===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/63.html,v
retrieving revision 1.9
retrieving revision 1.10
diff -u -r1.9 -r1.10
--- www/63.html 2018/03/24 17:10:16 1.9
+++ www/63.html 2018/03/24 17:26:39 1.10
@@ -105,12 +105,26 @@
Routing daemons and other userland network improvements:
+ - bgpctl(8) has a new
+ ssv option which outputs rib entries as a single semicolon-seperated
+ like for selection before output.
- ...
Security improvements:
+ - Use even more trap-sleds on various architectures.
+
- More use of .rodata for constant variables in assembly source.
+
- Stop using x86 "repz ret" in dusty corners of the tree.
+
- Introduce "execpromises" in
+ pledge(2).
+
- Prepare for the introduction of MAP_STACK to
+ mmap(2) after 6.3.
+
- Push a small piece of KARL-linked kernel text into the random
+ number generator as entropy at startup.
+
- Put a small random gap at the top of thread stacks, so that attackers
+ have yet another calculation to perform for their ROP work.
- ...
@@ -133,6 +147,11 @@
Code reorganization and other improvements to
malloc(3)
and friends to make them more efficient.
+ When performing suspend or hibernate operations, ensure all filesystems
+ are properly syncronized and marked clean, or if they cannot be
+ put into perfectly clean state on disk (due to open+unlinked files)
+ then mark them dirty, so that a failed resume/unhinbernate is gauranteed
+ to perform fsck.
...