article.xml revision 319351
1<?xml version="1.0" encoding="iso-8859-1"?> 2<!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook XML V5.0-Based Extension//EN" 3 "../../../share/xml/freebsd50.dtd" [ 4<!ENTITY % release PUBLIC "-//FreeBSD//ENTITIES Release Specification//EN" "release.ent"> 5 %release; 6<!ENTITY % sponsor PUBLIC "-//FreeBSD//ENTITIES Sponsor Specification//EN" "sponsor.ent"> 7 %sponsor; 8<!ENTITY % vendor PUBLIC "-//FreeBSD//ENTITIES Vendor Specification//EN" "vendor.ent"> 9 %vendor; 10<!ENTITY security SYSTEM "../../share/xml/security.xml"> 11<!ENTITY errata SYSTEM "../../share/xml/errata.xml"> 12]> 13<article xmlns="http://docbook.org/ns/docbook" 14 xmlns:xlink="http://www.w3.org/1999/xlink" version="5.0"> 15 16 <info> 17 <title>&os; &release.current; Release Notes</title> 18 19 <author> 20 <orgname>The &os; Project</orgname> 21 </author> 22 23 <pubdate>$FreeBSD: stable/11/release/doc/en_US.ISO8859-1/relnotes/article.xml 319351 2017-05-31 19:26:20Z gjb $</pubdate> 24 25 <!-- Last rev: 288943 --> 26 27 <copyright> 28 <year>2017</year> 29 <holder role="mailto:doc@FreeBSD.org">The &os; Documentation 30 Project</holder> 31 </copyright> 32 33 <legalnotice xml:id="trademarks" role="trademarks"> 34 &tm-attrib.freebsd; 35 &tm-attrib.ibm; 36 &tm-attrib.ieee; 37 &tm-attrib.intel; 38 &tm-attrib.sparc; 39 &tm-attrib.general; 40 </legalnotice> 41 42 <abstract> 43 <para>The release notes for &os; &release.current; contain 44 a summary of the changes made to the &os; base system on the 45 &release.branch; development line. This document lists 46 applicable security advisories that were issued since the last 47 release, as well as significant changes to the &os; kernel and 48 userland. Some brief remarks on upgrading are also 49 presented.</para> 50 </abstract> 51 </info> 52 53 <sect1 xml:id="intro"> 54 <title>Introduction</title> 55 56 <para>This document contains the release notes for &os; 57 &release.current;. It describes recently added, changed, or 58 deleted features of &os;. It also provides some notes on 59 upgrading from previous versions of &os;.</para> 60 61 <para releasetype="current">The &release.type; distribution to 62 which these release notes apply represents the latest point 63 along the &release.branch; development branch since 64 &release.branch; was created. Information regarding pre-built, 65 binary &release.type; distributions along this branch can be 66 found at <uri 67 xlink:href="&release.url;">&release.url;</uri>.</para> 68 69 <para releasetype="snapshot">The &release.type; distribution to 70 which these release notes apply represents a point along the 71 &release.branch; development branch between &release.prev; and 72 the future &release.next;. Information regarding pre-built, 73 binary &release.type; distributions along this branch can be 74 found at <uri 75 xlink:href="&release.url;">&release.url;</uri>.</para> 76 77 <para releasetype="release">This distribution of &os; 78 &release.current; is a &release.type; distribution. It can be 79 found at <uri xlink:href="&release.url;">&release.url;</uri> or 80 any of its mirrors. More information on obtaining this (or 81 other) &release.type; distributions of &os; can be found in the 82 <link 83 xlink:href="&url.books.handbook;/mirrors.html"><quote>Obtaining 84 &os;</quote> appendix</link> to the <link 85 xlink:href="&url.books.handbook;/">&os; 86 Handbook</link>.</para> 87 88 <para>All users are encouraged to consult the release errata 89 before installing &os;. The errata document is updated with 90 <quote>late-breaking</quote> information discovered late in the 91 release cycle or after the release. Typically, it contains 92 information on known bugs, security advisories, and corrections 93 to documentation. An up-to-date copy of the errata for &os; 94 &release.current; can be found on the &os; Web site.</para> 95 96 <para>This document describes the most user-visible new or changed 97 features in &os; since &release.prev;. In general, changes 98 described here are unique to the &release.branch; branch unless 99 specifically marked as &merged; features.</para> 100 101 <para>Typical release note items document recent security 102 advisories issued after &release.prev;, new drivers or hardware 103 support, new commands or options, major bug fixes, or 104 contributed software upgrades. They may also list changes to 105 major ports/packages or release engineering practices. Clearly 106 the release notes cannot list every single change made to &os; 107 between releases; this document focuses primarily on security 108 advisories, user-visible changes, and major architectural 109 improvements.</para> 110 </sect1> 111 112 <sect1 xml:id="upgrade"> 113 <title>Upgrading from Previous Releases of &os;</title> 114 115 <para arch="amd64,i386">Binary upgrades between RELEASE versions 116 (and snapshots of the various security branches) are supported 117 using the &man.freebsd-update.8; utility. The binary upgrade 118 procedure will update unmodified userland utilities, as well as 119 unmodified GENERIC kernels distributed as a part of an official 120 &os; release. The &man.freebsd-update.8; utility requires that 121 the host being upgraded have Internet connectivity.</para> 122 123 <para>Source-based upgrades (those based on recompiling the &os; 124 base system from source code) from previous versions are 125 supported, according to the instructions in 126 <filename>/usr/src/UPDATING</filename>.</para> 127 128 <important> 129 <para>Upgrading &os; should only be attempted after backing up 130 <emphasis>all</emphasis> data and configuration files.</para> 131 </important> 132 </sect1> 133 134 <sect1 xml:id="security-errata"> 135 <title>Security and Errata</title> 136 137 <para>This section lists the various Security Advisories and 138 Errata Notices since &release.prev;.</para> 139 140 <sect2 xml:id="security"> 141 <title>Security Advisories</title> 142 143 &security; 144 </sect2> 145 146 <sect2 xml:id="errata"> 147 <title>Errata Notices</title> 148 149 &errata; 150 </sect2> 151 </sect1> 152 153 <sect1 xml:id="userland"> 154 <title>Userland</title> 155 156 <para>This section covers changes and additions to userland 157 applications, contributed software, and system utilities.</para> 158 159 <sect2 xml:id="userland-config"> 160 <title>Userland Configuration Changes</title> 161 162 <para revision="313203">The &man.inetd.8; utility is now built 163 without <literal>libwrap</literal> support when 164 <literal>WITHOUT_TCP_WRAPPERS</literal> is set in 165 &man.src.conf.5;.</para> 166 167 <para revision="316045">The &man.libthr.3; library and related 168 files are now evaluated and removed by the 169 <literal>delete-old-libs</literal> target when upgrading the 170 system if <literal>WITHOUT_LIBTHR</literal> is 171 set in &man.src.conf.5;.</para> 172 173 <para revision="316423" contrib="sponsor" sponsor="&ff;">The 174 <literal>WITH_LLD_AS_LD</literal> build knob has been added, 175 which installs <application>LLD</application> as 176 <filename>/usr/bin/ld</filename> if set.</para> 177 178 <para revision="318472" contrib="sponsor" sponsor="&ff;"> 179 <application>LLD</application> has been enabled by default and 180 installed as <filename>/usr/bin/ld</filename> on 181 &os;/&arch.arm64;.</para> 182 183 <para revision="319244">The 184 <literal>WITH_RPCBIND_WARMSTART_SUPPORT</literal> 185 &man.src.conf.5; knob has been added, which when enabled 186 allows building &man.rpcbind.8; with 187 <literal>warmstart</literal> support.</para> 188 </sect2> 189 190 <sect2 xml:id="userland-programs"> 191 <title>Userland Application Changes</title> 192 193 <para revision="305476" contrib="sponsor" 194 sponsor="&ff;">Support for &man.blacklistd.8; has been added 195 to <application>OpenSSH</application>.</para> 196 197 <para revision="308720" contrib="sponsor" sponsor="&gandi;">The 198 &man.cron.8; utility has been updated to add support for 199 including files within <filename 200 class="directory">/etc/cron.d</filename> and <filename 201 class="directory">/usr/local/etc/cron.d</filename> by 202 default.</para> 203 204 <para revision="308721" contrib="sponsor" sponsor="&gandi;">The 205 &man.syslogd.8; utility has been updated to add the 206 <literal>include</literal> keyword which allows specifying 207 a directory containing configuration files to be included in 208 addition to &man.syslog.conf.5;. The default 209 &man.syslog.conf.5; has been updated to include <filename 210 class="directory">/etc/syslog.d</filename> and <filename 211 class="directory">/usr/local/etc/syslog.d</filename> by 212 default.</para> 213 214 <para revision="308914">The &man.zfsbootcfg.8; utility has been 215 added, providing one-time &man.boot.config.5;-style options 216 for &man.zfsboot.8;.</para> 217 218 <para revision="315514" contrib="sponsor" sponsor="&yandex;">The 219 &man.setkey.8; utility has been modified to show the runtime 220 <acronym>NAT-T</acronym> configuration. The 221 <literal>-g</literal> and <literal>-t</literal> flags have 222 been added, which list only global and virtual policies, 223 respectively, when used with the <literal>-D</literal> and 224 <literal>-P</literal> flags.</para> 225 226 <para revision="316098" contrib="sponsor" 227 sponsor="&dellemc;">The &man.getaddrinfo.1; utility has been 228 added, ported from NetBSD.</para> 229 230 <para revision="316944" contrib="sponsor" 231 sponsor="&multiplay;">The &man.jail.8; utility has been 232 updated to allow explicitly-assigned <acronym>IPv4</acronym> 233 and <acronym>IPv6</acronym> addresses to be used within 234 a jail.</para> 235 236 <para revision="317855">The &man.daemon.8; utility has been 237 updated to allow redirecting &man.stdout.4; and &man.stderr.4; 238 output to &man.syslog.3; or to a file.</para> 239 240 <para revision="318576" contrib="sponsor" sponsor="&ff;">The 241 &man.efivar.8; utility has been added, providing an interface 242 to manage <acronym>UEFI</acronym> variables.</para> 243 </sect2> 244 245 <sect2 xml:id="userland-contrib"> 246 <title>Contributed Software</title> 247 248 <para revision="307729">&man.unbound.8; has been updated to 249 version 1.5.10.</para> 250 251 <para revision="309511"><application>Subversion</application> 252 has been updated to version 1.9.5.</para> 253 254 <para revision="309847">&man.file.1; has been updated to version 255 5.29.</para> 256 257 <para revision="310490">The &man.amd.8; utility has been updated 258 to version 6.2.</para> 259 260 <para revision="312336">The <acronym>CLDR</acronym> locales have 261 been updated to version 30.0.3. The unicode locales have been 262 updated to version 9.0.0.</para> 263 264 <para revision="312517">&man.xz.1; has been updated to version 265 5.2.3.</para> 266 267 <para revision="313537">&man.tcpdump.1; has been updated to 268 version 4.9.0.</para> 269 270 <para revision="313795">&man.zlib.3; has been updated to version 271 1.2.11.</para> 272 273 <para revision="313980"><application>openresolv</application> 274 has been updated to version 3.9.0.</para> 275 276 <para revision="313680">The NetBSD test suite has been updated 277 to the 01.11.2017_23.20 snapshot.</para> 278 279 <para revision="314278"><literal>libucl</literal> has been 280 updated to version 20170219.</para> 281 282 <para revision="315432">&man.libarchive.3; has been updated to 283 version 3.3.1.</para> 284 285 <para revision="315995">&man.dma.8; has been updated to the 286 2017-02-10 snapshot.</para> 287 288 <para revision="316068">&man.ntpd.8; has been updated to version 289 4.2.8p10.</para> 290 291 <para revision="316303"><application>ACPICA</application> has 292 been updated to version 20170303.</para> 293 294 <para revision="316349">Timezone data files have been updated to 295 version 2017b.</para> 296 297 <para revision="316420">&man.mandoc.1; has been updated to 298 version 1.14.</para> 299 300 <para revision="316423"><application>Clang</application> has 301 been updated to version 4.0.0.</para> 302 303 <para revision="316423"><application>LLVM</application> has 304 been updated to version 4.0.0.</para> 305 306 <para revision="316423"><application>LLD</application> has 307 been updated to version 4.0.0.</para> 308 309 <para revision="316423"><application>LLDB</application> has 310 been updated to version 4.0.0.</para> 311 312 <para revision="316423"><application>compiler-rt</application> 313 has been updated to version 4.0.0.</para> 314 315 <para revision="316423"><application>libc++</application> has 316 been updated to version 4.0.0.</para> 317 318 <para revision="316957">&man.tcsh.1; has been updated to version 319 6.20.00.</para> 320 321 <para revision="318239" contrib="sponsor" 322 sponsor="&ff;">&man.blacklistd.8; has been updated to the 323 20170503 snapshot.</para> 324 325 <para revision="318402" contrib="sponsor" 326 sponsor="&ff;">&man.blacklistd.8; support for 327 <application>OpenSSH</application> has been refined to adjust 328 notification points to catch all authentication failures 329 rather than only those caused by invalid login 330 usernames.</para> 331 332 <para revision="319349">&man.byacc.1; has been updated to 333 version 20170201.</para> 334 </sect2> 335 336 <sect2 xml:id="userland-installer"> 337 <title>Installation and Configuration Tools</title> 338 339 <para revision="311686">The &man.bsdinstall.8; installer has 340 been updated to include support for hidden wireless networks 341 when configuring the &man.wlan.4; interface.</para> 342 </sect2> 343 344 <sect2 xml:id="userland-rc"> 345 <title><filename class="directory">/etc/rc.d</filename> 346 Scripts</title> 347 348 <para revision="310009" contrib="sponsor" 349 sponsor="&fisglobal;">The <literal>jail_confwarn</literal> 350 &man.rc.conf.5; entry has been added, which suppresses warning 351 about obsolete per-&man.jail.8; configurations.</para> 352 </sect2> 353 354 <sect2 xml:id="userland-periodic"> 355 <title><filename class="directory">/etc/periodic</filename> 356 Scripts</title> 357 358 <para revision="317373">The default &man.periodic.conf.5; has 359 been updated to include the 360 <literal>anticongestion_sleeptime</literal> option, 361 consolidating random sleeps in &man.periodic.8; scripts and 362 replacing the <literal>daily_ntpd_avoid_congestion</literal> 363 option. The default value is 3600 seconds.</para> 364 365 <para revision="317857">The <filename>410.status-mfi</filename> 366 &man.periodic.8; script has been added to monitor the status 367 of &man.mfi.4; volumes.</para> 368 </sect2> 369 370 <sect2 xml:id="userland-libraries"> 371 <title>Runtime Libraries and API</title> 372 373 <para revision="316039">The &man.kvm.close.3; function has been 374 updated to return the accumulated error from previous 375 &man.close.2; calls.</para> 376 377 <para revision="316613">The C standard library has been updated 378 to make use of &man.reallocarray.3; for bounds 379 checking.</para> 380 381 <para revision="317618" contrib="sponsor" 382 sponsor="&dellemc;">The <function>clock_nanosleep()</function> 383 system call has been added. The 384 <function>nanosleep()</function> system call is now a wrapper 385 around <function>clock_nanosleep()</function>.</para> 386 387 <para revision="318121">The system libraries have been updated 388 to make use of &man.reallocarray.3; for bounds 389 checking.</para> 390 </sect2> 391 392 <sect2 xml:id="userland-abi"> 393 <title>ABI Compatibility</title> 394 395 <para revision="309258">The type <literal>max_align_t</literal> 396 is now defined for C11 compliance.</para> 397 398 <para revision="315274" contrib="sponsor" 399 sponsor="&dellemc;">The 400 <function>sem_clockwait_np()</function> library function has 401 been added, which allows the caller to specify the reference 402 clock and choose between absolute and relative mode.</para> 403 404 <para revision="315282">The <application>clang</application> 405 <literal>nullability</literal> qualifiers have been added to 406 the <literal>C</literal> library headers.</para> 407 408 <para revision="315282">Uses of the <acronym>GNU</acronym> 409 <literal>__nonnull__</literal> attribute have been replaced 410 with the more benign <application>Clang</application> 411 nullability attributes.</para> 412 </sect2> 413 414 <sect2 xml:id="userland-debug"> 415 <title>Userland Debugging</title> 416 417 <para revision="304499">&man.ptrace.2; now supports events for 418 &man.vfork.2;, permitting reliable debugging across 419 &man.vfork.2; invocations.</para> 420 421 <para revision="306786">Process core dumps now include the 422 process ID (<acronym>PID</acronym>) and command line 423 arguments.</para> 424 </sect2> 425 </sect1> 426 427 <sect1 xml:id="kernel"> 428 <title>Kernel</title> 429 430 <para>This section covers changes to kernel configurations, system 431 tuning, and system control parameters that are not otherwise 432 categorized.</para> 433 434 <sect2 xml:id="kernel-bugfix"> 435 <title>Kernel Bug Fixes</title> 436 437 <para revision="317434">The &man.ipf.4; packet filter has been 438 updated to prevent <literal>keep state</literal> from 439 incorrectly implying <literal>keep frags</literal>, matching 440 the behavior documented in &man.ipf.5;.</para> 441 </sect2> 442 443 <sect2 xml:id="kernel-config"> 444 <title>Kernel Configuration</title> 445 446 <para revision="315514" contrib="sponsor" sponsor="&yandex;">The 447 <literal>IPSEC_NAT_T</literal> kernel configuration option has 448 been removed. Support for <acronym>NAT-T</acronym> is now 449 enabled by default.</para> 450 451 <para revision="315514" contrib="sponsor" sponsor="&yandex;">The 452 <literal>IPSEC_FILTERTUNNEL</literal> kernel option has been 453 removed, which was deprecated by the 454 <literal>net.inet.ipsec.filtertunnel</literal> sysctl.</para> 455 456 <para revision="318763">The <literal>EARLY_AP_STARTUP</literal> 457 option has been enabled by default on &arch.amd64; and 458 &arch.i386; architectures, which when enabled releases 459 Application Processors (<acronym>AP</acronym>s) earlier in the 460 kernel startup process.</para> 461 </sect2> 462 463 <sect2 xml:id="kernel-modules"> 464 <title>Kernel Modules</title> 465 466 <para revision="307144">&man.cloudabi.4; has been updated to 467 allow running 32-bit binaries within 64-bit userland 468 environments when the kernel configuration file has the 469 <literal>COMPAT_CLOUDABI32</literal> option present.</para> 470 471 <para revision="315514" contrib="sponsor" sponsor="&yandex;">The 472 <literal>ipsec</literal> and <literal>tcpmd5</literal> kernel 473 modules have been added.</para> 474 475 <note> 476 <para>Following the addition of the <literal>tcpmd5</literal> 477 module, it is now necessary to have a security association 478 (<acronym>SA</acronym>) entry for both inbound and outbound 479 directions.</para> 480 </note> 481 482 <para revision="316274" contrib="sponsor" sponsor="&yandex;">The 483 &man.ipfw.4; packet filter has been updated to add support for 484 named dynamic states.</para> 485 486 <para revision="316444" contrib="sponsor" sponsor="&yandex;">The 487 <literal>ipfw_nptv6</literal> kernel module has been added, 488 implementing Network Prefix Translation for 489 <acronym>IPv6</acronym> as defined in <acronym>RFC</acronym> 490 6296.</para> 491 492 <para revision="316446" contrib="sponsor" sponsor="&yandex;">The 493 <literal>ipfw_nat64</literal> kernel module has been added, 494 implementing stateless and stateful 495 <acronym>NAT64</acronym>.</para> 496 497 <para revision="316660" contrib="sponsor" sponsor="&ff;">The 498 &man.cfumass.4; device has been added, providing a storage 499 frontend to <acronym>USB</acronym> 500 <acronym>OTG</acronym>-capable hardware.</para> 501 502 <para revision="317045" contrib="sponsor" sponsor="&yandex;">The 503 <literal>ipfw_pmod</literal> kernel module has been added, 504 designed for modifying packets of any protocol.</para> 505 506 <note> 507 <para>At present, only <acronym>TCP</acronym> 508 <acronym>MSS</acronym> modification is implemented.</para> 509 </note> 510 </sect2> 511 512 <sect2 xml:id="kernel-sysctl"> 513 <title>System Tuning and Controls</title> 514 515 <para revision="315539">The 516 <literal>vfs.root_mount_always_wait</literal> tunable has been 517 added, which forces the kernel to wait for root mount holds 518 even if the root device is already present.</para> 519 520 <para revision="316120" contrib="sponsor" 521 sponsor="&dellemc;">When the system real time clock 522 (<acronym>RTC</acronym>) is adjusted, such as by 523 <function>clock_settime()</function>, sleeping threads are now 524 awakened and absolute sleep times are reevaluated based on the 525 new value of the RTC.</para> 526 </sect2> 527 </sect1> 528 529 <sect1 xml:id="drivers"> 530 <title>Devices and Drivers</title> 531 532 <para>This section covers changes and additions to devices and 533 device drivers since &release.prev;.</para> 534 535 <sect2 xml:id="drivers-device"> 536 <title>Device Drivers</title> 537 538 <para revision="307768">The &man.jedec.ts.4; driver has been 539 added, providing support for thermal sensors on memory 540 modules. The driver currently supports chips that are fully 541 compliant with the <acronym>JEDEC</acronym> 542 <acronym>JC</acronym> 42.4 specification.</para> 543 544 <para revision="308104">The &man.chromebook.platform.4; driver 545 has been added, providing support for various Chromebook 546 models.</para> 547 548 <para revision="308942">The &man.bytgpio.4; driver has been 549 added, providing support for Intel® Bay Trail™ 550 SoC GPIO controllers.</para> 551 552 <para revision="312394"><filename>/dev/kmem</filename> no longer 553 supports access via <function>mmap()</function>. Consumers 554 wishing to use <filename>/dev/kmem</filename> must use 555 <function>read()</function> and 556 <function>write()</function>.</para> 557 558 <para revision="306533" contrib="sponsor" 559 sponsor="&chelsio;">&man.devctl.8; now supports a "clear 560 driver" command as a complement to "set 561 driver".</para> 562 </sect2> 563 564 <sect2 xml:id="drivers-storage"> 565 <title>Storage Drivers</title> 566 567 <para> </para> 568 </sect2> 569 570 <sect2 xml:id="drivers-network"> 571 <title>Network Drivers</title> 572 573 <para revision="306660" contrib="sponsor" 574 sponsor="&chelsio;">The &man.cxgbe.4; driver has been updated 575 to provide support for Virtual Function devices 576 (<acronym>VFs</acronym>) on Chelsio T4 and T5 adapters.</para> 577 578 <para revision="306661" contrib="sponsor" 579 sponsor="&chelsio;">TCP connections using the TCP Offload 580 Engine (<acronym>TOE</acronym>) on Chelsio T4+ adapters can 581 now perform zero-copy sends via 582 <function>aio_write()</function>.</para> 583 584 <para revision="306664" contrib="sponsor" 585 sponsor="&chelsio;">The &man.cxgbev.4; driver has been added, 586 providing support for Virtual Function devices 587 (<acronym>VFs</acronym>) on Chelsio T4 and T5 adapters.</para> 588 589 <para revision="309377" contrib="sponsor" 590 sponsor="&broadcom;">The &man.bnxt.4; driver has been added, 591 providing support for Broadcom® NetXtreme-C™ and 592 NetXtreme-E™ devices.</para> 593 594 <para revision="309560" contrib="sponsor" 595 sponsor="&chelsio;">The &man.cxgbe.4; driver now supports 596 devices using T6-based adapters which support 10, 25, 40, and 597 100 Gbps.</para> 598 599 <para revision="309560" contrib="sponsor" 600 sponsor="&chelsio;">The &man.cxgbe.4; driver has been updated 601 to provide support for Virtual Function devices 602 (<acronym>VFs</acronym>) on Chelsio T6 adapters.</para> 603 604 <para revision="309560" contrib="sponsor" 605 sponsor="&chelsio;">The &man.cxgbev.4; driver has been updated 606 to provide support for Virtual Function devices 607 (<acronym>VFs</acronym>) on Chelsio T6 adapters.</para> 608 609 <para revision="310852" contrib="sponsor" 610 sponsor="&netgate;">The &man.miibus.4; driver has been updated 611 to support Microchip/Micrel KSZ9031 Gigabit ethernet 612 cards.</para> 613 614 <para revision="312358">The &man.alc.4; driver has been updated 615 to provide support for Atheros® Killer E2400™ 616 Gigabit ethernet cards.</para> 617 618 <para revision="314005" contrib="sponsor" sponsor="&ms;">The 619 &man.alc.4; driver has been updated to provide support for 620 Atheros® Killer E2500™ Gigabit ethernet 621 cards.</para> 622 623 <para revision="315330" contrib="sponsor" 624 sponsor="&netgate;">The &man.etherswitch.4; driver has been 625 updated to support RTL8366RB and RTL8366SR cards.</para> 626 627 <para revision="315514" contrib="sponsor" sponsor="&yandex;">The 628 &man.if.ipsec.4; virtual tunneling interface has been added, 629 implementing route-based <acronym>VPN</acronym>s protected 630 with Encapsulating Security Payload 631 (<acronym>ESP</acronym>).</para> 632 633 <para revision="317116">The &man.qlnxe.4; driver has been added, 634 providing support for Cavium® Qlogic™ 45000 Series 635 adapters.</para> 636 637 <para revision="317182">The &man.qlxgbe.4; firmware has been 638 updated to version 5.4.64.</para> 639 640 <para revision="318357" contrib="sponsor" 641 sponsor="&intelcorp;">The &man.ixl.4; driver has been updated 642 to version 1.7.12-k.</para> 643 644 <para revision="319269" contrib="sponsor" 645 sponsor="&chelsio;">The &man.cxgbe.4; driver has been updated 646 to firmware version 1.16.45.0 for T4, T5, and T6 cards.</para> 647 </sect2> 648 </sect1> 649 650 <sect1 xml:id="hardware"> 651 <title>Hardware Support</title> 652 653 <para>This section covers general hardware support for physical 654 machines, hypervisors, and virtualization environments, as well 655 as hardware changes and updates that do not otherwise fit in 656 other sections of this document.</para> 657 658 <sect2 xml:id="hardware-support"> 659 <title>Hardware Support</title> 660 661 <para revision="307576">The &man.atkbdc.4; driver has been 662 updated to provide support for Elantech® trackpads. To 663 enable hardware support, add 664 <literal>hw.psm.elantech_support=1</literal> to 665 &man.loader.conf.5;.</para> 666 </sect2> 667 668 <sect2 xml:id="hardware-virtualization"> 669 <title>Virtualization Support</title> 670 671 <para revision="306471" contrib="sponsor" 672 sponsor="&chelsio;"><acronym>PCI</acronym> passthrough with 673 &man.bhyve.4; supports more dynamic configurations permitting 674 devices to be marked for passthrough or host use at 675 runtime.</para> 676 677 <para revision="306520" contrib="sponsor" 678 sponsor="&chelsio;"><acronym>PCI</acronym> passthrough with 679 &man.bhyve.4; resets functions via <acronym>FLR</acronym> when 680 a virtual machine is started and stopped.</para> 681 682 <para revision="309312" contrib="sponsor" 683 sponsor="&ms;"><acronym>PCI</acronym> passthrough support has 684 been enabled on &os; virtual machines running on 685 Microsoft® Hyper-V™.</para> 686 687 <para revision="314091" contrib="sponsor" sponsor="&ms;">The 688 &man.hv.netvsc.4; driver <acronym>SR-IOV</acronym> 689 implementation has been updated to support Virtual Function 690 (<acronym>VF</acronym>) devices, such as the Mellanox® 691 Connect-X3™ network card.</para> 692 693 <para revision="316272" contrib="sponsor" sponsor="&ms;">Support 694 for Microsoft® Hyper-V™ Generation 2 virtual 695 machines has been added.</para> 696 697 <para revision="317119" contrib="sponsor" sponsor="&ms;">Support 698 for synthetic keyboards has been added for virtual machines 699 running on Microsoft® Hyper-V™.</para> 700 701 <para revision="312790">The &os; virtual machines provided on 702 Amazon® EC2™ now enable <acronym>IPv6</acronym> by 703 default.</para> 704 </sect2> 705 706 <sect2 xml:id="hardware-arm"> 707 <title>ARM Support</title> 708 709 <para revision="305436">Support for the Allwinner A13 board has 710 been added.</para> 711 </sect2> 712 </sect1> 713 714 <sect1 xml:id="storage"> 715 <title>Storage</title> 716 717 <para>This section covers changes and additions to file systems 718 and other storage subsystems, both local and networked.</para> 719 720 <sect2 xml:id="storage-general"> 721 <title>General Storage</title> 722 723 <para> </para> 724 </sect2> 725 726 <sect2 xml:id="storage-net"> 727 <title>Networked Storage</title> 728 729 <para revision="318660">The <acronym>NFS</acronym> client now 730 properly handles <literal>NFS4ERR_BAD_SESSION</literal> errors 731 received from an <acronym>NFS</acronym> server. Additionally, 732 the kernel <acronym>RPC</acronym> client has been updated to 733 prevent creating new <acronym>TCP</acronym> connections when 734 <literal>ERESTART</literal> is received from 735 &man.sosend.9;.</para> 736 737 <para revision="318660">The <acronym>NFS</acronym> client now 738 supports the Amazon® Elastic File System™ 739 (<acronym>EFS</acronym>).</para> 740 </sect2> 741 742 <sect2 xml:id="storage-zfs"> 743 <title>ZFS</title> 744 745 <para revision="318785">The 746 <literal>vfs.zfs.debug_flags</literal> &man.sysctl.8; has been 747 deprecated in favor of 748 <literal>vfs.zfs.debugflags</literal>. Additionally, 749 <literal>vfs.zfs.debugflags</literal> can now be configured in 750 &man.loader.conf.5;, whereas 751 <literal>vfs.zfs.debug_flags</literal> could not.</para> 752 </sect2> 753 754 <sect2 xml:id="storage-geom"> 755 <title><literal>geom(4)</literal></title> 756 757 <para> </para> 758 </sect2> 759 </sect1> 760 761 <sect1 xml:id="boot"> 762 <title>Boot Loader Changes</title> 763 764 <para>This section covers the boot loader, boot menu, and other 765 boot-related changes.</para> 766 767 <sect2 xml:id="boot-loader"> 768 <title>Boot Loader Changes</title> 769 770 <para revision="307632" contrib="sponsor" sponsor="&gandi;">The 771 <acronym>EFI</acronym> loader has been updated to support 772 <acronym>TFTPFS</acronym>, providing netboot support without 773 requiring an <acronym>NFS</acronym> server.</para> 774 </sect2> 775 776 <sect2 xml:id="boot-menu"> 777 <title>Boot Menu Changes</title> 778 779 <para> </para> 780 </sect2> 781 </sect1> 782 783 <sect1 xml:id="network"> 784 <title>Networking</title> 785 786 <para>This section describes changes that affect networking in 787 &os;.</para> 788 789 <sect2 xml:id="network-general"> 790 <title>General Network Changes</title> 791 792 <para revision="311681" contrib="sponsor" sponsor="&yandex;">The 793 network stack has been updated to include 794 <function>ip6_tryforward()</function>, providing performance 795 benefits as result of a reduced number of checks.</para> 796 797 <para revision="313523" contrib="sponsor" 798 sponsor="&dellemc;">The network stack has been modified to fix 799 incorrect or invalid <acronym>IP</acronym> addresses if 800 multiple threads emit a <acronym>UDP</acronym> 801 <literal>log_in_vain</literal> message concurrently.</para> 802 803 <para revision="317386" contrib="sponsor" 804 sponsor="&multiplay;">The <acronym>TCP</acronym> stack has 805 been changed to use the estimated <acronym>RTT</acronym> 806 instead of timestamps for receive buffer auto resizing.</para> 807 </sect2> 808 809 <sect2 xml:id="network-protocols"> 810 <title>Network Protocols</title> 811 812 <para revision="309337" contrib="sponsor" 813 sponsor="&dellemc;">Support for <acronym>GARP</acronym> 814 (gratuitous <acronym>ARP</acronym>) retransmit has been added. 815 A new &man.sysctl.8;, 816 <literal>net.link.ether.inet.garp_rexmit_count</literal>, has 817 been added, which sets the maximum number of retransmissions 818 when set to a non-zero value.</para> 819 820 <para revision="315514" contrib="sponsor" 821 sponsor="&yandex;">Support for the 822 <literal>UDP_ENCAP_ESPINUDP_NON_IKE</literal> encapsulation 823 type has been removed.</para> 824 </sect2> 825 </sect1> 826 827 <sect1 xml:id="ports"> 828 <title>Ports Collection and Package Infrastructure</title> 829 830 <para>This section covers changes to the &os; Ports 831 Collection, package infrastructure, and package maintenance and 832 installation tools.</para> 833 834 <sect2 xml:id="ports-infrastructure"> 835 <title>Infrastructure Changes</title> 836 837 <para> </para> 838 </sect2> 839 840 <sect2 xml:id="ports-packages "> 841 <title>Packaging Changes</title> 842 843 <para> </para> 844 </sect2> 845 </sect1> 846 847 <sect1 xml:id="doc"> 848 <title>Documentation</title> 849 850 <para>This section covers changes to the &os; Documentation 851 Project sources and toolchain.</para> 852 853 <sect2 xml:id="doc-sources"> 854 <title>Documentation Source Changes</title> 855 856 <para> </para> 857 </sect2> 858 859 <sect2 xml:id="doc-toolchain"> 860 <title>Documentation Toolchain Changes</title> 861 862 <para> </para> 863 </sect2> 864 </sect1> 865 866 <sect1 xml:id="releng"> 867 <title>Release Engineering and Integration</title> 868 869 <para>This section convers changes that are specific to the 870 &os; Release Engineering processes.</para> 871 872 <sect2 xml:id="releng-changes"> 873 <title>Integration Changes</title> 874 875 <para> </para> 876 </sect2> 877 </sect1> 878</article> 879