article.xml revision 304930
1<?xml version="1.0" encoding="iso-8859-1"?> 2<!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook XML V5.0-Based Extension//EN" 3 "../../../share/xml/freebsd50.dtd" [ 4<!ENTITY % release PUBLIC "-//FreeBSD//ENTITIES Release Specification//EN" "release.ent"> 5 %release; 6<!ENTITY % sponsor PUBLIC "-//FreeBSD//ENTITIES Sponsor Specification//EN" "sponsor.ent"> 7 %sponsor; 8<!ENTITY % vendor PUBLIC "-//FreeBSD//ENTITIES Vendor Specification//EN" "vendor.ent"> 9 %vendor; 10<!ENTITY security SYSTEM "../../share/xml/security.xml"> 11<!ENTITY errata SYSTEM "../../share/xml/errata.xml"> 12]> 13<article xmlns="http://docbook.org/ns/docbook" 14 xmlns:xlink="http://www.w3.org/1999/xlink" version="5.0"> 15 16 <info> 17 <title>&os; &release.current; Release Notes</title> 18 19 <author> 20 <orgname>The &os; Project</orgname> 21 </author> 22 23 <pubdate>$FreeBSD: stable/11/release/doc/en_US.ISO8859-1/relnotes/article.xml 304930 2016-08-28 00:21:24Z skreuzer $</pubdate> 24 25 <!-- Last rev: 288943 --> 26 27 <copyright> 28 <year>2015</year> 29 <year>2016</year> 30 <holder role="mailto:doc@FreeBSD.org">The &os; Documentation 31 Project</holder> 32 </copyright> 33 34 <legalnotice xml:id="trademarks" role="trademarks"> 35 &tm-attrib.freebsd; 36 &tm-attrib.ibm; 37 &tm-attrib.ieee; 38 &tm-attrib.intel; 39 &tm-attrib.sparc; 40 &tm-attrib.general; 41 </legalnotice> 42 43 <abstract> 44 <para>The release notes for &os; &release.current; contain 45 a summary of the changes made to the &os; base system on the 46 &release.branch; development line. This document lists 47 applicable security advisories that were issued since the last 48 release, as well as significant changes to the &os; kernel and 49 userland. Some brief remarks on upgrading are also 50 presented.</para> 51 </abstract> 52 </info> 53 54 <sect1 xml:id="intro"> 55 <title>Introduction</title> 56 57 <para>This document contains the release notes for &os; 58 &release.current;. It describes recently added, changed, or 59 deleted features of &os;. It also provides some notes on 60 upgrading from previous versions of &os;.</para> 61 62 <para releasetype="current">The &release.type; distribution to 63 which these release notes apply represents the latest point 64 along the &release.branch; development branch since 65 &release.branch; was created. Information regarding pre-built, 66 binary &release.type; distributions along this branch can be 67 found at <uri 68 xlink:href="&release.url;">&release.url;</uri>.</para> 69 70 <para releasetype="snapshot">The &release.type; distribution to 71 which these release notes apply represents a point along the 72 &release.branch; development branch between &release.prev; and 73 the future &release.next;. Information regarding pre-built, 74 binary &release.type; distributions along this branch can be 75 found at <uri 76 xlink:href="&release.url;">&release.url;</uri>.</para> 77 78 <para releasetype="release">This distribution of &os; 79 &release.current; is a &release.type; distribution. It can be 80 found at <uri xlink:href="&release.url;">&release.url;</uri> or 81 any of its mirrors. More information on obtaining this (or 82 other) &release.type; distributions of &os; can be found in the 83 <link 84 xlink:href="&url.books.handbook;/mirrors.html"><quote>Obtaining 85 &os;</quote> appendix</link> to the <link 86 xlink:href="&url.books.handbook;/">&os; 87 Handbook</link>.</para> 88 89 <para>All users are encouraged to consult the release errata 90 before installing &os;. The errata document is updated with 91 <quote>late-breaking</quote> information discovered late in the 92 release cycle or after the release. Typically, it contains 93 information on known bugs, security advisories, and corrections 94 to documentation. An up-to-date copy of the errata for &os; 95 &release.current; can be found on the &os; Web site.</para> 96 97 <para>This document describes the most user-visible new or changed 98 features in &os; since &release.prev;. In general, changes 99 described here are unique to the &release.branch; branch unless 100 specifically marked as &merged; features.</para> 101 102 <para>Typical release note items document recent security 103 advisories issued after &release.prev;, new drivers or hardware 104 support, new commands or options, major bug fixes, or 105 contributed software upgrades. They may also list changes to 106 major ports/packages or release engineering practices. Clearly 107 the release notes cannot list every single change made to &os; 108 between releases; this document focuses primarily on security 109 advisories, user-visible changes, and major architectural 110 improvements.</para> 111 </sect1> 112 113 <sect1 xml:id="upgrade"> 114 <title>Upgrading from Previous Releases of &os;</title> 115 116 <para arch="amd64,i386">Binary upgrades between RELEASE versions 117 (and snapshots of the various security branches) are supported 118 using the &man.freebsd-update.8; utility. The binary upgrade 119 procedure will update unmodified userland utilities, as well as 120 unmodified GENERIC kernels distributed as a part of an official 121 &os; release. The &man.freebsd-update.8; utility requires that 122 the host being upgraded have Internet connectivity.</para> 123 124 <para>Source-based upgrades (those based on recompiling the &os; 125 base system from source code) from previous versions are 126 supported, according to the instructions in 127 <filename>/usr/src/UPDATING</filename>.</para> 128 129 <important> 130 <para>Upgrading &os; should only be attempted after backing up 131 <emphasis>all</emphasis> data and configuration files.</para> 132 </important> 133 </sect1> 134 135 <sect1 xml:id="security-errata"> 136 <title>Security and Errata</title> 137 138 <para>This section lists the various Security Advisories and 139 Errata Notices since &release.prev;.</para> 140 141 <sect2 xml:id="security"> 142 <title>Security Advisories</title> 143 144 &security; 145 </sect2> 146 147 <sect2 xml:id="errata"> 148 <title>Errata Notices</title> 149 150 &errata; 151 </sect2> 152 </sect1> 153 154 <sect1 xml:id="userland"> 155 <title>Userland</title> 156 157 <para>This section covers changes and additions to userland 158 applications, contributed software, and system utilities.</para> 159 160 <sect2 xml:id="userland-config"> 161 <title>Userland Configuration Changes</title> 162 163 <para revision="266463">The default &man.newsyslog.conf.5; now 164 includes files in the 165 <filename>/etc/newsyslog.conf.d/</filename> and 166 <filename>/usr/local/etc/newsyslog.conf.d/</filename> 167 directories by default for &man.newsyslog.8;.</para> 168 169 <para revision="270675">The &man.mailwrapper.8; utility has been 170 updated to use &man.mailer.conf.5; from the 171 <literal>LOCALBASE</literal> environment variable, which 172 defaults to <filename class="directory">/usr/local</filename> 173 if unset.</para> 174 175 <para revision="272350">The <literal>MK_ARM_EABI</literal> 176 &man.src.conf.5; option has been removed.</para> 177 178 <para revision="302177">The <literal>WITH_SYSTEM_COMPILER</literal> 179 &man.src.conf.5; option is enabled by default.</para> 180 181 <para revision="301247">The <application>ntp</application> suite 182 has been updated to version 4.2.8p8.</para> 183 184 <para revision="301247">The 185 <filename>/etc/ntp/leap-seconds</filename> 186 has been updated to version 3676752000.</para> 187 </sect2> 188 189 <sect2 xml:id="userland-programs"> 190 <title>Userland Application Changes</title> 191 192 <para revision="260594">When unable to load a kernel module with 193 &man.kldload.8;, a message informing to view output of 194 &man.dmesg.8; is now printed, opposed to the previous output 195 <quote>Exec format error.</quote>.</para> 196 197 <para revision="260910">Allow &man.pciconf.8; to identify PCI 198 devices that are attached to a driver to be identified by 199 their device name instead of just the selector. Additionally, 200 an optional device argument to the <literal>-l</literal> flag 201 to restrict the output to only listing details about a single 202 device.</para> 203 204 <para revision="260926">Support for displaying VPD for PCI 205 devices via &man.pciconf.8; has been added.</para> 206 207 <para revision="270745">The &man.ps.1; utility has been updated 208 to include a new keyword, <quote>tracer</quote>, which 209 displays the <acronym>PID</acronym> of the tracing 210 process.</para> 211 212 <para revision="271482">Support for adding empty partitions has 213 been added to the &man.mkimg.1; utility.</para> 214 215 <para revision="272166">The &man.primes.6; utility has been 216 updated to correctly enumerate prime numbers between 217 <literal>4295098369</literal> and 218 <literal>3825123056546413050</literal>, which prior to this 219 change, it would be possible for returned values to be 220 incorrectly identified as prime numbers.</para> 221 222 <para revision="272198">The &man.mkimg.1; utility has been 223 updated to include three options used to print information 224 about &man.mkimg.1; itself:</para> 225 226 <informaltable frame="none" pgwide="0"> 227 <tgroup cols="2"> 228 <colspec colwidth="1*"/> 229 <colspec colwidth="1*"/> 230 <thead> 231 <row> 232 <entry>Option</entry> 233 <entry>Output</entry> 234 </row> 235 </thead> 236 237 <tbody> 238 <row> 239 <entry><literal>--version</literal></entry> 240 <entry>The current version of the &man.mkimg.1; 241 utility</entry> 242 </row> 243 244 <row> 245 <entry><literal>--formats</literal></entry> 246 <entry>The disk image file formats supported by 247 &man.mkimg.1;</entry> 248 </row> 249 250 <row> 251 <entry><literal>--schemes</literal></entry> 252 <entry>The partition schemes supported by 253 &man.mkimg.1;</entry> 254 </row> 255 </tbody> 256 </tgroup> 257 </informaltable> 258 259 <para revision="272488">Userland &man.ctf.5; support in 260 &man.dtrace.1; has been added. With this change, 261 &man.dtrace.1; is able to resolve type info for function and 262 <acronym>USDT</acronym> probe arguments, and function return 263 values.</para> 264 265 <para revision="274960">The &man.elfdump.1; utility has been 266 updated to support capability mode provided by 267 &man.capsicum.4;.</para> 268 269 <para revision="275680" contrib="sponsor" sponsor="&ff;">The 270 &man.fstyp.8; utility has been added, which is used to 271 determine the filesystem on a specified device.</para> 272 273 <para revision="276881">The <literal>libedit</literal> library 274 has been updated to support <acronym>UTF</acronym>-8, which 275 additionally provides unicode support to &man.sh.1;.</para> 276 277 <para revision="276893" contrib="sponsor" sponsor="&ff;">The 278 &man.mkimg.1; utility has been updated to support the 279 <acronym>MBR</acronym> <acronym>EFI</acronym> partition 280 type.</para> 281 282 <para revision="277166" arch="powerpc">The &man.ptrace.2; system 283 call has been updated include support for Altivec registers on 284 &os;/&arch.powerpc;.</para> 285 286 <para revision="278320">A new device control utility, 287 &man.devctl.8; has been added, which allows making 288 administrative changes to individual devices, such as 289 attaching and detaching drivers, and enabling and disabling 290 devices. The &man.devctl.8; utility uses the new 291 &man.devctl.3; library.</para> 292 293 <para revision="279122" contrib="sponsor" 294 sponsor="&juniper;">The &man.netstat.1; utility has been 295 updated to link against the &man.libxo.3; shared 296 library.</para> 297 298 <para revision="279139">A new flag, <literal>-c</literal>, has 299 been added to the &man.mkimg.1; utility, which allows 300 specifying the capacity of the target disk image.</para> 301 302 <para revision="279315" contrib="sponsor" sponsor="&ff;">The 303 &man.uefisign.8; utility has been added.</para> 304 305 <para revision="279571" contrib="sponsor" 306 sponsor="&scaleengine;">The &man.freebsd-update.8; utility has 307 been updated to prevent fetching updated binary patches when 308 a previous upgrade has not been thoroughly completed.</para> 309 310 <para revision="280870">A regression in the &man.libarchive.3; 311 library that would prevent a directory from being included in 312 the archive when <literal>--one-file-system</literal> is used 313 has been fixed.</para> 314 315 <para revision="281311" contrib="sponsor" sponsor="&ff;">The 316 &man.ar.1; utility has been updated to set 317 <literal>ARCHIVE_EXTRACT_SECURE_SYMLINKS</literal> and 318 <literal>ARCHIVE_EXTRACT_SECURE_NODOTDOT</literal> to disallow 319 directory traversal when extracting an archive, similar to 320 &man.tar.1;.</para> 321 322 <para revision="281617">A race condition in &man.wc.1; that 323 would cause final results to be sent to &man.stderr.4; when 324 receiving the <literal>SIGINFO</literal> signal has been 325 fixed.</para> 326 327 <para revision="282208" contrib="sponsor" 328 sponsor="&multiplay;">The &man.chflags.1;, &man.chgrp.1;, 329 &man.chmod.1;, and &man.chown.8; utilities now affect symbolic 330 links when the <literal>-R</literal> flag is specified, as 331 documented in &man.symlink.7;.</para> 332 333 <para revision="282608">The &man.date.1; utility has been 334 updated to print the modification time of the file passed as 335 an argument to the <literal>-r</literal> flag, improving 336 compatibility with the <acronym>GNU</acronym> &man.date.1; 337 utility behavior.</para> 338 339 <para revision="283961">The &man.pw.8; utility has been updated 340 with a new flag, <literal>-R</literal>, that sets the root 341 directory within which the utility will operate.</para> 342 343 <para revision="284297" contrib="sponsor" 344 sponsor="&clusterhq;">The &man.lockstat.1; utility has been 345 updated with several improvements:</para> 346 347 <itemizedlist> 348 <listitem> 349 <para>Spin locks are now reported as the amount of time 350 spinning, instead of loop iterations.</para> 351 </listitem> 352 353 <listitem> 354 <para>Reader locks are now recognized as adaptive that can 355 spin on &os;.</para> 356 </listitem> 357 358 <listitem> 359 <para>Lock aquisition events for successful reader try-lock 360 events are now reported.</para> 361 </listitem> 362 363 <listitem> 364 <para>Spin and block events are now reported before lock 365 acquisition events.</para> 366 </listitem> 367 </itemizedlist> 368 369 <para revision="284589" contrib="sponsor" 370 sponsor="&scaleengine;">The &man.fstyp.8; utility has been 371 updated to be able to detect &man.zfs.8; and &man.geli.8; 372 filesystems.</para> 373 374 <para revision="284883">The &man.mkimg.1; utility has been 375 updated to include support for <literal>NTFS</literal> 376 filesystems in both <acronym>MBR</acronym> and 377 <acronym>GPT</acronym> partitioning schemes.</para> 378 379 <para revision="285253">The &man.quota.1; utility has been 380 updated to include support for <acronym>IPv6</acronym>.</para> 381 382 <para revision="285420">The &man.jexec.8; utility has been 383 updated to include a new flag, <literal>-l</literal>, which 384 ensures a clean environment in the target jail when used. 385 Additionally, &man.jexec.8; will run a shell within the target 386 jail when run no commands are specified.</para> 387 388 <para revision="285550">The &man.w.1; utility has been updated 389 to display the full IPv6 remote address of the host from which 390 a user is connected.</para> 391 392 <para revision="285685">The &man.jail.8; framework has been 393 updated to allow mounting &man.linprocfs.5; and 394 &man.linsysfs.5; within a jail.</para> 395 396 <para revision="285772" contrib="sponsor" 397 sponsor="&emcisilon;">The &man.patch.1; utility has been 398 updated to include a new option to the <literal>-V</literal> 399 flag, <literal>none</literal>, which disables backup file 400 creation when applying a patch.</para> 401 402 <para revision="286010" contrib="sponsor" sponsor="&ff;">The 403 &man.ar.1; utility now enables deterministic mode 404 (<literal>-D</literal>) by default. This behavior can be 405 disabled by specifying the <literal>-U</literal> flag.</para> 406 407 <para revision="286289" contrib="sponsor" 408 sponsor="&scaleengine;">The &man.xargs.1; utility has been 409 updated to allow specifying <literal>0</literal> as an 410 argument to the <literal>-P</literal> (parallel mode) flag, 411 which allows creating as many concurrent processes as 412 possible.</para> 413 414 <para revision="286795">The &man.patch.1; utility has been 415 updated to remove the automatic checkout feature.</para> 416 417 <para revision="287473" contrib="sponsor" sponsor="&gandi;">A 418 new utility, &man.sesutil.8;, has been added, which is used 419 to manage &man.ses.4; devices.</para> 420 421 <para revision="287522">The &man.pciconf.8; utility has been 422 updated to use the PCI ID database from the <filename 423 role="package">misc/pciids</filename> package, if present, 424 falling back to the PCI ID database in the &os; base 425 system.</para> 426 427 <para revision="287842">By default the &man.ifconfig.8; utility 428 will set the default regulatory domain to <literal>FCC</literal> 429 on wireless interfaces. As a result, newly created wireless 430 interfaces with default settings will have less chances to 431 violate country-specific regulations.</para> 432 </sect2> 433 434 <sect2 xml:id="userland-contrib"> 435 <title>Contributed Software</title> 436 437 <para revision="260445">&man.byacc.1; has been updated to 438 version 20140101.</para> 439 440 <para revision="296633"><application>OpenSSH</application> has 441 been updated to 7.2p2.</para> 442 443 <para revision="303716">SSHv1 support has been removed from 444 <application>OpenSSH</application>.</para> 445 446 <para revision="303719">Support for DSA is disabled by default in 447 <application>OpenSSH</application>.</para> 448 449 <para revision="261344"><application>mdocml</application> has 450 been updated to version 1.12.3.</para> 451 452 <para revision="275718">The <application>binutils</application> 453 suite of utilities has been updated to include upstream 454 patches that add new relocations for &arch.powerpc; 455 support.</para> 456 457 <para revision="292120" contrib="sponsor" sponsor="&ff;">The 458 <application>ELF Tool Chain</application> has been updated to 459 upstream revision r3272.</para> 460 461 <para revision="276551">The <application>texinfo</application> 462 utility and <literal>info</literal> pages were removed from 463 the base system. The <filename 464 role="package">print/texinfo</filename> port should be 465 installed on systems where <literal>info</literal> pages are 466 needed.</para> 467 468 <para revision="276796" contrib="sponsor" sponsor="&ff;">The ELF 469 object manipulation tools 470 <application>addr2line</application>, 471 <application>elfcopy (strip)</application>, 472 <application>nm</application>, 473 <application>readelf</application>, 474 <application>size</application>, and 475 <application>strings</application> were switched to the 476 versions from the ELF Tool Chain project.</para> 477 478 <para revision="276881">The <literal>libedit</literal> library 479 has been updated to include <acronym>UTF-8</acronym> support, 480 adding <acronym>UTF-8</acronym> support to the &man.sh.1; 481 shell.</para> 482 483 <para revision="278433">The &man.xz.1; utility has been updated 484 to support multi-threaded compression.</para> 485 486 <para revision="280932" contrib="sponsor" sponsor="&ff;">The 487 <application>elftoolchain</application> utilities have been 488 updated to version 3179.</para> 489 490 <para revision="291125">The &man.xz.1; utility has been updated 491 to version 5.2.2.</para> 492 493 <para revision="281373">The &man.nvi.1; utility has been updated 494 to version 2.1.3.</para> 495 496 <para revision="281806">The &man.wpa.supplicant.8; and 497 &man.hostapd.8; utilities have been updated to version 498 2.4.</para> 499 500 <para revision="296190" contrib="sponsor" sponsor="&ff;">The 501 &man.resolvconf.8; utility has been updated to version 502 3.7.3.</para> 503 504 <para revision="284254"><application>bmake</application> has 505 been updated to version 20150606.</para> 506 507 <para revision="285229"><application>sendmail</application> has 508 been updated to 8.15.2. Starting with &os; 11.0 and 509 sendmail 8.15, sendmail uses uncompressed IPv6 addresses by 510 default, i.e., they will not contain <quote>::</quote>. For 511 example, instead of <quote>::1</quote>, it will be 512 <quote>0:0:0:0:0:0:0:1</quote>. This permits a zero subnet to 513 have a more specific match, such as different map entries for 514 IPv6:0:0 versus IPv6:0. This change requires that 515 configuration data (including maps, files, classes, custom 516 ruleset, etc.) must use the same format, so make certain such 517 configuration data is upgrading. As a very simple check 518 search for patterns like 'IPv6:[0-9a-fA-F:]*::' and 'IPv6::'. 519 To return to the old behavior, set the m4 option 520 <literal>confUSE_COMPRESSED_IPV6_ADDRESSES</literal> or the cf 521 option <literal>UseCompressedIPv6Addresses</literal>.</para> 522 523 <para revision="285275">The &man.tcpdump.1; utility has been 524 updated to version 4.7.4.</para> 525 526 <para revision="298998"><application>OpenSSL</application> has 527 been updated to version 1.0.2h.</para> 528 529 <para revision="285642" contrib="sponsor" sponsor="&dell;">The 530 &man.ssh.1; utility has been updated to re-implement hostname 531 canonicalization before locating the host in 532 <filename>known_hosts</filename>.</para> 533 534 <para revision="285972">The &man.libarchive.3; library has been 535 updated to properly skip a sparse file entry in a &man.tar.1; 536 file, which would previously produce errors.</para> 537 538 <para revision="286503">The <application>apr</application> 539 library used by &man.svnlite.1; has been updated to version 540 1.5.2.</para> 541 542 <para revision="286505">The <application>serf</application> 543 library used by &man.svnlite.1; has been updated to version 544 1.3.8.</para> 545 546 <para revision="286505">The &man.svnlite.1; utility has been 547 updated to version 1.8.14.</para> 548 549 <para revision="298161">The <application>sqlite3</application> 550 library used by &man.svnlite.1; and &man.kerberos.8; has been 551 updated to version 3.12.1.</para> 552 553 <para revision="286750">Timezone data files have been updated to 554 version 2015f.</para> 555 556 <para revision="287168">The &man.acpi.4; subsystem has been 557 updated to version 20150818.</para> 558 559 <para revision="287917">The &man.unbound.8; utility has been 560 updated to version 1.5.4.</para> 561 562 <para revision="288090">&man.jemalloc.3; has been updated to 563 version 4.0.2.</para> 564 565 <para revision="302221">The &man.file.1; utility has been 566 updated to version 5.28.</para> 567 568 <para revision="288303">The &man.nc.1; utility has been updated 569 to the OpenBSD 5.8 version.</para> 570 571 <para revision="296417"><application>Clang</application> has 572 been updated to version 3.8.0.</para> 573 574 <para revision="296417"><application>LLVM</application> has 575 been updated to version 3.8.0.</para> 576 577 <para revision="296417"><application>LLDB</application> has 578 been updated to version 3.8.0.</para> 579 580 <para revision="296417"><application>libc++</application> has 581 been updated to version 3.8.0.</para> 582 583 <para revision="296417">The 584 <application>compiler_rt</application> utility has been 585 updated to version 3.8.0.</para> 586 587 <para revision="300879"><application>ACPICA</application> has been 588 updated to version 20160527.</para> 589 590 <para revision="292432"><application>OpenBSM</application> has been 591 updated to version 1.2 alpha 4.</para> 592 593 <para revision="298166"><application>libucl</application> has 594 been updated to version 0.8.0.</para> 595 596 <para revision="301169" contrib="sponsor" sponsor="&ff;">The NetBSD 597 Project's &man.libblacklist.3; library and applications 598 have been ported and integrated into the system. Packet 599 filtering support for the &man.pf.4; packet filtering systems 600 has been implemented. The <application>blacklist</application> 601 system provides the <application>blacklistd</application> 602 daemon, the helper script 603 <application>blacklistd-helper</application> to make changes 604 to the running packet filter system and the 605 <application>blacklistctl</application> control program. 606 A selection of system daemons, including: 607 <application>fingerd</application>, 608 <application>ftpd</application>, 609 <application>rlogind</application>, and 610 <application>rshd</application> have been modified to support 611 sending notifications to the <application>blacklistd</application> 612 daemon.</para> 613 614 <para revision="301736" contrib="sponsor" sponsor="&ff;">Support for 615 the &man.ipfw.4; packet filter has been added to the 616 <application>blacklistd-helper</application> script.</para> 617 618 <para revision="301843" contrib="sponsor" sponsor="&ff;">Support for 619 the &man.ipfilter.4; packet filter has been added to the 620 <application>blacklistd-helper</application> script.</para> 621 </sect2> 622 623 <sect2 xml:id="userland-installer"> 624 <title>Installation and Configuration Tools</title> 625 626 <para revision="271539">The &man.bsdinstall.8; partition editor 627 and &man.sade.8; utility have been updated to include native 628 <acronym>ZFS</acronym> support.</para> 629 630 <para revision="272274">The &os; installation utility, 631 &man.bsdinstall.8;, has been updated to set the 632 <literal>canmount</literal> &man.zfs.8; property to 633 <literal>off</literal> for the <filename 634 class="directory">/var</filename> dataset, preventing the 635 contents of directories within <filename 636 class="directory">/var</filename> from conflicting when 637 using multiple boot environments, such as that provided by 638 <filename role="package">sysutils/beadm</filename>.</para> 639 640 <para revision="274394">The &man.bsdconfig.8; utility has been 641 updated to skip the initial &man.tzsetup.8; 642 <acronym>UTC</acronym> versus wall-clock time prompt when run 643 in a virtual machine, determined when the 644 <literal>kern.vm_guest</literal> &man.sysctl.8; is set to 645 <literal>1</literal>.</para> 646 647 <para revision="275874">The &man.bsdinstall.8; utility has been 648 updated to use the new &man.dpv.3; library to display progress 649 when extracting the &os; distributions.</para> 650 651 <para revision="285557" contrib="sponsor" 652 sponsor="&scaleengine;">Support for detecting and implementing 653 aligning partitions on 1Mb boundaries has been added to 654 &man.bsdinstall.8;.</para> 655 656 <para revision="285679" contrib="sponsor" 657 sponsor="&scaleengine;">Support for detecting and implementing 658 a workaround for various laptops and motherboards that do not 659 boot properly from <acronym>GPT</acronym>-partitioned disks 660 has been added to &man.bsdinstall.8;. Additionally, the 661 <literal>active</literal> flag will be set on the partition 662 when needed.</para> 663 664 <para revision="285679" contrib="sponsor" 665 sponsor="&scaleengine;">Support for selecting the partitioning 666 scheme when installing on the <acronym>UFS</acronym> 667 filesystem has been added to &man.bsdinstall.8;.</para> 668 </sect2> 669 670 <sect2 xml:id="userland-rc"> 671 <title><filename class="directory">/etc/rc.d</filename> 672 Scripts</title> 673 674 <para revision="270676">The &man.rc.8; subsystem has been 675 updated to allow configuring services in <filename 676 class="directory">${LOCALBASE}/etc/rc.conf.d/</filename>. 677 If <literal>LOCALBASE</literal> is unset, it defaults to 678 <filename class="directory">/usr/local</filename>.</para> 679 680 <para revision="273955">A new &man.rc.8; script, 681 <filename>growfs</filename>, has been added, which will resize 682 the root filesystem on boot if <filename>/firstboot</filename> 683 exists.</para> 684 685 <para revision="275299">The <filename>mrouted</filename> 686 &man.rc.8; script has been removed from the base system. An 687 equivalent script is available from the <filename 688 role="package">net/mrouted</filename> port.</para> 689 690 <para revision="279463" contrib="sponsor" 691 sponsor="&sandvine;">A new &man.rc.8; script, 692 <filename>iovctl</filename>, has been added, which allows 693 automatically starting the &man.iovctl.8; utility at 694 boot.</para> 695 696 <para revision="287576" contrib="sponsor" 697 sponsor="&scaleengine;">The &man.service.8; utility has been 698 updated to honor entries within <filename 699 class="directory">/etc/rc.conf.d/</filename>.</para> 700 701 </sect2> 702 703 <sect2 xml:id="userland-periodic"> 704 <title><filename class="directory">/etc/periodic</filename> 705 Scripts</title> 706 707 <para revision="271321">The daily &man.periodic.8; script 708 <filename>110.clean-tmps</filename> has been updated to avoid 709 crossing filesystem mount boundaries when cleaning files in 710 <filename class="directory">/tmp</filename>.</para> 711 712 <para revision="277216" contrib="sponsor" sponsor="&ff;">A new 713 &man.periodic.8; script, 714 <filename>510.status-world-kernel</filename>, has been added, 715 which evaluates the running userland and kernel versions from 716 the &man.uname.1; <literal>-U</literal> and 717 <literal>-K</literal> arguments, and prints an error if the 718 system userland and kernel are not in sync.</para> 719 </sect2> 720 721 <sect2 xml:id="userland-libraries"> 722 <title>Runtime Libraries and API</title> 723 724 <para revision="265995">The Blowfish &man.crypt.3; default 725 format has been changed to 726 <literal>$2b$</literal>.</para> 727 728 <para revision="268461">The &man.readline.3; library is now 729 statically linked in software within the base system, and the 730 shared library is no longer installed, allowing the Ports 731 Collection to use a modern version of the library.</para> 732 733 <para revision="272273">The &man.strptime.3; library has been 734 updated to add support for <acronym>POSIX</acronym>-2001 735 features <literal>%U</literal> and 736 <literal>%W</literal>.</para> 737 738 <para revision="272842,272848" contrib="sponsor" 739 sponsor="&ff;">The &man.dl.iterate.phdr.3; library has been 740 changed to always return the path name of the 741 <acronym>ELF</acronym> object in the 742 <literal>dlpi_name</literal> structure member.</para> 743 744 <para revision="273562" contrib="sponsor" 745 sponsor="&juniper;">The &man.libxo.3; library has been 746 imported to the base system.</para> 747 748 <para revision="273806" contrib="sponsor" sponsor="&chelsio;">A 749 userland library for Chelsio Terminator 5 based iWARP cards 750 has been added, allowing userland <acronym>RDMA</acronym> 751 applications to work over compatible 752 <acronym>NIC</acronym>s.</para> 753 754 <para revision="274987">The &man.gpio.3; library has been added, 755 providing a wrapper around the &man.gpio.4; kernel 756 interface.</para> 757 758 <para revision="275800" contrib="sponsor" sponsor="&ff;">The 759 &man.procctl.2; system call has been updated to include 760 a facility for non-&man.init.8; processes to be declared as 761 the reaper of child processes and their decendants.</para> 762 763 <para revision="277610">The <literal>futimens()</literal> and 764 <literal>utimensat()</literal> system calls have been 765 added. See &man.utimensat.2; for more information.</para> 766 767 <para revision="278934">The &man.elf.3; compile-time dependency 768 has been removed from <filename>dtri.o</filename>, which 769 allows adding <application>DTrace</application> probes to 770 userland applications and libraries without also linking 771 against &man.elf.3;.</para> 772 773 <para revision="279186">The &man.setmode.3; function has been 774 updated to consistently set <literal>errno</literal> on 775 failure.</para> 776 777 <para revision="279663">The &man.qsort.3; functions have been 778 updated to be able to handle 32-bit aligned data on 64-bit 779 platforms, also providing a significant improvement in 32-bit 780 workloads.</para> 781 782 <para revision="281130">Several standard include headers have 783 been updated to use of <application>gcc</application> 784 attributes, such as <literal>__result_use_check()</literal>, 785 <literal>__alloc_size()</literal>, and 786 <literal>__nonnull()</literal>.</para> 787 788 <para revision="281845">Support for file verification in 789 <acronym>MAC</acronym> has been added.</para> 790 791 <para revision="282973" contrib="sponsor" sponsor="&ff;">The 792 <literal>libgomp</literal> library is now only built when 793 building <acronym>GCC</acronym> from the base system. An 794 up-to-date version is available in the Ports Collection as 795 <filename 796 role="package">devel/libiomp5-devel</filename>.</para> 797 798 <para revision="282988">The <filename>stdlib.h</filename> and 799 <filename>malloc.h</filename> headers have been updated to 800 make use of the <application>gcc</application> 801 <literal>alloc_align()</literal> attribute.</para> 802 803 <para revision="284483" contrib="sponsor" 804 sponsor="&scaleengine;">The Blowfish &man.crypt.3; library 805 has been updated to support $2y$ hashes.</para> 806 807 <para revision="285277">The &man.execl.3; and &man.execlp.3; 808 library functions have been updated to use the 809 <literal>__sentinel</literal> <application>gcc</application> 810 attribute.</para> 811 </sect2> 812 813 <sect2 xml:id="userland-abi"> 814 <title>ABI Compatibility</title> 815 816 <para revision="271982">The &linux; compatibility version has 817 been updated to <literal>2.6.18</literal>. The 818 <literal>compat.linux.osrelease</literal> &man.sysctl.8; is 819 evaluated when building the <filename 820 role="package">emulators/linux-c6</filename> and related 821 ports.</para> 822 823 <para revision="288669">The stack protector has been upgraded to 824 the "strong" level, elevating the protection against buffer 825 overflows. While this significantly improves the security of 826 the system, extensive testing was done to ensure there are no 827 measurable side effects in performance or 828 functionality.</para> 829 </sect2> 830 </sect1> 831 832 <sect1 xml:id="kernel"> 833 <title>Kernel</title> 834 835 <para>This section covers changes to kernel configurations, system 836 tuning, and system control parameters that are not otherwise 837 categorized.</para> 838 839 <sect2 xml:id="kernel-bugfix"> 840 <title>Kernel Bug Fixes</title> 841 842 <para revision="265876">A kernel bug that inhibited proper 843 functionality of the <literal>dev.cpu.0.freq</literal> 844 &man.sysctl.8; on &intel; processors with Turbo 845 Boost ™ enabled has been fixed.</para> 846 847 <para revision="271697" arch="powerpc">Support for 848 &man.dtrace.1; stack tracing has been fixed for 849 &os;/&arch.powerpc;, using the <literal>trapexit()</literal> 850 and <literal>asttrapexit()</literal> functions instead of 851 checking within addressed kernel space.</para> 852 853 <para revision="271917">A kernel panic triggered when destroying 854 a &man.vnet.9; &man.jail.8; configured with &man.gif.4; has 855 been fixed.</para> 856 857 <para revision="271918">A kernel panic triggered when destroying 858 a &man.vnet.9; &man.jail.8; configured with &man.gre.4; has 859 been fixed.</para> 860 861 <para revision="272089">A bug in &man.ipfw.4; that could 862 potentially lead to a kernel panic when using &man.dummynet.4; 863 at layer 2 has been fixed.</para> 864 865 <para revision="280930" contrib="sponsor" sponsor="&mitail;">The 866 kernel <acronym>RPC</acronym> has been updated to include 867 several enhancements:</para> 868 869 <itemizedlist> 870 <listitem> 871 <para>The 45 MiB limit on requests queued for 872 &man.nfsd.8; threads has been removed.</para> 873 </listitem> 874 875 <listitem> 876 <para>Avoids unnecessary throttling by not deferring 877 accounting for completed requests.</para> 878 </listitem> 879 880 <listitem> 881 <para>Fixes an integer overflow and signedness bugs.</para> 882 </listitem> 883 </itemizedlist> 884 885 <para revision="281261" arch="powerpc">Support for 886 &man.dtrace.1; has been added for the 887 Book-E ™.</para> 888 889 <para revision="287886" contrib="sponsor" 890 sponsor="&multiplay;">The &man.kqueue.2; system call has been 891 updated to handle write events to files larger than 2 892 gigabytes.</para> 893 </sect2> 894 895 <sect2 xml:id="kernel-config"> 896 <title>Kernel Configuration</title> 897 898 <para revision="266531">The <literal>IMAGACT_BINMISC</literal> 899 kernel configuration option has been enabled by default, 900 which enables application execution through emulators, such 901 as <application>Qemu</application>.</para> 902 903 <para revision="268045">The <literal>VT</literal> kernel 904 configuration file has been removed, and the &man.vt.4; 905 driver is included in the <literal>GENERIC</literal> kernel. 906 To enable &man.vt.4;, enter <literal>set kern.vty=vt</literal> 907 at the &man.loader.8; prompt during boot, or add 908 <literal>kern.vty=vt</literal> to &man.loader.conf.5; and 909 reboot the system.</para> 910 911 <para revision="277904">The &man.config.8; utility has been 912 updated to allow using a non-standard <filename 913 class="directory">src/</filename> tree, specified as an 914 argument to the <literal>-s</literal> flag.</para> 915 916 <para revision="277990" arch="powerpc64">The 917 &os;/&arch.powerpc64; kernel now builds as 918 a position-independent executable, allowing the kernel to be 919 loaded into and run from any physical or virtual 920 address.</para> 921 922 <important> 923 <para>This change requires an update to &man.loader.8;. 924 The userland and kernel must be updated before rebooting the 925 system.</para> 926 </important> 927 928 <para revision="278338" arch="arm">A new module for creating 929 <filename>rpi.dtb</filename> has been added for the Raspberry 930 Pi.</para> 931 932 <para revision="278340" arch="arm">The 933 <filename>rpi.dtb</filename> module is now installed to 934 <filename class="directory">/boot/dtb/</filename> by 935 default for the Raspberry Pi system.</para> 936 937 <para revision="279189" contrib="sponsor" sponsor="&ff;" 938 arch="powerpc">Kernel support for Vector-Scalar eXtension 939 (<acronym>VSX</acronym>) found on POWER7 and POWER8 hardware 940 has been added.</para> 941 942 <para revision="279252" contrib="sponsor" sponsor="&ff;" 943 arch="powerpc">The &man.pmap.9; implementation for 64-bit 944 &powerpc; processors has been overhaulded to improve 945 concurrency.</para> 946 947 <para revision="279824" arch="arm">A new module for creating 948 the <filename>dtb</filename> module for AM335x systems has 949 been added.</para> 950 951 <para revision="281495" contrib="sponsor" sponsor="&ff;">The 952 <literal>PAE_TABLES</literal> kernel configuration option has 953 been added for &os;/&arch.i386;, which instructs &man.pmap.9; 954 to use <acronym>PAE</acronym> format for page tables while 955 maintaining a 32-bit physical address size elsewhere in the 956 kernel. The use of this option can enhance application-level 957 security by enabling the creation of <quote>no execute</quote> 958 mappings on modern &arch.i386; processors. Unlike the 959 <literal>PAE</literal> option, <literal>PAE_TABLES</literal> 960 preserves kernel binary interface (<acronym>KBI</acronym>) 961 compatibility with non-<literal>PAE</literal> kernels, 962 allowing non-<literal>PAE</literal> kernel modules and drivers 963 to work with a <literal>PAE_TABLES</literal>-enabled kernel. 964 Additionally, system limits are tuned for 4GB maximum 965 <acronym>RAM</acronym>, avoiding kernel virtual address space 966 (<acronym>KVA</acronym>) exhaustion.</para> 967 968 <para revision="282215">The <literal>SIFTR</literal> kernel 969 configuration has been added, allowing building &man.siftr.4; 970 statically into the kernel.</para> 971 972 <para revision="282731" arch="arm">The &arch.arm; boot loader, 973 <filename>ubldr</filename>, is now relocatable. In addition, 974 <filename>ubldr.bin</filename> is now created during build 975 time, which is a stripped binary with an entry point of 976 <literal>0</literal>, providing the ability to specify the 977 load address by running <literal>go 978 ${loadaddr}</literal> in 979 <literal>u-boot</literal>.</para> 980 981 <para revision="282921" contrib="sponsor" sponsor="&intelcorp;" 982 arch="amd64,i386">The &man.nvd.4; and &man.nvme.4; drivers are 983 now included in the <filename>GENERIC</filename> kernel 984 configuration by default.</para> 985 986 <para revision="283959" contrib="sponsor" 987 sponsor="&limelight;">A new kernel configuration option, 988 <literal>EM_MULTIQUEUE</literal>, has been added which enables 989 multi-queue support in the &man.em.4; driver.</para> 990 991 <note> 992 <para>Multi-queue support in the &man.em.4; driver is not 993 officially supported by &intel;.</para> 994 </note> 995 996 <para revision="285142" contrib="sponsor" 997 sponsor="&netgate;">The <filename>GENERIC</filename> kernel 998 configuration has been updated to include the 999 <literal>IPSEC</literal> option by default.</para> 1000 1001 <para revision="285387" contrib="sponsor" 1002 sponsor="&norse;, &dell;">Initial <acronym>NUMA</acronym> 1003 affinity and policy configuration has been added. See 1004 &man.numactl.1;, and &man.numa.getaffinity.2;, for usage 1005 details.</para> 1006 1007 <para revision="286231">The &man.pms.4; driver has been added 1008 to the <filename>GENERIC</filename> kernel configuration for 1009 supported architectures.</para> 1010 1011 <para revision="287306" arch="arm">The 1012 <filename>CUBIEBOARD2</filename> kernel configuration has been 1013 renamed to <filename>A20</filename>.</para> 1014 1015 <para revision="288176" contrib="sponsor" sponsor="&ff;">Kernel 1016 debugging symbols are now installed to <filename 1017 class="directory">/usr/lib/debug/boot/kernel/</filename>. 1018 To retain the previous behavior, add 1019 <literal>KERN_DEBUGDIR=""</literal> to 1020 &man.src.conf.5;.</para> 1021 1022 <para revision="301565" contrib="sponsor" sponsor="&ff;" 1023 arch="arm64">&arch.arm64; has been switched over to using 1024 <literal>INTRNG</literal> by default.</para> 1025 </sect2> 1026 1027 <sect2 xml:id="kernel-sysctl"> 1028 <title>System Tuning and Controls</title> 1029 1030 <para revision="275140" contrib="sponsor" sponsor="&ff;">The 1031 &man.hwpmc.4; default and maximum callchain depths have been 1032 increased. The default has been increased from 16 to 32, and 1033 the maximum increased from 32 to 128.</para> 1034 1035 <para revision="279361">The <literal>kern.osrelease</literal> 1036 and <literal>kern.osreldate</literal> are now configurable 1037 &man.jail.8; parameters.</para> 1038 1039 <para revision="280308,280949" contrib="sponsor" 1040 sponsor="&ix;, &ff;">The &man.devfs.5; device filesystem has 1041 been changed to update timestamps for read/write operations 1042 using seconds precision. A new &man.sysctl.8;, 1043 <literal>vfs.devfs.dotimes</literal> has been added, which 1044 when set to a non-zero value, enables default precision 1045 timestamps for these operations.</para> 1046 1047 <para revision="282213" contrib="sponsor" sponsor="&ff;">A new 1048 &man.sysctl.8;, <literal>kern.racct.enable</literal>, has been 1049 added, which when set to a non-zero value allows using 1050 &man.rctl.8; with the <literal>GENERIC</literal> kernel. 1051 A new kernel configuration option, 1052 <literal>RACCT_DISABLED</literal> has also been added.</para> 1053 1054 <para revision="282901" contrib="sponsor" sponsor="&ff;">The 1055 <literal>GENERIC</literal> kernel configuration now includes 1056 <literal>RACCT</literal> and <literal>RCTL</literal> by 1057 default.</para> 1058 1059 <note> 1060 <para>To enable <literal>RACCT</literal> and 1061 <literal>RCTL</literal> on a system using the 1062 <literal>GENERIC</literal> kernel configuration, add 1063 <literal>kern.racct.enable=1</literal> to 1064 &man.loader.conf.5;, and reboot the system.</para> 1065 </note> 1066 1067 <para revision="283136" contrib="sponsor" 1068 sponsor="&limelight;">A new &man.sysctl.8;, 1069 <literal>net.inet.tcp.hostcache.purgenow</literal>, has 1070 been added, which when set to <literal>1</literal> during 1071 runtime will flush all 1072 <literal>net.inet.tcp.hostcache</literal> entries.</para> 1073 1074 <para revision="285524">A new &man.sysctl.8;, 1075 <literal>hw.model</literal>, has been added, which displays 1076 <acronym>CPU</acronym> model information.</para> 1077 1078 <para revision="286591">The &man.uart.4; driver has been 1079 updated to allow tuning pulses per second captured in the 1080 CTS line during runtime, whereas previously only the DCD line 1081 could be used without rebuilding the kernel.</para> 1082 </sect2> 1083 </sect1> 1084 1085 <sect1 xml:id="drivers"> 1086 <title>Devices and Drivers</title> 1087 1088 <para>This section covers changes and additions to devices and 1089 device drivers since &release.prev;.</para> 1090 1091 <sect2 xml:id="drivers-device"> 1092 <title>Device Drivers</title> 1093 1094 <para revision="260903">Support for GPS ports has been added to 1095 &man.uhso.4;.</para> 1096 1097 <para revision="265132">The &man.full.4; device has been added, 1098 and the <literal>lindev(4)</literal> device has been removed. 1099 Prior to this change, <literal>lindev(4)</literal> provided 1100 only the <filename>/dev/full</filename> character device, 1101 returning <literal>ENOSPC</literal> on write attempts. As 1102 this device is not specific to &linux;, a native &os; version 1103 has been added.</para> 1104 1105 <para revision="271705">Hardware context support has been 1106 added to the <literal>drm/i915</literal> driver, adding 1107 support for <application>Mesa</application> 9.2 and 1108 later.</para> 1109 1110 <para revision="273178">The &man.vt.4; driver has been updated, 1111 replacing the bitmapped <literal>kern.vt.spclkeys</literal> 1112 &man.sysctl.8; with individual 1113 <literal>kern.vt.kbd_*</literal> variants.</para> 1114 1115 <para revision="273598">The &man.hpet.4; driver has been updated 1116 to create a 1117 <filename>/dev/hpet<replaceable>N</replaceable></filename> 1118 device, providing access to <acronym>HPET</acronym> from 1119 userspace.</para> 1120 1121 <para revision="280183">The <literal>drm</literal> code has 1122 been updated to match &linux; version 3.8.13.</para> 1123 1124 <para revision="281440">The &man.psm.4; driver has been updated 1125 to include improved support for newer Synaptics ® 1126 touchpads and the ClickPad ® mouse on newer 1127 Lenovo ™ laptops.</para> 1128 1129 <para revision="282783" arch="powerpc">Support for the Freescale 1130 <acronym>PCI</acronym> Root Complex device has been 1131 added.</para> 1132 1133 <para revision="285876">The &man.cyapa.4; driver has been added, 1134 supporting the Cypress APA I2C trackpad.</para> 1135 1136 <para revision="285883">The &man.isl.4; driver has been added, 1137 supporting the Intersil I2C ISL29018 digital ambient light 1138 sensor.</para> 1139 </sect2> 1140 1141 <sect2 xml:id="drivers-storage"> 1142 <title>Storage Drivers</title> 1143 1144 <para revision="265236" contrib="sponsor" 1145 sponsor="&lsi;, &spectralogic;" sponsorurl="">The &man.mpr.4; 1146 device has been added, providing support for LSI Fusion-MPT 1147 3 12Gb SCSI/SATA controllers.</para> 1148 1149 <para revision="265555" contrib="sponsor" 1150 sponsor="&lsi;">The &man.mrsas.4; driver has been added, 1151 providing support for LSI MegaRAID SAS controllers. The 1152 &man.mfi.4; driver will attach to the controller, by default. 1153 To enable &man.mrsas.4; add 1154 <literal>hw.mfi.mrsas_enable=1</literal> to 1155 <filename>/boot/loader.conf</filename>, which turns off 1156 &man.mfi.4; device probing.</para> 1157 1158 <note> 1159 <para>At this time, the &man.mfiutil.8; utility and the &os; 1160 version of <application>MegaCLI</application> and 1161 <application>StorCli</application> do not work with 1162 &man.mrsas.4;.</para> 1163 </note> 1164 1165 <para revision="275461" contrib="sponsor" sponsor="&ix;">The 1166 &man.ctl.4; subsystem has been updated, increasing the ports 1167 limit from <literal>128</literal> to <literal>256</literal>, 1168 and <acronym>LUN</acronym> limit from <literal>256</literal> 1169 to <literal>1024</literal>.</para> 1170 1171 <para revision="276526">The <literal>asr(4)</literal> driver has 1172 been removed, and is no longer supported.</para> 1173 1174 <para revision="281387">The &man.hptnr.4; driver has been 1175 updated to version 1.1.1.</para> 1176 1177 <para revision="285662">The &man.pms.4; driver has been added, 1178 providing support for the PMC Sierra line of 1179 <acronym>SAS</acronym>/<acronym>SATA</acronym> host bus 1180 adapters.</para> 1181 1182 <para revision="287117" contrib="sponsor" 1183 sponsor="&emcisilon;">The &man.ioat.4; driver has been added, 1184 providing support for the <acronym>PSE</acronym> (Platform 1185 Storage Extension).</para> 1186 1187 <para revision="287621" contrib="sponsor" sponsor="&ix;">The 1188 <acronym>CTL</acronym> High Availability implementation has 1189 been rewritten.</para> 1190 1191 <para revision="288310">The &man.ctl.4; driver has been updated 1192 to support CD-ROM and removable devices.</para> 1193 1194 <para contrib="sponsor" sponsor="&ix;">The &man.isp.4; driver has 1195 been updated and improved: added support for 16Gbps FC cards, 1196 improved target mode support, completed Multi-ID (NPIV) 1197 functionality.</para> 1198 </sect2> 1199 1200 <sect2 xml:id="drivers-network"> 1201 <title>Network Drivers</title> 1202 1203 <para revision="258830">Support for Broadcom chipsets BCM57764, 1204 BCM57767, BCM57782, BCM57786 and BCM57787 has been added to 1205 &man.bge.4;.</para> 1206 1207 <para revision="260448">Support for the &intel; Centrino™ 1208 Wireless-N 135 chipset has been added.</para> 1209 1210 <para revision="260552">Firmware for &intel; Centrino™ 1211 Wireless-N 105 devices has been added to the base 1212 system.</para> 1213 1214 <para revision="261975">The deprecated nve(4) driver has been 1215 removed. Users of NVIDIA nForce MCP network adapters are 1216 advised to use the &man.nfe.4; driver instead, which has been 1217 the default driver for this hardware since 1218 &os; 7.0.</para> 1219 1220 <para revision="264601" contrib="sponsor" 1221 sponsor="&darpa_afrl;">The <literal>if_nf10bmac(4)</literal> 1222 device has been added, providing support for NetFPGA-10G 1223 Embedded CPU Ethernet Core.</para> 1224 1225 <note> 1226 <para>The <literal>if_nf10bmac(4)</literal> driver operates on 1227 the FPGA, and is not suited for the PCI host 1228 interface.</para> 1229 </note> 1230 1231 <para revision="265348" contrib="sponsor" 1232 sponsor="&netgate;">The &man.ath.hal.4; driver has been 1233 updated to support the Atheros AR1111 chipset.</para> 1234 1235 <para revision="266770">Support for the &intel; Centrino™ 1236 Wireless-N 105 chipset has been added.</para> 1237 1238 <para revision="266757" contrib="sponsor" 1239 sponsor="&chelsio;">Support for the &man.cxgbe.4; Terminator 1240 5 (T5) 10G/40G cards has been added to &man.netmap.4;.</para> 1241 1242 <para revision="272730">The &man.alc.4; driver has been updated 1243 to support AR816x and AR817x ethernet controllers.</para> 1244 1245 <para revision="272906">The &man.pf.4; packet filter default 1246 hash has been changed from <literal>Jenkins</literal> to 1247 <literal>Murmur3</literal>, providing a 3-percent performance 1248 increase in packets-per-second.</para> 1249 1250 <para revision="273331">The &man.vxlan.4; driver has been added, 1251 which creates a virtual Layer 2 (Ethernet) network overlaid in 1252 a Layer 3 (IP/UDP) network. The &man.vxlan.4; driver is 1253 analogous to &man.vlan.4;, but is designed to be better suited 1254 for large, multiple-tenant datacenter environments.</para> 1255 1256 <para revision="274246" contrib="sponsor" sponsor="&yandex;">The 1257 &man.gre.4; driver has been significantly overhauled, and has 1258 been split into two separate modules, &man.gre.4; and 1259 &man.me.4;.</para> 1260 1261 <para revision="278551">The &man.ral.4; driver has been updated 1262 to support the RT5390 and RT5392 chipsets.</para> 1263 1264 <para revision="283514" contrib="sponsor" 1265 sponsor="&solarflare;">The &man.sfxge.4; driver has been 1266 updated to support Solarflare Flareon Ultra 7000-series 1267 chipsets.</para> 1268 1269 <para revision="283766" contrib="sponsor" 1270 sponsor="&limelight;">The &man.em.4; driver has been updated 1271 with improved transmission queue hang detection.</para> 1272 1273 <para revision="284125">The &man.cdce.4; driver has been updated 1274 to include support for the RTL8153 chipset.</para> 1275 1276 <para revision="286441">The &man.iwm.4; driver has been imported 1277 from OpenBSD, providing support for &intel; 3160/7260/7265 1278 wireless chipsets.</para> 1279 1280 <para revision="286829" contrib="sponsor" 1281 sponsor="&limelight;">The &man.em.4; driver has been updated 1282 to allow disabling <acronym>CRC</acronym> stripping.</para> 1283 1284 <para revision="287222">The &man.pf.4; implementation has been 1285 updated to remove support for the <literal>scrub fragment 1286 crop|drop-ovl</literal> filtering rule. Systems with this 1287 rule in &man.pf.conf.5; will implicitly be converted to the 1288 <literal>scrub fragment reassemble</literal> filtering rule, 1289 without necessary intervention.</para> 1290 1291 <para revision="288654">The &man.lagg.4; driver has been updated 1292 to remove support for the <literal>fec</literal> 1293 protocol.</para> 1294 </sect2> 1295 </sect1> 1296 1297 <sect1 xml:id="hardware"> 1298 <title>Hardware Support</title> 1299 1300 <para>This section covers general hardware support for physical 1301 machines, hypervisors, and virtualization environments, as well 1302 as hardware changes and updates that do not otherwise fit in 1303 other sections of this document.</para> 1304 1305 <sect2 xml:id="hardware-support"> 1306 <title>Hardware Support</title> 1307 1308 <para revision="299142">Native PCI-express HotPlug 1309 support is enabled by default on &arch.amd64;, &arch.arm64; and 1310 &arch.powerpc;</para> 1311 1312 <para revision="304246">PCI-express HotPlug support has been 1313 enabled for slots with power controllers</para> 1314 1315 <para revision="268303">The &man.asmc.4; driver has been 1316 updated to support the &apple; MacMini 3,1.</para> 1317 1318 <para revision="268351">Support for &os;/ia64 has been dropped 1319 as of &os; 11.</para> 1320 1321 <para revision="274386">An issue that could cause a system to 1322 hang when entering <acronym>ACPI</acronym> 1323 <literal>S3</literal> state (suspend to 1324 <acronym>RAM</acronym>) has been corrected in the &man.acpi.4; 1325 and &man.pci.4; drivers.</para> 1326 1327 <para revision="274733" arch="powerpc">The power management unit 1328 subsystem has been updated to support power button events on 1329 certain &arch.powerpc; hardware, such as aluminum 1330 PowerBook ®.</para> 1331 1332 <para revision="275171,275190" arch="powerpc">The &man.hwpmc.4; 1333 driver has been updated to correct performance counter 1334 sampling on G4 (MPC74xxx) and G5 class processors.</para> 1335 1336 <para revision="275732" contrib="sponsor" 1337 sponsor="&ff;,&netgate;">The 1338 <application>OpenCrypto</application> framework has been 1339 updated to include <literal>AES-ICM</literal> and 1340 <literal>AES-GCM</literal> modes, both of which have also been 1341 added to the &man.aesni.4; driver.</para> 1342 1343 <para revision="281713" arch="powerpc">The &man.hwpmc.4; 1344 driver has been updated to support the Freescale e500 1345 core.</para> 1346 1347 <para revision="283766">The &man.ig4.4; driver has been added, 1348 providing support for the fourth generation &intel; 1349 <acronym>I2C</acronym> SMBus.</para> 1350 1351 <para>The &man.uart.4; driver has been updated to support 1352 <acronym>AMT</acronym> devices on newer systems.</para> 1353 1354 <para revision="285316" contrib="sponsor" sponsor="&ff;" 1355 arch="arm64">Initial <acronym>SMP</acronym> support has been 1356 added to the &os;/&arch.arm64; port.</para> 1357 </sect2> 1358 1359 <sect2 xml:id="hardware-virtualization"> 1360 <title>Virtualization Support</title> 1361 1362 <para revision="260410">Support for the <quote>Virtual Interrupt 1363 Delivery</quote> feature of &intel; VT-x is enabled if 1364 supported by the CPU. This feature can be disabled by running 1365 <literal>sysctl hw.vmm.vmx.use_apic_vid=0</literal>. 1366 Additionally, to persist this setting across reboots, add 1367 <literal>hw.vmm.vmx.use_apic_vid=0</literal> to 1368 <filename>/etc/sysctl.conf</filename>.</para> 1369 1370 <para revision="260532">Support for <quote>Posted Interrupt 1371 Processing</quote> is enabled if supported by the CPU. This 1372 feature can be disabled by running <literal>sysctl 1373 hw.vmm.vmx.use_apic_pir=0</literal>. Additionally, to 1374 persist this setting across reboots, add 1375 <literal>hw.vmm.vmx.use_apic_pir=0</literal> to 1376 <filename>/etc/sysctl.conf</filename>.</para> 1377 1378 <para revision="260582">Unmapped IO support has been added to 1379 &man.virtio_blk.4;.</para> 1380 1381 <para revision="260583">Unmapped IO support has been added to 1382 &man.virtio_scsi.4;.</para> 1383 1384 <para revision="260847">The &man.virtio_random.4; driver has 1385 been added to harvest entropy from the host system.</para> 1386 1387 <para revision="261504">&os;/&arch.i386; guests can be run under 1388 bhyve.</para> 1389 1390 <para revision="267536" contrib="sponsor" 1391 sponsor="&citrix.rd;">Support for running a &os;/&arch.amd64; 1392 <application>Xen</application> guest instance as 1393 <acronym>PVH</acronym> guest has been added. 1394 <acronym>PVH</acronym> mode, short for <quote>Para-Virtualized 1395 Hardware</quote>, uses para-virtualized drivers for boot and 1396 I/O, and uses hardware virtualization extensions for all other 1397 tasks, without the need for emulation.</para> 1398 1399 <para revision="273375">The &man.bhyve.8; hypervisor has been 1400 updated to support &amd; processors with 1401 <acronym>SVM</acronym> and <acronym>AMD-V</acronym> hardware 1402 extensions.</para> 1403 1404 <para revision="273515">The &man.virtio.console.4; driver has 1405 been added, which provides an interface to VirtIO console 1406 devices through a &man.tty.4; device.</para> 1407 1408 <para revision="279957">The &man.bhyve.8; hypervisor has been 1409 updated to support <literal>DSM TRIM</literal> commands for 1410 virtual <acronym>AHCI</acronym> disks.</para> 1411 1412 <para revision="302332">Native graphics support has been added to 1413 the &man.bhyve.8; hypervisor.</para> 1414 1415 <para revision="281439" arch="arm">Support for the 1416 <application>QEMU</application> <literal>virt</literal> system 1417 has been added.</para> 1418 1419 <para revision="282212" contrib="sponsor" sponsor="&msostc;">The 1420 Hyper-V™ drivers have been updated with several 1421 enhancements:</para> 1422 1423 <itemizedlist> 1424 <listitem> 1425 <para>The &man.hv.vmbus.4; driver now has multi-channel 1426 support.</para> 1427 </listitem> 1428 1429 <listitem> 1430 <para>The &man.hv.storvsc.4; driver now has scatter/gather 1431 support, in addition to performance improvements.</para> 1432 </listitem> 1433 1434 <listitem> 1435 <para>The &man.hv.kvp.4; driver has received several bug 1436 fixes.</para> 1437 </listitem> 1438 </itemizedlist> 1439 1440 <para revision="282274">Support for &man.xen.4; para-virtualized 1441 <literal>domU</literal> kernels has been removed.</para> 1442 1443 <para revision="284746" contrib="sponsor" sponsor="&msostc;">The 1444 &man.hv.netvsc.4; driver has been updated to support checksum 1445 offloading and <acronym>TSO</acronym>.</para> 1446 1447 <para revision="286062">The &man.xen.4; driver has been updated 1448 to include support for <literal>blkif</literal> indirect 1449 segment I/O.</para> 1450 1451 <para revision="302288">Indirect segment I/O is enabled by default 1452 in the Xen blkfront driver when running on AWS EC2.</para> 1453 </sect2> 1454 1455 <sect2 xml:id="hardware-arm"> 1456 <title>ARM Support</title> 1457 1458 <para revision="260921">The &man.nand.4; device is enabled for 1459 ARM devices by default.</para> 1460 1461 <para revision="266943" arch="arm">Support for the Exynos 5420 1462 Octa system has been added.</para> 1463 1464 <para revision="267390" arch="arm">The <acronym>SMP</acronym> 1465 option has been enabled for all Exynos 5 systems supported by 1466 &os;.</para> 1467 1468 <para revision="268838" arch="arm">Support for the Toradex 1469 Apalis i.MX6 development board has been added.</para> 1470 1471 <para revision="273264" arch="armv6">An issue that could cause 1472 instability when detecting <acronym>SD</acronym> cards on the 1473 Raspberry Pi <acronym>SOC</acronym> has been fixed.</para> 1474 1475 <para revision="275963">The <literal>bcm2835_cpufreq</literal> 1476 driver has been added, which supports <acronym>CPU</acronym> 1477 frequency and voltage control on the Raspberry Pi 1478 <acronym>SOC</acronym>.</para> 1479 1480 <para revision="277042" arch="arm">Support to turn off the 1481 BeagleBone Black system with the &man.shutdown.8; 1482 <literal>-p</literal> flag or by invoking &man.poweroff.8; has 1483 been added.</para> 1484 1485 <para revision="277644" arch="arm">Audio transmission drivers 1486 have been added for Digital Audio Multiplexer 1487 (<acronym>AUDMUXM</acronym>), Smart Direct Memory Access 1488 Controller (<acronym>SDMA</acronym>), and Syncronous Serial 1489 Interface (<acronym>SSI</acronym>).</para> 1490 1491 <para revision="280259" contrib="sponsor" sponsor="&ff;">Initial 1492 support for the ARM AArch64 architecture has been 1493 added.</para> 1494 1495 <para revision="282779" arch="arm">Kernel support for Thumb-2 1496 userland has been added.</para> 1497 1498 <para revision="282827">Support for the hardware power button 1499 on the BeagleBone Black system has been added.</para> 1500 1501 <para revision="284273" contrib="sponsor" 1502 sponsor="&ff;">Initial 1503 <acronym>ACPI</acronym> support has been added for 1504 &os;/&arch.arm64;.</para> 1505 1506 <para revision="287225">Support for 1-Wire devices has been 1507 added, providing support for 1-Wire hardware through 1508 &man.gpio.4;. See &man.ow.4;, &man.owc.4;, and 1509 &man.ow.temp.4; for more information.</para> 1510 1511 <para revision="287371" arch="arm64" contrib="sponsor" 1512 sponsor="&abt;">Support for the HiSilicon HI6220 SoC has been 1513 added.</para> 1514 1515 <para revision="263698" arch="arm">The second CPU core on 1516 Allwinner A20 SoC have been enabled.</para> 1517 1518 <para revision="299688" arch="arm">Support for the Allwinner H3 SoC 1519 has been added.</para> 1520 1521 <para revision="299786" arch="arm">Support for X-Powers AXP813 and 1522 AXP818 power management integrated circuits have been added.</para> 1523 1524 <para revision="300777" arch="arm">Support for GPIO, Sensors and 1525 interrupts on AXP209 power management integrated circuits have been 1526 added.</para> 1527 1528 <para revision="299781" arch="arm">Support for the Allwinner 1529 Reduced Serial Bus (RSB) has been added.</para> 1530 1531 <para revision="296064" arch="arm">Support for Allwinner A20 HDMI 1532 has been added.</para> 1533 </sect2> 1534 </sect1> 1535 1536 <sect1 xml:id="storage"> 1537 <title>Storage</title> 1538 1539 <para>This section covers changes and additions to file systems 1540 and other storage subsystems, both local and networked.</para> 1541 1542 <sect2 xml:id="storage-general"> 1543 <title>General Storage</title> 1544 1545 <para revision="278037" contrib="sponsor" sponsor="&ix;">The 1546 &man.ctl.4; <acronym>LUN</acronym> mapping has been rewritten, 1547 replacing <acronym>iSCSI</acronym>-specific mapping mechanisms 1548 with a new mechanism that works for any port.</para> 1549 1550 <para revision="278354" contrib="sponsor" sponsor="&ix;">The 1551 &man.ctld.8; utility has been updated to allow controlling 1552 non-<acronym>iSCSI</acronym> &man.ctl.4; ports.</para> 1553 1554 <para revision="295212" contrib="sponsor" sponsor="&ix;">Support 1555 for parsing libucl-based configuration files has been added to 1556 &man.ctld.8;.</para> 1557 1558 <para revision="275681" contrib="sponsor" sponsor="&ff;">The 1559 &man.autofs.5; subsystem has been updated to include a new 1560 &man.auto.master.5; map, <literal>-media</literal>, which 1561 allows automatically mounting removable media, such as 1562 <acronym>CD</acronym> drives or <acronym>USB</acronym> flash 1563 drives.</para> 1564 1565 <para revision="279955" contrib="sponsor" sponsor="&ff;">The 1566 &man.autofs.5; subsystem has been updated to include a new 1567 &man.auto.master.5; map, <literal>-noauto</literal>, which 1568 handles &man.fstab.5; entries set to 1569 <literal>noauto</literal>.</para> 1570 1571 <para revision="286444">The <acronym>GELI</acronym> class has 1572 been updated to support the <literal>BIO_DELETE</literal> 1573 &man.g.bio.9; <literal>bio_cmd</literal> field, providing 1574 <acronym>TRIM</acronym>/<acronym>UNMAP</acronym> support on 1575 <acronym>GELI</acronym>-backed <acronym>SSD</acronym> storage 1576 providers.</para> 1577 1578 <para revision="300880" contrib="sponsor" sponsor="&spectralogic;"> 1579 Leading spaces are now stripped off <acronym>SCSI</acronym> disk serial 1580 numbers when populating the CAM serial number. This affects the output of 1581 &man.diskinfo.8; and the names of <filename>/dev/diskid/DISK-*</filename> 1582 device nodes, among other things.</para> 1583 1584 <para revision="300207" contrib="sponsor" sponsor="&spectralogic;"> 1585 Support for managing Shingled Magnetic Recording (SMR) drives 1586 has been added.</para> 1587 1588 <para revision="299371" contrib="sponsor" sponsor="&ff;">The 1589 &man.camcontrol.8; command can manually force updating capacity 1590 data after a disk gets resized using the reprobe subcommand.</para> 1591 </sect2> 1592 1593 <sect2 xml:id="storage-net"> 1594 <title>Networked Storage</title> 1595 1596 <para revision="270096" contrib="sponsor" sponsor="&ff;">The new 1597 filesystem automount facility, &man.autofs.5;, has been added. 1598 The new &man.autofs.5; facility is similar to that found in 1599 other &unix;-like operating systems, such as OS X™ 1600 and Solaris™. The &man.autofs.5; facility uses 1601 a &sun;-compatible &man.auto.master.5; configuration file, and 1602 is administered with the &man.automount.8; userland utility, 1603 and the &man.automountd.8; and &man.autounmountd.8; 1604 daemons.</para> 1605 1606 <para revision="273849" contrib="sponsor" sponsor="&ff;">Support 1607 for the <literal>timeo</literal>, <literal>actimeo</literal>, 1608 <literal>noac</literal>, and <literal>proto</literal> options 1609 have been added to &man.mount.nfs.8;.</para> 1610 1611 <para revision="300723">The Mellanox implementation of iSER (iSCSI 1612 Extensions for RDMA) has been imported.</para> 1613 1614 <para revision="301033">The ability to discover iSCSI targets without 1615 having to attach to a target has been added to the 1616 &man.iscsictl.8; command.</para> 1617 </sect2> 1618 1619 <sect2 xml:id="storage-zfs"> 1620 <title>ZFS</title> 1621 1622 <para revision="275748">The <literal>arc_meta_limit</literal> 1623 statistics are now visible through the 1624 <literal>kstat</literal> &man.sysctl.8;. As a result of this 1625 change, the <literal>vfs.zfs.arc_meta_used</literal> 1626 &man.sysctl.8; has been removed, and replaced with the 1627 <literal>kstat.zfs.misc.arcstats.arc_meta_used</literal> 1628 &man.sysctl.8;.</para> 1629 1630 <para revision="287099" contrib="sponsor" 1631 sponsor="&clusterhq;">The &man.zfs.8; <literal>l2arc</literal> 1632 code has been updated to take <literal>ashift</literal> into 1633 account when gathering buffers to be written to the 1634 <literal>l2arc</literal> device.</para> 1635 1636 <para revision="300906" contrib="sponsor" 1637 sponsor="&ix;, &spectralogic;">The zfsd daemon has been added, 1638 which manages hotspares and replements in drive slots that publish 1639 physical paths.</para> 1640 1641 <para revision="302265" contrib="sponsor" sponsor="&multiplay;">The 1642 minimum and maximum values for the ZFS adaptive replacement 1643 cache can be modified at runtime.</para> 1644 1645 <para revision="297633" contrib="sponsor" sponsor="&ff;">Four new 1646 resources have been added to &man.rctl.8; to allow 1647 throttles to be set on filesystem IO.</para> 1648 </sect2> 1649 1650 <sect2 xml:id="storage-geom"> 1651 <title>&man.geom.4;</title> 1652 1653 <para revision="267359">Support for the 1654 <literal>disklabel64</literal> partitioning scheme has been 1655 added to &man.gpart.8;.</para> 1656 1657 <para revision="282465">Support for the 1658 <literal>apple-boot</literal>, <literal>apple-hfs</literal>, 1659 and <literal>apple-ufs</literal> <acronym>MBR</acronym> 1660 partitioning schemes have been added to &man.gpart.8;.</para> 1661 1662 <para revision="285594" contrib="sponsor" 1663 sponsor="&scaleengine;">The &man.gpart.8; utility has been 1664 updated to include a new attribute for <acronym>GPT</acronym> 1665 partitions, <literal>lenovofix</literal>, which when set, 1666 which works around <acronym>BIOS</acronym> compatibility 1667 issues reported on several Lenovo ™ laptops.</para> 1668 </sect2> 1669 </sect1> 1670 1671 <sect1 xml:id="boot"> 1672 <title>Boot Loader Changes</title> 1673 1674 <para>This section covers the boot loader, boot menu, and other 1675 boot-related changes.</para> 1676 1677 <sect2 xml:id="boot-loader"> 1678 <title>Boot Loader Changes</title> 1679 1680 <para revision="258431" contrib="sponsor" sponsor="&ff;">The 1681 memory test run at boot time on &os;/&arch.amd64; platforms 1682 has been disabled by default.</para> 1683 1684 <para revision="262955">A new &man.ttys.5; class, 1685 <literal>3wire</literal>, has been added. This is similar to 1686 the existing terminal classes, but does not have a defined 1687 baudrate.</para> 1688 1689 <para revision="274085">The &man.vt.4; driver has been made the 1690 default system console driver. The &man.syscons.4; driver is 1691 still available, and can be enabled by adding 1692 <literal>kern.vty=sc</literal> in &man.loader.conf.5;. 1693 Alternatively, &man.syscons.4; can be enabled at boot time by 1694 entering <literal>set kern.vty=sc</literal> at the 1695 &man.loader.8; prompt.</para> 1696 1697 <para revision="279950">Support for <literal>bzipfs</literal> 1698 has been added to the <acronym>EFI</acronym> loader.</para> 1699 1700 <para revision="281616">The boot loader has been updated to 1701 support entering the <acronym>GELI</acronym> passphrase before 1702 loading the kernel. To enable this behavior, add 1703 <literal>geom_eli_passphrase_prompt="YES"</literal> to 1704 &man.loader.conf.5;.</para> 1705 1706 <para revision="284683" contrib="sponsor" sponsor="&ff;" 1707 arch="arm">The &man.ttys.5; file for &os;/&arch.arm; has been 1708 updated to enable <filename>ttyu1</filename>, 1709 <filename>ttyu2</filename>, and <filename>ttyu3</filename> by 1710 default, if the callin port is an active console port.</para> 1711 1712 <para revision="299393">The default installation directory for modules 1713 has been changed to <filename>/boot/modules</filename>.</para> 1714 </sect2> 1715 1716 <sect2 xml:id="boot-menu"> 1717 <title>Boot Menu Changes</title> 1718 1719 <para> </para> 1720 </sect2> 1721 </sect1> 1722 1723 <sect1 xml:id="network"> 1724 <title>Networking</title> 1725 1726 <para>This section describes changes that affect networking in 1727 &os;.</para> 1728 1729 <para revision="301875">The unused <literal>SIOCSIFALIFETIME_IN6</literal> 1730 ioctl has been removed.</para> 1731 1732 <para revision="299848" contrib="sponsor" sponsor="&ff;">Support to 1733 be able to reroot into a NFSv4 volume has been added.</para> 1734 1735 <sect2 xml:id="network-protocols"> 1736 <title>Network Protocols</title> 1737 1738 <para revision="263140">Support for the IPX network transport 1739 protocol has been removed, and will not be supported in 1740 &os; 11 and later releases.</para> 1741 1742 <para revision="272720" contrib="sponsor" 1743 sponsor="&limelight;">Support for <acronym>PLPMTUD</acronym> 1744 blackhole detection (<acronym>RFC</acronym> 4821) has been 1745 added to the &man.tcp.4; stack, disabled by default. New 1746 control tunables have been added:</para> 1747 1748 <informaltable frame="none" pgwide="0"> 1749 <tgroup cols="2"> 1750 <colspec colwidth="1*"/> 1751 <colspec colwidth="1*"/> 1752 <thead> 1753 <row> 1754 <entry>Tunable</entry> 1755 <entry>Description</entry> 1756 </row> 1757 </thead> 1758 1759 <tbody> 1760 <row> 1761 <entry><literal>net.inet.tcp.pmtud_blackhole_detection</literal></entry> 1762 <entry>Enables or disables <acronym>PLPMTUD</acronym> 1763 blackhole detection</entry> 1764 </row> 1765 1766 <row> 1767 <entry><literal>net.inet.tcp.pmtud_blackhole_mss</literal></entry> 1768 <entry><acronym>MSS</acronym> to try for IPv4</entry> 1769 </row> 1770 1771 <row> 1772 <entry><literal>net.inet.tcp.v6pmtud_blackhole_mss</literal></entry> 1773 <entry><acronym>MSS to try for IPv6</acronym></entry> 1774 </row> 1775 </tbody> 1776 </tgroup> 1777 </informaltable> 1778 1779 <para>New monitoring &man.sysctl.8;s haven been added:</para> 1780 1781 <informaltable frame="none" pgwide="0"> 1782 <tgroup cols="2"> 1783 <colspec colwidth="1*"/> 1784 <colspec colwidth="1*"/> 1785 <thead> 1786 <row> 1787 <entry>Tunable</entry> 1788 <entry>Description</entry> 1789 </row> 1790 </thead> 1791 1792 <tbody> 1793 <row> 1794 <entry><literal>net.inet.tcp.pmtud_blackhole_activated</literal></entry> 1795 <entry>Number of times the code was activated to attempt 1796 downshifting the <acronym>MSS</acronym></entry> 1797 </row> 1798 1799 <row> 1800 <entry><literal>net.inet.tcp.pmtud_blackhole_min_activated</literal></entry> 1801 <entry>Number of times the blackhole 1802 <acronym>MSS</acronym> was used in an attempt to 1803 downshift</entry> 1804 </row> 1805 1806 <row> 1807 <entry><literal>net.inet.tcp.pmtud_blackhole_failed</literal></entry> 1808 <entry>Number of times that the blackhole failed to 1809 connect after downshifting the 1810 <acronym>MSS</acronym></entry> 1811 </row> 1812 </tbody> 1813 </tgroup> 1814 </informaltable> 1815 1816 <para revision="280971" contrib="sponsor" 1817 sponsor="&netflix;, &nginx;">Support for <acronym>IP</acronym> 1818 identification for atomic datagrams (<acronym>RFC</acronym> 1819 6864) has been added. Support for this feature can be toggled 1820 with the <literal>net.inet.ip.rfc6864</literal> 1821 &man.sysctl.8;, which is enabled by default.</para> 1822 1823 <para revision="285336" contrib="sponsor" 1824 sponsor="&netgate;">The <acronym>IPSEC</acronym> has been 1825 updated to include support for <acronym>AES</acronym> modes on 1826 both software-only and hardware-backed (&man.aesni.4;) 1827 systems.</para> 1828 1829 <para revision="287798" contrib="sponsor" sponsor="&dell;">The 1830 network stack has been updated to fix handling of 1831 <acronym>IPv6</acronym> On-Link redirects.</para> 1832 1833 <para revision="300240">The net.inet.tcp.ecn.enable sysctl mib has been 1834 changed from a binary off/on control to a three way setting.</para> 1835 1836 <informaltable frame="none" pgwide="0"> 1837 <tgroup cols="2"> 1838 <colspec colwidth="1*"/> 1839 <colspec colwidth="1*"/> 1840 <thead> 1841 <row> 1842 <entry>Value</entry> 1843 <entry>Description</entry> 1844 </row> 1845 </thead> 1846 1847 <tbody> 1848 <row> 1849 <entry><literal>0</literal></entry> 1850 <entry>Totally disable ECN.</entry> 1851 </row> 1852 1853 <row> 1854 <entry><literal>1</literal></entry> 1855 <entry>Enable ECN if incoming connections request it. Outgoing 1856 connections will request ECN.</entry> 1857 </row> 1858 1859 <row> 1860 <entry><literal>2</literal></entry> 1861 <entry>Enable ECN if incoming connections request it. Outgoing 1862 conections will not request ECN.</entry> 1863 </row> 1864 1865 </tbody> 1866 </tgroup> 1867 </informaltable> 1868 1869 <para revision="300779">Dummynet AQM, an independent implementation of 1870 CoDel and FQ-CoDel for ipfw/dummynet has been imported to the base 1871 system.</para> 1872 1873 </sect2> 1874 </sect1> 1875 1876 <sect1 xml:id="ports"> 1877 <title>Ports Collection and Package Infrastructure</title> 1878 1879 <para>This section covers changes to the &os; Ports 1880 Collection, package infrastructure, and package maintenance and 1881 installation tools.</para> 1882 1883 <sect2 xml:id="ports-infrastructure"> 1884 <title>Infrastructure Changes</title> 1885 1886 <para> </para> 1887 </sect2> 1888 1889 <sect2 xml:id="ports-packages "> 1890 <title>Packaging Changes</title> 1891 1892 <para> </para> 1893 </sect2> 1894 </sect1> 1895 1896 <sect1 xml:id="doc"> 1897 <title>Documentation</title> 1898 1899 <para>This section covers changes to the &os; Documentation 1900 Project sources and toolchain.</para> 1901 1902 <sect2 xml:id="doc-sources"> 1903 <title>Documentation Source Changes</title> 1904 1905 <para> </para> 1906 </sect2> 1907 1908 <sect2 xml:id="doc-toolchain"> 1909 <title>Documentation Toolchain Changes</title> 1910 1911 <para> </para> 1912 </sect2> 1913 </sect1> 1914 1915 <sect1 xml:id="releng"> 1916 <title>Release Engineering and Integration</title> 1917 1918 <para>This section convers changes that are specific to the 1919 &os; Release Engineering processes.</para> 1920 1921 <sect2 xml:id="releng-changes"> 1922 <title>Integration Changes</title> 1923 1924 <para revision="277458" contrib="sponsor" sponsor="&ff;">The 1925 Release Engineering build tools have been updated to include 1926 support for producing virtual machine disk images for various 1927 cloud hosting providers.</para> 1928 1929 <para revision="278926">The Release Engineering build tools have 1930 been updated to use multi-threaded &man.xz.1;. By default, 1931 the number of &man.xz.1; threads is set to the number of cores 1932 available.</para> 1933 1934 <para revision="281802" contrib="sponsor" sponsor="&ff;">The 1935 Release Engineering build tools have been updated to include 1936 support for building &os;/&arch.arm64; virtual machine and 1937 memory stick installation images.</para> 1938 1939 <para revision="282693" contrib="sponsor" sponsor="&ff;">The 1940 Release Engineering build tools have been updated to support 1941 building &os;/&arch.arm; images without external utilities for 1942 supported boards where a corresponding 1943 <literal>u-boot</literal> port exists in the Ports 1944 Collection.</para> 1945 1946 <para revision="283307" contrib="sponsor" sponsor="&ff;">The 1947 &os;/&arch.i386; memory stick installation images are now 1948 created using the &man.mkimg.1; utility, matching the way 1949 the &os;/&arch.amd64; images are created.</para> 1950 </sect2> 1951 </sect1> 1952</article> 1953