=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/plus.html,v retrieving revision 1.1428 retrieving revision 1.1429 diff -c -r1.1428 -r1.1429 *** www/plus.html 2019/04/01 03:16:40 1.1428 --- www/plus.html 2019/04/01 04:50:24 1.1429 *************** *** 82,87 **** --- 82,130 ----

+
Changed the way bgpd(8) peers are reloaded by moving the struct peer into bgpd_config. Now parent and session engines are merging the lists. +
Modified the autopartitioner in disklabel(8) to grow minimum size for /usr to 1300M, allowing space for the current amd64 minimum sets size of 920M used, additional space for upgrades and relinking of libraries and kernels. +
Fixed output accounting when bridge(4) is down. +
Restored -t behavior to route(8). +
Corrected LED GPIO pin for AR9287-based usb devices. +
Added the ability to openrsync(1) to combine rsync:// and -e by splitting rsync_socket() into rsync_connect to establish a TCP connection to the remote daemon, and rsync_socket() to run the actual protocol. +
Fixed a memory leak in radiusd(8). + +
Modified several daemons to avoid calling dup2(oldd, newd) when oldd == newd, preventing the descriptor from keeping CLOEXEC flag and being closed unexpectedly by exec(). +
Set -E disklabel(8) editing prompt to always display the disk device whose label is being edited and change '>' to '#' when in expert mode. +
Adjusted unwind(8) to use getaddrinfo_async(3) when resolving captive portal hosts, rather than resolving internally. +
Added retguard macros to set/jmp/longjmp on amd64. +
Restricted the number of allowed wsmux(4) devices to prevent malloc from panicking when the device minor is sufficiently large. + +
Modified pfctl(8) to fail on invalid netmasks when filling tables, preventing CIDR networks with more than one "/" from being loaded into tables. +
Updated nsd(8) to 4.1.27. +
Began to use stricter validation checks for A-MPDUs in the net80211 input path, requiring RUN state to accept A-MPDUs and refusing them from unassociating cients in hostap mode. +
Corrected AR9287 USB device EEPROM read offset. + +
Adjusted midi(4)-related flow control messages to be sent only once half the client buffer space has been consumed, avoiding sending unneeded messages on the network. +
Set aucat(1) to wait until server disconnect to close the socket, preventing loss of the last bytes. + +
Added support for Exar XR21V1410 USB serial adapters and added the uxrcom(4) driver to allow disabling of hardware flow control. +
Added wsconsctl(8) support for display of fontwidth and fontheight values. +
Fixed stop-selection in tmux(1). +
Merged unbound(8) 1.9.1. +
Fixed interaction between ClientAliveInterval and RekeyLimit that could cause an ssh(1) connection to close incorrectly. + +
Added pci(4) power-down support for AR8152 ethernet controllers. +
In vmm(4), use sgdt/sidt to reset the GDT/IDT limits after exiting the guest VM on VMX, preventing a default limit set too high on exit. +
Modified adjtime(2) to se EINVAL if delta overflows 64 bits of microseconds to be consistent with practices elsewhere. + +
Introduced a new rwlock, tc_lock, which allows adjfreq(2) and the kern.timecounter.hardware sysctl(2) to read/write the active timecounter pointer and the .tc_adj_freq member of the active timecounter safely. This prevents torn read/writes when dropping KERNEL_LOCK and ensures the active timecounter doesn't change during an adjfreq(2) call. +
Fixed ssh(1) authentication failures when 'AuthenticationMethods any' in a Match block overrides a more restrictive global default. +
Created a warning-no-op for openrsync(1) indicating that -z support is not yet written. +
ospfd(8) now aborts reloading if the router-id changes. +
Fixed issues with pctr(4) and suspend. cpu(4) callback will now restore the pctr(4) settings after suspend/hibernate. +
Modified ssl(8) to defer signal algorithm selection until the certificate is known and it is time for signature generation. +
Added a chain member to CERT_PKEY and provided functions for manipulating it. +
Increased the default RSA key size to 3072 bits in ssh(1). This provides security equivalent to 128 bits, which is the smallest symmetric cipher enabled by default. +
Added the syspatch(8) signify key for OpenBSD 6.6.
Switched to precision scrolling in wstpad in wscons(4).
Adjusted unwind(8) to check resolvers based on change of state rather than at regular intervals. Resolvers are now rechecked when no longer behind a captive portal. *************** *** 124,130 ****
Added support for configuring BIOCSFILDROP with tcpdump(8). This allows tcpdump to be used as a makeshift firewall.
Added the SM4 block cipher from the Chinese standard GB/T 32907-2016 to LibreSSL. -
Raised the maximum columns and rows to 160 for efifb(4) now that it supports remapping the framebuffer in write combining mode.
Fixed multiple buffer over-reads in ctfdump(1).
Changed dwiic(4) to fetch timing parameters from ACPI and have it attach on Intel 300 series devices. --- 167,172 ----