===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/plus.html,v
retrieving revision 1.1344
retrieving revision 1.1345
diff -c -r1.1344 -r1.1345
*** www/plus.html 2014/06/22 11:11:00 1.1344
--- www/plus.html 2014/06/25 09:26:44 1.1345
***************
*** 75,80 ****
--- 75,123 ----
+
+ - Stopped building procfs on i386.
+
- In ssl(8) BIO_get_port(), only accept valid port numbers.
+
+
- Made sure uvm(9) kmthread never loops without making progress.
+
- kill(2) an untraced process (instead of looping) if the kernel generates a deadly trap signal and it is ignored.
+
- Specify the correct strength bits for 3DES cipher suites in ssl(8).
+
+
- Protect explicit_bzero(3) from a link-time optimisation.
+
- In ssl(3), wrap getenv(3) OPENSSL_ALLOW_PROXY_CERTS in an issetugid(2) check. Stops setuid(2) applications from being fooled.
+
- Prefix error messages from mandoc(1) with "mandoc: ", so users know where messages came from.
+
- Made "S" and "E" mean the start and end to capture-pane in tmux(1).
+
- Fixed incorrect bounds check in amd64 assembly version of ssl(8) bn_mul_mont().
+
+
- Made tcpdump(8) -v display any bad checksums contained in the header and what the checksum should be.
+
- More tweaking of mandoc(1) set_basedir(): do not error out when getcwd(3) fails; fixed the man-root-dir indicator in say().
+
- In arc4random(3), hard fail with SIGKILL if getentropy(2) returns -1.
+
- Converted CRYPTO_memcmp to timingsafe_memcmp in ssl(8).
+
- Improved error checking in ssl(3) by_dir.c: set error code on error; check malloc(3) return; added missing unlock.
+
- Fixed memory leak in md5(1) digest_file() on ferror(3).
+
- Implemented the membar(9) API for powerpc.
+
- Copy newline when at EOL when tmux(1) is in vi(1) mode.
+
- Made tmux(1) reset the mouse buttons when the mouse wheel is used.
+
- Some terminals send spurious releases for mouse wheel in SGR mouse mode, tmux(1) now suppresses these.
+
- Fixed black screen on lenovo ideapad yoga 2 pro using when using intel(4).
+
+
- Restored previous arc4random(3) behaviour, where fork(2) children would mix in some randomness from the parent process.
+
- Stopped mandoc(1) displaying "unable to open mandoc.db" error messages when updating/deleting individual files.
+
- Ensured fsck_msdos(8) will always keep length of cluster chain up to date. Avoids out of boundary accesses.
+
- Fixed off by one in msdosfs pm_inusemap().
+
- Fixed the use of 16384-bit RSA keys by ssh(1).
+
+
- Changed SSL_COMP_add_compression_method() in ssl(8), so error cases actually return "error" rather than "success".
+
- Disallow __sysctl() in the sshd(8) systrace(1) sandbox (as there is now a dedicated getentropy(2) system call for arc4random(3)).
+
- Implemented the membar(9) API for hppa.
+
- Added configuration bit in vio(4) flags, to workaround qemu < 2.0 bug that prevented VLANs from working.
+
- Be more aggressive flushing L2 cache entries on mips64 RM7000 systems.
+
+
- Set uart based on the io clock rate on octeon II (CN6xxx), as the rate differs from the cpu clock.
+
- Use MAP_INHERIT_ZERO in arc4random(3), to zero out the RNG state if the process forks.
+
- Enabled pci(4) power management on lemote.
+
- Reverted "Always create a local route for every configured IPv4 address" (caused regressions).
+
- Allow the autoinstaller to fetch sets from multiple locations.
- Fixed vnode leak in systrace(4).
- In ssl(8) aes_gcm_cleanup(), clean the entire context (no longer leaving AES key untouched).
***************
*** 873,875 ****
--- 916,923 ----