===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/plus.html,v
retrieving revision 1.1428
retrieving revision 1.1429
diff -c -r1.1428 -r1.1429
*** www/plus.html 2019/04/01 03:16:40 1.1428
--- www/plus.html 2019/04/01 04:50:24 1.1429
***************
*** 82,87 ****
--- 82,130 ----
+
+ -
+
- Changed the way bgpd(8) peers are reloaded by moving the struct peer into bgpd_config. Now parent and session engines are merging the lists.
+
- Modified the autopartitioner in disklabel(8) to grow minimum size for /usr to 1300M, allowing space for the current amd64 minimum sets size of 920M used, additional space for upgrades and relinking of libraries and kernels.
+
- Fixed output accounting when bridge(4) is down.
+
- Restored -t behavior to route(8).
+
- Corrected LED GPIO pin for AR9287-based usb devices.
+
- Added the ability to openrsync(1) to combine rsync:// and -e by splitting rsync_socket() into rsync_connect to establish a TCP connection to the remote daemon, and rsync_socket() to run the actual protocol.
+
- Fixed a memory leak in radiusd(8).
+
+
- Modified several daemons to avoid calling dup2(oldd, newd) when oldd == newd, preventing the descriptor from keeping CLOEXEC flag and being closed unexpectedly by exec().
+
- Set -E disklabel(8) editing prompt to always display the disk device whose label is being edited and change '>' to '#' when in expert mode.
+
- Adjusted unwind(8) to use getaddrinfo_async(3) when resolving captive portal hosts, rather than resolving internally.
+
- Added retguard macros to set/jmp/longjmp on amd64.
+
- Restricted the number of allowed wsmux(4) devices to prevent malloc from panicking when the device minor is sufficiently large.
+
+
- Modified pfctl(8) to fail on invalid netmasks when filling tables, preventing CIDR networks with more than one "/" from being loaded into tables.
+
- Updated nsd(8) to 4.1.27.
+
- Began to use stricter validation checks for A-MPDUs in the net80211 input path, requiring RUN state to accept A-MPDUs and refusing them from unassociating cients in hostap mode.
+
- Corrected AR9287 USB device EEPROM read offset.
+
+
- Adjusted midi(4)-related flow control messages to be sent only once half the client buffer space has been consumed, avoiding sending unneeded messages on the network.
+
- Set aucat(1) to wait until server disconnect to close the socket, preventing loss of the last bytes.
+
+
- Added support for Exar XR21V1410 USB serial adapters and added the uxrcom(4) driver to allow disabling of hardware flow control.
+
- Added wsconsctl(8) support for display of fontwidth and fontheight values.
+
- Fixed stop-selection in tmux(1).
+
- Merged unbound(8) 1.9.1.
+
- Fixed interaction between ClientAliveInterval and RekeyLimit that could cause an ssh(1) connection to close incorrectly.
+
+
- Added pci(4) power-down support for AR8152 ethernet controllers.
+
- In vmm(4), use sgdt/sidt to reset the GDT/IDT limits after exiting the guest VM on VMX, preventing a default limit set too high on exit.
+
- Modified adjtime(2) to se EINVAL if delta overflows 64 bits of microseconds to be consistent with practices elsewhere.
+
+
- Introduced a new rwlock, tc_lock, which allows adjfreq(2) and the kern.timecounter.hardware sysctl(2) to read/write the active timecounter pointer and the .tc_adj_freq member of the active timecounter safely. This prevents torn read/writes when dropping KERNEL_LOCK and ensures the active timecounter doesn't change during an adjfreq(2) call.
+
- Fixed ssh(1) authentication failures when 'AuthenticationMethods any' in a Match block overrides a more restrictive global default.
+
- Created a warning-no-op for openrsync(1) indicating that -z support is not yet written.
+
- ospfd(8) now aborts reloading if the router-id changes.
+
- Fixed issues with pctr(4) and suspend. cpu(4) callback will now restore the pctr(4) settings after suspend/hibernate.
+
- Modified ssl(8) to defer signal algorithm selection until the certificate is known and it is time for signature generation.
+
- Added a chain member to CERT_PKEY and provided functions for manipulating it.
+
- Increased the default RSA key size to 3072 bits in ssh(1). This provides security equivalent to 128 bits, which is the smallest symmetric cipher enabled by default.
+
- Added the syspatch(8) signify key for OpenBSD 6.6.
- Switched to precision scrolling in wstpad in wscons(4).
- Adjusted unwind(8) to check resolvers based on change of state rather than at regular intervals. Resolvers are now rechecked when no longer behind a captive portal.
***************
*** 124,130 ****
- Added support for configuring BIOCSFILDROP with tcpdump(8). This allows tcpdump to be used as a makeshift firewall.
- Added the SM4 block cipher from the Chinese standard GB/T 32907-2016 to LibreSSL.
-
- Raised the maximum columns and rows to 160 for efifb(4) now that it supports remapping the framebuffer in write combining mode.
- Fixed multiple buffer over-reads in ctfdump(1).
- Changed dwiic(4) to fetch timing parameters from ACPI and have it attach on Intel 300 series devices.
--- 167,172 ----