| version 1.82, 2023/10/14 22:35:53 |
version 1.83, 2023/10/14 22:42:43 |
|
|
| <a href="https://man.openbsd.org/OpenBSD-7.3/EC_GROUP_new.3" |
<a href="https://man.openbsd.org/OpenBSD-7.3/EC_GROUP_new.3" |
| >binary field support</a> ("GF2m") removed. |
>binary field support</a> ("GF2m") removed. |
| </ul> |
</ul> |
| |
|
| <li>In <a href="https://man.openbsd.org/bgpd.8">bgpd(8)</a>, |
<li>In <a href="https://man.openbsd.org/bgpd.8">bgpd(8)</a>, |
| <ul> |
<ul> |
| <li>Add first version of flowspec support. Right now only announcement |
<li>Add first version of flowspec support. Right now only announcement |
|
|
| <li>Adjusted example <code>GRACEFUL_SHUTDOWN</code> filter rule in |
<li>Adjusted example <code>GRACEFUL_SHUTDOWN</code> filter rule in |
| the example config to only match on ebgp sessions. |
the example config to only match on ebgp sessions. |
| </ul> |
</ul> |
| |
|
| <li><a href="https://man.openbsd.org/rpki-client.8">rpki-client(8)</a> saw some changes: |
<li><a href="https://man.openbsd.org/rpki-client.8">rpki-client(8)</a> saw some changes: |
| <ul> |
<ul> |
| <li>A 30%-50% performance improvement was achieved through libcrypto's |
<li>A 30%-50% performance improvement was achieved through libcrypto's |
|
|
| <li>Allowed arguments on NOOP. |
<li>Allowed arguments on NOOP. |
| </ul> |
</ul> |
| |
|
| <li>Let <a href="https://man.openbsd.org/pcap_fopen_offline.3" |
<li>Many other changes in various network programms and libraries: |
| >pcap_fopen_offline(3)</a> correctly interpret some |
<ul> |
| <code>LINKTYPE_*</code> values in pcap headers written |
<li>Allow libpcap to read files with some additional link-layer type values. |
| on foreign operating systems. |
<li>Let <a href="https://man.openbsd.org/pcap_fopen_offline.3" |
| <li>Make <a href="https://man.openbsd.org/dig.1">dig(1)</a> |
>pcap_fopen_offline(3)</a> correctly interpret some |
| use less deprecated LibreSSL API. |
<code>LINKTYPE_*</code> values in pcap headers written |
| <li>In <a href="https://man.openbsd.org/ypldap.8">ypldap(8)</a>, |
on foreign operating systems. |
| reduce memory usage when updating larger directories. |
<li>Make <a href="https://man.openbsd.org/dig.1">dig(1)</a> |
| <li>Remove stylistic differences between |
use less deprecated LibreSSL API. |
| <a href="https://man.openbsd.org/arp.8">arp(8)</a> and |
|
| <a href="https://man.openbsd.org/ndp.8">ndp(8)</a> delete() |
|
| function. This makes it easier to spot real changes in behavior. |
|
| <li>Make <a href="https://man.openbsd.org/ndp.8">ndp(8)</a> |
|
| not remove cloning routes when no neighbor entry is |
|
| found with <code>ndp -d</code>. |
|
| <li>Improved error handling in the <a |
|
| href="https://man.openbsd.org/asr_run.3">asr</a> resolver. |
|
| <li>In <a href="https://man.openbsd.org/unwind.8">unwind(8)</a>, |
|
| handle SERVFAIL results on name resolution better. |
|
| <li>In <a href="https://man.openbsd.org/unwind.8">unwind(8)</a>, |
|
| fix a use-after-free bug triggered by fatal write errors |
|
| while sending TCP responses. |
|
| <li>In the router advertisement daemon |
|
| <a href="https://man.openbsd.org/rad.8">rad(8)</a>, update the default |
|
| timers for prefix preferred and valid lifetimes to use the values from |
|
| RFC 9096. |
|
| <li>In <a href="https://man.openbsd.org/slaacd.8">slaacd(8)</a>, |
|
| remove artificial limit of 2 hours on a PIO lifetime. |
|
| <li>Make <a href="https://man.openbsd.org/ypldap.8">ypldap(8)</a> |
|
| more resilient when some servers are |
|
| misbehaving: keep trying LDAP servers until full results arrive |
|
| rather than just until one accepts the TCP connection. |
|
| <li>New <a href="https://man.openbsd.org/ifconfig.8#wgdescription" |
|
| >wgdescription</a> parameter to |
|
| <a href="https://man.openbsd.org/ifconfig.8">ifconfig(8)</a> |
|
| to set a string describing the |
|
| <a href="https://man.openbsd.org/wg.4">wg(4)</a> peer. |
|
| <li>Let <a href="https://man.openbsd.org/ifconfig.8">ifconfig(8)</a> |
|
| prefix the interface name to many error and warning messages. |
|
| <li>Make the <code>tlsv1.0</code> and <code>tlsv1.1</code> options |
|
| in <a href="https://man.openbsd.org/relayd.8">relayd(8)</a> |
|
| do nothing, as one should use the default <code>tlsv1.2</code> |
|
| instead. |
|
| <li>Fix IPv6 routes being changed by |
|
| <a href="https://man.openbsd.org/relayd.8">relayd(8)</a> |
|
| with Routers configuration. |
|
| <li>In <a |
|
| href="https://man.openbsd.org/dhcrelay6.8">dhcrelay6(8)</a>, do not |
|
| ignore the AF_LINK entries of <a |
|
| href="https://man.openbsd.org/carp.4">carp(4)</a> interfaces. |
|
| <li>Allow libpcap to read files with some additional link-layer type values. |
|
| <li>Improve the config parser of radiusd(8) to better handle |
|
| comments, improve error messages and plug a memory leak. |
|
| <li>In <a href="https://man.openbsd.org/radiusd.8">radiusd(8)</a>, |
|
| add request or response decoration feature which is used through the |
|
| radiusd module interface. This makes additional modules can modify |
|
| RADIUS request or response messages. Also add new "radius_standard" |
|
| module which uses this new feature, provides some generic features |
|
| like "strip-atmark-realm" which removes the realm part from the |
|
| User-Name attribute. |
|
| <li>Allow UDP for built-in <a |
|
| href="https://man.openbsd.org/inetd.8">inetd(8)</a> services on |
|
| 127.0.0.1. This restriction was added in year 2000 due to IPv6 compatibleand |
|
| mapped addresses. Nowadays our kernel does not support these IPv6 |
|
| features and blocks localhost addresses on non-loopback interfaces. |
|
| Make IPv4 127.0.0.1/8 and IPv6 ::1 behave identically and provide |
|
| local services if configured. |
|
| <li>In <a href="https://man.openbsd.org/spamd.8">spamd(8)</a>, log a |
|
| dummy "<unknown>" IP address in the unlikely event that getnameinfo(3) |
|
| fails. |
|
| |
|
| |
<li>Remove stylistic differences between |
| |
<a href="https://man.openbsd.org/arp.8">arp(8)</a> and |
| |
<a href="https://man.openbsd.org/ndp.8">ndp(8)</a> delete() |
| |
function. This makes it easier to spot real changes in behavior. |
| |
<li>Make <a href="https://man.openbsd.org/ndp.8">ndp(8)</a> |
| |
not remove cloning routes when no neighbor entry is |
| |
found with <code>ndp -d</code>. |
| |
|
| |
|
| |
<li>Improved error handling in the <a |
| |
href="https://man.openbsd.org/asr_run.3">asr</a> resolver. |
| |
|
| |
<li>In <a href="https://man.openbsd.org/unwind.8">unwind(8)</a>, |
| |
handle SERVFAIL results on name resolution better. |
| |
<li>In <a href="https://man.openbsd.org/unwind.8">unwind(8)</a>, |
| |
fix a use-after-free bug triggered by fatal write errors |
| |
while sending TCP responses. |
| |
|
| |
<li>In the router advertisement daemon |
| |
<a href="https://man.openbsd.org/rad.8">rad(8)</a>, update the default |
| |
timers for prefix preferred and valid lifetimes to use the values from |
| |
RFC 9096. |
| |
<li>In <a href="https://man.openbsd.org/slaacd.8">slaacd(8)</a>, |
| |
remove artificial limit of 2 hours on a PIO lifetime. |
| |
|
| |
<li>In <a href="https://man.openbsd.org/ypldap.8">ypldap(8)</a>, |
| |
reduce memory usage when updating larger directories. |
| |
<li>Make <a href="https://man.openbsd.org/ypldap.8">ypldap(8)</a> |
| |
more resilient when some servers are |
| |
misbehaving: keep trying LDAP servers until full results arrive |
| |
rather than just until one accepts the TCP connection. |
| |
|
| |
<li>New <a href="https://man.openbsd.org/ifconfig.8#wgdescription" |
| |
>wgdescription</a> parameter to |
| |
<a href="https://man.openbsd.org/ifconfig.8">ifconfig(8)</a> |
| |
to set a string describing the |
| |
<a href="https://man.openbsd.org/wg.4">wg(4)</a> peer. |
| |
|
| |
<li>Let <a href="https://man.openbsd.org/ifconfig.8">ifconfig(8)</a> |
| |
prefix the interface name to many error and warning messages. |
| |
|
| |
<li>Make the <code>tlsv1.0</code> and <code>tlsv1.1</code> options |
| |
in <a href="https://man.openbsd.org/relayd.8">relayd(8)</a> |
| |
do nothing, as one should use the default <code>tlsv1.2</code> |
| |
instead. |
| |
<li>Fix IPv6 routes being changed by |
| |
<a href="https://man.openbsd.org/relayd.8">relayd(8)</a> |
| |
with Routers configuration. |
| |
|
| |
<li>In <a |
| |
href="https://man.openbsd.org/dhcrelay6.8">dhcrelay6(8)</a>, do not |
| |
ignore the AF_LINK entries of <a |
| |
href="https://man.openbsd.org/carp.4">carp(4)</a> interfaces. |
| |
|
| |
<li>Improve the config parser of radiusd(8) to better handle |
| |
comments, improve error messages and plug a memory leak. |
| |
<li>In <a href="https://man.openbsd.org/radiusd.8">radiusd(8)</a>, |
| |
add request or response decoration feature which is used through the |
| |
radiusd module interface. This makes additional modules can modify |
| |
RADIUS request or response messages. Also add new "radius_standard" |
| |
module which uses this new feature, provides some generic features |
| |
like "strip-atmark-realm" which removes the realm part from the |
| |
User-Name attribute. |
| |
|
| |
<li>Allow UDP for built-in <a |
| |
href="https://man.openbsd.org/inetd.8">inetd(8)</a> services on |
| |
127.0.0.1. This restriction was added in year 2000 due to IPv6 compatibleand |
| |
mapped addresses. Nowadays our kernel does not support these IPv6 |
| |
features and blocks localhost addresses on non-loopback interfaces. |
| |
Make IPv4 127.0.0.1/8 and IPv6 ::1 behave identically and provide |
| |
local services if configured. |
| |
|
| |
<li>In <a href="https://man.openbsd.org/spamd.8">spamd(8)</a>, log a |
| |
dummy "<unknown>" IP address in the unlikely event that getnameinfo(3) |
| |
fails. |
| |
</ul> |
| </ul> |
</ul> |
| |
|
| <li><a href="https://man.openbsd.org/tmux.1">tmux(1)</a> improvements and bug fixes: |
<li><a href="https://man.openbsd.org/tmux.1">tmux(1)</a> improvements and bug fixes: |
![[BACK]](/icons/back.gif){kind=icon}
Return to 74.html CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www