===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/plus.html,v
retrieving revision 1.1421
retrieving revision 1.1422
diff -c -r1.1421 -r1.1422
*** www/plus.html 2019/03/11 15:34:29 1.1421
--- www/plus.html 2019/03/13 19:47:51 1.1422
***************
*** 530,535 ****
--- 530,572 ----
Disabled ret-protector and retpoline protections in the clang(1) compiler to regain build performance.
Adjusted httpd(8) to start when TLS is configured but keys and certificates are not yet present.
+
+ Fixed clipping during float to integer conversions in aucat(1).
+ Fixed an error in tmux(1) by ensuring that a non-repeating key used when repeating be treated as an entirely new key press.
+ Tested TLS interoperability between LibreSSL and OpenSSL by implementing a simple SSL client and server in C, then creating four binaries by linking them with LibreSSL or OpenSSL to test API compatibility.
+
+ Defined TLS_CA_CERT_FILE rather than having every application create their own define for /etc/ssl/cert.pem.
+ Corrected unzooming and redrawing of panes in switch-client for tmux(1).
+ Implemented SAFE-INIT-CHAR for ldap(1).
+ Allowed join(1) to join on a multibyte separator.
+ Added new vm.malloc_conf sysctl for malloc(3) flags.
+ Began work to add feature flags for LibreSSL.
+
+ Introduced bn_rand_interval() to allow specifying an interval from which a BIGNUM is chosen uniformly at random.
+ Improved the filters for touchpad scrolling in wscons(4).
+ Modified icmp_input_if() m_pullup to increase the maximum size of required data at the start to simplify code and reduce m_pullup calls.
+ Implemented coordinate blinding for EC_POINT in ssl(8). Renamed the TLS Supported Elliptic Curves extension to Supported Groups re: RFC 7919.
+ Adjusted snmpd(8) promises to remove an unnecessary rpath promise and unveil(2) the snmpe process.
+ Fixed the case where an mbuf cluster is used in icmp(4) to correctly offset the data and generalize checking.
+ Implemented C11's aligned_alloc(3).
+ Adjusted ntpd(8) to be stricter with TLS configuration.
+
+ Updated the opensslfeatures.h to include all of the OPENSSL_NO_* flags that exist in ssl(8). Defined OPENSSL_NO_ASYNC, as libcrypto does not have built-in async features.
+ Fixed an error introduced to tcp(4) that broke setting of a fixed socket send buffer size due to out-of-sync algorithms.
+ Introduced a real Adj-RIB-Out to bgpd(8) and removed the update_rib introduced before 6.4.
+ Added a pledge(2) to ripe and rde in ripd(8) and used unveil(2) to remove file system access for the parent process.
+
+ Changed dhclient(1) to log "LLADDR changed" and "restarting" when LLADDR is modified and the restart is actually executed, no longer saying 'restarting' twice.
+ Adjusted smtpd(8) to apply filter rules only to filtered interfaces.
+ Explicitly disabled xdm-authorization-1 support in X(7) server.
+
+ Changed dhclient(8) to ignore incoming packets and routing socket messages and to cancel any pending protocol timeout when reacting to SIGHUP.
+ Modified top(1) to accept numeric user IDs, making 'top -U 0' and 'u-1000' work.
+ Modified getent(1) to prefer user names over numeric user IDs.
+
+ Disabled LOCKF_DIAGNOSTIC for lockf(3).
+ Allowed smtpd(8) to fork processes at startup and maintain a socketpair with them.
+ Merged libdrm 2.4.96.
Changed smtpd(8) to log tls events as 'tls' and not 'starttls'.
Increased max frame size and hard MTU to allow use of vlan(4) and jumbo frames on ure(4).