From owner-svn-src-releng@freebsd.org  Tue May 31 16:23:58 2016
Return-Path: <owner-svn-src-releng@freebsd.org>
Delivered-To: svn-src-releng@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 90F7BB56D5E;
 Tue, 31 May 2016 16:23:58 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org (repo.freebsd.org
 [IPv6:2610:1c1:1:6068::e6a:0])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 6CC7A1F74;
 Tue, 31 May 2016 16:23:58 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org ([127.0.1.37])
 by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id u4VGNvAA092321;
 Tue, 31 May 2016 16:23:57 GMT (envelope-from glebius@FreeBSD.org)
Received: (from glebius@localhost)
 by repo.freebsd.org (8.15.2/8.15.2/Submit) id u4VGNvTP092315;
 Tue, 31 May 2016 16:23:57 GMT (envelope-from glebius@FreeBSD.org)
Message-Id: <201605311623.u4VGNvTP092315@repo.freebsd.org>
X-Authentication-Warning: repo.freebsd.org: glebius set sender to
 glebius@FreeBSD.org using -f
From: Gleb Smirnoff <glebius@FreeBSD.org>
Date: Tue, 31 May 2016 16:23:57 +0000 (UTC)
To: src-committers@freebsd.org, svn-src-all@freebsd.org,
 svn-src-releng@freebsd.org
Subject: svn commit: r301044 - in releng/9.3/contrib/libarchive: cpio
 libarchive libarchive/test
X-SVN-Group: releng
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-BeenThere: svn-src-releng@freebsd.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: SVN commit messages for the release engineering / security commits to
 the src tree <svn-src-releng.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-src-releng>, 
 <mailto:svn-src-releng-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-src-releng/>
List-Post: <mailto:svn-src-releng@freebsd.org>
List-Help: <mailto:svn-src-releng-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-src-releng>,
 <mailto:svn-src-releng-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 31 May 2016 16:23:58 -0000

Author: glebius
Date: Tue May 31 16:23:56 2016
New Revision: 301044
URL: https://svnweb.freebsd.org/changeset/base/301044

Log:
  Merge r300363 by mm@:
  
    Backport security fix for absolute path traversal vulnerability in bsdcpio.
  
  Security:       CVE-2015-2304
  Security:       SA-16:22
  Approved by:	so

Modified:
  releng/9.3/contrib/libarchive/cpio/bsdcpio.1
  releng/9.3/contrib/libarchive/cpio/cpio.c
  releng/9.3/contrib/libarchive/libarchive/archive.h
  releng/9.3/contrib/libarchive/libarchive/archive_write.c
  releng/9.3/contrib/libarchive/libarchive/archive_write_disk.3
  releng/9.3/contrib/libarchive/libarchive/test/test_write_disk_secure.c
Directory Properties:
  releng/9.3/   (props changed)

Modified: releng/9.3/contrib/libarchive/cpio/bsdcpio.1
==============================================================================
--- releng/9.3/contrib/libarchive/cpio/bsdcpio.1	Tue May 31 16:08:06 2016	(r301043)
+++ releng/9.3/contrib/libarchive/cpio/bsdcpio.1	Tue May 31 16:23:56 2016	(r301044)
@@ -159,7 +159,8 @@ See above for description.
 .It Fl -insecure
 (i and p mode only)
 Disable security checks during extraction or copying.
-This allows extraction via symbolic links and path names containing
+This allows extraction via symbolic links, absolute paths,
+and path names containing
 .Sq ..
 in the name.
 .It Fl J

Modified: releng/9.3/contrib/libarchive/cpio/cpio.c
==============================================================================
--- releng/9.3/contrib/libarchive/cpio/cpio.c	Tue May 31 16:08:06 2016	(r301043)
+++ releng/9.3/contrib/libarchive/cpio/cpio.c	Tue May 31 16:23:56 2016	(r301044)
@@ -162,6 +162,7 @@ main(int argc, char *argv[])
 	cpio->extract_flags |= ARCHIVE_EXTRACT_NO_OVERWRITE_NEWER;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_SECURE_SYMLINKS;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_SECURE_NODOTDOT;
+	cpio->extract_flags |= ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_PERM;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_FFLAGS;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_ACL;
@@ -231,6 +232,7 @@ main(int argc, char *argv[])
 		case OPTION_INSECURE:
 			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_SYMLINKS;
 			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NODOTDOT;
+			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS;
 			break;
 		case 'L': /* GNU cpio */
 			cpio->option_follow_links = 1;
@@ -265,6 +267,7 @@ main(int argc, char *argv[])
 				    "Cannot use both -p and -%c", cpio->mode);
 			cpio->mode = opt;
 			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NODOTDOT;
+			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS;
 			break;
 		case OPTION_PRESERVE_OWNER:
 			cpio->extract_flags |= ARCHIVE_EXTRACT_OWNER;

Modified: releng/9.3/contrib/libarchive/libarchive/archive.h
==============================================================================
--- releng/9.3/contrib/libarchive/libarchive/archive.h	Tue May 31 16:08:06 2016	(r301043)
+++ releng/9.3/contrib/libarchive/libarchive/archive.h	Tue May 31 16:23:56 2016	(r301044)
@@ -477,6 +477,8 @@ __LA_DECL int		archive_read_set_options(
 #define	ARCHIVE_EXTRACT_NO_OVERWRITE_NEWER	(0x0800)
 /* Detect blocks of 0 and write holes instead. */
 #define	ARCHIVE_EXTRACT_SPARSE			(0x1000)
+/* Default: Do not reject entries with absolute paths */
+#define ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS (0x10000)
 
 __LA_DECL int	 archive_read_extract(struct archive *, struct archive_entry *,
 		     int flags);

Modified: releng/9.3/contrib/libarchive/libarchive/archive_write.c
==============================================================================
--- releng/9.3/contrib/libarchive/libarchive/archive_write.c	Tue May 31 16:08:06 2016	(r301043)
+++ releng/9.3/contrib/libarchive/libarchive/archive_write.c	Tue May 31 16:23:56 2016	(r301044)
@@ -459,8 +459,12 @@ static ssize_t
 _archive_write_data(struct archive *_a, const void *buff, size_t s)
 {
 	struct archive_write *a = (struct archive_write *)_a;
+	const size_t max_write = INT_MAX;
 	__archive_check_magic(&a->archive, ARCHIVE_WRITE_MAGIC,
 	    ARCHIVE_STATE_DATA, "archive_write_data");
+	/* In particular, this catches attempts to pass negative values. */
+	if (s > max_write)
+		s = max_write;
 	archive_clear_error(&a->archive);
 	return ((a->format_write_data)(a, buff, s));
 }

Modified: releng/9.3/contrib/libarchive/libarchive/archive_write_disk.3
==============================================================================
--- releng/9.3/contrib/libarchive/libarchive/archive_write_disk.3	Tue May 31 16:08:06 2016	(r301043)
+++ releng/9.3/contrib/libarchive/libarchive/archive_write_disk.3	Tue May 31 16:23:56 2016	(r301044)
@@ -169,6 +169,9 @@ The default is to not refuse such paths.
 Note that paths ending in
 .Pa ..
 always cause an error, regardless of this flag.
+.It Cm ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS
+Refuse to extract an absolute path.
+The default is to not refuse such paths.
 .It Cm ARCHIVE_EXTRACT_SPARSE
 Scan data for blocks of NUL bytes and try to recreate them with holes.
 This results in sparse files, independent of whether the archive format

Modified: releng/9.3/contrib/libarchive/libarchive/test/test_write_disk_secure.c
==============================================================================
--- releng/9.3/contrib/libarchive/libarchive/test/test_write_disk_secure.c	Tue May 31 16:08:06 2016	(r301043)
+++ releng/9.3/contrib/libarchive/libarchive/test/test_write_disk_secure.c	Tue May 31 16:23:56 2016	(r301044)
@@ -178,6 +178,29 @@ DEFINE_TEST(test_write_disk_secure)
 	assert(S_ISDIR(st.st_mode));
 	archive_entry_free(ae);
 
+	 /*
+	 * Without security checks, we should be able to
+	 * extract an absolute path.
+	 */
+	assert((ae = archive_entry_new()) != NULL);
+	archive_entry_copy_pathname(ae, "/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+	archive_entry_set_mode(ae, S_IFREG | 0777);
+	assert(0 == archive_write_header(a, ae));
+	assert(0 == archive_write_finish_entry(a));
+	assertFileExists("/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+	assert(0 == unlink("/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp"));
+
+	/* But with security checks enabled, this should fail. */
+	assert(archive_entry_clear(ae) != NULL);
+	archive_entry_copy_pathname(ae, "/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+	archive_entry_set_mode(ae, S_IFREG | 0777);
+	archive_write_disk_set_options(a, ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS);
+	failure("Extracting an absolute path should fail here.");
+	assertEqualInt(ARCHIVE_FAILED, archive_write_header(a, ae));
+	archive_entry_free(ae);
+	assert(0 == archive_write_finish_entry(a));
+	assertFileNotExists("/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+
 	assert(0 == archive_write_finish(a));
 
 	/* Test the entries on disk. */

From owner-svn-src-releng@freebsd.org  Tue May 31 16:32:44 2016
Return-Path: <owner-svn-src-releng@freebsd.org>
Delivered-To: svn-src-releng@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 6F1B5B5501A;
 Tue, 31 May 2016 16:32:44 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org (repo.freebsd.org
 [IPv6:2610:1c1:1:6068::e6a:0])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 3179F194E;
 Tue, 31 May 2016 16:32:44 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org ([127.0.1.37])
 by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id u4VGWhos096266;
 Tue, 31 May 2016 16:32:43 GMT (envelope-from glebius@FreeBSD.org)
Received: (from glebius@localhost)
 by repo.freebsd.org (8.15.2/8.15.2/Submit) id u4VGWgtr096260;
 Tue, 31 May 2016 16:32:42 GMT (envelope-from glebius@FreeBSD.org)
Message-Id: <201605311632.u4VGWgtr096260@repo.freebsd.org>
X-Authentication-Warning: repo.freebsd.org: glebius set sender to
 glebius@FreeBSD.org using -f
From: Gleb Smirnoff <glebius@FreeBSD.org>
Date: Tue, 31 May 2016 16:32:42 +0000 (UTC)
To: src-committers@freebsd.org, svn-src-all@freebsd.org,
 svn-src-releng@freebsd.org
Subject: svn commit: r301046 - in releng/10.1/contrib/libarchive: cpio
 libarchive libarchive/test
X-SVN-Group: releng
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-BeenThere: svn-src-releng@freebsd.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: SVN commit messages for the release engineering / security commits to
 the src tree <svn-src-releng.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-src-releng>, 
 <mailto:svn-src-releng-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-src-releng/>
List-Post: <mailto:svn-src-releng@freebsd.org>
List-Help: <mailto:svn-src-releng-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-src-releng>,
 <mailto:svn-src-releng-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 31 May 2016 16:32:44 -0000

Author: glebius
Date: Tue May 31 16:32:42 2016
New Revision: 301046
URL: https://svnweb.freebsd.org/changeset/base/301046

Log:
  Merge r300361 by mm@:
  
    Backport security fix for absolute path traversal
    vulnerability in bsdcpio.
  
  Security:	CVE-2015-2304
  Security:	SA-16:22
  Approved by:	so

Modified:
  releng/10.1/contrib/libarchive/cpio/bsdcpio.1
  releng/10.1/contrib/libarchive/cpio/cpio.c
  releng/10.1/contrib/libarchive/libarchive/archive.h
  releng/10.1/contrib/libarchive/libarchive/archive_write_disk.3
  releng/10.1/contrib/libarchive/libarchive/archive_write_disk_posix.c
  releng/10.1/contrib/libarchive/libarchive/test/test_write_disk_secure.c
Directory Properties:
  releng/10.1/   (props changed)

Modified: releng/10.1/contrib/libarchive/cpio/bsdcpio.1
==============================================================================
--- releng/10.1/contrib/libarchive/cpio/bsdcpio.1	Tue May 31 16:28:56 2016	(r301045)
+++ releng/10.1/contrib/libarchive/cpio/bsdcpio.1	Tue May 31 16:32:42 2016	(r301046)
@@ -156,7 +156,8 @@ See above for description.
 .It Fl Fl insecure
 (i and p mode only)
 Disable security checks during extraction or copying.
-This allows extraction via symbolic links and path names containing
+This allows extraction via symbolic links, absolute paths,
+and path names containing
 .Sq ..
 in the name.
 .It Fl J , Fl Fl xz

Modified: releng/10.1/contrib/libarchive/cpio/cpio.c
==============================================================================
--- releng/10.1/contrib/libarchive/cpio/cpio.c	Tue May 31 16:28:56 2016	(r301045)
+++ releng/10.1/contrib/libarchive/cpio/cpio.c	Tue May 31 16:32:42 2016	(r301046)
@@ -179,6 +179,7 @@ main(int argc, char *argv[])
 	cpio->extract_flags |= ARCHIVE_EXTRACT_NO_OVERWRITE_NEWER;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_SECURE_SYMLINKS;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_SECURE_NODOTDOT;
+	cpio->extract_flags |= ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_PERM;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_FFLAGS;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_ACL;
@@ -264,6 +265,7 @@ main(int argc, char *argv[])
 		case OPTION_INSECURE:
 			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_SYMLINKS;
 			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NODOTDOT;
+			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS;
 			break;
 		case 'L': /* GNU cpio */
 			cpio->option_follow_links = 1;
@@ -300,6 +302,7 @@ main(int argc, char *argv[])
 				    "Cannot use both -p and -%c", cpio->mode);
 			cpio->mode = opt;
 			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NODOTDOT;
+			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS;
 			break;
 		case OPTION_PRESERVE_OWNER:
 			cpio->extract_flags |= ARCHIVE_EXTRACT_OWNER;

Modified: releng/10.1/contrib/libarchive/libarchive/archive.h
==============================================================================
--- releng/10.1/contrib/libarchive/libarchive/archive.h	Tue May 31 16:28:56 2016	(r301045)
+++ releng/10.1/contrib/libarchive/libarchive/archive.h	Tue May 31 16:32:42 2016	(r301046)
@@ -562,6 +562,8 @@ __LA_DECL int archive_read_set_options(s
 /* Default: Do not use HFS+ compression if it was not compressed. */
 /* This has no effect except on Mac OS v10.6 or later. */
 #define	ARCHIVE_EXTRACT_HFS_COMPRESSION_FORCED	(0x8000)
+/* Default: Do not reject entries with absolute paths */
+#define ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS (0x10000)
 
 __LA_DECL int archive_read_extract(struct archive *, struct archive_entry *,
 		     int flags);

Modified: releng/10.1/contrib/libarchive/libarchive/archive_write_disk.3
==============================================================================
--- releng/10.1/contrib/libarchive/libarchive/archive_write_disk.3	Tue May 31 16:28:56 2016	(r301045)
+++ releng/10.1/contrib/libarchive/libarchive/archive_write_disk.3	Tue May 31 16:32:42 2016	(r301046)
@@ -177,6 +177,9 @@ The default is to not refuse such paths.
 Note that paths ending in
 .Pa ..
 always cause an error, regardless of this flag.
+.It Cm ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS
+Refuse to extract an absolute path.
+The default is to not refuse such paths.
 .It Cm ARCHIVE_EXTRACT_SPARSE
 Scan data for blocks of NUL bytes and try to recreate them with holes.
 This results in sparse files, independent of whether the archive format

Modified: releng/10.1/contrib/libarchive/libarchive/archive_write_disk_posix.c
==============================================================================
--- releng/10.1/contrib/libarchive/libarchive/archive_write_disk_posix.c	Tue May 31 16:28:56 2016	(r301045)
+++ releng/10.1/contrib/libarchive/libarchive/archive_write_disk_posix.c	Tue May 31 16:32:42 2016	(r301046)
@@ -2504,8 +2504,9 @@ cleanup_pathname_win(struct archive_writ
 /*
  * Canonicalize the pathname.  In particular, this strips duplicate
  * '/' characters, '.' elements, and trailing '/'.  It also raises an
- * error for an empty path, a trailing '..' or (if _SECURE_NODOTDOT is
- * set) any '..' in the path.
+ * error for an empty path, a trailing '..', (if _SECURE_NODOTDOT is
+ * set) any '..' in the path or (if ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS
+ * is set) if the path is absolute.
  */
 static int
 cleanup_pathname(struct archive_write_disk *a)
@@ -2524,8 +2525,15 @@ cleanup_pathname(struct archive_write_di
 	cleanup_pathname_win(a);
 #endif
 	/* Skip leading '/'. */
-	if (*src == '/')
+	if (*src == '/') {
+		if (a->flags & ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS) {
+			archive_set_error(&a->archive, ARCHIVE_ERRNO_MISC,
+			                  "Path is absolute");
+			return (ARCHIVE_FAILED);
+		}
+
 		separator = *src++;
+	}
 
 	/* Scan the pathname one element at a time. */
 	for (;;) {

Modified: releng/10.1/contrib/libarchive/libarchive/test/test_write_disk_secure.c
==============================================================================
--- releng/10.1/contrib/libarchive/libarchive/test/test_write_disk_secure.c	Tue May 31 16:28:56 2016	(r301045)
+++ releng/10.1/contrib/libarchive/libarchive/test/test_write_disk_secure.c	Tue May 31 16:32:42 2016	(r301046)
@@ -178,6 +178,29 @@ DEFINE_TEST(test_write_disk_secure)
 	assert(S_ISDIR(st.st_mode));
 	archive_entry_free(ae);
 
+	/*
+	 * Without security checks, we should be able to
+	 * extract an absolute path.
+	 */
+	assert((ae = archive_entry_new()) != NULL);
+	archive_entry_copy_pathname(ae, "/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+	archive_entry_set_mode(ae, S_IFREG | 0777);
+	assert(0 == archive_write_header(a, ae));
+	assert(0 == archive_write_finish_entry(a));
+	assertFileExists("/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+	assert(0 == unlink("/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp"));
+
+	/* But with security checks enabled, this should fail. */
+	assert(archive_entry_clear(ae) != NULL);
+	archive_entry_copy_pathname(ae, "/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+	archive_entry_set_mode(ae, S_IFREG | 0777);
+	archive_write_disk_set_options(a, ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS);
+	failure("Extracting an absolute path should fail here.");
+	assertEqualInt(ARCHIVE_FAILED, archive_write_header(a, ae));
+	archive_entry_free(ae);
+	assert(0 == archive_write_finish_entry(a));
+	assertFileNotExists("/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+
 	assertEqualInt(ARCHIVE_OK, archive_write_free(a));
 
 	/* Test the entries on disk. */

From owner-svn-src-releng@freebsd.org  Tue May 31 16:33:58 2016
Return-Path: <owner-svn-src-releng@freebsd.org>
Delivered-To: svn-src-releng@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 49391B55085;
 Tue, 31 May 2016 16:33:58 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org (repo.freebsd.org
 [IPv6:2610:1c1:1:6068::e6a:0])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 06EFD1AA6;
 Tue, 31 May 2016 16:33:57 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org ([127.0.1.37])
 by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id u4VGXvax096381;
 Tue, 31 May 2016 16:33:57 GMT (envelope-from glebius@FreeBSD.org)
Received: (from glebius@localhost)
 by repo.freebsd.org (8.15.2/8.15.2/Submit) id u4VGXupT096375;
 Tue, 31 May 2016 16:33:56 GMT (envelope-from glebius@FreeBSD.org)
Message-Id: <201605311633.u4VGXupT096375@repo.freebsd.org>
X-Authentication-Warning: repo.freebsd.org: glebius set sender to
 glebius@FreeBSD.org using -f
From: Gleb Smirnoff <glebius@FreeBSD.org>
Date: Tue, 31 May 2016 16:33:56 +0000 (UTC)
To: src-committers@freebsd.org, svn-src-all@freebsd.org,
 svn-src-releng@freebsd.org
Subject: svn commit: r301047 - in releng/10.2/contrib/libarchive: cpio
 libarchive libarchive/test
X-SVN-Group: releng
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-BeenThere: svn-src-releng@freebsd.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: SVN commit messages for the release engineering / security commits to
 the src tree <svn-src-releng.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-src-releng>, 
 <mailto:svn-src-releng-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-src-releng/>
List-Post: <mailto:svn-src-releng@freebsd.org>
List-Help: <mailto:svn-src-releng-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-src-releng>,
 <mailto:svn-src-releng-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 31 May 2016 16:33:58 -0000

Author: glebius
Date: Tue May 31 16:33:56 2016
New Revision: 301047
URL: https://svnweb.freebsd.org/changeset/base/301047

Log:
  Merge r300361 by mm@:
  
    Backport security fix for absolute path traversal
    vulnerability in bsdcpio.
  
  Security:	CVE-2015-2304
  Security:	SA-16:22
  Approved by:	so

Modified:
  releng/10.2/contrib/libarchive/cpio/bsdcpio.1
  releng/10.2/contrib/libarchive/cpio/cpio.c
  releng/10.2/contrib/libarchive/libarchive/archive.h
  releng/10.2/contrib/libarchive/libarchive/archive_write_disk.3
  releng/10.2/contrib/libarchive/libarchive/archive_write_disk_posix.c
  releng/10.2/contrib/libarchive/libarchive/test/test_write_disk_secure.c
Directory Properties:
  releng/10.2/   (props changed)

Modified: releng/10.2/contrib/libarchive/cpio/bsdcpio.1
==============================================================================
--- releng/10.2/contrib/libarchive/cpio/bsdcpio.1	Tue May 31 16:32:42 2016	(r301046)
+++ releng/10.2/contrib/libarchive/cpio/bsdcpio.1	Tue May 31 16:33:56 2016	(r301047)
@@ -156,7 +156,8 @@ See above for description.
 .It Fl Fl insecure
 (i and p mode only)
 Disable security checks during extraction or copying.
-This allows extraction via symbolic links and path names containing
+This allows extraction via symbolic links, absolute paths,
+and path names containing
 .Sq ..
 in the name.
 .It Fl J , Fl Fl xz

Modified: releng/10.2/contrib/libarchive/cpio/cpio.c
==============================================================================
--- releng/10.2/contrib/libarchive/cpio/cpio.c	Tue May 31 16:32:42 2016	(r301046)
+++ releng/10.2/contrib/libarchive/cpio/cpio.c	Tue May 31 16:33:56 2016	(r301047)
@@ -179,6 +179,7 @@ main(int argc, char *argv[])
 	cpio->extract_flags |= ARCHIVE_EXTRACT_NO_OVERWRITE_NEWER;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_SECURE_SYMLINKS;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_SECURE_NODOTDOT;
+	cpio->extract_flags |= ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_PERM;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_FFLAGS;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_ACL;
@@ -264,6 +265,7 @@ main(int argc, char *argv[])
 		case OPTION_INSECURE:
 			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_SYMLINKS;
 			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NODOTDOT;
+			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS;
 			break;
 		case 'L': /* GNU cpio */
 			cpio->option_follow_links = 1;
@@ -300,6 +302,7 @@ main(int argc, char *argv[])
 				    "Cannot use both -p and -%c", cpio->mode);
 			cpio->mode = opt;
 			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NODOTDOT;
+			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS;
 			break;
 		case OPTION_PRESERVE_OWNER:
 			cpio->extract_flags |= ARCHIVE_EXTRACT_OWNER;

Modified: releng/10.2/contrib/libarchive/libarchive/archive.h
==============================================================================
--- releng/10.2/contrib/libarchive/libarchive/archive.h	Tue May 31 16:32:42 2016	(r301046)
+++ releng/10.2/contrib/libarchive/libarchive/archive.h	Tue May 31 16:33:56 2016	(r301047)
@@ -562,6 +562,8 @@ __LA_DECL int archive_read_set_options(s
 /* Default: Do not use HFS+ compression if it was not compressed. */
 /* This has no effect except on Mac OS v10.6 or later. */
 #define	ARCHIVE_EXTRACT_HFS_COMPRESSION_FORCED	(0x8000)
+/* Default: Do not reject entries with absolute paths */
+#define ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS (0x10000)
 
 __LA_DECL int archive_read_extract(struct archive *, struct archive_entry *,
 		     int flags);

Modified: releng/10.2/contrib/libarchive/libarchive/archive_write_disk.3
==============================================================================
--- releng/10.2/contrib/libarchive/libarchive/archive_write_disk.3	Tue May 31 16:32:42 2016	(r301046)
+++ releng/10.2/contrib/libarchive/libarchive/archive_write_disk.3	Tue May 31 16:33:56 2016	(r301047)
@@ -177,6 +177,9 @@ The default is to not refuse such paths.
 Note that paths ending in
 .Pa ..
 always cause an error, regardless of this flag.
+.It Cm ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS
+Refuse to extract an absolute path.
+The default is to not refuse such paths.
 .It Cm ARCHIVE_EXTRACT_SPARSE
 Scan data for blocks of NUL bytes and try to recreate them with holes.
 This results in sparse files, independent of whether the archive format

Modified: releng/10.2/contrib/libarchive/libarchive/archive_write_disk_posix.c
==============================================================================
--- releng/10.2/contrib/libarchive/libarchive/archive_write_disk_posix.c	Tue May 31 16:32:42 2016	(r301046)
+++ releng/10.2/contrib/libarchive/libarchive/archive_write_disk_posix.c	Tue May 31 16:33:56 2016	(r301047)
@@ -2504,8 +2504,9 @@ cleanup_pathname_win(struct archive_writ
 /*
  * Canonicalize the pathname.  In particular, this strips duplicate
  * '/' characters, '.' elements, and trailing '/'.  It also raises an
- * error for an empty path, a trailing '..' or (if _SECURE_NODOTDOT is
- * set) any '..' in the path.
+ * error for an empty path, a trailing '..', (if _SECURE_NODOTDOT is
+ * set) any '..' in the path or (if ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS
+ * is set) if the path is absolute.
  */
 static int
 cleanup_pathname(struct archive_write_disk *a)
@@ -2524,8 +2525,15 @@ cleanup_pathname(struct archive_write_di
 	cleanup_pathname_win(a);
 #endif
 	/* Skip leading '/'. */
-	if (*src == '/')
+	if (*src == '/') {
+		if (a->flags & ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS) {
+			archive_set_error(&a->archive, ARCHIVE_ERRNO_MISC,
+			                  "Path is absolute");
+			return (ARCHIVE_FAILED);
+		}
+
 		separator = *src++;
+	}
 
 	/* Scan the pathname one element at a time. */
 	for (;;) {

Modified: releng/10.2/contrib/libarchive/libarchive/test/test_write_disk_secure.c
==============================================================================
--- releng/10.2/contrib/libarchive/libarchive/test/test_write_disk_secure.c	Tue May 31 16:32:42 2016	(r301046)
+++ releng/10.2/contrib/libarchive/libarchive/test/test_write_disk_secure.c	Tue May 31 16:33:56 2016	(r301047)
@@ -178,6 +178,29 @@ DEFINE_TEST(test_write_disk_secure)
 	assert(S_ISDIR(st.st_mode));
 	archive_entry_free(ae);
 
+	/*
+	 * Without security checks, we should be able to
+	 * extract an absolute path.
+	 */
+	assert((ae = archive_entry_new()) != NULL);
+	archive_entry_copy_pathname(ae, "/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+	archive_entry_set_mode(ae, S_IFREG | 0777);
+	assert(0 == archive_write_header(a, ae));
+	assert(0 == archive_write_finish_entry(a));
+	assertFileExists("/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+	assert(0 == unlink("/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp"));
+
+	/* But with security checks enabled, this should fail. */
+	assert(archive_entry_clear(ae) != NULL);
+	archive_entry_copy_pathname(ae, "/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+	archive_entry_set_mode(ae, S_IFREG | 0777);
+	archive_write_disk_set_options(a, ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS);
+	failure("Extracting an absolute path should fail here.");
+	assertEqualInt(ARCHIVE_FAILED, archive_write_header(a, ae));
+	archive_entry_free(ae);
+	assert(0 == archive_write_finish_entry(a));
+	assertFileNotExists("/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+
 	assertEqualInt(ARCHIVE_OK, archive_write_free(a));
 
 	/* Test the entries on disk. */

From owner-svn-src-releng@freebsd.org  Tue May 31 16:35:04 2016
Return-Path: <owner-svn-src-releng@freebsd.org>
Delivered-To: svn-src-releng@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id D195EB55140;
 Tue, 31 May 2016 16:35:04 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org (repo.freebsd.org
 [IPv6:2610:1c1:1:6068::e6a:0])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 9393D1C9A;
 Tue, 31 May 2016 16:35:04 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org ([127.0.1.37])
 by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id u4VGZ3Pf096482;
 Tue, 31 May 2016 16:35:03 GMT (envelope-from glebius@FreeBSD.org)
Received: (from glebius@localhost)
 by repo.freebsd.org (8.15.2/8.15.2/Submit) id u4VGZ3HU096476;
 Tue, 31 May 2016 16:35:03 GMT (envelope-from glebius@FreeBSD.org)
Message-Id: <201605311635.u4VGZ3HU096476@repo.freebsd.org>
X-Authentication-Warning: repo.freebsd.org: glebius set sender to
 glebius@FreeBSD.org using -f
From: Gleb Smirnoff <glebius@FreeBSD.org>
Date: Tue, 31 May 2016 16:35:03 +0000 (UTC)
To: src-committers@freebsd.org, svn-src-all@freebsd.org,
 svn-src-releng@freebsd.org
Subject: svn commit: r301048 - in releng/10.3/contrib/libarchive: cpio
 libarchive libarchive/test
X-SVN-Group: releng
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-BeenThere: svn-src-releng@freebsd.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: SVN commit messages for the release engineering / security commits to
 the src tree <svn-src-releng.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-src-releng>, 
 <mailto:svn-src-releng-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-src-releng/>
List-Post: <mailto:svn-src-releng@freebsd.org>
List-Help: <mailto:svn-src-releng-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-src-releng>,
 <mailto:svn-src-releng-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 31 May 2016 16:35:04 -0000

Author: glebius
Date: Tue May 31 16:35:03 2016
New Revision: 301048
URL: https://svnweb.freebsd.org/changeset/base/301048

Log:
  Merge r300361 by mm@:
  
    Backport security fix for absolute path traversal
    vulnerability in bsdcpio.
  
  Security:	CVE-2015-2304
  Security:	SA-16:22
  Approved by:	so

Modified:
  releng/10.3/contrib/libarchive/cpio/bsdcpio.1
  releng/10.3/contrib/libarchive/cpio/cpio.c
  releng/10.3/contrib/libarchive/libarchive/archive.h
  releng/10.3/contrib/libarchive/libarchive/archive_write_disk.3
  releng/10.3/contrib/libarchive/libarchive/archive_write_disk_posix.c
  releng/10.3/contrib/libarchive/libarchive/test/test_write_disk_secure.c
Directory Properties:
  releng/10.3/   (props changed)

Modified: releng/10.3/contrib/libarchive/cpio/bsdcpio.1
==============================================================================
--- releng/10.3/contrib/libarchive/cpio/bsdcpio.1	Tue May 31 16:33:56 2016	(r301047)
+++ releng/10.3/contrib/libarchive/cpio/bsdcpio.1	Tue May 31 16:35:03 2016	(r301048)
@@ -156,7 +156,8 @@ See above for description.
 .It Fl Fl insecure
 (i and p mode only)
 Disable security checks during extraction or copying.
-This allows extraction via symbolic links and path names containing
+This allows extraction via symbolic links, absolute paths,
+and path names containing
 .Sq ..
 in the name.
 .It Fl J , Fl Fl xz

Modified: releng/10.3/contrib/libarchive/cpio/cpio.c
==============================================================================
--- releng/10.3/contrib/libarchive/cpio/cpio.c	Tue May 31 16:33:56 2016	(r301047)
+++ releng/10.3/contrib/libarchive/cpio/cpio.c	Tue May 31 16:35:03 2016	(r301048)
@@ -179,6 +179,7 @@ main(int argc, char *argv[])
 	cpio->extract_flags |= ARCHIVE_EXTRACT_NO_OVERWRITE_NEWER;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_SECURE_SYMLINKS;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_SECURE_NODOTDOT;
+	cpio->extract_flags |= ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_PERM;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_FFLAGS;
 	cpio->extract_flags |= ARCHIVE_EXTRACT_ACL;
@@ -264,6 +265,7 @@ main(int argc, char *argv[])
 		case OPTION_INSECURE:
 			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_SYMLINKS;
 			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NODOTDOT;
+			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS;
 			break;
 		case 'L': /* GNU cpio */
 			cpio->option_follow_links = 1;
@@ -300,6 +302,7 @@ main(int argc, char *argv[])
 				    "Cannot use both -p and -%c", cpio->mode);
 			cpio->mode = opt;
 			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NODOTDOT;
+			cpio->extract_flags &= ~ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS;
 			break;
 		case OPTION_PRESERVE_OWNER:
 			cpio->extract_flags |= ARCHIVE_EXTRACT_OWNER;

Modified: releng/10.3/contrib/libarchive/libarchive/archive.h
==============================================================================
--- releng/10.3/contrib/libarchive/libarchive/archive.h	Tue May 31 16:33:56 2016	(r301047)
+++ releng/10.3/contrib/libarchive/libarchive/archive.h	Tue May 31 16:35:03 2016	(r301048)
@@ -562,6 +562,8 @@ __LA_DECL int archive_read_set_options(s
 /* Default: Do not use HFS+ compression if it was not compressed. */
 /* This has no effect except on Mac OS v10.6 or later. */
 #define	ARCHIVE_EXTRACT_HFS_COMPRESSION_FORCED	(0x8000)
+/* Default: Do not reject entries with absolute paths */
+#define ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS (0x10000)
 
 __LA_DECL int archive_read_extract(struct archive *, struct archive_entry *,
 		     int flags);

Modified: releng/10.3/contrib/libarchive/libarchive/archive_write_disk.3
==============================================================================
--- releng/10.3/contrib/libarchive/libarchive/archive_write_disk.3	Tue May 31 16:33:56 2016	(r301047)
+++ releng/10.3/contrib/libarchive/libarchive/archive_write_disk.3	Tue May 31 16:35:03 2016	(r301048)
@@ -177,6 +177,9 @@ The default is to not refuse such paths.
 Note that paths ending in
 .Pa ..
 always cause an error, regardless of this flag.
+.It Cm ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS
+Refuse to extract an absolute path.
+The default is to not refuse such paths.
 .It Cm ARCHIVE_EXTRACT_SPARSE
 Scan data for blocks of NUL bytes and try to recreate them with holes.
 This results in sparse files, independent of whether the archive format

Modified: releng/10.3/contrib/libarchive/libarchive/archive_write_disk_posix.c
==============================================================================
--- releng/10.3/contrib/libarchive/libarchive/archive_write_disk_posix.c	Tue May 31 16:33:56 2016	(r301047)
+++ releng/10.3/contrib/libarchive/libarchive/archive_write_disk_posix.c	Tue May 31 16:35:03 2016	(r301048)
@@ -2504,8 +2504,9 @@ cleanup_pathname_win(struct archive_writ
 /*
  * Canonicalize the pathname.  In particular, this strips duplicate
  * '/' characters, '.' elements, and trailing '/'.  It also raises an
- * error for an empty path, a trailing '..' or (if _SECURE_NODOTDOT is
- * set) any '..' in the path.
+ * error for an empty path, a trailing '..', (if _SECURE_NODOTDOT is
+ * set) any '..' in the path or (if ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS
+ * is set) if the path is absolute.
  */
 static int
 cleanup_pathname(struct archive_write_disk *a)
@@ -2524,8 +2525,15 @@ cleanup_pathname(struct archive_write_di
 	cleanup_pathname_win(a);
 #endif
 	/* Skip leading '/'. */
-	if (*src == '/')
+	if (*src == '/') {
+		if (a->flags & ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS) {
+			archive_set_error(&a->archive, ARCHIVE_ERRNO_MISC,
+			                  "Path is absolute");
+			return (ARCHIVE_FAILED);
+		}
+
 		separator = *src++;
+	}
 
 	/* Scan the pathname one element at a time. */
 	for (;;) {

Modified: releng/10.3/contrib/libarchive/libarchive/test/test_write_disk_secure.c
==============================================================================
--- releng/10.3/contrib/libarchive/libarchive/test/test_write_disk_secure.c	Tue May 31 16:33:56 2016	(r301047)
+++ releng/10.3/contrib/libarchive/libarchive/test/test_write_disk_secure.c	Tue May 31 16:35:03 2016	(r301048)
@@ -178,6 +178,29 @@ DEFINE_TEST(test_write_disk_secure)
 	assert(S_ISDIR(st.st_mode));
 	archive_entry_free(ae);
 
+	/*
+	 * Without security checks, we should be able to
+	 * extract an absolute path.
+	 */
+	assert((ae = archive_entry_new()) != NULL);
+	archive_entry_copy_pathname(ae, "/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+	archive_entry_set_mode(ae, S_IFREG | 0777);
+	assert(0 == archive_write_header(a, ae));
+	assert(0 == archive_write_finish_entry(a));
+	assertFileExists("/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+	assert(0 == unlink("/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp"));
+
+	/* But with security checks enabled, this should fail. */
+	assert(archive_entry_clear(ae) != NULL);
+	archive_entry_copy_pathname(ae, "/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+	archive_entry_set_mode(ae, S_IFREG | 0777);
+	archive_write_disk_set_options(a, ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS);
+	failure("Extracting an absolute path should fail here.");
+	assertEqualInt(ARCHIVE_FAILED, archive_write_header(a, ae));
+	archive_entry_free(ae);
+	assert(0 == archive_write_finish_entry(a));
+	assertFileNotExists("/tmp/libarchive_test-test_write_disk_secure-absolute_path.tmp");
+
 	assertEqualInt(ARCHIVE_OK, archive_write_free(a));
 
 	/* Test the entries on disk. */

From owner-svn-src-releng@freebsd.org  Tue May 31 16:55:38 2016
Return-Path: <owner-svn-src-releng@freebsd.org>
Delivered-To: svn-src-releng@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id BEF23B5572F;
 Tue, 31 May 2016 16:55:38 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org (repo.freebsd.org
 [IPv6:2610:1c1:1:6068::e6a:0])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 88E401974;
 Tue, 31 May 2016 16:55:38 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org ([127.0.1.37])
 by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id u4VGtbGf004402;
 Tue, 31 May 2016 16:55:37 GMT (envelope-from glebius@FreeBSD.org)
Received: (from glebius@localhost)
 by repo.freebsd.org (8.15.2/8.15.2/Submit) id u4VGtbOZ004397;
 Tue, 31 May 2016 16:55:37 GMT (envelope-from glebius@FreeBSD.org)
Message-Id: <201605311655.u4VGtbOZ004397@repo.freebsd.org>
X-Authentication-Warning: repo.freebsd.org: glebius set sender to
 glebius@FreeBSD.org using -f
From: Gleb Smirnoff <glebius@FreeBSD.org>
Date: Tue, 31 May 2016 16:55:37 +0000 (UTC)
To: src-committers@freebsd.org, svn-src-all@freebsd.org,
 svn-src-releng@freebsd.org
Subject: svn commit: r301049 - in releng/9.3: . sys/compat/linux sys/conf
 sys/kern
X-SVN-Group: releng
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-BeenThere: svn-src-releng@freebsd.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: SVN commit messages for the release engineering / security commits to
 the src tree <svn-src-releng.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-src-releng>, 
 <mailto:svn-src-releng-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-src-releng/>
List-Post: <mailto:svn-src-releng@freebsd.org>
List-Help: <mailto:svn-src-releng-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-src-releng>,
 <mailto:svn-src-releng-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 31 May 2016 16:55:38 -0000

Author: glebius
Date: Tue May 31 16:55:37 2016
New Revision: 301049
URL: https://svnweb.freebsd.org/changeset/base/301049

Log:
  Fix kernel stack disclosure in Linux compatibility layer. [SA-16:20]
  Fix kernel stack disclosure in 4.3BSD compatibility layer. [SA-16:21]
  
  Security:	SA-16:20
  Security:	SA-16:21
  Approved by:	so

Modified:
  releng/9.3/UPDATING
  releng/9.3/sys/compat/linux/linux_ioctl.c
  releng/9.3/sys/compat/linux/linux_misc.c
  releng/9.3/sys/conf/newvers.sh
  releng/9.3/sys/kern/vfs_syscalls.c

Modified: releng/9.3/UPDATING
==============================================================================
--- releng/9.3/UPDATING	Tue May 31 16:35:03 2016	(r301048)
+++ releng/9.3/UPDATING	Tue May 31 16:55:37 2016	(r301049)
@@ -11,6 +11,16 @@ handbook:
 Items affecting the ports and packages system can be found in
 /usr/ports/UPDATING.  Please read that file before running portupgrade.
 
+20160531	p43	FreeBSD-SA-16:20.linux
+			FreeBSD-SA-16:21.43bsd
+			FreeBSD-SA-16:22.libarchive
+			FreeBSD-SA-16:23.libarchive
+
+	Fix kernel stack disclosure in Linux compatibility layer. [SA-16:20]
+	Fix kernel stack disclosure in 4.3BSD compatibility layer. [SA-16:21]
+	Fix directory traversal in cpio(1). [SA-16:22]
+	Fix buffer overflow in libarchive(3). [SA-16:23]
+
 20160517	p42	FreeBSD-SA-16:18.atkbd
 
 	Fix buffer overflow in keyboard driver. [SA-16:18]

Modified: releng/9.3/sys/compat/linux/linux_ioctl.c
==============================================================================
--- releng/9.3/sys/compat/linux/linux_ioctl.c	Tue May 31 16:35:03 2016	(r301048)
+++ releng/9.3/sys/compat/linux/linux_ioctl.c	Tue May 31 16:55:37 2016	(r301049)
@@ -911,6 +911,8 @@ linux_ioctl_termio(struct thread *td, st
 
 	case LINUX_TIOCGSERIAL: {
 		struct linux_serial_struct lss;
+
+		bzero(&lss, sizeof(lss));
 		lss.type = LINUX_PORT_16550A;
 		lss.flags = 0;
 		lss.close_delay = 0;

Modified: releng/9.3/sys/compat/linux/linux_misc.c
==============================================================================
--- releng/9.3/sys/compat/linux/linux_misc.c	Tue May 31 16:35:03 2016	(r301048)
+++ releng/9.3/sys/compat/linux/linux_misc.c	Tue May 31 16:55:37 2016	(r301049)
@@ -138,6 +138,7 @@ linux_sysinfo(struct thread *td, struct 
 	int i, j;
 	struct timespec ts;
 
+	bzero(&sysinfo, sizeof(sysinfo));
 	getnanouptime(&ts);
 	if (ts.tv_nsec != 0)
 		ts.tv_sec++;

Modified: releng/9.3/sys/conf/newvers.sh
==============================================================================
--- releng/9.3/sys/conf/newvers.sh	Tue May 31 16:35:03 2016	(r301048)
+++ releng/9.3/sys/conf/newvers.sh	Tue May 31 16:55:37 2016	(r301049)
@@ -32,7 +32,7 @@
 
 TYPE="FreeBSD"
 REVISION="9.3"
-BRANCH="RELEASE-p42"
+BRANCH="RELEASE-p43"
 if [ "X${BRANCH_OVERRIDE}" != "X" ]; then
 	BRANCH=${BRANCH_OVERRIDE}
 fi

Modified: releng/9.3/sys/kern/vfs_syscalls.c
==============================================================================
--- releng/9.3/sys/kern/vfs_syscalls.c	Tue May 31 16:35:03 2016	(r301048)
+++ releng/9.3/sys/kern/vfs_syscalls.c	Tue May 31 16:55:37 2016	(r301049)
@@ -2326,6 +2326,7 @@ cvtstat(st, ost)
 	struct ostat *ost;
 {
 
+	bzero(ost, sizeof(*ost));
 	ost->st_dev = st->st_dev;
 	ost->st_ino = st->st_ino;
 	ost->st_mode = st->st_mode;

From owner-svn-src-releng@freebsd.org  Tue May 31 16:55:43 2016
Return-Path: <owner-svn-src-releng@freebsd.org>
Delivered-To: svn-src-releng@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 07242B55756;
 Tue, 31 May 2016 16:55:43 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org (repo.freebsd.org
 [IPv6:2610:1c1:1:6068::e6a:0])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id BF1FD1990;
 Tue, 31 May 2016 16:55:42 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org ([127.0.1.37])
 by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id u4VGtfjc004456;
 Tue, 31 May 2016 16:55:41 GMT (envelope-from glebius@FreeBSD.org)
Received: (from glebius@localhost)
 by repo.freebsd.org (8.15.2/8.15.2/Submit) id u4VGtfoH004451;
 Tue, 31 May 2016 16:55:41 GMT (envelope-from glebius@FreeBSD.org)
Message-Id: <201605311655.u4VGtfoH004451@repo.freebsd.org>
X-Authentication-Warning: repo.freebsd.org: glebius set sender to
 glebius@FreeBSD.org using -f
From: Gleb Smirnoff <glebius@FreeBSD.org>
Date: Tue, 31 May 2016 16:55:41 +0000 (UTC)
To: src-committers@freebsd.org, svn-src-all@freebsd.org,
 svn-src-releng@freebsd.org
Subject: svn commit: r301050 - in releng/10.1: . sys/compat/linux sys/conf
 sys/kern
X-SVN-Group: releng
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-BeenThere: svn-src-releng@freebsd.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: SVN commit messages for the release engineering / security commits to
 the src tree <svn-src-releng.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-src-releng>, 
 <mailto:svn-src-releng-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-src-releng/>
List-Post: <mailto:svn-src-releng@freebsd.org>
List-Help: <mailto:svn-src-releng-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-src-releng>,
 <mailto:svn-src-releng-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 31 May 2016 16:55:43 -0000

Author: glebius
Date: Tue May 31 16:55:41 2016
New Revision: 301050
URL: https://svnweb.freebsd.org/changeset/base/301050

Log:
  Fix kernel stack disclosure in Linux compatibility layer. [SA-16:20]
  Fix kernel stack disclosure in 4.3BSD compatibility layer. [SA-16:21]
  
  Security:	SA-16:20
  Security:	SA-16:21
  Approved by:	so

Modified:
  releng/10.1/UPDATING
  releng/10.1/sys/compat/linux/linux_ioctl.c
  releng/10.1/sys/compat/linux/linux_misc.c
  releng/10.1/sys/conf/newvers.sh
  releng/10.1/sys/kern/vfs_syscalls.c

Modified: releng/10.1/UPDATING
==============================================================================
--- releng/10.1/UPDATING	Tue May 31 16:55:37 2016	(r301049)
+++ releng/10.1/UPDATING	Tue May 31 16:55:41 2016	(r301050)
@@ -16,6 +16,14 @@ from older versions of FreeBSD, try WITH
 stable/10, and then rebuild without this option. The bootstrap process from
 older version of current is a bit fragile.
 
+20160531	p35	FreeBSD-SA-16:20.linux
+			FreeBSD-SA-16:21.43bsd
+			FreeBSD-SA-16:22.libarchive
+
+	Fix kernel stack disclosure in Linux compatibility layer. [SA-16:20]
+	Fix kernel stack disclosure in 4.3BSD compatibility layer. [SA-16:21]
+	Fix directory traversal in cpio(1). [SA-16:22]
+
 20160517	p34	FreeBSD-SA-16:18.atkbd
 			FreeBSD-SA-16:19.sendmsg
 

Modified: releng/10.1/sys/compat/linux/linux_ioctl.c
==============================================================================
--- releng/10.1/sys/compat/linux/linux_ioctl.c	Tue May 31 16:55:37 2016	(r301049)
+++ releng/10.1/sys/compat/linux/linux_ioctl.c	Tue May 31 16:55:41 2016	(r301050)
@@ -919,6 +919,8 @@ linux_ioctl_termio(struct thread *td, st
 
 	case LINUX_TIOCGSERIAL: {
 		struct linux_serial_struct lss;
+
+		bzero(&lss, sizeof(lss));
 		lss.type = LINUX_PORT_16550A;
 		lss.flags = 0;
 		lss.close_delay = 0;

Modified: releng/10.1/sys/compat/linux/linux_misc.c
==============================================================================
--- releng/10.1/sys/compat/linux/linux_misc.c	Tue May 31 16:55:37 2016	(r301049)
+++ releng/10.1/sys/compat/linux/linux_misc.c	Tue May 31 16:55:41 2016	(r301050)
@@ -138,6 +138,7 @@ linux_sysinfo(struct thread *td, struct 
 	int i, j;
 	struct timespec ts;
 
+	bzero(&sysinfo, sizeof(sysinfo));
 	getnanouptime(&ts);
 	if (ts.tv_nsec != 0)
 		ts.tv_sec++;

Modified: releng/10.1/sys/conf/newvers.sh
==============================================================================
--- releng/10.1/sys/conf/newvers.sh	Tue May 31 16:55:37 2016	(r301049)
+++ releng/10.1/sys/conf/newvers.sh	Tue May 31 16:55:41 2016	(r301050)
@@ -32,7 +32,7 @@
 
 TYPE="FreeBSD"
 REVISION="10.1"
-BRANCH="RELEASE-p34"
+BRANCH="RELEASE-p35"
 if [ "X${BRANCH_OVERRIDE}" != "X" ]; then
 	BRANCH=${BRANCH_OVERRIDE}
 fi

Modified: releng/10.1/sys/kern/vfs_syscalls.c
==============================================================================
--- releng/10.1/sys/kern/vfs_syscalls.c	Tue May 31 16:55:37 2016	(r301049)
+++ releng/10.1/sys/kern/vfs_syscalls.c	Tue May 31 16:55:41 2016	(r301050)
@@ -2181,6 +2181,7 @@ cvtstat(st, ost)
 	struct ostat *ost;
 {
 
+	bzero(ost, sizeof(*ost));
 	ost->st_dev = st->st_dev;
 	ost->st_ino = st->st_ino;
 	ost->st_mode = st->st_mode;

From owner-svn-src-releng@freebsd.org  Tue May 31 16:55:47 2016
Return-Path: <owner-svn-src-releng@freebsd.org>
Delivered-To: svn-src-releng@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 80737B5576D;
 Tue, 31 May 2016 16:55:47 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org (repo.freebsd.org
 [IPv6:2610:1c1:1:6068::e6a:0])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 443CE1AB1;
 Tue, 31 May 2016 16:55:47 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org ([127.0.1.37])
 by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id u4VGtkpY004511;
 Tue, 31 May 2016 16:55:46 GMT (envelope-from glebius@FreeBSD.org)
Received: (from glebius@localhost)
 by repo.freebsd.org (8.15.2/8.15.2/Submit) id u4VGtkea004506;
 Tue, 31 May 2016 16:55:46 GMT (envelope-from glebius@FreeBSD.org)
Message-Id: <201605311655.u4VGtkea004506@repo.freebsd.org>
X-Authentication-Warning: repo.freebsd.org: glebius set sender to
 glebius@FreeBSD.org using -f
From: Gleb Smirnoff <glebius@FreeBSD.org>
Date: Tue, 31 May 2016 16:55:45 +0000 (UTC)
To: src-committers@freebsd.org, svn-src-all@freebsd.org,
 svn-src-releng@freebsd.org
Subject: svn commit: r301051 - in releng/10.2: . sys/compat/linux sys/conf
 sys/kern
X-SVN-Group: releng
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-BeenThere: svn-src-releng@freebsd.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: SVN commit messages for the release engineering / security commits to
 the src tree <svn-src-releng.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-src-releng>, 
 <mailto:svn-src-releng-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-src-releng/>
List-Post: <mailto:svn-src-releng@freebsd.org>
List-Help: <mailto:svn-src-releng-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-src-releng>,
 <mailto:svn-src-releng-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 31 May 2016 16:55:47 -0000

Author: glebius
Date: Tue May 31 16:55:45 2016
New Revision: 301051
URL: https://svnweb.freebsd.org/changeset/base/301051

Log:
  Fix kernel stack disclosure in Linux compatibility layer. [SA-16:20]
  Fix kernel stack disclosure in 4.3BSD compatibility layer. [SA-16:21]
  
  Security:	SA-16:20
  Security:	SA-16:21
  Approved by:	so

Modified:
  releng/10.2/UPDATING
  releng/10.2/sys/compat/linux/linux_ioctl.c
  releng/10.2/sys/compat/linux/linux_misc.c
  releng/10.2/sys/conf/newvers.sh
  releng/10.2/sys/kern/vfs_syscalls.c

Modified: releng/10.2/UPDATING
==============================================================================
--- releng/10.2/UPDATING	Tue May 31 16:55:41 2016	(r301050)
+++ releng/10.2/UPDATING	Tue May 31 16:55:45 2016	(r301051)
@@ -16,6 +16,14 @@ from older versions of FreeBSD, try WITH
 stable/10, and then rebuild without this option. The bootstrap process from
 older version of current is a bit fragile.
 
+20160531	p18	FreeBSD-SA-16:20.linux
+			FreeBSD-SA-16:21.43bsd
+			FreeBSD-SA-16:22.libarchive
+
+	Fix kernel stack disclosure in Linux compatibility layer. [SA-16:20]
+	Fix kernel stack disclosure in 4.3BSD compatibility layer. [SA-16:21]
+	Fix directory traversal in cpio(1). [SA-16:22]
+
 20160517	p17	FreeBSD-SA-16:18.atkbd
 			FreeBSD-SA-16:19.sendmsg
 

Modified: releng/10.2/sys/compat/linux/linux_ioctl.c
==============================================================================
--- releng/10.2/sys/compat/linux/linux_ioctl.c	Tue May 31 16:55:41 2016	(r301050)
+++ releng/10.2/sys/compat/linux/linux_ioctl.c	Tue May 31 16:55:45 2016	(r301051)
@@ -919,6 +919,8 @@ linux_ioctl_termio(struct thread *td, st
 
 	case LINUX_TIOCGSERIAL: {
 		struct linux_serial_struct lss;
+
+		bzero(&lss, sizeof(lss));
 		lss.type = LINUX_PORT_16550A;
 		lss.flags = 0;
 		lss.close_delay = 0;

Modified: releng/10.2/sys/compat/linux/linux_misc.c
==============================================================================
--- releng/10.2/sys/compat/linux/linux_misc.c	Tue May 31 16:55:41 2016	(r301050)
+++ releng/10.2/sys/compat/linux/linux_misc.c	Tue May 31 16:55:45 2016	(r301051)
@@ -138,6 +138,7 @@ linux_sysinfo(struct thread *td, struct 
 	int i, j;
 	struct timespec ts;
 
+	bzero(&sysinfo, sizeof(sysinfo));
 	getnanouptime(&ts);
 	if (ts.tv_nsec != 0)
 		ts.tv_sec++;

Modified: releng/10.2/sys/conf/newvers.sh
==============================================================================
--- releng/10.2/sys/conf/newvers.sh	Tue May 31 16:55:41 2016	(r301050)
+++ releng/10.2/sys/conf/newvers.sh	Tue May 31 16:55:45 2016	(r301051)
@@ -32,7 +32,7 @@
 
 TYPE="FreeBSD"
 REVISION="10.2"
-BRANCH="RELEASE-p17"
+BRANCH="RELEASE-p18"
 if [ "X${BRANCH_OVERRIDE}" != "X" ]; then
 	BRANCH=${BRANCH_OVERRIDE}
 fi

Modified: releng/10.2/sys/kern/vfs_syscalls.c
==============================================================================
--- releng/10.2/sys/kern/vfs_syscalls.c	Tue May 31 16:55:41 2016	(r301050)
+++ releng/10.2/sys/kern/vfs_syscalls.c	Tue May 31 16:55:45 2016	(r301051)
@@ -2195,6 +2195,7 @@ cvtstat(st, ost)
 	struct ostat *ost;
 {
 
+	bzero(ost, sizeof(*ost));
 	ost->st_dev = st->st_dev;
 	ost->st_ino = st->st_ino;
 	ost->st_mode = st->st_mode;

From owner-svn-src-releng@freebsd.org  Tue May 31 16:55:52 2016
Return-Path: <owner-svn-src-releng@freebsd.org>
Delivered-To: svn-src-releng@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 49C2FB55793;
 Tue, 31 May 2016 16:55:52 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org (repo.freebsd.org
 [IPv6:2610:1c1:1:6068::e6a:0])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id D503A1B65;
 Tue, 31 May 2016 16:55:51 +0000 (UTC)
 (envelope-from glebius@FreeBSD.org)
Received: from repo.freebsd.org ([127.0.1.37])
 by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id u4VGto3q004562;
 Tue, 31 May 2016 16:55:50 GMT (envelope-from glebius@FreeBSD.org)
Received: (from glebius@localhost)
 by repo.freebsd.org (8.15.2/8.15.2/Submit) id u4VGtoh4004557;
 Tue, 31 May 2016 16:55:50 GMT (envelope-from glebius@FreeBSD.org)
Message-Id: <201605311655.u4VGtoh4004557@repo.freebsd.org>
X-Authentication-Warning: repo.freebsd.org: glebius set sender to
 glebius@FreeBSD.org using -f
From: Gleb Smirnoff <glebius@FreeBSD.org>
Date: Tue, 31 May 2016 16:55:50 +0000 (UTC)
To: src-committers@freebsd.org, svn-src-all@freebsd.org,
 svn-src-releng@freebsd.org
Subject: svn commit: r301052 - in releng/10.3: . sys/compat/linux sys/conf
 sys/kern
X-SVN-Group: releng
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-BeenThere: svn-src-releng@freebsd.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: SVN commit messages for the release engineering / security commits to
 the src tree <svn-src-releng.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-src-releng>, 
 <mailto:svn-src-releng-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-src-releng/>
List-Post: <mailto:svn-src-releng@freebsd.org>
List-Help: <mailto:svn-src-releng-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-src-releng>,
 <mailto:svn-src-releng-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 31 May 2016 16:55:52 -0000

Author: glebius
Date: Tue May 31 16:55:50 2016
New Revision: 301052
URL: https://svnweb.freebsd.org/changeset/base/301052

Log:
  Fix kernel stack disclosure in Linux compatibility layer. [SA-16:20]
  Fix kernel stack disclosure in 4.3BSD compatibility layer. [SA-16:21]
  
  Security:	SA-16:20
  Security:	SA-16:21
  Approved by:	so

Modified:
  releng/10.3/UPDATING
  releng/10.3/sys/compat/linux/linux_ioctl.c
  releng/10.3/sys/compat/linux/linux_misc.c
  releng/10.3/sys/conf/newvers.sh
  releng/10.3/sys/kern/vfs_syscalls.c

Modified: releng/10.3/UPDATING
==============================================================================
--- releng/10.3/UPDATING	Tue May 31 16:55:45 2016	(r301051)
+++ releng/10.3/UPDATING	Tue May 31 16:55:50 2016	(r301052)
@@ -16,6 +16,15 @@ from older versions of FreeBSD, try WITH
 stable/10, and then rebuild without this option. The bootstrap process from
 older version of current is a bit fragile.
 
+20160531	p4	FreeBSD-SA-16:20.linux
+			FreeBSD-SA-16:21.43bsd
+			FreeBSD-SA-16:22.libarchive
+
+	Fix kernel stack disclosure in Linux compatibility layer. [SA-16:20]
+	Fix kernel stack disclosure in 4.3BSD compatibility layer. [SA-16:21]
+	Fix directory traversal in cpio(1). [SA-16:22]
+
+
 20160517	p3	FreeBSD-SA-16:18.atkbd
 			FreeBSD-SA-16:19.sendmsg
 

Modified: releng/10.3/sys/compat/linux/linux_ioctl.c
==============================================================================
--- releng/10.3/sys/compat/linux/linux_ioctl.c	Tue May 31 16:55:45 2016	(r301051)
+++ releng/10.3/sys/compat/linux/linux_ioctl.c	Tue May 31 16:55:50 2016	(r301052)
@@ -915,6 +915,8 @@ linux_ioctl_termio(struct thread *td, st
 
 	case LINUX_TIOCGSERIAL: {
 		struct linux_serial_struct lss;
+
+		bzero(&lss, sizeof(lss));
 		lss.type = LINUX_PORT_16550A;
 		lss.flags = 0;
 		lss.close_delay = 0;

Modified: releng/10.3/sys/compat/linux/linux_misc.c
==============================================================================
--- releng/10.3/sys/compat/linux/linux_misc.c	Tue May 31 16:55:45 2016	(r301051)
+++ releng/10.3/sys/compat/linux/linux_misc.c	Tue May 31 16:55:50 2016	(r301052)
@@ -150,6 +150,7 @@ linux_sysinfo(struct thread *td, struct 
 	int i, j;
 	struct timespec ts;
 
+	bzero(&sysinfo, sizeof(sysinfo));
 	getnanouptime(&ts);
 	if (ts.tv_nsec != 0)
 		ts.tv_sec++;

Modified: releng/10.3/sys/conf/newvers.sh
==============================================================================
--- releng/10.3/sys/conf/newvers.sh	Tue May 31 16:55:45 2016	(r301051)
+++ releng/10.3/sys/conf/newvers.sh	Tue May 31 16:55:50 2016	(r301052)
@@ -32,7 +32,7 @@
 
 TYPE="FreeBSD"
 REVISION="10.3"
-BRANCH="RELEASE-p3"
+BRANCH="RELEASE-p4"
 if [ "X${BRANCH_OVERRIDE}" != "X" ]; then
 	BRANCH=${BRANCH_OVERRIDE}
 fi

Modified: releng/10.3/sys/kern/vfs_syscalls.c
==============================================================================
--- releng/10.3/sys/kern/vfs_syscalls.c	Tue May 31 16:55:45 2016	(r301051)
+++ releng/10.3/sys/kern/vfs_syscalls.c	Tue May 31 16:55:50 2016	(r301052)
@@ -2197,6 +2197,7 @@ cvtstat(st, ost)
 	struct ostat *ost;
 {
 
+	bzero(ost, sizeof(*ost));
 	ost->st_dev = st->st_dev;
 	ost->st_ino = st->st_ino;
 	ost->st_mode = st->st_mode;

From owner-svn-src-releng@freebsd.org  Sat Jun  4 05:46:55 2016
Return-Path: <owner-svn-src-releng@freebsd.org>
Delivered-To: svn-src-releng@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 18892B69036;
 Sat,  4 Jun 2016 05:46:55 +0000 (UTC)
 (envelope-from delphij@FreeBSD.org)
Received: from repo.freebsd.org (repo.freebsd.org
 [IPv6:2610:1c1:1:6068::e6a:0])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 862F41BBD;
 Sat,  4 Jun 2016 05:46:54 +0000 (UTC)
 (envelope-from delphij@FreeBSD.org)
Received: from repo.freebsd.org ([127.0.1.37])
 by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id u545kraw093943;
 Sat, 4 Jun 2016 05:46:53 GMT (envelope-from delphij@FreeBSD.org)
Received: (from delphij@localhost)
 by repo.freebsd.org (8.15.2/8.15.2/Submit) id u545krDl093936;
 Sat, 4 Jun 2016 05:46:53 GMT (envelope-from delphij@FreeBSD.org)
Message-Id: <201606040546.u545krDl093936@repo.freebsd.org>
X-Authentication-Warning: repo.freebsd.org: delphij set sender to
 delphij@FreeBSD.org using -f
From: Xin LI <delphij@FreeBSD.org>
Date: Sat, 4 Jun 2016 05:46:53 +0000 (UTC)
To: src-committers@freebsd.org, svn-src-all@freebsd.org,
 svn-src-releng@freebsd.org
Subject: svn commit: r301301 - in releng: 10.1 10.1/contrib/ntp
 10.1/contrib/ntp/html 10.1/contrib/ntp/include 10.1/contrib/ntp/ntpd
 10.1/contrib/ntp/ntpdc 10.1/contrib/ntp/ntpq 10.1/contrib/ntp/ntpsnmpd 10...
X-SVN-Group: releng
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-BeenThere: svn-src-releng@freebsd.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: SVN commit messages for the release engineering / security commits to
 the src tree <svn-src-releng.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-src-releng>, 
 <mailto:svn-src-releng-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-src-releng/>
List-Post: <mailto:svn-src-releng@freebsd.org>
List-Help: <mailto:svn-src-releng-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-src-releng>,
 <mailto:svn-src-releng-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 04 Jun 2016 05:46:55 -0000

Author: delphij
Date: Sat Jun  4 05:46:52 2016
New Revision: 301301
URL: https://svnweb.freebsd.org/changeset/base/301301

Log:
  Fix multiple ntp vulnerabilities.
  
  Security:	FreeBSD-SA-16:24.ntp
  Approved by:	so

Added:
  releng/10.1/contrib/ntp/scripts/build/genAuthors.in
  releng/10.1/contrib/ntp/sntp/m4/sntp_problemtests.m4
  releng/10.2/contrib/ntp/scripts/build/genAuthors.in
  releng/10.2/contrib/ntp/sntp/m4/sntp_problemtests.m4
  releng/10.3/contrib/ntp/scripts/build/genAuthors.in
  releng/10.3/contrib/ntp/sntp/m4/sntp_problemtests.m4
  releng/9.3/contrib/ntp/scripts/build/genAuthors.in
  releng/9.3/contrib/ntp/sntp/m4/sntp_problemtests.m4
Modified:
  releng/10.1/UPDATING
  releng/10.1/contrib/ntp/ChangeLog
  releng/10.1/contrib/ntp/CommitLog
  releng/10.1/contrib/ntp/NEWS
  releng/10.1/contrib/ntp/configure
  releng/10.1/contrib/ntp/configure.ac
  releng/10.1/contrib/ntp/html/miscopt.html
  releng/10.1/contrib/ntp/include/ntp.h
  releng/10.1/contrib/ntp/ntpd/complete.conf.in
  releng/10.1/contrib/ntp/ntpd/invoke-ntp.conf.texi
  releng/10.1/contrib/ntp/ntpd/invoke-ntp.keys.texi
  releng/10.1/contrib/ntp/ntpd/invoke-ntpd.texi
  releng/10.1/contrib/ntp/ntpd/keyword-gen-utd
  releng/10.1/contrib/ntp/ntpd/keyword-gen.c
  releng/10.1/contrib/ntp/ntpd/ntp.conf.5man
  releng/10.1/contrib/ntp/ntpd/ntp.conf.5mdoc
  releng/10.1/contrib/ntp/ntpd/ntp.conf.def
  releng/10.1/contrib/ntp/ntpd/ntp.conf.html
  releng/10.1/contrib/ntp/ntpd/ntp.conf.man.in
  releng/10.1/contrib/ntp/ntpd/ntp.conf.mdoc.in
  releng/10.1/contrib/ntp/ntpd/ntp.keys.5man
  releng/10.1/contrib/ntp/ntpd/ntp.keys.5mdoc
  releng/10.1/contrib/ntp/ntpd/ntp.keys.html
  releng/10.1/contrib/ntp/ntpd/ntp.keys.man.in
  releng/10.1/contrib/ntp/ntpd/ntp.keys.mdoc.in
  releng/10.1/contrib/ntp/ntpd/ntp_config.c
  releng/10.1/contrib/ntp/ntpd/ntp_io.c
  releng/10.1/contrib/ntp/ntpd/ntp_keyword.h
  releng/10.1/contrib/ntp/ntpd/ntp_parser.c
  releng/10.1/contrib/ntp/ntpd/ntp_parser.h
  releng/10.1/contrib/ntp/ntpd/ntp_proto.c
  releng/10.1/contrib/ntp/ntpd/ntpd-opts.c
  releng/10.1/contrib/ntp/ntpd/ntpd-opts.h
  releng/10.1/contrib/ntp/ntpd/ntpd.1ntpdman
  releng/10.1/contrib/ntp/ntpd/ntpd.1ntpdmdoc
  releng/10.1/contrib/ntp/ntpd/ntpd.html
  releng/10.1/contrib/ntp/ntpd/ntpd.man.in
  releng/10.1/contrib/ntp/ntpd/ntpd.mdoc.in
  releng/10.1/contrib/ntp/ntpd/refclock_parse.c
  releng/10.1/contrib/ntp/ntpdc/invoke-ntpdc.texi
  releng/10.1/contrib/ntp/ntpdc/ntpdc-opts.c
  releng/10.1/contrib/ntp/ntpdc/ntpdc-opts.h
  releng/10.1/contrib/ntp/ntpdc/ntpdc.1ntpdcman
  releng/10.1/contrib/ntp/ntpdc/ntpdc.1ntpdcmdoc
  releng/10.1/contrib/ntp/ntpdc/ntpdc.c
  releng/10.1/contrib/ntp/ntpdc/ntpdc.html
  releng/10.1/contrib/ntp/ntpdc/ntpdc.man.in
  releng/10.1/contrib/ntp/ntpdc/ntpdc.mdoc.in
  releng/10.1/contrib/ntp/ntpq/invoke-ntpq.texi
  releng/10.1/contrib/ntp/ntpq/ntpq-opts.c
  releng/10.1/contrib/ntp/ntpq/ntpq-opts.h
  releng/10.1/contrib/ntp/ntpq/ntpq.1ntpqman
  releng/10.1/contrib/ntp/ntpq/ntpq.1ntpqmdoc
  releng/10.1/contrib/ntp/ntpq/ntpq.c
  releng/10.1/contrib/ntp/ntpq/ntpq.html
  releng/10.1/contrib/ntp/ntpq/ntpq.man.in
  releng/10.1/contrib/ntp/ntpq/ntpq.mdoc.in
  releng/10.1/contrib/ntp/ntpsnmpd/invoke-ntpsnmpd.texi
  releng/10.1/contrib/ntp/ntpsnmpd/ntpsnmpd-opts.c
  releng/10.1/contrib/ntp/ntpsnmpd/ntpsnmpd-opts.h
  releng/10.1/contrib/ntp/ntpsnmpd/ntpsnmpd.1ntpsnmpdman
  releng/10.1/contrib/ntp/ntpsnmpd/ntpsnmpd.1ntpsnmpdmdoc
  releng/10.1/contrib/ntp/ntpsnmpd/ntpsnmpd.html
  releng/10.1/contrib/ntp/ntpsnmpd/ntpsnmpd.man.in
  releng/10.1/contrib/ntp/ntpsnmpd/ntpsnmpd.mdoc.in
  releng/10.1/contrib/ntp/packageinfo.sh
  releng/10.1/contrib/ntp/scripts/build/Makefile.am
  releng/10.1/contrib/ntp/scripts/build/Makefile.in
  releng/10.1/contrib/ntp/scripts/calc_tickadj/calc_tickadj.1calc_tickadjman
  releng/10.1/contrib/ntp/scripts/calc_tickadj/calc_tickadj.1calc_tickadjmdoc
  releng/10.1/contrib/ntp/scripts/calc_tickadj/calc_tickadj.html
  releng/10.1/contrib/ntp/scripts/calc_tickadj/calc_tickadj.man.in
  releng/10.1/contrib/ntp/scripts/calc_tickadj/calc_tickadj.mdoc.in
  releng/10.1/contrib/ntp/scripts/calc_tickadj/invoke-calc_tickadj.texi
  releng/10.1/contrib/ntp/scripts/invoke-plot_summary.texi
  releng/10.1/contrib/ntp/scripts/invoke-summary.texi
  releng/10.1/contrib/ntp/scripts/ntp-wait/invoke-ntp-wait.texi
  releng/10.1/contrib/ntp/scripts/ntp-wait/ntp-wait-opts
  releng/10.1/contrib/ntp/scripts/ntp-wait/ntp-wait.1ntp-waitman
  releng/10.1/contrib/ntp/scripts/ntp-wait/ntp-wait.1ntp-waitmdoc
  releng/10.1/contrib/ntp/scripts/ntp-wait/ntp-wait.html
  releng/10.1/contrib/ntp/scripts/ntp-wait/ntp-wait.in
  releng/10.1/contrib/ntp/scripts/ntp-wait/ntp-wait.man.in
  releng/10.1/contrib/ntp/scripts/ntp-wait/ntp-wait.mdoc.in
  releng/10.1/contrib/ntp/scripts/ntpsweep/invoke-ntpsweep.texi
  releng/10.1/contrib/ntp/scripts/ntpsweep/ntpsweep-opts
  releng/10.1/contrib/ntp/scripts/ntpsweep/ntpsweep.1ntpsweepman
  releng/10.1/contrib/ntp/scripts/ntpsweep/ntpsweep.1ntpsweepmdoc
  releng/10.1/contrib/ntp/scripts/ntpsweep/ntpsweep.html
  releng/10.1/contrib/ntp/scripts/ntpsweep/ntpsweep.man.in
  releng/10.1/contrib/ntp/scripts/ntpsweep/ntpsweep.mdoc.in
  releng/10.1/contrib/ntp/scripts/ntptrace/invoke-ntptrace.texi
  releng/10.1/contrib/ntp/scripts/ntptrace/ntptrace-opts
  releng/10.1/contrib/ntp/scripts/ntptrace/ntptrace.1ntptraceman
  releng/10.1/contrib/ntp/scripts/ntptrace/ntptrace.1ntptracemdoc
  releng/10.1/contrib/ntp/scripts/ntptrace/ntptrace.html
  releng/10.1/contrib/ntp/scripts/ntptrace/ntptrace.man.in
  releng/10.1/contrib/ntp/scripts/ntptrace/ntptrace.mdoc.in
  releng/10.1/contrib/ntp/scripts/plot_summary-opts
  releng/10.1/contrib/ntp/scripts/plot_summary-opts.def
  releng/10.1/contrib/ntp/scripts/plot_summary.1plot_summaryman
  releng/10.1/contrib/ntp/scripts/plot_summary.1plot_summarymdoc
  releng/10.1/contrib/ntp/scripts/plot_summary.html
  releng/10.1/contrib/ntp/scripts/plot_summary.man.in
  releng/10.1/contrib/ntp/scripts/plot_summary.mdoc.in
  releng/10.1/contrib/ntp/scripts/summary-opts
  releng/10.1/contrib/ntp/scripts/summary.1summaryman
  releng/10.1/contrib/ntp/scripts/summary.1summarymdoc
  releng/10.1/contrib/ntp/scripts/summary.html
  releng/10.1/contrib/ntp/scripts/summary.man.in
  releng/10.1/contrib/ntp/scripts/summary.mdoc.in
  releng/10.1/contrib/ntp/scripts/update-leap/invoke-update-leap.texi
  releng/10.1/contrib/ntp/scripts/update-leap/update-leap-opts
  releng/10.1/contrib/ntp/scripts/update-leap/update-leap.1update-leapman
  releng/10.1/contrib/ntp/scripts/update-leap/update-leap.1update-leapmdoc
  releng/10.1/contrib/ntp/scripts/update-leap/update-leap.html
  releng/10.1/contrib/ntp/scripts/update-leap/update-leap.man.in
  releng/10.1/contrib/ntp/scripts/update-leap/update-leap.mdoc.in
  releng/10.1/contrib/ntp/sntp/Makefile.in
  releng/10.1/contrib/ntp/sntp/aclocal.m4
  releng/10.1/contrib/ntp/sntp/configure
  releng/10.1/contrib/ntp/sntp/configure.ac
  releng/10.1/contrib/ntp/sntp/include/Makefile.in
  releng/10.1/contrib/ntp/sntp/include/version.def
  releng/10.1/contrib/ntp/sntp/include/version.texi
  releng/10.1/contrib/ntp/sntp/invoke-sntp.texi
  releng/10.1/contrib/ntp/sntp/libopts/Makefile.in
  releng/10.1/contrib/ntp/sntp/m4/ntp_problemtests.m4
  releng/10.1/contrib/ntp/sntp/m4/version.m4
  releng/10.1/contrib/ntp/sntp/scripts/Makefile.in
  releng/10.1/contrib/ntp/sntp/sntp-opts.c
  releng/10.1/contrib/ntp/sntp/sntp-opts.h
  releng/10.1/contrib/ntp/sntp/sntp.1sntpman
  releng/10.1/contrib/ntp/sntp/sntp.1sntpmdoc
  releng/10.1/contrib/ntp/sntp/sntp.html
  releng/10.1/contrib/ntp/sntp/sntp.man.in
  releng/10.1/contrib/ntp/sntp/sntp.mdoc.in
  releng/10.1/contrib/ntp/sntp/tests/Makefile.am
  releng/10.1/contrib/ntp/sntp/tests/Makefile.in
  releng/10.1/contrib/ntp/sntp/unity/Makefile.in
  releng/10.1/contrib/ntp/sntp/version.c
  releng/10.1/contrib/ntp/util/invoke-ntp-keygen.texi
  releng/10.1/contrib/ntp/util/ntp-keygen-opts.c
  releng/10.1/contrib/ntp/util/ntp-keygen-opts.h
  releng/10.1/contrib/ntp/util/ntp-keygen.1ntp-keygenman
  releng/10.1/contrib/ntp/util/ntp-keygen.1ntp-keygenmdoc
  releng/10.1/contrib/ntp/util/ntp-keygen.html
  releng/10.1/contrib/ntp/util/ntp-keygen.man.in
  releng/10.1/contrib/ntp/util/ntp-keygen.mdoc.in
  releng/10.1/sys/conf/newvers.sh
  releng/10.1/usr.sbin/ntp/config.h
  releng/10.1/usr.sbin/ntp/doc/ntp-keygen.8
  releng/10.1/usr.sbin/ntp/doc/ntp.conf.5
  releng/10.1/usr.sbin/ntp/doc/ntp.keys.5
  releng/10.1/usr.sbin/ntp/doc/ntpd.8
  releng/10.1/usr.sbin/ntp/doc/ntpdc.8
  releng/10.1/usr.sbin/ntp/doc/ntpq.8
  releng/10.1/usr.sbin/ntp/doc/sntp.8
  releng/10.1/usr.sbin/ntp/scripts/mkver
  releng/10.2/UPDATING
  releng/10.2/contrib/ntp/ChangeLog
  releng/10.2/contrib/ntp/CommitLog
  releng/10.2/contrib/ntp/NEWS
  releng/10.2/contrib/ntp/configure
  releng/10.2/contrib/ntp/configure.ac
  releng/10.2/contrib/ntp/html/miscopt.html
  releng/10.2/contrib/ntp/include/ntp.h
  releng/10.2/contrib/ntp/ntpd/complete.conf.in
  releng/10.2/contrib/ntp/ntpd/invoke-ntp.conf.texi
  releng/10.2/contrib/ntp/ntpd/invoke-ntp.keys.texi
  releng/10.2/contrib/ntp/ntpd/invoke-ntpd.texi
  releng/10.2/contrib/ntp/ntpd/keyword-gen-utd
  releng/10.2/contrib/ntp/ntpd/keyword-gen.c
  releng/10.2/contrib/ntp/ntpd/ntp.conf.5man
  releng/10.2/contrib/ntp/ntpd/ntp.conf.5mdoc
  releng/10.2/contrib/ntp/ntpd/ntp.conf.def
  releng/10.2/contrib/ntp/ntpd/ntp.conf.html
  releng/10.2/contrib/ntp/ntpd/ntp.conf.man.in
  releng/10.2/contrib/ntp/ntpd/ntp.conf.mdoc.in
  releng/10.2/contrib/ntp/ntpd/ntp.keys.5man
  releng/10.2/contrib/ntp/ntpd/ntp.keys.5mdoc
  releng/10.2/contrib/ntp/ntpd/ntp.keys.html
  releng/10.2/contrib/ntp/ntpd/ntp.keys.man.in
  releng/10.2/contrib/ntp/ntpd/ntp.keys.mdoc.in
  releng/10.2/contrib/ntp/ntpd/ntp_config.c
  releng/10.2/contrib/ntp/ntpd/ntp_io.c
  releng/10.2/contrib/ntp/ntpd/ntp_keyword.h
  releng/10.2/contrib/ntp/ntpd/ntp_parser.c
  releng/10.2/contrib/ntp/ntpd/ntp_parser.h
  releng/10.2/contrib/ntp/ntpd/ntp_proto.c
  releng/10.2/contrib/ntp/ntpd/ntpd-opts.c
  releng/10.2/contrib/ntp/ntpd/ntpd-opts.h
  releng/10.2/contrib/ntp/ntpd/ntpd.1ntpdman
  releng/10.2/contrib/ntp/ntpd/ntpd.1ntpdmdoc
  releng/10.2/contrib/ntp/ntpd/ntpd.html
  releng/10.2/contrib/ntp/ntpd/ntpd.man.in
  releng/10.2/contrib/ntp/ntpd/ntpd.mdoc.in
  releng/10.2/contrib/ntp/ntpd/refclock_parse.c
  releng/10.2/contrib/ntp/ntpdc/invoke-ntpdc.texi
  releng/10.2/contrib/ntp/ntpdc/ntpdc-opts.c
  releng/10.2/contrib/ntp/ntpdc/ntpdc-opts.h
  releng/10.2/contrib/ntp/ntpdc/ntpdc.1ntpdcman
  releng/10.2/contrib/ntp/ntpdc/ntpdc.1ntpdcmdoc
  releng/10.2/contrib/ntp/ntpdc/ntpdc.c
  releng/10.2/contrib/ntp/ntpdc/ntpdc.html
  releng/10.2/contrib/ntp/ntpdc/ntpdc.man.in
  releng/10.2/contrib/ntp/ntpdc/ntpdc.mdoc.in
  releng/10.2/contrib/ntp/ntpq/invoke-ntpq.texi
  releng/10.2/contrib/ntp/ntpq/ntpq-opts.c
  releng/10.2/contrib/ntp/ntpq/ntpq-opts.h
  releng/10.2/contrib/ntp/ntpq/ntpq.1ntpqman
  releng/10.2/contrib/ntp/ntpq/ntpq.1ntpqmdoc
  releng/10.2/contrib/ntp/ntpq/ntpq.c
  releng/10.2/contrib/ntp/ntpq/ntpq.html
  releng/10.2/contrib/ntp/ntpq/ntpq.man.in
  releng/10.2/contrib/ntp/ntpq/ntpq.mdoc.in
  releng/10.2/contrib/ntp/ntpsnmpd/invoke-ntpsnmpd.texi
  releng/10.2/contrib/ntp/ntpsnmpd/ntpsnmpd-opts.c
  releng/10.2/contrib/ntp/ntpsnmpd/ntpsnmpd-opts.h
  releng/10.2/contrib/ntp/ntpsnmpd/ntpsnmpd.1ntpsnmpdman
  releng/10.2/contrib/ntp/ntpsnmpd/ntpsnmpd.1ntpsnmpdmdoc
  releng/10.2/contrib/ntp/ntpsnmpd/ntpsnmpd.html
  releng/10.2/contrib/ntp/ntpsnmpd/ntpsnmpd.man.in
  releng/10.2/contrib/ntp/ntpsnmpd/ntpsnmpd.mdoc.in
  releng/10.2/contrib/ntp/packageinfo.sh
  releng/10.2/contrib/ntp/scripts/build/Makefile.am
  releng/10.2/contrib/ntp/scripts/build/Makefile.in
  releng/10.2/contrib/ntp/scripts/calc_tickadj/calc_tickadj.1calc_tickadjman
  releng/10.2/contrib/ntp/scripts/calc_tickadj/calc_tickadj.1calc_tickadjmdoc
  releng/10.2/contrib/ntp/scripts/calc_tickadj/calc_tickadj.html
  releng/10.2/contrib/ntp/scripts/calc_tickadj/calc_tickadj.man.in
  releng/10.2/contrib/ntp/scripts/calc_tickadj/calc_tickadj.mdoc.in
  releng/10.2/contrib/ntp/scripts/calc_tickadj/invoke-calc_tickadj.texi
  releng/10.2/contrib/ntp/scripts/invoke-plot_summary.texi
  releng/10.2/contrib/ntp/scripts/invoke-summary.texi
  releng/10.2/contrib/ntp/scripts/ntp-wait/invoke-ntp-wait.texi
  releng/10.2/contrib/ntp/scripts/ntp-wait/ntp-wait-opts
  releng/10.2/contrib/ntp/scripts/ntp-wait/ntp-wait.1ntp-waitman
  releng/10.2/contrib/ntp/scripts/ntp-wait/ntp-wait.1ntp-waitmdoc
  releng/10.2/contrib/ntp/scripts/ntp-wait/ntp-wait.html
  releng/10.2/contrib/ntp/scripts/ntp-wait/ntp-wait.in
  releng/10.2/contrib/ntp/scripts/ntp-wait/ntp-wait.man.in
  releng/10.2/contrib/ntp/scripts/ntp-wait/ntp-wait.mdoc.in
  releng/10.2/contrib/ntp/scripts/ntpsweep/invoke-ntpsweep.texi
  releng/10.2/contrib/ntp/scripts/ntpsweep/ntpsweep-opts
  releng/10.2/contrib/ntp/scripts/ntpsweep/ntpsweep.1ntpsweepman
  releng/10.2/contrib/ntp/scripts/ntpsweep/ntpsweep.1ntpsweepmdoc
  releng/10.2/contrib/ntp/scripts/ntpsweep/ntpsweep.html
  releng/10.2/contrib/ntp/scripts/ntpsweep/ntpsweep.man.in
  releng/10.2/contrib/ntp/scripts/ntpsweep/ntpsweep.mdoc.in
  releng/10.2/contrib/ntp/scripts/ntptrace/invoke-ntptrace.texi
  releng/10.2/contrib/ntp/scripts/ntptrace/ntptrace-opts
  releng/10.2/contrib/ntp/scripts/ntptrace/ntptrace.1ntptraceman
  releng/10.2/contrib/ntp/scripts/ntptrace/ntptrace.1ntptracemdoc
  releng/10.2/contrib/ntp/scripts/ntptrace/ntptrace.html
  releng/10.2/contrib/ntp/scripts/ntptrace/ntptrace.man.in
  releng/10.2/contrib/ntp/scripts/ntptrace/ntptrace.mdoc.in
  releng/10.2/contrib/ntp/scripts/plot_summary-opts
  releng/10.2/contrib/ntp/scripts/plot_summary-opts.def
  releng/10.2/contrib/ntp/scripts/plot_summary.1plot_summaryman
  releng/10.2/contrib/ntp/scripts/plot_summary.1plot_summarymdoc
  releng/10.2/contrib/ntp/scripts/plot_summary.html
  releng/10.2/contrib/ntp/scripts/plot_summary.man.in
  releng/10.2/contrib/ntp/scripts/plot_summary.mdoc.in
  releng/10.2/contrib/ntp/scripts/summary-opts
  releng/10.2/contrib/ntp/scripts/summary.1summaryman
  releng/10.2/contrib/ntp/scripts/summary.1summarymdoc
  releng/10.2/contrib/ntp/scripts/summary.html
  releng/10.2/contrib/ntp/scripts/summary.man.in
  releng/10.2/contrib/ntp/scripts/summary.mdoc.in
  releng/10.2/contrib/ntp/scripts/update-leap/invoke-update-leap.texi
  releng/10.2/contrib/ntp/scripts/update-leap/update-leap-opts
  releng/10.2/contrib/ntp/scripts/update-leap/update-leap.1update-leapman
  releng/10.2/contrib/ntp/scripts/update-leap/update-leap.1update-leapmdoc
  releng/10.2/contrib/ntp/scripts/update-leap/update-leap.html
  releng/10.2/contrib/ntp/scripts/update-leap/update-leap.man.in
  releng/10.2/contrib/ntp/scripts/update-leap/update-leap.mdoc.in
  releng/10.2/contrib/ntp/sntp/Makefile.in
  releng/10.2/contrib/ntp/sntp/aclocal.m4
  releng/10.2/contrib/ntp/sntp/configure
  releng/10.2/contrib/ntp/sntp/configure.ac
  releng/10.2/contrib/ntp/sntp/include/Makefile.in
  releng/10.2/contrib/ntp/sntp/include/version.def
  releng/10.2/contrib/ntp/sntp/include/version.texi
  releng/10.2/contrib/ntp/sntp/invoke-sntp.texi
  releng/10.2/contrib/ntp/sntp/libopts/Makefile.in
  releng/10.2/contrib/ntp/sntp/m4/ntp_problemtests.m4
  releng/10.2/contrib/ntp/sntp/m4/version.m4
  releng/10.2/contrib/ntp/sntp/scripts/Makefile.in
  releng/10.2/contrib/ntp/sntp/sntp-opts.c
  releng/10.2/contrib/ntp/sntp/sntp-opts.h
  releng/10.2/contrib/ntp/sntp/sntp.1sntpman
  releng/10.2/contrib/ntp/sntp/sntp.1sntpmdoc
  releng/10.2/contrib/ntp/sntp/sntp.html
  releng/10.2/contrib/ntp/sntp/sntp.man.in
  releng/10.2/contrib/ntp/sntp/sntp.mdoc.in
  releng/10.2/contrib/ntp/sntp/tests/Makefile.am
  releng/10.2/contrib/ntp/sntp/tests/Makefile.in
  releng/10.2/contrib/ntp/sntp/unity/Makefile.in
  releng/10.2/contrib/ntp/sntp/version.c
  releng/10.2/contrib/ntp/util/invoke-ntp-keygen.texi
  releng/10.2/contrib/ntp/util/ntp-keygen-opts.c
  releng/10.2/contrib/ntp/util/ntp-keygen-opts.h
  releng/10.2/contrib/ntp/util/ntp-keygen.1ntp-keygenman
  releng/10.2/contrib/ntp/util/ntp-keygen.1ntp-keygenmdoc
  releng/10.2/contrib/ntp/util/ntp-keygen.html
  releng/10.2/contrib/ntp/util/ntp-keygen.man.in
  releng/10.2/contrib/ntp/util/ntp-keygen.mdoc.in
  releng/10.2/sys/conf/newvers.sh
  releng/10.2/usr.sbin/ntp/config.h
  releng/10.2/usr.sbin/ntp/doc/ntp-keygen.8
  releng/10.2/usr.sbin/ntp/doc/ntp.conf.5
  releng/10.2/usr.sbin/ntp/doc/ntp.keys.5
  releng/10.2/usr.sbin/ntp/doc/ntpd.8
  releng/10.2/usr.sbin/ntp/doc/ntpdc.8
  releng/10.2/usr.sbin/ntp/doc/ntpq.8
  releng/10.2/usr.sbin/ntp/doc/sntp.8
  releng/10.2/usr.sbin/ntp/scripts/mkver
  releng/10.3/UPDATING
  releng/10.3/contrib/ntp/ChangeLog
  releng/10.3/contrib/ntp/CommitLog
  releng/10.3/contrib/ntp/NEWS
  releng/10.3/contrib/ntp/configure
  releng/10.3/contrib/ntp/configure.ac
  releng/10.3/contrib/ntp/html/miscopt.html
  releng/10.3/contrib/ntp/include/ntp.h
  releng/10.3/contrib/ntp/ntpd/complete.conf.in
  releng/10.3/contrib/ntp/ntpd/invoke-ntp.conf.texi
  releng/10.3/contrib/ntp/ntpd/invoke-ntp.keys.texi
  releng/10.3/contrib/ntp/ntpd/invoke-ntpd.texi
  releng/10.3/contrib/ntp/ntpd/keyword-gen-utd
  releng/10.3/contrib/ntp/ntpd/keyword-gen.c
  releng/10.3/contrib/ntp/ntpd/ntp.conf.5man
  releng/10.3/contrib/ntp/ntpd/ntp.conf.5mdoc
  releng/10.3/contrib/ntp/ntpd/ntp.conf.def
  releng/10.3/contrib/ntp/ntpd/ntp.conf.html
  releng/10.3/contrib/ntp/ntpd/ntp.conf.man.in
  releng/10.3/contrib/ntp/ntpd/ntp.conf.mdoc.in
  releng/10.3/contrib/ntp/ntpd/ntp.keys.5man
  releng/10.3/contrib/ntp/ntpd/ntp.keys.5mdoc
  releng/10.3/contrib/ntp/ntpd/ntp.keys.html
  releng/10.3/contrib/ntp/ntpd/ntp.keys.man.in
  releng/10.3/contrib/ntp/ntpd/ntp.keys.mdoc.in
  releng/10.3/contrib/ntp/ntpd/ntp_config.c
  releng/10.3/contrib/ntp/ntpd/ntp_io.c
  releng/10.3/contrib/ntp/ntpd/ntp_keyword.h
  releng/10.3/contrib/ntp/ntpd/ntp_parser.c
  releng/10.3/contrib/ntp/ntpd/ntp_parser.h
  releng/10.3/contrib/ntp/ntpd/ntp_proto.c
  releng/10.3/contrib/ntp/ntpd/ntpd-opts.c
  releng/10.3/contrib/ntp/ntpd/ntpd-opts.h
  releng/10.3/contrib/ntp/ntpd/ntpd.1ntpdman
  releng/10.3/contrib/ntp/ntpd/ntpd.1ntpdmdoc
  releng/10.3/contrib/ntp/ntpd/ntpd.html
  releng/10.3/contrib/ntp/ntpd/ntpd.man.in
  releng/10.3/contrib/ntp/ntpd/ntpd.mdoc.in
  releng/10.3/contrib/ntp/ntpd/refclock_parse.c
  releng/10.3/contrib/ntp/ntpdc/invoke-ntpdc.texi
  releng/10.3/contrib/ntp/ntpdc/ntpdc-opts.c
  releng/10.3/contrib/ntp/ntpdc/ntpdc-opts.h
  releng/10.3/contrib/ntp/ntpdc/ntpdc.1ntpdcman
  releng/10.3/contrib/ntp/ntpdc/ntpdc.1ntpdcmdoc
  releng/10.3/contrib/ntp/ntpdc/ntpdc.c
  releng/10.3/contrib/ntp/ntpdc/ntpdc.html
  releng/10.3/contrib/ntp/ntpdc/ntpdc.man.in
  releng/10.3/contrib/ntp/ntpdc/ntpdc.mdoc.in
  releng/10.3/contrib/ntp/ntpq/invoke-ntpq.texi
  releng/10.3/contrib/ntp/ntpq/ntpq-opts.c
  releng/10.3/contrib/ntp/ntpq/ntpq-opts.h
  releng/10.3/contrib/ntp/ntpq/ntpq.1ntpqman
  releng/10.3/contrib/ntp/ntpq/ntpq.1ntpqmdoc
  releng/10.3/contrib/ntp/ntpq/ntpq.c
  releng/10.3/contrib/ntp/ntpq/ntpq.html
  releng/10.3/contrib/ntp/ntpq/ntpq.man.in
  releng/10.3/contrib/ntp/ntpq/ntpq.mdoc.in
  releng/10.3/contrib/ntp/ntpsnmpd/invoke-ntpsnmpd.texi
  releng/10.3/contrib/ntp/ntpsnmpd/ntpsnmpd-opts.c
  releng/10.3/contrib/ntp/ntpsnmpd/ntpsnmpd-opts.h
  releng/10.3/contrib/ntp/ntpsnmpd/ntpsnmpd.1ntpsnmpdman
  releng/10.3/contrib/ntp/ntpsnmpd/ntpsnmpd.1ntpsnmpdmdoc
  releng/10.3/contrib/ntp/ntpsnmpd/ntpsnmpd.html
  releng/10.3/contrib/ntp/ntpsnmpd/ntpsnmpd.man.in
  releng/10.3/contrib/ntp/ntpsnmpd/ntpsnmpd.mdoc.in
  releng/10.3/contrib/ntp/packageinfo.sh
  releng/10.3/contrib/ntp/scripts/build/Makefile.am
  releng/10.3/contrib/ntp/scripts/build/Makefile.in
  releng/10.3/contrib/ntp/scripts/calc_tickadj/calc_tickadj.1calc_tickadjman
  releng/10.3/contrib/ntp/scripts/calc_tickadj/calc_tickadj.1calc_tickadjmdoc
  releng/10.3/contrib/ntp/scripts/calc_tickadj/calc_tickadj.html
  releng/10.3/contrib/ntp/scripts/calc_tickadj/calc_tickadj.man.in
  releng/10.3/contrib/ntp/scripts/calc_tickadj/calc_tickadj.mdoc.in
  releng/10.3/contrib/ntp/scripts/calc_tickadj/invoke-calc_tickadj.texi
  releng/10.3/contrib/ntp/scripts/invoke-plot_summary.texi
  releng/10.3/contrib/ntp/scripts/invoke-summary.texi
  releng/10.3/contrib/ntp/scripts/ntp-wait/invoke-ntp-wait.texi
  releng/10.3/contrib/ntp/scripts/ntp-wait/ntp-wait-opts
  releng/10.3/contrib/ntp/scripts/ntp-wait/ntp-wait.1ntp-waitman
  releng/10.3/contrib/ntp/scripts/ntp-wait/ntp-wait.1ntp-waitmdoc
  releng/10.3/contrib/ntp/scripts/ntp-wait/ntp-wait.html
  releng/10.3/contrib/ntp/scripts/ntp-wait/ntp-wait.in
  releng/10.3/contrib/ntp/scripts/ntp-wait/ntp-wait.man.in
  releng/10.3/contrib/ntp/scripts/ntp-wait/ntp-wait.mdoc.in
  releng/10.3/contrib/ntp/scripts/ntpsweep/invoke-ntpsweep.texi
  releng/10.3/contrib/ntp/scripts/ntpsweep/ntpsweep-opts
  releng/10.3/contrib/ntp/scripts/ntpsweep/ntpsweep.1ntpsweepman
  releng/10.3/contrib/ntp/scripts/ntpsweep/ntpsweep.1ntpsweepmdoc
  releng/10.3/contrib/ntp/scripts/ntpsweep/ntpsweep.html
  releng/10.3/contrib/ntp/scripts/ntpsweep/ntpsweep.man.in
  releng/10.3/contrib/ntp/scripts/ntpsweep/ntpsweep.mdoc.in
  releng/10.3/contrib/ntp/scripts/ntptrace/invoke-ntptrace.texi
  releng/10.3/contrib/ntp/scripts/ntptrace/ntptrace-opts
  releng/10.3/contrib/ntp/scripts/ntptrace/ntptrace.1ntptraceman
  releng/10.3/contrib/ntp/scripts/ntptrace/ntptrace.1ntptracemdoc
  releng/10.3/contrib/ntp/scripts/ntptrace/ntptrace.html
  releng/10.3/contrib/ntp/scripts/ntptrace/ntptrace.man.in
  releng/10.3/contrib/ntp/scripts/ntptrace/ntptrace.mdoc.in
  releng/10.3/contrib/ntp/scripts/plot_summary-opts
  releng/10.3/contrib/ntp/scripts/plot_summary-opts.def
  releng/10.3/contrib/ntp/scripts/plot_summary.1plot_summaryman
  releng/10.3/contrib/ntp/scripts/plot_summary.1plot_summarymdoc
  releng/10.3/contrib/ntp/scripts/plot_summary.html
  releng/10.3/contrib/ntp/scripts/plot_summary.man.in
  releng/10.3/contrib/ntp/scripts/plot_summary.mdoc.in
  releng/10.3/contrib/ntp/scripts/summary-opts
  releng/10.3/contrib/ntp/scripts/summary.1summaryman
  releng/10.3/contrib/ntp/scripts/summary.1summarymdoc
  releng/10.3/contrib/ntp/scripts/summary.html
  releng/10.3/contrib/ntp/scripts/summary.man.in
  releng/10.3/contrib/ntp/scripts/summary.mdoc.in
  releng/10.3/contrib/ntp/scripts/update-leap/invoke-update-leap.texi
  releng/10.3/contrib/ntp/scripts/update-leap/update-leap-opts
  releng/10.3/contrib/ntp/scripts/update-leap/update-leap.1update-leapman
  releng/10.3/contrib/ntp/scripts/update-leap/update-leap.1update-leapmdoc
  releng/10.3/contrib/ntp/scripts/update-leap/update-leap.html
  releng/10.3/contrib/ntp/scripts/update-leap/update-leap.man.in
  releng/10.3/contrib/ntp/scripts/update-leap/update-leap.mdoc.in
  releng/10.3/contrib/ntp/sntp/Makefile.in
  releng/10.3/contrib/ntp/sntp/aclocal.m4
  releng/10.3/contrib/ntp/sntp/configure
  releng/10.3/contrib/ntp/sntp/configure.ac
  releng/10.3/contrib/ntp/sntp/include/Makefile.in
  releng/10.3/contrib/ntp/sntp/include/version.def
  releng/10.3/contrib/ntp/sntp/include/version.texi
  releng/10.3/contrib/ntp/sntp/invoke-sntp.texi
  releng/10.3/contrib/ntp/sntp/libopts/Makefile.in
  releng/10.3/contrib/ntp/sntp/m4/ntp_problemtests.m4
  releng/10.3/contrib/ntp/sntp/m4/version.m4
  releng/10.3/contrib/ntp/sntp/scripts/Makefile.in
  releng/10.3/contrib/ntp/sntp/sntp-opts.c
  releng/10.3/contrib/ntp/sntp/sntp-opts.h
  releng/10.3/contrib/ntp/sntp/sntp.1sntpman
  releng/10.3/contrib/ntp/sntp/sntp.1sntpmdoc
  releng/10.3/contrib/ntp/sntp/sntp.html
  releng/10.3/contrib/ntp/sntp/sntp.man.in
  releng/10.3/contrib/ntp/sntp/sntp.mdoc.in
  releng/10.3/contrib/ntp/sntp/tests/Makefile.am
  releng/10.3/contrib/ntp/sntp/tests/Makefile.in
  releng/10.3/contrib/ntp/sntp/unity/Makefile.in
  releng/10.3/contrib/ntp/sntp/version.c
  releng/10.3/contrib/ntp/util/invoke-ntp-keygen.texi
  releng/10.3/contrib/ntp/util/ntp-keygen-opts.c
  releng/10.3/contrib/ntp/util/ntp-keygen-opts.h
  releng/10.3/contrib/ntp/util/ntp-keygen.1ntp-keygenman
  releng/10.3/contrib/ntp/util/ntp-keygen.1ntp-keygenmdoc
  releng/10.3/contrib/ntp/util/ntp-keygen.html
  releng/10.3/contrib/ntp/util/ntp-keygen.man.in
  releng/10.3/contrib/ntp/util/ntp-keygen.mdoc.in
  releng/10.3/sys/conf/newvers.sh
  releng/10.3/usr.sbin/ntp/config.h
  releng/10.3/usr.sbin/ntp/doc/ntp-keygen.8
  releng/10.3/usr.sbin/ntp/doc/ntp.conf.5
  releng/10.3/usr.sbin/ntp/doc/ntp.keys.5
  releng/10.3/usr.sbin/ntp/doc/ntpd.8
  releng/10.3/usr.sbin/ntp/doc/ntpdc.8
  releng/10.3/usr.sbin/ntp/doc/ntpq.8
  releng/10.3/usr.sbin/ntp/doc/sntp.8
  releng/10.3/usr.sbin/ntp/scripts/mkver
  releng/9.3/UPDATING
  releng/9.3/contrib/ntp/ChangeLog
  releng/9.3/contrib/ntp/CommitLog
  releng/9.3/contrib/ntp/NEWS
  releng/9.3/contrib/ntp/configure
  releng/9.3/contrib/ntp/configure.ac
  releng/9.3/contrib/ntp/html/miscopt.html
  releng/9.3/contrib/ntp/include/ntp.h
  releng/9.3/contrib/ntp/ntpd/complete.conf.in
  releng/9.3/contrib/ntp/ntpd/invoke-ntp.conf.texi
  releng/9.3/contrib/ntp/ntpd/invoke-ntp.keys.texi
  releng/9.3/contrib/ntp/ntpd/invoke-ntpd.texi
  releng/9.3/contrib/ntp/ntpd/keyword-gen-utd
  releng/9.3/contrib/ntp/ntpd/keyword-gen.c
  releng/9.3/contrib/ntp/ntpd/ntp.conf.5man
  releng/9.3/contrib/ntp/ntpd/ntp.conf.5mdoc
  releng/9.3/contrib/ntp/ntpd/ntp.conf.def
  releng/9.3/contrib/ntp/ntpd/ntp.conf.html
  releng/9.3/contrib/ntp/ntpd/ntp.conf.man.in
  releng/9.3/contrib/ntp/ntpd/ntp.conf.mdoc.in
  releng/9.3/contrib/ntp/ntpd/ntp.keys.5man
  releng/9.3/contrib/ntp/ntpd/ntp.keys.5mdoc
  releng/9.3/contrib/ntp/ntpd/ntp.keys.html
  releng/9.3/contrib/ntp/ntpd/ntp.keys.man.in
  releng/9.3/contrib/ntp/ntpd/ntp.keys.mdoc.in
  releng/9.3/contrib/ntp/ntpd/ntp_config.c
  releng/9.3/contrib/ntp/ntpd/ntp_io.c
  releng/9.3/contrib/ntp/ntpd/ntp_keyword.h
  releng/9.3/contrib/ntp/ntpd/ntp_parser.c
  releng/9.3/contrib/ntp/ntpd/ntp_parser.h
  releng/9.3/contrib/ntp/ntpd/ntp_proto.c
  releng/9.3/contrib/ntp/ntpd/ntpd-opts.c
  releng/9.3/contrib/ntp/ntpd/ntpd-opts.h
  releng/9.3/contrib/ntp/ntpd/ntpd.1ntpdman
  releng/9.3/contrib/ntp/ntpd/ntpd.1ntpdmdoc
  releng/9.3/contrib/ntp/ntpd/ntpd.html
  releng/9.3/contrib/ntp/ntpd/ntpd.man.in
  releng/9.3/contrib/ntp/ntpd/ntpd.mdoc.in
  releng/9.3/contrib/ntp/ntpd/refclock_parse.c
  releng/9.3/contrib/ntp/ntpdc/invoke-ntpdc.texi
  releng/9.3/contrib/ntp/ntpdc/ntpdc-opts.c
  releng/9.3/contrib/ntp/ntpdc/ntpdc-opts.h
  releng/9.3/contrib/ntp/ntpdc/ntpdc.1ntpdcman
  releng/9.3/contrib/ntp/ntpdc/ntpdc.1ntpdcmdoc
  releng/9.3/contrib/ntp/ntpdc/ntpdc.c
  releng/9.3/contrib/ntp/ntpdc/ntpdc.html
  releng/9.3/contrib/ntp/ntpdc/ntpdc.man.in
  releng/9.3/contrib/ntp/ntpdc/ntpdc.mdoc.in
  releng/9.3/contrib/ntp/ntpq/invoke-ntpq.texi
  releng/9.3/contrib/ntp/ntpq/ntpq-opts.c
  releng/9.3/contrib/ntp/ntpq/ntpq-opts.h
  releng/9.3/contrib/ntp/ntpq/ntpq.1ntpqman
  releng/9.3/contrib/ntp/ntpq/ntpq.1ntpqmdoc
  releng/9.3/contrib/ntp/ntpq/ntpq.c
  releng/9.3/contrib/ntp/ntpq/ntpq.html
  releng/9.3/contrib/ntp/ntpq/ntpq.man.in
  releng/9.3/contrib/ntp/ntpq/ntpq.mdoc.in
  releng/9.3/contrib/ntp/ntpsnmpd/invoke-ntpsnmpd.texi
  releng/9.3/contrib/ntp/ntpsnmpd/ntpsnmpd-opts.c
  releng/9.3/contrib/ntp/ntpsnmpd/ntpsnmpd-opts.h
  releng/9.3/contrib/ntp/ntpsnmpd/ntpsnmpd.1ntpsnmpdman
  releng/9.3/contrib/ntp/ntpsnmpd/ntpsnmpd.1ntpsnmpdmdoc
  releng/9.3/contrib/ntp/ntpsnmpd/ntpsnmpd.html
  releng/9.3/contrib/ntp/ntpsnmpd/ntpsnmpd.man.in
  releng/9.3/contrib/ntp/ntpsnmpd/ntpsnmpd.mdoc.in
  releng/9.3/contrib/ntp/packageinfo.sh
  releng/9.3/contrib/ntp/scripts/build/Makefile.am
  releng/9.3/contrib/ntp/scripts/build/Makefile.in
  releng/9.3/contrib/ntp/scripts/calc_tickadj/calc_tickadj.1calc_tickadjman
  releng/9.3/contrib/ntp/scripts/calc_tickadj/calc_tickadj.1calc_tickadjmdoc
  releng/9.3/contrib/ntp/scripts/calc_tickadj/calc_tickadj.html
  releng/9.3/contrib/ntp/scripts/calc_tickadj/calc_tickadj.man.in
  releng/9.3/contrib/ntp/scripts/calc_tickadj/calc_tickadj.mdoc.in
  releng/9.3/contrib/ntp/scripts/calc_tickadj/invoke-calc_tickadj.texi
  releng/9.3/contrib/ntp/scripts/invoke-plot_summary.texi
  releng/9.3/contrib/ntp/scripts/invoke-summary.texi
  releng/9.3/contrib/ntp/scripts/ntp-wait/invoke-ntp-wait.texi
  releng/9.3/contrib/ntp/scripts/ntp-wait/ntp-wait-opts
  releng/9.3/contrib/ntp/scripts/ntp-wait/ntp-wait.1ntp-waitman
  releng/9.3/contrib/ntp/scripts/ntp-wait/ntp-wait.1ntp-waitmdoc
  releng/9.3/contrib/ntp/scripts/ntp-wait/ntp-wait.html
  releng/9.3/contrib/ntp/scripts/ntp-wait/ntp-wait.in
  releng/9.3/contrib/ntp/scripts/ntp-wait/ntp-wait.man.in
  releng/9.3/contrib/ntp/scripts/ntp-wait/ntp-wait.mdoc.in
  releng/9.3/contrib/ntp/scripts/ntpsweep/invoke-ntpsweep.texi
  releng/9.3/contrib/ntp/scripts/ntpsweep/ntpsweep-opts
  releng/9.3/contrib/ntp/scripts/ntpsweep/ntpsweep.1ntpsweepman
  releng/9.3/contrib/ntp/scripts/ntpsweep/ntpsweep.1ntpsweepmdoc
  releng/9.3/contrib/ntp/scripts/ntpsweep/ntpsweep.html
  releng/9.3/contrib/ntp/scripts/ntpsweep/ntpsweep.man.in
  releng/9.3/contrib/ntp/scripts/ntpsweep/ntpsweep.mdoc.in
  releng/9.3/contrib/ntp/scripts/ntptrace/invoke-ntptrace.texi
  releng/9.3/contrib/ntp/scripts/ntptrace/ntptrace-opts
  releng/9.3/contrib/ntp/scripts/ntptrace/ntptrace.1ntptraceman
  releng/9.3/contrib/ntp/scripts/ntptrace/ntptrace.1ntptracemdoc
  releng/9.3/contrib/ntp/scripts/ntptrace/ntptrace.html
  releng/9.3/contrib/ntp/scripts/ntptrace/ntptrace.man.in
  releng/9.3/contrib/ntp/scripts/ntptrace/ntptrace.mdoc.in
  releng/9.3/contrib/ntp/scripts/plot_summary-opts
  releng/9.3/contrib/ntp/scripts/plot_summary-opts.def
  releng/9.3/contrib/ntp/scripts/plot_summary.1plot_summaryman
  releng/9.3/contrib/ntp/scripts/plot_summary.1plot_summarymdoc
  releng/9.3/contrib/ntp/scripts/plot_summary.html
  releng/9.3/contrib/ntp/scripts/plot_summary.man.in
  releng/9.3/contrib/ntp/scripts/plot_summary.mdoc.in
  releng/9.3/contrib/ntp/scripts/summary-opts
  releng/9.3/contrib/ntp/scripts/summary.1summaryman
  releng/9.3/contrib/ntp/scripts/summary.1summarymdoc
  releng/9.3/contrib/ntp/scripts/summary.html
  releng/9.3/contrib/ntp/scripts/summary.man.in
  releng/9.3/contrib/ntp/scripts/summary.mdoc.in
  releng/9.3/contrib/ntp/scripts/update-leap/invoke-update-leap.texi
  releng/9.3/contrib/ntp/scripts/update-leap/update-leap-opts
  releng/9.3/contrib/ntp/scripts/update-leap/update-leap.1update-leapman
  releng/9.3/contrib/ntp/scripts/update-leap/update-leap.1update-leapmdoc
  releng/9.3/contrib/ntp/scripts/update-leap/update-leap.html
  releng/9.3/contrib/ntp/scripts/update-leap/update-leap.man.in
  releng/9.3/contrib/ntp/scripts/update-leap/update-leap.mdoc.in
  releng/9.3/contrib/ntp/sntp/Makefile.in
  releng/9.3/contrib/ntp/sntp/aclocal.m4
  releng/9.3/contrib/ntp/sntp/configure
  releng/9.3/contrib/ntp/sntp/configure.ac
  releng/9.3/contrib/ntp/sntp/include/Makefile.in
  releng/9.3/contrib/ntp/sntp/include/version.def
  releng/9.3/contrib/ntp/sntp/include/version.texi
  releng/9.3/contrib/ntp/sntp/invoke-sntp.texi
  releng/9.3/contrib/ntp/sntp/libopts/Makefile.in
  releng/9.3/contrib/ntp/sntp/m4/ntp_problemtests.m4
  releng/9.3/contrib/ntp/sntp/m4/version.m4
  releng/9.3/contrib/ntp/sntp/scripts/Makefile.in
  releng/9.3/contrib/ntp/sntp/sntp-opts.c
  releng/9.3/contrib/ntp/sntp/sntp-opts.h
  releng/9.3/contrib/ntp/sntp/sntp.1sntpman
  releng/9.3/contrib/ntp/sntp/sntp.1sntpmdoc
  releng/9.3/contrib/ntp/sntp/sntp.html
  releng/9.3/contrib/ntp/sntp/sntp.man.in
  releng/9.3/contrib/ntp/sntp/sntp.mdoc.in
  releng/9.3/contrib/ntp/sntp/tests/Makefile.am
  releng/9.3/contrib/ntp/sntp/tests/Makefile.in
  releng/9.3/contrib/ntp/sntp/unity/Makefile.in
  releng/9.3/contrib/ntp/sntp/version.c
  releng/9.3/contrib/ntp/util/invoke-ntp-keygen.texi
  releng/9.3/contrib/ntp/util/ntp-keygen-opts.c
  releng/9.3/contrib/ntp/util/ntp-keygen-opts.h
  releng/9.3/contrib/ntp/util/ntp-keygen.1ntp-keygenman
  releng/9.3/contrib/ntp/util/ntp-keygen.1ntp-keygenmdoc
  releng/9.3/contrib/ntp/util/ntp-keygen.html
  releng/9.3/contrib/ntp/util/ntp-keygen.man.in
  releng/9.3/contrib/ntp/util/ntp-keygen.mdoc.in
  releng/9.3/sys/conf/newvers.sh
  releng/9.3/usr.sbin/ntp/config.h
  releng/9.3/usr.sbin/ntp/doc/ntp-keygen.8
  releng/9.3/usr.sbin/ntp/doc/ntp.conf.5
  releng/9.3/usr.sbin/ntp/doc/ntp.keys.5
  releng/9.3/usr.sbin/ntp/doc/ntpd.8
  releng/9.3/usr.sbin/ntp/doc/ntpdc.8
  releng/9.3/usr.sbin/ntp/doc/ntpq.8
  releng/9.3/usr.sbin/ntp/doc/sntp.8
  releng/9.3/usr.sbin/ntp/scripts/mkver

Modified: releng/10.1/UPDATING
==============================================================================
--- releng/10.1/UPDATING	Sat Jun  4 04:14:06 2016	(r301300)
+++ releng/10.1/UPDATING	Sat Jun  4 05:46:52 2016	(r301301)
@@ -16,6 +16,10 @@ from older versions of FreeBSD, try WITH
 stable/10, and then rebuild without this option. The bootstrap process from
 older version of current is a bit fragile.
 
+20160604	p36	FreeBSD-SA-16:24.ntp
+
+	Fix multiple vulnerabilities of ntp.
+
 20160531	p35	FreeBSD-SA-16:20.linux
 			FreeBSD-SA-16:21.43bsd
 			FreeBSD-SA-16:22.libarchive

Modified: releng/10.1/contrib/ntp/ChangeLog
==============================================================================
--- releng/10.1/contrib/ntp/ChangeLog	Sat Jun  4 04:14:06 2016	(r301300)
+++ releng/10.1/contrib/ntp/ChangeLog	Sat Jun  4 05:46:52 2016	(r301301)
@@ -1,4 +1,26 @@
 ---
+(4.2.8p8) 2016/06/02 Released by Harlan Stenn <stenn@ntp.org>
+
+* [Sec 3042] Broadcast Interleave.  HStenn.
+* [Sec 3043] Autokey association reset.  perlinger@ntp.org, stenn@ntp.org
+  - validate origin timestamps on bad MACs, too.  stenn@ntp.org
+* [Sec 3044] Spoofed server packets are partially processed.  HStenn.
+* [Sec 3045] Bad authentication demobilizes ephemeral associations. JPerlinger.
+* [Sec 3046] CRYPTO_NAK crash.  stenn@ntp.org
+* [Bug 3038] NTP fails to build in VS2015. perlinger@ntp.org
+  - provide build environment
+  - 'wint_t' and 'struct timespec' defined by VS2015
+  - fixed print()/scanf() format issues
+* [Bug 3052] Add a .gitignore file.  Edmund Wong.
+* [Bug 3054] miscopt.html documents the allan intercept in seconds. SWhite.
+* [Bug 3058] fetch_timestamp() mishandles 64-bit alignment. Brian Utterback,
+  JPerlinger, HStenn.
+* Update the NEWS file for 4.2.8p8.  HStenn.
+* Fix typo in ntp-wait and plot_summary.  HStenn.
+* Make sure we have an "author" file for git imports.  HStenn.
+* Update the sntp problem tests for MacOS.  HStenn.
+  
+---
 (4.2.8p7) 2016/04/26 Released by Harlan Stenn <stenn@ntp.org>
 
 * [Sec 2901] KoD packets must have non-zero transmit timestamps.  HStenn.

Modified: releng/10.1/contrib/ntp/CommitLog
==============================================================================
--- releng/10.1/contrib/ntp/CommitLog	Sat Jun  4 04:14:06 2016	(r301300)
+++ releng/10.1/contrib/ntp/CommitLog	Sat Jun  4 05:46:52 2016	(r301301)
@@ -1,3 +1,774 @@
+ChangeSet@1.3686, 2016-06-02 07:40:06-04:00, stenn@deacon.udel.edu
+  NTP_4_2_8P8
+  TAG: NTP_4_2_8P8
+
+  ChangeLog@1.1834 +1 -0
+    NTP_4_2_8P8
+
+  ntpd/invoke-ntp.conf.texi@1.200 +1 -1
+    NTP_4_2_8P8
+
+  ntpd/invoke-ntp.keys.texi@1.190 +1 -1
+    NTP_4_2_8P8
+
+  ntpd/invoke-ntpd.texi@1.506 +2 -2
+    NTP_4_2_8P8
+
+  ntpd/ntp.conf.5man@1.234 +3 -3
+    NTP_4_2_8P8
+
+  ntpd/ntp.conf.5mdoc@1.234 +2 -2
+    NTP_4_2_8P8
+
+  ntpd/ntp.conf.html@1.185 +55 -19
+    NTP_4_2_8P8
+
+  ntpd/ntp.conf.man.in@1.234 +3 -3
+    NTP_4_2_8P8
+
+  ntpd/ntp.conf.mdoc.in@1.234 +2 -2
+    NTP_4_2_8P8
+
+  ntpd/ntp.keys.5man@1.224 +2 -2
+    NTP_4_2_8P8
+
+  ntpd/ntp.keys.5mdoc@1.224 +2 -2
+    NTP_4_2_8P8
+
+  ntpd/ntp.keys.html@1.186 +1 -1
+    NTP_4_2_8P8
+
+  ntpd/ntp.keys.man.in@1.224 +2 -2
+    NTP_4_2_8P8
+
+  ntpd/ntp.keys.mdoc.in@1.224 +2 -2
+    NTP_4_2_8P8
+
+  ntpd/ntpd-opts.c@1.528 +7 -7
+    NTP_4_2_8P8
+
+  ntpd/ntpd-opts.h@1.527 +3 -3
+    NTP_4_2_8P8
+
+  ntpd/ntpd.1ntpdman@1.335 +3 -3
+    NTP_4_2_8P8
+
+  ntpd/ntpd.1ntpdmdoc@1.335 +2 -2
+    NTP_4_2_8P8
+
+  ntpd/ntpd.html@1.179 +2 -2
+    NTP_4_2_8P8
+
+  ntpd/ntpd.man.in@1.335 +3 -3
+    NTP_4_2_8P8
+
+  ntpd/ntpd.mdoc.in@1.335 +2 -2
+    NTP_4_2_8P8
+
+  ntpdc/invoke-ntpdc.texi@1.503 +2 -2
+    NTP_4_2_8P8
+
+  ntpdc/ntpdc-opts.c@1.521 +7 -7
+    NTP_4_2_8P8
+
+  ntpdc/ntpdc-opts.h@1.520 +3 -3
+    NTP_4_2_8P8
+
+  ntpdc/ntpdc.1ntpdcman@1.334 +3 -3
+    NTP_4_2_8P8
+
+  ntpdc/ntpdc.1ntpdcmdoc@1.334 +2 -2
+    NTP_4_2_8P8
+
+  ntpdc/ntpdc.html@1.347 +2 -2
+    NTP_4_2_8P8
+
+  ntpdc/ntpdc.man.in@1.334 +3 -3
+    NTP_4_2_8P8
+
+  ntpdc/ntpdc.mdoc.in@1.334 +2 -2
+    NTP_4_2_8P8
+
+  ntpq/invoke-ntpq.texi@1.511 +2 -2
+    NTP_4_2_8P8
+
+  ntpq/ntpq-opts.c@1.528 +7 -7
+    NTP_4_2_8P8
+
+  ntpq/ntpq-opts.h@1.526 +3 -3
+    NTP_4_2_8P8
+
+  ntpq/ntpq.1ntpqman@1.339 +3 -3
+    NTP_4_2_8P8
+
+  ntpq/ntpq.1ntpqmdoc@1.339 +2 -2
+    NTP_4_2_8P8
+
+  ntpq/ntpq.html@1.176 +2 -2
+    NTP_4_2_8P8
+
+  ntpq/ntpq.man.in@1.339 +3 -3
+    NTP_4_2_8P8
+
+  ntpq/ntpq.mdoc.in@1.339 +2 -2
+    NTP_4_2_8P8
+
+  ntpsnmpd/invoke-ntpsnmpd.texi@1.505 +2 -2
+    NTP_4_2_8P8
+
+  ntpsnmpd/ntpsnmpd-opts.c@1.523 +7 -7
+    NTP_4_2_8P8
+
+  ntpsnmpd/ntpsnmpd-opts.h@1.522 +3 -3
+    NTP_4_2_8P8
+
+  ntpsnmpd/ntpsnmpd.1ntpsnmpdman@1.334 +3 -3
+    NTP_4_2_8P8
+
+  ntpsnmpd/ntpsnmpd.1ntpsnmpdmdoc@1.334 +2 -2
+    NTP_4_2_8P8
+
+  ntpsnmpd/ntpsnmpd.html@1.174 +1 -1
+    NTP_4_2_8P8
+
+  ntpsnmpd/ntpsnmpd.man.in@1.334 +3 -3
+    NTP_4_2_8P8
+
+  ntpsnmpd/ntpsnmpd.mdoc.in@1.334 +2 -2
+    NTP_4_2_8P8
+
+  packageinfo.sh@1.528 +2 -2
+    NTP_4_2_8P8
+
+  scripts/calc_tickadj/calc_tickadj.1calc_tickadjman@1.95 +3 -3
+    NTP_4_2_8P8
+
+  scripts/calc_tickadj/calc_tickadj.1calc_tickadjmdoc@1.96 +2 -2
+    NTP_4_2_8P8
+
+  scripts/calc_tickadj/calc_tickadj.html@1.97 +1 -1
+    NTP_4_2_8P8
+
+  scripts/calc_tickadj/calc_tickadj.man.in@1.94 +3 -3
+    NTP_4_2_8P8
+
+  scripts/calc_tickadj/calc_tickadj.mdoc.in@1.96 +2 -2
+    NTP_4_2_8P8
+
+  scripts/calc_tickadj/invoke-calc_tickadj.texi@1.99 +1 -1
+    NTP_4_2_8P8
+
+  scripts/invoke-plot_summary.texi@1.117 +2 -2
+    NTP_4_2_8P8
+
+  scripts/invoke-summary.texi@1.116 +2 -2
+    NTP_4_2_8P8
+
+  scripts/ntp-wait/invoke-ntp-wait.texi@1.326 +2 -2
+    NTP_4_2_8P8
+
+  scripts/ntp-wait/ntp-wait-opts@1.62 +2 -2
+    NTP_4_2_8P8
+
+  scripts/ntp-wait/ntp-wait.1ntp-waitman@1.323 +3 -3
+    NTP_4_2_8P8
+
+  scripts/ntp-wait/ntp-wait.1ntp-waitmdoc@1.324 +2 -2
+    NTP_4_2_8P8
+
+  scripts/ntp-wait/ntp-wait.html@1.343 +2 -2
+    NTP_4_2_8P8
+
+  scripts/ntp-wait/ntp-wait.man.in@1.323 +3 -3
+    NTP_4_2_8P8
+
+  scripts/ntp-wait/ntp-wait.mdoc.in@1.324 +2 -2
+    NTP_4_2_8P8
+
+  scripts/ntpsweep/invoke-ntpsweep.texi@1.114 +2 -2
+    NTP_4_2_8P8
+
+  scripts/ntpsweep/ntpsweep-opts@1.64 +2 -2
+    NTP_4_2_8P8
+
+  scripts/ntpsweep/ntpsweep.1ntpsweepman@1.102 +3 -3
+    NTP_4_2_8P8
+
+  scripts/ntpsweep/ntpsweep.1ntpsweepmdoc@1.102 +2 -2
+    NTP_4_2_8P8
+
+  scripts/ntpsweep/ntpsweep.html@1.115 +2 -2
+    NTP_4_2_8P8
+
+  scripts/ntpsweep/ntpsweep.man.in@1.102 +3 -3
+    NTP_4_2_8P8
+
+  scripts/ntpsweep/ntpsweep.mdoc.in@1.103 +2 -2
+    NTP_4_2_8P8
+
+  scripts/ntptrace/invoke-ntptrace.texi@1.115 +2 -2
+    NTP_4_2_8P8
+
+  scripts/ntptrace/ntptrace-opts@1.64 +2 -2
+    NTP_4_2_8P8
+
+  scripts/ntptrace/ntptrace.1ntptraceman@1.102 +3 -3
+    NTP_4_2_8P8
+
+  scripts/ntptrace/ntptrace.1ntptracemdoc@1.103 +2 -2
+    NTP_4_2_8P8
+
+  scripts/ntptrace/ntptrace.html@1.116 +2 -2
+    NTP_4_2_8P8
+
+  scripts/ntptrace/ntptrace.man.in@1.102 +3 -3
+    NTP_4_2_8P8
+
+  scripts/ntptrace/ntptrace.mdoc.in@1.104 +2 -2
+    NTP_4_2_8P8
+
+  scripts/plot_summary-opts@1.65 +2 -2
+    NTP_4_2_8P8
+
+  scripts/plot_summary.1plot_summaryman@1.115 +3 -3
+    NTP_4_2_8P8
+
+  scripts/plot_summary.1plot_summarymdoc@1.115 +2 -2
+    NTP_4_2_8P8
+
+  scripts/plot_summary.html@1.118 +40 -58
+    NTP_4_2_8P8
+
+  scripts/plot_summary.man.in@1.115 +3 -3
+    NTP_4_2_8P8
+
+  scripts/plot_summary.mdoc.in@1.115 +2 -2
+    NTP_4_2_8P8
+
+  scripts/summary-opts@1.64 +2 -2
+    NTP_4_2_8P8
+
+  scripts/summary.1summaryman@1.114 +3 -3
+    NTP_4_2_8P8
+
+  scripts/summary.1summarymdoc@1.114 +2 -2
+    NTP_4_2_8P8
+
+  scripts/summary.html@1.117 +2 -2
+    NTP_4_2_8P8
+
+  scripts/summary.man.in@1.114 +3 -3
+    NTP_4_2_8P8
+
+  scripts/summary.mdoc.in@1.114 +2 -2
+    NTP_4_2_8P8
+
+  scripts/update-leap/invoke-update-leap.texi@1.15 +1 -1
+    NTP_4_2_8P8
+
+  scripts/update-leap/update-leap-opts@1.15 +2 -2
+    NTP_4_2_8P8
+
+  scripts/update-leap/update-leap.1update-leapman@1.15 +3 -3
+    NTP_4_2_8P8
+
+  scripts/update-leap/update-leap.1update-leapmdoc@1.15 +2 -2
+    NTP_4_2_8P8
+
+  scripts/update-leap/update-leap.html@1.15 +1 -1
+    NTP_4_2_8P8
+
+  scripts/update-leap/update-leap.man.in@1.15 +3 -3
+    NTP_4_2_8P8
+
+  scripts/update-leap/update-leap.mdoc.in@1.15 +2 -2
+    NTP_4_2_8P8
+
+  sntp/invoke-sntp.texi@1.503 +2 -2
+    NTP_4_2_8P8
+
+  sntp/sntp-opts.c@1.522 +7 -7
+    NTP_4_2_8P8
+
+  sntp/sntp-opts.h@1.520 +3 -3
+    NTP_4_2_8P8
+
+  sntp/sntp.1sntpman@1.338 +3 -3
+    NTP_4_2_8P8
+
+  sntp/sntp.1sntpmdoc@1.338 +2 -2
+    NTP_4_2_8P8
+
+  sntp/sntp.html@1.518 +2 -2
+    NTP_4_2_8P8
+
+  sntp/sntp.man.in@1.338 +3 -3
+    NTP_4_2_8P8
+
+  sntp/sntp.mdoc.in@1.338 +2 -2
+    NTP_4_2_8P8
+
+  util/invoke-ntp-keygen.texi@1.506 +2 -2
+    NTP_4_2_8P8
+
+  util/ntp-keygen-opts.c@1.524 +7 -7
+    NTP_4_2_8P8
+
+  util/ntp-keygen-opts.h@1.522 +3 -3
+    NTP_4_2_8P8
+
+  util/ntp-keygen.1ntp-keygenman@1.334 +3 -3
+    NTP_4_2_8P8
+
+  util/ntp-keygen.1ntp-keygenmdoc@1.334 +2 -2
+    NTP_4_2_8P8
+
+  util/ntp-keygen.html@1.180 +2 -2
+    NTP_4_2_8P8
+
+  util/ntp-keygen.man.in@1.334 +3 -3
+    NTP_4_2_8P8
+
+  util/ntp-keygen.mdoc.in@1.334 +2 -2
+    NTP_4_2_8P8
+
+ChangeSet@1.3685, 2016-06-02 06:50:37-04:00, stenn@deacon.udel.edu
+  4.2.8p8
+
+  packageinfo.sh@1.527 +1 -1
+    4.2.8p8
+
+ChangeSet@1.3684, 2016-05-27 08:02:09+00:00, stenn@psp-deb1.ntp.org
+  typo
+
+  NEWS@1.174 +1 -1
+    typo
+
+ChangeSet@1.3683, 2016-05-27 00:07:22-07:00, harlan@max.pfcs.com
+  [Bug 3058] fetch_timestamp() mishandles 64-bit alignment. Brian Utterback, JPerlinger, HStenn.
+
+  ChangeLog@1.1833 +2 -0
+    [Bug 3058] fetch_timestamp() mishandles 64-bit alignment. Brian Utterback, JPerlinger, HStenn.
+
+  NEWS@1.173 +2 -0
+    [Bug 3058] fetch_timestamp() mishandles 64-bit alignment. Brian Utterback, JPerlinger, HStenn.
+
+  ntpd/ntp_io.c@1.417 +41 -41
+    [Bug 3058] fetch_timestamp() mishandles 64-bit alignment. Brian Utterback, JPerlinger, HStenn.
+
+ChangeSet@1.3682, 2016-05-26 22:37:19-07:00, harlan@max.pfcs.com
+  [Sec3043] - validate origin timestamps on bad MACs, too.  stenn@ntp.org
+
+  ChangeLog@1.1832 +2 -1
+    [Sec3043] - validate origin timestamps on bad MACs, too.  stenn@ntp.org
+
+  NEWS@1.172 +9 -9
+    [Sec3043] - validate origin timestamps on bad MACs, too.  stenn@ntp.org
+
+  ntpd/ntp_proto.c@1.392 +19 -6
+    [Sec3043] - validate origin timestamps on bad MACs, too.  stenn@ntp.org
+
+ChangeSet@1.3681, 2016-05-24 23:31:36+00:00, stenn@psp-deb1.ntp.org
+  Update the NEWS file for 4.2.8p8.  HStenn.
+
+  ChangeLog@1.1831 +1 -0
+    Update the NEWS file for 4.2.8p8.  HStenn.
+
+  NEWS@1.171 +103 -2
+    Update the NEWS file for 4.2.8p8.  HStenn.
+
+ChangeSet@1.3680, 2016-05-24 12:05:06+00:00, stenn@psp-deb1.ntp.org
+  [Sec 3044] Spoofed server packets are partially processed.  HStenn.
+
+  ChangeLog@1.1830 +3 -2
+    [Sec 3044] Spoofed server packets are partially processed.  HStenn.
+
+  ntpd/ntp_proto.c@1.391 +39 -24
+    [Sec 3044] Spoofed server packets are partially processed.  HStenn.
+
+ChangeSet@1.3669.3.2, 2016-05-24 02:58:00-07:00, harlan@hms-mbp11.pfcs.com
+  Make sure we have an "author" file for git imports.  HStenn.
+
+  ChangeLog@1.1820.3.3 +1 -0
+    Update the problem tests for MacOS for sntp.  HStenn.
+
+  ChangeLog@1.1820.3.2 +1 -0
+    Make sure we have an "author" file for git imports.  HStenn.
+
+  configure.ac@1.606 +1 -0
+    Make sure we have an "author" file for git imports.  HStenn.
+
+  scripts/build/Makefile.am@1.5 +1 -1
+    Make sure we have an "author" file for git imports.  HStenn.
+
+  scripts/build/genAuthors.in@1.1 +82 -0
+    BitKeeper file /Users/harlan/src/ntp-stable/scripts/build/genAuthors.in
+
+  scripts/build/genAuthors.in@1.0 +0 -0
+
+  sntp/configure.ac@1.83 +2 -0
+    Make sure we have an "author" file for git imports.  HStenn.
+
+  sntp/m4/ntp_problemtests.m4@1.5 +1 -0
+    Make sure we have an "author" file for git imports.  HStenn.
+
+  sntp/m4/sntp_problemtests.m4@1.1 +47 -0
+    BitKeeper file /Users/harlan/src/ntp-stable/sntp/m4/sntp_problemtests.m4
+
+  sntp/m4/sntp_problemtests.m4@1.0 +0 -0
+
+  sntp/tests/Makefile.am@1.67 +8 -2
+    Update the problem tests for MacOS for sntp.  HStenn.
+
+ChangeSet@1.3669.3.1, 2016-05-24 02:25:46-07:00, harlan@hms-mbp11.pfcs.com
+  [Sec 3042] Broadcast Interleave.  HStenn.
+
+  ChangeLog@1.1820.3.1 +4 -0
+    [Sec 3042] Broadcast Interleave.  HStenn.
+
+  ntpd/ntp_proto.c@1.386.1.1 +69 -14
+    [Sec 3042] Broadcast Interleave.  HStenn.
+
+ChangeSet@1.3678, 2016-05-23 09:53:37+00:00, stenn@psp-deb1.ntp.org
+  [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ChangeLog@1.1828 +1 -1
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  include/ntp.h@1.220 +1 -0
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ntpd/complete.conf.in@1.31 +1 -1
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ntpd/invoke-ntp.conf.texi@1.199 +23 -3
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ntpd/keyword-gen-utd@1.28 +1 -1
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ntpd/keyword-gen.c@1.34 +2 -1
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ntpd/ntp.conf.5man@1.233 +27 -6
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ntpd/ntp.conf.5mdoc@1.233 +24 -2
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ntpd/ntp.conf.def@1.24 +22 -0
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ntpd/ntp.conf.man.in@1.233 +27 -6
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ntpd/ntp.conf.mdoc.in@1.233 +24 -2
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ntpd/ntp_config.c@1.338 +6 -2
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ntpd/ntp_keyword.h@1.30 +617 -597
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ntpd/ntp_parser.c@1.102 +1541 -1773
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ntpd/ntp_parser.h@1.66 +294 -306
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ntpd/ntp_parser.y@1.92 +2 -0
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+  ntpd/ntp_proto.c@1.389 +29 -8
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org, stenn@ntp.org
+
+ChangeSet@1.3671.1.3, 2016-05-17 06:49:41+00:00, stenn@psp-deb1.ntp.org
+  [Bug 3054] miscopt.html documents the allan intercept in seconds. SWhite.
+
+  ChangeLog@1.1822.1.3 +1 -0
+    [Bug 3054] miscopt.html documents the allan intercept in seconds. SWhite.
+
+  html/miscopt.html@1.86 +2 -2
+    [Bug 3054] miscopt.html documents the allan intercept in seconds. SWhite.
+
+ChangeSet@1.3671.1.2, 2016-05-17 04:25:50+00:00, stenn@psp-deb1.ntp.org
+  [Bug 3052] Add a .gitignore file.  Edmund Wong.
+
+  .gitignore@1.1 +9 -0
+    BitKeeper file /home/stenn/ntp-stable/.gitignore
+
+  .gitignore@1.0 +0 -0
+
+  BitKeeper/etc/ignore@1.91 +0 -1
+    [Bug 3052] Add a .gitignore file.  Edmund Wong.
+
+  ChangeLog@1.1822.1.2 +1 -0
+    [Bug 3052] Add a .gitignore file.  Edmund Wong.
+
+ChangeSet@1.3675, 2016-05-08 11:59:28+02:00, perlinger@ntp.org
+  [Sec 3043]  Autokey association reset. perlinger@ntp.org
+   (fixes [Sec 3044] and [Sec 3045], too)
+
+  ChangeLog@1.1825 +2 -0
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org
+
+  ntpd/ntp_proto.c@1.388 +28 -22
+    [Sec 3043]  Autokey association reset. perlinger@ntp.org
+     (fixes [Sec 3044] and [Sec 3045], too)
+
+ChangeSet@1.3674, 2016-05-06 11:05:44+00:00, stenn@psp-deb1.ntp.org
+  [Sec 3046] CRYPTO_NAK crash
+
+  ChangeLog@1.1824 +1 -0
+    [Sec 3046] CRYPTO_NAK crash
+
+  ntpd/ntp_proto.c@1.387 +2 -1
+    [Sec 3046] CRYPTO_NAK crash
+
+ChangeSet@1.3669.2.1, 2016-05-06 09:20:29+00:00, stenn@psp-deb1.ntp.org
+  Fix typo in ntp-wait and plot_summary.  HStenn.
+
+  ChangeLog@1.1820.2.1 +4 -0
+    Fix typo in ntp-wait and plot_summary.  HStenn.
+
+  scripts/invoke-plot_summary.texi@1.116 +2 -2
+    Fix typo in ntp-wait and plot_summary.  HStenn.
+
+  scripts/ntp-wait/ntp-wait.in@1.12 +1 -1
+    Fix typo in ntp-wait and plot_summary.  HStenn.
+
+  scripts/plot_summary-opts@1.64 +1 -1
+    Fix typo in ntp-wait and plot_summary.  HStenn.
+
+  scripts/plot_summary-opts.def@1.3 +1 -1
+    Fix typo in ntp-wait and plot_summary.  HStenn.
+
+  scripts/plot_summary.1plot_summaryman@1.114 +4 -4
+    Fix typo in ntp-wait and plot_summary.  HStenn.
+
+  scripts/plot_summary.1plot_summarymdoc@1.114 +3 -3
+    Fix typo in ntp-wait and plot_summary.  HStenn.
+
+  scripts/plot_summary.html@1.117 +58 -40
+    Fix typo in ntp-wait and plot_summary.  HStenn.
+
+  scripts/plot_summary.man.in@1.114 +4 -4
+    Fix typo in ntp-wait and plot_summary.  HStenn.
+
+  scripts/plot_summary.mdoc.in@1.114 +3 -3
+    Fix typo in ntp-wait and plot_summary.  HStenn.
+
+  scripts/t/ntp-wait.t@1.2 +1 -1
+    Fix typo in ntp-wait and plot_summary.  HStenn.
+
+ChangeSet@1.3672, 2016-05-05 06:17:20+00:00, stenn@psp-deb1.ntp.org
+  Update NEWS file for 4.2.8p9 for Bug 3038
+
+  NEWS@1.170 +9 -0
+    Update NEWS file for 4.2.8p9 for Bug 3038
+
+ChangeSet@1.3671, 2016-05-05 06:09:53+00:00, stenn@psp-deb1.ntp.org
+  trivial cleanup
+
+  ChangeLog@1.1822 +1 -0
+    trivial cleanup
+
+ChangeSet@1.3670, 2016-04-27 21:54:12+02:00, perlinger@ntp.org
+  [Bug 3038] NTP fails to build in VS2015 Community Edition
+   - new build environment
+   - 'wint_t' and 'struct timespec' defined by VS2015
+   - fixed several format clashes in 'printf()' and 'scanf'
+
+  BitKeeper/etc/ignore@1.90 +1 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - skip next version of MSVC symbol database
+
+  ChangeLog@1.1821 +6 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+
+  ntpd/refclock_parse.c@1.83 +6 -6
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - work around clash SOCKET vs file descriptor formatting
+
+  ntpdc/ntpdc.c@1.107 +2 -2
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - fix format warnings/errors
+
+  ntpq/ntpq.c@1.170 +5 -2
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - fix format warnings/errors
+
+  ports/winnt/include/config.h@1.115 +4 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - VS2015 has 'wint_t'
+
+  ports/winnt/include/sys/time.h@1.9 +2 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - VS2015 has 'struct timespec'
+
+  ports/winnt/libntp/termios.c@1.33 +3 -3
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - fix format parsing error
+
+  ports/winnt/ppsapi/loopback/src/sys/time.h@1.2 +2 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - VS2015 has 'struct timespec'
+
+  ports/winnt/vs2013/common.props@1.3 +1 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     -enable multiprocessor build
+
+  ports/winnt/vs2015/common.props@1.1 +60 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/common.props@1.0 +0 -0
+
+  ports/winnt/vs2015/debug-x64.props@1.1 +24 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/debug-x64.props@1.0 +0 -0
+
+  ports/winnt/vs2015/debug.props@1.1 +24 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/debug.props@1.0 +0 -0
+
+  ports/winnt/vs2015/instsrv/instsrv.vcxproj@1.1 +269 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/instsrv/instsrv.vcxproj@1.0 +0 -0
+
+  ports/winnt/vs2015/instsrv/instsrv.vcxproj.filters@1.1 +28 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/instsrv/instsrv.vcxproj.filters@1.0 +0 -0
+
+  ports/winnt/vs2015/libntp/libntp.vcxproj@1.1 +431 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/libntp/libntp.vcxproj@1.0 +0 -0
+
+  ports/winnt/vs2015/libntp/libntp.vcxproj.filters@1.1 +574 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/libntp/libntp.vcxproj.filters@1.0 +0 -0
+
+  ports/winnt/vs2015/loopback-pps/loopback-ppsapi-provider.vcxproj@1.1 +252 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/loopback-pps/loopback-ppsapi-provider.vcxproj@1.0 +0 -0
+
+  ports/winnt/vs2015/loopback-pps/loopback-ppsapi-provider.vcxproj.filters@1.1 +39 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/loopback-pps/loopback-ppsapi-provider.vcxproj.filters@1.0 +0 -0
+
+  ports/winnt/vs2015/ntp-keygen/ntp-keygen.vcxproj@1.1 +270 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/ntp-keygen/ntp-keygen.vcxproj@1.0 +0 -0
+
+  ports/winnt/vs2015/ntp-keygen/ntp-keygen.vcxproj.filters@1.1 +36 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/ntp-keygen/ntp-keygen.vcxproj.filters@1.0 +0 -0
+
+  ports/winnt/vs2015/ntp.sln@1.1 +166 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/ntp.sln@1.0 +0 -0
+
+  ports/winnt/vs2015/ntpd-keyword-gen/ntpd-keyword-gen.vcxproj@1.1 +227 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/ntpd-keyword-gen/ntpd-keyword-gen.vcxproj@1.0 +0 -0
+
+  ports/winnt/vs2015/ntpd-keyword-gen/ntpd-keyword-gen.vcxproj.filters@1.1 +69 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/ntpd-keyword-gen/ntpd-keyword-gen.vcxproj.filters@1.0 +0 -0
+
+  ports/winnt/vs2015/ntpd/gen-ntp_keyword.bat@1.1 +53 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/ntpd/gen-ntp_keyword.bat@1.0 +0 -0
+
+  ports/winnt/vs2015/ntpd/ntpd.vcxproj@1.1 +515 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/ntpd/ntpd.vcxproj@1.0 +0 -0
+
+  ports/winnt/vs2015/ntpd/ntpd.vcxproj.filters@1.1 +556 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/ntpd/ntpd.vcxproj.filters@1.0 +0 -0
+
+  ports/winnt/vs2015/ntpdate/ntpdate.vcxproj@1.1 +287 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/ntpdate/ntpdate.vcxproj@1.0 +0 -0
+
+  ports/winnt/vs2015/ntpdate/ntpdate.vcxproj.filters@1.1 +72 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/ntpdate/ntpdate.vcxproj.filters@1.0 +0 -0
+
+  ports/winnt/vs2015/ntpdc/ntpdc.vcxproj@1.1 +278 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/ntpdc/ntpdc.vcxproj@1.0 +0 -0
+
+  ports/winnt/vs2015/ntpdc/ntpdc.vcxproj.filters@1.1 +45 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/ntpdc/ntpdc.vcxproj.filters@1.0 +0 -0
+
+  ports/winnt/vs2015/ntpq/ntpq.vcxproj@1.1 +277 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/ntpq/ntpq.vcxproj@1.0 +0 -0
+
+  ports/winnt/vs2015/ntpq/ntpq.vcxproj.filters@1.1 +42 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/ntpq/ntpq.vcxproj.filters@1.0 +0 -0
+
+  ports/winnt/vs2015/release-x64.props@1.1 +25 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/release-x64.props@1.0 +0 -0
+
+  ports/winnt/vs2015/release.props@1.1 +25 -0
+    [Bug 3038] NTP fails to build in VS2015 Community Edition
+     - add build environment
+
+  ports/winnt/vs2015/release.props@1.0 +0 -0
+
 ChangeSet@1.3669, 2016-04-26 20:30:51-04:00, stenn@deacon.udel.edu
   NTP_4_2_8P7
   TAG: NTP_4_2_8P7

Modified: releng/10.1/contrib/ntp/NEWS
==============================================================================
--- releng/10.1/contrib/ntp/NEWS	Sat Jun  4 04:14:06 2016	(r301300)
+++ releng/10.1/contrib/ntp/NEWS	Sat Jun  4 05:46:52 2016	(r301301)
@@ -1,4 +1,116 @@
 ---
+NTP 4.2.8p8 (Harlan Stenn <stenn@ntp.org>, 2016/06/02) 
+
+Focus: Security, Bug fixes, enhancements.
+
+Severity: HIGH
+
+In addition to bug fixes and enhancements, this release fixes the
+following 1 high- and 4 low-severity vulnerabilities:
+
+* CRYPTO_NAK crash
+   Date Resolved: 02 June 2016; Dev (4.3.93) 02 June 2016
+   References: Sec 3046 / CVE-2016-4957 / VU#321640
+   Affects: ntp-4.2.8p7, and ntp-4.3.92.
+   CVSS2: HIGH 7.8 (AV:N/AC:L/Au:N/C:N/I:N/A:C)
+   CVSS3: HIGH 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
+   Summary: The fix for Sec 3007 in ntp-4.2.8p7 contained a bug that
+	could cause ntpd to crash.
+   Mitigation:
+        Implement BCP-38.
+        Upgrade to 4.2.8p8, or later, from the NTP Project Download Page
+	    or the NTP Public Services Project Download Page
+        If you cannot upgrade from 4.2.8p7, the only other alternatives
+	    are to patch your code or filter CRYPTO_NAK packets.
+        Properly monitor your ntpd instances, and auto-restart ntpd
+	    (without -g) if it stops running. 
+   Credit: This weakness was discovered by Nicolas Edet of Cisco. 
+
+* Bad authentication demobilizes ephemeral associations
+   Date Resolved: 02 June 2016; Dev (4.3.93) 02 June 2016
+   References: Sec 3045 / CVE-2016-4953 / VU#321640
+   Affects: ntp-4, up to but not including ntp-4.2.8p8, and
+	ntp-4.3.0 up to, but not including ntp-4.3.93.
+   CVSS2: LOW 2.6 (AV:N/AC:H/Au:N/C:N/I:N/A:P)
+   CVSS3: LOW 3.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
+   Summary: An attacker who knows the origin timestamp and can send a
+	spoofed packet containing a CRYPTO-NAK to an ephemeral peer
+	target before any other response is sent can demobilize that
+	association.
+   Mitigation:
+	Implement BCP-38.
+	Upgrade to 4.2.8p8, or later, from the NTP Project Download Page
+	    or the NTP Public Services Project Download Page
+	Properly monitor your ntpd instances. 
+	Credit: This weakness was discovered by Miroslav Lichvar of Red Hat. 
+
+* Processing spoofed server packets
+   Date Resolved: 02 June 2016; Dev (4.3.93) 02 June 2016
+   References: Sec 3044 / CVE-2016-4954 / VU#321640
+   Affects: ntp-4, up to but not including ntp-4.2.8p8, and
+	ntp-4.3.0 up to, but not including ntp-4.3.93.
+   CVSS2: LOW 2.6 (AV:N/AC:H/Au:N/C:N/I:N/A:P)
+   CVSS3: LOW 3.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
+   Summary: An attacker who is able to spoof packets with correct origin
+	timestamps from enough servers before the expected response
+	packets arrive at the target machine can affect some peer
+	variables and, for example, cause a false leap indication to be set.
+   Mitigation:
+	Implement BCP-38.
+	Upgrade to 4.2.8p8, or later, from the NTP Project Download Page
+	    or the NTP Public Services Project Download Page
+	Properly monitor your ntpd instances. 
+   Credit: This weakness was discovered by Jakub Prokes of Red Hat. 
+
+* Autokey association reset
+   Date Resolved: 02 June 2016; Dev (4.3.93) 02 June 2016
+   References: Sec 3043 / CVE-2016-4955 / VU#321640
+   Affects: ntp-4, up to but not including ntp-4.2.8p8, and
+	ntp-4.3.0 up to, but not including ntp-4.3.93.
+   CVSS2: LOW 2.6 (AV:N/AC:H/Au:N/C:N/I:N/A:P)
+   CVSS3: LOW 3.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
+   Summary: An attacker who is able to spoof a packet with a correct
+	origin timestamp before the expected response packet arrives at
+	the target machine can send a CRYPTO_NAK or a bad MAC and cause
+	the association's peer variables to be cleared. If this can be
+	done often enough, it will prevent that association from working.
+   Mitigation:
+	Implement BCP-38.
+	Upgrade to 4.2.8p8, or later, from the NTP Project Download Page
+	    or the NTP Public Services Project Download Page
+	Properly monitor your ntpd instances. 
+   Credit: This weakness was discovered by Miroslav Lichvar of Red Hat. 
+ 
+* Broadcast interleave
+   Date Resolved: 02 June 2016; Dev (4.3.93) 02 June 2016
+   References: Sec 3042 / CVE-2016-4956 / VU#321640
+   Affects: ntp-4, up to but not including ntp-4.2.8p8, and
+   	ntp-4.3.0 up to, but not including ntp-4.3.93.
+   CVSS2: LOW 2.6 (AV:N/AC:H/Au:N/C:N/I:N/A:P)
+   CVSS3: LOW 3.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
+   Summary: The fix for NtpBug2978 does not cover broadcast associations,
+   	so broadcast clients can be triggered to flip into interleave mode.
+   Mitigation:
+	Implement BCP-38.
+	Upgrade to 4.2.8p8, or later, from the NTP Project Download Page
+	    or the NTP Public Services Project Download Page
+	Properly monitor your ntpd instances. 
+   Credit: This weakness was discovered by Miroslav Lichvar of Red Hat. 
+
+Other fixes:
+* [Bug 3038] NTP fails to build in VS2015. perlinger@ntp.org
+  - provide build environment
+  - 'wint_t' and 'struct timespec' defined by VS2015
+  - fixed print()/scanf() format issues
+* [Bug 3052] Add a .gitignore file.  Edmund Wong.
+* [Bug 3054] miscopt.html documents the allan intercept in seconds. SWhite.
+* [Bug 3058] fetch_timestamp() mishandles 64-bit alignment. Brian Utterback,
+  JPerlinger, HStenn.
+* Fix typo in ntp-wait and plot_summary.  HStenn.
+* Make sure we have an "author" file for git imports.  HStenn.
+* Update the sntp problem tests for MacOS.  HStenn.
+
+---
 NTP 4.2.8p7 (Harlan Stenn <stenn@ntp.org>, 2016/04/26) 
 
 Focus: Security, Bug fixes, enhancements.

Modified: releng/10.1/contrib/ntp/configure
==============================================================================
--- releng/10.1/contrib/ntp/configure	Sat Jun  4 04:14:06 2016	(r301300)
+++ releng/10.1/contrib/ntp/configure	Sat Jun  4 05:46:52 2016	(r301301)
@@ -1,6 +1,6 @@
 #! /bin/sh
 # Guess values for system-dependent variables and create Makefiles.
-# Generated by GNU Autoconf 2.69 for ntp 4.2.8p7.
+# Generated by GNU Autoconf 2.69 for ntp 4.2.8p8.
 #
 # Report bugs to <http://bugs.ntp.org./>.
 #
@@ -590,8 +590,8 @@ MAKEFLAGS=
 # Identity of this package.
 PACKAGE_NAME='ntp'
 PACKAGE_TARNAME='ntp'
-PACKAGE_VERSION='4.2.8p7'
-PACKAGE_STRING='ntp 4.2.8p7'
+PACKAGE_VERSION='4.2.8p8'
+PACKAGE_STRING='ntp 4.2.8p8'
 PACKAGE_BUGREPORT='http://bugs.ntp.org./'
 PACKAGE_URL='http://www.ntp.org./'
 
@@ -1618,7 +1618,7 @@ if test "$ac_init_help" = "long"; then
   # Omit some internal or obsolete options to make the list less imposing.
   # This message is too long to be a string in the A/UX 3.1 sh.
   cat <<_ACEOF
-\`configure' configures ntp 4.2.8p7 to adapt to many kinds of systems.
+\`configure' configures ntp 4.2.8p8 to adapt to many kinds of systems.
 
 Usage: $0 [OPTION]... [VAR=VALUE]...
 
@@ -1688,7 +1688,7 @@ fi
 
 if test -n "$ac_init_help"; then
   case $ac_init_help in
-     short | recursive ) echo "Configuration of ntp 4.2.8p7:";;
+     short | recursive ) echo "Configuration of ntp 4.2.8p8:";;
    esac
   cat <<\_ACEOF
 
@@ -1924,7 +1924,7 @@ fi
 test -n "$ac_init_help" && exit $ac_status
 if $ac_init_version; then
   cat <<\_ACEOF
-ntp configure 4.2.8p7
+ntp configure 4.2.8p8
 generated by GNU Autoconf 2.69
 
 Copyright (C) 2012 Free Software Foundation, Inc.
@@ -2754,7 +2754,7 @@ cat >config.log <<_ACEOF
 This file contains any messages produced by compilers while
 running configure, to aid debugging if configure makes a mistake.
 
-It was created by ntp $as_me 4.2.8p7, which was
+It was created by ntp $as_me 4.2.8p8, which was
 generated by GNU Autoconf 2.69.  Invocation command line was
 
   $ $0 $@
@@ -3755,7 +3755,7 @@ fi
 
 # Define the identity of the package.
  PACKAGE='ntp'
- VERSION='4.2.8p7'

*** DIFF OUTPUT TRUNCATED AT 1000 LINES ***