===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/plus.html,v
retrieving revision 1.1413
retrieving revision 1.1414
diff -u -r1.1413 -r1.1414
--- www/plus.html 2019/02/14 16:12:13 1.1413
+++ www/plus.html 2019/02/28 16:02:01 1.1414
@@ -82,7 +82,47 @@
+
+- Added rsync(1) support for --port=PORT and ":port" in the rsync:// URL. Unlike in the original rsync, service names are supported.
+
- Corrected usb(4) to publish a new attached device only once it is fully initialized, preventing a race condition.
+
- Converted openssl(1) pkeyutl to the newer style of option handling.
+
- Adjusted unwind(8) to restart the DoT resolver alongside the other resolvers when log verbosity changes.
+
+
- Improved time interpretation for at(1) by assuming that a time that is already past refers to the next day.
+
- Implemented the conv=fsync feature in dd(1) (mirroring GNU dd), performing an fsync(2) after the final write to output.
+
- Added chown pledge(2) to rsync(1), allowing root to gift files to other uids.
+
- Adjusted rsync(1) to set access time information with sub-second resolution.
+
- Changed vmm(4) to allow guests to see PA bits in CPUID, removing an unintentional guest memory size limit of 64GB.
+
+
- Fixed a case where ddb(4) would modify two variables instead of one on 64-bit architectures.
+
- Relaxed userland stack pointer checking to allow PROT_NONE permissions on a page in addition to MAP_STACK.
+
+
- Added support for -o, -D and -a in rsync(1).
+
- Changed dpath pledge(2) to allow mkfifoat(2) and mknodat(2).
+
- Allowed configuration of the rdomain for mpe(4) and mpw(4) interfaces.
+
+
- Removed casts to (unsigned) to avoid range reduction bugs from parse.y based parsers.
+
- Updated perl(1) to 5.28.1.
+
- Added support for server and client finished messages in ssl(3) TLSv1.3 client implementation.
+
- Added a new futex(2)-based rwlock(9) implementation. The existing rwlock implementation will be used for architectures lacking atomic primitives.
+
- Changed socket(2) options to allow calling of SO_PEERCRED on sockets created with socketpair(2).
+
- Adapted rsync(1) to use md4 from crypto(3).
+
+
- Integrated group ID send/receive and remapping into rsync(1).
+
- Added -g option and associated getpw pledge to rsync(1).
+
- Simplified imsg communications and improved privilege separation of dhclient(8). resolv.conf.tail(5) will now be read (allowing additional details to be supplied) with each proposal.
+
- Implemented support for -e and --rsh=name options in rsync(1).
+
- Added long-opts aliases for single-letter options present in rsync(1). Added missing -no-OPT long options.
+
- Adjusted bgpctl(8) show requests to handle the case where no neighbors are defined in bgpd(8).
+
+
- Implemented handling of Certificate and CertificateVerify messages in TLSv1.3.
+
- Began explicitly supporting VPNs in bgpd(8), redefining and changing the syntax of bgpd.conf(5). IMPORTANT NOTE: If MPLS VPNs are used, configuration will need to be adjusted.
+
- Moved the on-disk trust anchor for unwind(8) to /var/db/unwind.key, as it doesn't need to be in a directory writable by group _unwind. Additionally, began tracking it in changelist(5).
+
- Imported Kristaps' openrsync into the tree and began adjustment to match style(9) guidelines.
+
- Removed the implicit RTF_MPATH flag that rt_ifa_add() set on new routes.
+
- Simplified check for whether /usr/share is on an NFS filesystem in reorder_kernel.sh.
+
- Corrected PPC target in llvm to reflect that a long double is the same as a double on OpenBSD/powerpc.
- Set pkcs11.so to initialize pkcs11 interaction to allow it to ask for the smartcard's PIN during ssh-keygen(1) with -D.
- Adjusted pfctl(8) parser to insist anchor names must not be empty.
- Further simplifed trust anchor handling in unwind(8), allowing removal of wpath and cpath pledges from the parent process.
@@ -91,7 +131,6 @@
- Adjusted scp(1) to accept shell-style brace alternations (e.g. "{foo,bar}") when verifying that filenames sent by the server match client requests.
- Changed ssh(1) to log when a connection is dropped for attempting to run a command when ForceCommand=internal-sftp is in effect.
- Updated to xf86-video-apm 1.3.0, xf86-video-s3virge 1.11.0, xf86-video-chips 1.3.0, xf86-video-i128 1.4.0, xf86-video-neomagic 1.3.0 and xf86-video-i740 1.4.0.
-
- Switched to xorgproto.
- Fixed ipv4 checksum calculation for mpls_input.c that was being performed in memory half the necessary size.