OpenBSD Journal

t2k17 Hackathon Report: Ian Sutton on ARM progress

Contributed by Peter N. M. Hansteen on from the all up in arms about ARM dept.

The t2k17 hackathon reports keep trickling in. Here's the one from Ian Sutton, who writes:

The Toronto hackathon was a complete success and went off without a hitch! I did not get as much done as I had hoped, but definitely made up for it in other ways. It was my first hackathon and I was pretty nervous, but that subsided quickly and in the end turned out to be one of the best weeks I've ever had.

Read more…

Kernel syspatches will soon be smaller thanks to KARL

Contributed by pitrh on from the KARL kranks kernel kode krunch dept.

It almost went unnoticed due to the 6.2-beta announcement, but Antoine Jacoutot (ajacoutot@) just commited a very useful update to syspatch. In this commit, the groundwork is done for having syspatch update only the kernel object files that have changed. Due to KARL, the scheme to relink the kernel for each reboot, it makes sense to save space and bandwidth that way.

The commit message reads:

Read more…

deraadt@ moves us to 6.2-beta!

Contributed by Paul 'WEiRD' de Weerd on from the better-everyone-tests-all dept.

Theo has just committed the diff that marks the end of the development cycle and the beginning of the testing phase for the upcoming 6.2 release:

CVSROOT:        /cvs                                                                                      
Module name:    src                                                                                       
Changes by:     deraadt@cvs.openbsd.org 2017/08/20 10:56:43                                               
                                                                                                          
Modified files:                                                                                           
        etc/root       : root.mail                                                                        
        share/mk       : sys.mk                                                                           
        sys/arch/macppc/stand/tbxidata: bsd.tbxi                                                          
        sys/conf       : newvers.sh                                                                       
        sys/sys        : param.h                                                                          
                                                                                                          
Log message:                                                                                              
crank to 6.2-beta                                                                                         

You all know what this means: get to testing! Find whatever hardware you have and install the latest snapshots, stress the upgrade procedure, play your favorite games, build your own code - whatever you use OpenBSD for, try it in the new snaps and report any problems you find. Your testing efforts will help make sure 6.2 is another great release!

RETGUARD, the OpenBSD next level in exploit mitigation, is about to debut

Contributed by pitrh on from the guard my RET, you dept.

In a message to the tech mailling list, Theo de Raadt(deraadt@) offered a preview of the next big thing in exploit mitigation, dubbed RETGUARD:

This year I went to BSDCAN in Ottawa. I spent much of it in the 'hallway track', and had an extended conversation with various people regarding our existing security mitigations and hopes for new ones in the future. I spoke a lot with Todd Mortimer(mortimer@). Apparently I told him that I felt return-address protection was impossible, so a few weeks later he sent a clang diff to address that issue...

Read more…

Undeadly to be Upgraded Next Week

Contributed by rueda on from the I-like-your-old-stuff-better-than-your-new-stuff dept.

As there have been no reports of functional bugs since the last beta, and the primary goal of the work was achieved long ago, the (main) Undeadly server is to be upgraded. The upgrade, which is expected to involve downtime of no more than one hour, is scheduled for next .

Changes since the last public beta include:

  • A sprinkling of responsive web design has been added (thanks to a kind contribution).
  • Comments no longer have subjects and the comment header display is more compact.
  • In comment submission, the automatic quoting of parent comment has been removed.
  • Anonymous article submission and commenting has been enabled, provisionally. Those interested in seeing this feature maintained are encouraged to:
    • Refrain from abusing it.
    • (Log in and) Use the "Report to Editors" command on inappropriate comments. (For old, spam-ridden articles, there's no need to report more than one comment. As old articles will be closed for comments following the upgrade, the Editors intend to delete old comment spam, eventually checking all articles.)

Bikeshedding the appearance will continue on the beta site.

Update: The upgrade has been completed. Please report problems here or by emailing the editors.

Smartisan Makes Another Iridium Donation to the OpenBSD Foundation

Contributed by pitrh on from the Heavy metal puffy support dept.

News from the OpenBSD Foundation: The Foundation has this year's first Iridium donor.

The official statement from the foundation, via director Ken Westerback reads,

The OpenBSD Foundation is excited to announce that it has received the first 2017 Iridium level donation. For the second consecutive year, Smartisan (http://www.smartisan.com) has has made a donation of over CDN$100,000 to support OpenBSD and related projects.

We thank Smartisan for its very generous support! This donation will no doubt fund many exciting projects in the next few years.

We at Undeadly are very happy to hear this news.

If you're interested in contributing to the Foundation yourself, the 2017 fundraising campaign page is a good place to start.

Donate!

Donate to OpenBSD

Features

We are constantly on the lookout for stories of how you put OpenBSD to work. Please submit any informative articles on how OpenBSD is helping your company.

OpenBSD Errata

OpenBSD 6.1

0252017-08-03 SECURITY An out of bounds read could occur during processing of EAPOL frames in the wireless stack. Information from kernel memory could be leaked to root in userland via an ieee80211(9) ioctl.
0242017-08-03 SECURITY A race condition in sosplice() may result in a kernel memory leak.
0232017-08-03 RELIABILITY An integer overflow in wsdisplay_cfg_ioctl() may result in an out-of-bounds read.
0222017-08-03 SECURITY An uninitialized variable in fcntl() may result in an info leak.
0212017-08-03 SECURITY An uninitialized variable in ptrace() may result in an info leak.
0202017-08-03 SECURITY Missing socket address validation from userland may result in an info leak.

Unofficial RSS feed of OpenBSD errata

XML/RSS/RDF

Users wishing RSS/RDF summary files of OpenBSD Journal can retrieve: RSS feed

Credits

Copyright © - Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]