OpenBSD Journal

OpenBSD Journal

Game of Trees 0.103 released

Contributed by rueda on from the again-and-again-and dept.

Version 0.103 of Game of Trees has been released (and the port updated).

* got 0.103; 2024-09-24
  see git repository history for per-change authorship information
- fix bug causing performance to degrade as more and more pack files appear
- tog: add diff view 'p' keymap to write the diff to file
- tog: display diffstat in diff view when diffing blobs or trees directly
- gotwebd: show commit id prefix on briefs page
- add support for HMAC digests to gotd HTTP notifications
- move authentication credentials from gotd.conf(5) to gotd-secrets.conf(5)
- fix spurious tog regression test failures on slower machines
- restore abort() calls in lib/hash.c to quiet potential compiler warnings
- gotwebd: unbreak listing of tags on the summary page (regression from 0.102)
- gotwebd: minor tweaks to the HTML for ease of styling

rpki-client 9.2 released

Contributed by rueda on from the key-route dept.

Sebastian Benoit (benno@) announced the release of version 9.2 of rpki-client, the essential component for routing security.

See the full announcement for further details.

Here are some key excerpts from the release announcement:

This release includes the following changes to the previous release:

- Ensure synchronization jobs are stopped when the timeout is reached.

- Fix a corner case in repository handling. If the last RRDP repository
  failed to load, rpki-client would fail to fall back to rsync due to an
  ordering bug in the event loop.

- Improve detection of duplicate file paths. Only trigger a duplicate
  error if a valid path is revisited otherwise a bad CA could prevent
  legitimate files from being considered valid.

- Normalize internal representation of the caRepository to have a
  trailing slash and ensure that the rpkiManifest is a file inside it.

No unmodified files remain from original import of OpenBSD

Contributed by rueda on from the plus-ça-change dept.

All files from the original import of OpenBSD have now been modified (or deleted). Appropriately, Theo de Raadt (deraadt@) made the change:

CVSROOT:	/cvs
Module name:	src
Changes by:	deraadt@cvs.openbsd.org	2024/08/23 11:29:08

Modified files:
	games/quiz     : Makefile 
	games/quiz/datfiles: index 
Added files:
	games/quiz/datfiles: ship 
Removed files:
	games/quiz/datfiles: greek 

Log message:
The greek quiz is so obscure that it is ridiculous -- noone can play
this.  Replace it with a new quiz about galley (ship) parts.  This
commit changes the *LAST UNMODIFIED ORIGINAL FILE* (meaning revision
1.1.1.1) from the original import that created OpenBSD on Oct 18,
1995.  With this commit, we have completed an amusing mission of
replacing the final parts of the original OpenBSD.

We have reached OpenBSD of Theseus.

ideas & assistance from mglocker, naval terminology help from jmc

Possible future vmm(4)/vmd(8) on arm64

Contributed by rueda on from the armed-and-virtual dept.

In an exciting move, Mike Larkin (mlarkin@) has requested hardware for vmm(4) development on the arm64 platform:

CVSROOT:	/cvs
Module name:	www
Changes by:	mlarkin@cvs.openbsd.org	2024/07/27 18:31:12

Modified files:
	.              : want.html 

Log message:
Mac mini M2 needed for vmm(4) development.

This follows several earlier commits [by Dave Voutila (dv@)] splitting vmm(4)/vmd(8) into MI and MD parts.

UDP parallel input committed to -current

Contributed by rueda on from the UDP-Done-in-Parallel dept.

Support for UDP parallel input [on which we reported previously] has been committed to -current by Alexander Bluhm (bluhm@):

CVSROOT:	/cvs
Module name:	src
Changes by:	bluhm@cvs.openbsd.org	2024/07/26 08:38:20

Modified files:
	sys/netinet    : in_proto.c 
	sys/netinet6   : in6_proto.c 

Log message:
Run UDP input on multiple CPU in parallel.

Read more…

Incoming: UDP parallel input

Contributed by Peter N. M. Hansteen on from the faster packets, more dept.

UDP input is about to become faster and parallel on OpenBSD. In a message to tech@ titled UDP parallel input, Alexander Bluhm (bluhm@) offers a diff that enables parallel UDP input for -current.

The message reads,

List:       openbsd-tech
Subject:    UDP parallel input
From:       Alexander Bluhm <bluhm () openbsd ! org>
Date:       2024-07-23 13:40:21

Hi,

mvs@ has completed the final bits to make socket buffer MP safe for
UDP packets.  This means that we can run UDP input on multiple
threads.  Diff below activates this.

Read more…

Donate!

Donate to OpenBSD

Features

We are constantly on the lookout for stories of how you put OpenBSD to work. Please submit any informative articles on how OpenBSD is helping your company.

OpenBSD Errata

OpenBSD 7.5

0062024-08-19 SECURITY cron(8) and crontab(1) can crash due to incorrect /step values. CVE-2024-43688
0052024-08-02 SECURITY sndiod(8) main process could crash due to buffer overread.
0042024-06-26 RELIABILITY Repair a withdraw desyncronization problem in bgpd(8).
0032024-05-10 RELIABILITY A missing bounds check could lead to a crash in libcrypto.
0022024-04-11 RELIABILITY Install media for alpha architecture was broken due to strip(1) bug.
0012024-04-08 SECURITY Fix multiple heap buffer overread and data leakage in the X11 server Xi extension and use after free in the Render extension. CVE-2024-31080 CVE-2024-31081 CVE-2024-31083

Unofficial RSS feed of OpenBSD errata

OpenBSD 7.4

0192024-08-19 SECURITY cron(8) and crontab(1) can crash due to incorrect /step values. CVE-2024-43688
0182024-08-02 SECURITY sndiod(8) main process could crash due to buffer overread.
0172024-06-26 RELIABILITY Repair a withdraw desyncronization problem in bgpd(8).
0162024-04-08 SECURITY Fix multiple heap buffer overread and data leakage in the X11 server Xi extension and use after free in the Render extension. CVE-2024-31080 CVE-2024-31081 CVE-2024-31083
0152024-03-18 SECURITY In libexpat fix billion laughs attack vulnerability CVE-2024-28757.
0142024-02-29 SECURITY vmm(4) did not restore GDTR limits properly on Intel (VMX) CPUs.

Unofficial RSS feed of OpenBSD errata

XML/RSS/RDF

Users wishing RSS/RDF summary files of OpenBSD Journal can retrieve: RSS feed

Options are available.

Credits

Copyright © - Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]