version 1.15, 2023/04/03 03:40:32 |
version 1.16, 2023/04/03 04:02:09 |
|
|
driver for the Synopsis DesignWare Ethernet QoS controller used on the |
driver for the Synopsis DesignWare Ethernet QoS controller used on the |
NXP i.MX8MP, the Rockchip RK35xx series and Intel Elkhart Lake. |
NXP i.MX8MP, the Rockchip RK35xx series and Intel Elkhart Lake. |
<li>Worked around an issue on the StarFive JH7100 SoC to make <a |
<li>Worked around an issue on the StarFive JH7100 SoC to make <a |
href="https://man.openbsd.org/dwge.4">dwge(4)</a> ethernet work |
href="https://man.openbsd.org/dwge.4">dwge(4)</a> Ethernet work |
reliably on the StarFive VisionFive 1 board. |
reliably on the StarFive VisionFive 1 board. |
<li>In <a href="https://man.openbsd.org/mvneta.4">mvneta(4)</a>, |
<li>In <a href="https://man.openbsd.org/mvneta.4">mvneta(4)</a>, |
passed MII flags depending on the phy mode specified in the device |
passed MII flags depending on the phy mode specified in the device |
|
|
this feature. |
this feature. |
<li>Execute-Only permission on memory mappings. This uses hardware |
<li>Execute-Only permission on memory mappings. This uses hardware |
support where possible and emulation where the hardware does not have |
support where possible and emulation where the hardware does not have |
seperate execute only features. |
separate execute only features. |
<li>Stack permission on mappings: On every system call the stack |
<li>Stack permission on mappings: On every system call the stack |
pointer is checked. It must point to a mapping that has MAP_STACK |
pointer is checked. It must point to a mapping that has MAP_STACK |
permissions. |
permissions. |
|
|
href="https://man.openbsd.org/bgplgd.8">bgplgd(8)</a>: |
href="https://man.openbsd.org/bgplgd.8">bgplgd(8)</a>: |
<ul> |
<ul> |
<li>Improved performance by optimising the output filters |
<li>Improved performance by optimising the output filters |
<li>Add Autonomous System Provider Authorization (ASPA) validaton |
<li>Add Autonomous System Provider Authorization (ASPA) validation |
based on draft-ietf-sidrops-aspa-verification-12 |
based on draft-ietf-sidrops-aspa-verification-12 |
<li>Introduce avs (ASPA validation state) filter and bgpctl |
<li>Introduce avs (ASPA validation state) filter and bgpctl |
filter argument |
filter argument |
|
|
(such as 'https://') in the SIA signedObject access method. |
(such as 'https://') in the SIA signedObject access method. |
<li>Check that the KeyUsage extension is set to nothing but |
<li>Check that the KeyUsage extension is set to nothing but |
digitalSignature on End-Entity certificates. |
digitalSignature on End-Entity certificates. |
<li>Chect that the KeyUsage extension is set to nothing but keyCertSign |
<li>Check that the KeyUsage extension is set to nothing but keyCertSign |
and CRLSign on CA certificates. |
and CRLSign on CA certificates. |
<li>Check that the ExtendedKeyUsage extension is absent on CA |
<li>Check that the ExtendedKeyUsage extension is absent on CA |
certificates. |
certificates. |
|
|
of private keys as some systems are starting to disable RSA/SHA1 |
of private keys as some systems are starting to disable RSA/SHA1 |
in libcrypto. |
in libcrypto. |
<li>sftp-server(8): fix a memory leak. GHPR363 |
<li>sftp-server(8): fix a memory leak. GHPR363 |
<li>ssh(1), sshd(8), ssh-keyscan(1): remove vestigal protocol |
<li>ssh(1), sshd(8), ssh-keyscan(1): remove vestigial protocol |
compatibility code and simplify what's left. |
compatibility code and simplify what's left. |
<li>Fix a number of low-impact Coverity static analysis findings. |
<li>Fix a number of low-impact Coverity static analysis findings. |
These include several reported via bz2687 |
These include several reported via bz2687 |