OpenBSD/src ew5hqFSusr.bin/tmux server-client.c tmux.1

   Add StatusDefault binding for the mouse on any otherwise unassigned
   parts of the status line, from Avi Halachmi.
VersionDeltaFile
1.274+71-19usr.bin/tmux/server-client.c
1.632+12-12usr.bin/tmux/tmux.1
1.877+3-1usr.bin/tmux/tmux.h
+86-323 files

OpenBSD/src VJrVAC4sys/arch/amd64/amd64 pctr.c ipifuncs.c, sys/arch/amd64/include pctr.h intrdefs.h

   Fix pctr(4) issues with MP and suspend:
    - use an IPI to notify other CPUs toi update CR4 and the MSRs
    - use the cpu(4) resume callback to restore the pctr(4) settings after
      suspend/hibernate

   ok kettenis@ deraadt@

OpenBSD/src M2iKHGbsys/arch/amd64/amd64 intr.c, sys/arch/amd64/include intrdefs.h

   X86_IPI_NAMES's only use was #if 0'ed out; delete both

   ok kettenis@ deraadt@

OpenBSD/src nAVjMM6share/man/man8 ssl.8

   update the example key size; from randy hartman
   ok tedu sobrado deraadt
VersionDeltaFile
1.67+3-3share/man/man8/ssl.8
+3-31 files

OpenBSD/src zH21n5Iregress/lib/libssl/tlsext tlsexttest.c

   Update regress following sigalgs changes.
VersionDeltaFile
1.29+1-17regress/lib/libssl/tlsext/tlsexttest.c
+1-171 files

OpenBSD/src bOy15Pvlib/libssl ssl_cert.c ssl_sigalgs.c

   Strip out all of the pkey to sigalg and sigalg to pkey linkages.

   These are no longer used now that we defer signature algorithm selection.

   ok beck@

OpenBSD/src xJVQZOmlib/libssl t1_lib.c ssl_locl.h

   tls1_process_sigalgs() is no longer needed.

   ok beck@
VersionDeltaFile
1.154+1-55lib/libssl/t1_lib.c
1.243+1-2lib/libssl/ssl_locl.h
+2-572 files

OpenBSD/src 3lF1rDDlib/libssl ssl_sigalgs.c ssl_clnt.c

   Defer sigalgs selection until the certificate is known.

   Previously the signature algorithm was selected when the TLS extension was
   parsed (or the client received a certificate request), however the actual
   certificate to be used is not known at this stage. This leads to various
   problems, including the selection of a signature algorithm that cannot be
   used with the certificate key size (as found by jeremy@ via ruby regress).

   Instead, store the signature algorithms list and only select a signature
   algorithm when we're ready to do signature generation.

   Joint work with beck@.

OpenBSD/src my9rpmqlib/libssl ssl_rsa.c

   Rework ssl_ctx_use_certificate_chain_bio() to use the CERT_PKEY chain.

   This means that any additional CA certificates end up on the per
   certificate chain, rather than the single/shared extra_certs.

   Also simplify this code and in particular, avoid setting the return value
   to indicate success until we've actually succeeded.

   ok beck@ tb@
VersionDeltaFile
1.31+26-46lib/libssl/ssl_rsa.c
+26-461 files

OpenBSD/src 3aNu04Ulib/libssl ssl_lib.c ssl_locl.h

   Remove ssl_get_server_send_cert() which is now unused.

   ok beck@ tb@
VersionDeltaFile
1.202+1-12lib/libssl/ssl_lib.c
1.241+1-2lib/libssl/ssl_locl.h
+2-142 files

OpenBSD/src 4t3chXAlib/libssl ssl_both.c ssl_srvr.c

   Rework ssl3_output_cert_chain() to take a CERT_PKEY and consider chains.

   We will now include the certificates in the chain in the certificate list,
   or use the existing extra_certs if present. Failing that we fall back to
   the automatic chain building if not disabled.

   This also simplifies the code significantly.

   ok beck@ tb@

OpenBSD/src vdGKg4Vlib/libssl ssl_cert.c ssl_locl.h

   Add a chain member to CERT_PKEY and provide functions for manipulating it.

   Note that this is not the full chain, as the leaf certificate currently
   remains in the x509 member of CERT_PKEY. Unfortunately we've got to
   contend with the fact that some OpenSSL *_chain_* APIs exclude the leaf
   certificate while others include it...

   ok beck@ tb@
VersionDeltaFile
1.73+66-2lib/libssl/ssl_cert.c
1.239+8-1lib/libssl/ssl_locl.h
+74-32 files

OpenBSD/src m5ppehhusr.bin/ssh ssh-keygen.c

   Expand comment to document rationale for default key sizes.
   "seems worthwhile" deraadt.
VersionDeltaFile
1.329+9-2usr.bin/ssh/ssh-keygen.c
+9-21 files

OpenBSD/src C1tbh1Eusr.bin/ssh ssh-keygen.c

   Increase the default RSA key size to 3072 bits.  Based on the estimates
   from NIST Special Publication 800-57, 3k bits provides security equivalent
   to 128 bits which is the smallest symmetric cipher we enable by default.
   ok markus@ deraadt@
VersionDeltaFile
1.328+6-3usr.bin/ssh/ssh-keygen.c
+6-31 files

OpenBSD/src HZfHX6Lusr.sbin/vipw vipw.c

   unveiling _PATH_MASTERPASSWD_LOCK requires an "r" permission
   as well in order to be able to do stat(1) on the lock file

   ok deraadt@
VersionDeltaFile
1.23+2-2usr.sbin/vipw/vipw.c
+2-21 files

OpenBSD/src ofg9siRdistrib/sets/lists/base mi

   sync
VersionDeltaFile
1.943+1-0distrib/sets/lists/base/mi
+1-01 files

OpenBSD/src c41YPY9etc/signify openbsd-66-syspatch.pub

   add syspatch signify key for 6.6

OpenBSD/src xQQUgRousr.bin/tmux tmux.1

   Fix columns of cursor_character format in list.
VersionDeltaFile
1.631+2-2usr.bin/tmux/tmux.1
+2-21 files

OpenBSD/src hL9P1vysys/arch/amd64/amd64 efifb.c

   Revert back to using previous values for EFIFB_WIDTH and EFIFB_HEIGHT,
   as raising them expose an issue which breaks inteldrm on large screen
   resolutions.

   Reported by chris@, and by Lucas Raab on bugs@. Thanks!
VersionDeltaFile
1.22+3-3sys/arch/amd64/amd64/efifb.c
+3-31 files

OpenBSD/src gTltquwusr.bin/tmux server-client.c

   Ignore mouse on status line which are not part of a range, GitHub issue 1649.
VersionDeltaFile
1.273+10-10usr.bin/tmux/server-client.c
+10-101 files

OpenBSD/src hs2Gmf0sys/dev/pci if_alc.c

   - Formatting fixes and in some cases bringing things a bit closer to the
     original code
   - Remove unusedd function decarations

   From Brad
VersionDeltaFile
1.46+88-92sys/dev/pci/if_alc.c
+88-921 files

OpenBSD/src LWP2UOlsys/dev/wscons wstpad.c

   Fix a precedence problem.
VersionDeltaFile
1.24+6-3sys/dev/wscons/wstpad.c
+6-31 files

OpenBSD/src a2A9RV1lib/libc/sys unveil.2

   BUGS goes last;
VersionDeltaFile
1.17+7-8lib/libc/sys/unveil.2
+7-81 files

OpenBSD/src bLgbXhHlib/libc/sys unveil.2

   Document the fact that readlink(2) can bypass restrictions as needed
   by realpath(3).  This will go away post 6.5.
   ok deraadt@
VersionDeltaFile
1.16+10-2lib/libc/sys/unveil.2
+10-21 files

OpenBSD/src SniXm9rsys/dev/pv if_vio.c vioblkreg.h

   virtio: Add a few feature bit defines and names

   ok mlarkin@

OpenBSD/src jipbbthsys/dev/fdt virtio_mmio.c, sys/dev/pci virtio_pci.c

   virtio: Prepare for 64 feature bits

   virtio 1.0 supports an arbitrary number of feature bits. However, so far
   no more than 64 are used (compared to 32 in virtio 0.9). Adjust data
   types to support 64 feature bits.

   Later, we may want to use bitmaps and setbit(), ... to support even more
   feature bits.

   ok mlarkin@

OpenBSD/src npi5HPNsys/dev/fdt virtio_mmio.c, sys/dev/pci virtio_pci.c

   virtio: adjust virtio_setup_queue prototype for 1.0

   Make it take an address instead of a PFN.
   Pass the virtqueue pointer. In virtio 1.0, more information has to be
   configured in the device. Also call virtio_setup_queue() after the
   information has been filled in.

   ok mlarkin@

OpenBSD/src l0Uz1izregress/sys/kern/unveil syscalls.c, sys/kern kern_unveil.c vfs_syscalls.c

   Make stat(2) and access(2) need UNVEIL_READ instead of UNVEIL_INSPECT

   UNVEIL_INSPECT is a hack we added to get chrome/glib working. It silently
   adds permission for stat(2), access(2), and readlink(2) to be used on
   all path components of any unveil'ed path. robert@ has sucessfully now
   fixed chrome/glib to not require exessive TOC vs TOU stat(2) and access(2)
   calls on the paths it uses,  so that this no longer needed there.

    readlink(2) is the sole call that is now permitted by UNVEIL_INSPECT,
   and this is only needed so that realpath(3) can work. Going forward we will
   likely make a realpath(2), after which we can completely deprecate
   UNVEIL_INSPECT.

   ok deraadt@

OpenBSD/src B2drRKPsys/dev/wscons wstpad.c wsmouse.c

   Switch to precision scrolling in wstpad.

OpenBSD/src pm9egj1lib/libc/crypt arc4random.c

   In the incredibly unbelievable circumstance where _rs_init() fails to
   allocate pages, don't call abort() because of corefile data leakage
   concerns, but simply _exit().  The reasoning is _rs_init() will only
   fail if someone finds a way to apply specific pressure against this
   failure point, for the purpose of leaking information into a core which
   they can read.  We don't need a corefile in this instance to debug that.
   So take this "lever" away from whoever in the future wants to do that.
VersionDeltaFile
1.55+2-2lib/libc/crypt/arc4random.c
+2-21 files

OpenBSD/src Tv2tFMrsbin/unwind resolver.c

   Reduce debug logging in best_resolver() to two lines, helps a bit with
   seeing what is going on.
   There is still a lot to do wrt logging but it's not a priority yet.
VersionDeltaFile
1.27+21-25sbin/unwind/resolver.c
+21-251 files

OpenBSD/src B43HHRLsbin/unwind resolver.c

   recheck all resolvers when we are no longer behind a captive portal
VersionDeltaFile
1.26+4-2sbin/unwind/resolver.c
+4-21 files

OpenBSD/src 3gUT1tEsbin/unwind resolver.c frontend.c

   Do not check every resolver every 30 seconds as that is wasteful and
   pointless.

   Trigger a check
   - on startup
   - when forwarders change on config reload
   - when dhcp provided forwarders change
   - on network interface state change

   When a check finishes and the checked resolver cannot resolve anything
   configure a timer to run another check in the future using an
   exponential backoff for the timeout.

OpenBSD/src rGrZIbysys/dev/wscons wsconsio.h

   Add new event types for precision scrolling.
VersionDeltaFile
1.91+7-1sys/dev/wscons/wsconsio.h
+7-11 files

OpenBSD/src Cjy0L3nsbin/unwind resolver.c

   If we can't check the resolver its state is UNKNOWN.
VersionDeltaFile
1.24+2-1sbin/unwind/resolver.c
+2-11 files

OpenBSD/src IzgOSPysbin/unwind resolver.c

   remove useless debug output
VersionDeltaFile
1.23+1-2sbin/unwind/resolver.c
+1-21 files

OpenBSD/src fVv38Fklib/libssl ssl_ciph.c

   If ssl_cipher_apply_rule() is given a specific cipher suite, match on it.

   Otherwise matching a specific cipher is performed by matching against
   its characteristics, which can result in multiple rather than a single
   match.

   Found by bluhm@'s regress tests.

   ok bluhm@ tb@
VersionDeltaFile
1.107+4-3lib/libssl/ssl_ciph.c
+4-31 files

OpenBSD/src Hho6XBmsys/arch/sparc64/conf files.sparc64

   Remove a stale kgdb dependency.

   OK deraadt@
VersionDeltaFile
1.152+2-2sys/arch/sparc64/conf/files.sparc64
+2-21 files

OpenBSD/src Gkga2N6lib/libcrypto/asn1 asn1_par.c

   Don't allow asn1_parse2 to recurse arbitrarily deep. Constrain to a max
   depth of 128 - For oss-fuzz issue 13802
   ok jsing@
VersionDeltaFile
1.27+5-1lib/libcrypto/asn1/asn1_par.c
+5-11 files

OpenBSD/src C8gWrijsys/dev/pci azalia_codec.c azalia.c

   Add a quirk for the Huawei Matebook X to activate the right-side
   speaker on its Dolby Atmos system.

   Through some extensive tracing of the Realtek Windows driver, I
   found the many hundreds of CORB commands that the Windows driver
   sends to initialize Dolby Atmos and activate both speakers.

   The list of CORB commands was optimized by Tomas Espeleta to reduce
   file size and then implemented in azalia by Stefan Sperling.

   ok stsp, deraadt

OpenBSD/src 843WVF4sys/dev/rasops rasops32.c

   Revert rasops32_putchar() changes introduced in revision 1.8.

   This significantly speeds up character plotting on inteldrm and
   radeondrm, and also on efifb(4) since the driver now remaps the
   framebuffer in write combining mode.

   OK kettenis@, jcs@
VersionDeltaFile
1.9+5-8sys/dev/rasops/rasops32.c
+5-81 files

OpenBSD/src i97srLglib/libcrypto/evp e_chacha20poly1305.c

   Cast nonce bytes to avoid undefined behaviour when left shifting.

   Reported by oss-fuzz, fixes issue #13805.

   ok beck@ tb@

OpenBSD/src FXRNuvSlib/libssl ssl_sess.c

   do not call assert(), which has a tendency to leave traces of stuff in
   corefiles.  Instead call OPENSSL_assert(), which has recently been trained
   to do this in a safer (if more awkward to debug) way.
   discussed with jsing and beck a while back
VersionDeltaFile
1.82+3-2lib/libssl/ssl_sess.c
+3-21 files

OpenBSD/src SfabCX6sys/arch/alpha/include cpu.h param.h

   Add intr_{disable,restore}() for alpha.

   Reminded by deraadt@

OpenBSD/src pmt13N0sys/arch/sh/include cpu.h

   Add intr_{disable,restore}() for sh.

   Reminded by deraadt@
VersionDeltaFile
1.28+13-1sys/arch/sh/include/cpu.h
+13-11 files

OpenBSD/src utiZPIGbin/ps ps.c

   detect -t argument being too long, rather than truncating
VersionDeltaFile
1.75+8-5bin/ps/ps.c
+8-51 files

OpenBSD/src jaHglrlshare/man/man3 intro.3

   DES died ages ago; Randy Hartman
VersionDeltaFile
1.88+2-2share/man/man3/intro.3
+2-21 files

OpenBSD/src kZqo8Uebin/ps print.c

   16 chars is not enough for the maximum reach major() and minor()
   could have, so let's formally expand the buffer to what it needs to be.
VersionDeltaFile
1.72+3-2bin/ps/print.c
+3-21 files

OpenBSD/src 6CxQnqmusr.sbin/snmpd ber.3

   Include two new functions added by martijn@. Still a work in progress.
VersionDeltaFile
1.21+12-4usr.sbin/snmpd/ber.3
+12-41 files

OpenBSD/src 6Uh4rzKusr.bin/rsync flist.c

   Treat time from remote as unsigned 32 bit rather than signed, when
   casting it into a time_t. If the remote doesn't muck things up, we may
   make it through 2038.. (best that can be done without protocol repair
   and coordination)
   ok benno
VersionDeltaFile
1.22+4-3usr.bin/rsync/flist.c
+4-31 files