=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/plus59.html,v retrieving revision 1.5 retrieving revision 1.6 diff -c -r1.5 -r1.6 *** www/plus59.html 2016/03/02 16:39:59 1.5 --- www/plus59.html 2016/03/03 18:48:26 1.6 *************** *** 76,81 **** --- 76,231 ----

In fdisk(8), make -i zap any undesirable GPT hanging around, just like the reinit command does. +
In rtadvd(8), fix dynamic prefix tracking. +
In smtpd(8): +
- Support user+tag epxansion in aliases. +
- While delivering to lmtp or mda, accept the optional "as user" parameter in smtpd.conf(5). +
- Fix IPv6 address parsing in smtpd.conf(5). +
- Allow the use of the tls+backup:// schema in smtpd.conf(5). +
- Remove table-passwd, table-sqlite and table-ldap. +
+
In ubcmtp(4), add support for the touchpad found on the MacBooPro12,1. +
Use pledge(2) in adventure(6), backgammon(6), boggle(6), bs(6), canfield(6), fish(6), gomoku(6), grdc(6), mille(6), prime(6), ssh-keysign(8), trek(6) and wump(6). + +
Make it possible to detach bge(4). +
Add OpenBSD::Pledge, a Perl interface to pledge(2). +
In xhci(4): +
- Make the integrated SD card reader in the MacBookPro12,1 attach. +
- Make hotplugging USB 3.0 devices work on the MacBookPro12,1. +
+
Convert the simple list of multipath route entries used by ART kernels to a SRP list. This makes the rtable_* layer MP-safe. +
Remove stdethers(8) and stdhosts(8). +
In atc(6), battlestar(6) and robots(6), use pledge(2) and move the score file to the user's home directory. +
Use pledge(2) in cribbage(6). +
In make(1), fix duplicate targets in target list. + +
In skeyinit(1): +
- Use pledge(2). +
- Allow the -n flag to work in -s mode. +
+
In installboot(8), back out pledge(2). +
Mark the interrupt handler for pci (but not sbus) attached gem(4) as MP-safe. + +
In ssh-keygen(1), do not leak a temporary file if there is no known_hosts file. +
In sshd(8), don't include port number in tcpip-forward replies for requests that don't allocate a port (bz#2509). +
In doas(1), don't write past the end of a buffer after reading too long a line from the configuration file. +
On sparc64, don't panic in pmap_enter() if we deplete the pool of pv entries and the PMAP_CANFAIL flag is set. +
In pci(4), do not report a bus conflict for bridges that are left (partly) unconfigured by the system firmware. +
In df(1), avoid reading past the end of a buffer. +
In ugen(4), attach the iPhone 6. +
In snake(6), use pledge(2) and move the score file into the user's home directory. +
Change the command-line syntax of vmmctl(8). + +
In efiboot, avoid setting mode to GOP if the mode is unchanged. Also don't panic if the setting mode is failed. +
Remove rpc.yppasswdd(8). +
Use pledge(2) in installboot(8), login_radius(8) and scp(1). +
In chpass(1), login_chpass(8) and passwd(1), delete YP password related code. +
In rpc.bootparamd(8), delete YP lookup code. +
In syslog.conf(5), disable the *.emerg block by default. +
Automatically start vmm(4) when the first VM is created and after the last VM is terminated. This removes the explicit enable and disable cmmands from vmmctl(8) and vmm.conf(5). +
In fdisk(8), when prompting for a GPT partition type, use the partition's current type as default; and when prompting for an LBA, show the minimum and maximum values in the prompt. + +
In ifconfig(8), fix breakage when re-configuring an IPv6 static address. +
Stop building Mesa on alpha on mips64 because of gcc and binutils issues. + +
Replace IFF_OACTIVE manipulation with MP-safe operations. +
Add sendsyslog2(2). This makes it possible to remove the direct /dev/console opening code from libc. +
On libc, use reentrant versions of getpwnam(3), getpwuid(3), getgrnam(3), and getgrgid(3) within libc to avoid reusing the static buffers returned by the non-reentrant versions. +
In tmux(1): +
- Show libevent version in showmsgs -I. +
- All kill-session -C to clear alerts in all windows. +
- Remove the -I part of show-messages.The server start time can be accessed with a new start_time format. +
+
In pciide(4), allow to reliably found disks on Xserve G5 by increasing the delay between the PHY reset and the status check for ServerWorks SATA. +
In vi(1), turn on filename tab completion by default. + +
In telnet(1), don't support repeated connections. This avoids problems with pledge(2). +
In atc(6), battlestar(6), hack(6), phantasia(6), robots(6), sail(6), and snake(6), remove the setgid bit. +
In canfield(6), remove the setgid bit and move score files into the user's home directory. +
Use pledge(2) in fdisk(8) and mount(8). +
Remove support for "lookup yp" in resolv.conf(5). It is incompatible with pledge(2). +
In vmd(8), add the -d and -v flags. +
In resolv.conf(5), remove support for "lookup yp". +
In vmd(8), add support for logging to stderr or syslog, and to run it in foreground with -d option. +
In sndiod(8): +
- Ensure the /tmp/aucat directory gets the right permissions. +
- Exit cleanly in the case where the clock is ticking because of a MMC start message. +
- Remove the unused -M option. +
+
Attach zs(4/macppc) as "zs" rather than "zsc". +
In bc(1), fix printing of non-ASCII characters in an error message and fix a number of problems caused by invalid input. + +
In vmmctl(8), add support for vmm.conf(5). +
Add vmd(8) and vmmctl(8). +
In tmux(1), if display-time is set to 0, show status messages until a key is pressed. +
In ospfctl(8), print what ospfd(8) thinks is connected by adding a "C" to the nexthop output. +
In ospfd(8), improve ABR support especially for self-originated stub networks. This solves the last issues when using ospfd(8) in multiple areas. + +
Import mesa 11.0.6. +
Use pledge(2) in nsd(8). +
In pcidump(8), print the PCI power state when -v is given. +
In fdisk(8), bring GPT partition editing into line with MBR partition editing. +
Fix inteldrm(4) on recent Apple hardware. +
Make sdhc(4) work with 64-bit memory BARs such as those found on the new PC Engines apu. +
In tail(1), improve fixes for running without -f. +
In vmm(4), do not create a VM if vmm mode hasn't been enabled. + +
In fdisk(8), fix several nits in editing partitions. +
In mandoc(1), fix multiple issues regarding process group and signal mask handling. +
Remove login_tis(8). +
In the installer, do not auto-skip X sets on systems without wscons(4). +
In em(4), revert all the changes to run the tx completion path without holding the kernel lock. It causes "watchdog timeout" problems. +
In cvs(1), disable server-side pserver support. +
In sppp(4), remove support for SPPP with framing. It is no longer used. +
In ed(1), restore the user-defined prompt (specified with -p) when it was turned off and then on again with "P". +
Use pledge(2) in monop(6), skeyinit(1), tetris(6), trpt(8), worm(6) and worms(6). + +
Repair most cases of "tail +n" usage. +
In tmux(1), only assume pasting with at least two characters. +
Update to flex(1) 2.5.39 and add various improvements including use of pledge(2). +
In fdisk(8), when an existing partition is modified in LBA mode, ensure that the partition table is marked dirty so that it gets written when "quit" is issued. +
In tail(1), allow tailing multiple files. +
Use pledge(2) in OpenCVS. +
In the kernel, don't try and wakeup other threads to handle pending work when it is known there's only one thread in the taskq. +
In newsyslog(8), back out pledge(2). +
In ssh(1), disallow ConnectionAttempts=0. +
In vi(1), remove cscope support. + +
In the installer, set "prohibit-password" in sshd_config(5) instead of "without-password". +
Use pledge(2) in fvwm(1), FvwmPager(1), hotplugd(8), locale(1), sensorsd(8). +
Add icdb, the Internal C Database: a simpler replacement for the old Berkeley DB code. +
Add getpwnam_shadow(3) and getpwuid_shadow(3). These functions will always open the secure/shadow/master password files. +
In cnmac(4/octeon), fix the reception of short non-IP packets by accounting of padding with dynamic short packets. +
In tmux(1), add the "s/foo/bar/:" prefix for formats to substitute bar for foo. +
Fix a regression introduced by the rtalloc(9) rewrite where only the first route of a multipath chain had a valid next hop and could be used. +
In ssh-keygen(1), fix -l for private keys. This was broken in support for multiple plain keys on stdin. +
In sndiod(8), disable -L (networking) until privilege separation is implemented. + +
In fdisk(8), since -e edits the on-disk information, remove GPT and re-read it from disk if appropriate. +
In crontab(1), check for setgid(2) failure before executing editor and warn if the exec of shell + editor fails. +
In ntpd(8), fix memory leak in remove a constraint code path. +
In trpt(8), remove the setgid bit. +
In tetris(6), remove the setgid bit and move score files into the user's home directory. +
Remove lptest(1), pac(8) and yptest(8), +
In bge(4), clear the interface timer when shutting down the interface so the watchdog timer doesn't fire a few seconds later. +
In snmpd(8), exclude sensors marked as invalid from the sensors MIB. +
Use pledge(2) in cvs(1), getconf(1), newsyslog(8), sa(8) and showmount(8). +
Unbreak next-hop caching on multipath setups: when multiple gateways are in use, the next-hop entry might not be on the same interface. +
In bgpd(8), in the session engine, handle loss of the pipe with a normal shutdown of sessions and exit. + +
In ssh-keygen(1), allow fingerprinting from standard input and support fingerprinting multiple plain keys in a file and authorized_keys files (bz#1319). +
Use pledge(2) in calendar(1), gprof(1), mail(1), and shutdown(8). +
In at(1), make -l comply with POSIX. +
Fix a panic that happens when radeomdrm(4) detaches because the hardware couldn't be initialized properly. +
In pvbus(4), fix a panic on i386 under VMware. +
Add the QuoVadis root certificates to /etc/ssl/cert.pem.
In sshd(8), add a new authorized_keys option "restrict" that includes all current and future key restrictions. Also add permissive versions of the existing restrictions.
In ssh_config(5), add the AddKeysToAgent option. *************** *** 233,239 ****
Add Chacha20-Poly1305 to the OpenBSD Cryptographic Framework and enable it in the software crypto driver and the IPsec/ESP and PF_KEY frameworks.
In whois(1), add -I to use whois.iana.org (root zone database).
In tcpdump(8), print RDNSS nameserver addresses and option names for some other known options that are not otherwise decoded yet (DNSSL, route information). !
In libssl, add EVP_aead_chacha20_poly1305_ietf(3), a ChaCha20 with a Poly1305 authenticator for IETF protocols.
Remove ARP load-balacing in order to simplify making ARP MP-safe.
In xhci(4), mark the interrupt handler as IPL_MPSAFE since it only schedules a soft-interrupt.
In ikectl(8): --- 383,389 ----
Add Chacha20-Poly1305 to the OpenBSD Cryptographic Framework and enable it in the software crypto driver and the IPsec/ESP and PF_KEY frameworks.
In whois(1), add -I to use whois.iana.org (root zone database).
In tcpdump(8), print RDNSS nameserver addresses and option names for some other known options that are not otherwise decoded yet (DNSSL, route information). !
In libssl, add EVP_aead_chacha20_poly1305_ietf(3), a ChaCha20 with a Poly1305 authenticator for IETF protocols.
Remove ARP load-balacing in order to simplify making ARP MP-safe.
In xhci(4), mark the interrupt handler as IPL_MPSAFE since it only schedules a soft-interrupt.
In ikectl(8):