===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/71.html,v
retrieving revision 1.14
retrieving revision 1.15
diff -u -r1.14 -r1.15
--- www/71.html 2022/04/09 20:13:15 1.14
+++ www/71.html 2022/04/10 10:31:40 1.15
@@ -93,6 +93,19 @@
Introduced aplnco(4), a driver for the Numerically-controlled oscillator (NCO) clock which drives the audio clocks on Apple silicon.
Introduced tascodec(4), a driver for the TI TAS2770/TAS5770 digital audio amplifier codec found on Apple M1 Macs.
Introduced apldma(4), a driver for the DMA controller found on Apple SoCs.
+ Added support to explicitly power on some PCIe devices on the M1 and M1 Pro/Max through a GPIO controlled by the SMC.
+ Added aplcpu(4), a driver to control the CPU performance levels on Apple SoCs.
+ Modified aplintc(4) to support a newer interrupt controller, making OpenBSD run on M1 Pro/Max machines.
+ Added nvmem support to aplpmu(4) and made it available on Apple SPMI PMUs.
+ Added RTC support to aplsmc(4).
+ Made the arm64 ramdisk installer fetch bwfm(4) firmware from the EFI System Partition on Apple Silicon devices for use during installation and addition to the newly installed system.
+ Added support for controlling keyboard LEDs to aplhidev(4).
+ Added basic GPIO support to aplsmc(4).
+ Ensured apldart(4) keeps the DART enabled in front of the display controller to preserve its access to the framebuffer and continued display.
+ Fixed reading motherboard time on Apple machines with old SMC firmware.
+ Implemented reboot/powerdown support in aplsmc(4).
+ Implemented aplintc(4) support for multiple dies, making OpenBSD work on the M1 Ultra.
Introduced Added gpiokeys(4)
for arm64, a driver which handles events triggered by GPIO keys such
as lid status and power button.
- Added support for controlling keyboard LEDs to aplhidev(4).
Added pclk clock used by dwdog(4) on RK3399 to rkclock(4).
Introduced mpfclock(4), a driver for the PolarFire SoC MSS clock controller.
Implemented powerdown in arm64.
Introduced cdsdhc(4), a driver for the Cadence SD/SDIO/eMMC host controller.
+ Introduced mpfiic(4), a driver for the PolarFire SoC MSS I2C controller.
+ Introduced mpfgpio(4), a driver for the PolarFire SoC MSS GPIO controller.
+ Enabled cduart(4) on arm64.
+ Added mvpinctrl(4) support for the CP115 block found on Marvell CN9K SoCs.
+ Added mvclock(4) support for the AP807 block found on Marvell CN9K SoCs.
Changes on other architectures:
@@ -127,6 +143,12 @@
Enabled dt(4) on macppc.
Increased ddb(1) access to registers on macppc and powerpc64.
Allowed ddb(4) trace through interrupt on macppc.
+ Improved stack unwinding on riscv64 in ddb(4).
+ Fixed kernel stack alignment on riscv64.
+ Fixed RISC-V lld link code when dealing with object files created with "ld -b".
+ Made sure armv7,arm64 and risc-v FDT bootloader code does not write beyond the FDT data structure.
+ Made sure nothing can map address zero on RISC-V.
+
@@ -157,7 +179,11 @@
a renumbered softraid(4) boot device.
Fix hibernate on newer hardware by allowing more memory ranges.
+ If CPU sleep state S4 is not available, use S5 for the ACPI-transitions in hibernate support.
Grew the dmesg(8) buffer on i386 from 4 to 8 pages.
+ Improved tracking of mbuf memory usage in the whole system.
+ Prevent panic in softraid(4) while rebooting if softraid has been disabled.
+ Added code to update hw.power whenever AC state changes on resume.
@@ -194,6 +220,9 @@
href="https://man.openbsd.org/poll.2">poll(2) system call on top
of the kqueue(2)
subsystem, obsoleting the old, non-MP-safe poll backend.
+ Made audio(4) event filters MP-safe.
+ Unlocked getsockname(2).
+ Added kernel interfaces for atomic load and store functions for int and long to be used in reference counted struct members.
@@ -237,6 +266,9 @@
-b bsd.rd, which emulates a PXE boot and performs an
autoinstall.
Made vmm(4) dt(4) tracepoints amd64-only.
+ Provided a login class for vmd(8).
+ Added handling for vmd(8) hitting resource limits when starting a vm and added memory error messages for the user.
+ Added quiesce/wakeup hooks to sync vcpu state in vmm(4).
@@ -246,6 +278,7 @@
href="https://man.openbsd.org/realpath.1">realpath(1), a wrapper
for realpath(3) for
use in ports.
+
Removed an unused decoding of c/h/s from the MBR read from disk
by fdisk(8).
Removed fdisk(8)
@@ -259,7 +292,9 @@
Corrected checksums written by fdisk(8) on big-endian architectures to be little-endian as per spec.
Made fdisk(8) -A preserve BIOS boot partition.
Switched to using fdisk(8) -b to create boot partitions on multiple architectures.
-
+ Used fdisk(8) -b to create the desired 1MB MSDOS boot partition for macppc rather than relying on /usr/mdec/mbr.
+ Made fdisk(8) preserve the EFI System partition when auto-allocating space on GPT disks with magic Apple partitions.
+
Added rcctl(8) "ls
rogue" to show daemons which are running but not set as "enabled" in
rc.conf.local(8).
@@ -287,6 +322,12 @@
/etc/login.conf.d, allowing easy addition of custom login classes from
packages.
Made rcctl(8) look for the login class in both login.conf and login.conf.d/${class}.
+ Enabled subpixel rendering in FreeType.
+ Updated xorg-server to 21.1.3, leaving in place an earlier change to compute the screen resolution from dimensions returned by the screen, reverted by upstream.
+ Added a malloc(3) cache of regions between 128k and 2M to accommodate programs allocating and deallocating regions of these sizes quickly.
+ Added pax(1) support for mtime/atime/ctime extended headers (in not-SMALL builds).
+ Added openvpn ports (udp/1194 & tcp/1194) to /etc/services.
+ Added -k flag to gzip(1) and gunzip(1) to retain (de)compressed file.
@@ -334,6 +375,14 @@
Added optimization for tiny x in cos(3) and sin(3) trigonometry functions.
Made ed(1) flush all stdio streams before running a shell command.
Prevented a file descriptor leak in touch(1) after futimens(2) failure.
+ Fixed vi(1) recovery mode.
+ Added seq(1), a command to print sequences of numbers.
+ Extended and reordered the process accounting information structure acct(5). Flag Day for the acct(2) file format.
+ Fixed setusercontext(3) error when /etc/login.conf is not present.
+ Switched aucat(1) internal sample representation and default file encoding to 24-bit.
+ Switched sndiod(8) internal sample representation to 24-bit fixed point.
+ Fixed glass console and getty(8) interference with Xorg on arm64.
+ Reinstated a drm(4) workaround to get framebuffer size from efifb, preventing fatal errors for the BESSTAR TECH HM90 with Ryzen 9 4900H.
@@ -360,6 +409,7 @@
Stopped binding audio devices exposed by sndiod(8) to physical
devices.
+
Fixed handling of interrupts shared between multiple swiic(4) devices.
Introduced Make com(4) attach over acpi(4) on amd64.
Added address locators for the ACPI "bus" and used these to fix the order of the com(4) devices to match the traditional order on the ISA bus.
Added Intel Jasper Lake to the azalia(4) audio driver.
+ Ensured azalia(4) matches on Intel 300 Series audio, fixing attaching on the Dell G3 3590.
Added Synopsys Designware UART support to com(4).
Fixed an issue where com(4) would attach for a disabled serial port leading to misdirection of the hardware variant and a subsequent hang when /etc/rc runs ttyflags(8) -a.
Fixed sdhc(4) for Jasper Lake eMMC.
Improved how quirks are handled on sdhc(4)-compatible drivers.
Enabled acpibat(4) use with the Surface Go 3.
+ Fixed suspend/resume issues with com(4) at acpi(4).
+ Correlated uaudio(4) and ucc(4) devices attacked over USB in order to adjust the volume of the correct attached audio device rather than the first one attached.
+ Enabled PL011 UART FIFO support in pluart(4).
+ Added support for XBox One game controller on usb.
+ Stopped suspending the tpm(4) device upon hibernation, preventing some systems from hanging when hibernating a second time.
@@ -406,6 +462,13 @@
Enabled hardware vlan tagging for ixl(4).
Re-enabled ixl(4) IPv4, TCP4/6 and UDP4/6 checksum offloading.
Enabled receive checksum offloading on ixl(4).
+ Prevented a possible deadlock in cad(4).
+ Fixed receive filter handling in aq(4).
+ Enable vlan promisc, header stripping and vlan RX/TX offload on aq(4).
+ Enabled checksum offloads on aq(4).
+ Enabled interrupt moderation on aq(4), aiming at around 20k per second.
+ Fixed aq(4) occasional errors seen on rockpro64.
+ Fixed ure(4) vlan transmission with hw tagging.
@@ -470,8 +533,19 @@
Introduced mtw(4), a driver for MediaTek MT7601U wifi devices.
Made iwm(4) attach to PCI devices with product ID 0x31dc, part of the 9560 chip family.
Disabled minimum power consumption in bwfm(4) hostap mode, improving connection reliability when used as an access point.
+ Added support for the BCM4387 to bwfm(4).
Fixed wrong pointer assignment causing the driver to read block ack request information sent by firmware from the wrong offset in iwx(4).
Fixed and reenabled active scans on iwm(4) and iwx(4).
+ Improved roaming stability on iwn(4), particularly with wpa_supplicant.
+ Improved TX performance on urtwn(4) RTL8192EU devices.
+ Added 802.11ac support on iwx(4).
+ Fix TX rate used by rtwn(4) and urtwn(4) for RTS frames.
+ Add initial 802.11ac support to iwm(4).
+ Fixed attach of multiple iwm(4) or iwx(4) interfaces in the same machine.
+ Prevent announcing VHT capabilities on iwm(4) and iwx(4) for 2GHz bands during scans.
+ Fixed iwm(4) 802.11ac throughput at a distance.
+ Enabled mtw(4) on i386, macppc and arm64.
+ Added preliminary ure(4) support for RTL8156B and bug fixes for RTL8153/RTL8156.
@@ -485,6 +559,10 @@
Introduced an optional driver-specific bgscan_done() handler which allows the driver to take control of the roaming teardown sequence, ensuring that race conditions between firmware state and net80211 state are avoided.
Implemented bgscan_done() handlers for iwx(4) and iwm(4).
Taught the net80211 stack to remove corresponding frames from ic_pwrsaveq when a power-saving client decides to leave our hostap interface, preventing a panic.
+ Added initial 802.11ac (VHT) support to the wifi stack.
+ Made tcpdump(8) show 802.11ac VHT capability and operation IEs in -v mode.
+ Added 802.11ac/VHT TX rate adaptation support to the wifi stack.
+ When choosing networks during SSID selection, give a higher score to 11ac and 11n access points, prioritizing 11ac.
@@ -492,6 +570,8 @@
Generic network stack improvements and bugfixes:
- Fixed pfctl(8) $nr incorrect macro expansion.
+
- Fixed pfctl(8) rdr-to rules failing on certain port ranges when explicitly specified.
+
- Ensured the pf(4) "set prio" values are checked consistently.
- Added support for PPP IPCP extensions for DNS to sppp(4).
- Added display of DNS information from sppp(4) to ifconfig(8).
- Switched to calculating pppoe(4) session duration using system uptime rather than UTC.
@@ -501,6 +581,22 @@
yet.
- Fixed veb(4) vport handling to prevent improper drop of packets leaving a vport interface.
- Reworked ix(4) checksum/vlan offloading and enabled it for IPv6.
+
- Enabled IP header checksum offloading in ix(4).
+
- Prevented tweaks to tun(4) if_flags when the NET_LOCK isn't held.
+
- Prevented reopening of tun(4)/tap(4) interfaces which are being destroyed.
+
- Rewrote vxlan(4) to
+ operate independently of bridge(4), create and bind
+ udp sockets and prevent loops.
+
- Stopped hiding the mtu on "bridge" interfaces which do handle l3 traffic in ifconfig(8).
+
- Protected pfsync(4) tdb flags and lists with a mutex to prevent crashes involving pfsync, IPsec and parallel forwarding.
+
- Added mbuf tags to prevent output loops in etherip(4).
+
- Added rtable capability to login.conf(5), allowing to specify the rtable a process uses.
+
- Made su(1) honor the login class routing table when doing a full login with su -l.
+
- Prevented aq(4) nics from writing to mbufs taken off the ring when the interface was taken down.
+
- Fix crash in IPSec while doing parallel IP forwarding.
+
- Fix IP output routines on raw sockets so route sourceaddr can take effect using sendto(2) or similar.
+
- Ensured pcap_lookupdev(3) matches only on complete interface names.
@@ -537,7 +633,11 @@
non-free firmware files if present on the install media.
Made fw_update(8) re-download existing files with failed checksums.
Stopped unregistering firmware with fw_update(8) when the SHA256.sig cannot be fetched.
+ Made fw_update(8) use the /snapshots directory only on -current.
Used installboot(8) in riscv64 install.md.
+ Used installboot(8) in install.md for armv7.
+ New logic for pkg_add(1) to avoid excessive moving of files during updates when possible.
+ Ensured that an interrupted arm64 install from the ramdisk kernel can be restarted.
@@ -551,6 +651,7 @@
Fixed vi(1) use after free with unsaved buffer.
Disabled xterm(1) mouse tracking by default.
On arm64 architectures, used "rng-seed" and "kaslr-seed" properties from the device tree to mix extra entropy into the random pool.
+ Made apmd(8) replace /etc/random.seed for hibernate-resumes.
Restricted usbhidctl(1) and usbhidaction(1) file
@@ -558,6 +659,11 @@
href="https://man.openbsd.org/unveil.2">unveil(2).
Updated libexpat to 2.4.4, fixing CVE-2022-23852 and CVE-2022-23990.
Added ps(1) status flag "c" to indicate a process is chrooted.
+ In rpc.rusersd(8) unveil(2) "/dev" read-only
+ instead of using chroot(2).
Routing daemons and other userland network improvements:
@@ -573,6 +679,7 @@
Ensured enabled resolvers are honored by unwind(8) to keep unused forwarders disabled properly.
Installed missing scope identifiers for IPv6 link-local addresses for unwind(8) and resolvd(8).
Allowed interface names as scope-id in IPv6 link-local addresses in unbound(8).
+ Let unwind(8) probe for DNS64 presence with an absolute name, so asr doesn't add search domains and retry.
Fixed httpd(8) to respond with 400 Bad Request when a client sends header lines without a colon.
@@ -583,7 +690,10 @@
Stopped duplicating "Connection: close" headers in relayd(8), only adding it if it's not a websocket response.
In httpd(8), stopped sending content alongside responses to HEAD requests.
Added httpd(8) custom error page facility.
+ Added a gzip-static option to httpd.conf(5), allowing delivery of precompressed files with content-encoding gzip.
+ Improved handling of static compressed gzip files in httpd(8).
+
Made iked.conf(5) proto config option accept a list to allow specifying multiple protocols for a single policy.
Fixed broken key exchange negotiation with matching proposals in iked(8).
@@ -592,6 +702,8 @@
Fixed removal of SAs that could not be flushed with ipsecctl(8) -F.
Fixed a bug where iked(8) sent zero-prefixed NAT-T messages on port 500, causing parsing errors.
Changed isakmpd(8) to log a warning when proto is NULL rather than dereferencing it.
+ Improved message fragment retransmissions for iked(8).
+ Make sure iked(8) vroute messages are correctly aligned, fixes autoconfiguration of addresses on octeon.
@@ -604,15 +716,25 @@
Properly handled .mft files in rpki-client(8), preventing replay attacks using old but still valid files.
Enforced RFC 6384 certificate policy for RPKI in rpki-client(8).
Added a CRL check for manifests to rpki-client(8).
+ Capped the daemon login class datasize at either 1G or 4G depending on the architecture and set the bgpd class datasize to either 16G or 1G.
+ Made it possible to bind and connect to non-default ports in bgpd.conf(5).
+ Fixed overflow protection code in rpki-client(8).
+ Changed the way $macros are expanded in bgpd.conf(5).
+ Implemented most of CMS related checks in rpki-client(8) required by RFC 6488 section 3.
+
Modified syslog.conf(5) examples to use TLS rather than the plaintext protocols.
Stopped ignoring carp(4) interfaces in dhcpleased(8).
Made the dhcpleased(8) host name DHCP option configurable.
Prevented a crash in slaacd(8) due to updating an interface which no longer exists.
+ Prevented a potential crash when slaacd(8) receives more than 7 nameservers.
+ Fixed crash in slaacd(8) when receiving a negative length field for DNS labels.
Fix unveil(2) in ldapd(8), create permissions are required for databases.
Made dhcpd(8) start listening on interface in 'down' state. Interfaces can come up later, at which point dhcpd(8) will start receiving packets.
Added a basic printer for EAPOL packets to tcpdump(8).
+ Made ping(8) print out the source address and sequence number when the signature on an icmp echo reply doesn't match.
+ Rate limit rad(8) router advertisements according to RFC 4861.
@@ -644,12 +766,16 @@
Added attempts to turn on less-capable mouse modes when tmux(1) turns on more-capable ones, in case the terminal doesn't support the desired mode.
Added a tmux(1) option to show arrows for the active pane indicator.
Added a key in tmux(1) copy mode to toggle the position indicator.
+ Added an option in tmux(1) to set the character for unused areas of the terminal.
+ Add tmux(1) option to control if it scrolls into history on clear.
+ Added OSC 7 capability to tmux(1) for setting titles.
OpenSMTPD version
- Stopped smtpd(8) from verifying the cert or CA for a relay using opportunistic TLS.
+
- Enabled TLS verify by default for outbound "smtps://" and "smtp+tls://", restoring documented smtpd(8) behavior.
LibreSSL version
@@ -964,6 +1090,8 @@
Fixed the width of the \h
(horizontal motion)
roff(7)
escape sequence in the PostScript and PDF output modes.
+ Avoid legacy CSS2 syntax and use CSS3 two-value syntax in mandoc(1).
Ports and packages: