[odc] Daily src changes for 2003-03-19
ODC
auto at squish.net
Thu Mar 20 07:00:19 GMT 2003
OpenBSD src changes summary for 2003-03-19
==========================================
distrib/notes gnu/usr.sbin/mkhybrid
lib/libskey lib/libssl
regress/sbin regress/sys
sbin/pfctl share/man
sys/arch/i386/pci sys/dev/pci
usr.bin/calendar usr.sbin/dhcp
usr.sbin/httpd
== distrib =========================================================== 01/09 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/distrib
notes
~ hp300/hardware
> Kathmandu here too (miod@)
~ i386/hardware
> add more auich devices (mickey@)
== gnu =============================================================== 02/09 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/gnu
usr.sbin/mkhybrid
~ src/desktop.c
> Return 0 on success, rather than falling off the end of a function
> prototyped
> as returning int. (drahn@)
== lib =============================================================== 03/09 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/lib
libskey
~ skey.3
> document the number of bytes required for btoa8 (millert@)
libssl
~ src/crypto/rsa/rsa_eay.c ~ src/crypto/rsa/rsa_lib.c
TAGGED OPENBSD_3_1
> Errata #024 (markus):
> Enforce blinding on RSA operations involving private keys. (miod@)
~ src/crypto/rsa/rsa_eay.c ~ src/crypto/rsa/rsa_lib.c
TAGGED OPENBSD_3_2
> Errata #11 (markus):
> Enforce blinding on RSA operations involving private keys.
> millert@ markus@ ok (margarida@)
~ src/ssl/s3_srvr.c
TAGGED OPENBSD_3_2
> Fix for Klima-Pokorny-Rosa attack on RSA in SSL/TLS, see
> http://marc.theaimsgroup.com/?l=bugtraq&m=104811162730834&w=2 (markus@)
~ src/ssl/s3_srvr.c
TAGGED OPENBSD_3_1
> Errata #025 (markus):
> Fix for Klima-Pokorny-Rosa attack on RSA in SSL/TLS (miod@)
~ src/ssl/s3_srvr.c
TAGGED OPENBSD_3_2
> Errata #11 (markus):
> Fix for Klima-Pokorny-Rosa attack on RSA in SSL/TLS (margarida@)
== regress =========================================================== 04/09 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/regress
sbin
~ pfctl/Makefile + pfctl/pf60.in
+ pfctl/pf60.loaded + pfctl/pf60.ok
> test netmasks with multicast addresses (henning@)
sys
~ dev/audio/adpcm.c
> spelling fix
> ok jason@ (david@)
== sbin ============================================================== 05/09 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/sbin
pfctl
~ parse.y
> kill the address token and move the host() invocation up to the host token,
> so that host() always gets the full address to be parsed including the
> netmask instead of applying the netmask afterwards. this could break some
> edge cases and was broken since the (interface)/24 fix.
> new token dynaddr for, well, dynaddr, and apply an eventually given netmask
> afterwards in the host token just in this case.
> found after bug report From: Julien Bordet <zejames at greyhats.orgia
> dhartmei
> ok daniel cedric (henning@)
~ pfctl_parser.c
> inet_net_pton acts weird when it comes to multicast addresses. so pass the
> netmask given by the OP to host_v4(), and in case it wasn't specified, do
> not trust inet_net_pton telling is it is a /4 but use /32. otherwise, "pass
> in from 224.0.0.6" suddenly became "pass in from 224.0.0.0/4", which is
> clearly not the desired result.
> inet_net_pton behaviour under investigation, using the least intrusive fix
> for now.
> found after bug report From: Julien Bordet <zejames at greyhats.orgia
> dhartmei
> ok daniel cedric (henning@)
== share ============================================================= 06/09 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/share
man
~ man4/ne.4
> add a list of supported devices (not including the victims of the
> 'conversion program' as other places do not) (mickey@)
~ man4/ne.4
> add pci devices and note the bus (w/o a tbl per millert suggestion)
> (mickey@)
~ man4/man4.hp300/dio.4 ~ man4/man4.hp300/grf.4
~ man4/man4.hp300/intro.4 ~ man4/man4.hp300/topcat.4
> Mention the Kathmandu frame buffer as being supported as one of the best
> felines. (miod@)
~ man4/auich.4
> it does nforce2 as well now (mickey@)
== sys =============================================================== 07/09 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/sys
arch/i386/pci
~ agp_machdep.c
> Add i830 support from NetBSD via patch in kernel/3150.
> Verified to not break i81[05] and tested on two i830s. (millert@)
dev/pci
~ pcidevs
> s/82845G_IV/82845G_IGD/ from NetBSD (millert@)
~ pcidevs.h ~ pcidevs_data.h
> regen (millert@)
~ agp_i810.c ~ agpreg.h
> Add i830 support from NetBSD via patch in kernel/3150.
> Verified to not break i81[05] and tested on two i830s. (millert@)
~ pcidevs ~ auich.c
> match on nvidia nforce2; from netbsd@ via wayne at epipe.com.auiod@ ok
> (mickey@)
~ pcidevs.h ~ pcidevs_data.h
> regen (mickey@)
~ pcidevs
> Add ProSavage DDR video; Nick Holland (millert@)
~ pcidevs.h ~ pcidevs_data.h
> regen (millert@)
== usr.bin =========================================================== 08/09 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin
calendar
~ calendars/calendar.openbsd
> bind9 & propolice
> reminded by Andrew Basterfield <bob at cemetery.homeunix.orghenning@)
== usr.sbin ========================================================== 09/09 ==
http://www.openbsd.org/cgi-bin/cvsweb/src/usr.sbin
dhcp
~ server/confpars.c
> Fix parsing of the leases file.
> src & dst parameters to the only remaining strncpy() in the file were
> reversed. Use strlcpy() instead, with parameters in correct order.
> ok millert at .rw@)
httpd
~ src/modules/ssl/ssl_engine_init.c
> use RSA key blinding code from mod_ssl 2.8.13. differences to our own fix
> that was already in are purely cosmetical, but this will make the future
> merge of mod_ssl 2.8.13 easier. (henning@)
===============================================================================
More information about the odc
mailing list