...@cvs.openbsd.org 2019/01/20 03:02:38 Modified files: regress/sys/dev/kcov: Makefile kcov.c Log message: run all tests for each supported trace mode
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: an...@cvs.openbsd.org 2019/01/20 03:15:50 Modified files: . : 65.html Log message: mention KCOV_MODE_TRACE_CMP
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: an...@cvs.openbsd.org 2019/01/20 02:57:23 Modified files: share/man/man4 : kcov.4 sys/arch/amd64/conf: Makefile.amd64 sys/arch/i386/conf: Makefile.i386 sys/dev: kcov.c sys/sys: kcov.h Log message: Add support for a new kcov trace mode called KCOV_MODE_TRACE_CMP where comparison instructions and switch statements are being traced. This mode will be used during fuzzing to generate even more coverage. The same mode is also supported by FreeBSD and Linux. Thanks to jmc@ for improving the manual bits. ok bluhm@ visa@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: an...@cvs.openbsd.org 2019/01/20 02:47:31 Modified files: sys/dev: kcov.c Log message: Rework conditional for clarity, no functional change. ok bluhm@ visa@ (as part of a larger diff)
CVS: cvs.openbsd.org: src
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/01/20 03:31:54
Modified files:
lib/libssl : Makefile tls13_internal.h
Added files:
lib/libssl : tls13_record_layer.c
Log message:
Provide an initial implementation of the TLS 1.3 record layer.
This is entirely self-contained and knows nothing about SSL or BIO. The
bottom of the stack is provided by wire read and write callbacks, with the
API to the record layer primarily being via
tls13_{read,write}_{application,handshake}_data().
This currently lacks some functionality, however will be worked on in tree.
ok tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2019/01/20 02:12:05 Modified files: lib/libssl : tls13_record.c tls13_record.h Log message: Provide a way to get just the record header. Also check record size limits when reading records and setting data. ok tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2019/01/20 03:20:50 Modified files: regress/lib/libssl/record: recordtest.c Log message: Update record regress to match functionality changes.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2019/01/20 05:27:34 Modified files: lib/libssl : Makefile tls13_internal.h Added files: lib/libssl : tls13_handshake_msg.c Log message: Provide a handshake message handling implementation for TLS 1.3. It receives handshake messages by reading and parsing data from the record layer. It also provides support for building and sending handshake messages. ok tb@
CVS: cvs.openbsd.org: xenocara
CVSROOT:/cvs Module name:xenocara Changes by: matth...@cvs.openbsd.org2019/01/20 10:28:24 Added files: proto/xorgproto: Makefile.bsd-wrapper Log message: OpenBSD Makefile for xorgproto
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: matth...@cvs.openbsd.org2019/01/20 10:51:55 Modified files: etc/mtree : BSD.x11.dist Log message: New doc directories for xorgproto
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: an...@cvs.openbsd.org 2019/01/20 09:09:41 Modified files: sys/isofs/cd9660: cd9660_node.h Log message: remove unused i_lockf member from struct iso_node; ok tedu@ visa@
CVS: cvs.openbsd.org: xenocara
CVSROOT:/cvs Module name:xenocara Changes by: matth...@cvs.openbsd.org2019/01/20 10:25:58 Added files: proto/xorgproto/specs: XI2proto.txt XIproto.txt XKBproto-1.svg XKBproto-10.svg XKBproto-11.svg XKBproto-2.svg XKBproto-3.svg XKBproto-4.svg XKBproto-5.svg XKBproto-6.svg XKBproto-7.svg XKBproto-8.svg XKBproto-9.svg appA.xml appB.xml appC.xml appD.xml appendix.xml appgrp.xml bigreq.xml ch01.xml ch02.xml ch03.xml ch04.xml ch05.xml ch06.xml ch07.xml ch08.xml ch09.xml ch10.xml ch11.xml ch12.xml ch13.xml ch14.xml ch15.xml ch16.xml dbe.xml dpms.xml encoding.xml evi.xml fsproto.xml geproto.xml glossary.xml keysyms.xml lbx.xml multibuf.xml record.xml saver.xml sect1-9.xml security.xml shape.xml shm.xml sync.xml tog-cup.xml x11protocol.xml xc-misc.xml xkbproto.xml xtest.xml proto/xorgproto/specs/SIAddresses: IPv6.txt README hostname.txt localuser.txt Log message: Add back docs that are missing from the xorgproto-2018.4 tarball but are in upstream git repository.
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: st...@cvs.openbsd.org 2019/01/20 06:43:13 Modified files: faq: current.html Log message: mention goaccess move from geoip->libmaxminddb as a config update is required to keep geolocation lookups working.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: matth...@cvs.openbsd.org2019/01/20 10:56:55 Modified files: etc/mtree : BSD.x11.dist Log message: untabify
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: schwa...@cvs.openbsd.org2019/01/20 07:03:19 Modified files: usr.bin/what : what.1 Log message: merge weird BUGS section into HISTORY; issue reported by Fabio Scotoni
CVS: cvs.openbsd.org: xenocara
CVSROOT:/cvs Module name:xenocara Changes by: matth...@cvs.openbsd.org2019/01/20 10:12:56 Log message: Initial import of xorgproto 2018.4 Status: Vendor Tag: xorg Release Tags: v2018_4 N xenocara/proto/xorgproto/evieproto.pc.in N xenocara/proto/xorgproto/COPYING-applewmproto N xenocara/proto/xorgproto/Makefile.am N xenocara/proto/xorgproto/randrproto.pc.in N xenocara/proto/xorgproto/bigreqsproto.pc.in N xenocara/proto/xorgproto/install-sh N xenocara/proto/xorgproto/COPYING-dmxproto N xenocara/proto/xorgproto/COPYING-kbproto N xenocara/proto/xorgproto/meson_options.txt N xenocara/proto/xorgproto/fixesproto.pc.in N xenocara/proto/xorgproto/INSTALL N xenocara/proto/xorgproto/dmxproto.pc.in N xenocara/proto/xorgproto/COPYING-xf86miscproto N xenocara/proto/xorgproto/PM_spec N xenocara/proto/xorgproto/fontcacheproto.pc.in N xenocara/proto/xorgproto/compositeproto.pc.in N xenocara/proto/xorgproto/printproto.pc.in N xenocara/proto/xorgproto/aclocal.m4 N xenocara/proto/xorgproto/README N xenocara/proto/xorgproto/COPYING-xf86vidmodeproto N xenocara/proto/xorgproto/COPYING-evieproto N xenocara/proto/xorgproto/renderproto.txt N xenocara/proto/xorgproto/COPYING-windowswmproto N xenocara/proto/xorgproto/COPYING-dri2proto N xenocara/proto/xorgproto/COPYING-videoproto N xenocara/proto/xorgproto/applewmproto.pc.in N xenocara/proto/xorgproto/COPYING-renderproto N xenocara/proto/xorgproto/inputproto.pc.in N xenocara/proto/xorgproto/xextproto.pc.in N xenocara/proto/xorgproto/glproto.pc.in N xenocara/proto/xorgproto/xf86rushproto.pc.in N xenocara/proto/xorgproto/COPYING-xf86rushproto N xenocara/proto/xorgproto/COPYING-presentproto N xenocara/proto/xorgproto/presentproto.pc.in N xenocara/proto/xorgproto/trapproto.pc.in N xenocara/proto/xorgproto/COPYING-dri3proto N xenocara/proto/xorgproto/configure N xenocara/proto/xorgproto/xf86miscproto.pc.in N xenocara/proto/xorgproto/Makefile.in N xenocara/proto/xorgproto/dri3proto.pc.in N xenocara/proto/xorgproto/randrproto.txt N xenocara/proto/xorgproto/COPYING-fontcacheproto N xenocara/proto/xorgproto/resourceproto.pc.in N xenocara/proto/xorgproto/COPYING-panoramixproto N xenocara/proto/xorgproto/scrnsaverproto.pc.in N xenocara/proto/xorgproto/xf86driproto.pc.in N xenocara/proto/xorgproto/COPYING-inputproto N xenocara/proto/xorgproto/meson.build N xenocara/proto/xorgproto/xproxymngproto.pc.in N xenocara/proto/xorgproto/COPYING-xf86dgaproto N xenocara/proto/xorgproto/fixesproto.txt N xenocara/proto/xorgproto/resproto.txt N xenocara/proto/xorgproto/COPYING-fixesproto N xenocara/proto/xorgproto/xcalibrateproto.pc.in N xenocara/proto/xorgproto/config.guess N xenocara/proto/xorgproto/AUTHORS N xenocara/proto/xorgproto/fontsproto.pc.in N xenocara/proto/xorgproto/COPYING-xf86driproto N xenocara/proto/xorgproto/COPYING-randrproto N xenocara/proto/xorgproto/videoproto.pc.in N xenocara/proto/xorgproto/xv-protocol-v2.txt N xenocara/proto/xorgproto/configure.ac N xenocara/proto/xorgproto/xineramaproto.pc.in N xenocara/proto/xorgproto/xf86dgaproto.pc.in N xenocara/proto/xorgproto/xf86bigfontproto.pc.in N xenocara/proto/xorgproto/dri2proto.txt N xenocara/proto/xorgproto/damageproto.pc.in N xenocara/proto/xorgproto/COPYING-xextproto N xenocara/proto/xorgproto/lg3dproto.pc.in N xenocara/proto/xorgproto/recordproto.pc.in N xenocara/proto/xorgproto/compile N xenocara/proto/xorgproto/COPYING-trapproto N xenocara/proto/xorgproto/COPYING-x11proto N xenocara/proto/xorgproto/COPYING-bigreqsproto N xenocara/proto/xorgproto/config.sub N xenocara/proto/xorgproto/kbproto.pc.in N xenocara/proto/xorgproto/xproto.pc.in N xenocara/proto/xorgproto/COPYING-xineramaproto N xenocara/proto/xorgproto/dri2proto.pc.in N xenocara/proto/xorgproto/xcmiscproto.pc.in N xenocara/proto/xorgproto/COPYING-xf86bigfontproto N xenocara/proto/xorgproto/COPYING-fontsproto N xenocara/proto/xorgproto/COPYING-resourceproto N xenocara/proto/xorgproto/COPYING-recordproto N xenocara/proto/xorgproto/COPYING-damageproto N xenocara/proto/xorgproto/compositeproto.txt N xenocara/proto/xorgproto/dri3proto.txt N xenocara/proto/xorgproto/missing N xenocara/proto/xorgproto/COPYING-printproto N xenocara/proto/xorgproto/damageproto.txt N xenocara/proto/xorgproto/COPYING-xcmiscproto N xenocara/proto/xorgproto/COPYING-lg3dproto N xenocara/proto/xorgproto/COPYING-scrnsaverproto N xenocara/proto/xorgproto/windowswmproto.pc.in N xenocara/proto/xorgproto/renderproto.pc.in N xenocara/proto/xorgproto/presentproto.txt N xenocara/proto/xorgproto/COPYING-pmproto N xenocara/proto/xorgproto/xf86vidmodeproto.pc.in N
CVS: cvs.openbsd.org: xenocara
CVSROOT:/cvs Module name:xenocara Changes by: matth...@cvs.openbsd.org2019/01/20 10:20:29 xenocara/proto/xorgproto/specs Update of /cvs/xenocara/proto/xorgproto/specs In directory cvs.openbsd.org:/tmp/cvs-serv4949/specs Log Message: Directory /cvs/xenocara/proto/xorgproto/specs added to the repository
CVS: cvs.openbsd.org: xenocara
CVSROOT:/cvs Module name:xenocara Changes by: matth...@cvs.openbsd.org2019/01/20 10:20:53 xenocara/proto/xorgproto/specs/SIAddresses Update of /cvs/xenocara/proto/xorgproto/specs/SIAddresses In directory cvs.openbsd.org:/tmp/cvs-serv21573/SIAddresses Log Message: Directory /cvs/xenocara/proto/xorgproto/specs/SIAddresses added to the repository
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: n...@cvs.openbsd.org2019/01/20 08:57:27 Modified files: usr.bin/tmux : tty.c Log message: Should use DECFRA if not default, not if default. From Karl Beldan.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: o...@cvs.openbsd.org2019/01/20 09:40:42 Modified files: usr.sbin/ntpd : constraint.c Log message: Don't use *a - *b as compare idiom, it does not work as expected for anything larger than an int. ok jca@ rsadowski@
CVS: cvs.openbsd.org: xenocara
CVSROOT:/cvs Module name:xenocara Changes by: matth...@cvs.openbsd.org2019/01/20 12:07:02 Modified files: distrib/sets/lists/xshare: mi Log message: sync
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: k...@cvs.openbsd.org2019/01/20 13:28:37 Modified files: sys/scsi : cd.c ch.c sd.c Log message: No leading space(s) before labels. Prodded by guenther@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 15:51:37 Modified files: usr.bin/ssh: ssh-pkcs11-client.c ssh-pkcs11-helper.c ssh-pkcs11.c ssh-pkcs11.h sshkey.h Log message: add support for ECDSA keys in PKCS#11 tokens Work by markus@ and Pedro Martelletto, feedback and ok me@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: phess...@cvs.openbsd.org2019/01/20 15:52:23 Modified files: sys/net: bfd.c Log message: use the faster interface, since the precision is not necessary
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 15:03:29 Modified files: usr.bin/ssh: ssh-add.1 ssh-add.c Log message: add option to test whether keys in an agent are usable, by performing a signature and a verification using each key "ssh-add -T pubkey [...]" work by markus@, ok djm@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2019/01/20 15:36:19 Modified files: lib/libssl : tls13_handshake.h Log message: Fix header guard
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2019/01/20 14:13:56 Modified files: distrib/miniroot: install.sub Log message: Remove the "done." dance around checking for syspatches to avoid ugliness in case an error occurs. ok ajacoutot
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 15:54:30 Modified files: usr.bin/ssh: ssh-pkcs11-client.c Log message: allow override of the pkcs#11 helper binary via $SSH_PKCS11_HELPER; needed for regress tests. work by markus@, ok me
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 16:03:26 Modified files: usr.bin/ssh: ssh-pkcs11.c Log message: use EVP_PKEY_get0_EC_KEY() instead of direct access of EC_KEY internals as that won't work on OpenSSL work by markus@, feedback and ok djm@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 16:01:59 Modified files: usr.bin/ssh: ssh-pkcs11.c Log message: cleanup PKCS#11 ECDSA pubkey loading: the returned object should never have a DER header work by markus; feedback and ok djm@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 16:10:33 Modified files: usr.bin/ssh: ssh-pkcs11.c Log message: use OpenSSL's RSA reference counting hooks to implicitly clean up pkcs11_key objects when their owning RSA object's reference count drops to zero. Simplifies the cleanup path and makes it more like ECDSA's work by markus@, ok djm@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: jmatt...@cvs.openbsd.org2019/01/20 17:23:39 Modified files: sys/dev/pci: if_ixl.c Log message: also add a mac filter that ignores vlans for the broadcast address, so we can see arp requests on vlans, among other things. ok dlg@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2019/01/20 17:31:29 Modified files: lib/libssl : ssl_lib.c Log message: Teach ssl_version_string() about TLS1_3_VERSION.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 18:05:00 Modified files: usr.bin/ssh: sshconnect2.c Log message: GSSAPI code got missed when converting to new packet API
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mlar...@cvs.openbsd.org 2019/01/20 18:40:35 Modified files: sys/arch/amd64/amd64: vmm.c sys/arch/amd64/include: specialreg.h Log message: vmm: better handling of two SMM related MSRs We currently ignore MSR_SMBASE and MSR_SMM_MONITOR_CTL, but the SDM says accessing the former for read and latter for write while not in SMM mode should produce a #GP. This change detects those operations and injects a #GP as the documentation says. The previous behaviour was harmless, just not correct. ok pd
CVS: cvs.openbsd.org: src
CVSROOT:/cvs
Module name:src
Changes by: clau...@cvs.openbsd.org 2019/01/20 18:41:16
Modified files:
etc/rc.d : bgpd httpd iked relayd switchd vmd
Log message:
Use ${rcexec} in rc_pre to do the config testing. This allows to specify
macros with spaces in them. With and OK ajacoutot
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: clau...@cvs.openbsd.org 2019/01/20 19:07:56 Modified files: usr.sbin/bgpd : mrt.c rde.c rde.h rde_decide.c rde_rib.c rde_update.c Log message: Use Adj-RIB-Out to push UPDATE messages to peers instead of having another set of RB trees of prefixes and atribute. Refactor most of the update code which removes some strange buffer handling. By building the output queue directly in the Adj-RIB-Out the top memory usage during startup is greatly reduced which should help busy server. Tested by phessler@ and myself
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: ajacou...@cvs.openbsd.org 2019/01/20 19:29:34 Modified files: faq: faq16.html Log message: Add a pf(4) rule to redirect VMs to a specified DNS server for option 2. ok mlarkin@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: phess...@cvs.openbsd.org2019/01/20 19:53:51 Modified files: distrib/miniroot: install.sub Log message: when installing over wifi, move nwid and wpakey/nwkey to be on the same line (a later step will move to using join in config files, but since not all adapters support join (due to them not using the net80211 framework), that requires more work and testing.) OK krw@ halex@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 16:00:12 Modified files: usr.bin/ssh: ssh-pkcs11.c Log message: cleanup unnecessary code in ECDSA pkcs#11 signature support: the sign operation does not return DER, but a concatenation of r|s work by markus@, feedback and ok djm@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: guent...@cvs.openbsd.org2019/01/20 16:07:51 Modified files: sys/arch/amd64/amd64: cpu.c Log message: Adjust punctuation in comment to align columns consistently
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 16:08:24 Modified files: usr.bin/ssh: ssh-pkcs11.c Log message: make the PKCS#11 RSA code more like the new PKCS#11 ECDSA code: use a single custom RSA_METHOD instead of a method per key suggested by me, but markus@ did all the work. ok djm@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 16:11:11 Modified files: usr.bin/ssh: ssh-pkcs11.c Log message: KNF previous; from markus@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 16:12:35 Modified files: usr.bin/ssh: ssh-pkcs11.c Log message: we use singleton pkcs#11 RSA_METHOD and EC_KEY_METHOD now, so there is no need to keep a copy of each in the pkcs11_key object. work by markus@, ok djm@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: clau...@cvs.openbsd.org 2019/01/20 16:30:15 Modified files: usr.sbin/bgpctl: bgpctl.8 bgpctl.c parser.c parser.h Log message: Allow 'neighbor descripton' to be used like neighbor group description which will match all neighbors in that group. Works for bgpctl neighbor group [clear|destroy|down|refresh|up] bgpctl show neighbor group [messages|terse|timers] bgpctl show rib neighbor group ... Manpage bits from sthen@ OK benno@ sthen@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2019/01/20 17:24:19 Modified files: lib/libssl : tls13_record.c tls13_record.h Log message: Store the record version and make it available for use. While here correct an int vs size_t mismatch. ok tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 19:05:38 Modified files: usr.bin/ssh: ssh-pkcs11.c Log message: always print the caller's error message in ossl_error(), even when there are no libcrypto errors to report.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 15:57:45 Modified files: usr.bin/ssh: ssh-pkcs11-client.c Log message: cleanup pkcs#11 client code: use sshkey_new in instead of stack- allocating a sshkey work by markus@, ok djm@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 16:05:52 Modified files: usr.bin/ssh: ssh-pkcs11.c Log message: fix leak of ECDSA pkcs11_key objects work by markus, ok djm@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 16:25:26 Modified files: regress/usr.bin/ssh: agent-pkcs11.sh Log message: adapt agent-pkcs11.sh test to softhsm2 and add support for ECDSA keys work by markus@, ok djm@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 16:24:20 Modified files: regress/usr.bin/ssh: Makefile Log message: add "extra:" target to run some extra tests that are not enabled by default (currently includes agent-pkcs11.sh); from markus@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 16:26:44 Modified files: regress/usr.bin/ssh: agent-pkcs11.sh Log message: allow override of ssh-pkcs11-helper binary via $TEST_SSH_SSHPKCS11HELPER from markus@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: clau...@cvs.openbsd.org 2019/01/20 16:27:48 Modified files: usr.sbin/bgpd : bgpd.h control.c rde.c session.c session.h Log message: Support group descriptions in control messages that accept a neighbor description. With this it is possible to show rib a group of peers, to show or signal a group of peers all at once. OK sthen@ benno@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: clau...@cvs.openbsd.org 2019/01/20 16:43:13 Modified files: sys/netinet: if_ether.c Log message: Refresh arp entries that are about to expire. Once their life time is less then 1/8 of net.inet.ip.arptimeout the system will send out a arp request about every 30 seconds until either the entry is updated or expired. Not refreshing arp entries will result in packet drop every time a entry expires which is not ideal for important gateway entries. Came up with this after a discussion with deraadt@. OK benno@ deraadt@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: jmatt...@cvs.openbsd.org2019/01/20 16:44:58 Modified files: sys/dev/pci: if_ixl.c Log message: Replace the default mac filter with one that ignores vlans, and enable promisc vlan mode so we can see vlan tagged traffic. ok dlg@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 17:47:34 Modified files: usr.bin/ssh: ssh-pkcs11.c Log message: use ECDSA_SIG_set0() instead of poking signature values into structure directly; the latter works on LibreSSL but not on OpenSSL. From portable.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2019/01/20 18:20:11 Modified files: lib/libssl : s3_lib.c Log message: Ensure we free TLS 1.3 handshake state. There is no guarantee that ssl3_clear() is called before ssl3_free(), so free things here. Also move the chunk in ssl3_clear() up so that it is with the "free" code rather than the "reinit" code. ok beck@ tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/20 19:01:03 Modified files: usr.bin/ssh: ssh-pkcs11.c Log message: get the ex_data (pkcs11_key object) back from the keys at the index at which it was inserted, rather than assuming index 0
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: k...@cvs.openbsd.org2019/01/20 19:42:46 Modified files: sbin/dhclient : dhclient.c Log message: Typo. "nterface" -> "interface"
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: phess...@cvs.openbsd.org2019/01/20 19:50:00 Modified files: share/man/man4 : acx.4 an.4 atu.4 atw.4 pgt.4 rtw.4 uath.4 wi.4tbl Log message: move example configurations to include nwid and nwkey on the same line
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2019/01/21 00:16:28 Modified files: usr.bin/fstat : fstat.c Log message: explicitly handle printing the AF_KEY socket type as "pfkey" i was looking for it and had to think very hard and read /usr/include/sys/socket.h before i found it here. ok deraadt@ ok claudio@ who wanted it to look like AF_ROUTE output
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mlar...@cvs.openbsd.org 2019/01/20 22:40:11 Modified files: sys/arch/amd64/amd64: pmap.c Log message: Don't add PG_u to the upper level PTEs in the meltdown case There is no reason to have PG_u on the toplevel PTEs when entering special page mappings. The lowest PTE was already set without PG_u, so this change makes everything the same. ok guenther
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mlar...@cvs.openbsd.org 2019/01/20 23:18:37 Modified files: sys/arch/amd64/amd64: machdep.c pmap.c sys/arch/amd64/include: pmap.h Log message: Support 2TB phys mem This change expands the direct map to 4 slots (512GB each), to support machines with up to 2TB physical memory. Should further expansion be required, this change provides the means to do that with a single #define change. with help from and ok guenther
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mlar...@cvs.openbsd.org 2019/01/20 22:44:41 Modified files: sys/arch/amd64/amd64: vmm.c Log message: vmm: better handling of CPUID[1].ECX[OSXSAVE] bit This bit should reflect the current state of the guest's CR4.OSXSAVE value, not whatever happened to be in the host's CPUID[1] when it booted. ok guenther
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: js...@cvs.openbsd.org 2019/01/20 23:58:44 Modified files: lib/libssl : ssl_locl.h tls13_handshake.c tls13_internal.h Log message: Move struct tls13_ctx into a header since other things need access to it. While here, rename struct handshake to struct handshake_stage to avoid potential ambiguity/conflict with the handshake data struct. Also add forward and back pointers between SSL and struct tls13_ctx. ok tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2019/01/21 00:09:10 Modified files: usr.bin/ssh: ssh-add.1 Log message: - -T was added to the first synopsis by mistake - since "..." denotes optional, no need to surround it in [] ok djm
