UPDATING revision 70158
1Updating Information for FreeBSD current users 2 3This file is maintained by imp@village.org. Please send new entries 4directly to him. See end of file for further details. For commonly 5done items, please see the end of the file. Search for 'COMMON 6ITEMS:' 7 820001218: 9 Linksys Fast Ethernet PCCARD cards supported by the ed driver 10 now require the addition of flag 0x80000 to their config line 11 in pccard.conf(5). This flag is not optional. These Linksys 12 cards will not be recognized without it. 13 1420001205: 15 Important new FreeBSD-version stuff: PAM support has been worked 16 in, partially from the "Unix" OpenSSH version. This requires 17 adding the following in pam.conf: 18 19 sshd auth sufficient pam_skey.so 20 sshd auth required pam_unix.so try_first_pass 21 sshd session required pam_permit.so 22 2320001031: 24 cvs updated to 1.11. 25 2620001020: 27 The random device needs more entropy, so you need to make sure 28 that you've run mergemaster to get a /etc/rc which will seed 29 /dev/random. If you don't and the system hangs after ldconfig, 30 then banging on the keyboard randomly until it unhangs is one 31 workaround. 32 3320001010: 34 ****************************** WARNING ****************************** 35 Sendmail has been updated. 36 ****************************** WARNING ****************************** 37 o mail.local(8) is no longer installed as a set-user-id binary. 38 o sendmail(8) is now built with STARTTLS support unless NO_OPENSSL 39 is set. 40 o The default /etc/mail/sendmail.cf disables the SMTP EXPN and VRFY 41 commands. 42 o Now using sendmail's version of vacation(1). 43 o The sendmail cf building tools (contrib/sendmail/cf) are installed 44 in /usr/share/sendmail/cf. 45 o sendmail.cw changed to local-host-names 46 47 More details can be found at 48 http://people.freebsd.org/~imp/UPDATING/sendmail-20001010 49 5020001009: 51 The ports tree's new layout is in place. Be sure to update 52 your entire ports tree, or you will have problems. 53 5420001006: 55 The perl build procedure no longer installs miniperl, nor uses 56 the installed miniperl. It is recommended that you delete 57 /usr/bin/miniperl. 58 5920001005: 60 This weekend the ports tree will be updated to a new layout. 61 It will be in an inconsistent state until noted in the UPDATING 62 file, or with asami-san's message to the relevant mailing 63 lists. With this new layout, you'll need to update the whole 64 tree for anything to work. 65 6620000928: 67 There was a change in the passwd format. Need more information. 68 6920000916: 70 /boot/kernel/kernel.ko -> /boot/kernel/kernel change has taken 71 place. Please update boot loader (not the boot blocks) at the 72 same time as your kernel. 73 7420000914: 75 The new pmtimer device is necessary for laptops. Failure to 76 include the device will cause suspended laptops losing time 77 when they resume. Include 78 device pmtimer 79 in your config file and 80 hint.pmtimer.0.at="isa" 81 to your /boot/device.hints file. 82 8320000911: 84 The random device has been turned into a (pseudo-)device, 85 rather than an option. The supplied kernel config files have 86 been updated. You will need to do something similar in your 87 own kernel config file. 88 Remove: 89 options RANDOMDEV 90 Add: 91 device random 92 If you prefer to load the loadable module, you need to do 93 nothing. 94 9520000909: 96 The random device module has been renamed from randomdev.ko to 97 random.ko. You will need to edit your /boot/loader.conf to 98 reflect this if you load this module at boot time. 99 The line should read: 100 random_load="YES" 101 10220000907: 103 The SMPNG commit has happened. It should work, but if it 104 doesn't, fallback to the PRE_SMPNG CVS tag. There are likely 105 to be a variety of minor issues. Please see 20000905 to make 106 sure you don't have model loading problems which might at 107 first blush appear related to SMP. 108 10920000906: 110 nsswitch has been imported from NetBSD. Among other things, 111 this means that /etc/host.conf is no longer used. See 112 nsswitch.conf(5) instead. Note that at boot time rc.network 113 will attempt to produce a new nsswitch.conf file for you if you 114 don't have one, and you have host.conf. 115 11620000905: 117 The ucred structure changed size. This breaks the interface 118 that mountd uses. Trying to use an older mountd with a newer 119 kernel guarantees a panic. This means that you need to use 120 kernels newer than today only with matching mountd, but you 121 needed to do that anyway with the boot loader changes. 122 12320000905: 124 The boot loader has been updated. The new default kernel is 125 now /boot/kernel/kernel.ko. The new default module location 126 is /boot/kernel. 127 128 You *MUST* upgrade your boot loader and kernel at the same time. 129 The easiest way to do this is to do the buildworld/buildkernel/ 130 installkernel/installworld dance. 131 132 Furthermore, you are urged to delete your old /modules directory 133 before booting the new kernel, since kldload will find stale 134 modules in that directory instead of finding them in the correct 135 path, /boot/kernel. The most common complaint that this cures 136 is that the linux module crashes your machine after the update. 137 138 if [ ! -d /boot/kernel.old ]; then 139 mv /modules.old /boot/kernel.old 140 chflags noschg /kernel.old 141 mv /kernel.old /boot/kernel.old/kernel.ko 142 chflags schg /boot/kernel.old/kernel.ko 143 fi 144 14520000904: 146 A new issue with the sendmail upgrade has come to light. 147 /etc/aliases has moved to /etc/mail/aliases. Mergemaster will 148 incorrectly install the default aliases in /etc/mail rather than 149 move the old one from /etc. So you'll need to manually move the 150 file, create a symbolic link, remove the old /etc/aliases.db and 151 run newaliases. For safety sake, you should stop sendmail 152 while doing this and run the upgrade when locally sourced email 153 is not likely to be generated. 154 15520000825: 156 /boot/device.hints is now required for installkernel to 157 succeed. You should copy GENERIC.hints for your architecture 158 into /boot/device.hints. If and only if you compile hints 159 into your kernel, then this file may be empty. Please note, 160 if you have an empty or missing /boot/device.hints file and 161 you neglected to compile hints into your kernel, no boot 162 messages will appear after the boot loader tries to start the 163 kernel. 164 16520000821: 166 If you do NOT have ``options RANDOMDEV'' in your kernel and 167 you DO want the random device then add randomdev_load="YES" to 168 /boot/loader.conf. 169 17020000812: 171 suidperl is now always built and installed on the system, but 172 with permissions of 511. If you have applications that use 173 this program, you are now required to add ENABLE_SUIDPERL=true 174 to /etc/make.conf. If you forget to do this, 175 chmod 4511 /usr/bin/suidperl 176 will fix this until the next build. 177 17820000812: 179 sendmail has been updated from 8.9.3 to 8.11.0. Some of the more 180 visible changes that may immediately affect your configuration 181 include: 182 - New default file locations from src/contrib/sendmail/cf/README 183 - newaliases limited to root and trusted users 184 - MSA port (587) turned on by default 185 - New queue file naming system so can't go from 8.11 -> 8.9 186 - FEATURE(`rbl') renamed to FEATURE(`dnsbl') 187 - FEATURE(`nullclient') is more full featured 188 - FEATURE(`nouucp') requires an argument: `reject' or `nospecial' 189 - mail.local FreeBSD-only -b option changed to -B 190 - See src/contrib/sendmail/RELEASE_NOTES for more info 191 19220000810: 193 suidperl (aka sperl) is no longer build by default. You must 194 specifically define BUILD_SUIDPERL to "true" for it to be build. 195 Furthermore, we recommend that you remove /usr/bin/sperl* and 196 /usr/bin/suidperl files from your system unless you have a 197 specific use for it. 198 19920000729: 200 Networking defaults have been tightened. Anybody upgrading 201 /etc/defaults/rc.conf needs to add the following lines to 202 /etc/rc.conf if they want to have the same setup 203 afterwards (unless the variables already are set, of course): 204 # Enable network daemons for user convenience. 205 inetd_enable="YES" 206 portmap_enable="YES" 207 sendmail_enable="YES" 208 20920000728: 210 If you have null_load="YES" in your /boot/loader.conf, you 211 will need to change that to nullfs_load="YES". 212 21320000728: 214 The "installkernel" target has changed slightly. Now even if 215 you override KERNEL e.g. 'make installkernel KERNEL=MYKERNEL' 216 it will install the MYKERNEL file (built with the buildkernel 217 target) as /kernel rather than /MYKERNEL. Those who have 218 updated their /boot/loader.conf files to point to /MYKERNEL 219 should remove that entry or perform manual rename of /kernel 220 to /MYKERNEL. 221 22220000711: 223 If you use CVSUP or CTM to get CVS trees, AND you used to get 224 the old crypto files from internat.freebsd.org AND you check 225 out files from the CVS tree with the cvs command, please read 226 http://people.freebsd.org/~imp/internat.txt 227 for details on potential problems that you might have and how 228 to get around them. 229 230 If you are merely a mirror, or don't answer yes to each of the 231 clauses above, you needn't worry. 232 23320000711: 234 /etc/security has been updated to print the inode number of 235 setuid programs that have changed. You will see a large spike 236 in the number of changed programs the first time when you run 237 mergemaster to get a new /etc/security. 238 23920000710: 240 /dev/random now has good entropy collection (from the keyboard 241 and sysmouse drivers). Please ensure that either `options 242 RANDOMDEV' is present in your kernel config file or that 243 `randomdev_load="YES"' is in your /boot/loader.conf. If you do 244 not have the /dev/random driver, OpenSSL (and consequently 245 lots of crypto tools (like SSH)) will fail with strange 246 errors. (see below, 20000624). 247 248 FreeBSD-current is safe again to run Crypto. 249 25020000709: 251 phk made the malloc default options AJ. This may slow things 252 down and uncover other latent bugs in the code. If you need to 253 run at full speed, you can disable this by doing the following: 254 ln -s aj /etc/malloc.conf 255 25620000706: 257 libftpio's version was accidentally bumped a few days ago. This 258 has been corrected. You may need to remove /usr/lib/libftpio.so.6 259 before doing your next buildworld/installworld pair. It certainly 260 won't hurt to remove it before the update procedure. It will 261 break fetch until a new one is built, but ftp can be used in the 262 interim if needed. 263 26420000705: 265 The crypto packages have changed for the cvsup. This has been done 266 in a backward compatible way, but the old packages will go away at 267 some point in the future. Look at /usr/share/examples/cvsup for 268 details. 269 27020000704: 271 With the new sys/modules/sound/drivers/*, you will need to 272 set SYSDIR until you do an installworld after July 7th. 273 27420000704: 275 rc.shutdown and rc will now call the rc.d scripts with start 276 or stop. This may cause some harmless warnings from older 277 rc.d scripts that haven't been updated. 278 27920000630: 280 The libfetch based version of fetch has gone into the tree. 281 Minor problems may result on some of the less popular sites, 282 which should be reported to des@freebsd.org. 283 28420000625: 285 From approximately this date forward, one must have the crypto 286 system installed in order to build the system and kernel. 287 While not technically strictly true, one should treat it as 288 required and grab the crypto bits. If you are grabbing CVS 289 trees, src-all and cvs-crypto should be treated as if they 290 were required. You should check with the latest collections 291 to make sure that these haven't changed. 292 29320000624: 294 Mark Murray just committed the first parts of a cleanup of 295 /dev/zero, et al. This is also cleaning up /dev/random. 296 The entropy is disconnected, so DO NOT USE VERSIONS OF FREEBSD 297 -CURRENT FROM THIS POINT FORWARD for cryptographic services 298 until Mark can merge in the fixes to this work in progress. 299 openssh and openssl should not be used to generate keys from this 300 date to the completion of the work. 301 302 If you must operate at this reduced level of security, add ' 303 options RANDOMDEV' to your kernel or modload the randomdev 304 module. You may also need to copy a new MAKEDEV to /dev and 305 recreate the random and urandom devices. 306 30720000622: 308 The license on the softupdates is now a standard 2 clause 309 BSD license. You may need to remove your symbolic links 310 that used to be required when updating. 311 31220000621: 313 Scott Flatman <sf@aracnet.com> sent in a decent write-up on 314 the config file update procedure. 315 http://people.freebsd.org/~imp/config-upd.html 316 NOTE: LINT is gone. It has been replaced with NOTES. NOTES 317 isn't buildable. However, you can generate a LINT file. 318 31920000620: 320 Binutils 2.10 have hit the tree, or will shortly. As soon 321 as they do, the problem noted in 20000522 will be resolved and 322 that workaround will no longer be required. 323 32420000615: 325 phk removed the compatibility creation of wd devices in the 326 ad driver. If you haven't done so already, you must update 327 your fstab, etc to use the ad devices instead of the wd 328 devices. 329 330 In addition, you'll need to update your boot blocks to a 331 more modern version, if you haven't already done so. Modern 332 here means 4.0 release or newer (although older releases 333 may work). 334 33520000612: 336 Peter took an axe to config(8). Be sure that you read his mail 337 on the topic before even thinking about updating. You will 338 need to create a /boot/device.hints or add a hints directive 339 to your config file to compile them in statically. The format 340 of the config file has changed as well. Please see GENERIC or 341 NEWCARD for examples of the new format. 342 34320000522: 344 A new set of binutils went into the tree today. Anybody 345 building a kernel after this point is advised that they need 346 to rebuild their binutils (or better yet do a 347 buildworld/installworld) before building a new kernel. 348 349 Due to bugs in binutils, using malloc options (eg /etc/malloc.conf 350 or MALLOC_OPTIONS env var) J will cause ld to dump core. It 351 is recommended that you don't set this option until the problem 352 is resolved. 353 35420000513: 355 The ethernet drivers were all updated to clean up the BPF handling. 356 35720000510: 358 The problems with boot blocks on the alphas have been corrected. 359 This will require some care in updating alphas. A new libstand 360 is requires for the boot blocks to build properly. 361 36220000503: 363 Recompile all kld modules. Proper version dependency info 364 is now available. 365 36620000502: 367 Modules have been disconnected from the buildworld tree and 368 connected to the kernel building instead. 369 37020000427: 371 You may need to build gperf 372 cd /usr/src/gnu/usr.bin/gperf && make depend all install 373 when upgrading from 4.0 -> current. The build system now uses 374 an option only in -current. 375 37620000417: 377 The method that we brand ELF binaries has changed to be more 378 acceptable to the binutils maintainers. You will need to 379 rebrand your ELF binaries that aren't native. One problem 380 binary is the Linux ldconfig. After your make world, but 381 before you reboot, you'll need to issue: 382 brandelf -t Linux /compat/linux/sbin/ldconfig 383 if you have Linux compatibility enabled on your machine. 384 38520000320: 386 If you have really bad/marginal IDE drives, you may find they 387 don't work well. Use pio mode instead. The easiest way to 388 cope if you have a problem combination is to add: 389 /sbin/sysctl -w hw.atamodes=pio,pio,pio,pio 390 to the start of /etc/rc.conf. 391 39220000319: 393 The ISA and PCI compatibility shims have been connected to the 394 options COMPAT_OLDISA and COMPAT_OLDPCI. If you are using old 395 style PCI or ISA drivers (i.e. tx, voxware, etc.) you must 396 include the appropriate option in your kernel config. Drivers 397 using the shims should be updated or they won't ship with 398 5.0-RELEASE, targeted for 2001. 399 40020000318: 401 We've entered the traditional post release dumping party. 402 Large kernel changes are being committed and are in the 403 works. It is important to keep the systems' klds and kernel 404 in sync as kernel interfaces and structures are changing. 405 Before reporting kernel panics, make sure that all modules 406 that you are loading are up to date. 407 40820000315: 409 If you are upgrading from an older version of FreeBSD, you 410 need to update your boot blocks as well. 'disklabel -B ad0' 411 will do the trick. This isn't critical until you remove your 412 wd device entries in /dev, at which point your system will not 413 boot. 414 41520000315: 416 4.0 RELEASE shipped. Please see the 4.0 UPDATING file for how 417 to upgrade to 4.0 from 3.x. 418 419COMMON ITEMS: 420 421 General Notes 422 ------------- 423 Avoid using make -j when upgrading. From time to time in the 424 past there have been problems using -j with buildworld and/or 425 installworld. This is especially true when upgrading between 426 "distant" versions (eg one that cross a major release boundary 427 or several minor releases, or when several months have passed 428 on the -current branch). 429 430 To build a kernel 431 ----------------- 432 If you are updating from a prior version of FreeBSD (even one just 433 a few days old), you should follow this procedure. With a 434 /usr/obj tree with a fresh buildworld, 435 make buildkernel KERNEL=YOUR_KERNEL_HERE 436 make installkernel KERNEL=YOUR_KERNEL_HERE 437 438 To just build a kernel when you know that it won't mess you up 439 -------------------------------------------------------------- 440 cd src/sys/{i386,alpha}/conf 441 config KERNEL_NAME_HERE [1] 442 cd ../../compile/KERNEL_NAME_HERE 443 make depend 444 make 445 make install 446 447 [1] If in doubt, -r might help here. 448 449 If this fails, go to the "To build a kernel" section. 450 451 To rebuild everything and install it on the current system. 452 ----------------------------------------------------------- 453 make world 454 Build a new kernel, see above. 455 456 To upgrade from 4.x-stable to current 457 ------------------------------------- 458 make buildworld 459 make buildkernel KERNEL=YOUR_KERNEL_HERE 460 cp src/sys/${MACHINE_ARCH}/GENERIC.hints /boot/device.hints [2] 461 make installkernel KERNEL=YOUR_KERNEL_HERE 462 make installworld 463 [1] 464 <reboot> 465 466 Make sure that you've read the UPDATING file to understand the 467 tweaks to various things you need. At this point in the life 468 cycle of current, things change often and you are on your own 469 to cope. The defaults can also change, so please read ALL of 470 the UPDATING entries. 471 472 Also, if you are tracking -current, you must be subscribed to 473 freebsd-current@freebsd.org. Make sure that before you update 474 your sources that you have read and understood all the recent 475 messages there. If in doubt, please track -stable which has 476 much fewer pitfalls. 477 478 [1] If you have third party modules, such as vmware, you 479 should disable them at this point so they don't crash your 480 system on reboot. 481 482 [2] If you have legacy ISA devices, you may need to create 483 your own device.hints to reflect your unique hardware 484 configuration. 485 486FORMAT: 487 488This file contains a list, in reverse chronological order, of major 489breakages in tracking -current. Not all things will be listed here, 490and it only starts on March 15, 2000. Updating files can found in 491previous releases if your system is older than this. 492 493Please filter your entries through Warner Losh (imp@village.org) so 494that the style, formatting, etc of this file can be maintained. 495 496$FreeBSD: head/UPDATING 70158 2000-12-18 17:25:26Z imp $ 497