version 1.1335, 2014/04/17 01:51:07 |
version 1.1336, 2014/04/30 02:07:27 |
|
|
<p> |
<p> |
|
|
<ul> |
<ul> |
|
<!-- 2014/04/20 --> |
|
<li><font color="#e00000">5.5 RELIABILITY FIX: Disable the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&manpath=OpenBSD%20Current&sektion=1&format=html">ssh(1)</a> curve25519-sha256@libssh.org KEX method when the other party's connection will fail.</font> |
|
<li>Prevent <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=lpd&manpath=OpenBSD%20Current&sektion=8&format=html">lpd(8)</a> from looking into <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=hosts.equiv&manpath=OpenBSD%20Current&sektion=5&format=html">hosts.equiv(5)</a>. Access control is now done only using hosts.lpd. |
|
<li>Introduced basic stats for the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=iscsid&manpath=OpenBSD%20Current&sektion=8&format=html">iscsid(8)</a> <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=vscsi&manpath=OpenBSD%20Current&sektion=4&format=html">vscsi(4)</a> layer; added <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=iscsictl&manpath=OpenBSD%20Current&sektion=8&format=html">iscsictl(8)</a> controls. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mandoc&manpath=OpenBSD%20Current&sektion=1&format=html">mandoc(1)</a> debug messages, truncate strings of excessive lengths. |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dhclient&manpath=OpenBSD%20Current&sektion=8&format=html">dhclient(8)</a> -L now preserves the fd being monitored after new leases, lease renewals and cable unplugs. |
|
<li>Fixed unchecked <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=snprintf&manpath=OpenBSD%20Current&sektion=3&format=html">snprintf(3)</a> in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mandoc&manpath=OpenBSD%20Current&sektion=1&format=html">mandoc(1)</a> page header printing. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mandoc&manpath=OpenBSD%20Current&sektion=1&format=html">mandoc(1)</a>, made sure static buffers for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=snprintf&manpath=OpenBSD%20Current&sektion=3&format=html">snprintf(3)</a> are large enough. |
|
<li>Removed more unused <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> tools and docs. |
|
<li>Moved <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=iscsid&manpath=OpenBSD%20Current&sektion=8&format=html">iscsid(8)</a> session params initialisation to session start, so config parameters stick. |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=iscsid&manpath=OpenBSD%20Current&sektion=8&format=html">iscsid(8)</a> now does proper LoginOperational negotiation. |
|
<li>Added <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=relayd&manpath=OpenBSD%20Current&sektion=8&format=html">relayd(8)</a> check for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=strlcpy&manpath=OpenBSD%20Current&sektion=3&format=html">strlcpy(3)</a> overflow when expanding HTTP input value. |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=snmpd&manpath=OpenBSD%20Current&sektion=8&format=html">snmpd(8)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=relayd&manpath=OpenBSD%20Current&sektion=8&format=html">relayd(8)</a> will now fail if <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=strlcpy&manpath=OpenBSD%20Current&sektion=3&format=html">strlcpy(3)</a> overflows the socket path. |
|
<li>When installing OpenBSD, ensure that the hostname information is in the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dhclient&manpath=OpenBSD%20Current&sektion=8&format=html">dhclient(8)</a> lease db. |
|
<li>Reimplemented arrays in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=relayd&manpath=OpenBSD%20Current&sektion=8&format=html">relayd(8)</a> used to set up process-to-process imsg communication. |
|
<li>Use <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=calloc&manpath=OpenBSD%20Current&sektion=3&format=html">calloc(3)</a> instead of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=malloc&manpath=OpenBSD%20Current&sektion=3&format=html">malloc(3)</a> + <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=memset&manpath=OpenBSD%20Current&sektion=3&format=html">memset(3)</a> across <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a>, to avoid integer overflows. |
|
<li>Rearranged <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=qle&manpath=OpenBSD%20Current&sektion=4&format=html">qle(4)</a> update processing loop to attach and detach targets last; handle fabric port login errors better. |
|
<li>Fixed leak in the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=snmpd&manpath=OpenBSD%20Current&sektion=8&format=html">snmpd(8)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=relayd&manpath=OpenBSD%20Current&sektion=8&format=html">relayd(8)</a> agentx error paths. |
|
<li>Added support for SSHFP DNS records for ED25519 key types to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&manpath=OpenBSD%20Current&sektion=1&format=html">ssh(1)</a>. |
|
<!-- 2014/04/19 --> |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> ts_rsp_verify.c, reset imprint to NULL to avoid double free. |
|
<li>Added a canonical 6.6+ curve25519 fake version to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&manpath=OpenBSD%20Current&sektion=1&format=html">ssh(1)</a>, to be recommended with openssh-6.7. |
|
<li>Use get/put_u32 to load values and unbreak <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&manpath=OpenBSD%20Current&sektion=1&format=html">ssh(1)</a> on strict-alignment architectures. |
|
<li>Removed checksum offloading from <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sk&manpath=OpenBSD%20Current&sektion=4&format=html">sk(4)</a>, faulty on this hardware. |
|
<li>Added <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=strlcpy&manpath=OpenBSD%20Current&sektion=3&format=html">strlcpy(3)</a> check. Stops <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=smtpd&manpath=OpenBSD%20Current&sektion=8&format=html">smtpd(8)</a> fatal at startup if truncation occurred with filters enabled. |
|
<li>Added missing <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=strlcpy&manpath=OpenBSD%20Current&sektion=3&format=html">strlcpy(3)</a> check when parsing the "backup hostname" section in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=smtpd.conf&manpath=OpenBSD%20Current&sektion=5&format=html">smtpd.conf(5)</a>. |
|
<li>Removed "disable pmtud" and "increased window size" options from <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sysctl.conf&manpath=OpenBSD%20Current&sektion=5&format=html">sysctl.conf(5)</a> to discourage their use. |
|
<li>Removed <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=rsh&manpath=OpenBSD%20Current&sektion=1&format=html">rsh(1)</a>. Deprecated in favor of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&manpath=OpenBSD%20Current&sektion=1&format=html">ssh(1)</a>. |
|
<li>Fixed display of destination IP when host is an IP address in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=traceroute&manpath=OpenBSD%20Current&sektion=8&format=html">traceroute(8)</a>. |
|
<li>Added checks to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=strlcpy&manpath=OpenBSD%20Current&sektion=3&format=html">strlcpy(3)</a> when <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=smtpd&manpath=OpenBSD%20Current&sektion=8&format=html">smtpd(8)</a> is copying envelope "destination" buffer to the mda delivery buffer. |
|
<li>If user+tag@ exceeds SMTPD_MAXPATHLEN <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=smtpd&manpath=OpenBSD%20Current&sektion=8&format=html">smtpd(8)</a> now fails instead of creating a ".truncated" tag dir. |
|
<li>Removed obsolete altq bandwidth shaping from <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&manpath=OpenBSD%20Current&sektion=4&format=html">pf(4)</a>. |
|
<!-- 2014/04/18 --> |
|
<li>Allow <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mandoc&manpath=OpenBSD%20Current&sektion=1&format=html">mandoc(1)</a> to properly handle symlinks . |
|
<li>Disable the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&manpath=OpenBSD%20Current&sektion=1&format=html">ssh(1)</a> curve25519-sha256@libssh.org KEX method when the other party's connection will fail. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mandoc&manpath=OpenBSD%20Current&sektion=1&format=html">mandoc(1)</a> update mode, when opening the database fails, just rebuild it from scratch. |
|
<li>Removed <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=RAND_seed&manpath=OpenBSD%20Current&sektion=3&format=html">RAND_seed(3)</a> calls in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=iked&manpath=OpenBSD%20Current&sektion=8&format=html">iked(8)</a>, <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ikectl&manpath=OpenBSD%20Current&sektion=8&format=html">ikectl(8)</a>, <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=relayd&manpath=OpenBSD%20Current&sektion=8&format=html">relayd(8)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=snmpd&manpath=OpenBSD%20Current&sektion=8&format=html">snmpd(8)</a>. |
|
<li>For <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=wscons&manpath=OpenBSD%20Current&sektion=4&format=html">wscons(4)</a> WSDISPLAY_COMPAT_USL protocol, send the synchronizing signals to the process, not just the thread. |
|
<li>Updated <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=unifdef&manpath=OpenBSD%20Current&sektion=1&format=html">unifdef(1)</a> to version 2.10. |
|
<li>Raised <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=nginx&manpath=OpenBSD%20Current&sektion=8&format=html">nginx(8)</a> file limits, but lower number of connections (leaving files to spare for other programs). |
|
<li>Removed <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bdes&manpath=OpenBSD%20Current&sektion=1&format=html">bdes(1)</a>, so as to not encourage its use. |
|
<li>Removed dead KAME code that dealt with IPv4-mapped IPv6 addresses; added check for IPv4-mapped IPv6 destination addresses for non-connected sockets. |
|
<li>Use <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=arc4random_buf&manpath=OpenBSD%20Current&sektion=3&format=html">arc4random_buf(3)</a> instead of harmful RAND_xxx in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=kerberos&manpath=OpenBSD%20Current&sektion=8&format=html">kerberos(8)</a>. |
|
<li>Sync <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=traceroute6&manpath=OpenBSD%20Current&sektion=8&format=html">traceroute6(8)</a> to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tracroute&manpath=OpenBSD%20Current&sektion=8&format=html">tracroute(8)</a>: don't print source IP if "-s" is not given. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=relayd&manpath=OpenBSD%20Current&sektion=8&format=html">relayd(8)</a>, fixed <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> client-only mode when no RSA private key is needed. |
|
<li>Neuter the -legacy_renegotiation option to the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=openssl&manpath=OpenBSD%20Current&sektion=1&format=html">openssl(1)</a> "openssl s_{client,server}"; added support for "-starttls lmtp" to openssl s_client. |
|
<li>When parsing a new cert into memory occupied by a previously verified cert, <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> will no longer bypass verification checks. |
|
<li>Introduced privsep for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=relayd&manpath=OpenBSD%20Current&sektion=8&format=html">relayd(8)</a> private keys. |
|
<li>Use <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=asprintf&manpath=OpenBSD%20Current&sektion=3&format=html">asprintf(3)</a> for generating path. Eliminates many unsafe uses of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=strlcpy&manpath=OpenBSD%20Current&sektion=3&format=html">strlcpy(3)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=strlcat&manpath=OpenBSD%20Current&sektion=3&format=html">strlcat(3)</a> in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a>. |
|
<li>If nfs rpc requests on a stream socket are already being processed, don't panic, just return. |
|
<li>Cleanup of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=relayd&manpath=OpenBSD%20Current&sektion=8&format=html">relayd(8)</a> code tracking of socketpair between different privsep processes. |
|
<li>Have each thread keeps its own reference to the process's ucreds. Avoids possible use-after-free. |
|
<li>Allow <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=printf&manpath=OpenBSD%20Current&sektion=1&format=html">printf(1)</a> to handle passing zero as a fieldwidth or precision variable. |
|
<li>Switched to the new <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=makewhatis&manpath=OpenBSD%20Current&sektion=8&format=html">makewhatis(8)</a>/<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=apropos&manpath=OpenBSD%20Current&sektion=1&format=html">apropos(1)</a>/<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=whatis&manpath=OpenBSD%20Current&sektion=1&format=html">whatis(1)</a> (described in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=apropos&manpath=OpenBSD%20Current&sektion=1&format=html">apropos(1)</a>). |
|
<li>Added support for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=smtpd&manpath=OpenBSD%20Current&sektion=8&format=html">smtpd(8)</a> mailaddr lookup in the table_db. |
|
<!-- 2014/04/17 --> |
|
<li>Reworked <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=qle&manpath=OpenBSD%20Current&sektion=4&format=html">qle(4)</a> command polling loop to handle multiple responses in one interrupt, like <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=qla&manpath=OpenBSD%20Current&sektion=4&format=html">qla(4)</a>. |
|
<li>Fully kill <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> FIPS API. |
|
<li>Added some UTF-8 utility functions to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tmux&manpath=OpenBSD%20Current&sektion=1&format=html">tmux(1)</a>, to stop splitting UTF-8 characters improperly. |
|
<li>Ensure parent thread is blocked until any others are detached before letting it exit. Avoids panic. |
|
<li>Only scroll by one line at a time in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tmux&manpath=OpenBSD%20Current&sektion=1&format=html">tmux(1)</a> choose mode (as lists are generally short). |
|
<li>Fixed <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dhclient&manpath=OpenBSD%20Current&sektion=8&format=html">dhclient(8)</a> DHCPDISCOVERY and DHCPDECLINE (as INADDR_ANY != INADDR_BROADCAST). |
|
<li>Changed <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> library to use intrinsic memory allocation functions instead of OPENSSL_foo wrappers. |
|
<li>Set <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tmux&manpath=OpenBSD%20Current&sektion=1&format=html">tmux(1)</a> PATH explicitly, either from the client or session environment. |
|
<li>Don't limit the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tmux&manpath=OpenBSD%20Current&sektion=1&format=html">tmux(1)</a> DCS buffer to 256 bytes, expand it as needed. |
|
<li>No longer allow <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> to feed RSA private key information to the random subsystem as entropy. |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=openssl&manpath=OpenBSD%20Current&sektion=1&format=html">openssl(1)</a> PR#3309: when looking for an extension, properly search all extensions. |
|
<li>Removed the monitor-content option from <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tmux&manpath=OpenBSD%20Current&sektion=1&format=html">tmux(1)</a>. |
|
<li>Fixed <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> to call the correct decrypt function in aes_cbc_cipher(). |
|
<li>Execute the active path checks when <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mpath&manpath=OpenBSD%20Current&sektion=4&format=html">mpath(4)</a> asks for it (rather than on attach). |
|
<!-- 2014/04/16 --> |
|
<li>Skip leading zero bytes in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&manpath=OpenBSD%20Current&sektion=1&format=html">ssh(1)</a> buffer_put_bignum2_from_string() function. |
|
<li>Add ufs2 support in libsa/ufs2.c. One step closer being able to boot from ffs2 filesystems. |
|
<li>Cleaned up dangerous <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=strncpy&manpath=OpenBSD%20Current&sektion=3&format=html">strncpy(3)</a> use in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a>. |
|
<li>Added missing parens so that <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=rshd&manpath=OpenBSD%20Current&sektion=8&format=html">rshd(8)</a> errorhost gets properly initialised. |
|
<li>Gave mlinks and keys tables a <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sqlite3&manpath=OpenBSD%20Current&sektion=1&format=html">sqlite3(1)</a> pageid index. Speeds basic <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=apropos&manpath=OpenBSD%20Current&sektion=1&format=html">apropos(1)</a> searches by 30%. |
|
<li>Make <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dhclient&manpath=OpenBSD%20Current&sektion=8&format=html">dhclient(8)</a> -q even quieter. |
|
<li>Removed programs from <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> code which don't work with current <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=openssl&manpath=OpenBSD%20Current&sektion=1&format=html">openssl(1)</a> releases. |
|
<li>Fixed <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> bugs listed at http://www.viva64.com/en/b/0250/. |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> now ignores setting which allowed the connection to negotiate insecurely. |
|
<li>Zero-pad <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> "usec" format to handle values less than 100,000 correctly. |
|
<li>Killed bogus "send an SSLv3/TLS hello in SSLv2 format" code from the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> client. |
|
<li>Stubbed some functions in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> mem_dbg.c, to avoid all possibility of using them. |
|
<li>Always return 1 in the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=arc4random&manpath=OpenBSD%20Current&sektion=9&format=html">arc4random(9)</a> backend. Unbreaks <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=lynx&manpath=OpenBSD%20Current&sektion=1&format=html">lynx(1)</a> and git. |
|
<li>Added generic driver for "NEC PC-9801 extension board slot" on luna88k. |
|
<li>Made directory ordering in our libtool stable. |
|
<li>Closed memory leaks in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=snmpctl&manpath=OpenBSD%20Current&sektion=8&format=html">snmpctl(8)</a> client code. |
|
<!-- 2014/04/15 --> |
|
<li>Removed md2, seed and jpake cyphers from <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a>. |
|
<li>Removed approx 30 unused makefiles and more vestiges of ssl2 support from <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a>. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&manpath=OpenBSD%20Current&sektion=8&format=html">ssh(8)</a> EC_POINT_invert(), check the correct function pointer before attempting to invoke it (<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=openssl&manpath=OpenBSD%20Current&sektion=1&format=html">openssl(1)</a> RT #2569). |
|
<li>RotIBM stream cipher (ebcdic), FIPS mode support and GOST engine removed from <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a>. |
|
<li>Replaced <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> PRNG with arc4random_buf(), keeping existing RAND interfaces unchanged. |
|
<li>Added -s (two-byte signed decimal display) to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=od&manpath=OpenBSD%20Current&sektion=1&format=html">od(1)</a>, as mandated by POSIX. |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssl&manpath=OpenBSD%20Current&sektion=8&format=html">ssl(8)</a> fixes: corrected cases where code occurred directly after goto/break/return; removed pentium specific benchmark code; removed more vms and windows specific code. |
|
<li>Unbroke xcb-util-cursor. |
|
<li>Made <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=smtpd&manpath=OpenBSD%20Current&sektion=8&format=html">smtpd(8)</a> reply with correct imsg when using non-system authentication. |
<!-- 2014/04/14 --> |
<!-- 2014/04/14 --> |
<li>Stopped <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mandoc&manpath=OpenBSD%20Current&sektion=1&format=html">mandoc(1)</a> crashing when processing macros in .Sh header lines, or having .Sm off or .Bk -words open. |
<li>Stopped <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mandoc&manpath=OpenBSD%20Current&sektion=1&format=html">mandoc(1)</a> crashing when processing macros in .Sh header lines, or having .Sm off or .Bk -words open. |
<li>Stopped leaking socketpair file descriptors if <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tmux&manpath=OpenBSD%20Current&sektion=1&format=html">tmux(1)</a> <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=fork&manpath=OpenBSD%20Current&sektion=2&format=html">fork(2)</a> fails. |
<li>Stopped leaking socketpair file descriptors if <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tmux&manpath=OpenBSD%20Current&sektion=1&format=html">tmux(1)</a> <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=fork&manpath=OpenBSD%20Current&sektion=2&format=html">fork(2)</a> fails. |
|
|
|
|
</body> |
</body> |
</html> |
</html> |
|
|
|
|