version 1.919, 2004/04/12 16:48:27 |
version 1.920, 2004/04/19 01:35:22 |
|
|
|
|
<p> |
<p> |
<h3><font color="#0000e0">We are working on OpenBSD-current.</font></h3><p> |
<h3><font color="#0000e0">We are working on OpenBSD-current.</font></h3><p> |
The following list sums up (almost) all the changes made up to April 11. |
The following list sums up (almost) all the changes made up to April 16. |
<p> |
<p> |
|
|
<ul> |
<ul> |
|
<!-- pf.c Sat Apr 17 00:13:36 UTC 2004 --> |
|
<li>Have <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a> block unconditionally when the input queue congestion flag is set, instead of doing CPU-intensive rule tests. |
|
<li>If an interface input queue becomes full, set a new congestion flag in the queue structure. Since a full queue usually indicates processing overload, this flag can be used to allow other subsystems to cooperate in easing the situation. |
|
<!-- ^ 20040417 --> |
|
<li>Make <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=netstat&sektion=1">netstat(1)</a> show the number of mbuf clusters in use rather than the number of pages. |
|
<li>Fix a ufs directory-related panic (PR#3672). Fix from FreeBSD. |
|
<li>Have the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=cvs&sektion=1">cvs(1)</a> server check for attempts by a client to walk up the directory tree illegally. |
|
<li>Perform some additional checks on the paths fed to the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=cvs&sektion=1">cvs(1)</a> client by the remote server. |
|
<li>Some address family agnosticism in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bgpd&sektion=8">bgpd(8)</a>. |
|
<li>Let <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bgpctl&sektion=8">bgpctl(8)</a> show IPv6 peer addresses in neighbour view. |
|
<!-- ^ 20040416 --> |
|
<li>Now that <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dhcpd&sektion=8">dhcpd(8)</a> doesn't need to continuously reopen the leases file for writing, have it <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=chroot&sektion=2">chroot(2)</a> to /var/empty and drop privileges after starting up. |
|
<li>Only open the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dhcpd&sektion=8">dhcpd(8)</a> leases file once instead of every time it needs to be written. |
|
<li>Set up new <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dhcpd&sektion=8">dhcpd(8)</a>'s <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bpf&sektion=4">bpf(4)</a> listen filter for the right port. |
|
<li>Have <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mopd&sektion=8">mopd(8)</a> do a <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=chroot&sektion=2">chroot(2)</a> to /var/empty and drop its privileges. |
|
<li>Massive <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=style&sektion=9">style(9)</a> application to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&sektion=8">isakmpd(8)</a>. |
|
<li>Stop another instance of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=syslogd&sektion=8">syslogd(8)</a> from unlinking a socket that's in use. |
|
<li>TCP packets are now allowed to have IPv4 options. |
|
<li>Begin work of separating binary emulation type from the executable file format. |
|
<!-- ^ 20040415 --> |
|
<li>New user and group _mopd, for some obscure reason related to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mopd&sektion=8">mopd(8)</a>. |
|
<li>Enable all supported USB devices in the i386 GENERIC config. |
|
<li>Pass the jobname to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=lpd&sektion=8">lpd(8)</a>'s input filter via the -j option, some filters need it. |
|
<li>When the syncache aborts a connection, don't set an ACK in the RST packet. |
|
<li>Add entries for all supported USB devices to the GENERIC config on sparc64. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=crypto&sektion=9">crypto(9)</a>, add cases for sha2 algorithms in swcr_authcompute(). |
|
<li>Fix <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=systat&sektion=1">systat(1)</a> screen updates after resuming from a ^Z. |
|
<li>Make <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a> antispoof rules work with dynamic interfaces. |
|
<li>Match on all characters of the interface name in the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pfctl&sektion=8">pfctl(8)</a> parser. |
|
<li>Make sure privsep <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tcpdump&sektion=8">tcpdump(8)</a> transitions into STATE_RUN even when writing to stdout with '-w -'. |
|
<li>Implement AI_NUMERICSERV (from RFC3493) in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=getaddrinfo&sektion=3">getaddrinfo(3)</a>. |
|
<li>Since the UDP checksum in mandatory in IPv6, drop any input packets where it's absent and make sure it's set even for error output. |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dhcpd&sektion=8">dhcpd(8)</a> cleanup: |
|
<ul> |
|
<li>Use <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=getopt&sektion=3">getopt(3)</a>. |
|
<li>Remove pidfile code. |
|
<li>Steal some already-sanitised code from <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dhclient&sektion=8">dhclient(8)</a>. |
|
<li>Remove code to handle network access methods we don't care about, only <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bpf&sektion=4">bpf(4)</a> is necessary here. |
|
</ul> |
|
<!-- ^ 20040414 --> |
|
<li>Break out <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dhcpd&sektion=8">dhcpd(8)</a> into usr.sbin/dhcpd and begin The Process. |
|
<li>Have <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=lpd&sektion=8">lpd(8)</a> treat 'o' format files (PostScript) from MacOS 10.1 the same as 'l', not 'f', since PostScript can contain binary data. From FreeBSD. |
|
<li>Parse and handle RFC 2858 Multiprotocol Extensions in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bgpd&sektion=8">bgpd(8)</a>. |
|
<li>Allow <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=restore&sektion=8">restore(8)</a> to recover files larger than 4GB by using size_t instead of long. |
|
<li>Have <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dhclient&sektion=8">dhclient(8)</a> retry up to ten times after a second's delay for interfaces showing no link. |
|
<li>More careful IKE payload parsing in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tcpdump&sektion=8">tcpdump(8)</a>. |
|
<li>New _PATH_DEVFD and _PATH_VAREMPTY constants in <paths.h>. |
|
<li>Fix a null deref in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=syslogd&sektion=8">syslogd(8)</a>. |
|
<li>Have new <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dhcrelay&sektion=8">dhcrelay(8)</a> do a <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=chroot&sektion=2">chroot(2)</a> to /var/empty and drop privileges. |
|
<li>In libpthread, update curthread immediately after a thread switch. |
|
<li>New _dhcp user and group for, funnily enough, the DHCP programs. |
|
<!-- ^ 20040413 --> |
|
<li>Refactor the installer's network initialisation code into IPv4-specific sections in preparation for IPv6. |
|
<li>Start surgery on <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dhcrelay&sektion=8">dhcrelay(8)</a>: |
|
<ul> |
|
<li>Move to /usr/src/usr.sbin/dhcrelay. |
|
<li>Kill pidfile code. |
|
<li>Use <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=daemon&sektion=3">daemon(3)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=getopt&sektion=3">getopt(3)</a> instead of DIY. |
|
</ul> |
|
<li>Huge cleanup of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mopd&sektion=8">mopd(8)</a>. |
|
<li>Implement a rate limit for TCP ACKs of 100pps, and use this more general mechanism for in-window SYN handling too. |
|
<li>Safely handle aborts in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=malloc&sektion=3">malloc(3)</a> etc. without tripping the recursive call handler by mistake. |
|
<li>Fix reliability problems with <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bge&sektion=4">bge(4)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=gdt&sektion=4">gdt(4)</a>. |
|
<!-- ^ 20040412 --> |
<li>Fix an accidental busy-wait in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sensorsd&sektion=8">sensorsd(8)</a>. |
<li>Fix an accidental busy-wait in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sensorsd&sektion=8">sensorsd(8)</a>. |
<li>Increase the maximum number of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pty&sektion=4">pty(4)</a> devices to 992. See the <a href="http://www.openbsd.org/faq/upgrade-minifaq.html">Upgrading Mini-FAQ</a> item 3.5.1 for upgrade instructions. |
<li>Increase the maximum number of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pty&sektion=4">pty(4)</a> devices to 992. See the <a href="http://www.openbsd.org/faq/upgrade-minifaq.html">Upgrading Mini-FAQ</a> item 3.5.1 for upgrade instructions. |
<li>Fix a typo in kern/tty_pty.c when generating <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pty&sektion=4">pty(4)</a> device filenames, soon to be exposed by changes to pty. |
<li>Fix a typo in kern/tty_pty.c when generating <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pty&sektion=4">pty(4)</a> device filenames, soon to be exposed by changes to pty. |