OpenBSD Journal

Our next c2k15 report comes from Martin Pieuchot (mpi@), who appears to have had a quite productive hackathon:

This just in - a fresh hackathon report, this time from Jasper Lievisse Adriaanse (jasper@). Jasper writes,

Next up in our series of c2k15 hackathon reports is from Antoine Jacoutot (ajacoutot@), who writes:

Stefan Sperling (stsp@) may not have landed just yet, but he did file this report from the newly concluded hackathon:

Kenneth Westerback (krw@) just came back from c2k15 and filed his report:

One of our favorite developers Ingo Schwarze (schwarze@) writes in about a new feature that he just added to mandoc(1).

Theo de Raadt (deraadt@) has pulled back the curtainon his entry into the process sandboxing contest:

The long international nightmareis over, now that Ted Unangst (tedu@) hasimporteddoas(1):

Registration for this year's European BSDs conference is now open at registration.eurobsdcon.org, open up until right before the conference starts but early bird discounts end on August 31st (midnight CEST). And to help you plan your conference, the you can look up the talks and tutorials (with a useful portion of OpenBSD stuff in all tracks) by clicking the links.See you in Stockholm October 1st through 4th, 2015!

Darren Moffat, who led the original effort to include an SSH implementation in Solaris,announcedthat the SunSSH fork would be phased out in favor of OpenSSH:

The EuroBSDCon 2015 organizers have published the initial list of accepted talks and tutorials, with a useful portion of OpenBSD stuff in all tracks.It is worth noting that this is a preliminary version (the schedule is not yet finalized), but barring the usual human and practical factors, this is likely close to the conference's final program.

On the heels ofannouncing supportfor SSH, and specificallyOpenSSH,Microsoft has become theOpenBSD Foundation's first-everGoldcontributor:

Masao Uebayashi (uebayasi@) has given us a call for testing cleverly disguised asa quick how-to on using valgrind natively on OpenBSD:

Ted Unangst (tedu@) has given out ablog postdetailing some of the recent work going into OpenBSD:

Christian Weisberger (naddy@)let us all knowwhat we need to do to prepare for the impending leap second:

The videos of the recently-concluded BSDCan are coming online at record speed. The OpenBSD videos online are:

Ingo Schwarze (schwarze@) writes in with an analysis of the issues found by afl in mandoc:After realizing that I have nine topics for my BSDCan talk and that I can't cover them all in the depth they deserve, here are a few more details about afl and mandoc than I can't cover in the talk. Not a spoiler, there is still plenty of material for the talk!Read more...

On this week'sepisodeofBSDNow,Marc Espie (espie@) talks about dpb, OpenBSD's distributed package builder,which runs the binary package builds in Theo'sbasement.He talks about why it came about, the security measures built in, and the minimalistic and works-out-of-the-box configuration, among other things.The hosts also talk about their experiences at the recent BSDCan, and,ss usual, they have the roundup of the news, big and small, in the world of allthings BSD.[Video|HD Video|MP3 Audio|OGG Audio|Torrent]

Alexandre Ratchov (ratchov@)posteda call for testing of a newaudio(4)driver:

Brent Cook (bcook@) hasannouncedthe latest LibreSSL releases, which contain fixes for several CVEs:

Windows admins rejoice! Microsoft's PowerShell Teamannouncedfuture support for SSH, specificallyOpenSSH:

With a recentcommit,Reyk Flöter (reyk@) flipped the switch onspamd(8)'spf interfacement:

OpenBSD project leader Theo de Raadt (deraadt@) outlined some issues with the CD plant, which led to an incorrectly-finished CD 2, some of which were, unfortunately, shipped prior to the issue being found.

On this week'sepisodeof BSDNow, the hosts interview Mike Larkin (mlarkin@) abouthow he got started in OpenBSD, hisrecentand upcoming work on W^X,and how that fits into the OpenBSD exploit mitigation ecosystem.As always, they also have all the news and reviews in the world of all things BSD.[Video | HD Video|MP3 Audio|OGG Audio|Torrent| YouTube]

After a delay due to unfortunate production problems (the first such delay in 20 years), the OpenBSD Store announced that all pre-orders had been shipped.And it seemed like only moments later that Raf Czlonka was the first to report on the misc@ mailing list that his pre-ordered OpenBSD 5.7 CD set had arrived.Even if you hadn't preordered, you still have a chance to order your CD set and other swag by visting the OpenBSD Store. If you want to support the project financially in other ways, the Donations page is, as always, a good place to start.

In a this commit, a first in a series, Henning Brauer (henning@) made disk allocations during automatic installs much more flexible via the introduction of diskablel templates. The matching installer bits came along via this commit by Robert Peichaer (rpe@).Quoting the updated disklabel(8) man page,

May 1st, 2015, Calgary, AB, CA and elsewhere:OpenBSD 5.7 has been released. The brand new 5.7 subdirectory should now be available and filled up on all relevant mirrors for those of you who have yet to receive your CD orders.The release announcement, posted on project mailing lists earlier today, and the release home page both mention some highlights of the new release, while the complete changelog for the release is available on the OpenBSD website.While you are too late to be the first to preorder a shiny OpenBSD release CD set, you can order one of your own, as well as a very cool 5.7-release poster.

The OpenBSD page for Google Summer of Code 2015 has been updated with the list of accepted projects for this year.

Due to overwhelming response, the deadline for submitting talks to EuroBSDCon has beenextended:

A bit late out of the gate, Undeadly readers are likely interested in thelatest episodeofBSDNow,featuring news of Solaris working to include OpenBSD's pf as an option on upcoming releases,the Bay Area BSD User Group keeping a stream of videos from their meetings going,some long-form blogging about the OpenBSD ports system,a discussion about keeping your home firewalls up to date,LLVM growing a fuzzing library, and most especially aninterview with Pascal Stumpf (pascal@), with an overview of the whys and hows of address space layout randomization (ASLR) and the work extending position-independent executable (PIE) to statically-linked binaries.[Video|HD Video|MP3 Audio|OGG Audio|Torrent]

Ingo Schwarze (schwarze@) writes in with our fourth report from the p2k15 ports hackathon:

Undeadly's very own Peter Hansteen haswritten upsome PF-on-Solaris-relatedemail chatter:

Stefan Sperling (stsp@) writes in with our third report from the p2k15 ports hackathon:

Ken Westerback (krw@) writes in with our second report from the p2k15 ports hackathon:

Joel Sing (jsing@) has put out acall for testingfor RAID 5 onsoftraid(4):

Landry Breuil (landry@) writes in with our first report from the p2k15 ports hackathon:

The OpenNTPD team has announced the availability of OpenNTPD 5.7p4, which adds

As Damien Miller (djm@)announcedon tech@, support for SSH version 1 is now no longer being included in OpenBSD SSH:

Martin Pieuchot (mpi@) writes in about what's needed for further SMP improvements in the network stack:

This week has been full of other exciting news, so it may have been easy to miss that the OpenSSH team has released OpenSSH 6.8. The new release is billed as

The response to today's much-anticipated unveiling of newly discovered OpenSSL vulnerabilities has been varied and loud as expected. However, the impact on the OpenBSD-initated LibreSSL project's code -- which has undergone extensive cleanup since LibreSSL forked off OpenSSL's code base in 2014 -- appears to be limited. Out of a total of 13 CVEs in OpenSSL's announcement, only five - CVE-2015-0207, CVE-2015-0286, CVE-2015-0287, CVE-2015-0289 and CVE-2015-0209, still applied to LibreSSL's code.The main takeaway from the announcement appears to be that the cleanup has been effective, however these 'crash-inducing' issues have now been fixed in LibreSSL:

The EuroBSDCon 2015 conference organizers have announced the Call for Papers for the upcoming conference in Stockholm, Sweden.Go to https://2015.eurobsdcon.org/call-for-papers/ for details; the full text of the announcement also follows after the fold.Read more...

The LibreSSL team has released LibreSSL 2.1.5, which the team characterizes as

Slides from the AsiaBSDCon 2015 presentations are expected to appear on the OpenBSD web site (specifically the Presentations and Papers) page.The first presentation to appear there was Reyk Floeter's OpenBSD's new httpd (slides), also with a paper version.Other developers have been quite punctual too, publishing their presentations soon after their sessions at the conference:Peter Hessler: The results of using BGP for realtime import and export of spam whitelist/blacklist entries

Yes, you read that right!

Patches for bugs in the FreeType library areavailable:

Our fourth report from the s2k15 hackathon comes from Ted Unangst:

Our third report from the s2k15 hackathon comes from Jonathan Gray (jsg@):

Brent Cook (bcook@)posted: