OpenBSD src changes summary for 2016-04-17 to 2016-04-24 inclusive ==================================================================
bin/pax distrib/armv7 distrib/sets etc/changelist etc/examples/pkg.conf etc/mtree/special gnu/usr.bin/perl lib/libc lib/libcrypto lib/libedit lib/libtls libexec/login_yubikey sbin/ifconfig share/man share/zoneinfo sys/arch/alpha/conf sys/arch/alpha/include sys/arch/amd64/amd64 sys/arch/amd64/conf sys/arch/amd64/stand/efi sys/arch/arm/arm sys/arch/arm/include sys/arch/armv7/conf sys/arch/armv7/exynos sys/arch/armv7/vexpress sys/arch/hppa/hppa sys/arch/hppa64/hppa64 sys/arch/i386/conf sys/arch/i386/i386 sys/arch/macppc/conf sys/arch/macppc/macppc sys/arch/mips64/include sys/arch/mips64/mips64 sys/arch/zaurus/conf sys/conf sys/crypto sys/ddb sys/dev sys/dev/acpi sys/dev/i2c sys/dev/ic sys/dev/isa sys/dev/pci sys/dev/pv sys/dev/sdmmc sys/dev/wscons sys/net sys/netinet sys/netinet6 sys/sys usr.bin/file usr.bin/ssh usr.bin/vi usr.sbin/eigrpd usr.sbin/httpd usr.sbin/smtpd == bin =============================================================== 01/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/bin pax ~ options.c > Switch from fgetln() to getline() to simplify error handling. > Use syswarn() in more places which set errno and regularize the error > messages. > Skip empty lines in the input read for tar -T, cpio -E, and cpio stdin. > based on diff from mmcc@ > ok millert@ (guenther@) == distrib =========================================================== 02/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib armv7 ~ ramdisk/install.md > Alter SUNXI grep to match the rest of the SOC greps > OK bmercer@, patrick@ (abieber@) sets ~ lists/base/mi > sync (deraadt@) ~ lists/man/mi > sync (deraadt@) ~ lists/base/md.alpha ~ lists/base/md.amd64 ~ lists/base/md.armish ~ lists/base/md.armv7 ~ lists/base/md.hppa ~ lists/base/md.hppa64 ~ lists/base/md.i386 ~ lists/base/md.landisk ~ lists/base/md.loongson ~ lists/base/md.luna88k ~ lists/base/md.macppc ~ lists/base/md.octeon ~ lists/base/md.sgi ~ lists/base/md.socppc ~ lists/base/md.sparc ~ lists/base/md.sparc64 ~ lists/base/md.zaurus ~ lists/comp/mi > sync (deraadt@) == etc =============================================================== 03/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/etc changelist ~ changelist > adds iked(8) default key. > ok sthen@ (semarie@) ~ changelist > Don't watch unbound's dnssec root zone key, to reduce security(8) spam. > ok martijn@ semarie@ matthieu@ danj@ benno@ (sthen@) examples/pkg.conf ~ examples/pkg.conf > sync (sthen@) mtree/special ~ mtree/special > Remove the requirement that /etc/printcap must be a regular file. > CUPS wants it to be a symlink, and that is probably the most common > printing system. Bad idea to constantly spam everybody about that! > Antoine already adjusted the file permissions in pkg/cupsd.rc rev. 1.24. > OK ajacoutot@ (print/cups MAINTAINER). (schwarze@) == gnu =============================================================== 04/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/gnu usr.bin/perl ~ cpan/podlators/scripts/pod2man.PL > In pod2man(1), enable UTF-8 output by default and provide a --no-utf8 > command line option to disable it. The new default improves the > formatting of Perl manuals using UTF-8 characters (for example > perlunicook(1)) with man(1) and mandoc(1) no matter which locale > the user has set. > Issue discovered by and fix OK by afresh1@. > Trying to push this change upstream would make no sense. It's the > right thing to do only because we decided to not support any other > locales except ASCII and UTF-8. A system trying to provide arbitrary > locales simply cannot handle manuals containing UTF-8 characters > at build time, so the change would produce wrong results. (schwarze@) ~ regexec.c ~ t/re/pat.t > Apply fix for perl bug 123562 which has been assigned CVE-2015-8853. > It can cause certain regular expressions with malformed UTF8 inputs > to go into a forever loop and consume 100% CPU. OK afresh1@ (millert@) ~ patchlevel.h > Add entry for CVE-2015-8853 patch. (millert@) == lib =============================================================== 05/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libc ~ sys/intro.2 > document pledge(2); from rob pierce (jmc@) libcrypto ~ crypto/getentropy_linux.c > fix typo in comment; ok beck (tj@) libedit ~ common.c ~ editrc.5 ~ map.c > Delete redundant, empty callbacks; > no functional change, minus hundred lines of code. > OK martijn@; > also proof-read by Christian Heckendorf <mbie at ulmus dot me>. (schwarze@) ~ Makefile ~ editline.3 ~ editrc.5 + editline.7 > New editline(7) manual, explaining to end-users how line editing works > in programs like ftp(1), sftp(1), bc(1), and cdio(1) that use libedit. > The existing editrc(5) manual only explains customization, and the > existing editline(3) manual only explains the C language interface. > Already listing all editor functions and all default key bindings, but > in other respects, not 100% complete yet, and due to the sheer size, > some bugs may have slipped, but all that can be fixed in the tree. > OK and tweaks jmc@. > Also seems reasonable to Christian Heckendorf <mbie at ulmus dot me>. > (schwarze@) ~ makelist > delete unused -m option; > ok martijn@ > also checked by Christian Heckendorf <mbie at ulmus dot me> (schwarze@) libtls ~ tls_init.3 > typos; (jmc@) ~ tls_init.3 > no more outlen; from remco > ok bcook deraadt (jmc@) == libexec =========================================================== 06/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/libexec login_yubikey ~ login_yubikey.c > explicit_bzero some keys after use. > From fritjof () alokat ! org, thanks! > ok semarie@ (benno@) == sbin ============================================================== 07/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sbin ifconfig ~ ifconfig.c > Print interface index after priority. > Suggestion from claudio@, ok benno@, sthen@ (mpi@) == share ============================================================= 08/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share man ~ man1/help.1 > document text editors and use some Ar; from rob pierce (jmc@) ~ man7/library-specs.7 > all archs support shared libs; from bob nw8l > ok sthen (jmc@) ~ man9/pool.9 > Remove some incorrect and outdated references to pool debugging from pool.h > and pool(9) manpage > ok dlg (mlarkin@) ~ man4/vlan.4 > update this to reflect the current state of the driver. > while here remove a lot of cruft, namely stuff about how packets > are laid out. > i dislike documenting the ioctls instead of what to do with ifconfig. > most people arent programming against devices, they just want to > configure the things using the existing tools. oh well. > an examples section would be welcome if someone can tell me what's > useful. > ok sthen@ jmc@ (dlg@) ~ man4/vlan.4 > remove errant Pp; (jmc@) ~ man4/wscons.4 ~ man4/wsdisplay.4 > Remove mention of COMPAT_PCVT. Reminder by guenther@, thanks. (matthieu@) zoneinfo ~ datfiles/asia ~ datfiles/europe ~ datfiles/northamerica ~ datfiles/southamerica ~ datfiles/zone.tab ~ datfiles/zone1970.tab > Update to tzdata2016d from from ftp.iana.org. (millert@) == sys =============================================================== 09/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/alpha/conf ~ GENERIC > Remove 'option COMPAT_PCVT' now that X doen't use it anymore. > An X server built after april 3 is needed to be able to start X with > the new kernel. > ok kettenis@ (matthieu@) arch/alpha/include ~ pmap.h > Move back #include <sys/mutex.h> outside #ifdef _KERNEL as it was > originally intended in r1.38. (ie more or less revert r1.39) > (re-)Fixes at least net/net-snmp, sysutils/gkrellm/gkrellm,-client, > sysutils/xuvmstat and sysutils/bubblemon-dockapp on alpha. > From miod@ (landry@) arch/amd64/amd64 ~ vmm.c > add pool_setipl after pool_init. > ok mlarkin@ stefan@ (dlg@) ~ aesni.c > pool_setipl for the aesnipl > it's set to IPL_VM to be conservative wrt its interaction with the crypto > subsystem. (dlg@) ~ aesni.c > Make the aesni crypto implementation mpsafe. In order to do so this moves > the working buffer from the softc into session struct. The list of > sessions > is protected by a mutex. > There has been some discussion about what IPL should be used for the mutex. > Initially my code used IPL_HIGH since that is the default to be used for > subsystems that can be called from any other subsystem. But since the > crypto > code may call malloc/free, I settled on IPL_VM. Calling it from an > interrupt > handler that runs at a higher level is unsafe. Sorry, can't encrypt audio! > ok mikeb@ (kettenis@) ~ mpbios.c > Support for 'default configuration' mpbios attachment was never completed, > so instead of halfway configuring this mode and unconditionally panicing, > just don't attach mpbios at all if this mode is detected during probe. > ok kettenis (mlarkin@) ~ fpu.c > KNF (mlarkin@) arch/amd64/conf ~ GENERIC > Remove 'option COMPAT_PCVT' now that X doen't use it anymore. > An X server built after april 3 is needed to be able to start X with > the new kernel. > ok kettenis@ (matthieu@) arch/amd64/stand/efi ~ include/i386/efibind.h > Seems that the 32-bit Windows ABI does align 64-bit structure members on > a 64-bit boundary (in constrast to the System V i386 ABI). Use an > alignment > attribute to force 64-bit alignment of the INT64 and UINT64 types. This > makes the definitions of the EFI data structures match the expectations of > the firmware. > Fixes the issue where the 32-bit UEFI bootloader (BOOTIA32.EFI) would not > detect a GPT leading to a failure to boot. > Cluestick from John Troy. > ok krw@, yasuoka@ (kettenis@) arch/arm/arm ~ db_interface.c ~ db_trace.c > Don't use DDB_REGS, ok patrick@ (mpi@) ~ cpuswitch.S ~ cpuswitch7.S ~ vm_machdep.c > EABI's Procedure Call Standard (AAPCS) requires the stack pointer > to be 8-byte aligned. To guarantee this, align the stack pointers > passed to user processes and make sure the in-kernel stacks are > properly aligned, too. > ok jsg@ (patrick@) arch/arm/include ~ frame.h > EABI's Procedure Call Standard (AAPCS) requires the stack pointer > to be 8-byte aligned. To guarantee this, align the stack pointers > passed to user processes and make sure the in-kernel stacks are > properly aligned, too. > ok jsg@ (patrick@) ~ frame.h > whitespace cleanup (patrick@) arch/armv7/conf ~ files.armv7 > New FDT-enabled busses will use a new "fdt" attribute. Unfortunately > this attribute is currently already defined. This define is only used > to disable the unused FDT functionality in the exynos and virtio code. > As the FDT code will be developed in a different manner than the way > those drivers are written today and the functionality has never been > enabled, simply remove the attribute and its users. > ok jsg@ (patrick@) ~ GENERIC > Remove 'option COMPAT_PCVT' now that X doen't use it anymore. > An X server built after april 3 is needed to be able to start X with > the new kernel. > ok kettenis@ (matthieu@) arch/armv7/exynos ~ exclock.c ~ exdisplay.c ~ exdog.c ~ exehci.c ~ exesdhc.c ~ exgpio.c ~ exiic.c ~ exmct.c ~ expower.c ~ exsysreg.c ~ exuart.c ~ exynos.c ~ exynos_machdep.c ~ files.exynos > New FDT-enabled busses will use a new "fdt" attribute. Unfortunately > this attribute is currently already defined. This define is only used > to disable the unused FDT functionality in the exynos and virtio code. > As the FDT code will be developed in a different manner than the way > those drivers are written today and the functionality has never been > enabled, simply remove the attribute and its users. > ok jsg@ (patrick@) arch/armv7/vexpress ~ pl011.c ~ virtio_mmio.c > New FDT-enabled busses will use a new "fdt" attribute. Unfortunately > this attribute is currently already defined. This define is only used > to disable the unused FDT functionality in the exynos and virtio code. > As the FDT code will be developed in a different manner than the way > those drivers are written today and the functionality has never been > enabled, simply remove the attribute and its users. > ok jsg@ (patrick@) arch/hppa/hppa ~ machdep.c > pool_setipl for floating point context things > ok kettenis@ (dlg@) arch/hppa64/hppa64 ~ machdep.c > pool_setipl for floating point context things > ok kettenis@ (dlg@) arch/i386/conf ~ GENERIC > Remove 'option COMPAT_PCVT' now that X doen't use it anymore. > An X server built after april 3 is needed to be able to start X with > the new kernel. > ok kettenis@ (matthieu@) arch/i386/i386 ~ mpbios.c > Support for 'default configuration' mpbios attachment was never completed, > so instead of halfway configuring this mode and unconditionally panicing, > just don't attach mpbios at all if this mode is detected during probe. > ok kettenis (mlarkin@) arch/macppc/conf ~ GENERIC > Remove 'option COMPAT_PCVT' now that X doen't use it anymore. > An X server built after april 3 is needed to be able to start X with > the new kernel. > ok kettenis@ (matthieu@) arch/macppc/macppc ~ machdep.c > pool_setipl for floating point context things > ok kettenis@ (dlg@) arch/mips64/include ~ pmap.h > Keep pmap_update_{kernel,user}_page() inside pmap.c. (visa@) arch/mips64/mips64 ~ pmap.c > Sync dcaches and invalidate icaches of all active CPUs of a pmap when > making a page executable. This prevents some icache inconsistencies that > could arise when a process modifies its code pages and begins executing > them while switching between CPUs. These inconsistencies caused process > crashes on multiprocessor IP27/IP30 systems under load. > Crashes reported by deraadt@ > Feedback from Miod, thanks! (visa@) ~ pmap.c > Keep pmap_update_{kernel,user}_page() inside pmap.c. (visa@) ~ pmap.c > Make pmap_invalidate_*_page() and pmap_update_*_page() operate only on > the local TLB and add pmap_shootdown_page() for invalidating remote > TLBs. Where the code previously updated a remote TLB entry, the code now > issues a remote invalidation, like in architectures with a > hardware-managed TLB. This eases work in the MP land because > invalidations do not need to strictly follow the order of page table > updates. > Almost as a side effect, pmap_emulate_modify() no longer touches remote > TLBs. It is no use to force a TLB D bit on other CPUs because they might > not need it. Moreover, a shootdown IPI probably has a higher overhead > than a local TLBModified exception. (visa@) arch/zaurus/conf ~ GENERIC > Remove 'option COMPAT_PCVT' now that X doen't use it anymore. > An X server built after april 3 is needed to be able to start X with > the new kernel. > ok kettenis@ (matthieu@) conf ~ param.c > Bump the default of cachepercent to 90 to see if we can find problems > before > we try to remove it entirely > ok deraadt@ (beck@) ~ files > Keep db_write_cmd() in the only place where it is used, just like we did > with db_show_regs(). (mpi@) crypto ~ crypto.c ~ cryptodev.h > Add a mechanism for dispatching mpsafe crypto operations. This adds a new > CRYPTOCAP_F_MPSAFE flag that crypto implementations can set to indicate > that > their cc_process() implementation can safely run without holding the kernel > lock. > ok mikeb@ (kettenis@) ddb - db_write_cmd.c ~ db_command.c ~ db_extern.h > Keep db_write_cmd() in the only place where it is used, just like we did > with db_show_regs(). (mpi@) ~ db_access.c ~ db_access.h ~ db_break.c ~ db_watch.c > Start reducing the dependence on <uvm/uvm_param.h> by using int-1-0 > instead of boolean_t-TRUE-FALSE. (mpi@) ~ db_break.c ~ db_break.h ~ db_command.c ~ db_command.h ~ db_examine.c ~ db_expr.c ~ db_extern.h ~ db_input.c ~ db_lex.c ~ db_lex.h > Do not expose private functions. (mpi@) - db_dwarf.h ~ db_dwarf.c ~ db_elf.c ~ db_sym.h > Collapse db_dwarf.h into db_sym.h > ok matthew@ (mpi@) dev ~ softraid.c > Change a variable name (chunk_no -> cid) to make a couple of code > chunks more obviously the same. Reduces size of upcoming diff. No > functional change. (krw@) ~ softraid.c > Use variable 'cid' in for(;;) rather than 'i' with an assignment > 'cid = i;' when break'ing. Makes code consistent with same search > later. No functional change and shrinks later functional diff. (krw@) ~ softraid.c > Use consistent intro comment when searching for the first offline > chunk and perhaps save the next person reading the code some > confusion. (krw@) dev/acpi ~ dwiic.c > Print a meaningful interrupt string for i2c devices. (kettenis@) ~ dwiic.c > Match on Cherry Trail. (kettenis@) dev/i2c ~ i2cvar.h ~ ihidev.c > Print a meaningful interrupt string for i2c devices. (kettenis@) dev/ic ~ nvme.c > allocate an array of entries, not pointers for the queues > this solves my memory corruption problem with a samsung sm951 in a > particular slot on a dell 2950. > hilariously, i had picked values which masked this problem on > sparc64. i randomly picked 128 as the number of entries on the > queues, and dmamem allocs get rounded up to PAGE_SIZE. on amd64 and > sparc64 this meant i was asking for 128 * 8 (sizeof pointer), or > 1024 bytes, which got rounded up to 4096 and 8192 on each arch > respectively. 128 * 64 (the size of a submission queue entry) is > 8192, so it worked fine on sparc64 for that reason, but randomly > blows up on amd64. the 2950 above allocated mbufs out of the page > after the submission queue, which i ended over overwriting. > anyway. let's move on. (dlg@) ~ re.c ~ rtl81x9reg.h > If RTL8111E on PC Engines APU is detected, configure NIC LEDs to display > link. > Normally this would be setup in the vendor-programmed eeprom, but in this > case > it hasn't been done and the rather unfortunate default results in *only* a > normally-off light for network activity, nothing for ethernet link, so it's > too easy to mistake the machine for being powered down. > hw.vendor/hw.machine > idea from naddy@, testing jasper@, ok deraadt@ (sthen@) dev/isa ~ asmc.c > lower case temperature descriptions and separate fan description from fan > location by a comma to avoid ambiguity with newer models > hint from kettenis (last year) (jung@) ~ asmc.c > do not try to probe light sensors for machines with none available, this > was > already fixed in -r1.7 (for kettenis macmini), but since then the code was > heavily shuffled and moved around and this regression was re-introduced > choose a different fix now and introduce a light sensor flag for the > different > models to allow or avoid the probing > prodded by landry (macmini again) (jung@) dev/pci ~ pcidevs > Add some missing Braswell/Cherry Trail entries and fix a typo. (kettenis@) ~ pcidevs.h ~ pcidevs_data.h > regen (kettenis@) ~ pcidevs > add t460p (Sunrise Point H) and x260 (Sunrise Point-LP) ids (jsg@) ~ pcidevs.h ~ pcidevs_data.h > regen (jsg@) ~ azalia.c > enable snooping on Intel 100 Series LP HDA (jsg@) ~ pucdata.c > match on Intel 100 series and 100 series LP PCH (jsg@) ~ ichiic.c > match on Intel 100 Series LP (jsg@) - drm/i915/intel_fb.c > Remove unused file. (kettenis@) dev/pv ~ if_xnf.c ~ xen.c ~ xenvar.h > Remove the ds_offset hack since object offset within a page > is the same for both virtual and physical addresses. (mikeb@) ~ if_xnf.c ~ xen.c ~ xenvar.h > Pass down the backend-id property to children in the attach arguments > and pick it up in xnf(4) and print it in the dmesg line for now. We'll > need to pass it down to the Grant Table code. (mikeb@) ~ if_xnf.c ~ xen.c > Allow to grant memory access to domains other than dom0. > Extend xen_grant_table_enter to take an additional "domain" argument > and extract it from the upper part of the bus_dmamap_load flags (sigh.) > to be able to punch it into the grant table entry. > Issue reported by Marco Peereboom who found that we wouldn't run under > QubesOS that "chains" VMs. He also did the hard work getting the debug > data out of the aforementioned system. (mikeb@) ~ if_xnf.c ~ xen.c ~ xenstore.c ~ xenvar.h > Bind event channels to backend domains > This is another piece of the QubesOS "chained VM" puzzle reported by > Marco Peereboom. (mikeb@) dev/sdmmc ~ sdmmc_cis.c ~ sdmmc_io.c ~ sdmmc_ioreg.h > Implement reading of the CIS for functions 1-7. Don't write a bogus bus > width > value when initializing function 0, and correct a few related #defines. > ok deraadt@ (kettenis@) dev/wscons ~ wsdisplay_compat_usl.c ~ wsdisplay_usl_io.h > Remove 'option COMPAT_PCVT' now that X doen't use it anymore. > An X server built after april 3 is needed to be able to start X with > the new kernel. > ok kettenis@ (matthieu@) net ~ if_pppoe.c ~ if_spppsubr.c > Remove the hack that prevents changing pppoe params at runtime. > The EBUSY hack imposes an order on the ifconfig commands issued > against the pppoe interface used to configure the sppp layer below. > To counter this we use the ENETRESET trick that other drivers use > to tell the pppoe layer that sppp has requested a stop/init reset > sequence to proceed which we oblige with in case pppoe is UP and > RUNNING. > Tested by semarie@ and Jan Schreiber <[email protected]>, thanks! (mikeb@) ~ if_vlan.c ~ if_vlan_var.h > make setting a vlan interfaces lladdr more likely to work > the recent vlan code sets the vlan interfaces mac address to the > parent interfaces mac address when it is brought up, and resets it > when the vlan interface is brought down. > now, if you set a mac address manually (eg, ifconfig vlanX lladdr > f0:0b:a7:ba:2b:00), vlan(4) ignores the parents mac address and > never resets its own. > to make this work, setting a custom lladdr on a vlan interface makes > the parent interface promisc so the packets wont be filtered by the > hardware interface. > setting the mac address to 00:00:00:00:00:00 resets this behavior > and makes the interface inherit the parents mac again. > issue reported by and fix tested by paul de weerd (dlg@) ~ if_vlan.c > tabs, not spaces > no functional change (dlg@) netinet ~ in.c ~ ip_input.c ~ ip_output.c > Put a KERNEL_LOCK/UNLOCK dance around sections that still need some > work in the forwarding path. > Tested by Hrvoje Popovski, ok dlg@ (mpi@) ~ ip_input.c ~ ip_output.c > Unbreak RAMDISK, found by deraadt@ (mpi@) ~ ip_input.c > Instead of freeing a cached RTF_MPATH route after using it, free it > when the next packet needs to be forwarded, just like if the route > was invalid. > ok mikeb@, claudio@ (mpi@) ~ in_pcb.c > Use the correct byte-order when checking against baddynamic ports, > restoring pre-1.190 behaviour. ok millert@ mpi@ (sthen@) netinet6 ~ ip6_forward.c ~ ip6_input.c > Instead of freeing a cached RTF_MPATH route after using it, free it > when the next packet needs to be forwarded, just like if the route > was invalid. > ok mikeb@, claudio@ (mpi@) sys ~ pool.h > Remove some incorrect and outdated references to pool debugging from pool.h > and pool(9) manpage > ok dlg (mlarkin@) == usr.bin =========================================================== 10/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin file ~ magic.5 > typos; (jmc@) ssh ~ ssh_config.5 > tweak previous; (jmc@) ~ ssh-dss.c ~ ssh-ecdsa.c ~ ssh-ed25519.c ~ ssh-rsa.c > make argument == NULL tests more consistent (djm@) vi ~ cl/cl_term.c > Remove some useless code. > Minor tweak and OK schwarze@ > OK tb@ (martijn@) ~ ex/ex_script.c > Remove not implemented decliration of sscr_pty. (martijn@) ~ cl/cl_main.c > Remove pointless reenter variable. > OK millert@ (martijn@) == usr.sbin ========================================================== 11/11 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin eigrpd ~ eigrpd.c ~ eigrpe.c ~ rde.c > Revert previous commit. > When a process receives an EOF on a socketpair, it removes the event > handler for that fd and then calls event_loopexit(). Once the process > leaves the main loop, it calls its shutdown function. With that said, > revert the previous patch because it was unnecessary. > Pointed out and ok by deraadt@ (renato@) httpd ~ server.c > Use log_warnx() instead of log_warn() when the failure will not have > resulted in errno being set. > ok reyk@ (jsing@) ~ httpd.conf.5 > from tim baumgard: a location section may not include hsts; > to that, i've added alias and tls > no feedback on this diff, so let's hope i'm right/. (jmc@) ~ server_fcgi.c > Always pass QUERY_STRING variable. > According to the RFC it is empty when no query string was found. > From Tim Baumgard <[email protected]>o > ok florian@ (chrisz@) ~ httpd.conf.5 > Document CGI variables. Work done by Tim Baumgard <[email protected]> > I clarified DOCUMENT_URI and SCRIPT_NAME. > ok florian@ (chrisz@) ~ httpd.conf.5 > new sentence, new line; (jmc@) smtpd ~ smtpctl.8 > fix typo, it is supposed to be smtpctl trace "filters" not "filter" > from Boudewijn Dijkstra (jung@) ~ smtpd.8 > document the -T flag > original diff from Bernard Spil > ok millert (jung@) ~ smtpd.8 > add -T to SYNOPSIS; (jmc@) ~ parse.y ~ smtpd.c ~ smtpd.conf.5 ~ ssl.c ~ ssl.h > Use automatic DH parameters, instead of fixed ones. Also disable DHE by > default since it is computationally expensive and a potential DoS vector. > ok gilles@ (jsing@) =============================================================================== _______________________________________________ owc mailing list [email protected] http://www.squish.net/mailman/listinfo/owc
