version 1.93, 2019/06/01 22:54:16 |
version 1.94, 2019/06/01 23:12:47 |
|
|
<li>Tighter pledge for <a href="https://man.openbsd.org/at.1">at(1)</a>. |
<li>Tighter pledge for <a href="https://man.openbsd.org/at.1">at(1)</a>. |
<li>Fixed and simplified pledge logic for |
<li>Fixed and simplified pledge logic for |
<a href="https://man.openbsd.org/nc.1">nc(1)</a>. |
<a href="https://man.openbsd.org/nc.1">nc(1)</a>. |
<li>More application of |
<li>More application of |
<a href="https://man.openbsd.org/recallocarray.3">recallocarray(3)</a> |
<a href="https://man.openbsd.org/recallocarray.3">recallocarray(3)</a> |
in userland, and tracked sizes to |
in userland, and tracked sizes to |
<a href="https://man.openbsd.org/free.9">free(9)</a> in the kernel. |
<a href="https://man.openbsd.org/free.9">free(9)</a> in the kernel. |
<li>Achieve higher levels of paranoia regarding structure packing, and |
<li>Achieve higher levels of paranoia regarding structure packing, and |
clear many kernel objects before passing to userland. |
clear many kernel objects before passing to userland. |
<li>Disable some optimizations in |
<li>Disable some optimizations in |
<a href="https://man.openbsd.org/clang.1">clang(1)</a> |
<a href="https://man.openbsd.org/clang.1">clang(1)</a> |
due to incompatibility with security. |
due to incompatibility with security. |
<li>For instance, cope with |
<li>For instance, cope with |
<a href="https://man.openbsd.org/clang.1">clang(1)</a>'s assumption |
<a href="https://man.openbsd.org/clang.1">clang(1)</a>'s assumption |
that static or const |
that static or const |
objects placed in unknown sections (such as .openbsd.randomdata) |
objects placed in unknown sections (such as .openbsd.randomdata) |
are surely always 0, and therefore such memory accesses can be |
are surely always 0, and therefore such memory accesses can be |
|
|
<a href="https://man.openbsd.org/dhcrelay.8">dhcrelay(8)</a> |
<a href="https://man.openbsd.org/dhcrelay.8">dhcrelay(8)</a> |
logging to stderr when it is started with the -d option. |
logging to stderr when it is started with the -d option. |
</ul> |
</ul> |
|
|
<li><a href="https://man.openbsd.org/dhclient.8">dhclient(8)</a> improvements: |
<li><a href="https://man.openbsd.org/dhclient.8">dhclient(8)</a> improvements: |
<ul> |
<ul> |
<li>Log messages reworked and clarified, in particular by prefixing |
<li>Log messages reworked and clarified, in particular by prefixing |
|
|
<li>Power off all codecs in |
<li>Power off all codecs in |
<a href="https://man.openbsd.org/azalia.4">azalia(4)</a> to avoid static |
<a href="https://man.openbsd.org/azalia.4">azalia(4)</a> to avoid static |
noise in speakers and headphones on reboot. |
noise in speakers and headphones on reboot. |
<li>Fix i386 boot regression seen on very old 486DX CPUs. |
<li>Fix i386 boot regression seen on very old 486DX CPUs. |
<li>New <a href="https://man.openbsd.org/witness.4">witness(4)</a> tool |
<li>New <a href="https://man.openbsd.org/witness.4">witness(4)</a> tool |
for debugging lock order issues in the kernel. |
for debugging lock order issues in the kernel. |
The tool is not built in by default, and only amd64, hppa and i386 |
The tool is not built in by default, and only amd64, hppa and i386 |
are supported. |
are supported. |
<li>Modernize some bizzare tty behaviours of getty(8). |
<li>Modernize some bizzare tty behaviours of getty(8). |
<li>Some subtle changes to pledge(2) to satisfy requirements observed |
<li>Some subtle changes to pledge(2) to satisfy requirements observed |
in real life. |
in real life. |
<li>Prefer use of waitpid(2) rather than wait(3) where possible, to |
<li>Prefer use of waitpid(2) rather than wait(3) where possible, to |
avoid problems with pre-existing children. |
avoid problems with pre-existing children. |
<li>Rewrite swaths of machine-dependent system call stub code in ld.so(1) |
<li>Rewrite swaths of machine-dependent system call stub code in ld.so(1) |
|
|
new-style private keys. Fixes problems related to private key |
new-style private keys. Fixes problems related to private key |
handling for no-OpenSSL builds. |
handling for no-OpenSSL builds. |
<li>ssh(1): warn and do not attempt to use keys when the public and |
<li>ssh(1): warn and do not attempt to use keys when the public and |
private halves do not match. |
private halves do not match. |
<li>sftp(1): don't print verbose error message when ssh disconnects |
<li>sftp(1): don't print verbose error message when ssh disconnects |
from under sftp. |
from under sftp. |
<li>sshd(8): fix keepalive scheduling problem: activity on a forwarded |
<li>sshd(8): fix keepalive scheduling problem: activity on a forwarded |
|
|
<a href="https://man.openbsd.org/tbl.7">tbl(7)</a> |
<a href="https://man.openbsd.org/tbl.7">tbl(7)</a> |
parsing and formatting, |
parsing and formatting, |
including automatic line wrapping inside table columns. |
including automatic line wrapping inside table columns. |
<li>Many improvements to |
<li>Many improvements to |
<a href="https://man.openbsd.org/eqn.7">eqn(7)</a> |
<a href="https://man.openbsd.org/eqn.7">eqn(7)</a> |
parsing and formatting, including better font selection, |
parsing and formatting, including better font selection, |
recognition of well-known mathematical function names, and writing |
recognition of well-known mathematical function names, and writing |
of <code><mn></code> and <code><mo></code> HTML tags. |
of <code><mn></code> and <code><mo></code> HTML tags. |