OpenBSD Journal

OpenBSD Journal

OpenBSD -current drops -beta tag, goes to 7.5

Contributed by Peter N. M. Hansteen on from the puffing up the versions again dept.

A clear sign that the OpenBSD 7.5 release cycle is entering the final phases just emerged.

In this commit, Theo de Raadt (deraadt@) changed the version string to 7.5:

From:       Theo de Raadt <deraadt () cvs ! openbsd ! org>
Date:       2024-02-29 17:05:10

CVSROOT:	/cvs
Module name:	src
Changes by:	deraadt@cvs.openbsd.org	2024/02/29 10:05:10

Modified files:
	sys/conf       : newvers.sh 

Log message:
move from 7.5-beta to 7.5

Read more…

IPv6 for ppp(4) enabled in -current.

Contributed by Janne Johansson on from the upppgrading to the sixes dept.

In this commit, Denis Fondras (denis@) added code to allow IPv6 over PPP. The message reads,

Subject:    CVS: cvs.openbsd.org: src
From:       Denis Fondras <denis () cvs ! openbsd ! org>
Date:       2024-02-28 16:08:34

CVSROOT:	/cvs
Module name:	src
Changes by:	denis@cvs.openbsd.org	2024/02/28 09:08:34

Modified files:
	share/man/man4 : ppp.4 
	sys/net        : if_ppp.c if_pppvar.h 

Log message:
Enable IPv6 AF for ppp(4)

OK claudio@

With this one commit, the brave new world of IPv6 opens up to a whole chunk of traditional-style Internet users.

mwx(4), another new wi-fi driver, added to -current

Contributed by rueda on from the it's-raining-wi-fi-drivers dept.

Hot on the heels of qwx(4) [see earlier report], and soon after going -beta, -current has gained another new wi-fi driver - mwx(4). Claudio Jeker (claudio@) committed the import:

CVSROOT:	/cvs
Module name:	src
Changes by:	claudio@cvs.openbsd.org	2024/02/21 03:48:10

Modified files:
	sys/dev/pci    : files.pci 
Added files:
	sys/dev/pci    : if_mwx.c if_mwxreg.h 

Log message:
Import mwx(4) a driver for Mediatek MT7921 and MT7922 802.11ax devices

This is work in progress. Scan works, RX of packets is more or less there
but TX does not work yet. The packets are passed to the chip but get stuck
or ignored there. It is easy to hang the device or the system since device
reset is not quite right (like many other bits).

Also this is only for MT7921 right now since I have no access to a MT7922
device.

Lots of pushing from deraadt@ to commit this now.

So, WIP and MT7921-only [at this stage], but very promising.

New code for SIGILL faults help identify misbranches

Contributed by Janne Johansson on from the don't pee on the electric fence dept.

If you run recent OpenBSD on certain amd64 or aarch64 platforms, indirect branching to an "unexpected" location will crash your program, in order to prevent ROP attacks and similar ways to have your program execute code where it shouldn't.

The OpenBSD compiler will insert an extra instruction in all the places where a branch is supposed to land, and if it lands anywhere else, a CPU fault is raised and your program gets an "Illegal Instruction".

Previously, crashes of this kind have looked more or less like any other kind of fault where code is executing random data or from random locations, but since the kernel knows when this has happened, we can make it explicit that the fault is due to missing branch target instructions, which will help a lot when debugging.

Link to the commit here.

OpenBSD -current moves to 7.5-beta

Contributed by Janne Johansson on from the springtime for Puffy dept.

It's that time of the year again. With this commit, Theo de Raadt (deraadt@) changed the version string for the OpenBSD development branch (i.e. -current) to 7.5-beta:

CVSROOT:	/cvs
Module name:	src
Changes by:	deraadt@cvs.openbsd.org	2024/02/17 09:13:24

Modified files:
	sys/sys        : param.h 
	etc/root       : root.mail 
	sys/conf       : newvers.sh 
	sys/arch/macppc/stand/tbxidata: bsd.tbxi 
	share/mk       : sys.mk 
	usr.bin/signify: signify.1 

Log message:
move to 7.5-beta

With the upcoming release expected to appear in May, testing is particularly welcome.

7.5-beta snapshots are already appearing on the mirrors.

New wi-fi driver, qwx(4), enabled in -current

Contributed by rueda on from the qwx my line dept.

Stefan Sperling (stsp@) tooted regarding the addition of qwx(4) to -current:

The next set of #OpenBSD amd64/arm64 snapshots will start shipping the qwx driver for #ath11k QCNFA765 wifi devices.

My part-time effort on this driver started about a year ago, with much help from mpi@, @bluerise, kettenis@, and claudio@

https://marc.info/?l=openbsd-cvs&m=170801475321249&w=2

Edit: And I should mention that the OpenBSD Foundation supports this effort. Thanks to everyone who donated!

The QCNFA765 is found in some laptops.

The driver currently supports only 11a/b/g modes.

Thanks to Stefan, his helpers, and The OpenBSD Foundation!

Soft updates (softdep) support removed from -current

Contributed by rueda on from the don't-hold-your-breath dept.

Support for soft updates (softdep), disabled since before the 7.4 release [see earlier report], has been removed from -current by Bob Beck (beck@):

CVSROOT:	/cvs
Module name:	src
Changes by:	beck@cvs.openbsd.org	2024/02/03 11:51:59

Modified files:
	bin/ps         : ps.1 
	sbin/dump      : traverse.c 
	sbin/dumpfs    : dumpfs.c 
	sbin/fsck_ffs  : dir.c fsck.h main.c pass1.c pass2.c pass5.c 
	                 setup.c 
	sbin/growfs    : growfs.c 
	sbin/quotacheck: quotacheck.c 
	share/man/man5 : fs.5 
	sys/conf       : files 
	sys/ddb        : db_interface.h 
	sys/dev        : softraid.c 
	sys/kern       : kern_physio.c spec_vnops.c vfs_bio.c vfs_subr.c 
	                 vfs_sync.c vfs_syscalls.c 
	sys/sys        : buf.h mount.h proc.h vnode.h 
	sys/ufs/ffs    : ffs_alloc.c ffs_balloc.c ffs_extern.h 
	                 ffs_inode.c ffs_softdep.c ffs_softdep_stub.c 
	                 ffs_vfsops.c ffs_vnops.c fs.h softdep.h 
	sys/ufs/ufs    : inode.h ufs_extern.h ufs_inode.c ufs_lookup.c 
	                 ufs_vnops.c 
	sys/uvm        : uvm_swap.c 

Log message:
Remove Softdep.

Softdep has been a no-op for some time now, this removes it to get
it out of the way.

Flensing mostly done in Talinn, with some help from krw@

ok deraadt@

Donate!

Donate to OpenBSD

Features

We are constantly on the lookout for stories of how you put OpenBSD to work. Please submit any informative articles on how OpenBSD is helping your company.

OpenBSD Errata

OpenBSD 7.4

0142024-02-29 SECURITY vmm(4) did not restore GDTR limits properly on Intel (VMX) CPUs.
0132024-02-13 SECURITY DNSSEC protocol vulnerabilities have been discovered that render various DNSSEC validators victims of Denial Of Service while trying to validate specially crafted DNSSEC responses. Fix CVE-2023-50387 and CVE-2023-50868 in unwind(8) and unbound(8).
0122024-01-16 SECURITY Fix multiple xserver heap buffer overflows, out of bounds memory accesses and memory corruption. CVE-2023-6816 CVE-2024-0229 CVE-2024-21885 CVE-2024-21886 CVE-2024-0408 CVE-2024-0409
0112023-12-18 SECURITY An SSH protocol weakness (the Terrapin Attack) exists that allows an on-path adversary to disable keystroke timing obfuscation.
0102023-12-14 SECURITY Fix out of bounds memory accesses in XRandR and XKB X server extensions. CVE-2023-6377 CVE-2023-6478
0092023-12-10 RELIABILITY A race condition between pf(4)'s processing of packets and expiration of packet states may cause a kernel panic.

Unofficial RSS feed of OpenBSD errata

OpenBSD 7.3

0262024-02-13 SECURITY DNSSEC protocol vulnerabilities have been discovered that render various DNSSEC validators victims of Denial Of Service while trying to validate specially crafted DNSSEC responses. Fix CVE-2023-50387 and CVE-2023-50868 in unwind(8) and unbound(8).
0252024-01-16 SECURITY Fix multiple xserver heap buffer overflows, out of bounds memory accesses and memory corruption. CVE-2023-6816 CVE-2024-0229 CVE-2024-21885 CVE-2024-21886 CVE-2024-0408 CVE-2024-0409
0242023-12-18 SECURITY An SSH protocol weakness (the Terrapin Attack) exists that allows an on-path adversary to disable keystroke timing obfuscation.
0232023-12-14 SECURITY Fix out of bounds memory accesses in XRandR and XKB X server extensions. CVE-2023-6377 CVE-2023-6478
0222023-12-10 RELIABILITY vmm(4) restored stale GDTR & TR values on vm exit which could lead to memory corruption or kernel deadlocks.
0212023-11-29 SECURITY A crafted regular expression when compiled by perl can cause a one-byte attacker controlled buffer overflow in a heap allocated buffer. CVE-2023-47038

Unofficial RSS feed of OpenBSD errata

XML/RSS/RDF

Users wishing RSS/RDF summary files of OpenBSD Journal can retrieve: RSS feed

Options are available.

Credits

Copyright © - Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]