version 1.892, 2003/11/02 17:42:52 |
version 1.893, 2003/11/21 03:30:49 |
|
|
|
|
<p> |
<p> |
<h3><font color="#0000e0">We are working on OpenBSD-current.</font></h3><p> |
<h3><font color="#0000e0">We are working on OpenBSD-current.</font></h3><p> |
The following list sums up (almost) all the changes made up to November 1. |
The following list sums up (almost) all the changes made up to November 10. |
<p> |
<p> |
|
|
<ul> |
<ul> |
|
<li>Merge in OpenSSL 0.9.7c. |
|
<li>Some nonportable syntactic sugar for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dc&sektion=1">dc(1)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bc&sektion=1">bc(1)</a>. |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=free&sektion=9">free(9)</a>ing stack variables is a bad idea, don't do it in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ubsa&sektion=4">ubsa(4)</a>. |
|
<li>Don't leak memory from <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ld.so&sektion=1">ld.so(1)</a> if the library name is invalid. |
|
<li>Better parsing of library version numbers in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ld.so&sektion=1">ld.so(1)</a>, so 'libpython2.1.so.0.0' and 'libpython2.2.so.0.0' can coexist in peace. |
|
<li>New 'print' statement for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bc&sektion=1">bc(1)</a>, a non-portable extension. |
|
<!-- ^ 20031111 --> |
|
<li>Fix <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ksh&sektion=1">ksh(1)</a>'s handling of redirection of a file to the same file, e.g. '2>&2'. |
|
<li>Add more privacy flags to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sendmail&sektion=8">sendmail(8)</a> cf/openbsd-proto.mc, requiring HELO/EHLO and disabling EXPN/VRFY. |
|
<li>Add a classic paper on password security in /usr/share/doc/smm/17.password. |
|
<li>Send <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=diff&sektion=1">diff(1)</a> output 'no newline at end of file' to stderr instead of stdout, for compatibility. |
|
<li>Stop <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pkg_add&sektion=1">pkg_add(1)</a> considering as errors attempts to add an already-added package. |
|
<!-- ^ 20031110 --> |
|
<li>Keep track of errors when adding multiple packages with <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pkg_add&sektion=1">pkg_add(1)</a>, and set a useful error code on return. |
|
<li>Remove the automatic setting of packing-list prefix from the first @cwd. |
|
<li>Restore printing of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=vlan&sektion=4">vlan(4)</a> information in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ifconfig&sektion=8">ifconfig(8)</a>, accidentally broken when <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> was added. |
|
<li>Really fix <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mg&sektion=1">mg(1)</a> insert-file. |
|
<li>Safer region handling in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mg&sektion=1">mg(1)</a>. |
|
<li>Restore the terminal correctly when aborting out of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mg&sektion=1">mg(1)</a>. |
|
<li>Undo the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mg&sektion=1">mg(1)</a> insert-file operation properly. |
|
<!-- ^ 20031109 --> |
|
<li>Unbreak the anchor rule number returned by <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pfsync&sektion=4">pfsync(4)</a>. |
|
<li>Avoid a race condition when swapping in a process. |
|
<li>On i386, fix a crash that occurred with a large number (>1500) of processes (PR#3528.) |
|
<li>New 'no sync' state option to prevent state transitions for a particular rule appearing on the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pfsync&sektion=4">pfsync(4)</a> interface. |
|
<!-- ^ 20031108 --> |
|
<li>Check that <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> packets are received on a carp-enabled interface. |
|
<li>Fix setting of the interface index for IPv6 link-local multicast joins. |
|
<li>Stop <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> responding to ARPs when the interface is down. |
|
<li>Fix a buffer overflow in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sed&sektion=1">sed(1)</a> when doing regex substitutions. From FreeBSD. |
|
<!-- ^ 20031107 --> |
|
<li>Add non-portable extensions to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dc&sektion=1">dc(1)</a>: '#' (comment), 'n' (print without newline) and 'a' (byte to char). |
|
<li>Better <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pkg_add&sektion=1">pkg_add(1)</a> dependency resolution. |
|
<li>Don't call the post-install script of packages that didn't fully install, and allow such packages to be fully removed. |
|
<li>Let <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pkg_add&sektion=1">pkg_add(1)</a> install packages coming from stdin. |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pkg_delete&sektion=1">pkg_delete(1)</a> allows the path to an installed package on the command line, so e.g. 'pkg_delete /var/db/pkg/zsh-*' now works. |
|
<li>The package tools now automatically use the target of the first @cwd in the packing list as the prefix. |
|
<li>Temporarily back out the recent reordering of interface capability tests and pf_test(). <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a> rdr rules are now generating some bogus checksums. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&sektion=8">isakmpd(8)</a>, require encrypted messages are soon as we have the keystate for it, require DELETE payloads to be accompanied by HASHes, and add validation for HASH payloads without active exchanges. |
|
<li>Allow <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a> tags to use the same macros as labels (see <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf.conf&sektion=5">pf.conf(5)</a>.) |
|
<li>Teach <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=gdb&sektion=1">gdb(1)</a> about SIGINFO (PR#3173.) |
|
<li>Add commented-out LoadModule config lines, along with a short description, for each <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=httpd&sektion=8">httpd(8)</a> module in the standard build. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=newfs&sektion=8">newfs(8)</a> don't write the magic to the superblock until filesystem creation is completed. |
|
<li>Fix <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=netstat&sektion=1">netstat(1)</a>'s display of IPv6 link-local multicast addresses. |
|
<!-- ^ 20031106 --> |
|
<li>Redo the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=wdc&sektion=4">wdc(4)</a> drive reset changes, more cautious this time. |
|
<li>Make <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tcpdump&sektion=8">tcpdump(8)</a>'s -x flag work for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pfsync&sektion=4">pfsync(4)</a> devices. |
|
<!-- ^ 20031105 --> |
|
<li>Use hash tables where possible for listen socket lookup as well. |
|
<li>Add a route when we're the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> master host, so the local machine can use the common address. |
|
<li>Have <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pkg_create&sektion=1">pkg_create(1)</a> spot duplicate packaging list entries and die noisily when it does so. |
|
<li>Stop <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> pretending that everything it sends to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bpf&sektion=4">bpf(4)</a> comes from AF_INET6. |
|
<li>Add GNU-compatible 'r' operator (swaps the top two stack items) to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dc&sektion=1">dc(1)</a>. |
|
<li>Kill an IPv4 pasto in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> IPv6 support when setting the interface address. |
|
<!-- ^ 20031104 --> |
|
<li><font color="#e00000"><strong>RELIABILITY FIX: It is possible for a local user to cause a system panic by executing a specially crafted binary with an invalid header.</strong></font><br> |
|
<a href="errata.html#exec">A source code patch is available</a>.<br> |
|
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> |
|
<li>Make <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pkg_delete&sektion=1">pkg_delete(1)</a> handle dependencies properly when using package name stems. |
|
<li>Don't try to free a static string when checking <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a> host keys. |
|
<li>In regular (non-<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a>) IP output code, defer the interface tests for hardware IPsec and checksum capability until after pf_test(), since pf might drop the packet, or send it to a different interface. |
|
<li>Make <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a>-routed packets check the target interface for hardware IPsec and checksum capability. |
|
<li>Fix a memory leak when <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> fails to put the interface into promiscuous mode. |
|
<li>Add a missing check in IPv6 <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> for an interface on its way down. |
|
<!-- ^ 20031103 --> |
<li>Preserve the debug flag when enabling <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a>. |
<li>Preserve the debug flag when enabling <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a>. |
<!-- ^ 20031102 --> |
<!-- ^ 20031102 --> |
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=top&sektion=1">top(1)</a>, check for signals at the right time and handle stdin failures better. |
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=top&sektion=1">top(1)</a>, check for signals at the right time and handle stdin failures better. |
|
|
<li>Fix potential signedness bug in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=fgets&sektion=3">fgets(3)</a> (PR#1709.) |
<li>Fix potential signedness bug in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=fgets&sektion=3">fgets(3)</a> (PR#1709.) |
<!-- ^ 20031008 --> |
<!-- ^ 20031008 --> |
<li>Correct __bounded__ attributes for {MD4,MD5,RMD160,SHA1}DATA functions (PR#3505.) |
<li>Correct __bounded__ attributes for {MD4,MD5,RMD160,SHA1}DATA functions (PR#3505.) |
<li>Allow <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=newfs&sektion=8">newfs(8)</a> to build small filesystems again by making sure ncyls >= 2. |
<li>Allow <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=newfs&sektion=8">newfs(8)</a> to build small filesystems again by making sure ncyls >= 2.<br> |
|
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> |
<li>Plug a memory leak in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=netstat&sektion=1">netstat(1)</a>. |
<li>Plug a memory leak in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=netstat&sektion=1">netstat(1)</a>. |
<li>Add nfs attribute cache tuning parameters to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mount_nfs&sektion=8">mount_nfs(8)</a> (Inspired by PR#2567.) |
<li>Add nfs attribute cache tuning parameters to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mount_nfs&sektion=8">mount_nfs(8)</a> (Inspired by PR#2567.) |
<li>Kill a null deref in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=make&sektion=1">make(1)</a>. |
<li>Kill a null deref in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=make&sektion=1">make(1)</a>. |