Stefan Sperling | 9 Nov 20:13 2015

New erratas released today: 5.8 errata #8, 5.7 errata #20

There is a remotely triggerable panic in the wireless subsystem
involving WPA (a.k.a RSN).

RSN element parsing in the input path lacks validation of the group
cipher and group management cipher values. If a bad value is received
it is stored without validation, which will trigger a panic when the
value is used while sending a reply.

This can be used by malicious access points to crash OpenBSD clients,
or by malicious clients to crash OpenBSD access points.

Thanks to Franz Bettag for highlighting this problem.

Links to patches below. Please follow the instructions within.


Brent Cook | 3 Nov 02:51 2015

LibreSSL 2.3.1 released

We have released LibreSSL 2.3.1, which will be arriving in the
LibreSSL directory of your local OpenBSD mirror soon.

This release is the second snapshot based on the development OpenBSD 5.9
branch. It is still likely to change more compared to the 2.2.x and
2.1.x branches. The ABI/API for the LibreSSL 2.3.x series will be
declared stable around March 2016. See for more details.

LibreSSL 2.3.1 has the following notable changes:

  * ASN.1 cleanups and RFC5280 compliance fixes.

  * Time representations switched from 'unsigned long' to 'time_t'.
    LibreSSL now checks if the host OS supports 64-bit time_t.

  * Fixed a leak in SSL_new in the error path.

  * Support always extracting the peer cipher and version with libtls.

  * Added ability to check certificate validity times with libtls,
    tls_peer_cert_notbefore and tls_peer_cert_notafter.

  * Changed tls_connect_servername to use the first address that
    resolves with getaddrinfo().

  * Remove broken conditional EVP_CHECK_DES_KEY code (non-functional
    since initial commit in 2004).

  * Fixed a memory leak and out-of-bounds access in OBJ_obj2txt,
(Continue reading)

Theo de Raadt | 18 Oct 16:47 2015

OpenBSD 5.8 released

OpenBSD 5.8 arrives on the 20th birthday of the OpenBSD project.

October 18, 2015.

We are pleased to announce the official release of OpenBSD 5.8.
This is our 38th release on CD-ROM (and 39th via FTP/HTTP).  We remain
proud of OpenBSD's record of twenty years with only two remote holes in
the default install.

As in our previous releases, 5.8 provides significant improvements,
including new features, in nearly all areas of the system:

 - Improved hardware support, including:
    o New rtwn(4) driver for Realtek RTL8188CE wifi cards.
    o New hpb(4) driver for HyperTransport bridges as found in the IBM
    o The ugold(4) driver now supports TEMPerHUMV1.x temperature and
      humidity sensors.
    o Improved sensor support for the upd(4) driver for USB Power
      Devices (UPS).
    o Support for jumbo frames on re(4) devices using RTL8168C/D/E/F/G
      and RTL8411, including PC Engines APU.
    o re(4) now works with newer devices e.g. RTL8111GU.
    o Partial support has been added for full-speed isochronous devices
      in ehci(4), allowing USB 1.1 audio devices to be used on
      EHCI-only systems in some cases.
    o Improved macppc stability and G5 performances with MP kernels.
    o acpicpu(4) uses ACPI C-state information to reduce power
      consumption of idle CPUs.
    o Kernel supports x86 AVX instructions on CPUs that have them.
(Continue reading)

Theo de Raadt | 18 Oct 08:31 2015

It was twenty years ago you see...

OpenBSD's source tree just turned 20 years old.

I recall the import taking about 3 hours on an EISA-bus 486 with two
ESDI drives.  There was an import attempt a few days earlier, but it
failed due to insufficient space.  It took some time to repartition
the machine.

It wasn't terribly long before David Miller, Chuck Cranor and Niklas
Hallqvist were commiting... then more people showed up.

The first developments were improvements to 32-bit sparc.

Chuck and I also worked on setting up the first 'anoncvs' to make sure
noone was ever cut out from 'the language of diffs' again.  I guess
that was the precursor for the github concept these days :-).  People
forget, but even FSF was a walled garden at the time -- throwing tar
files with vague logs over the wall every couple months.

I was lucky to have one of the few 64Kbit ISDN links in town,
otherwise this would not have happened.  My desktop was a Sparcstation
10; the third machine I had was a very slow 386.

The project is now at:

~322,000 commits
~44 commits/day average
~356 hackers through the years


(Continue reading)

Ted Unangst | 16 Oct 02:30 2015

Oct 15 OpenBSD errata and LibreSSL releases

The OBJ_obj2txt function in libcrypto contains a one byte buffer overrun
and memory leak, as reported by Qualys Security. This can be abused by an
attacker to cause a denial of service in some cases.

Patches are now available for OpenBSD as well as new releases of LibreSSL
portable. 5.6, 5.7, and 5.8 are affected, as well as all releases of LibreSSL.

Note that in addition to the instructions to rebuild libcrypto in the patch,
some binaries may link statically with libcrypto (isakmpd, iked, ...) and need
rebuilding as well. And services restarted.

OpenBSD patches:

LibreSSL releases:

There will be a libressl-2.3.1 release coming, but as a reminder it's still a
development branch. (The OpenBSD patches should apply to 2.3.0 as well.)

With the release of OpenBSD 5.8 in a few days, 5.6 will be officially retired
from support, and along with it LibreSSL 2.0. Hopefully, this will be the last
release in that line.

Stuart Henderson | 14 Oct 20:42 2015

kevent errata for 5.6, 5.7 and 5.8

A problem with kevent(2) timers has been fixed. If triggered (which can
be done by a local unprivileged user), it would result in a kernel hang.
Patches for the kernel are available:




Todd C. Miller | 9 Oct 17:31 2015

mailing list server downtime

The machine room that will be undergoing maintenance
Saturday October 10th.  As a reasult, the list server will be taken
down at 5:30am MDT and brought back up in the early afternoon.

This also affects and
which are located in the same machine room.

 - todd

Bob Beck | 5 Oct 01:27 2015

Happy Birthday OpenBSD!

		** OpenBSD is turning 20, on January 18th 2015 ** 

There will be an informal Birthday Party upstairs at the Hose and Hound pub in Calgary (

At the very least, Theo de Raadt and I will be there starting from about 5 PM. 

Any and all are welcome to stop by and say hi, and to have a beer or thirteen. 



Gilles Chehade | 2 Oct 05:16 2015

smtpd errata for 5.6, 5.7 and 5.8

During the last few months, researchers from Qualys Security have done
an audit of smtpd and have identified multiple reliability and security

The issues affect 5.6, 5.7 and forthcoming 5.8 release.

Patches are available. Apply the patch, rebuild smtpd and restart the




Sebastian Benoit | 29 Sep 10:01 2015

relayd maintainance diff for OpenBSD 5.7

OpenBSD 5.7 errata:

015: RELIABILITY FIX: September 28, 2015   All architectures
Various problems were identified in relayd and merged back from current to
5.7 in this maintanance update.

This patch is for 5.7 only, it fixes reliability problems that where
identified during the OpenBSD 5.8 release cycle.

Ted Unangst | 29 Sep 00:54 2015

uvm errata for 5.7 and 5.8

Earlier this month, kettenis identified a bug in uvm from an incompletely
reverted change. Clearing the wrong bit on a page would sometimes result in
the page queues being corrupted, and then eventually the system would crash or

This issue affects 5.7 and the forthcoming 5.8 release.

Patches are available. Apply the patch, rebuild the kernel, and reboot.