OpenBSD src changes summary for 2015-12-13 to 2015-12-20 inclusive ==================================================================
bin/ksh bin/pax distrib/amd64 distrib/armish distrib/armv7 distrib/i386 distrib/landisk distrib/loongson distrib/macppc distrib/miniroot distrib/octeon distrib/sets distrib/socppc distrib/zaurus etc/group etc/mail/aliases etc/master.passwd etc/netstart etc/rc.d/bgpd etc/rc.d/httpd etc/rc.d/iked etc/rc.d/rc.subr etc/rc.d/relayd etc/rc.d/vmd etc/root/root.mail etc/skel/dot.login etc/unbound.conf games/atc games/caesar games/cribbage games/hack games/hunt games/sail gnu gnu/usr.bin/cc include/sndio.h lib/libc lib/libcrypto lib/libevent lib/libkeynote lib/libkvm lib/libm lib/libsndio lib/libssl libexec/ld.so regress/bin sbin/dhclient sbin/mknod sbin/mountd share/man share/mk sys/arch/alpha/conf sys/arch/amd64/amd64 sys/arch/amd64/include sys/arch/i386/i386 sys/arch/macppc/conf sys/arch/macppc/stand/tbxidata sys/arch/octeon/dev sys/arch/socppc/socppc sys/arch/socppc/stand/boot sys/arch/sparc/conf sys/conf sys/dev sys/dev/acpi sys/dev/ic sys/dev/isa sys/dev/pci sys/dev/pv sys/dev/usb sys/kern sys/net sys/net80211 sys/netinet sys/netinet6 sys/sys sys/uvm usr.bin/awk usr.bin/fmt usr.bin/grep usr.bin/mandoc usr.bin/mg usr.bin/nc usr.bin/sndiod usr.bin/ssh usr.bin/tmux usr.bin/uniq usr.sbin/config usr.sbin/dhcpd usr.sbin/eigrpctl usr.sbin/eigrpd usr.sbin/fdformat usr.sbin/installboot usr.sbin/lpr usr.sbin/mailwrapper usr.sbin/mrouted usr.sbin/mtree usr.sbin/netgroup_mkdb usr.sbin/npppd usr.sbin/nsd usr.sbin/ntpd usr.sbin/pppd usr.sbin/rebound usr.sbin/relayd usr.sbin/route6d usr.sbin/smtpd usr.sbin/syslogd usr.sbin/tftpd usr.sbin/unbound usr.sbin/vmctl usr.sbin/vmd == bin =============================================================== 01/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/bin ksh ~ c_sh.c ~ history.c ~ lex.c ~ shf.h > Remove a superfluous macro. No binary change. ok tb@ (mmcc@) ~ alloc.c ~ c_ksh.c ~ c_sh.c ~ c_test.c ~ c_ulimit.c ~ edit.c ~ emacs.c ~ eval.c ~ exec.c ~ history.c ~ io.c ~ jobs.c ~ lex.c ~ main.c ~ misc.c ~ mknod.c ~ path.c ~ sh.h ~ shf.c ~ trap.c ~ tty.c ~ var.c > Move system headers from sh.h to those files that actually need them. > ok mmcc@ a while ago (tb@) pax ~ pax.c > Replace "tame" by "pledge" in a comment. (tb@) == distrib =========================================================== 02/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib amd64 ~ common/install.md > Introduce a new function disk_has() to inspect a disk if it has a > partition-table of a certain type and optionally if it has a partition > of a certain type. > Use disk_has() in the install.md script to replace all the various > "fdisk <disk> | grep <pattern>" commands greatly simplifying things. > positive feedback from sthen@ > "time to get it really tested" deraadt@ > OK krw@ (rpe@) armish ~ ramdisk/install.md > Introduce a new function disk_has() to inspect a disk if it has a > partition-table of a certain type and optionally if it has a partition > of a certain type. > Use disk_has() in the install.md script to replace all the various > "fdisk <disk> | grep <pattern>" commands greatly simplifying things. > positive feedback from sthen@ > "time to get it really tested" deraadt@ > OK krw@ (rpe@) armv7 ~ ramdisk/install.md > Introduce a new function disk_has() to inspect a disk if it has a > partition-table of a certain type and optionally if it has a partition > of a certain type. > Use disk_has() in the install.md script to replace all the various > "fdisk <disk> | grep <pattern>" commands greatly simplifying things. > positive feedback from sthen@ > "time to get it really tested" deraadt@ > OK krw@ (rpe@) i386 ~ common/install.md > Introduce a new function disk_has() to inspect a disk if it has a > partition-table of a certain type and optionally if it has a partition > of a certain type. > Use disk_has() in the install.md script to replace all the various > "fdisk <disk> | grep <pattern>" commands greatly simplifying things. > positive feedback from sthen@ > "time to get it really tested" deraadt@ > OK krw@ (rpe@) landisk ~ ramdisk/install.md > Introduce a new function disk_has() to inspect a disk if it has a > partition-table of a certain type and optionally if it has a partition > of a certain type. > Use disk_has() in the install.md script to replace all the various > "fdisk <disk> | grep <pattern>" commands greatly simplifying things. > positive feedback from sthen@ > "time to get it really tested" deraadt@ > OK krw@ (rpe@) loongson ~ ramdisk/install.md > Introduce a new function disk_has() to inspect a disk if it has a > partition-table of a certain type and optionally if it has a partition > of a certain type. > Use disk_has() in the install.md script to replace all the various > "fdisk <disk> | grep <pattern>" commands greatly simplifying things. > positive feedback from sthen@ > "time to get it really tested" deraadt@ > OK krw@ (rpe@) macppc ~ ramdisk/install.md > Introduce a new function disk_has() to inspect a disk if it has a > partition-table of a certain type and optionally if it has a partition > of a certain type. > Use disk_has() in the install.md script to replace all the various > "fdisk <disk> | grep <pattern>" commands greatly simplifying things. > positive feedback from sthen@ > "time to get it really tested" deraadt@ > OK krw@ (rpe@) miniroot ~ install.sub > Introduce a new function disk_has() to inspect a disk if it has a > partition-table of a certain type and optionally if it has a partition > of a certain type. > Use disk_has() in the install.md script to replace all the various > "fdisk <disk> | grep <pattern>" commands greatly simplifying things. > positive feedback from sthen@ > "time to get it really tested" deraadt@ > OK krw@ (rpe@) octeon ~ ramdisk/install.md > Introduce a new function disk_has() to inspect a disk if it has a > partition-table of a certain type and optionally if it has a partition > of a certain type. > Use disk_has() in the install.md script to replace all the various > "fdisk <disk> | grep <pattern>" commands greatly simplifying things. > positive feedback from sthen@ > "time to get it really tested" deraadt@ > OK krw@ (rpe@) sets ~ lists/base/md.alpha ~ lists/base/md.amd64 ~ lists/base/md.armish ~ lists/base/md.armv7 ~ lists/base/md.hppa ~ lists/base/md.hppa64 ~ lists/base/md.i386 ~ lists/base/md.landisk ~ lists/base/md.loongson ~ lists/base/md.luna88k ~ lists/base/md.macppc ~ lists/base/md.octeon ~ lists/base/md.sgi ~ lists/base/md.socppc ~ lists/base/md.sparc ~ lists/base/md.sparc64 ~ lists/base/md.vax ~ lists/base/md.zaurus ~ lists/comp/md.alpha ~ lists/comp/md.amd64 ~ lists/comp/md.armish ~ lists/comp/md.armv7 ~ lists/comp/md.hppa ~ lists/comp/md.hppa64 ~ lists/comp/md.i386 ~ lists/comp/md.landisk ~ lists/comp/md.loongson ~ lists/comp/md.luna88k ~ lists/comp/md.macppc ~ lists/comp/md.octeon ~ lists/comp/md.sgi ~ lists/comp/md.socppc ~ lists/comp/md.sparc ~ lists/comp/md.sparc64 ~ lists/comp/md.vax ~ lists/comp/md.zaurus > sync (deraadt@) ~ lists/base/md.alpha ~ lists/base/md.amd64 ~ lists/base/md.armish ~ lists/base/md.armv7 ~ lists/base/md.hppa ~ lists/base/md.hppa64 ~ lists/base/md.i386 ~ lists/base/md.landisk ~ lists/base/md.loongson ~ lists/base/md.luna88k ~ lists/base/md.macppc ~ lists/base/md.octeon ~ lists/base/md.sgi ~ lists/base/md.socppc ~ lists/base/md.sparc ~ lists/base/md.sparc64 ~ lists/base/md.zaurus > sync (deraadt@) ~ lists/comp/mi > sync (deraadt@) socppc ~ ramdisk/install.md > Introduce a new function disk_has() to inspect a disk if it has a > partition-table of a certain type and optionally if it has a partition > of a certain type. > Use disk_has() in the install.md script to replace all the various > "fdisk <disk> | grep <pattern>" commands greatly simplifying things. > positive feedback from sthen@ > "time to get it really tested" deraadt@ > OK krw@ (rpe@) zaurus ~ ramdisk/install.md > Introduce a new function disk_has() to inspect a disk if it has a > partition-table of a certain type and optionally if it has a partition > of a certain type. > Use disk_has() in the install.md script to replace all the various > "fdisk <disk> | grep <pattern>" commands greatly simplifying things. > positive feedback from sthen@ > "time to get it really tested" deraadt@ > OK krw@ (rpe@) == etc =============================================================== 03/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/etc group ~ group > Add _sndiop user and group for (future) privileged sndiod process. > ok deraadt (ratchov@) mail/aliases ~ mail/aliases > Add _sndiop user and group for (future) privileged sndiod process. > ok deraadt (ratchov@) master.passwd ~ master.passwd > Add _sndiop user and group for (future) privileged sndiod process. > ok deraadt (ratchov@) netstart ~ netstart > Simplify multicast option handling (10 less lines) by matching /etc/rc > behavior > towards other YES|NO options and drop the error warning. > with and ok tim@, ok rpe@ on an earlier diff (ajacoutot@) ~ netstart > Drop the now useless multicast setup comment. > prodded by tim@, ok mpi@ (ajacoutot@) rc.d/bgpd ~ rc.d/bgpd > Child will not return a config parsing error to the parent so rc.d will lie > and > tell you that the daemon succesfully started; prevent this by running a > config > check first. > Note that we only do this for those particular daemons, not all that > support a > config test mode. > ok benno@ phessler@ (ajacoutot@) rc.d/httpd ~ rc.d/httpd > Child will not return a config parsing error to the parent so rc.d will lie > and > tell you that the daemon succesfully started; prevent this by running a > config > check first. > Note that we only do this for those particular daemons, not all that > support a > config test mode. > ok benno@ phessler@ (ajacoutot@) rc.d/iked ~ rc.d/iked > Tweak pexp. (ajacoutot@) ~ rc.d/iked > Child will not return a config parsing error to the parent so rc.d will lie > and > tell you that the daemon succesfully started; prevent this by running a > config > check first. > Note that we only do this for those particular daemons, not all that > support a > config test mode. > ok benno@ phessler@ (ajacoutot@) rc.d/rc.subr ~ rc.d/rc.subr > Tidy up _rc_wait(). > ok sthen@ robert@ (ajacoutot@) ~ rc.d/rc.subr > After starting, unconditionally wait up to $daemon_timeout seconds to check > that > the daemon is actually running (instead of only when using rc_bg). > This *may* trigger the following side effect: if a daemon starts then stops > right away (because of a config parsing issue for e.g.), then it will slow > down > the boot process because rc will wait a bit before considering the start > action > failed. But at least it will allow us to detect those daemons and fix them > or > their rc.d(8) script. > At least as far as I can tell, all base daemons should cope with it just > fine. > ok sthen@ robert@ on an earlier diff (ajacoutot@) rc.d/relayd ~ rc.d/relayd > Child will not return a config parsing error to the parent so rc.d will lie > and > tell you that the daemon succesfully started; prevent this by running a > config > check first. > Note that we only do this for those particular daemons, not all that > support a > config test mode. > ok benno@ phessler@ (ajacoutot@) rc.d/vmd ~ rc.d/vmd > Add pexp match otherwise rcctl stop vmd doesn't work. OK deraadt@ > (jturner@) ~ rc.d/vmd > Child will not return a config parsing error to the parent so rc.d will lie > and > tell you that the daemon succesfully started; prevent this by running a > config > check first. > Note that we only do this for those particular daemons, not all that > support a > config test mode. > ok benno@ phessler@ (ajacoutot@) root/root.mail ~ root/root.mail > move to 5.9-beta (deraadt@) skel/dot.login ~ skel/dot.login > automatic HOSTALIASES setup is a bad idea (deraadt@) unbound.conf ~ unbound.conf > add commented-out unbound.conf entries for dns64 (sitting in my tree and > ok'd > some time ago by phessler and IIRC also mikeb), and for qname-minimisation > (sthen@) == games ============================================================= 04/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/games atc ~ update.c > Replace 'arc4random() % range' by 'arc4random_uniform(range)'. > Do this by introducing atcrandom_uniform(range) which returns > deterministic randomness or good randomness depending on whether > a seed was specified with the -r option. > Diff by Matthew Martin, reviewed by deraadt@ and me. > ok deraadt@ (tb@) ~ include.h > Cleanup: pwd.h is no longer needed. (tb@) caesar ~ caesar.c > Use __progname instead of hand-rolled parsing of argv[0]. > Inspired by similar diffs by tobias@ and millert@. > "I like the concept" pjanzen@ > ok tedu@ (tb@) cribbage ~ crib.c > KNF: add a missing space after an 'if'. (tb@) hack ~ hack.end.c ~ hack.main.c > Use __progname instead of hand-rolled parsing of argv[0]. > Inspired by similar diffs by tobias@ and millert@. > "I like the concept" pjanzen@ > ok tedu@ (tb@) hunt ~ huntd/driver.c > Use __progname instead of hand-rolled parsing of argv[0]. > Inspired by similar diffs by tobias@ and millert@. > "I like the concept" pjanzen@ > ok tedu@ (tb@) sail ~ main.c > Use __progname instead of hand-rolled parsing of argv[0]. > Inspired by similar diffs by tobias@ and millert@. > "I like the concept" pjanzen@ > ok tedu@ (tb@) == gnu =============================================================== 05/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/gnu gnu ~ gcc/gcc/config/mips/mips.md > Implement a memory barrier for mips. Basically this makes > __sync_synchronize() > emit a "sync" instruction. > ok visa@ (kettenis@) + gcc/gcc/config/mips/sync.S > Add library-based __sync functions for mips64. > Help with testing and ok kettenis@ (visa@) usr.bin/cc ~ libgcc/Makefile > Add library-based __sync functions for mips64. > Help with testing and ok kettenis@ (visa@) == include =========================================================== 06/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/include sndio.h ~ sndio.h > Expose internal functions necessary to open audio devices and midi > ports using existing file descriptors. (ratchov@) == lib =============================================================== 07/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libc ~ net/res_comp.c > s/begining/beginning/g (mmcc@) ~ sys/pledge.2 > in pledged process, setuid/setgid/sticky bits should be ignored. > enforce it for mkfifo(2) and mknod(2) (with "dpath" promise). > ok deraadt@ (semarie@) ~ asr/asr.c ~ asr/asr_private.h ~ asr/getaddrinfo_async.c ~ asr/gethostnamadr_async.c ~ asr/res_search_async.c ~ net/gethostbyname.3 ~ net/resolver.3 > Remove support for HOSTALIASES from the resolver. This "open and parse > any file indicated by an environment variable" feature inside the > resolver is incompatible with what pledge "dns" is trying to be. It is > a misguided "feature" added way back in history which almost noone uses, > but everyone has to assume the risk from. > ok eric florian kettenis (deraadt@) ~ sys/pledge.2 > documents pledge(2) "dpath" promise > with inputs from jmc@ > ok jmc@ deraadt@ (semarie@) ~ net/gethostbyname.3 ~ net/resolver.3 > tweak previous; (jmc@) ~ stdlib/rand.c > Simplify return call of rand() and rand_r() to make it easier to read. > This is slightly less robust, but RAND_MAX must be one below a power > of two in both variants anyway. > Based on a suggestion by Matthew Martin. > ok tedu@ (tb@) ~ net/gethostbyname.3 > gethostbyname2() and gethostbyaddr() need <sys/socket.h>; discussed with > millert@ (tim@) libcrypto ~ cert.pem > Remove "C=US, O=VeriSign, Inc., OU=Class 3 Public Primary Certification > Authority" (serial 3c:91:31:cb:1f:f6:d0:1b:0e:9a:b8:d0:44:bf:12:be) root > certificate from cert.pem. ok rpe@ > Symantec/VeriSign say "Browsers/root store operators are encouraged to > remove/untrust this root from their root stores" and "hasn't been used to > generate new certificates in several years, and will now be repurposed to > provide transition support for some of our enterprise customers' legacy, > non-public applications" (https://www.symantec.com/page.jsp?id=roots, > http://www.scmagazine.com/google-will-remove-trust-of-symantecs-pca3-g1-cer > tificate/article/459688/). > Also see > https://knowledge.symantec.com/support/ssl-certificates-support/index?page= > content&id=ALERT1941 > https://googleonlinesecurity.blogspot.co.uk/2015/12/proactive-measures-in-d > igital.html (sthen@) ~ cert.pem TAGGED OPENBSD_5_8 > remove O=VeriSign, Inc., OU=Class 3 Public Primary Certification Authority > from cert.pem in 5.8-stable, requested by Josh Grosse (sthen@) libevent ~ kqueue.c > change the kqueue backend to call kevent() as events are added instead > of deferring until the dispatch loop. kqueue support for various types > of files and filesystems has been historically incomplete, and kevent > handles this condition by returning an error. the libevent dispatch > loop has no way to recover from this error and fails catastrophically, > bringing down the entire process because one file went bad. > now, instead of all that happending, event_add will return an error. the > application can choose to handle or ignore this error, but at least the > band will play on. > ok nicm (tedu@) libkeynote ~ parse_assertion.c > s/begining/beginning/g (mmcc@) ~ auxil.c ~ signature.c > Remove NULL-checks before free(). (mmcc@) ~ environment.c > Remove casts of allocations and NULL. There are a *ton* of these to > remove in libkeynote, but I'm doing it in small chunks so I don't slip > up. > Previously discussed and approved on the lists, although I backed off > after making a dumb mistake in a mega-diff. (mmcc@) ~ environment.c > Remove more needless casts of NULL and allocations. (mmcc@) ~ environment.c > Cleanup and modernization. No functional change. Discussed with halex@. > (mmcc@) ~ environment.c > A few more NULL casts and style tweaks. No functional change. (mmcc@) ~ signature.c > Remove code for unimplemented ElGamel support that's been disabled for > sixteen years. > ok millert@, tb@, sthen@ (mmcc@) ~ environment.c ~ signature.c > More style improvement and removal of NULL/allocation casts. > ok tb@ (mmcc@) ~ signature.c > Style cleanup and removal of needless casts. ok tb@ (mmcc@) ~ keynote-ver.l > Clean up a condition. No functional change. ok tb@ (mmcc@) libkvm ~ kvm.c ~ kvm_alpha.c ~ kvm_amd64.c ~ kvm_arm.c ~ kvm_hppa.c ~ kvm_hppa64.c ~ kvm_i386.c ~ kvm_m88k.c ~ kvm_powerpc.c > Remove NULL-checks before free(). ok tb@ (mmcc@) libm ~ src/s_csqrt.c ~ src/s_csqrtf.c ~ src/s_csqrtl.c > Fix behavior csqrt, should be > csqrt(conj(z)) == conj(csqrt(z)) > Before > csqrt(-4.0 + -0.0i) = 0.0 + 2.0j > but should be > csqrt(-4.0 + -0.0i) = 0.0 - 2.0j > ok tb@, also discussed with daniel@ (shadchin@) ~ src/s_casin.c ~ src/s_casinf.c ~ src/s_casinl.c > Fix wrong answer if the imaginary part is zero. > NetBSD also turn off this piece of code. > ok tb@ (shadchin@) libsndio ~ mio_rmidi.c ~ shlib_version ~ sio_sun.c > Expose internal functions necessary to open audio devices and midi > ports using existing file descriptors. (ratchov@) libssl ~ src/crypto/evp/m_sigver.c > initialize md_len to 0 for readability to quell warnings. > ok guenther@ (beck@) ~ src/crypto/x509/x509_vfy.c > initialize ok to 0 > ok guenther@ (beck@) ~ src/crypto/x509v3/v3_conf.c > initialize ext_len to 0. > ok guenther@ (beck@) == libexec =========================================================== 08/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/libexec ld.so ~ ldconfig/prebind.c ~ ldconfig/prebind_delete.c > s/failes/failed/g (mmcc@) == regress =========================================================== 09/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/regress bin ~ ps/Makefile + ps/command.sh + ps/shortsleep.c > regression suite for the "command" keyword (schwarze@) ~ ps/Makefile + ps/cwd.sh + ps/user.sh > tests for the following keywords: cwd login group rgroup ruser user > (schwarze@) ~ ps/command.sh > test vis(3)ing (schwarze@) ~ ps/command.sh > test encoding of a few invalid UTF-8 sequences (schwarze@) ~ ps/command.sh > test some valid UTF-8, but in the C locale (schwarze@) == sbin ============================================================== 10/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sbin dhclient ~ kroute.c > Check ioctl() result with == -1, not < 0. Break long line. (krw@) ~ kroute.c > Delete superfluous "close(s);return" just before "close(s);<function > exit>". (krw@) ~ dispatch.c > Delete superfluous "continue;" just before end of loop. (krw@) ~ kroute.c > Don't exit if a route can't be added. Just log particulars and > let someone else figure it out. > ok mpi@ (krw@) mknod ~ mknod.c > pledge "stdio rpath wpath cpath dpath fattr", as long as the -m option > wasn't used (deraadt@) mountd ~ mountd.c > When (re)reading /etc/exports, handle the case where the mount point of an > export is not also the mount point of a local filesystem. In this case, the > local filesystem would not be removed from the "unexport list", causing the > export to be "unexported" again. > This fix then also allows us to actually delete an export that has been > removed > from /etc/exports, by passing the MNT_DELEXPORT export flag to mount(2). > Makes sense to millert@. (tim@) ~ mountd.8 > Document /var/db/mountdtab (tim@) ~ exports.5 > Include RFC number in reference. While here, improve formatting of another > reference. (tim@) == share ============================================================= 11/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share man ~ man4/iwm.4 > iwm(4) firmware errors during association have been fixed. Remove BUGS > section. (stsp@) ~ man4/iwm.4 > Update iwm(4) CAVEATS section in light of initial 802.11n support. > pointed out by jmc@ (stsp@) ~ man9/Makefile ~ man9/kern.9 > improve CTASSERT man page > * add CTASSERT.9 link > * add "void" to prototype (sf@) mk ~ sys.mk > move to 5.9-beta (deraadt@) == sys =============================================================== 12/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/alpha/conf ~ RAMDISK > make things fit, by skipping pcn* for now -- randomly firing a driver. > (deraadt@) arch/amd64/amd64 ~ vmm.c > track used memory in each VM. This is passed back to vmctl status. > ok reyk@, beck@, mpi@ (mlarkin@) ~ vmm.c > Support only one vcpu for now, until we implement SMP support. (mlarkin@) ~ vmm.c > support reset vcpu by triple fault (kernel part, userland fix will come > later). > discussed with deraadt@ and reyk@ at length. (mlarkin@) ~ vmm.c > remove some not interesting debug printfs (mlarkin@) ~ vmm.c > Move vcpu register state init to vmd. Allows vmd bootloader to make the > decision as to how the vcpu should be set up for initial start and > reset. Also removes some hardcoded register constants from vmm(4). > ok jsing@, mpi@ (mlarkin@) ~ bus_dma.c > add a size to free. from Mathieu (tedu@) arch/amd64/include ~ vmmvar.h > track used memory in each VM. This is passed back to vmctl status. > ok reyk@, beck@, mpi@ (mlarkin@) ~ vmmvar.h > support reset vcpu by triple fault (kernel part, userland fix will come > later). > discussed with deraadt@ and reyk@ at length. (mlarkin@) ~ vmmvar.h > Move vcpu register state init to vmd. Allows vmd bootloader to make the > decision as to how the vcpu should be set up for initial start and > reset. Also removes some hardcoded register constants from vmm(4). > ok jsing@, mpi@ (mlarkin@) arch/i386/i386 ~ bus_dma.c > add a size to free. from Mathieu (tedu@) ~ db_memrw.c > Prevent uvm_fault() when hitting a breakpoint by restoring the original > page protection bits. > Go ahead, mlarkin@ (gerhard@) arch/macppc/conf ~ GENERIC > Enable agp(4), this makes X11 usable on my Dual G5 with radeondrm(4). > ok kettenis@ (mpi@) arch/macppc/stand/tbxidata ~ bsd.tbxi > move to 5.9-beta (deraadt@) arch/octeon/dev ~ if_cnmac.c > A store to FPA does not need splnet(). The operation is atomic. (visa@) arch/socppc/socppc ~ fdt.c > s/begining/beginning/g (mmcc@) arch/socppc/stand/boot ~ fdt.c > s/begining/beginning/g (mmcc@) arch/sparc/conf ~ files.sparc > Remove the solbourne entries now that all its code is gone. > ok deraadt@ (mmcc@) conf ~ newvers.sh > move to 5.9-beta (deraadt@) dev ~ audio.c > "harware" -> "hardware" (mmcc@) dev/acpi ~ acpithinkpad.c > Sort button defines. (kettenis@) ~ acpithinkpad.c > Hook up the ThinkLight to the keyboard backlight support code. > For now this only supports the true ThinkLight. Support for the keyboard > backlight found on the most recent ThinkPads will follow soon. > ok jung@ (kettenis@) ~ acpithinkpad.c > Handle the keyboard backlight found on newer Thinkpads. Doesn't handle the > machines that have both the keyboard backlight and the thinklight (x230, > t430) > quite right yet. > ok jung@ (for a slightly different version of this diff) (kettenis@) ~ acpithinkpad.c > Don't attempt to get the ThinkLight state if neither the KLCG nor the MLCG > methods are present. Should fix the panic that occurs on older ThinkPads > (such as the x201) when you press the ThinkLight key. (kettenis@) ~ acpithinkpad.c > Add display brightness support. This is available on the last few > generations > of Thinkpads (x220 and later) and using means the brightness level is > coordinated properly with the firmware. This gets rid of the surprising > brightness changes that would sometimes happen if you used the brightness > keys or if the firmware decided to reset the brightness level for some > other reason. > ok tedu@, jung@, naddy@ (kettenis@) dev/ic ~ lance.c > s/expresion/expression/g (mmcc@) ~ aic79xx.c ~ aic79xx.h ~ aic7xxxvar.h > sprinkling ifndef __linux__ around two variable declarations could not > possibly make this driver portable (tedu@) ~ sili.c > Replace 'arc4random() % x' by 'arc4random_uniform(x)'. > Diff by Matthew Martin, thanks! > ok djm@, tedu@ (tb@) dev/isa ~ asmc.c > make sure the read fan description is always nul terminated > hint from kettenis (jung@) ~ asmc.c > add more temperature keys found in newer macbook airs (6,1 and 7,2) > encountered via key dump diff, run by Bryan Vyhmeister (jung@) ~ asmc.c > add 2 more temperature keys found in macbook pro (10,2) > found via key dump diff, run by Bryan Vyhmeister > also remove 3 temperature keys which likely do not return useful values > verified with help from macbook pro output of tb (4,1 and 5,5), > kettenis (12,1), and Cristoph R. Murauer (9,1) via misc@ (jung@) ~ asmc.c > ignore unlikely temperature values like -127 degC (jung@) dev/pci ~ if_em_hw.c > "harware" -> "hardware" (mmcc@) ~ if_iwm.c ~ if_iwmreg.h ~ if_iwmvar.h > Add initial 802.11n support to the iwm(4) driver. > Adds support for HT MCS 0-7 (theoretical limit 65 Mbit/s) and the > reception of A-MSDU and A-MPDU aggregated frames. > None of the optional 11n features are supported for now. > MIMO, 40Mhz channels, short guard interval, etc. are left for future work. > And we're not sending A-MSDU or A-MPDU frames yet either. > Tested with various 11a/b/g/n access points. With some APs I'm seeing > a noticable increase in throughput, especially on 5Ghz. > Also, fix automatic rate selection by using the current Tx rate selected > by AMRR as the upper bound for the firmware's rate table and updating the > firmware's table whenever AMRR switches Tx rate, rather than setting the > table just once after association and ignoring AMRR updates. > ok mpi@ krw@ (earlier version), ok jasper@ (stsp@) ~ azalia.c > If CORB/RIRB are not running, log error message unconditonnaly > and return error. From Alexey Suslikov <alexey.suslikov at gmail.com> > (ratchov@) ~ drm/radeon/radeon_ttm.c > Remove an error-on-NULL condition after a mallocarray() call that cannot > fail. This codepath doesn't exist upstream, so it's fine to change. > ok jsg@ (mmcc@) ~ if_ix.h ~ ixgbe.h > Make ix(4) mpsafer. Take advantage of intr_barrier() to eliminate the > mutex > introduced in the previous step, and use atomic instructions to make the > tx completion path mpsafe as well. > ok claudio@, mpi@ (kettenis@) ~ if_ix.c > Make ix(4) mpsafer. Take advantage of intr_barrier() to eliminate the > mutex > introduced in the previous step, and use atomic instructions to make the > tx completion path mpsafe as well. > ok claudio@, mpi@ (kettenis@) ~ agp_apple.c > Do not match Uninorth bridges until we have a working KMS with AGP > support for G4 machines. > This allows us to enable agp(4) again for G5 machines. > ok kettenis@ (mpi@) ~ agp_apple.c > Prevent GPU lockups with KMS & AGP-enable on Uninorth (G4) machines. > Based on linux commit 5613beb46d54da6ef7f1c4589e9f2e60eeb10721 found > by jsg@. > KMS is now usable on Uninorth machines but X11 output is still > corrupted. > ok kettenis@ (mpi@) ~ agp.c ~ agpvar.h > Move agp_generic_enable() prototype to agpvar.h to unbreak the build on > macppc. (kettenis@) ~ agp.c ~ agp_i810.c ~ agpvar.h > Remove code that has been unused ever since we removed the agp ioctl > interface. > ok mpi@ (kettenis@) ~ drm/drm_drv.c > Advertise support for DRM version 1.4. We have support for all the > necessary > features, and some code (such as the Xorg modesetting driver) actually > checks > the version. With this change the PCI-based probe method in that driver > works. > ok jsg@ (kettenis@) dev/pv ~ vmt.c > Use config_mountroot(9) instead of startuphook_establish(9). > Fix a regression reported by Ian Mcwilliam on tech@ (mpi@) ~ xen.c > Fixup a few bugs in xen_intr_{establish,disestablish} > xen_intr_establish was using a variable that hasn't got its value > updated in the supplementary check for event channel port unmasking. > xen_intr_disestablish didn't save and correctly check the return value > of xen_lookup_intsrc call and was incorrectly indexing into the pending > event channel port bitmap. (mikeb@) ~ xenstore.c ~ xenvar.h > Add xs_setprop to set device properties (mikeb@) dev/usb ~ umass.c ~ umass_scsi.c ~ umass_scsi.h ~ umassvar.h > Refactor umass_detach() in order to pass a size to free(9). > Based on a diff from Mathieu <naabed AT poolp DOT org>. (mpi@) ~ umass.c > Missing include, spotted by benoit@ (mpi@) ~ dwc2/dwc2.c ~ dwc2/dwc2_hcdddma.c > Remove two error-on-NULL conditions for allocations that can't fail. > ok visa@ (mmcc@) ~ if_urtw.c > Fix urtw(4) on big-endian architectures. Patch by Cedric Tessier. > Tested by Cedric on macppc/i386, and by myself on macppc. (stsp@) ~ uvideo.c > Do not delay video(4) attachment if the device does not need to load > a firmware. > Regression spotted by deraadt@ (mpi@) kern ~ vfs_syscalls.c > in pledged process, setuid/setgid/sticky bits should be ignored. > enforce it for mkfifo(2) and mknod(2) (with "dpath" promise). > ok deraadt@ (semarie@) ~ vfs_syscalls.c > in pledged process, setuid/setgid/sticky bits should be ignored. > enforce it for open(2) when used with O_CREAT and mode. > ok deraadt@ (semarie@) ~ kern_descrip.c > add size to free. from Mathieu (tedu@) ~ kern_event.c > add ktrace to kevent. ok guenther (tedu@) ~ kern_descrip.c > no need to check null before free (tedu@) ~ kern_event.c > arrays decay to pointers without needing & (tedu@) ~ kern_sched.c > Make the cost of moving a process to the primary cpu a bit higher. This is > the CPU that handles most hardware interrupts but we don't account for that > in any way in the scheduler. So processes (and kernel threads) that are > unlucky enough to end up on this CPU will get less CPU cycles than those > running on other CPUs. This is especially true for the softnet taskq. > There network interrupts will prevent the softnet taskq from running. This > means that the more packets we receive, the less packets we can actually > process and/or forward. This is why "unlocking" network drivers actually > decreases the forwarding performance. This diff restores most of the lost > performance by making it less likely that the softnet taskq ends up on the > same CPU that handles network interrupts. > Tested by Hrvoje Popovski > ok mpi@, deraadt@ (kettenis@) ~ subr_autoconf.c > Simple free(9) sizes, from Matthieu <naabed AT poolp DOT org>. (mpi@) ~ kern_event.c > size for free, sent and reminded by Mathieu. also delete null check. > (tedu@) net ~ rtable.c > Do not panic when trying to delete an non-existing route with ART. > Reported by bluhm@, ok jmatthew@ (mpi@) ~ rtable.c > Merge rtable_mpath_select() into rtable_match(). > This allow us to get rid of one more "rt_node" usage with ART. > ok jmatthew@ (mpi@) ~ if_var.h > Remove leftover prototype. > ok mpi@ (visa@) net80211 ~ ieee80211_amrr.c > In AMRR debug printfs, show ni_txmcs instead of ni_txrate for HT nodes. > (stsp@) ~ ieee80211.c > Don't forget about monitor mode while building the ifmedia list > for 802.11n capable wireless drivers. > ok mpi@ (stsp@) ~ ieee80211.c > Fix out of bounds array access in ieee80211_setbasicrates(). > found by + ok jsg@ (stsp@) ~ ieee80211_node.c > unnoccupied->unoccupied (sthen@) netinet ~ if_ether.c > rm a bit more trailers code. no longer accept them as alias for ethernet. > ok mpi (tedu@) ~ in_pcb.c > Fix SO_REUSE* flags effects when binding multicast addresses. No > regression observed on avahi. > ok benno@ (vgross@) ~ ip_carp.c > Make carp_output() mpsafe. > This is needed in order to fully unlock ARP processing with carp(4) > interfaces as found the hardway by sthen@. > ok sthen@, dlg@ (mpi@) netinet6 ~ nd6.h ~ nd6_rtr.c > Convert arc4random() to arc4random_uniorm(). Diff by Matthew Martin. > Ensure that arc4random_uniform() doesn't loop by redefining > ND6_MAX_DESYNC_FACTOR to be 512, the largest power of two smaller > than the RFC-specified 600 seconds. Suggested by florian@ and deraadt@ > ok florian@, sthen@ in this form, arc4random change ok djm@, tedu@ (tb@) ~ in6_pcb.c > Fix SO_REUSE* flags effects when binding multicast addresses. No > regression observed on avahi. > ok benno@ (vgross@) sys ~ videoio.h + v4l2-common.h + v4l2-controls.h > Sync V4L2 header files with recent Linux kernel. > This introduces the two header files v4l2-common.h and v4l2-controls.h > which were split off from videodev2.h (which corresponds to our videoio.h). > There will be a second commit just addressing whitespace and formatting. > The > current version has only real changes whereas the second commit will bring > videoio.h in line with videodev2.h formatting so that potential syncs in > the > future are easier to implement. > Bulk build by ajacoutot@; ok robert@, ajacoutot@ (feinerer@) - v4l2-common.h - v4l2-controls.h ~ videoio.h > Revert the previous commit; the licencing needs to be checked very > carefully. (feinerer@) ~ ktrace.h > add ktrace to kevent. ok guenther (tedu@) ~ param.h > move to 5.9-beta (deraadt@) uvm ~ uvm_map.c > Avoid grabbing the kernel lock in uvm_unmap() if we have an interrupt-safe > map. This removes the (hopefully) last case in which pool_put() might try > to grab the kernel lock for interrupt-safe pools. Note that pools that are > created with the PR_WAITOK flag will still grab the kernel lock. > ok mpi@, tedu@ (kettenis@) == usr.bin =========================================================== 13/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin awk ~ run.c > Remove modulo bias in random number generator. > Diff from Matthew Martin, rewieved by deraadt@ and me. > ok deraadt@, millert@ (tb@) fmt ~ fmt.1 ~ fmt.c > UTF-8 support; does not yet handle the -c option. > No longer expand tabs up front in get_line(), their width depends on the > width of characters earlier on the line. Always NUL-terminate the input > buffer for easier and safer handling. Get rid of the hand-rolled output > buffer, just let stdio do its work. > OK tedu@ (schwarze@) ~ fmt.1 > missing space in previous; (jmc@) grep ~ grep.h ~ util.c > Use long long rather than off_t for line_no to ensure that it's always > 64 bits. > ok kettenis@ (mmcc@) mandoc ~ main.c ~ mandocdb.c > pledge(2) style: > Make sure to always use the idiom 'if (pledge("' > such that it can easily be searched for. > No functional change. > Requested by deraadt@ some time ago. (schwarze@) mg ~ paragraph.c > s/begining/beginning/g (mmcc@) nc ~ netcat.c > clean up some unused variables, and add the printing of the certificate > validity > to the verbose output when using tls - from [email protected] > ok mmcc@ jsing@ deraadt@ (beck@) ~ netcat.c > Add missing colon after "Peer name" in verbose output. Mentioned on the > lists recently. (mmcc@) sndiod ~ listen.h ~ listen.c > Work on a copy of the slowaccept flag instead of the global one as > it could change somewhere in the poll() loop. (ratchov@) ~ Makefile ~ listen.c ~ miofile.c ~ siofile.c ~ sndiod.c + fdpass.c + fdpass.h > In case of a bug in sndiod, an attacker (a local user) could run > arbitrary code as user _sndio, i.e. get a second uid. > Mitigate the risk by implementing initial privilege separation as > follows. Break sndiod in two processes: a chroot()ed "worker" process > processing input, and a non-chroot()ed "helper" process opening > devices and passing descriptors to the worker. > With help from benno, claudio, semarie and gilles. > ok benno, semarie and tb (ratchov@) ssh ~ kex.c > unbreak connections with peers that set first_kex_follows; > fix from Matt Johnston va bz#2515 (djm@) tmux ~ cmd-attach-session.c ~ cmd-break-pane.c ~ cmd-capture-pane.c ~ cmd-choose-buffer.c ~ cmd-choose-client.c ~ cmd-choose-tree.c ~ cmd-clear-history.c ~ cmd-command-prompt.c ~ cmd-confirm-before.c ~ cmd-copy-mode.c ~ cmd-detach-client.c ~ cmd-display-message.c ~ cmd-display-panes.c ~ cmd-find-window.c ~ cmd-if-shell.c ~ cmd-join-pane.c ~ cmd-kill-pane.c ~ cmd-kill-session.c ~ cmd-kill-window.c ~ cmd-list-clients.c ~ cmd-list-panes.c ~ cmd-list-windows.c ~ cmd-load-buffer.c ~ cmd-lock-server.c ~ cmd-move-window.c ~ cmd-new-session.c ~ cmd-new-window.c ~ cmd-paste-buffer.c ~ cmd-pipe-pane.c ~ cmd-queue.c ~ cmd-refresh-client.c ~ cmd-rename-session.c ~ cmd-rename-window.c ~ cmd-resize-pane.c ~ cmd-respawn-pane.c ~ cmd-respawn-window.c ~ cmd-rotate-window.c ~ cmd-run-shell.c ~ cmd-save-buffer.c ~ cmd-select-layout.c ~ cmd-select-pane.c ~ cmd-select-window.c ~ cmd-send-keys.c ~ cmd-set-environment.c ~ cmd-set-hook.c ~ cmd-set-option.c ~ cmd-show-environment.c ~ cmd-show-messages.c ~ cmd-show-options.c ~ cmd-source-file.c ~ cmd-split-window.c ~ cmd-swap-pane.c ~ cmd-swap-window.c ~ cmd-switch-client.c ~ cmd.c ~ tmux.h > Instead of every command resolving the target (-t or -s) itself, prepare > the state (client, session, winlink, pane) for it it before entering the > command. Each command provides some flags that tell the prepare step > what it is expecting. > This is a requirement for having hooks on commands (for example, if you > hook "select-window -t1:2", the hook command should to operate on window > 1:2 not whatever it thinks is the current window), and should allow some > other target improvements. > The old cmd_find_* functions remain for the moment but that layer will > be dropped later. > Joint work with Thomas Adam. (nicm@) ~ cmd-find.c ~ cmd.c > Move logging into cmd_find_target rather than each function. (nicm@) ~ cmd-find.c ~ cmd.c ~ tmux.h > Remove the cmd_find_{session,window,pane,index} functions (which are > just wrappers around cmd_find_target) and just use cmd_find_target > directly. (nicm@) ~ cmd-queue.c > If command returns error, report it. (nicm@) ~ cmd-find.c ~ cmd.c ~ tmux.h > Change cmd_find_target to use a state struct from the caller. (nicm@) ~ cmd-find.c ~ cmd-new-window.c ~ cmd.c ~ tmux.h > Use struct cmd_find_state directly and remove cmd_state_flag, also > change so that winlink is set even if an index is too. (nicm@) ~ cmd.c > Don't log an error when doing the first check for move-window. (nicm@) ~ cmd-show-environment.c ~ cmd-show-options.c > show-options and environment need CANFAIL flag. (nicm@) ~ cmd.c > Remove an unnecessary function. (nicm@) ~ cmd-display-message.c ~ cmd.c ~ tmux.h > -c needs to be able for fail for display-message. (nicm@) ~ cmd.c > Actually I thought cmd_get_state_client was unnecessary but it will be > needed. (nicm@) ~ cmd-attach-session.c ~ cmd-bind-key.c ~ cmd-break-pane.c ~ cmd-capture-pane.c ~ cmd-choose-buffer.c ~ cmd-choose-client.c ~ cmd-choose-tree.c ~ cmd-clear-history.c ~ cmd-command-prompt.c ~ cmd-confirm-before.c ~ cmd-copy-mode.c ~ cmd-detach-client.c ~ cmd-display-message.c ~ cmd-display-panes.c ~ cmd-find-window.c ~ cmd-if-shell.c ~ cmd-join-pane.c ~ cmd-kill-pane.c ~ cmd-kill-server.c ~ cmd-kill-session.c ~ cmd-kill-window.c ~ cmd-list-buffers.c ~ cmd-list-clients.c ~ cmd-list-keys.c ~ cmd-list-panes.c ~ cmd-list-sessions.c ~ cmd-list-windows.c ~ cmd-load-buffer.c ~ cmd-lock-server.c ~ cmd-move-window.c ~ cmd-new-session.c ~ cmd-new-window.c ~ cmd-paste-buffer.c ~ cmd-pipe-pane.c ~ cmd-refresh-client.c ~ cmd-rename-session.c ~ cmd-rename-window.c ~ cmd-resize-pane.c ~ cmd-respawn-pane.c ~ cmd-respawn-window.c ~ cmd-rotate-window.c ~ cmd-run-shell.c ~ cmd-save-buffer.c ~ cmd-select-layout.c ~ cmd-select-pane.c ~ cmd-select-window.c ~ cmd-send-keys.c ~ cmd-set-buffer.c ~ cmd-set-environment.c ~ cmd-set-hook.c ~ cmd-set-option.c ~ cmd-show-environment.c ~ cmd-show-messages.c ~ cmd-show-options.c ~ cmd-source-file.c ~ cmd-split-window.c ~ cmd-swap-pane.c ~ cmd-swap-window.c ~ cmd-switch-client.c ~ cmd-unbind-key.c ~ cmd-wait-for.c ~ cmd.c ~ tmux.h > Use member names in cmd_entry definitions so I stop getting confused > about the order. (nicm@) ~ cmd-attach-session.c ~ cmd-break-pane.c ~ cmd-capture-pane.c ~ cmd-choose-buffer.c ~ cmd-choose-client.c ~ cmd-choose-tree.c ~ cmd-clear-history.c ~ cmd-command-prompt.c ~ cmd-confirm-before.c ~ cmd-copy-mode.c ~ cmd-detach-client.c ~ cmd-display-message.c ~ cmd-display-panes.c ~ cmd-find-window.c ~ cmd-if-shell.c ~ cmd-join-pane.c ~ cmd-kill-pane.c ~ cmd-kill-session.c ~ cmd-kill-window.c ~ cmd-list-clients.c ~ cmd-list-panes.c ~ cmd-list-windows.c ~ cmd-lock-server.c ~ cmd-move-window.c ~ cmd-new-session.c ~ cmd-new-window.c ~ cmd-paste-buffer.c ~ cmd-pipe-pane.c ~ cmd-refresh-client.c ~ cmd-rename-session.c ~ cmd-rename-window.c ~ cmd-resize-pane.c ~ cmd-respawn-pane.c ~ cmd-respawn-window.c ~ cmd-rotate-window.c ~ cmd-run-shell.c ~ cmd-select-layout.c ~ cmd-select-pane.c ~ cmd-select-window.c ~ cmd-send-keys.c ~ cmd-set-environment.c ~ cmd-set-hook.c ~ cmd-set-option.c ~ cmd-show-environment.c ~ cmd-show-messages.c ~ cmd-show-options.c ~ cmd-split-window.c ~ cmd-swap-pane.c ~ cmd-swap-window.c ~ cmd-switch-client.c ~ cmd.c ~ log.c ~ tmux.h > Instead of combined flags for -c, -s, -t, split into different sets > using an enum and simplify the parsing code. (nicm@) ~ log.c > Remove some stray debug code. (nicm@) ~ cmd-find.c ~ cmd.c ~ tmux.h > Use cmd_find_clear_state instead of an extra function doing the same. > (nicm@) ~ cmd-find.c ~ cmd-select-pane.c ~ screen-redraw.c ~ server.c ~ tmux.h ~ window.c > Make the marked pane a cmd_find_state. (nicm@) ~ cmd-find.c > Don't copy marked pane when can just point to it. (nicm@) ~ cmd-find.c > We changed somewhat recently to us the pty when tmux was run inside > itself to work out the current pane. This is confusing in many cases > (particularly notable is that "tmux neww\; splitw" would not split the > new window), and the few advantages do not make up for the confusion. > So drop this behaviour and return to using the current window and pane; > keep the pty check but only use it to limit the list of possible current > sessions. (nicm@) ~ cmd-list-keys.c > Allow list-keys and list-commands to be run without a running server. > (nicm@) ~ cmd-attach-session.c ~ hooks.c ~ server-client.c ~ tmux.h > Some hooks API changes to fire a hook while waiting another cmdq and > infrastructure that will be needed soon. (nicm@) ~ cmd-find.c > Copy state directly rather than dereferencing wl (which could be NULL). > (nicm@) ~ cmd-show-environment.c ~ cmd-set-environment.c > showenv and setenv need to be CANFAIL. (nicm@) ~ cmd-attach-session.c ~ cmd-find.c ~ cmd-queue.c ~ cmd-respawn-window.c ~ hooks.c ~ server-client.c ~ server-fn.c ~ server.c ~ tmux.1 ~ tmux.h ~ window.c > Add infrastructure to work out the best target given a pane or window > alone and use it to add pane_died and pane_exited hooks. (nicm@) ~ cmd-send-keys.c ~ input.c ~ tmux.h > send-keys -R should reset the input parser to ground state (so it can be > used to escape from, for example, printf '\033]2;'). (nicm@) ~ cmd-find.c > As well as setting up the state, actually use it in cmd_find_target. > (nicm@) ~ window.c > Make input off flag (selectp -d) apply to synchronize-panes too. (nicm@) uniq ~ uniq.1 ~ uniq.c > UTF-8 support: > Let -f recognize non-ASCII blank characters > and let -s count characters rather than bytes. > OK zhuk@ bentley@ (schwarze@) == usr.sbin ========================================================== 14/14 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin config ~ sem.c > Remove unused macro that's just a clone of abs(3). ok tb@ (mmcc@) dhcpd ~ udpsock.c ~ dhcpd.c > pledge. > Diff from Ricardo Mestre. Test report from sthen@. (krw@) eigrpctl ~ eigrpctl.8 ~ eigrpctl.c ~ parser.c ~ parser.h > Introduce new command to show traffic statistics. > Can be useful as a troubleshooting tool. (renato@) eigrpd ~ control.c ~ eigrpd.h ~ eigrpe.c ~ eigrpe.h ~ packet.c > Introduce new command to show traffic statistics. > Can be useful as a troubleshooting tool. (renato@) ~ rde_dual.c > Minor cosmetic changes. (renato@) ~ eigrpd.conf.5 > Fix bug in the documentation of the k-values configuration option. > (renato@) ~ rde.h ~ rde_dual.c > Respect the k-values configuration when calculating the composite metric. > (renato@) fdformat ~ fdformat.c > Remove NULL-check before free(). (mmcc@) installboot ~ i386_installboot.c > Remove unnecessary options: > - in fsck_msdos, '-f' option is a no-op > - newfs_msdos does not need '-t msdos' > OK krw@ (rpe@) lpr ~ lpd/lpd.c > Remove NULL-check before free(). (mmcc@) mailwrapper ~ mailwrapper.8 ~ mailwrapper.c > Update default MTA reference to smtpd(8). Rectify documentation of > fallback behaviour when configuration file is missing. > Documentation bits from Serguey Parkhomovsky. > Ok jung@ "if the fallback code stays" (sunil@) mrouted ~ prune.c > Remove NULL-check before free(). (mmcc@) mtree ~ mtree.c > Add pledge(2). It is not currently possible to pledge -u and -U > because of chown(2) and chmod(2). > If -u and -U aren't specified, the basic pledge is "stdio rpath getpw". > "getpw" is used to resolve uid and gid to names and vice versa. > The -r flag makes use of rmdir(2) and unlink(2), so we need "cpath" > The -t flag uses utimes(2), so we need "fattr" > ok deraadt@ (tb@) ~ mtree.c > need to include err.h for err(). > ok deraadt@ (benno@) netgroup_mkdb ~ stringlist.c > Remove NULL-checks before free(). (mmcc@) npppd ~ common/slist.c ~ pptp/pptpd.c > Replace arc4random() % i by arc4random_uniform(i) to avoid modulo bias. > Part of a diff by Matthew Martin, reviewed by deraadt@ and me. > ok deraadt@ (tb@) ~ common/debugmacro.h ~ common/debugutil.c ~ common/debugutil.h ~ common/hash.c ~ common/hash.h ~ common/ipsec_util.c ~ common/ipsec_util.h ~ common/ipsec_util_local.h ~ common/net_utils.c ~ common/net_utils.h ~ common/radish.c ~ common/radish.h ~ common/recvfromto.c ~ common/recvfromto.h ~ common/slist.h ~ common/slist_test.c ~ common/time_utils.c > Add missing $OpenBSD$ tags. (tb@) ~ l2tp/l2tpd.c ~ pppoe/pppoed.c > Replace 'arc4random() % (2^k - 1)' by 'arc4random() & (2^k - 1)' to > avoid modulo bias. Part of a diff by Matthew Martin, reviewed by > deraadt@ and me. > ok deraadt@ (tb@) ~ common/addr_range.c > s/failes/failed/g (mmcc@) nsd ~ configure > regen NSD's autoconf script, forgotten with the update - noticed by Brad > (sthen@) ntpd ~ log.c ~ log.h ~ ntpd.h ~ util.c > Move log_sockaddr() to from log.c to util.c as it is a local addition > and actually not a "logging" function. No functional change. (reyk@) ~ constraint.c ~ log.c ~ log.h ~ ntp.c ~ ntp_dns.c ~ ntpd.c > Switch and sync to the log.c variant from httpd/relayd/iked/snmpd/vmd. > OK bcook@ jung@ (reyk@) - log.h ~ ntpd.h > No need for an extra log.h > OK bcook@ (reyk@) pppd ~ ipcp.c ~ lcp.c > s/begining/beginning/g (mmcc@) rebound ~ rebound.c > add return code to newrequest to distinguish between cache hit and error. > we want to keep looping for more requests after a hit, not stop. > (though i'm reconsidering if the looping is worthwhile. maybe should just > return to kevent() after each request.) (tedu@) relayd ~ relay_http.c > PATCH is like PUT, data is expected. > From mxb at alumni chalmers se (reyk@) route6d ~ route6d.c > Remove NULL-check before free(). (mmcc@) smtpd ~ smtp.c ~ smtp_session.c ~ smtpd.h ~ ssl.c ~ ssl.h ~ ssl_smtpd.c > refactor a bit to move the SNI handling away from smtp_session into smtp > ok sunil@, jung@ (gilles@) ~ smtpd.conf.5 > document wildcard pki/ca (gilles@) ~ smtp_session.c > remove prototype to now unused function + pass fallback hint to lka > (gilles@) ~ pony.c ~ smtp_session.c ~ smtpd/Makefile > refactor smtp_session to plug into the filters infrastructure (gilles@) ~ smtpd.conf.5 > document filter keyword (gilles@) ~ smtpd.h > smtpd is no longer 5.4.6 (gilles@) ~ makemap.c > Move some variables local to makemap(). > Suggested by guenther@ Ok gilles@ (sunil@) ~ smtpd.conf.5 > less macro; (jmc@) ~ smtpd/Makefile + filter_api.3 > add filter api man page > ok gilles (jung@) ~ filter_api.3 > fix warnings; spotted by `mandoc -Tlint' > OK jung@ (gsoares@) ~ filter_api.3 > various minor tweaks; (jmc@) ~ makemap.8 > Document -d option. > Ok gilles@ jmc@ (sunil@) ~ makemap.8 > oops, sorry sunil, -d was in the wrong place: > so much for my ok ;( (jmc@) ~ bounce.c ~ compress_gzip.c ~ delivery_lmtp.c ~ enqueue.c ~ iobuf.c ~ lka.c ~ lka_session.c ~ mta.c ~ queue.c ~ queue_backend.c ~ queue_fs.c ~ smtp_session.c ~ smtpd.c ~ to.c ~ util.c > remove trailing whitespace > ok sunil gilles (jung@) ~ filter.c > Wrap long lines and whitespace fixes. > Ok jung@ gilles@ (sunil@) ~ bounce.c > Fix bad indents and whitespaces. > Ok jung@ gilles@ (sunil@) ~ envelope.c > Wrap long lines and fix bad indents. > Ok gilles@ (sunil@) ~ mda.c > Wrap long lines. > Ok gilles@ (sunil@) ~ makemap.c > Sync the DB file once when done with fsync(), not on each write with > O_SYNC. > The DB file being written is a temp file, so O_EXLOCK is unnecesary. > ok sunil@ gilles@ (guenther@) ~ smtpd.conf.5 > less macro and lines > ok millert (jung@) ~ smtpd.c > remove redundant log (gilles@) syslogd ~ syslogd.c > Adding mark messages to log files was broken since OpenBSD 5.7. > The mark timeout event is not persistent, add the timer intervall > everytime it fires. > Bug report, analysis and fix from Einfach Jemand rru.142 at gmail.com > (bluhm@) tftpd ~ tftpd.c > move daemon(3) call before chroot(2) in tftpd. > so daemon(3) will be able to redirect standard input, standard output and > standard error to /dev/null. > ok jca@ (semarie@) unbound ~ Makefile.in ~ README ~ acx_nlnetlabs.m4 ~ config.h.in ~ configure ~ configure.ac ~ daemon/unbound.c ~ daemon/worker.c ~ doc/Changelog ~ doc/README ~ doc/example.conf.in ~ doc/libunbound.3.in ~ doc/unbound-anchor.8.in ~ doc/unbound-checkconf.8.in ~ doc/unbound-control.8.in ~ doc/unbound-host.1.in ~ doc/unbound.8.in ~ doc/unbound.conf.5.in ~ iterator/iter_scrub.c ~ iterator/iterator.c ~ iterator/iterator.h ~ libunbound/libunbound.c ~ services/cache/rrset.c ~ smallapp/unbound-anchor.c ~ smallapp/unbound-checkconf.c ~ smallapp/unbound-control.c ~ util/config_file.c ~ util/config_file.h ~ util/configlexer.lex ~ util/configparser.y ~ util/iana_ports.inc ~ util/random.c ~ validator/autotrust.c ~ validator/val_nsec.c ~ validator/val_nsec3.c ~ validator/val_secalgo.c ~ validator/val_secalgo.h ~ validator/val_sigcrypt.c > update to Unbound 1.5.7, looks fine to deraadt@. > Notable addition: implements optional support for qname minimisation > (a privacy improvement; see draft-ietf-dnsop-qname-minimisation-07) > (sthen@) ~ iterator/iter_hints.c TAGGED OPENBSD_5_8 > update hints for h.root in 5.8-stable, requested by phessler (sthen@) vmctl ~ vmctl.c > track used memory in each VM. This is passed back to vmctl status. > ok reyk@, beck@, mpi@ (mlarkin@) vmd ~ vmm.c > if a vcpu run thread in vmd exits unexpectedly, teardown the VM's kernel > components as well. > ok deraadt@ (mlarkin@) ~ loadfile.h ~ loadfile_elf.c ~ vmm.c > Move vcpu register state init to vmd. Allows vmd bootloader to make the > decision as to how the vcpu should be set up for initial start and > reset. Also removes some hardcoded register constants from vmm(4). > ok jsing@, mpi@ (mlarkin@) =============================================================================== _______________________________________________ owc mailing list [email protected] http://www.squish.net/mailman/listinfo/owc
