version 1.893, 2003/11/21 03:30:49 |
version 1.894, 2003/12/08 06:21:34 |
|
|
|
|
<p> |
<p> |
<h3><font color="#0000e0">We are working on OpenBSD-current.</font></h3><p> |
<h3><font color="#0000e0">We are working on OpenBSD-current.</font></h3><p> |
The following list sums up (almost) all the changes made up to November 10. |
The following list sums up (almost) all the changes made up to November 21. |
<p> |
<p> |
|
|
<ul> |
<ul> |
|
<!-- ^ 20031122 --> |
|
<li>Also give <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=cmp&sektion=1">cmp(1)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=patch&sektion=1">patch(1)</a> the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=madvise&sektion=2">madvise(2)</a> sequential treatment. |
|
<li>Speed up <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=install&sektion=1">install(1)</a> by using <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=madvise&sektion=2">madvise(2)</a> with the MADV_SEQUENTIAL flag. |
|
<li>Fix <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=httpd&sektion=8">httpd(8)</a> mod_access IP address tests on sparc64. |
|
<li>New -o option to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=kvm_mkdb&sektion=8">kvm_mkdb(8)</a>, to put the database somewhere other than /var/db. |
|
<li>Fix return code from <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=diff&sektion=1">diff(1)</a> when the -i option is in use. |
|
<!-- ^ 20031121 --> |
|
<li>Build <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ftp&sektion=1">ftp(1)</a> statically linked, to help out when things go wrong. |
|
<li><font color="#e00000"><strong>RELIABILITY FIX: An improper bounds check makes it possible for a local user to cause a crash by passing the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=semctl&sektion=2">semctl(2)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=semop&sektion=2">semop(2)</a> functions certain arguments.</strong></font><br> |
|
<a href="errata.html#sem">A source code patch is available</a>.<br> |
|
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> |
|
<li><font color="#e00000"><strong>RELIABILITY FIX: It is possible for a local user to cause a crash via <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sysctl&sektion=3">sysctl(3)</a> with certain arguments.</strong></font><br> |
|
<a href="errata.html#uvm">A source code patch is available</a>.<br> |
|
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> |
|
<li>Add <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=gcc&sektion=1">gcc(1)</a> flags -fnobuiltin-{log,print} for kernel builds on some architectures, the others to be done as test results are collected. |
|
<li>Re-enable build of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=named&sektion=8">named(8)</a>'s DNSSEC programs. |
|
<!-- ^ 20031120 --> |
|
<li>More <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=wdc&sektion=4">wdc(4)</a> probe fixes, sync'ing with NetBSD. |
|
<li>Fix <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=timed&sektion=8">timed(8)</a> breakage caused by the change from <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=select&sektion=2">select(2)</a> to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=poll&sektion=2">poll(2)</a>. |
|
<!-- ^ 20031119 --> |
|
<li>Add <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=rc&sektion=8">rc(8)</a> startup for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sensorsd&sektion=8">sensorsd(8)</a>. |
|
<li>Merge in BIND v9.2.3. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=crypto&sektion=3">crypto(3)</a>, enable assembler BN functions on vax, and assembler for most things on i386. |
|
<li>Fix password blinding for non-existent users in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sshd&sektion=8">sshd(8)</a>. |
|
<li>Add new lightweight kernel reader/writer lock code, not used for anything yet. |
|
<li>Performance improvements to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pool&sektion=9">pool(9)</a>. |
|
<li>In <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sshd&sektion=8">sshd(8)</a>, fix the test for a valid authentication context when processing -R port forwards. |
|
<!-- ^ 20031118 --> |
|
<li>Fix unnecessary delays in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=wdc&sektion=4">wdc(4)</a>'s device probe. From NetBSD. |
|
<li>Fix a missing initialisation in libkvm. |
|
<li>Don't expose the contents of <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=named&sektion=8">named(8)</a>'s rndc.key file when diff'd by <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=security&sektion=8">security(8)</a>. |
|
<li>Merge in Apache 1.3.29 and mod_ssl 2.8.16. |
|
<li>Add a missing bounds check and fix an int overflow in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=compat_ibcs2&sektion=8">compat_ibcs2(8)</a> (not enabled by default.)<br> |
|
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> |
|
<li>Two more non-portable extensions to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bc&sektion=1">bc(1)</a>: Add new boolean operators, and allow relational operators to appear anywhere. |
|
<li>Add drop operator 'R' to <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dc&sektion=1">dc(1)</a>. |
|
<li>Replace <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a> authentication mechanism 'gssapi' with 'gssapi-with-mic'. |
|
<!-- ^ 20031117 --> |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf&sektion=4">pf(4)</a> stateful connections for generic protocols now work for IPv6 as well as IPv4. |
|
<li>Pull in a patch from XFree86 4.3, preventing a crash on Riva128 cards. |
|
<li>Remove win32 support files from the BIND tree. |
|
<!-- ^ 20031116 --> |
|
<li>Set the atime, ctime and mtime of the kernfs boottime file to, uh, the boot time. Useful for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=find&sektion=1">find(1)</a>. |
|
<li>Fix <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=savecore&sektion=8">savecore(8)</a> on big-endian 64-bit architectures. |
|
<li>More fine-grained CPU type detection on i386. |
|
<li>Test for a NULL return from <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=getpass&sektion=3">getpass(3)</a> in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bdes&sektion=1">bdes(1)</a>, <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pppctl&sektion=8">pppctl(8)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tn3270&sektion=1">tn3270(1)</a>. |
|
<!-- ^ 20031115 --> |
|
<li>Fix bogus <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=read&sektion=2">read(2)</a> error check in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mg&sektion=1">mg(1)</a> when writing a backup file. |
|
<li>Let <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=compress&sektion=1">compress(1)</a> inflate multiple concatenated files just like GNU gzip. |
|
<li>Support in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dc&sektion=1">dc(1)</a> for boolean operations soon to appear in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bc&sektion=1">bc(1)</a>. |
|
<li>Allow the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pfctl&sektion=8">pfctl(8)</a> debug level to be set from <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf.conf&sektion=5">pf.conf(5)</a> with 'set debug'. |
|
<li>Some fixes in the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a> GSSAPI client code. |
|
<li>Don't include the KAME interface index (used for IPv6 link-local addresses) in the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4">carp(4)</a> HMAC value. |
|
<!-- ^ 20031114 --> |
|
<li>Strip out some slightly pointless tests in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=wdc&sektion=4">wdc(4)</a> for an 8-bit value < <em>n</em>, where <em>n</em> > 255. |
|
<li>Fix a bug in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bc&sektion=1">bc(1)</a>'s print statement that left garbage on <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dc&sektion=1">dc(1)</a>'s stack. |
|
<li>Make <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bc&sektion=1">bc(1)</a>'s exponentiation operator '^' right- instead of left-associative. |
|
<!-- ^ 20031113 --> |
|
<li>Fix a potential DoS in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ftpd&sektion=8">ftpd(8)</a> where an attacker could tie up the data port for long periods. From FreeBSD.<br> |
|
<a href="stable.html"><font color="#00b000">[Applied to stable]</font></a> |
|
<li>New behaviour for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a> option VerifyHostKeyDNS, allowing implicit trust for DNSSEC-verified SSHFP records. |
|
<li>Have <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=scp&sektion=1">scp(1)</a> pass through the -q flag to its underlying <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a> process, suppressing SSH2 banners. |
|
<!-- ^ 20031112 --> |
<li>Merge in OpenSSL 0.9.7c. |
<li>Merge in OpenSSL 0.9.7c. |
<li>Some nonportable syntactic sugar for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dc&sektion=1">dc(1)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bc&sektion=1">bc(1)</a>. |
<li>Some nonportable syntactic sugar for <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dc&sektion=1">dc(1)</a> and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bc&sektion=1">bc(1)</a>. |
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=free&sektion=9">free(9)</a>ing stack variables is a bad idea, don't do it in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ubsa&sektion=4">ubsa(4)</a>. |
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=free&sektion=9">free(9)</a>ing stack variables is a bad idea, don't do it in <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ubsa&sektion=4">ubsa(4)</a>. |