version 1.891, 2003/10/30 17:42:07 |
version 1.892, 2003/11/02 17:42:52 |
|
|
|
|
<p> |
<p> |
<h3><font color="#0000e0">We are working on OpenBSD-current.</font></h3><p> |
<h3><font color="#0000e0">We are working on OpenBSD-current.</font></h3><p> |
The following list sums up (almost) all the changes made up to October 16. |
The following list sums up (almost) all the changes made up to November 1. |
<p> |
<p> |
|
|
<ul> |
<ul> |
|
<li>Preserve the debug flag when enabling <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a>. |
|
<!-- ^ 20031102 --> |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=top&sektion=1">top(1)</a>, check for signals at the right time and handle stdin failures better. |
|
<!-- ^ 20031101 --> |
|
<li>Have <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=patch&sektion=1">patch(1)</a> determine the filename in same manner as GNU patch. |
|
<li>New --posix option for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=patch&sektion=1">patch(1)</a> for, uh, strict POSIX conformance. |
|
<li>Set pkgpath in the correct order in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pkg_add&sektion=1">pkg_add(1)</a> etc. |
|
<li>Re-add the SATA mode detection and reset-pause-IDENTIFY fixes to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=wdc&sektion=4">wdc(4)</a>. Drive reset fixes need further testing. |
|
<li>Allocate the right number of elements in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=hashinit&sektion=9">hashinit(9)</a> (PR#3537.) |
|
<li>Look up the groupname (not the username) when getting the gid from a tarfile in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pkg_add&sektion=1">pkg_add(1)</a> and friends. Also set file ownership before the mode. |
|
<li>Add IPv6 support to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a>. |
|
<li>Sync libedit to NetBSD as of 2003-10-01, with some local string cleaning and history bug fixes. There are some api changes as a result of this update. |
|
<li>New port, <a href="http://www.openbsd.org/pegasos.html">OPENBSD/pegasos</a>. |
|
<li>Fix insufficient length check in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=route6d&sektion=8">route6d(8)</a> (KAME PR#507.) |
|
<!-- ^ 20031031 --> |
|
<li>Try to deal with <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=strdup&sektion=3">strdup(3)</a> failures in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=init&sektion=8">init(8)</a>. |
|
<li>More detective work from the spelling police, double-word branch. |
|
<li>Fix <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=lc&sektion=4">lc(4)</a> multicast filter initialisation. |
|
<!-- ^ 20031030 --> |
|
<li>Backout recent <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=wdc&sektion=4">wdc(4)</a> reset, identify and mode detection changes, they are breaking things. |
|
<li>Fix <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a> binat for incoming connections when a netblock (not just a single address) is used as the rule source (PR#3535.)<br> |
|
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> |
|
<li><font color="#e00000"><strong>RELIABILITY FIX: A user with write permission to httpd.conf or a .htaccess file can crash <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=httpd&sektion=8">httpd(8)</a> or potentially run arbitrary code as the user</strong> www <strong> (although it is believed that ProPolice will prevent code execution.)</strong></font><br> |
|
<a href="errata.html#httpd">A source code patch is available</a>.<br> |
|
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> |
|
<!-- ^ 20031029 --> |
|
<li>Do a better job of finding the proper partition in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=growfs&sektion=8">growfs(8)</a>. |
|
<li>Evaluate dependencies earlier in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pkg_delete&sektion=1">pkg_delete(1)</a>, and if the check fails just give a list of the required removals and quit. |
|
<li>Don't die if getsockopt(..., TCP_NODELAY, ...) fails in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a>. |
|
<!-- ^ 20031028 --> |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=wdc&sektion=4">wdc(4)</a>, add a pause between a drive reset and an IDENTIFY command, to allow for units that are sick just after a reset. |
|
<li>Don't do ATA mode detection for SATA drives, some drives really don't like it. |
|
<li>Set the skew properly when rescheduling <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> advertisements. |
|
<li>Fix an <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mg&sektion=1">mg(1)</a> startup crash. |
|
<li>Don't schedule a <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> advertisement if the interface is on its way down and we run out of mbufs. |
|
<li>Really stop sending advertisements if the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> interface is downed. |
|
<!-- ^ 20031027 --> |
|
<li>Set the maximum value for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sysctl&sektion=3">sysctl(3)</a> kern.stackgap_random maximum to 256MB. |
|
<li>Remove artificial limit on the number of partitions that may be stretched by <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=growfs&sektion=8">growfs(8)</a>. |
|
<li>Early support in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=wi&sektion=4">wi(4)</a> for PRISM 2.5/3 USB adapters. Very limited for now. |
|
<li>Make <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=wdc&sektion=4">wdc(4)</a> reset code more like that in FreeBSD and NetBSD, fixing slave device detection when the master behaves strangely. |
|
<!-- ^ 20031026 --> |
|
<li>Reorganise <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a> state searches for a 30% memory saving. |
|
<li>Don't leak mbufs on carp_output() failures. |
|
<li>Replace a linked list with a hash table for local IP port lookup, dramatically reducing the lookup time (in_pcblookup()) when there are many sockets. |
|
<li>Precompute as much of the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> sha1 hash as possible. |
|
<!-- ^ 20031025 --> |
|
<li>Prevent occasional <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=syslogd&sektion=8">syslogd(8)</a> hangs on receipt of a SIGHUP with a modified syslog.conf file. |
|
<li>Remove a few comparisons of an int to NULL. |
|
<li>Do <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=initgroups&sektion=3">initgroups(3)</a> before chrooting <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=httpd&sektion=8">httpd(8)</a> instead of after, since /etc/group may be of use. |
|
<li>Stop the new <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bpf&sektion=4">bpf(4)</a> write filter blocking everything when no filter is set, and so unbreak DHCP. |
|
<!-- ^ 20031024 --> |
|
<li>Only try to remove a dependent package once in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pkg_delete&sektion=1">pkg_delete(1)</a>. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a>, stir in the full inner hash instead of just sizeof(pointer) bytes of it. |
|
<li>Finally, stop the long long pause for i386 laptop users with disconnected floppy drives. |
|
<li>Make <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pkg_info&sektion=1">pkg_info(1)</a> do the right thing with multiple packages sharing a common stem, e.g. multiple responses for 'pkg_info autoconf'. |
|
<li>Allow <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pkg_delete&sektion=1">pkg_delete(1)</a> to work with package name stems. Oh yes. |
|
<!-- ^ 20031023 --> |
|
<li>Another missing <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=strdup&sektion=3">strdup(3)</a> error check, this time in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tn3270&sektion=1">tn3270(1)</a>. |
|
<li>Reduce the amount of logging <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=spamd&sektion=8">spamd(8)</a> does by default. The new -v option does verbose logging. |
|
<li>Have privilege-separated <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=syslogd&sektion=8">syslogd(8)</a> call setgroups when changing dropping privileges, in line with the same change in newly-separated <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pflogd&sektion=8">pflogd(8)</a>. |
|
<li>Fix a panic when traversing a corrupt msdos filesystem. From NetBSD.<br> |
|
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> |
|
<li>Implement privilege separation in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pflogd&sektion=8">pflogd(8)</a>. Requires creation of _pflogd user and group. |
|
<li>Add locking and write-filtering to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bpf&sektion=4">bpf(4)</a>, so programs running as non-root can hold bpf descriptors without being able to write whatever they like at the link layer or issue dangerous <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ioctl&sektion=2">ioctl(2)</a>s. |
|
<li>Fix <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dc&sektion=1">dc(1)</a>'s J operator with the new extended comparisons. |
|
<li>Switch <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> from keyed sha1 to hmac-sha1. |
|
<li>Implement extended comparison operators in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dc&sektion=1">dc(1)</a>, to allow for an if ... else construct in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bc&sektion=1">bc(1)</a>. |
|
<li>Make un-getting a character from a string work the same as from a file in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dc&sektion=1">dc(1)</a>. |
|
<li>Fix a <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=kqueue&sektion=2">kqueue(2)</a> file descriptor leak under libpthread. |
|
<li>In libpthread, don't bother resetting O_NONBLOCK on descriptors that are not flagged to survive the imminent <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=execve&sektion=2">execve(2)</a>. |
|
<!-- ^ 20031022 --> |
|
<li>Add missing <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=strdup&sektion=3">strdup(3)</a> error check in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tic&sektion=1">tic(1)</a>. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mg&sektion=1">mg(1)</a>, make undo work per-window instead of per-buffer. |
|
<li>Fix late definition of enum XML_Status in <expat.h>. From expat CVS. |
|
<li>A huge number of comment spelling fixes all over the tree. |
|
<li>Make <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a> choke on too-short GSSAPI OIDs. |
|
<!-- ^ 20031021 --> |
|
<li>Switch over to the new package tools. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=netstart&sektion=8">netstart(8)</a>, don't try to initialise <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> interfaces until after physical interfaces are configured. |
|
<li>Fix an endianness bug in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> sha1 code. |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=realloc&sektion=3">realloc(3)</a> cleanup in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ppp&sektion=8">ppp(8)</a>. |
|
<li>Stop all <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> hosts advertising master status when preempt is disabled. |
|
<li>When doing <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a>, Only give an error in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ifconfig&sektion=8">ifconfig(8)</a> when the user tries to set both of advbase and advskew to zero. |
|
<!-- ^ 20031020 --> |
|
<li>Correct a missing <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=strdup&sektion=3">strdup(3)</a> return value check in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=nc&sektion=1">nc(1)</a>. |
|
<li>Fix numfds==0 case in pthreads-optimised <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=select&sektion=2">select(2)</a>. |
|
<li>Add functions to find package name 'stems' (package names without the version number) and use them in the soon-to-be-enabled new <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pkg_info&sektion=1">pkg_info(1)</a>. |
|
<li>Add direct support in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=named&sektion=8">named(8)</a> for SSHFP resource records. |
|
<!-- ^ 20031019 --> |
|
<li>Fix <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bc&sektion=1">bc(1)</a>'s assignment operators (+=, -= etc.) |
|
<li>Add J(jump) and M(mark) operators in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dc&sektion=1">dc(1)</a>, and use them to implement the continue statement in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bc&sektion=1">bc(1)</a>. |
|
<li>Fix out-of-bounds reads in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=make&sektion=1">make(1)</a>, libfreetype and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=xterm&sektion=1">xterm(1)</a>. |
|
<!-- ^ 20031018 --> |
|
<li>Make the recent <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=vnd&sektion=4">vnd(4)</a> numbering change work the way it should. |
|
<li>Enter <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a>, OpenBSD's Common Address Redundancy Protocol for IP high availability and load balancing. |
|
<li>Unbreak <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=httpd&sektion=8">httpd(8)</a> SHA1 code on 64-bit architectures. |
|
<li>Make sure the inode generation number (obtained using arc4random()) is positive. |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pciide&sektion=4">pciide(4)</a> DMA reliability fixes. From NetBSD. |
<!-- ^ 20031017 --> |
<!-- ^ 20031017 --> |
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=strlcpy&sektion=3">strlcpy(3)</a> -> <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=memcpy&sektion=3">memcpy(3)</a> for non-string buffers in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=vi&sektion=1">vi(1)</a>, along with some extra paranoia. |
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=strlcpy&sektion=3">strlcpy(3)</a> -> <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=memcpy&sektion=3">memcpy(3)</a> for non-string buffers in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=vi&sektion=1">vi(1)</a>, along with some extra paranoia. |
<li>Check for signals earlier in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mountd&sektion=8">mountd(8)</a>, so they can be handled before we <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=select&sektion=2">select(2)</a> until a mount request comes in. |
<li>Check for signals earlier in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mountd&sektion=8">mountd(8)</a>, so they can be handled before we <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=select&sektion=2">select(2)</a> until a mount request comes in. |
|
<li>Import new package management tools under src/usr.sbin/pkg_add. Not built by default yet. |
<li>New 'G' malloc.conf option to add a guard page after pagesize-or-larger chunks, and to return less-than-pagesize chunks in random order. |
<li>New 'G' malloc.conf option to add a guard page after pagesize-or-larger chunks, and to return less-than-pagesize chunks in random order. |
<li>Better SATA support in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=wdc&sektion=4">wdc(4)</a>. |
<li>Better SATA support in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=wdc&sektion=4">wdc(4)</a>. |
<li>Fix <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=faithd&sektion=8">faithd(8)</a> args to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=poll&sektion=2">poll(2)</a>. |
<li>Fix <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=faithd&sektion=8">faithd(8)</a> args to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=poll&sektion=2">poll(2)</a>. |
|
|
<li>Completely new BSD-licensed version of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dc&sektion=1">dc(1)</a> using the OpenSSL <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bn&sektion=3">bn(3)</a> routines. |
<li>Completely new BSD-licensed version of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dc&sektion=1">dc(1)</a> using the OpenSSL <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bn&sektion=3">bn(3)</a> routines. |
<li>Have <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=scp&sektion=1">scp(1)</a> check for an error code in remote->remote mode. |
<li>Have <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=scp&sektion=1">scp(1)</a> check for an error code in remote->remote mode. |
<li>When chrooting <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=httpd&sektion=8">httpd(8)</a>, use <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=initgroups&sektion=3">initgroups(3)</a> so that supplementary group IDs are initialised as well. |
<li>When chrooting <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=httpd&sektion=8">httpd(8)</a>, use <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=initgroups&sektion=3">initgroups(3)</a> so that supplementary group IDs are initialised as well. |
<li>Temporarily disable soft interrupts support in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=usb&sektion=4">usb(4)</a> for stability reasons. |
<li>Temporarily disable soft interrupts support in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=usb&sektion=4">usb(4)</a> for stability reasons.<br> |
|
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> |
<li>Several abnormal exit handler fixes to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a>. |
<li>Several abnormal exit handler fixes to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a>. |
<li>Better disk device probe on i386. |
<li>Better disk device probe on i386. |
<li>Correct the signal number validity check in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=csh&sektion=1">csh(1)</a>'s kill command. |
<li>Correct the signal number validity check in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=csh&sektion=1">csh(1)</a>'s kill command. |