===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/plus34.html,v
retrieving revision 1.60
retrieving revision 1.61
diff -c -r1.60 -r1.61
*** www/plus34.html 2019/05/27 22:55:22 1.60
--- www/plus34.html 2019/06/01 23:12:50 1.61
***************
*** 346,352 ****
Make the sysctl(3) toggle net.inet6.ip6.redirect work as expected.
Fix a potential use-after-free in icmp6 redirect code.
! Fix the abnormal exit code in ohci(4).
Plug memory leaks in modload(8), pkg_add(1) and usb(4).
Add -h option to ls(1) for human-readable sizes.
The gcc(1) -Wbounded checker can't handle variable-length arrays yet, so don't try.
--- 346,352 ----
Make the sysctl(3) toggle net.inet6.ip6.redirect work as expected.
Fix a potential use-after-free in icmp6 redirect code.
! Fix the abnormal exit code in ohci(4).
Plug memory leaks in modload(8), pkg_add(1) and usb(4).
Add -h option to ls(1) for human-readable sizes.
The gcc(1) -Wbounded checker can't handle variable-length arrays yet, so don't try.
***************
*** 874,880 ****
Reorder the sections in many manpages.
Use sete[ug]id(2) as well as set[ug]id() in ssh(1) when doing privsep and when permanently setting the [ug]id.
When setting the tcp6 mss, fetch the link mtu using IN6_LINKMTU() (which takes neighbour discovery mtu settings into account) instead of always using the interface mtu.
! Allow numeric uid and gid in systrace, and '<' and '>' operators for ids.
Add support for IPv6 jumbograms.
Fix some bugs IPv6-related bugs in tcp_trace().
--- 874,880 ----
Reorder the sections in many manpages.
Use sete[ug]id(2) as well as set[ug]id() in ssh(1) when doing privsep and when permanently setting the [ug]id.
When setting the tcp6 mss, fetch the link mtu using IN6_LINKMTU() (which takes neighbour discovery mtu settings into account) instead of always using the interface mtu.
! Allow numeric uid and gid in systrace, and '<' and '>' operators for ids.
Add support for IPv6 jumbograms.
Fix some bugs IPv6-related bugs in tcp_trace().
***************
*** 960,966 ****
Don't assume that rt->rt_ifp is valid in IPv6 neighbour discovery.
Add new ConnectTimeout option to ssh(1).
Disable Kerberos options to ssh(1) programs if Kerberos isn't compiled in, and warn if they're used.
! Have 'ssh -V' print the OpenSSL version properly, instead of trying to %s on a long.
Repair IPsec forwarding for IPv6, fixing PR#3231.
Fix a hang in libwrap when the hosts_access(5) file has a line containing > 2048 characters. (NetBSD pr#15025.)
Add multi-column output to the ls command of sftp(1).
--- 960,966 ----
Don't assume that rt->rt_ifp is valid in IPv6 neighbour discovery.
Add new ConnectTimeout option to ssh(1).
Disable Kerberos options to ssh(1) programs if Kerberos isn't compiled in, and warn if they're used.
! Have 'ssh -V' print the OpenSSL version properly, instead of trying to %s on a long.
Repair IPsec forwarding for IPv6, fixing PR#3231.
Fix a hang in libwrap when the hosts_access(5) file has a line containing > 2048 characters. (NetBSD pr#15025.)
Add multi-column output to the ls command of sftp(1).
***************
*** 1024,1030 ****
On ELF architectures, support the blocking of thread switches during non-thread-safe dynamic loader operations.
Sync ELF identification indexes with the System V ABI specs.
Stop AM7990 (le(4)) devices emitting 'lost carrier' messages.
! Back out <netinet/if_ether.h> changes after they caused userland meltdown.
Add propolice stack-smash protector support to the kernel, and build the kernel using it on architectures that support propolice.
Re-enable NULLFS, UMAPFS and UNION in the GENERIC kernel.
Move Ethernet definitions from <netinet/if_ether.h> to new <net/ethertypes.h>, like NetBSD.
--- 1024,1030 ----
On ELF architectures, support the blocking of thread switches during non-thread-safe dynamic loader operations.
Sync ELF identification indexes with the System V ABI specs.
Stop AM7990 (le(4)) devices emitting 'lost carrier' messages.
! Back out <netinet/if_ether.h> changes after they caused userland meltdown.
Add propolice stack-smash protector support to the kernel, and build the kernel using it on architectures that support propolice.
Re-enable NULLFS, UMAPFS and UNION in the GENERIC kernel.
Move Ethernet definitions from <netinet/if_ether.h> to new <net/ethertypes.h>, like NetBSD.
***************
*** 1160,1166 ****
[Applied to stable]
Allow pf(4) tables to be loaded into anchors. pfctl(8) table options except show and flush now honour -a.
! Have the dynamic linker stub functions in libc return -1 if called from a statically linked program.
Only build shared libXv if the target arch supports shared libraries.
Consign the omsync() system call to COMPAT_25 obscurity.
Fix parsing of the noac option to mount_nfs(8).
--- 1160,1166 ----
[Applied to stable]
Allow pf(4) tables to be loaded into anchors. pfctl(8) table options except show and flush now honour -a.
! Have the dynamic linker stub functions in libc return -1 if called from a statically linked program.
Only build shared libXv if the target arch supports shared libraries.
Consign the omsync() system call to COMPAT_25 obscurity.
Fix parsing of the noac option to mount_nfs(8).
***************
*** 1281,1287 ****
sudo(8)'s Makefile now honours the LDSTATIC flag.
Move queue ID assignment into the kernel and away from pfctl(8), solving a bunch of problems.
! Back out the earlier fix for PR#2230, which is a no-op since zombies aren't on the allproc list being scanned.
De-allocate bus space on wi(4) device failures.
Only print the less(1) -d prompt if there's enough space left on the status line (PR#3189).
--- 1281,1287 ----
sudo(8)'s Makefile now honours the LDSTATIC flag.
Move queue ID assignment into the kernel and away from pfctl(8), solving a bunch of problems.
! Back out the earlier fix for PR#2230, which is a no-op since zombies aren't on the allproc list being scanned.
De-allocate bus space on wi(4) device failures.
Only print the less(1) -d prompt if there's enough space left on the status line (PR#3189).