article.xml revision 142193
1<articleinfo> 2 <title>&os;/&arch; &release.current; Release Notes</title> 3 4 <corpauthor>The &os; Project</corpauthor> 5 6 <pubdate>$FreeBSD: head/release/doc/en_US.ISO8859-1/relnotes/article.sgml 142193 2005-02-22 00:29:22Z bmah $</pubdate> 7 8 <copyright> 9 <year>2000</year> 10 <year>2001</year> 11 <year>2002</year> 12 <year>2003</year> 13 <year>2004</year> 14 <year>2005</year> 15 <holder role="mailto:doc@FreeBSD.org">The &os; Documentation Project</holder> 16 </copyright> 17 18 <abstract> 19 <para>The release notes for &os; &release.current; contain a summary 20 of the changes made to the &os; base system since &release.branch; is created. 21 This document lists applicable security advisories that were issued since 22 the last release, as well as significant changes to the &os; 23 kernel and userland. 24 Some brief remarks on upgrading are also presented.</para> 25 </abstract> 26</articleinfo> 27 28<sect1 id="intro"> 29 <title>Introduction</title> 30 31 <para>This document contains the release notes for &os; 32 &release.current; on the &arch.print; hardware platform. It 33 describes recently added, changed, or deleted features of &os;. 34 It also provides some notes on upgrading 35 from previous versions of &os;.</para> 36 37<![ %release.type.current [ 38 39 <para>The &release.type; distribution to which these release notes 40 apply represents the latest point along the &release.branch; development 41 branch since &release.branch; is created. Some pre-built, binary 42 &release.type; distributions along this branch 43 can be found at <ulink url="&release.url;"></ulink>.</para> 44 45]]> 46 47<![ %release.type.snapshot [ 48 49 <para>The &release.type; distribution to which these release notes 50 apply represents a point along the &release.branch; development 51 branch between &release.prev; and the future &release.next;. Some 52 pre-built, binary &release.type; distributions along this branch 53 can be found at <ulink url="&release.url;"></ulink>.</para> 54 55]]> 56 57<![ %release.type.release [ 58 59 <para>This distribution of &os; &release.current; is a 60 &release.type; distribution. It can be found at <ulink 61 url="&release.url;"></ulink> or any of its mirrors. More 62 information on obtaining this (or other) &release.type; 63 distributions of &os; can be found in the <ulink 64 url="&url.books.handbook;/mirrors.html"><quote>Obtaining 65 &os;</quote> appendix</ulink> to the <ulink 66 url="&url.books.handbook;/">&os; 67 Handbook</ulink>.</para> 68 69]]> 70 71 <para>All users are encouraged to consult the release errata before 72 installing &os;. The errata document is updated with 73 <quote>late-breaking</quote> information discovered late in the 74 release cycle or after the release. Typically, it contains 75 information on known bugs, security advisories, and corrections to 76 documentation. An up-to-date copy of the errata for &os; 77 &release.current; can be found on the &os; Web site.</para> 78 79</sect1> 80 81<sect1 id="new"> 82 <title>What's New</title> 83 84 <para>This section describes 85 the most user-visible new or changed features in &os; 86 since &release.prev;. 87 In general, changes described here are unique to the &release.branch; 88 branch unless specifically marked as &merged; features. 89 </para> 90 91 <para>Typical release note items 92 document recent security advisories issued after 93 &release.prev.historic;, 94 new drivers or hardware support, new commands or options, 95 major bug fixes, or contributed software upgrades. They may also 96 list changes to major ports/packages or release engineering 97 practices. Clearly the release notes cannot list every single 98 change made to &os; between releases; this document focuses 99 primarily on security advisories, user-visible changes, and major 100 architectural improvements.</para> 101 102 <sect2 id="security"> 103 <title>Security Advisories</title> 104 105 <para>A bug in the &man.fetch.1; utility which allows 106 a malicious HTTP server to cause arbitrary portions of the client's 107 memory to be overwritten, has been fixed. 108 For more information, see security advisory 109 <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:16.fetch.asc">FreeBSD-SA-04:16.fetch</ulink>. 110 &merged;</para> 111 112 <para>A bug in &man.procfs.5; and &man.linprocfs.5; 113 which could cause a malicious local user could perform a local 114 denial of service attack by causing a system panic, or the user 115 could read parts of kernel memory, has been fixed. 116 For more information, see security advisory 117 <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:17.procfs.asc">FreeBSD-SA-04:17.procfs</ulink>. 118 &merged;</para> 119 120 </sect2> 121 122 <sect2 id="kernel"> 123 <title>Kernel Changes</title> 124 125 <para arch="i386">Support for 80386 processors (the 126 <literal>I386_CPU</literal> kernel configuration option) has 127 been removed. Users running this class of CPU should use &os; 128 5.<replaceable>X</replaceable> or earlier.</para> 129 130 <para>The loader tunable <varname>debug.mpsafevm</varname> has been 131 has been enabled by default.</para> 132 133 <para>MemGuard, a kernel memory allocator designed to help detect 134 <quote>tamper-after-free</quote> scenarios, has been added. 135 This must be explicitly enabled via <literal>options 136 DEBUG_MEMGUARD</literal>, plus small kernel modifications. It 137 is generally intended for use by kernel developers.</para> 138 139 <para>A number of bugs have been fixed in the ULE 140 scheduler. &merged;</para> 141 142 <para>Fine-grained locking to allow much of the VFS stack to run 143 without the Giant lock has been added. It is currently enabled 144 by the loader tunable (and sysctl variable) 145 <varname>debug.mpsafevfs</varname>, which currently defaults to 146 <literal>0</literal> (disabled).</para> 147 148 <para arch="i386">A bug in Inter-Processor Interrupt (IPI) 149 handling, which could cause SMP systems to crash under heavy 150 load, has been fixed. More details are contained in errata note 151 <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/ERRATA/notices/FreeBSD-EN-05:03.ipi.asc">FreeBSD-EN-05:03.ipi</ulink>. 152 &merged;</para> 153 154 <para>System V IPC objects (message queues, semaphores, and shared 155 memory) now have support for Mandatory Access Control policies, 156 notably &man.mac.biba.4;, &man.mac.mls.4;, &man.mac.stub.4;, and 157 &man.mac.test.4;.</para> 158 159 <!-- Above this line, sort kernel changes by manpage/keyword--> 160 161 <sect3 id="boot"> 162 <title>Boot Loader Changes</title> 163 164 <para arch="i386">A serial console-capable version of 165 <filename>boot0</filename> has been added. It can be written 166 to a disk using &man.boot0cfg.8; and specifying 167 <filename>/boot/boot0sio</filename> as the argument to the 168 <option>-b</option> option.</para> 169 170 <para arch="i386"><filename>cdboot</filename> now works around a 171 BIOS problem observed on some systems when booting from USB 172 CDROM drives.</para> 173 174 <para>The <command>autoboot</command> loader command 175 now supports the prompt parameter.</para> 176 177 <!-- Above this line, order boot loader changes by keyword--> 178 179 </sect3> 180 181 <sect3 id="proc"> 182 <title>Hardware Support</title> 183 184 <para arch="sparc64">The &man.auxio.4; driver has been to drive 185 some auxiliary I/O functions found on various SBus/EBus 186 &ultrasparc; models. &merged;</para> 187 188 <para>A framework for flexible processor speed control has been 189 added. It provides methods for various drivers to control CPU 190 power utilization by adjusting the processor speed. More 191 details can be found in the &man.cpufreq.4; manual page. 192 Currently supported drivers include acpi_perf (ACPI CPU 193 performance states), ichss (Intel SpeedStep for ICH), and 194 acpi_throttle (ACPI CPU throttling).</para> 195 196 <para arch="i386">Support for the OLDCARD subsystem has 197 been removed. The NEWCARD system is now used for all PCCARD 198 device support.</para> 199 200 <para>The pcii driver has been added to support GPIB-PCIIA IEEE-488 201 cards.</para> 202 203 <para>The &man.psm.4; driver now has improved support for 204 Synaptics Touchpad users. It now has better tracking of 205 slow-speed movement and now has support for various extra 206 buttons and dials. These features can be tuned with the 207 <varname>hw.psm.synaptics.<replaceable>*</replaceable></varname> 208 hierarchy of sysctl variables.</para> 209 210 <para arch="sparc64">The rtc driver has been added to support 211 the MC146818-compatible clock found on some &ultrasparc; II 212 and III models. &merged;</para> 213 214 <para arch="sparc64">The &man.uart.4; driver is now enabled in 215 the <filename>GENERIC</filename> kernel, and is now the 216 default driver for serial ports. The ofw_console, 217 &man.sab.4;, and zs drivers are now disabled in the 218 <filename>GENERIC</filename> kernel. &merged;</para> 219 220 <para>The &man.uplcom.4; driver now supports handling of the 221 <literal>CTS</literal> signal.</para> 222 223 <sect4 id="mm"> 224 <title>Multimedia Support</title> 225 226 <para arch="sparc64">The &man.snd.audiocs.4; driver has been 227 added to support the Crystal Semiconductor CS4231 audio 228 controller found on &ultrasparc; 229 workstations. &merged;</para> 230 231 <para>The &man.uaudio.4; driver now has some added 232 functionality, including volume control on more inputs and 233 recording capability on some devices.</para> 234 235 </sect4> 236 237 <sect4 id="net-if"> 238 <title>Network Interface Support</title> 239 240 <para>The &man.ath.4; driver has been updated to split the 241 transmit rate control algorithm into a separate module. 242 Either <literal>device ath_rate_onoe</literal> or 243 <literal>device ath_rate_amrr</literal> must be included in 244 the kernel configuration when using the &man.ath.4; 245 driver.</para> 246 247 <para>The &man.cp.4; driver is now MPSAFE. &merged;</para> 248 249 <para>The &man.ctau.4; driver is now MPSAFE. &merged;</para> 250 251 <para>The &man.cx.4; driver is now MPSAFE. &merged;</para> 252 253 <para>The &man.dc.4; driver now supports the &man.altq.4; framework.</para> 254 255 <para>In the &man.em.4; driver, hardware support for VLAN 256 tagging is now disabled by default due to some interactions 257 between this feature and promiscuous mode. &merged;</para> 258 259 <para>Ethernet flow control is now disabled by default in the 260 &man.fxp.4; driver, to prevent problems with a system panics 261 or is left in the kernel debugger. &merged;</para> 262 263 <para>The &man.hme.4; driver is now MPSAFE. &merged;</para> 264 265 <para arch="amd64">The &man.ndis.4; device driver wrapper now 266 supports &windows;/x86-64 binaries on amd64 267 systems. &merged;</para> 268 269 <para>The &man.sf.4; driver now has support for device polling 270 and &man.altq.4;. &merged;</para> 271 272 <para>Several programming errors in the &man.sk.4; driver have 273 been corrected. This bug was particular to SMP systems, and 274 could cause panics, page faults, aborted SSH connections, or 275 corrupted file transfers. More details can be found in 276 errata note 277 <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/ERRATA/notices/FreeBSD-EN-05:02.sk.asc">FreeBSD-EN-05:02.sk</ulink>. 278 &merged;</para> 279 280 <para>The &man.sk.4; driver now has support for &man.altq.4;. 281 This driver also now supports jumbo frames on Yukon-based 282 interfaces. &merged;</para> 283 284 <para>Support for 802.11 devices in the &man.wlan.4; has been 285 greatly overhauled. In addition to architectural changes, 286 it includes completed 802.11g, WPA, 802.11i, 802.1x, 287 WME/WMM, AP-side power-saving, and plugin frameworks for 288 cryptography modules, authenticators, and access control. 289 Note in particular that WEP now requires the 290 <filename>wlan_wep</filename> module to be loaded (or 291 compiled) into the kernel.</para> 292 293 </sect4> 294 </sect3> 295 296 <sect3 id="net-proto"> 297 <title>Network Protocols</title> 298 299 <para>The MTU feedback in IPv6 has been disabled when the sender writes 300 data that must be fragmented.</para> 301 302 <para>&man.ipfw.8; now supports classification and tagging 303 of the &man.altq.4;, packets via a divert socket, 304 and TCP data length.</para> 305 306 <para>Ongoing work is reducing the use of the Giant lock by the 307 network protocol stack and improving the locking 308 strategies.</para> 309 310 <para>The &man.sppp.4; driver now includes Frame Relay 311 support. &merged;</para> 312 313 <para>A bug in TCP that sometimes caused RST packets to 314 be ignored if the receive window was zero bytes has been 315 fixed. &merged;</para> 316 317 <para>Several bugs in the TCP SACK implementation have been 318 fixed. &merged;</para> 319 320 <para>RFC 1644 T/TCP support has been removed.</para> 321 322 <para>Random ephemeral port number allocation has led to some 323 problems with port reuse at high connection rates. This 324 feature is now disabled during periods of high connection 325 rates; whenever new connections are created faster than 326 <varname>net.inet.ip.portrange.randomcps</varname> per second, 327 port number randomization is disabled for the next 328 <varname>net.inet.ip.portrange.randomtime</varname> 329 seconds. The default values for these two sysctl variables 330 are <literal>10</literal> and <literal>45</literal>, 331 respectively.</para> 332 333 <para>Fine-grained locking has been applied to many of the data 334 structures in the IPX/SPX protocol stack. While not fully 335 MPSAFE at this point, it is generally safe to use IPX/SPX 336 without the Giant lock (in other words, the 337 <varname>debug.mpsafenet</varname> sysctl variable may be set 338 to <literal>1</literal>).</para> 339 340 </sect3> 341 342 <sect3 id="disks"> 343 <title>Disks and Storage</title> 344 345 <para>The &man.amr.4; driver is now safe for use on systems 346 using &man.pae.4;. &merged;</para> 347 348 <para>The SHSEC GEOM class has been added. It provides for the 349 sharing of a secret between multiple GEOM providers. All of 350 these providers must be present in order to reveal the 351 secret. This feature is controlled by the &man.gshsec.8; 352 utility.</para> 353 354 <para>The &man.matcd.4; driver has been removed.</para> 355 356 <para>The default SCSI boot-time probe delay in the 357 <filename>GENERIC</filename> kernel has been reduced from 358 fifteen seconds to five seconds.</para> 359 360 <para arch="pc98">The &man.wd.4; driver has been removed. The 361 &man.ata.4; driver has been found to work well enough on the 362 pc98 platform that there is no need for the older &man.wd.4; 363 driver.</para> 364 365 <para>Information about newly-mounted cd9660 file systems (such 366 as the presence of Rockridge extensions) is now only printed 367 if the kernel was booted in verbose mode. This change was 368 made to reduce the amount of (generally unnecessary) kernel 369 log messages. &merged;</para> 370 371 </sect3> 372 373 <sect3 id="fs"> 374 <title>File Systems</title> 375 376 <para>The autofs(9) file system and the userland library 377 &man.libautofs.3; have been added.</para> 378 379 <para>A kernel panic in the NFS server has been fixed. More 380 details can be found in errata note 381 <ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/ERRATA/notices/FreeBSD-EN-05:01.nfs.asc">FreeBSD-EN-05:01.nfs</ulink>. 382 &merged;</para> 383 384 </sect3> 385 386 <sect3> 387 <title>Contributed Software</title> 388 389 <para><application>ACPI-CA</application> has been updated from 390 20040527 to 20041119. &merged;</para> 391 392 </sect3> 393 </sect2> 394 395 <sect2 id="userland"> 396 <title>Userland Changes</title> 397 398 <para>The &man.burncd.8; utility now allows commands (such as 399 <command>eject</command>) to take place after fixating a 400 disk.</para> 401 402 <para>The <literal>create</literal> command of the &man.gpt.8; 403 utility now supports a <option>-f</option> command-line flag to 404 force creation of a GPT even when there is an MBR record on a 405 disk. &merged;</para> 406 407 <para>The &man.dump.8; utility now supports a <option>-n</option> 408 flag to suppress the creation of a <filename>.snap</filename> 409 directory on new file systems. This feature is intended for use 410 on memory or vnode file systems that will not require snapshot 411 support.</para> 412 413 <para>The &man.ifconfig.8; utility has been restructured. It is 414 now more modular and flexible with respect to supporting 415 interface-specific functionality. The 802.11 support has been 416 updated to support recent changes to the 802.11 subsystem and 417 drivers.</para> 418 419 <para>Support for abbreviated forms of a number of &man.ipfw.8; 420 options has been deprecated. Warnings are printed to stderr 421 indicated the correct full form when one of these abbreviations 422 is detected.</para> 423 424 <para>The <filename>libarchive</filename> library (as well as the 425 &man.tar.1; command that uses it) now has support for reading ISO 426 images (with optional RockRidge extensions) and ZIP archives 427 (with <literal>deflate</literal> and <literal>none</literal> 428 compression).</para> 429 430 <para>The <literal>NO_NIS</literal> compile-time knob for userland 431 has been added. As its name implies, enabling this 432 <filename>Makefile</filename> variable will cause NIS support to 433 be excluded from various programs and will cause the NIS 434 utilities to not be built. &merged;</para> 435 436 <para arch="i386">The &man.mkuzip.8;, which is a non-GPL 437 utility to compress file system images for use with 438 <literal>GEOM_UZIP</literal> &man.geom.4; module, 439 has been added.</para> 440 441 <para>The &man.newsyslog.8; utility now supports 442 a <option>-d</option> option to specify an alternate root for log files 443 similar to <varname>DESTDIR</varname> in the BSD make process. 444 This only affects log file paths, not config file (<option>-f</option>) 445 or archive directory (<option>-a</option>) paths.</para> 446 447 <para>The &man.ncal.1; utility now supports a <option>-m</option> 448 flag to generate a calendar for a specified month in the current 449 year. &merged;</para> 450 451 <para>The <filename>libgpib</filename> library has been added to 452 give userland access to GPIB devices (using the the pcii driver) 453 via the 454 <function>ib<replaceable>foo</replaceable></function> 455 API.</para> 456 457 <para>The &man.mknod.8; utility has been marked deprecated. 458 Device nodes have been managed by the &man.devfs.5; device file 459 system since &os; 5.0.</para> 460 461 <para>For years, &os; has used <filename>Makefile</filename> 462 variables of the form 463 <varname>NO<replaceable>FOO</replaceable></varname> and 464 <varname>NO_<replaceable>FOO</replaceable></varname>. For 465 consistency, those variables using the former naming convention 466 have been converted to the 467 <varname>NO_<replaceable>FOO</replaceable></varname> form. The 468 file <filename>/usr/share/mk/bsd.compat.mk</filename> has a 469 complete list of these variables; it also implements some 470 temporary backward compatibility for the old names.</para> 471 472 <para>The &man.ppp.8; program now implements an 473 <option>echo</option> parameter, which allows LCP ECHOs to be 474 enabled independently of LQR reports. Older versions of 475 &man.ppp.8; would revert to LCP ECHO mode on negotiation 476 failure. It is now necessary to specify <command>enable 477 echo</command> to get this behavior. &merged;</para> 478 479 <para>An &man.rpmatch.3; library function has been added to check 480 a string for being an affirmative or negative response in the 481 current locale.</para> 482 483 <para>The &man.telnet.1; and &man.telnetd.8; programs now support 484 the <option>-S</option> option for specifying a numeric TOS 485 byte.</para> 486 487 <para>The &man.tcpdrop.8; command, which closes a selected TCP 488 connection, has been added. It was obtained from 489 OpenBSD.</para> 490 491 <para>&man.whois.1; now supports 492 a <option>-k</option> flag 493 for querying <hostid role="fqdn">whois.krnic.net</hostid> 494 (the National Internet Development Agency of Korea) 495 which hold details of IP address allocations within 496 Korea. &merged;</para> 497 498 <sect3 id="rc-scripts"> 499 <title><filename>/etc/rc.d</filename> Scripts</title> 500 501 <para></para> 502 </sect3> 503 </sect2> 504 505 <sect2 id="contrib"> 506 <title>Contributed Software</title> 507 508 <para><application>FILE</application> has been updated from 4.10 509 to 4.12.</para> 510 511 <para><application>lukemftp</application> has been updated from a 512 26 April 2004 snapshot from OpenBSD's sources to a snapshot as 513 of 19 February 2005.</para> 514 515 <para>A snapshot of <application>netcat</application> from OpenBSD 516 as of 4 February 2005 has been added. More information can be 517 found in the &man.nc.1; manual page. &merged;</para> 518 519 <para><application>OpenPAM</application> has been updated from the 520 Eelgrass release to the Feterita release.</para> 521 522 <para><application>OpenSSH</application> has been updated from 3.8p1 523 to 3.9p1.</para> 524 525 <para><application>sendmail</application> has been updated from 526 version 8.13.1 to version 8.13.3. &merged;</para> 527 528 <para>The timezone database has been updated from the 529 <application>tzdata2004e</application> release to the 530 <application>tzdata2004g</application> release. &merged;</para> 531 532 </sect2> 533 534 <sect2 id="ports"> 535 <title>Ports/Packages Collection Infrastructure</title> 536 537 <para></para> 538 </sect2> 539 540 <sect2 id="releng"> 541 <title>Release Engineering and Integration</title> 542 543 <para></para> 544 </sect2> 545 546 <sect2 id="doc"> 547 <title>Documentation</title> 548 549 <para>Manual pages in the base system have received a number of 550 cleanups, both for content and presentation. Cross-references 551 are more correct and consistent, standard section headings are 552 now used throughout, and markup has been cleaned up.</para> 553 554 </sect2> 555</sect1> 556 557<sect1 id="upgrade"> 558 <title>Upgrading from previous releases of &os;</title> 559 560 <para></para> 561 562 <important> 563 <para>Upgrading &os; should, of course, only be attempted after 564 backing up <emphasis>all</emphasis> data and configuration 565 files.</para> 566 </important> 567</sect1> 568