OpenBSD src changes summary for 2015-11-01 to 2015-11-08 inclusive ==================================================================
bin/cat bin/ksh bin/test distrib/loongson distrib/sets distrib/special etc/mtree/4.4BSD.dist etc/netstart etc/rc games/atc games/boggle games/canfield games/gomoku games/hack games/mille games/random games/worm gnu/usr.bin/gcc lib/libc lib/libcrypto lib/libm lib/librthread lib/libssl lib/libtls libexec/getty libexec/ld.so regress/lib regress/sys regress/usr.bin regress/usr.sbin sbin/clri sbin/fdisk sbin/iked sbin/ipsecctl sbin/mount_msdos sbin/ping sbin/ping6 sbin/restore sbin/sysctl share/man sys/arch/alpha/include sys/arch/amd64/amd64 sys/arch/amd64/stand/efi sys/arch/amd64/stand/efiboot sys/arch/amd64/stand/libsa sys/arch/arm/cortex sys/arch/arm/include sys/arch/hppa/include sys/arch/hppa64/include sys/arch/i386/i386 sys/arch/i386/include sys/arch/m88k/include sys/arch/macppc/include sys/arch/mips64/include sys/arch/sgi/conf sys/arch/socppc/dev sys/arch/socppc/include sys/arch/sparc/dev sys/arch/sparc/include sys/arch/sparc/sparc sys/arch/sparc64/include sys/arch/sparc64/sparc64 sys/arch/vax/if sys/arch/vax/include sys/arch/zaurus/stand/zboot sys/compat/common sys/conf sys/crypto sys/dev sys/dev/ic sys/dev/pci sys/dev/sdmmc sys/dev/usb sys/kern sys/net sys/net80211 sys/netinet sys/netinet6 sys/sys sys/uvm usr.bin/at usr.bin/banner usr.bin/column usr.bin/cut usr.bin/cvs usr.bin/dc usr.bin/file usr.bin/finger usr.bin/from usr.bin/ftp usr.bin/gencat usr.bin/htpasswd usr.bin/less usr.bin/m4 usr.bin/make usr.bin/mandoc usr.bin/mg usr.bin/nc usr.bin/rcs usr.bin/sed usr.bin/signify usr.bin/skeyaudit usr.bin/skeyinfo usr.bin/ssh usr.bin/tmux usr.bin/top usr.bin/uniq usr.bin/units usr.bin/wall usr.bin/whois usr.sbin/apm usr.sbin/arp usr.sbin/authpf usr.sbin/bgpctl usr.sbin/bgpd usr.sbin/cron usr.sbin/hostapd usr.sbin/httpd usr.sbin/ikectl usr.sbin/inetd usr.sbin/installboot usr.sbin/kvm_mkdb usr.sbin/ldapctl usr.sbin/ldapd usr.sbin/lpr usr.sbin/netgroup_mkdb usr.sbin/nsd usr.sbin/pkg_add usr.sbin/pwd_mkdb usr.sbin/radiusd usr.sbin/rcctl usr.sbin/rebound usr.sbin/relayd usr.sbin/rmt usr.sbin/rtadvd usr.sbin/slowcgi usr.sbin/smtpd usr.sbin/snmpd usr.sbin/syslogc usr.sbin/tcpdump usr.sbin/traceroute usr.sbin/unbound usr.sbin/ypldap usr.sbin/ypserv == bin =============================================================== 01/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/bin cat ~ cat.1 ~ cat.c > replace setbuf with setvbuf, from Frederic Nowak (tedu@) ksh ~ c_sh.c ~ edit.c ~ exec.c ~ expand.h ~ history.c ~ lex.c ~ main.c ~ sh.h ~ syn.c ~ table.c ~ tree.c > Add uses of areallocarray(). mksh and Bitrig ksh already have similar > functions. With help from Theo Buehler. > ok nicm@ (mmcc@) ~ shf.c > Drop a needless cast of a void *. (mmcc@) ~ expand.h > Remove two casts of void* return types. (mmcc@) ~ shf.c > aresize() -> areallocarray() > ok nicm@ (mmcc@) ~ history.c > Another aresize() -> areallocarray(). > ok nicm@ (mmcc@) ~ vi.c > Remove an alias for a macro. > ok nicm@ (mmcc@) ~ expand.h > Clean up an Xstring macro. Submitted by Theo Buehler. > ok and suggestions from nicm@ (mmcc@) ~ vi.c > Capitalize entire macro name. > ok nicm@ (mmcc@) ~ io.c ~ sh.h > Make it clearer that warningf()'s first argument determines whether the > lineno is printed. > ok nicm@ (mmcc@) ~ expand.h > Tweak a reallocarray call to be more overflow-resistant. From Theo Buehler. > ok nicm@ (mmcc@) test ~ test.1 > add [ to NAME, and document it; the NAME addition was > proposed by ingo a while back but never got committed; > ok schwarze (jmc@) == distrib =========================================================== 02/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib loongson ~ ramdisk/install.md > newfs the ext2fs partition containing the boot blocks with -O 1 when > running > on the eBenton EBT700, for the PMON flavour found on these systems won't > recognize the filesystem correctly otherwise; researched and reported by > Ban Keong Yee. (miod@) sets ~ lists/base/md.alpha ~ lists/base/md.amd64 ~ lists/base/md.armish ~ lists/base/md.armv7 ~ lists/base/md.aviion ~ lists/base/md.hppa ~ lists/base/md.hppa64 ~ lists/base/md.i386 ~ lists/base/md.landisk ~ lists/base/md.loongson ~ lists/base/md.luna88k ~ lists/base/md.macppc ~ lists/base/md.octeon ~ lists/base/md.sgi ~ lists/base/md.socppc ~ lists/base/md.sparc ~ lists/base/md.sparc64 ~ lists/base/md.vax ~ lists/base/md.zaurus ~ lists/comp/mi > sync (jsg@) ~ lists/base/mi > sync (deraadt@) special ~ disklabel/Makefile > Remove NUMBOOT remnants that were overlooked when vax and > landisk moved to installboot(8). > ok deraadt@ miod@ (krw@) == etc =============================================================== 03/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/etc mtree/4.4BSD.dist ~ mtree/4.4BSD.dist > After removing National Language Support (NLS) from base, stop > creating the directory /usr/share/nls. Having a non-existing default > path in catopen(3) does not make sense, so remove it. If the user > does not specify a NLS path, better fail early than fail because > of an empty directory. Remove path form hier(7). > OK stsp@ schwarze@ jmc@ (bluhm@) netstart ~ netstart > Start the rework of the /etc/netstart shell script. > General changes: > - apply a similar 'style' as used in the installer scripts > - improve comments to be more to the point, remove where code is obvious > - document usage of functions if they have arguments > - rename variables where it improves readability > - replace really old-school shell code with more contemporary idioms > Other changes: > - No need to care about "autoboot" because netstart doesn't inherit the > positional parameters from /etc/rc anymore. /etc/rc executes netstart > instead of sourcing it since r1.439. > - Use simpler for-loop to process list of interfaces with ifstart. > OK halex@ (rpe@) rc ~ rc > A missed backticks to $() conversion. > OK krw@ (rpe@) == games ============================================================= 04/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/games atc ~ graphics.c > replace setbuf with setvbuf, from Frederic Nowak (tedu@) boggle ~ boggle/mach.c > ctype functions take unsigned char values. > Fix redrawing of the challenge cube (-c option) when <esc>word is used. > ok mmcc@ (guenther@) canfield ~ canfield/canfield.c > delete unused code that won't let you play if the load is too high (tedu@) gomoku ~ main.c > replace setbuf with setvbuf, from Frederic Nowak (tedu@) hack ~ hack.main.c > replace setbuf with setvbuf, from Frederic Nowak (tedu@) mille ~ mille.c ~ move.c ~ varpush.c > replace setbuf with setvbuf, from Frederic Nowak (tedu@) random ~ random.c > replace setbuf with setvbuf, from Frederic Nowak (tedu@) worm ~ worm.c > replace setbuf with setvbuf, from Frederic Nowak (tedu@) == gnu =============================================================== 05/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/gnu usr.bin/gcc ~ gcc/cp/g++spec.c > Revert 1.2 and 1.3 in order to go back to the default upstream behaviour > of registering an explicit dependency upon libstdc++.so when linking a > shared > library with c++. > The explicit dependency had been reverted a long time ago when most of our > platforms were still usinc gcc 2.95, in order to have the same behaviour > between > g++ 2.95 and g++ 3.3, for the sake of ports. However, when we started using > gcc 4, the default behaviour was not modified, and nowadays, it's g++ 3 > which > differs from g++ 4. By reverting to the original behaviour, g++ 3 is on par > with g++ 4 again. (miod@) == lib =============================================================== 06/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libc ~ dlfcn/dlfcn_stubs.c > delete old lint ARGSUSED comments (guenther@) ~ citrus/citrus_none.c ~ citrus/citrus_utf8.c ~ db/hash/hash.c ~ db/hash/ndbm.c ~ db/mpool/mpool.c ~ gen/fts.c ~ hash/helper.c ~ net/rcmdsh.c ~ regex/regerror.c ~ regex/regcomp.c ~ rpc/auth_none.c ~ rpc/auth_unix.c ~ rpc/clnt_tcp.c ~ rpc/clnt_udp.c ~ rpc/svc_auth_unix.c ~ rpc/svc_raw.c ~ rpc/svc_tcp.c ~ rpc/clnt_raw.c ~ rpc/svc_udp.c ~ rpc/xdr_mem.c ~ rpc/xdr_stdio.c ~ termios/tcsendbreak.c ~ time/localtime.c > delete old lint ARGSUSED comments (guenther@) ~ sys/semop.2 > replace "can not" with "cannot"; (jmc@) ~ gen/times.c > (struct timezone *)0 -> NULL (mmcc@) ~ gen/auth_subr.c > (struct timezone *)NULL -> NULL (mmcc@) ~ sys/kill.2 > kill 0 has worked for ages, no idea how the man page could be so innacurate > so long; ok guenther (deraadt@) ~ sys/pledge.2 > systrace should work now (tedu@) ~ sys/pledge.2 > Improve explanations throughout (deraadt@) ~ gen/getgrent.3 > clean up HISTORY; (jmc@) ~ stdio/fclose.3 ~ stdio/fflush.3 ~ stdio/funopen.3 > replace setbuf with setvbuf, from Frederic Nowak (tedu@) ~ gen/sysctl.3 > document the net.inet6.ip6.ifq variables in sysctl(3) as well, referring > back > to the 'struct ifqueue' description for net.inet.ip.ifq to reduce chance of > them getting out of sync. ok logan, ok/tweak mikeb (sthen@) ~ asr/res_init.c > When filling the __res_state compatibiliy struct, a long list of > nameservers could overflow the dns search pointers. Restrict the > number, size and address family of nameservers in res_init(3). This > fixes a crash in sendmail. Only programs that use the bind resolver > internals directly are affected. > OK deraadt@ millert@ (bluhm@) ~ nls/catopen.c > After removing National Language Support (NLS) from base, stop > creating the directory /usr/share/nls. Having a non-existing default > path in catopen(3) does not make sense, so remove it. If the user > does not specify a NLS path, better fail early than fail because > of an empty directory. Remove path form hier(7). > OK stsp@ schwarze@ jmc@ (bluhm@) ~ asr/res_init.c > Set the name server counter in __res_state correctly if a nameserver > from asr_ctx was skiped. Missed in previous commit. > OK deraadt@ (bluhm@) ~ sys/pledge.2 > Remove needless comma. (mmcc@) ~ sys/intro.2 ~ sys/kqueue.2 ~ sys/stat.2 ~ sys/wait.2 > add missing NAME entries; (jmc@) ~ net/inet_net.3 > inet(4), not inet(3); (jmc@) libcrypto ~ man/EVP_AEAD_CTX_init.3 > Add EVP_aead_chacha20_poly1305_ietf() - The informational RFC 7539, > "ChaCha20 and Poly1305 for IETF Protocols", introduced a modified AEAD > construction that is incompatible with the common style that has been > already used in TLS with EVP_aead_chacha20_poly1305(). The IETF > version also adds a constant (salt) that is prepended to the nonce. > OK mikeb@ jsing@ (reyk@) ~ crypto/shlib_version > bump minors after adding EVP_aead_chacha20_poly1305_ietf() > OK jsing@ (reyk@) libm ~ src/e_hypotf.c > From FreeBSD 23397: > Fixed wrong magic numbers in scaling. hypotf() was very broken for large > and small values: > hypotf(2.3819765e+38, 2.0416943e+38) was NaN instead of 3.1372484e+38 > hypotf(-3.4028235e+38, 3.3886450e+38) was NaN instead of Inf > hypotf(-2.8025969e-45, -2.8025969e-45) was 0 instead of 4.2038954e-45 > Found by: ucbtest > ok miod@ (shadchin@) librthread ~ rthread.c ~ rthread_rwlock.c > delete old lint ARGSUSED comments (guenther@) libssl ~ src/crypto/evp/e_chacha20poly1305.c ~ src/crypto/evp/evp.h > Add EVP_aead_chacha20_poly1305_ietf() - The informational RFC 7539, > "ChaCha20 and Poly1305 for IETF Protocols", introduced a modified AEAD > construction that is incompatible with the common style that has been > already used in TLS with EVP_aead_chacha20_poly1305(). The IETF > version also adds a constant (salt) that is prepended to the nonce. > OK mikeb@ jsing@ (reyk@) ~ ssl/shlib_version > bump minors after adding EVP_aead_chacha20_poly1305_ietf() > OK jsing@ (reyk@) ~ src/crypto/evp/e_chacha20poly1305.c > Fix typo in comment of previous commit: "that that". (reyk@) ~ src/crypto/opensslv.h > bump to 2.3.2, format LIBRESSL_VERSION_NUMBER like OPENSSL_VERSION_NUMBER. > Suggested by WubTheCaptain so the same comparison code can be used with > LibreSSL. > https://www.openssl.org/docs/manmaster/crypto/OPENSSL_VERSION_NUMBER.html > (bcook@) ~ src/crypto/cast/cast_lcl.h > Mention ROTL() is always invoked with a proper shift value, due to the way > the > CAST_KEY is constructed. This is expected to reduce blood pressure in > auditors. (miod@) ~ src/crypto/aes/aes_core.c > Cast Td4[] values (which are uint8_t) to uint32_t before shifting them left > by > 24 bits; if we don't, Td4[] gets cast to signed int, and according to C>=99 > 6.5.7, signed int shifted by enough bits to cause a the sign bit to be set > is an UB. > Reported by Pascal Cuoq on behalf of the trust-in-soft.com mafia I am > {partial,slightly related} to. (miod@) ~ src/crypto/bn/bn_lcl.h > Fix gcc version preprocessor checks to cope with gcc 5.x and beyond; > reported by Ruslan Babayev. (miod@) libtls ~ shlib_version > bump minors after adding EVP_aead_chacha20_poly1305_ietf() > OK jsing@ (reyk@) == libexec =========================================================== 07/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/libexec getty ~ main.c > remove ppplogin support. ok sthen (tedu@) ~ gettytab.5 ~ gettytab.h ~ init.c ~ main.c > further PPP reduction, hint from sthen (tedu@) ld.so ~ arm/rtld_machine.c ~ sh/rtld_machine.c > Fix typo: s/DT_JUMPREL/DT_JMPREL/ (guenther@) ~ resolve.c ~ resolve.h ~ alpha/rtld_machine.c ~ amd64/rtld_machine.c ~ arm/rtld_machine.c ~ hppa/rtld_machine.c ~ i386/rtld_machine.c ~ m88k/rtld_machine.c ~ mips64/rtld_machine.c ~ powerpc/rtld_machine.c ~ sh/rtld_machine.c ~ sparc/rtld_machine.c ~ sparc64/rtld_machine.c > Factor out the logic for mprotecting the memory between two symbols into > a new MI routine _dl_protect_segment(), and use that for protecting the > GOT and--on some archs--the PLT. > Amazing testing turnaround by miod@, who apparently violated relativity > to get back results on some archs as fast as he did (guenther@) ~ dl_prebind.h > Remove duplicate declaration (guenther@) ~ library.c ~ library_mquery.c > Fix unloading of load groups when the last reference wasn't on the > load_object but rather some descendent. Detect that case in > _dl_unload_shlib() and switch to unloading the entire group. > Based on partial analyses by Henri Kemppainen (duclare (at) guu.fi) > and Peter Hajdu (peter.ferenc.hajdu (at) gmail.com) > ok millert@ (guenther@) == regress =========================================================== 08/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/regress lib ~ libcrypto/aead/aeadtest.c ~ libcrypto/aead/aeadtests.txt > Add EVP_aead_chacha20_poly1305_ietf() - The informational RFC 7539, > "ChaCha20 and Poly1305 for IETF Protocols", introduced a modified AEAD > construction that is incompatible with the common style that has been > already used in TLS with EVP_aead_chacha20_poly1305(). The IETF > version also adds a constant (salt) that is prepended to the nonce. > OK mikeb@ jsing@ (reyk@) ~ libpthread/socket/1/socket1.c ~ libpthread/socket/2/socket2.c ~ libpthread/socket/2a/socket2a.c > replace setbuf with setvbuf, from Frederic Nowak (tedu@) ~ libc/setjmp-fpu/_setjmp.c ~ libc/setjmp-fpu/setjmp-fpu.c ~ libc/setjmp-fpu/setjmp.c ~ libc/setjmp-fpu/sigsetjmp.c > Make sure we use a sigjmp_buf in the sigsetjmp() part of the test. (miod@) sys ~ net/pf_forward/Makefile ~ net/pf_fragment/Makefile > Route output to local addresses has changed, ping6 command line > options have changed, tun has been renamed to tap. Adapt tests. (bluhm@) + crypto/chachapoly/Makefile + crypto/chachapoly/chachapoly_test.c > Test vectors for Chacha20-Poly1305 > ok naddy, djm, reyk (mikeb@) ~ kern/pledge/generic/Makefile + kern/pledge/generic/systrace.filter.in > regress pledge: check the regress with systrace enabled too (semarie@) ~ kern/pledge/generic/systrace.filter.in > regress: pledge > - add $OpenBSD$ tag in systrace.filter.in > - replace dir by variable (semarie@) ~ kern/pledge/generic/Makefile > regress: pledge > check for error output for systrace (semarie@) + net/rtable/Makefile + net/rtable/Makefile.inc + net/rtable/README + net/rtable/inet-fullfeed.txt + net/rtable/inet6-fullfeed.txt + net/rtable/kern_compat.h + net/rtable/util.c + net/rtable/util.h + net/rtable/delete/Makefile + net/rtable/delete/main.c + net/rtable/fullfeed/Makefile + net/rtable/fullfeed/main.c > Basic framework to test the rtable_* API directly from userland. > You can replace inet{,6}-fullfeed.txt with a dump of your fullfeed table > to really stress this test framework. I did not commit them because CVS > certainly doesn't like ~7M file. (mpi@) ~ crypto/Makefile > Hook up chacha20-poly1305 test vectors (missed in previous commit) (mikeb@) + netinet/arp/Makefile + netinet/arp/arp_announcement.py + netinet/arp/arp_gratuitous.py + netinet/arp/arp_request.py + netinet/arp/arp_probe.py + netinet/arp/LICENSE + netinet/arp/README + netinet/arp/arp_broadcast.py + netinet/arp/arp_multicast.py + netinet/arp/arp_fake.py + netinet/arp/arp_other.py + netinet/arp/arp_otherfake.py + netinet/arp/arp_proxy.py > New import: > Add regression tests for the ARP implementation in the kernel. Send ~ netinet/Makefile > Link arp regress into build. (bluhm@) ~ netinet6/nd6/Makefile > Replace a sudo with ${SUDO}. (bluhm@) ~ crypto/gmac/gmac_test.c > Emulate loops performed in the software crypto driver more closely (mikeb@) usr.bin ~ mandoc/char/unicode/input.out_utf8 ~ mandoc/char/unicode/nogroff.out_utf8 > The recent update to /usr/share/locale/UTF-8/LC_CTYPE by afresh1@ > fixed wcwidth(3) for various unusual characters. (schwarze@) ~ make/Makefile + make/mk39 + make/t43.out > groupling tests that now pass (espie@) usr.sbin ~ syslogd/Client.pm ~ syslogd/RSyslogd.pm ~ syslogd/args-rsyslog-client-tcp.pl + syslogd/args-rsyslog-client-tls.pl > Test that rsyslogd can send over TLS to OpenBSD syslogd. (bluhm@) ~ syslogd/Makefile > Generating the self-signed syslogd test certificate does not depend > on the CA certificate. Found by Jan Klemkow. (bluhm@) ~ syslogd/ttylog.c > replace setbuf with setvbuf, from Frederic Nowak (tedu@) == sbin ============================================================== 09/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sbin clri ~ clri.c > Add blank lines surrounding pledge call, as per decree of deraadt@ (mmcc@) fdisk ~ cmd.c ~ misc.c > Don't allow the user to enter GPT partition names too large to fit > in the GPT partition structure. And don't run off the end of the > name buffer by confusing sizeof() with the number of elements in > an array. Use the new GPTPARTNAMESIZE #define instead. While here, > zap the old partition name before setting the new one, lest a short > new name leave bits of an old long name in place. > Originally spotted by jsg@ and his friend cppcheck. > ok jsg@ for slightly different version. (krw@) iked ~ iked.conf.5 > replace "can not" with "cannot"; (jmc@) ~ iked.conf.5 ~ parse.y ~ pfkey.c > Support Chacha20-Poly1305 for Child SAs; ok reyk (mikeb@) ipsecctl ~ ipsec.conf.5 > replace "can not" with "cannot"; (jmc@) ~ ipsecctl.h ~ parse.y ~ pfkdump.c > Decode Chacha20-Poly1305 when dumping SAs; ok reyk, naddy (mikeb@) mount_msdos ~ mount_msdos.c > remove unused variables > ok krw@ millert@ (chl@) ping ~ ping.c > replace setbuf with setvbuf, from Frederic Nowak (tedu@) ~ ping.c > Reorder #includes to reduce diff between ping and ping6. (florian@) ping6 ~ ping6.c > dead store; pointed out by llvm (florian@) ~ ping6.c > Simplify packet option handling since we are only setting one option > these days. (florian@) ~ ping6.c > replace setbuf with setvbuf, from Frederic Nowak (tedu@) ~ ping6.c > Cleanup includes. > guenther@ and kettenis@ confirmed that while not strictly necessary on > OpenBSD we should include both time.h and sys/time.h. (florian@) ~ ping6.c > Whitespace, reduce diff to ping. (florian@) restore ~ utilities.c > Use linkat() instead of link() so that hardlinks of symlinks work > ok millert@ (guenther@) sysctl ~ sysctl.8 > Add an entry for net.inet6.ip6.ifq that dlg@ committed a while ago. > OK dlg@ (logan@) ~ sysctl.8 > Correct my mistake in the previous patch: > net.inet6.ip6.ifq -> net.inet6.ip6.ifq.len > Pointed out by Mike Belopuhov (logan@) ~ sysctl.8 > document the other two net.inet6.ip6.ifq variables, ok logan mikeb (sthen@) == share ============================================================= 10/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share man ~ man4/rt.4 ~ man4/wscons.4 ~ man4/man4.amd64/apm.4 ~ man4/man4.i386/apm.4 ~ man4/man4.loongson/apm.4 ~ man4/man4.macppc/apm.4 ~ man4/man4.sparc/cgfourteen.4 ~ man4/man4.sparc/cgsix.4 ~ man4/man4.sparc/cgthree.4 ~ man4/man4.sparc/tctrl.4 ~ man4/man4.sparc/tcx.4 ~ man4/man4.sparc64/cgsix.4 ~ man4/man4.sparc64/cgthree.4 ~ man4/man4.sparc64/pcons.4 ~ man4/man4.zaurus/apm.4 ~ man9/extent.9 > replace "can not" with "cannot"; (jmc@) ~ man7/mdoc.7 > Specify option ordering in the DESCRIPTION section > ok and tweaks jmc@ schwarze@ (guenther@) ~ man9/style.9 > Delete sentence about option ordering the manpage (moved to mdoc.7) > While here: PRINTFLIKE has been cleaned from base so don't mention it > suggested by and ok jmc@ schwarze@ (guenther@) ~ man9/printf.9 > Remove space before colon. (mmcc@) ~ man9/Makefile ~ man9/ml_init.9 ~ man9/mq_init.9 > provide ml_purge and mq_purge. > these are modelled on IF_PURGE or IFQ_PURGE. they m_freem all the > mbufs on an mbuf list or queue. > ok jmatthew@ mpi@ (dlg@) ~ man4/carp.4 > Stop mentionning ARP load balancing. (mpi@) ~ man9/socreate.9 > you must pass uio to socreate, even if you want an mbuf back. > the uio specifies how much data may be returned in the mbuf. > this should make teary students less sad, but probably not cos > theyve already had to hand the assignment in. (dlg@) ~ man4/ip6.4 > RFC2292 and IPV6_PKTOPTIONS are dead; ok millert@ (jca@) ~ man4/systrace.4 > zap the correspoonding note in systrace(4) - tedu says > systrace/pledge should work; (jmc@) ~ man5/pf.conf.5 > we need an unbreakable space in O(log2 n). > ok jmc@ (sobrado@) ~ man4/carp.4 > improve the load balancing text; ok mpi (jmc@) ~ man4/cdce.4 > The "Lenovo Thinkpad USB 3.0 Ethernet Adapter" works with cdce(4). (stsp@) ~ man8/intro.8 > some fixes from raf czlonka (jmc@) ~ man1/gcc-local.1 > "commandline" -> "command line", since there are so few examples > of the former in the pages, so many of the latter, and in some of > these pages we had multiple spellings; > prompted by tj (jmc@) ~ man4/pci.4 > spelling; from tj (jmc@) ~ man4/umsm.4 > List the Huawei Mobile K4511; OK mpi@ (tim@) ~ man7/hier.7 > After removing National Language Support (NLS) from base, stop > creating the directory /usr/share/nls. Having a non-existing default > path in catopen(3) does not make sense, so remove it. If the user > does not specify a NLS path, better fail early than fail because > of an empty directory. Remove path form hier(7). > OK stsp@ schwarze@ jmc@ (bluhm@) ~ man9/printf.9 > Simplify and clarify. > Discussed with jca@ (mmcc@) == sys =============================================================== 11/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/alpha/include ~ vmparam.h > Remove the definition of USRTEXT. It has no relevance outside of the > non-PIE > a.out world. > ok deraadt@ kettenis@ (miod@) ~ signal.h > Spell `unused' correctly. (miod@) arch/amd64/amd64 ~ aesni.c ~ autoconf.c ~ identcpu.c > Allow overriding ghash_update() with an optimized MD function. Use > this on amd64 to provide a version that uses the PCLMUL instruction > on CPUs that support it but don't have AESNI. ok mikeb@ (naddy@) arch/amd64/stand/efi ~ include/efiapi.h > Use "Loaded Image Protocol" instead of "Loaded Device Path Protocol" > to find the boot device since macbook doesn't support later protocol. > reported by Joel Roberts and Bryan Vyhmeister (yasuoka@) arch/amd64/stand/efiboot ~ efiboot.c > Use "Loaded Image Protocol" instead of "Loaded Device Path Protocol" > to find the boot device since macbook doesn't support later protocol. > reported by Joel Roberts and Bryan Vyhmeister (yasuoka@) ~ efiboot.c > Ignore disks whose media is not present. (yasuoka@) ~ Makefile.common > Disable red-zone since EFI is running with a different ABI. > This may fixes the issue when loading a compressed kernel on macbook > reported by gonzalo, jung, Joel Roberts, Bryan Vyhmeist and many. > (yasuoka@) ~ efiboot.c > Make the variables be "const" and fix white space. (yasuoka@) ~ efidev.c ~ efidev.h > Make "machine disk" show some info for EFI instead of info for BIOS. > (yasuoka@) arch/amd64/stand/libsa ~ cmd_i386.c > Make "machine disk" show some info for EFI instead of info for BIOS. > (yasuoka@) arch/arm/cortex ~ ampintc.c > Fix build with DEBUG_INTC defined; from Daniel Bolgheroni on tech@ (miod@) arch/arm/include ~ vmparam.h > Remove the definition of USRTEXT. It has no relevance outside of the > non-PIE > a.out world. > ok deraadt@ kettenis@ (miod@) arch/hppa/include ~ vmparam.h > Remove the definition of USRTEXT. It has no relevance outside of the > non-PIE > a.out world. > ok deraadt@ kettenis@ (miod@) arch/hppa64/include ~ vmparam.h > Remove the definition of USRTEXT. It has no relevance outside of the > non-PIE > a.out world. > ok deraadt@ kettenis@ (miod@) arch/i386/i386 ~ cpu.c > Only read/write cr4 if we have a bit to set after testing the various > cpuid based flags. > Unlike amd64 there is no CR4_DEFAULT used here, cr4 does not exist > on most/all? 486s and cr4 access traps on Cyrix 5x86 processors. > Should fix a regression introduced in rev 1.65 encountered > by 'Ppractivus' on a 5x86. > "looks good" guenther@ (jsg@) arch/i386/include ~ vmparam.h > Remove the definition of USRTEXT. It has no relevance outside of the > non-PIE > a.out world. > ok deraadt@ kettenis@ (miod@) arch/m88k/include ~ vmparam.h > Remove the definition of USRTEXT. It has no relevance outside of the > non-PIE > a.out world. > ok deraadt@ kettenis@ (miod@) arch/macppc/include ~ vmparam.h > Remove the definition of USRTEXT. It has no relevance outside of the > non-PIE > a.out world. > ok deraadt@ kettenis@ (miod@) arch/mips64/include ~ param.h > Only define KERNBASE if defined(_KERNEL), for nothing in userland needs it, > and only if not already defined. Allows for KERNBASE to be defined > elsewhere. (miod@) arch/sgi/conf ~ GENERIC-IP22 ~ GENERIC-IP26 ~ GENERIC-IP27 ~ GENERIC-IP28 ~ GENERIC-IP30 ~ GENERIC-IP32 ~ RAMDISK-IP22 ~ RAMDISK-IP26 ~ RAMDISK-IP27 ~ RAMDISK-IP28 ~ RAMDISK-IP30 ~ RAMDISK-IP32 > Define KERNBASE in addition to LINK_ADDRESS. (miod@) arch/socppc/dev ~ if_tsec.c > Use m_defrag(9) when we fail to load fragmented mbuf chains. > From Richard Procter <richard DOT n DOT procter AT gmail DOT com>. > ok dlg@ (mpi@) arch/socppc/include ~ vmparam.h > Remove the definition of USRTEXT. It has no relevance outside of the > non-PIE > a.out world. > ok deraadt@ kettenis@ (miod@) arch/sparc/dev ~ if_ie.c > make hfsc work on ie(4/sparc) by using IFQ_DEQUEUE instead of IF_DEQUEUE. > (dlg@) arch/sparc/include ~ intr.h > intr_barrier() stub. > ok miod@ (mpi@) ~ param.h > Now that the kernel virtual address space has been made larger, even on > sun4/4c/4e, increase NKMEMPAGES_MAX_DEFAULT to the same value as platforms > with limited, but not horribly limited, kva size. (miod@) arch/sparc/sparc ~ intr.c > intr_barrier() stub. > ok miod@ (mpi@) ~ trap.c ~ vm_machdep.c > Move the logic for adjusting userspace registers in the child after fork > from cpu_fork() to child_return(), putting all the SYSCALL_G2RFLAG logic > in trap.c > sparc testing by sebastia@ and miod@ (guenther@) arch/sparc64/include ~ vmparam.h > Remove the definition of USRTEXT. It has no relevance outside of the > non-PIE > a.out world. > ok deraadt@ kettenis@ (miod@) arch/sparc64/sparc64 ~ trap.c ~ vm_machdep.c > Move the logic for adjusting userspace registers in the child after fork > from cpu_fork() to child_return(), putting all the SYSCALL_G2RFLAG logic > in trap.c > sparc testing by sebastia@ and miod@ (guenther@) arch/vax/if ~ if_de.c > use IFQ_DEQUEUE, not IF_DEQUEUE, to pull off the send queue. > this is more correct, as it supports hfsc use on these interfaces. (dlg@) ~ sgec.c > get rid of IF_PREPEND by switching to IFQ_POLL/IFQ_DEQUEUE. > IF_PREPEND only checks priq state, so it wont work out well if > you're using hfsc. > tested by miod@ > ok mpi@ miod@ (dlg@) arch/vax/include ~ vmparam.h > Remove the definition of USRTEXT. It has no relevance outside of the > non-PIE > a.out world. > ok deraadt@ kettenis@ (miod@) arch/zaurus/stand/zboot ~ boot.8 > replace "can not" with "cannot"; (jmc@) compat/common ~ compat_util.c > These NDINIT run out of the context of the process doing execve, > so PS_PLEDGE is active. PLEDGE_EXEC must be noted for the namei > operations, so that the action is understood by the namei check code. > (deraadt@) ~ compat_util.c > typo in nd variable used for adding ni_pledge note > ok deraadt@ (semarie@) conf ~ files > Hook up Chacha20-Poly1305 to the OpenBSD Cryptographic Framework > ok naddy, jsing (mikeb@) ~ files > Do not compile net/radix_mpath.c in ART-enabled kernels. > In such kernels multipath routing support is independant from the data > structure used to perform the binary lookup. Is is implemented as a > singly-listed list of route entries. This is possible because a "struct > rtentry" is no longer mapped 1:1 to a node in the tree. (mpi@) crypto + chachapoly.c + chachapoly.h > Chacha20-Poly1305 AEAD construction as described in RFC7634 and RFC7539 > ok naddy, jsing (mikeb@) ~ cryptodev.h ~ xform.c ~ xform.h > Hook up Chacha20-Poly1305 to the OpenBSD Cryptographic Framework > ok naddy, jsing (mikeb@) ~ cryptosoft.c > Enable Chacha20-Poly1305 in the software crypto driver > ok naddy, jsing, reyk (mikeb@) ~ cryptodev.h > Remove two unused defines (mikeb@) ~ chachapoly.c ~ chachapoly.h ~ xform.c > Pass context as a void pointer to cut down on casts in xform.c (mikeb@) ~ gmac.c > Instead of multiplying with 0..1, extend the bit into a mask and do an AND. > The same technique was already used a few lines above. ok mikeb@ (naddy@) ~ gmac.c ~ gmac.h > Allow overriding ghash_update() with an optimized MD function. Use > this on amd64 to provide a version that uses the PCLMUL instruction > on CPUs that support it but don't have AESNI. ok mikeb@ (naddy@) ~ gmac.c ~ gmac.h ~ xform.c > Pass AES_GMAC context as a void pointer to cut down on casts in xform.c > (mikeb@) ~ gmac.c ~ gmac.h ~ xform.c > Update copyright information (mikeb@) dev ~ softraid_crypto.c > explicitly say that we use uio for our crypto operations; ok mikeb@ > (naddy@) dev/ic ~ re.c ~ rtl81x9reg.h > later variants of these chips can support bigger rx and tx rings. this > diff expands them so devices that need more packets per interrupt can > use them. > this is all from brad@ > tested by jim smith and benjamin perrault on APUs > tested by me on 8139s (which dont support bit rings) on landisk, and > 8169s (dlg@) ~ acx.c ~ ar5008.c ~ ar9003.c ~ ath.c ~ athn.c ~ atw.c ~ bwi.c ~ malo.c ~ rt2560.c ~ rt2661.c ~ rt2860.c ~ rtw.c ~ rtwvar.h > replace the ifqueues in net80211 with mbuf_queues. > the specific queues are ic_mgtq, ic_pwrsaveq, and ni_savedq. rtw > had its own queue for beacons. > tested by mpi@ and jmc@ > ok mpi@ (dlg@) ~ if_wi_hostap.c > use if_enqueue() rather than doing a poor inline version of it. > ok mpi@ (dlg@) ~ ncr53c9x.c > Merge NetBSD 1.145: > When issuing a non-dma command, make sure to set the "remaining length of > command to be transfered via dma" (sc_cmdlen) to zero upfront, otherwise we > might get confused on command completition interrupt (no dma active but > still > data left to transfer). (miod@) dev/pci ~ drm/i915/i915_drv.c > drm/i915: Fix and clean BDW PCH identification > From Rodrigo Vivi > a35cc9d0c0118fb18f7c5dd7a44adb454868a679 in mainline linux > This removes some warnings that incorrectly trigger on desktop broadwell. > (jsg@) ~ drm/i915/intel_uncore.c > drm/i915/bdw: enable eDRAM. > From Ben Widawsky > 1d2866baf71e222308345ec745c20cbdb279f325 in mainline linux (jsg@) ~ drm/i915/i915_drv.h > Bring in some commits from Rodrigo Vivi in linux to correct > the IS_BDW_ULT macro. > drm/i915: BDW Fix Halo PCI IDs marked as ULT. > 6b96d705f3cf435b0b8835b12c9742513c77fed6 in mainline linux > This will prevent the desktop "Iris Pro Graphics 6200" from being > misidentified as ULT. > drm/i915/bdw: PCI IDs ending in 0xb are ULT. > 0dc6f20b9803f09726bbb682649d35cda8ef5b5d in mainline linux > This will make the mobile "Iris Graphics 6100" be correctly > identified as being a ULT part. (jsg@) ~ pcidevs > add some "Broadwell H" ids and another asmedia xhci (jsg@) ~ pcidevs.h ~ pcidevs_data.h > regen (jsg@) ~ xhci_pci.c > Mark xhci_intr() as IPL_MPSAFE since it only schedules a soft-interrupt. > ok visa@ (mpi@) ~ ehci_pci.c > Delay root hub interrupt processing to the soft-interrupt path in order > to mark ehci_intr() as IPL_MPSAFE. > Earlier version tested by ratchov@, ok visa@ (mpi@) ~ if_de.c ~ if_devar.h > replace the ifqueues used for tulip_txq and _rxq with mbuf_lists. (dlg@) ~ if_de.c > use IFQ_IS_EMPTY to see if if_snd is empty, not IF_IS_EMPTY (dlg@) ~ if_ix.c > replace while (ml_dequeue()) m_freem(); with ml_purge(); (dlg@) ~ if_iwm.c ~ if_iwn.c ~ if_rtwn.c ~ if_wpi.c > replace the ifqueues in net80211 with mbuf_queues. > the specific queues are ic_mgtq, ic_pwrsaveq, and ni_savedq. rtw > had its own queue for beacons. > tested by mpi@ and jmc@ > ok mpi@ (dlg@) ~ km.c > allow km(4) to match the temperature sensor in GX-412TC SOC (as used on > APU2) > tested by nothingness at citycable.ch, ok bmercer@ (sthen@) dev/sdmmc ~ sdmmc_mem.c ~ sdmmcreg.h > Always claim to support sector mode for eMMC. Allows BeagleBone Black > boards with Micron eMMC to work. The Micron eMMC seems to adhere to the > spec which states: > "If there is no indication by a host to a memory that the host is > capable of handling sector type of addressing the higher than 2GB of > density of memory will change its state to Inactive (similarly to a sit- > uation in which there is no common voltage range to work with)" > From Ian Sutton with feedback from uwe@ (jsg@) dev/usb ~ xhci.c > Mark xhci_intr() as IPL_MPSAFE since it only schedules a soft-interrupt. > ok visa@ (mpi@) ~ ehci.c ~ ehcivar.h > Delay root hub interrupt processing to the soft-interrupt path in order > to mark ehci_intr() as IPL_MPSAFE. > Earlier version tested by ratchov@, ok visa@ (mpi@) ~ if_athn_usb.c ~ if_atu.c ~ if_otus.c ~ if_ral.c ~ if_rum.c ~ if_run.c ~ if_uath.c ~ if_upgt.c ~ if_urtw.c ~ if_urtwn.c ~ if_zyd.c > replace the ifqueues in net80211 with mbuf_queues. > the specific queues are ic_mgtq, ic_pwrsaveq, and ni_savedq. rtw > had its own queue for beacons. > tested by mpi@ and jmc@ > ok mpi@ (dlg@) ~ hidms.c > for mice with wheels, check for W direction at AC Pan input used in > some newer mice > ok miod (jcs@) ~ umcs.h > Spell `unused' correctly. (miod@) kern ~ kern_pledge.c > uniformize "always allowed syscalls" with pledge > - use a proper name PLEDGE_ALWAYS (suggested by derradt@) > - unify the check for allowing it in order to allow all of them > ok deraadt@ (semarie@) ~ uipc_usrreq.c > bind() on AF_UNIX should set PLEDGE_UNIX not PLEDGE_CPATH; ok semarie > (deraadt@) ~ kern_pledge.c > Do not need to check the pledge control bits for system calls that are > PLEDGE_ALWAYS. > ok semarie (deraadt@) ~ kern_descrip.c ~ kern_pledge.c ~ kern_sig.c ~ kern_sysctl.c ~ kern_time.c ~ sys_generic.c ~ uipc_syscalls.c ~ uipc_usrreq.c ~ vfs_lookup.c ~ vfs_syscalls.c > refactor pledge_*_check and pledge_fail functions > - rename _check function without suffix: a "pledge" function called from > anywhere is a "check" function. > - makes pledge_fail call the responsability to the _check function. remove > it > from caller. > - make proper use of (potential) returned error of _check() functions. > - adds pledge_kill() and pledge_protexec() > with and OK deraadt@ (semarie@) ~ uipc_mbuf.c > provide ml_purge and mq_purge. > these are modelled on IF_PURGE or IFQ_PURGE. they m_freem all the > mbufs on an mbuf list or queue. > ok jmatthew@ mpi@ (dlg@) ~ kern_pledge.c > also handle the kill(self) case for threads; from Theo Buehler (deraadt@) ~ exec_elf.c ~ kern_exec.c ~ kern_ktrace.c ~ kern_pledge.c ~ kern_sig.c ~ tty.c ~ tty_pty.c ~ uipc_usrreq.c ~ vfs_lookup.c ~ vfs_syscalls.c > move the pledgenote annotation from `struct proc' to `struct nameidata' > pledgenote is used for annotate the policy for a namei context. So make it > tracking the nameidata. > It is expected for the caller to explicitly define the policy. It is a > kernel > bug to not do so. > ok deraadt@ (semarie@) ~ kern_pledge.c > use binary-search for pledge-request > (semblable diff proposed by Peter J. Philipp) > "no problem" deraadt@ (semarie@) ~ kern_pledge.c > some tweaks to the signal code. > allow signals to any thread (they'll be checked within process later). > guenther also notes the pid check should be process pid, not proc pid. > (tedu@) ~ kern_pledge.c > pledge_aftersyscall has been reduced to one case, "getpw", to open a > window for chatting to ypserv. This can be done in pledge_namei, so > improve system call performance by removing the pledge_aftersyscall hook. > ok semarie (deraadt@) ~ uipc_usrreq.c > AF_UNIX connect is a "unix" operation, not "rpath wpath" (deraadt@) ~ kern_pledge.c > move /etc/spwd.db blacklist outside PLEDGE_GETPW check. > so that all pledged programs would get it instead of only ones with > PLEDGE_GETPW. > ok deraadt@ (semarie@) ~ kern_pledge.c > pledge_ioctl only takes files, adjust prototype. ok semarie (tedu@) ~ kern_pledge.c > revert sys/kern/kern_pledge.c 1.103 and reenable pledge in pwd_mkdb > ok deraadt@ (semarie@) ~ init_main.c ~ sched_bsd.c > keep all the setperf timeout(9) handling in one place; ok tedu@ (naddy@) ~ uipc_syscalls.c > pull initialization up before poosible goto bad, from Mark Latimer (tedu@) net ~ if_spppsubr.c ~ if_sppp.h > sppp_pick is unused, it can go away. (dlg@) ~ bridgestp.c > Some of the bridge code is running in splsoftnet now, change the > splassert() in bstp_notify_rtage() from IPL_NET to IPL_SOFTNET > accordingly. > OK mpi@ (reyk@) ~ if.c ~ route.c ~ rtable.c ~ rtable.h ~ rtsock.c > Merge rtable_mpath_match() into rtable_lookup(). > ok bluhm@ (mpi@) ~ if_ppp.c > get rid of the "fastq", which is where this driver puts ip packets > with IPTOS_LOWDELAY set. > this complicates efforts to clean up the send queue, and is probably > better done by queues in pf than unconditionally in a single driver. > ok sthen@ (dlg@) ~ pfkeyv2.h ~ pfkeyv2_convert.c > Plumb Chacha20-Poly1305 into the IPsec/ESP and PF_KEY frameworks > ok naddy (mikeb@) ~ if_mpw.c > pull packets off the send queue with IFQ_DEQUEUE instead of IF_DEQUEUE. > (dlg@) ~ if_pppx.c > use an mbuf_queue for the svcq instead of an ifqueue. (dlg@) ~ if.c > Do not clear M_PROTO1 flag before calling if_start() because pseudo- > drivers, like vlan(4), call if_enqueue() in their *start function. > Prevent an infinite recursion reported by Armin Wolfermann on bugs@. (mpi@) ~ pipex.c > Remove dead assignment and newly created unused variable. > Found by LLVM/Clang Static Analyzer. > ok yasuoka@ mpi@ (chl@) ~ pf_table.c > - fixes potential use-after-free in pfr_set_addrs() > OK mikeb@, OK bluhm@ (sashan@) ~ if_ppp.c > use mq_purge to free a queue of mbufs. (dlg@) ~ rtable.c > Call rtable_put(), a stub for now, before leaving a function that called > rtable_get(). (mpi@) ~ art.c ~ radix.c ~ radix.h ~ rtable.c > Some tweaks to build the rtable API and backends in userland. > Needed by the regression tests. (mpi@) ~ rtable.c > Initialize the correct variable in ART's rtable_match(). (mpi@) ~ route.c > rtfree(9) accepts NULL pointers. (mpi@) ~ if_ppp.c > apply some knf. > ok many > no objections from anyone (dlg@) ~ if_ppp.c > replace sc_npqueue and sc_npqtail with a simple mbuf_list. (dlg@) ~ if_pppvar.h > unbreak tree after src/sys/net/if_ppp.c r1.95. > i forgot to commit the change of the npqueue type in the header. > noticed by benoit lecocq (dlg@) ~ if_mpw.c > Do not use rt_ifp directly. > ok rzalamena@ (mpi@) ~ if_mpe.c > Do not use rt_ifp directly. > ok claudio@ (mpi@) ~ rtable.c > In ART separate the MPATH delete case to properly recover if art_delete() > does not find a matching node. > This currently never happens because we always do a route lookup before > calling rtable_delete(). Yes this is odd & due to the way multipath is > implemented in the radix tree. (mpi@) ~ art.h ~ route.h ~ rtable.c > Use a SLIST instead of a LIST for MPATH route entries with ART. (mpi@) ~ if.c ~ pf.c ~ radix_mpath.c ~ route.h ~ rtable.c ~ rtable.h > Rename rt_mpath_next() into rtable_mpath_next() and provide an > implementation for ART based on the singly-linked list of route > entries. (mpi@) ~ radix.c > Do not compile net/radix_mpath.c in ART-enabled kernels. > In such kernels multipath routing support is independant from the data > structure used to perform the binary lookup. Is is implemented as a > singly-listed list of route entries. This is possible because a "struct > rtentry" is no longer mapped 1:1 to a node in the tree. (mpi@) ~ bridgestp.c ~ if_bridge.c > Don't try to be clever testing if a queue is full before calling > if_enqueue(). As pointed by dlg@, IF_QFULL on works in the priq > case. > Prompted by a diff from uebayasi@ to export ifi_oqdrops, ok dlg@ (mpi@) ~ if.c ~ if_bridge.c ~ if_bridge.h > Use input handlers for bridge(4). > This allows more flexible configurations with vlan(4) and bridge(4) on > top of the same physical interface. In particular it allows to not feed > VLAN tagget packets into a bridge(4). > Fix regression reported by Armin Wolfermann on bugs@, ok dlg@ (mpi@) net80211 ~ ieee80211_input.c ~ ieee80211_node.c ~ ieee80211_node.h ~ ieee80211_output.c ~ ieee80211_proto.c ~ ieee80211_var.h > replace the ifqueues in net80211 with mbuf_queues. > the specific queues are ic_mgtq, ic_pwrsaveq, and ni_savedq. rtw > had its own queue for beacons. > tested by mpi@ and jmc@ > ok mpi@ (dlg@) ~ ieee80211_input.c ~ ieee80211_output.c > Update section and table numbers inside comments in the RSN code to > the 802.11-2012 standard. > ok mpi@ (stsp@) ~ ieee80211_input.c > Handle additional RSN element group ciphers. > ok mpi@ (stsp@) netinet ~ if_ether.c > Replace the nd6 llinfo malloc(9) with pool_get(9) like arp does. > OK mpi@ (bluhm@) ~ if_ether.c > Rename the list of arp entries to arp_list. This is consistent to > the other arp variables and nd6. Convert a hand-crafted loop to > LIST_FOREACH_SAFE. > OK mpi@ (bluhm@) ~ if_ether.c ~ ip_carp.c ~ ip_carp.h > Retire ARP load-balacing, thanks for all the fish! > One of the keys of our MP work relies on making OpenBSD's kernel simpler! > In this case turning ARP processing MP-safe is quite complicated due to > the way carp(4) is hooked in arpinput() and nowadays you'd better run > kitchensinkd(9) anyway :) > ok bluhm@, claudio@, reyk@ (mpi@) ~ ip_carp.c > Remove leftovers from previous carp(4)-to-relayd(8) conversion diff. > Pointed by and ok reyk@ (mpi@) ~ ip_esp.c > Plumb Chacha20-Poly1305 into the IPsec/ESP and PF_KEY frameworks > ok naddy (mikeb@) ~ ip_output.c > Disable TCP/UDP TX hardware checksumming if an IPv4 packet contains > IP options or if an IPv6 packet contains header extensions. > Required by cnmac(4) and a sensible precautionary measure in general. > ok visa@, mikeb@ (naddy@) ~ if_ether.c > use ml_purge to flush the arp hold lists instead of dequeue/free loops. > this is an interesting change because the loops have to decrement > the global hold count too. they looked like this: > while ((mh = ml_dequeue(&la->la_ml)) != NULL) { > la_hold_total--; > m_freem(mh); > } > because ml_purge returns how many mbufs were freed, we can do this: > la_hold_total -= ml_purge(&la->la_ml); > ok mpi@ bluhm@ (dlg@) ~ if_ether.c > In in_arpinput() replace the loops over the interface addresses > with route lookups. Check wether ARP sender or target protocol > address is a local IP address. Remove the loop that checks wether > any IPv4 address is configured on the receiving interface. > input, test, OK mpi@ (bluhm@) ~ tcp_input.c > Change nd6_nud_hint() to no longer manipulate rt_ifp directly. > While here remove unused argument and convert the route check to > rtisvalid(9). > ok bluhm@ (mpi@) ~ if_ether.c > In in_arpinput() do not make an extra route lookup to check wether > the sender address is a local IP. The arplookup() does this route > lookup anyway, so just check its result. > OK mpi@ (bluhm@) ~ ip_ether.c > Use input handlers for bridge(4). > This allows more flexible configurations with vlan(4) and bridge(4) on > top of the same physical interface. In particular it allows to not feed > VLAN tagget packets into a bridge(4). > Fix regression reported by Armin Wolfermann on bugs@, ok dlg@ (mpi@) netinet6 ~ nd6.c > Compare nd6 llinfo pointer with NULL. No binary change. > OK mpi@ (bluhm@) ~ nd6.c > Replace the nd6 llinfo malloc(9) with pool_get(9) like arp does. > OK mpi@ (bluhm@) ~ ip6_forward.c > Stop using rt_ifp. > ok bluhm@ (mpi@) ~ nd6.c ~ nd6.h ~ nd6_nbr.c ~ nd6_rtr.c > Prefer an existing refcounted ``ifp'' to rt_ifp when possible or use the > interface index directly. > ok bluhm@ (mpi@) ~ nd6.c ~ nd6.h > Implement the list of nd6 llinfo entries with a TAILQ. > OK millert@ mpi@ (bluhm@) ~ nd6_rtr.c > typo in comment (sthen@) ~ in6.c ~ nd6_nbr.c > Retire ARP load-balacing, thanks for all the fish! > One of the keys of our MP work relies on making OpenBSD's kernel simpler! > In this case turning ARP processing MP-safe is quite complicated due to > the way carp(4) is hooked in arpinput() and nowadays you'd better run > kitchensinkd(9) anyway :) > ok bluhm@, claudio@, reyk@ (mpi@) ~ ip6_output.c > Disable TCP/UDP TX hardware checksumming if an IPv4 packet contains > IP options or if an IPv6 packet contains header extensions. > Required by cnmac(4) and a sensible precautionary measure in general. > ok visa@, mikeb@ (naddy@) ~ icmp6.c ~ ip6_output.c > Remove dead assignments. > Found by LLVM/Clang Static Analyzer. > ok bluhm@ mpi@ (chl@) ~ nd6.c ~ nd6.h > Change nd6_nud_hint() to no longer manipulate rt_ifp directly. > While here remove unused argument and convert the route check to > rtisvalid(9). > ok bluhm@ (mpi@) sys ~ pledge.h > uniformize "always allowed syscalls" with pledge > - use a proper name PLEDGE_ALWAYS (suggested by derradt@) > - unify the check for allowing it in order to allow all of them > ok deraadt@ (semarie@) ~ pledge.h ~ syscall_mi.h > refactor pledge_*_check and pledge_fail functions > - rename _check function without suffix: a "pledge" function called from > anywhere is a "check" function. > - makes pledge_fail call the responsability to the _check function. remove > it > from caller. > - make proper use of (potential) returned error of _check() functions. > - adds pledge_kill() and pledge_protexec() > with and OK deraadt@ (semarie@) ~ mbuf.h > provide ml_purge and mq_purge. > these are modelled on IF_PURGE or IFQ_PURGE. they m_freem all the > mbufs on an mbuf list or queue. > ok jmatthew@ mpi@ (dlg@) ~ namei.h ~ pledge.h ~ proc.h > move the pledgenote annotation from `struct proc' to `struct nameidata' > pledgenote is used for annotate the policy for a namei context. So make it > tracking the nameidata. > It is expected for the caller to explicitly define the policy. It is a > kernel > bug to not do so. > ok deraadt@ (semarie@) ~ syscall_mi.h > make systrace and pledge play nice again. ok deraadt (tedu@) ~ vnode.h > Delete VBITS: it's unused and the definition is actually wrong > ok miod@ (guenther@) ~ disklabel.h > Add & use a #define GPTPARTNAMESIZE rather than the magic number > '36'. > ok jsg@ as part of larger diff. (krw@) ~ proc.h ~ syscall_mi.h > pledge_aftersyscall has been reduced to one case, "getpw", to open a > window for chatting to ypserv. This can be done in pledge_namei, so > improve system call performance by removing the pledge_aftersyscall hook. > ok semarie (deraadt@) ~ pledge.h > pledge_ioctl only takes files, adjust prototype. ok semarie (tedu@) uvm ~ uvm_mmap.c ~ uvm_swap.c > refactor pledge_*_check and pledge_fail functions > - rename _check function without suffix: a "pledge" function called from > anywhere is a "check" function. > - makes pledge_fail call the responsability to the _check function. remove > it > from caller. > - make proper use of (potential) returned error of _check() functions. > - adds pledge_kill() and pledge_protexec() > with and OK deraadt@ (semarie@) == usr.bin =========================================================== 12/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin at - privs.h ~ at.c > It is only necessary to swap the effective gid when reading a file. > An attacker exploiting an overflow can change the egid themselves > so running with the egid of the user in other places just gives you > a false sense of security. OK nicm@ deraadt@ (millert@) ~ at.c > Change cron from including all headers in every file to only including > what each .c file needs. I have not removed cron.h since it will > be used in a future clean up of the cron's .h files. OK nicm@ (millert@) ~ at.c ~ parsetime.c > Use __progname instead of the homegrown ProgramName. (millert@) banner ~ banner.c > Add blank line after pledge call. (mmcc@) column ~ column.c > Blank line before pledge(). (mmcc@) cut ~ cut.c > Blank line after pledge(). (mmcc@) cvs ~ add.c ~ admin.c ~ annotate.c ~ buf.c ~ checkout.c ~ client.c ~ commit.c ~ config.c ~ cvs.c ~ date.y ~ diff.c ~ diff3.c ~ diff_internals.c ~ edit.c ~ entries.c ~ file.c ~ history.c ~ import.c ~ log.c ~ logmsg.c ~ modules.c ~ rcs.c ~ rcsnum.c ~ rcsparse.c ~ remote.c ~ remove.c ~ server.c ~ tag.c ~ trigger.c ~ update.c ~ util.c ~ worklist.c ~ xmalloc.c ~ xmalloc.h > Remove xfree(), like already done for RCS. From Michael W Bombardieri, > ok mmcc (nicm@) dc ~ dc.c > Surround pledge calls with blank lines. (mmcc@) file - magdir/palmpilot > palmpilot should have gone when palm was added, it is redundant. (nicm@) finger ~ finger.c > Blank line after pledge call. (mmcc@) from ~ from.c > Blank line after pledge call. (mmcc@) ~ from.c > Add blank lines around pledge call. (mmcc@) ftp ~ main.c > Fix inverted pledge requests, from Frederic Nowak (jca@) ~ ftp.1 > Fix the example "ls . |more"; from Frederic Nowak <fnwk at mailbox dot > org>. > While here, make it clear that `-' and `|' are only special in local, > not in remote filenames. > Probably, `|' support should be removed from ftp(1), but let's fix one > thing at a time. > OK jmc@ (schwarze@) gencat ~ gencat.1 > replace "can not" with "cannot"; (jmc@) htpasswd ~ htpasswd.c > Make our initial pledge stricter once we figured out in which mode we > are running. > In batch mode we are only reading from stdin and writing to stdout. > If no file is specified we are reading from stdin, writing to stdout > and need to control the tty for readpassphrase. > OK deraadt@ on an earlier version some time ago. (florian@) less - INSTALL - Makefile.aut - Makefile.dsb - Makefile.dsg - Makefile.dsu - Makefile.in - Makefile.inc - Makefile.o2e - Makefile.o9c - Makefile.o9u - Makefile.wnb - Makefile.wnm - NEWS - README - configure - configure.ac - defines.ds - defines.h.in - defines.o2 - defines.o9 - defines.wn - help.c - install.sh - lessecho.c - lessecho.man - lessecho.nro - lglob.h - mkfuncs.awk - mkinstalldirs - pckeys.h - regexp.c - regexp.h - scrsize.c ~ brac.c ~ ch.c ~ charset.c ~ charset.h ~ cmd.h ~ cmdbuf.c ~ command.c ~ cvt.c ~ decode.c ~ defines.h ~ edit.c ~ filename.c ~ forwback.c ~ funcs.h ~ ifile.c ~ input.c ~ jump.c ~ less.h ~ lesskey.1 ~ lesskey.c ~ lesskey.h ~ line.c ~ linenum.c ~ lsystem.c ~ main.c ~ mark.c ~ optfunc.c ~ option.c ~ option.h ~ opttbl.c ~ os.c ~ output.c ~ pattern.c ~ pattern.h ~ position.c ~ position.h ~ prompt.c ~ screen.c ~ search.c ~ signal.c ~ tags.c ~ ttyin.c ~ version.c ~ less/Makefile ~ lesskey/Makefile > Replace less with the cleaned-up fork of less 458 maintained by Garrett > D'Amore at https://github.com/gdamore/less-fork. This has significantly > less portability goop, has a tidied up code style, uses terminfo instead > of termcap, and is has stricter POSIX compliance. > Many of our local changes have been accepted upstream: substantial > remaining local changes are code to read help files from /usr/share > rather than compiling them in, man page and help improvements, and some > tweaks to the default options. > Review and testing by millert, ok deraadt (nicm@) ~ charset.c ~ cmd.h ~ decode.c ~ less.h ~ main.c > whitespace (deraadt@) ~ ch.c ~ command.c ~ input.c ~ mark.c ~ output.c ~ position.c ~ signal.c > deregister (tedu@) ~ less.h ~ lsystem.c ~ signal.c > Remove LSIGNAL which is just the same as lsignal() now. (nicm@) ~ funcs.h ~ linenum.c ~ os.c > time_t is not a long. remove incorrect abstraction around time(). > ok nicm (tedu@) ~ brac.c ~ ch.c ~ charset.c ~ charset.h ~ cmd.h ~ cmdbuf.c ~ command.c ~ cvt.c ~ decode.c ~ edit.c ~ filename.c ~ forwback.c ~ ifile.c ~ input.c ~ jump.c ~ less.h ~ lesskey.c ~ lesskey.h ~ line.c ~ linenum.c ~ lsystem.c ~ main.c ~ mark.c ~ optfunc.c ~ option.c ~ option.h ~ opttbl.c ~ os.c ~ output.c ~ pattern.c ~ pattern.h ~ position.c ~ position.h ~ prompt.c ~ screen.c ~ search.c ~ signal.c ~ tags.c ~ ttyin.c ~ version.c > Garrett D'Amore has agreed to moving his copyright line up above the > terms with the existing copyright, so it is clear it applies the same > terms. (nicm@) ~ cmd.h ~ command.c ~ decode.c ~ less.1 ~ lesskey.c > Remove support for ! to run a shell command, we have ^Z around these > parts. ok ratchov jung millert (nicm@) ~ charset.c ~ less.1 > remove rarely used LESSCHARDEF support. ok nicm (tedu@) ~ charset.c > remove some charsets we don't use. remove LESSCHARSET since setting it to > anything other than LC_CTYPE is likely a bug. > ok nicm (tedu@) ~ charset.c > delete custom charset tables and just use ctype. init utf_mode from > LC_CTYPE > ok nicm (tedu@) ~ cmdbuf.c ~ command.c ~ decode.c ~ edit.c ~ filename.c ~ funcs.h ~ ifile.c ~ lsystem.c ~ main.c ~ optfunc.c ~ option.c ~ prompt.c ~ tags.c > replace save() with estrdup() and make estrdup() exit like all the other > ecalloc, etc. functions do. > ok mmcc nicm (tedu@) ~ less.1 ~ tags.c > Remove support for LESSGLOBALTAGS, we do not have global(1) (standard > ctags(1) support remains). ok tedu (nicm@) ~ less.1 > stop pointing people to the gnu and less sites; ok nicm (jmc@) m4 ~ main.c > pledge m4. tested by me. > reordered to match the manpage, and added tmppath as an annotation > prompted by deraadt@ (espie@) ~ main.c ~ mdef.h ~ pathnames.h > There really is no double standard. Treat m4 just like openssl, by > removing VMS and MSDOS support. > ok espie (deraadt@) make ~ parse.c > I was very optimistic in groupling creation. Turns out lists of targets > can have duplicates, or overlap, or even be empty thanks to fnmatch. > So use the big guns to build the circular list correctly, namely > actual lists of targets that are made together will be registered in a > hash first, then we recreate the full list from there. > (merging lists is not an issue, since groupling links are only used to > temporarily lock targets in parallel mode). > Issue noticed by guenther@, okay guenther@ (espie@) mandoc ~ cgi.c ~ man.cgi.8 ~ mandoc.1 > simplify: use one stylesheet rather than two; from bentley@ (schwarze@) ~ cgi.c ~ cgi.h.example ~ man.cgi.8 > Use include files "header.html" and "footer.html" rather than a > compiled-in string. This is not a security risk, we read the file > manpath.conf from the same directory, anyway. No error handling > is needed; even if the files are absent, that's not an error. > This is more flexible without causing complication of the code or > the user interface. It helps the upcoming revamp of the online > manual pages on man.NetBSD.org. > Based on an idea by Jean-Yves Migeon <jeanyves dot migeon at free dot fr>, > but implemented in a much simpler way. (schwarze@) ~ main.c ~ mandocdb.c > Use getprogname(3) rather than __progname. > Suggested by Joerg@ Sonnenberger (NetBSD). > Last year, deraadt@ confirmed on tech@ that this "has the potential > to be more portable", and micro-optimizing for speed is not relevant > here. Also gets rid of one global variable. (schwarze@) ~ main.c > correct exit status on pledge(2) errors (schwarze@) ~ html.h ~ libman.h ~ libmandoc.h ~ libmdoc.h ~ libroff.h ~ main.h ~ man.h ~ manconf.h ~ mandoc.h ~ mandoc_aux.h ~ mandoc_ohash.h ~ mansearch.h ~ mdoc.h ~ out.h ~ roff.h ~ roff_int.h ~ tag.h ~ term.h > In private header files, __BEGIN_DECLS and __END_DECLS are pointless. > Because these work slightly differently on different systems, > they are becoming a maintenance burden in the portable version, > so delete them. > Besides, one of the chief design goals of the mandoc toolbox is to > make sure that nothing related to documentation requires C++. > Consequently, linking mandoc against any kind of C++ program would > defeat the purpose and is not supported. > I don't understand why kristaps@ added them in the first place. (schwarze@) ~ cgi.c ~ main.c ~ mandocdb.c ~ manpath.c > Modernization, no functional change intended: > Use the POSIX function getline(3) rather than the slightly > dangerous BSD function fgetln(3). (schwarze@) mg ~ main.c > whitespace (jasper@) nc ~ netcat.c > KNF; from Rob Pierce (deraadt@) rcs ~ buf.c ~ ci.c ~ diff3.c ~ ident.c ~ rcs.c ~ rcsclean.c ~ rcsdiff.c ~ rcsmerge.c ~ rcsnum.c > Allow rcsnum_free and buf_free to accept NULL and remove various NULL > checks that are now unnecessary, from Michael W Bombardieri. ok millert > (nicm@) sed ~ sed.1 > replace setbuf with setvbuf, from Frederic Nowak (tedu@) signify ~ signify.c > Make signify's stdout line buffered. This allows to run the verbose > output through a pipe and still see the progress immediately. > OK tedu@ (bluhm@) skeyaudit ~ skeyaudit.c > Pledge; OK millert@ (tim@) skeyinfo ~ skeyinfo.c > Pledge; OK millert@ (tim@) ssh ~ ssh-agent.1 ~ ssh-keygen.1 > "commandline" -> "command line", since there are so few examples > of the former in the pages, so many of the latter, and in some of > these pages we had multiple spellings; > prompted by tj (jmc@) ~ ssh.1 > 1. rlogin and rsh are long gone > 2. protocol version isn't of core relevance here, and v1 is going away > ok markus@, deraadt@ (mmcc@) ~ packet.c > fix OOB read in packet code caused by missing return statement > found by Ben Hawkes; ok markus@ deraadt@ (djm@) ~ ssh/Makefile > remove slogin links; ok deraadt markus djm (jmc@) ~ ssh-keyscan.1 ~ ssh-keyscan.c > Add "ssh-keyscan -c ..." flag to allow fetching certificates instead > of plain keys; ok markus@ (djm@) ~ ssh-keyscan.1 ~ ssh-keyscan.c > -c before -H, in SYNOPSIS and usage(); (jmc@) tmux ~ cmd-attach-session.c > Detach the client we are looping over, from Thomas Adam. (nicm@) ~ key-bindings.c > Pass through right click if mouse is on, from Patrick Palka. (nicm@) ~ utf8.c > Update the internal wcwidth(3) table of tmux(1) to match the data > in /usr/src/share/locale/ctype/en_US.UTF-8.src, with one single > exception: Keep U+00AD SOFT HYPHEN at width 1 rather than moving > it to width 0, a tradition already observed in the old > https://www.cl.cam.ac.uk/~mgk25/ucs/wcwidth.c . > While here, manually rebalance the btree for optimal lookup speed. > OK nicm@ (schwarze@) ~ cmd-attach-session.c > Same bug as last commit, but in the other copy of the loop in this file... > (nicm@) top ~ top.c > replace setbuf with setvbuf, from Frederic Nowak (tedu@) ~ top.c > allow "kill" from top, by using proc instead of id > (event though the documentation does not yet state that proc allows > setpriority for renice) > Problem found by me, tweak suggested by theo buehler > Committed prompted by deraadt@ (espie@) uniq ~ uniq.c > Cast isdigit()'s argument to an unsigned char. > ok millert@, jca@ (mmcc@) units ~ units.lib > update currency exchange rates; (jmc@) wall ~ ttymsg.c ~ wall.c > pledge wall(1) > based on an idea from deraadt@, > tested on YP by miod, ok deraadt@ (benno@) whois ~ whois.c > Cast isdigit()'s argument to unsigned char. > ok millert@ (mmcc@) ~ whois.1 ~ whois.c > add support for whois -I, to use whois.iana.org (root zone database). > ok millert@, tweak/"everything else looks fine" jmc@ (sthen@) ~ whois.1 > remove Tn macros ("Tradename") from things which are actually hostnames, > ok jmc (sthen@) == usr.sbin ========================================================== 13/13 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin apm ~ apm.c > only pledge if in doing-work-via-daemon mode (deraadt@) arp ~ arp.4 > replace "can not" with "cannot"; (jmc@) authpf ~ authpf.8 > replace "can not" with "cannot"; (jmc@) bgpctl ~ bgpctl.c ~ irrfilter.c > pledge in bgpctl. > ok deraadt (benno@) bgpd ~ bgpd.h ~ rde.c ~ rde.h ~ rde_filter.c > Radically improve the performance of bgpd filters. Based on PF's skip > steps (and uses much of the same code). > In a torture test of ~600k prefix filters and 65k prefixes, convergance > time goes from 35 minutes to 30 seconds. > Many thanks to LONAP for providing a base configuration for torture > testing. > many discussions with claudio@, benno@, sthen@ and the rest of the bgpd > crowd > OK sthen@ benno@ (phessler@) cron ~ crontab.c > Use setegid() directly instead of swap_gids() / swap_gids_back(). > OK jca@ nicm@ (millert@) ~ client.c > Use send(MSG_NOSIGNAL) instead of mucking with the disposition of SIGPIPE > ok millert@ (guenther@) ~ crontab.c > It is only necessary to swap the effective gid when reading a file. > Since we got rid of TMPDIR support there's no need to swap gids > when creating or unlinking the temporary file. OK deraadt@ (millert@) ~ crontab.c > If pledge(2) fails use perror instead of log_it(RealUser, ...) since > RealUser has not been filled in yet. (millert@) ~ cron.c ~ entry.c ~ externs.h ~ funcs.h ~ globals.h ~ pathnames.h > Change some globals from extern to static when they are not used > outside their respective .c files. Also remove some unused defines. > OK jung@ (millert@) ~ misc.c > Remove unused LogFD variable (millert@) - externs.h ~ atrun.c ~ client.c ~ common.c ~ cron.c ~ cron.h ~ crontab.c ~ database.c ~ do_command.c ~ entry.c ~ env.c ~ job.c ~ macros.h ~ misc.c ~ popen.c ~ structs.h ~ user.c > Change cron from including all headers in every file to only including > what each .c file needs. I have not removed cron.h since it will > be used in a future clean up of the cron's .h files. OK nicm@ (millert@) ~ client.c ~ cron.c ~ crontab.c ~ globals.h ~ misc.c > Use __progname instead of the homegrown ProgramName. (millert@) ~ entry.c > Quiet silly clang analyzer warning in calloc() usage. (millert@) hostapd ~ iapp.h > Missing comma. > from Kevin Reay <kevintreayopenbsd AT gmail DOT com> (mpi@) httpd ~ httpd.c ~ logger.c ~ server.c > pledge(2) for httpd. > 1) The main process listens on sockets and accepts connections. It > creates and opens log files, creates and kills child processes. On > start up and on receiving a HUP signal it parses the configuration. It > passes on file descriptors for logging or requests to it's children. > 2) The logger process writes log messages to a file descriptor passed > in from the main process. > 3) The server process reads the request from a file descriptor passed > in from the main process. It reads a file or creates a directory index > to send a response. > Additionally this process handles fastcgi requests. It connects to > AF_UNIX, AF_INET or AF_INET6 sockets. A re-factoring might make it > possible to drop the additional fastcgi privileges when only static > files are served. > with deraadt@ some time ago > prodding & OK deraadt@ > tweaks and OK reyk@ (florian@) ikectl ~ ikeca.c ~ ikectl.8 ~ ikectl.c ~ parser.c ~ parser.h > Accept an ocsp option when creating certificates to set the extended > key usage for OCSP signing. > Requested by and ok reyk@ (jsg@) ~ ikeca.c ~ ikeca.cnf > sign csrs with openssl ca instead of x509 -req > This way openssl will add valid signed certs to the index file > which is required to use the builtin openssl OCSP server. > This change requires installing a new ikeca.cnf or updating > the default cnf files with equivalent sections. > Requested by and ok reyk@ (jsg@) ~ ikeca.c ~ ikeca.cnf > switch from using sha1 to sha256 > As the ca section of the cnf file requires a default_md line > (unlike req) this change also requires updating the installed ikeca.cnf > or equivalent files. > Requested by and ok reyk@ who also tested this against ios9 with iked. > (jsg@) ~ ikectl.c > Use pledge in ikectl. For now one request for sending imsgs to iked > another request for the ca portion. > ok deraadt@ (jsg@) inetd ~ inetd.c > inetd needs pledge "unix" to bind AF_UNIX sockets (deraadt@) ~ inetd.c > needs pledge "cpath" to allow unlink of AF_UNIX sockets eventually > (deraadt@) installboot ~ i386_installboot.c > fix a memory leak in an error path (jsg@) ~ util.c > fix a memory leak in multiple error paths > ok krw@ (jsg@) kvm_mkdb ~ kvm_mkdb.c > there is a retry path in here which contains rename() and fchown(). > Use a slightly larger pledge, earlier on. > from gregor best (deraadt@) ~ kvm_mkdb.c > Set the effective gid to kmem so the fchown of kvm_bsd.db is allowed > by pledge(2). This requires pledge "id" but that can be dropped > immediately after the setegid() call. From Theo Buehler (millert@) ldapctl ~ ldapctl.c > ldapctl has two modes of operation, one where it operates on the btree > files > directly, in which it pledges "stdio rpath wpath cpath flock", and one > where > it talks to ldapd over a unix socket, in which it pledges "stdio" after > opening the socket. > ok deraadt@ (jmatthew@) ldapd ~ ldapd.c ~ ldape.c > Both ldapd processes need "stdio" to talk to clients and each other. > The parent process opens database files ("rpath wpath cpath"), sends fds to > the child ("sendfd"), and does bsd auth on behalf of the child ("getpw proc > exec"). > The child process accepts client connections ("inet unix"), receives fds > from > the parent ("recvfd") and locks database files ("flock"). > ok deraadt@ (jmatthew@) ~ conn.c ~ control.c ~ ldapd.c ~ ldapd.h ~ ldape.c ~ util.c > use SOCK_NONBLOCK instead of fcntl > ok dlg@ (jmatthew@) lpr ~ lptest/lptest.c > replace setbuf with setvbuf, from Frederic Nowak (tedu@) netgroup_mkdb ~ util.c > err(1, "%s", "") -> err(1, NULL) > Discussed with schwarze@ (mmcc@) nsd ~ axfr.c ~ rrl.c ~ tsig-openssl.h ~ LICENSE ~ udbzone.h ~ iterated_hash.h ~ nsec3.h ~ nsd.8.in ~ remote.h ~ server.c ~ packet.h ~ query.c ~ answer.h ~ buffer.h ~ nsd.h ~ nsec3.c ~ configure.ac ~ xfrd-tcp.c ~ zonec.h ~ xfrd-disk.c ~ remote.c ~ xfrd-tcp.h ~ udb.h ~ tsig-openssl.c ~ netio.c ~ nsd.c ~ region-allocator.h ~ axfr.h ~ tsig.c ~ nsd.conf.sample.in ~ tsig.h ~ nsd.conf.5.in ~ nsd-control.c ~ rdata.h ~ answer.c ~ xfrd.h ~ xfrd.c ~ xfrd-notify.c ~ nsd-checkconf.c ~ Makefile.in ~ configure ~ packet.c ~ radtree.h ~ rrl.h ~ mini_event.h ~ netio.h ~ configyyrename.h ~ options.h ~ configparser.y ~ dns.c ~ difffile.c ~ xfrd-disk.h ~ namedb.h ~ radtree.c ~ zlexer.lex ~ buffer.c ~ difffile.h ~ xfrd-notify.h ~ install-sh ~ dname.h ~ namedb.c ~ edns.h ~ dns.h ~ nsd-mem.c ~ ipc.h ~ rbtree.h ~ mini_event.c ~ edns.c ~ mkinstalldirs ~ dname.c ~ nsd-control.8.in ~ dbaccess.c ~ nsd-checkzone.c ~ dbcreate.c ~ util.h ~ ipc.c ~ config.h.in ~ region-allocator.c ~ lookup3.c ~ acx_nlnetlabs.m4 ~ rdata.c ~ udbradtree.c ~ lookup3.h ~ zparser.y ~ udbzone.c ~ nsd-control-setup.sh.in ~ udbradtree.h ~ zonec.c ~ udb.c ~ configlexer.lex ~ options.c ~ iterated_hash.c ~ nsd-checkconf.8.in ~ query.h ~ util.c ~ nsd-checkzone.8.in ~ rbtree.c > New import: > update to NSD 4.1.6, ok millert@ florian@ ~ axfr.c ~ config.h.in ~ configparser.y ~ configure ~ configure.ac ~ dns.c ~ dns.h ~ mkinstalldirs ~ nsd-checkconf.8.in ~ nsd-checkconf.c ~ nsd-control.8.in ~ nsd.8.in ~ nsd.c ~ nsd.conf.5.in ~ options.c ~ query.c ~ remote.c ~ server.c ~ util.c ~ xfrd-tcp.c ~ zonec.c ~ zparser.y > merge (sthen@) ~ LICENSE ~ configure.ac ~ Makefile.in ~ configure ~ install-sh ~ config.h.in ~ acx_nlnetlabs.m4 + aclocal.m4 + config.sub + ltmain.sh + ac_pkg_swig.m4 + ax_pthread.m4 + config.guess + acx_python.m4 + README + doc/Changelog + doc/TODO + doc/unbound-checkconf.8.in + doc/control_proto_spec.txt + doc/LICENSE + doc/unbound.doxygen + doc/ietf67-design-02.pdf + doc/ietf67-design-02.odp + doc/FEATURES + doc/unbound-host.1.in + doc/libunbound.3.in + doc/README.tests + doc/README.DNS64 + doc/unbound.8.in + doc/unbound.conf.5.in + doc/README.svn + doc/requirements.txt + doc/example.conf.in + doc/README + doc/unbound-control.8.in + doc/CREDITS + doc/unbound-anchor.8.in + util/alloc.c + util/net_help.h + util/log.c + util/config_file.c + util/rtt.c + util/locks.c + util/iana_ports.inc + util/tube.c + util/config_file.h + util/random.h + util/tube.h + util/random.c + util/winsock_event.c + util/mini_event.h + util/configyyrename.h + util/configparser.y + util/rtt.h + util/locks.h + util/regional.h + util/module.h + util/winsock_event.h + util/netevent.h + util/rbtree.h + util/mini_event.c + util/regional.c + util/netevent.c + util/log.h + util/timehist.h + util/fptr_wlist.c + util/timehist.c + util/fptr_wlist.h + util/alloc.h + util/net_help.c + util/configlexer.lex + util/module.c + util/rbtree.c + util/data/msgreply.c + util/data/msgencode.c + util/data/msgparse.h + util/data/msgreply.h + util/data/packed_rrset.c + util/data/dname.h + util/data/msgencode.h + util/data/dname.c + util/data/packed_rrset.h + util/data/msgparse.c + util/storage/slabhash.h + util/storage/lruhash.h + util/storage/dnstree.h + util/storage/slabhash.c + util/storage/lruhash.c + util/storage/dnstree.c + util/storage/lookup3.c + util/storage/lookup3.h + iterator/iterator.h + iterator/iter_delegpt.c + iterator/iter_priv.c + iterator/iter_utils.h + iterator/iter_donotq.c + iterator/iter_priv.h + iterator/iterator.c + iterator/iter_hints.c + iterator/iter_scrub.c + iterator/iter_delegpt.h + iterator/iter_resptype.c + iterator/iter_fwd.h + iterator/iter_fwd.c + iterator/iter_scrub.h + iterator/iter_donotq.h + iterator/iter_hints.h + iterator/iter_resptype.h + iterator/iter_utils.c + smallapp/unbound-control.c + smallapp/unbound-host.c + smallapp/worker_cb.c + smallapp/unbound-checkconf.c + smallapp/unbound-control-setup.sh.in + smallapp/unbound-anchor.c + sldns/parseutil.h + sldns/keyraw.c + sldns/str2wire.h + sldns/rrdef.h + sldns/parse.h + sldns/parseutil.c + sldns/str2wire.c + sldns/rrdef.c + sldns/keyraw.h + sldns/pkthdr.h + sldns/wire2str.h + sldns/sbuffer.h + sldns/sbuffer.c + sldns/parse.c + sldns/wire2str.c + dns64/dns64.c + dns64/dns64.h + dnstap/dnstap_config.h.in + dnstap/dnstap.m4 + dnstap/dnstap.h + dnstap/dnstap.c + dnstap/dnstap.proto + services/modstack.h + services/listen_dnsport.h + services/localzone.h + services/outbound_list.h + services/localzone.c + services/listen_dnsport.c + services/outbound_list.c + services/outside_network.h + services/mesh.c + services/outside_network.c + services/modstack.c + services/mesh.h + services/cache/rrset.h + services/cache/infra.h + services/cache/dns.c + services/cache/dns.h + services/cache/rrset.c + services/cache/infra.c + validator/val_anchor.h + validator/validator.c + validator/val_anchor.c + validator/autotrust.h + validator/val_neg.c + validator/val_utils.c + validator/val_nsec.h + validator/val_kcache.c + validator/val_neg.h + validator/val_sigcrypt.c + validator/val_kcache.h + validator/val_nsec.c + validator/val_secalgo.h + validator/validator.h + validator/val_nsec3.h + validator/val_kentry.h + validator/val_utils.h + validator/val_kentry.c + validator/val_sigcrypt.h + validator/autotrust.c + validator/val_secalgo.c + validator/val_nsec3.c + daemon/worker.c + daemon/worker.h + daemon/remote.h + daemon/remote.c + daemon/stats.c + daemon/stats.h + daemon/cachedump.h + daemon/daemon.h + daemon/unbound.c + daemon/acl_list.h + daemon/acl_list.c + daemon/daemon.c + daemon/cachedump.c + libunbound/ubsyms.def + libunbound/worker.h + libunbound/unbound.h + libunbound/libworker.h + libunbound/libunbound.c + libunbound/context.c + libunbound/unbound-event.h + libunbound/libworker.c + libunbound/context.h > New import: > update to unbound 1.5.6, ok millert@ florian@ - README - ac_pkg_swig.m4 - aclocal.m4 - acx_python.m4 - ax_pthread.m4 - config.guess - config.sub - ltmain.sh - daemon/acl_list.c - daemon/acl_list.h - daemon/cachedump.c - daemon/cachedump.h - daemon/daemon.c - daemon/daemon.h - daemon/remote.c - daemon/remote.h - daemon/stats.c - daemon/stats.h - daemon/unbound.c - daemon/worker.c - daemon/worker.h - dns64/dns64.c - dns64/dns64.h - dnstap/dnstap.c - dnstap/dnstap.h - dnstap/dnstap.m4 - dnstap/dnstap.proto - dnstap/dnstap_config.h.in - doc/CREDITS - doc/Changelog - doc/FEATURES - doc/LICENSE - doc/README - doc/README.DNS64 - doc/README.svn - doc/README.tests - doc/TODO - doc/control_proto_spec.txt - doc/example.conf.in - doc/ietf67-design-02.odp - doc/ietf67-design-02.pdf - doc/libunbound.3.in - doc/requirements.txt - doc/unbound-anchor.8.in - doc/unbound-checkconf.8.in - doc/unbound-control.8.in - doc/unbound-host.1.in - doc/unbound.8.in - doc/unbound.conf.5.in - doc/unbound.doxygen - iterator/iter_delegpt.c - iterator/iter_delegpt.h - iterator/iter_donotq.c - iterator/iter_donotq.h - iterator/iter_fwd.c - iterator/iter_fwd.h - iterator/iter_hints.c - iterator/iter_hints.h - iterator/iter_priv.c - iterator/iter_priv.h - iterator/iter_resptype.c - iterator/iter_resptype.h - iterator/iter_scrub.c - iterator/iter_scrub.h - iterator/iter_utils.c - iterator/iter_utils.h - iterator/iterator.c - iterator/iterator.h - libunbound/context.c - libunbound/context.h - libunbound/libunbound.c - libunbound/libworker.c - libunbound/libworker.h - libunbound/ubsyms.def - libunbound/unbound-event.h - libunbound/unbound.h - libunbound/worker.h - services/listen_dnsport.c - services/listen_dnsport.h - services/localzone.c - services/localzone.h - services/mesh.c - services/mesh.h - services/modstack.c - services/modstack.h - services/outbound_list.c - services/outbound_list.h - services/outside_network.c - services/outside_network.h - services/cache/dns.c - services/cache/dns.h - services/cache/infra.c - services/cache/infra.h - services/cache/rrset.c - services/cache/rrset.h - sldns/keyraw.c - sldns/keyraw.h - sldns/parse.c - sldns/parse.h - sldns/parseutil.c - sldns/parseutil.h - sldns/pkthdr.h - sldns/rrdef.c - sldns/rrdef.h - sldns/sbuffer.c - sldns/sbuffer.h - sldns/str2wire.c - sldns/str2wire.h - sldns/wire2str.c - sldns/wire2str.h - smallapp/unbound-anchor.c - smallapp/unbound-checkconf.c - smallapp/unbound-control-setup.sh.in - smallapp/unbound-control.c - smallapp/unbound-host.c - smallapp/worker_cb.c - util/alloc.c - util/alloc.h - util/config_file.c - util/config_file.h - util/configlexer.lex - util/configparser.y - util/configyyrename.h - util/fptr_wlist.c - util/fptr_wlist.h - util/iana_ports.inc - util/locks.c - util/locks.h - util/log.c - util/log.h - util/mini_event.c - util/mini_event.h - util/module.c - util/module.h - util/net_help.c - util/net_help.h - util/netevent.c - util/netevent.h - util/random.c - util/random.h - util/rbtree.c - util/rbtree.h - util/regional.c - util/regional.h - util/rtt.c - util/rtt.h - util/timehist.c - util/timehist.h - util/tube.c - util/tube.h - util/winsock_event.c - util/winsock_event.h - util/data/dname.c - util/data/dname.h - util/data/msgencode.c - util/data/msgencode.h - util/data/msgparse.c - util/data/msgparse.h - util/data/msgreply.c - util/data/msgreply.h - util/data/packed_rrset.c - util/data/packed_rrset.h - util/storage/dnstree.c - util/storage/dnstree.h - util/storage/lookup3.c - util/storage/lookup3.h - util/storage/lruhash.c - util/storage/lruhash.h - util/storage/slabhash.c - util/storage/slabhash.h - validator/autotrust.c - validator/autotrust.h - validator/val_anchor.c - validator/val_anchor.h - validator/val_kcache.c - validator/val_kcache.h - validator/val_kentry.c - validator/val_kentry.h - validator/val_neg.c - validator/val_neg.h - validator/val_nsec.c - validator/val_nsec.h - validator/val_nsec3.c - validator/val_nsec3.h - validator/val_secalgo.c - validator/val_secalgo.h - validator/val_sigcrypt.c - validator/val_sigcrypt.h - validator/val_utils.c - validator/val_utils.h - validator/validator.c - validator/validator.h ~ LICENSE ~ install-sh > undo botched import to wrong dir, spotted by sobrado@ (sthen@) pkg_add ~ pkg_add.1 > Bump distribution tarball versions. (mmcc@) ~ OpenBSD/Dependencies.pm > tweak dependencies handling, might fix some infrequent bugs including the > infamous cups bug. > - look for candidates in the whole new set first. Yep, that includes kept > packages (should make things slightly faster, I expect) > - correctly remove caching of list of installed packages outsides of old > packages from the current set each time we revisit the set (looking at the > old behavior this actually sounds very likely). (espie@) ~ OpenBSD/PkgCreate.pm > the Solver uses kept_names, so we need these there too > found by aja@ (espie@) pwd_mkdb ~ pwd_mkdb.c > quick fix for a regression introduced by sys/kern/kern_pledge.c 1.103 > ok benno phessler (semarie@) ~ pwd_mkdb.c > revert sys/kern/kern_pledge.c 1.103 and reenable pledge in pwd_mkdb > ok deraadt@ (semarie@) radiusd ~ radiusd_radius.c > Blank lines around pledge call. (mmcc@) rcctl ~ rcctl.sh > Tweak wording. > Make sure the rc.d script exist in svc_is_meta(). (ajacoutot@) rebound ~ rebound.c > chroot to pw_dir instead of the hard-coded /var/empty. Also make the > chroot+chdir step look more like in the other privsep daemons. > OK tedu@ (reyk@) relayd ~ relayd.conf.5 > relayd.conf(5) macro cleanup. > - use <> instead of \*(Lt and \*(Gt > - use <> instead of Aq (Aq is not the same as <> in a UTF-8 locale) > - replace Ar usage when appropriate > - mark up RTP_STATIC with Dv > with input from jmc@ schwarze@, ok schwarze@ (bentley@) rmt ~ rmt.c > replace setbuf with setvbuf, from Frederic Nowak (tedu@) rtadvd ~ if.c > Recognize carp(4) interfaces (yes, they are special...) in order to send > the src lladdr option. > Problem reported and diff provided by Lauri Tirkkonen on bugs@ > ok sthen@ (mpi@) slowcgi ~ slowcgi.c > re-shuffle slowcgi_listen to run less code as root. > OK benno@ (florian@) ~ slowcgi.c > pledge(2) for slowcgi. > After initialization slowcgi accepts from a AF_UNIX socket, forks and > execs. After fork we only need to close(2), chdir(2) and exec. > OK benno@ (florian@) smtpd ~ enqueue.c > Blank line after pledge call. (mmcc@) ~ rfc2822.c ~ rfc2822.h ~ smtp_session.c > when a message consists solely of headers and does not end them with an > empty line, the message parser gets confused, and forgets to flush last > header to message file. > detect if we're still in headers when hitting EOM, and flush if that is > the case. > reported by Philipp Takacs <[email protected]> > ok millert@, jung@, sunil@, eric@ (gilles@) ~ queue_backend.c > Do not terminate message walk on a corrupt envelope. > Ok gilles@ (sunil@) ~ control.c ~ queue.c ~ queue_backend.c ~ queue_fs.c ~ smtpctl.8 ~ smtpctl.c ~ smtpd-api.h ~ smtpd.c ~ smtpd.h > Implement smtpctl uncorrupt <msgid> > "uncorrupt" moves envelopes from corrupt bucket back to the queue > for further discovery by the daemon. > After correcting the corrupt envelopes, admin could now... > # smtpctl uncorrupt msgid > # smtpctl discover msgid > to schedule the messages. > Ok gilles@ (sunil@) ~ aldap.c ~ aldap.h ~ ber.c ~ ber.h ~ ca.c ~ parse.y ~ ssl.c > replace u_char and u_int* with standard stdint.h types to ease portable > version > also remove trailing whitespaces while here > no binary change > ok sunil millert gilles (jung@) snmpd ~ kroute.c > When updating an interface, do not delete the kif_node but let > fetchifs() update the existing node. Thus we don't lose the ARP entries. > And while here, also handle RTM_DESYNC messages. > ok mikeb@ (gerhard@) syslogc ~ syslogc.8 > "commandline" -> "command line", since there are so few examples > of the former in the pages, so many of the latter, and in some of > these pages we had multiple spellings; > prompted by tj (jmc@) tcpdump ~ addrtoname.c > Remove register keyword uses. Still needs to be done in all other > tcpdump source files. > ok kettenis@ (mmcc@) ~ print-icmp6.c > Print RDNSS nameserver addresses, and print option names for some other > known options that we don't otherwise decode yet (DNSSL, route > information). > ok mpi@ (sthen@) ~ privsep.c > Surround pledge call with blank lines. (mmcc@) ~ tcpdump.8 > spelling; from tj (jmc@) ~ print-gre.c > When fetching the GRE version, use GRE_VERS and not a naked "7" as mask. > From Kevin Reay (jca@) ~ print-gre.c > Cap the GRE packet len to tcpdump's snap len, fixes a segfault. > From Kevin Reay, ok sthen@ (jca@) ~ print-tcp.c > Print unsigned integers as unsigned integers, kill inconsistent casts. > Initial diff by Kevin Reay. (jca@) ~ print-null.c > Account for the header size when dealing with null link layer ifaces. > From Kevin Reay, ok sthen@ (jca@) ~ print-decnet.c > Ensure the safety of isprint()'s argument. Suggested by guenther@ a few > weeks ago. (mmcc@) traceroute ~ traceroute.c > "source" doesn't need to be a global. While here, the correct spelling > is NULL. > Noticed while trying to hoist the source address selection from > traceroute into ping / ping6. (florian@) unbound ~ Makefile.in ~ README ~ acx_nlnetlabs.m4 ~ config.h.in ~ configure ~ configure.ac ~ daemon/daemon.c ~ daemon/remote.c ~ dns64/dns64.c ~ doc/Changelog ~ doc/example.conf.in ~ doc/libunbound.3.in ~ doc/unbound-anchor.8.in ~ doc/unbound-checkconf.8.in ~ doc/unbound-control.8.in ~ doc/unbound-host.1.in ~ doc/unbound.8.in ~ doc/unbound.conf.5.in ~ iterator/iter_hints.c ~ iterator/iterator.h ~ libunbound/libunbound.c ~ services/cache/dns.c ~ sldns/rrdef.h ~ sldns/wire2str.c ~ smallapp/unbound-anchor.c ~ smallapp/unbound-control.c ~ util/config_file.c ~ util/config_file.h ~ util/configlexer.lex ~ util/configparser.y ~ util/iana_ports.inc ~ util/net_help.c ~ util/data/msgencode.c ~ validator/autotrust.c ~ validator/val_sigcrypt.c ~ validator/validator.c > merge (sthen@) ypldap ~ ypldap.c > use SOCK_NONBLOCK instead of fcntl > ok dlg@ (jmatthew@) ypserv ~ ypxfr/ypxfr.8 > spelling; from tj > while here, knock out a double rcs id (jmc@) =============================================================================== _______________________________________________ owc mailing list [email protected] http://www.squish.net/mailman/listinfo/owc
