===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/plus.html,v
retrieving revision 1.900
retrieving revision 1.901
diff -u -r1.900 -r1.901
--- www/plus.html 2004/01/01 15:45:27 1.900
+++ www/plus.html 2004/01/25 19:02:11 1.901
@@ -53,10 +53,238 @@
We are working on OpenBSD-current.
-The following list sums up (almost) all the changes made up to December 31.
+The following list sums up (almost) all the changes made up to January 24.
+- In ssh(1), clear the non-blocking flag on the socket after connection when the ConnectTimeout option is in effect.
+
- Alignment fixes in ping6(8) and traceroute6(8).
+
- Cleanup in traceroute6(8). Make sure the probe packets give very little away about the sending host.
+
- Some *printf(3) type fixes in scsi(4), so very large disks don't appear to have <0 sectors.
+
- Allow scsi(4) debugging to be limited to individual buses as well as specific targets and LUNs.
+
+
- Don't enable loud debugging for every ahc(4) device by default.
+
- Install vi(1) tutorial docs.
+
+
- Add cradle mode support to xsystrace(1).
+
- Add an rc.conf(8) switch for rpc.yppasswdd(8) and switch it off by default, instead of always running it if there's a YP directory in place.
+
- New program, ifstated(8), which listens for interface state changes and runs commands when it sees them. Work in progress.
+
- Remove seteuid(2) and setuid(2) calls from timedc(8).
+
- New 'cradle mode' for systrace(1).
+
- Add NTFS to the list of partition types that disklabel(8) has names for.
+
- Now that our gcc3 has propolice, add USE_GCC3 switch (default is "No") to enable gcc3 build and install.
+
- Fix sftp(1)'s display of long path names.
+
- Enable acss(3) support in ssh(1).
+
- Add acss(3) support to libcrypto, and bump the library minor version.
+
- Liberally sprinkle closefrom(2) where needed.
+
- Speed up scsi(4) probing by not checking for impossible LUNs.
+
+
- Fix the @arch packing list command in pkg_add(1) and pkg_create(1).
+
- Match compress(1) exit codes to GNU gzip, unbreaking perl(1)'s CPAN module.
+
- Stop mixerctl(1) segfaulting on non-existent fields.
+
- Add a simple 802.3x printer to tcpdump(8).
+
- Allow ftp-proxy(8) to set the outgoing address with the new -a option (PR#3538.)
+
- In pfctl(8), only use inet_net_pton(3) on addresses containing a '/', otherwise use inet_pton(3) (PR#3638.)
+
- New -S option to nc(1), enabling the TCP MD5 signature option.
+
- Fix collapsing of multiple pfsync(4) update messages into one.
+
- Fix pfsync(4) state timeouts.
+
- As with sysctl(8), remove the need for -w in mixerctl(1).
+
- Propolice fixes for gcc(1).
+
- First propolice version of gcc3.
+
+
- In kernel main(), initialise timeouts much earlier.
+
- New spamd(8) configuration method, based around OpenBSD mirrors of common spammer lists.
+
- Cleanup and fix tcpdump(8) pfsync protocol output.
+
- Initialise the sftp(1) input file in main() rather than statically.
+
- Some strncpy(3) -> strlcpy(3) in libpcap
+
+
- Use _exit(2) instead of exit(3) from abort(3) so stdio buffers don't get flushed twice.
+
- Support Intel 852/855/865 AGP chipsets on i386. From NetBSD.
+
- Don't set a fake baud rate for pfsync(4) interfaces.
+
- Only read in as many digits as can legally fit into a field in strptime(3). From NetBSD.
+
- Add some delay when reading the address off fxp(4) eeproms, otherwise the result may be garbage.
+
- Actually use the RPC program name cache in tcpdump(8) since we've gone and allocated space for it.
+
- Import some chunks of ffs2 support from FreeBSD.
+
- Have pfsync(4) ignore pfsync protocol packets if the interface is not running.
+
+
- Fix a few ssh(1) memory leaks.
+
- Fix grep(1)'s -b option.
+
- Fix a missing malloc(3) error check in syslogd(8).
+
- New user _tcpdump for upcoming privsep of, uh, tcpdump(8).
+
- Avoid half-open deadlock in ssh(1) (OpenSSH bugzilla #790.)
+
- Some sane defaults for afsd.conf(5) and ThisCell(5).
+
- Update sendmail(8) to 8.12.11.
+
+
- Throw away #ifdef spaghetti from XFS filesystem code, and enable it in GENERIC.
+
- Remove a double htons() in pfsync(4).
+
- Unbreak '*grep -w -l'.
+
- Fix a missing initialisation in grep(1).
+
- Sync tcpdump(8) DNS display with tcpdump.org to avoid problems with bogus DNS packets.
+
- Allow pflogd(8) to create (safely) its log file if none exists.
+
- Have carp(4) send RTM_IFINFO routing messages on interface state changes.
+
- Prep dhclient(8) for surgery, under src/sbin/dhclient.
+
+
- Have rsh(1) run ssh(1) instead of rlogin(1) or telnet(1) when run without a remote command.
+
- Add a bunch of new DNS RR types to <arpa/nameser.h>.
+
- Remove Kerberos IV code from rsh(1).
+
- Major stability improvements to ahc(4).
+
+
- Fix a typo causing a null deref in pf(4) IPv6 tcp scrubbing.
+
- New -v option to isakmpd(8) to log successful completion of Phase 1 and 2 exchanges.
+
- Sync mrouted(8) with changes to the raw sockets API affecting packet length.
+
- Fix a string bug and a double free in the PEX font parser.
+
+
- Import libobjc from GCC 3.3.2.
+
- Move libobjc out of the GCC directory and into src/gnu/lib/libobjc.
+
- In tcpdump(8) check that an IKE header is long enough before trying to display it.
+
- Add a pthreads version of closefrom(2).
+
- Remove autoconf stuff from the in-tree sudo(8).
+
- Fix an early-free bug in mg(1) that was breaking compile-goto-error.
+
- Make pflogd(8) less likely to cause logfile corruption on unexpected shutdowns, and more able to detect and deal sensibly with corrupted files on startup.
+
- Synchronise pflogd(8) with the newly privilege-separated syslogd(8).
+
- Unbreak awk(1)'s maketab.c after recent yacc(1) header file generation changes.
+
- Temporarily work around alpha and sparc64 breakage caused by the recent sigaltstack(2) ABI change.
+
- Teach tcpdump(8) about TCP signatures.
+
- Some *printf(3) type cleanup in httpd(8).
+
- Support RTM_IFANNOUNCE messages in route(8)'s monitor command.
+
- Add TCP signature stats display to netstat(1).
+
- Add TCP MD5 signature support to ipsecadm(8).
+
- In syncache, defer updating the mss until the 3-way handshake is completed.
+
+
- Use a pool(9) instead of malloc(9) for file locking structures. From NetBSD.
+
- Add syncache and IPv6 support to the resurrected TCP signature code.
+
- In pf(4), remove the predefined 'special' altq IDs, so all qids look alike.
+
- Change the type of sigaltstack.ss_size from int to size_t. Rename old syscall to osigaltstack() for compatibility.
+
- Remove extra 'sleep 1' from netstart(8) when doing IPv6 DAD.
+
- Preliminary gcc(1) support for ARM.
+
- Have nm(1) fall back to using pread(2) if mmap(2) fails, as it does for /dev/ksyms.
+
- Don't issue Test Unit Ready to scsi(4) devices until we've checked that 'don't issue Test Unit Ready' quirk isn't needed.
+
- Revamp scsi(4) LUN quirks handling.
+
+
- Use the right type when checking the magic number in savecore(8).
+
- printf(3) integer type cleanup in netstat(1).
+
- Correct a use-after-free in cvs(1), fixing a coredump when the user hits ^C.
+
- Fix authpf(8) ruleset names that contain the username (PR#3627.)
+
- '=' != '==' in fsck(8).
+
- Let <ctype.h> compile on non-gcc compilers.
+
- Reintroduce old TCP MD5 signature (RFC2385) code from 4.5 years ago, hopefully with a reduced likelihood of kernel borkage.
+
- Improvements to sftp(1) batch mode: Allow batchfile input from stdin, and remove stderr junk (OpenSSH bugzilla #754.)
+
- Add IPv6 loopback routes and allow connection to the carp(4) shared IPv6 address from the MASTER host, like for IPv4.
+
- Fix a signed buffer length variable in syslogd(8).
+
- Build local nm(1) and size(1) instead of those from binutils.
+
- Allow ifconfig(8) to show all interfaces of a given type by giving it a device without a unit number, e.g. 'ifconfig vlan'.
+
- Respect the quiet flag in newfs(8) and don't spew cpg warnings.
+
+
- Change /dev/utty[0-9a-f] entries ucom(4) to /dev/ttyU[0-9a-zA-Z]
+
- In syslogc(8), don't re-terminate a string after strlcat(3).
+
- Sync pf.os(5) with the current p0f development snapshot.
+
- A little string cleaning and extra error checking in swapctl(8).
+
- Make shared C++ binary linking consistent between GCC 2.95 and GCC 3.
+
- Stop g++(1) adding '-lm -lstdc++' when -shared is present, consistent with gcc(1).
+
- Use closefrom(2) instead of looping up to the fd rlimit in sudo(8). From sudo CVS.
+
- Fix up and install the vi(1) USD docs.
+
- New system call closefrom(2), which closes all descriptors greater than or equal to the given fd. Bump libc and libpthread minor version.
+
- Have tun(4) use klist_invalidate() so ifconfig destroy can work with kqueue(2) enabled.
+
- Add klist_invalidate() function in kqueue(2) to clean up when the event source goes away.
+
- Replace some hairy string code with a single asprintf(3) in sup(1).
+
+
- Remove some portable-only #ifdef code around openpty(3) in ssh(1).
+
- In sysctl(8), making an assignment by using '=' no longer requires a totally redundant -w option.
+
- Remove ugly spaces from sysctl(8) 'var=value' output.
+
- Sync the installer script with recent dhclient(8) changes.
+
- Add IPv4 loopback routes much later in netstart(8).
+
- Make dhclient(8) listen to the routing socket, and quit if anyone downs the interface or deletes an addresses.
+
- Have dhclient-script(8) preserve a preexisting resolv.conf(5) and restore it when exiting.
+
- Add a missing forward declaration of struct proc in <sys/rwlock.h>.
+
+
- Remove code in auth_clean(3) that cleared the options list, since login(1) depends on it leaving them alone.
+
- Print only valid sense info in scsi(4).
+
- Correctly a missing bonus points for completed rows bug in tetris(6).
+
+
- Stop tcpdump(8) screwing up the terminal by printing non-printable timed protocol hostnames.
+
- Add a missing initialisation in kvm_open(3).
+
- Reduce the TCP MSS lower bound to 256-(minimal TCP header size) = 216 bytes.
+
- Don't restrict RFC 2385 TCP signature keys to ASCII-only.
+
- Fix a memory leak when detaching an Ethernet interface.
+
- In netstart(8) create all routes with the new improved -q option.
+
- Make route(8)'s -q option really quiet.
+
- Back out the storing of parent vnodes, due to exploding ports.
+
- Have sysctl(8) politely tell the user that the tool of choice for viewing a list of processes is ps(1).
+
+
- Carefully work around time_t != long in gdb(1).
+
- Crucially, adjust worms(6)' delay based on the terminal speed.
+
- Types cleanup in jot(1). Mostly from FreeBSD.
+
- Convert fstat(1), ps(1), systat(1), top(1) and w(1) to use the new kvm_getproc2(3) interface.
+
- Make ELF architectures handle constructors and destructors the way the ELF spec says they should.
+
- Sync sensorsd(8)'s notion of zero Kelvin with that in the kernel.
+
- Fix a typo in ndp(8) affecting the -s (set entry) option.
+
+
- Fix a busted mkdtemp(3) return value check in binutils.
+
- Use proper uid_t and gid_t types in id(1).
+
- New -e option to systrace(1), which sends logs to stderr instead of syslog.
+
- Promote dirhash to the GENERIC big time.
+
- Increase the TCP MSS lower bound from 64 to 256 bytes.
+
- sysctl(3)ify dirhash, under vfs.ffs.dirhash_*.
+
- Plug an interface address memory leak in pf(4).
+
- Stop sysctl(3) returning EINVAL for KERN_PROC_KTHREAD.
+
- Logic fixes in diff3(1) where one file has changes but the other does not.
+
- Some scsi(4) probe cleanups and fixes, inspired by NetBSD.
+
- Implement the truly wonderful -p option for diff(1).
+
- Fix an i386 crash in the ahc(4) device probe (PR#3630.)
+
- Add a field for the emulation type in the struct returned by the KERN_PROC2 sysctl(3).
+
- Switch pkill(1) and pgrep(1) to kvm_getproc2(3), and so enable the -s option to work.
+
- Add kvm_get{argv,envv,proc}2(3) using KERN_PROC2. Based on NetBSD.
+
- Implement the KERN_PROC2 sysctl(3), allowing ps(1) etc. to be independent of changes to process-related kernel structures. From NetBSD.
+
- On i386, sync fdisk(8)'s built-in MBR image with the recent changes.
+
- Import generic IEEE 802.11 interface framework from NetBSD.
+
+
- Have pf(4) do as non-pf udp_input() does, and drop UDP packets with destination port zero, or with zero or oversize payload.
+
- Import pkill(1) and pgrep(1) from NetBSD. Selecting by session ID (-s option) doesn't work yet.
+
- Fix signal handling in the case of an error in inetd(8)'s config file.
+
- Import SYN cache code to deflect SYN flood attacks, controlled with sysctl(3)s net.inet.tcp.syncachelimit and net.inet.tcp.synbucketlimit. From NetBSD, based on work by David Borman.
+
- Unbreak ifconfig destroy on vlan(4) interfaces when MROUTING is defined.
+
- In yacc(1), make sure extern YYSTYPE doesn't get #ifdef'd out when generating a .h file.
+
- Keep track of parent vnodes on ufs filesystems, this will be needed soon.
+
- Add some rwlocks around kernel file descriptor code, avoiding some rare race conditions.
+
+
- Don't allow a tun(4) cloner interface to be destroyed if there are any outstanding knote(9)s.
+
- Fix a few strlcpy(3) off-by-ones in pfctl(8).
+
- New -F flag for rtsold(8), which automagically sets the inet6 sysctl(3) values it needs. Useful for boot floppies.
+
- Support NOTE_EOF for kqueue(2) read events.
+
- Some string and memory leak cleanup in bgpd(8). Still work in progress.
+
- Merge in libstdc++ (gcc 3.3.2) for gcc3.
+
- Only prevent the removal of removable scsi(4) devices.
+
- Merge nm(1) with size(1) under src/usr.bin/nm.
+
- Teach nm(1) all about ELF.
+
- Really stop the compiler optimising away memset(3) calls used to zero sensitive data in sudo(8). From sudo CVS.
+
- Major changes to the i386 master boot record, which now uses EDD if available to support booting from a partition more than 8GB from the start of the disk. The 8GB size limit is still in place.
+
+
- Begin a cleanup of config(8).
+
- Don't ignore the '!' operator on the interface for pf(4) binat rules.
+
- Implement buffered logging in syslogd(8). Logs may be stored in a ring buffer and extracted using a client such as the new syslogc(8).
+
- Add option INET6, rtsol(8) and ping6(8) onto boot floppies/CD images where it will fit.
+
+
- Work continues on bgpd(8).
+
- Use fgets(3) instead of fgetln(3) in user(8), killing a sparc64 bus error along the way.
+
- SECURITY FIX: Several message handling flaws in isakmpd(8) have been reported by Thomas Walpuski. These allow an attacker to delete arbitrary SAs.
+ A source code patch is available.
+ [Applied to stable]
+ - In isakmpd(8) only allow an INITIAL-CONTACT when a main-mode SA is in place, and never delete SPIs based on it.
+ - gcc3 handles varargs differently, change the kernel sources to deal with it.
+
- Some poll(2)-related fixes to select(2) under pthreads. From FreeBSD.
+
- Fix objcopy(1)'s long options list, unbreaking strip(1)'s -s option and others (PR#3623.)
+
- Don't create a pid file for rtsold(8).
+
- If the scsi(4) error code is unknown, at least show the code we didn't have a message for.
+
+
- Use a memory pool(9) instead of MALLOC(9) for inet and inet6 PCBs. From NetBSD five years ago.
+
- Recognise and handle a few more scsi(4) reset conditions.
+
- Bring the scsi(4) error description list up-to-date with SCSI-3.
+
- Add bgpd(8) control program bgpctl(8).
+
+
- For i386 only, incread SHMMAXPGS from 2048 to 8192.
+
- In the all-architectures kernel config, bump SHMMNI from 32 to 128, and SHMSEG from 8 to 128.
+
- If pkg_add(1) fails in the postinstall script, record the package as a borked install instead of dying with a bunch of unregistered files all over the place.
+
- In libpthread, make poll(2), readv(2) and writev(2) cancellation points too.
- Undefer and handle pending signals in all code paths of pthread_join(3).
- On i386, stop the FPU exception tests hanging amd64 and new Transmeta CPUs.
@@ -796,7 +1024,7 @@
www@openbsd.org
-
$OpenBSD: plus.html,v 1.900 2004/01/01 15:45:27 deraadt Exp $
+
$OpenBSD: plus.html,v 1.901 2004/01/25 19:02:11 deraadt Exp $