OpenBSD Journal
Home : : Add Story : : Archives : : About : : Create Account : : Login :
Understanding the modernization of the OpenBSD network stack, part 2: A story of if_get(9)
Contributed by pitrh on Fri Jan 13 15:50:03 2017 (GMT)
from the puffy the interface juggler dept.

Martin Pieuchot has written another article chronicling the modernization of the network stack. Martin writes,

I wrote a second article about the network MP thingy.

The article talks about a new API built on top of a generic solution for a MP problem.

The article, A story of if_get(9), is a followup to the part one article we featured earlier as Understanding the modernization of the OpenBSD network stack, part 1: ART single thread performances.

Read both for a deep dive in the ongoing and exciting work going on right now in the OpenBSD network stack.

Needless to say, editors@ really look forward to seeing more articles in this series.

[ 1 comment 23m ago ] (flat) (expanded)

Errata SECURITY FIX: January 5, 2017
Contributed by grey on Wed Jan 11 10:41:07 2017 (GMT)
from the LibreSSL fixed many of the bugs, let's patch some more! dept.

Avoid possible side-channel leak of ECDSA private keys when signing.

A source code patch exists which remedies this problem:

for 6.0.

for 5.9

This is related to CVE-2016-7056 "ECDSA P-256 timing attack key recovery (OpenSSL, LibreSSL, BoringSSL)" Additional details can be read here:

Thanks to M:Tier for raising awareness on this patch.

[ 2 comments 5d1:56 ago ] (flat) (expanded)

WiFi: 11n hostap mode added to athn(4) driver, testers wanted
Contributed by pitrh on Mon Jan 9 13:33:21 2017 (GMT)
from the Puffy off the wire dept.

OpenBSD as WiFi access points look set to be making a comeback in the near future.

With this diff, Stefan Sperling added 802.11n hostap mode, with full support initially for the Atheros chips supported by the athn(4) driver.

This diff adds 11n support to the athn(4) driver.
Requires -current net80211 code from today.

Tested in hostap mode and client mode with:

athn0 at pci1 dev 0 function 0 "Atheros AR9281" rev 0x01: apic 2 int 16
athn0: AR9280 rev 2 (2T2R), ROM rev 22, adddress xx:xx:xx:xx:xx:xx

[ 2 comments 8d4:25 ago ] (flat) (expanded)

Get your name in the relayd book
Contributed by rueda on Sun Jan 8 04:02:42 2017 (GMT)
from the bit-part-for-sale dept.

Michael W Lucas is offering the chance to get your name in his forthcoming book on relayd and httpd:

There’s a long tradition amongst science fiction writers of selling bit parts in books in exchange for charity donations. It’s called tuckerization.

I see no reason why science fiction writers should have all the fun.

I need a sample user for the forthcoming book on OpenBSD’s httpd and relayd. This user gets referred to in the user authentication sections as well as on having users manage web sites. They will also get randomly called out whenever it makes sense to me.

That sample user could be you.

All it would cost is a donation to the OpenBSD Foundation.

See Michael's blog for details, and donate your way to fame(?) if you can!

[ 2 comments 7d9:58 ago ] (flat) (expanded)

Ted Unangst on (more) notable recent changes in OpenBSD
Contributed by rueda on Tue Jan 3 23:02:44 2017 (GMT)
from the New Year, new article dept.

Ted Unangst (tedu@) continues his flak series with part 5.

[ 0 comments ] (flat) (expanded)

Peter Hansteen on OpenBSD and you
Contributed by weerd on Tue Dec 27 15:42:29 2016 (GMT)
from the pitrh-promotes-puffy dept.

Undeadly editor Peter Hansteen (pitrh) recently spoke to the Bergen (BSD and) Linux User Group (BLUG) on the subject "OpenBSD and you", and has shared the slides from the talk.

These make a great resource for preaching to the as-yet-unconverted.

[ 15 comments 9d18:58 ago ] (flat) (expanded)

OpenSSH 7.4 released!
Contributed by grey on Thu Dec 22 21:52:00 2016 (GMT)
from the DisableForwaring? Is that a typo? Double check configs! ;) dept.

A new version of OpenSSH has been announced. Continue reading for the changelog of OpenSSH 7.4 below:

[ 8 comments 18d20:02 ago ] (flat) (expanded)

LibreSSL documentation status report
Contributed by rueda on Thu Dec 15 04:51:52 2016 (GMT)
from the abandon-all-hope-ye-who-enter-here dept.

Ingo Schwarze (schwarze@) writes in:

You may have noticed that i have been working on LibreSSL documentation for a bit more than a month now. Actually, there already is an undeadly report about the first week of that work:

[ 2 comments 30d17:47 ago ] (flat) (expanded)

Kristaps Dzonsons on pledge(2)
Contributed by rueda on Sat Nov 26 03:28:17 2016 (GMT)
from the the joy of pledge(2) dept.

Kristaps Dzonsons, of mandoc and acme-client (and more) fame, has written a detailed article entitled "why pledge(2) …or, how I learned to love web application sandboxing".

The tl;dr section starts:

For practical web applications, pledge(2) presents the best compromise of development simplicity and security coverage. This alone gives BCHS applications even more of a boost beyond the many other advantages of programming on OpenBSD.

The article discusses the advantages of pledge(2) over other sandboxing systems.

[ 1 comment 52d1:42 ago ] (flat) (expanded)

Support OpenBSD!

Donate to OpenBSD

Buy OpenBSD products


We are constantly on the lookout for stories of how you put OpenBSD to work. Please submit any informative articles on how OpenBSD is helping your company.

Older Stuff
Wednesday, November 23
19:18 OpenBSD Foundation Welcomes First Iridium Donor: Smartisan (14)
Thursday, November 17
22:34 Ted Unangst on notable recent changes in OpenBSD (0)
Monday, November 14
17:26 l2k16 hackathon report: LibreSSL manuals now in mdoc(7) (2)
Saturday, November 12
14:49 b2k16 hackathon report: Daniel Jakots on forward strides in python ports (0)
11:17 OpenBSD funding request from interesting requester - InfoWorld Magazine (2)
23:27 b2k16 hackathon report: Jeremy Evans on ports cleaning, progress on postgres, nginx, ruby and more (0)
21:07 b2k16 hackathon report: Landry Breuil on various ports progress (0)
Wednesday, November 09
23:32 b2k16 hackathon report: Antoine Jacoutot on GNOME's path forward, various ports progress (17)
Wednesday, October 12
08:57 vmm enabled (17)

Older Stuff...
Yesterday's Edition...

OpenBSD Errata

OpenBSD Resources

Users wishing RSS/RDF summary files of OpenBSD Journal, can retrieve: [xml]

[ Home | Add Story | Archives | Polls | About ]

Copyright © 2004-2008 Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to April 2nd 2004 as well as images and HTML templates were copied from the fabulous original with Jose's and Jim's kind permission. Some icons from used with permission from Kathleen. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. Search engine is ht://Dig. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]