article.xml revision 267699
1<?xml version="1.0" encoding="iso-8859-1"?> 2<!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook XML V5.0-Based Extension//EN" 3 "../../../share/xml/freebsd50.dtd" [ 4<!ENTITY % release PUBLIC "-//FreeBSD//ENTITIES Release Specification//EN" "release.ent"> 5 %release; 6<!ENTITY % sponsor PUBLIC "-//FreeBSD//ENTITIES Sponsor Specification//EN" "sponsor.ent"> 7 %sponsor; 8<!ENTITY % vendor PUBLIC "-//FreeBSD//ENTITIES Vendor Specification//EN" "vendor.ent"> 9 %vendor; 10]> 11<article xmlns="http://docbook.org/ns/docbook" xmlns:xlink="http://www.w3.org/1999/xlink" version="5.0"> 12 <info> 13 <title>&os; &release.current; Release Notes</title> 14 15 <author><orgname>The &os; Project</orgname></author> 16 17 <pubdate>$FreeBSD: releng/9.3/release/doc/en_US.ISO8859-1/relnotes/article.xml 267699 2014-06-21 01:11:59Z gjb $</pubdate> 18 19 <copyright> 20 <year>2014</year> 21 <holder role="mailto:doc@FreeBSD.org">The &os; Documentation 22 Project</holder> 23 </copyright> 24 25 <legalnotice xml:id="trademarks" role="trademarks"> 26 &tm-attrib.freebsd; 27 &tm-attrib.ibm; 28 &tm-attrib.ieee; 29 &tm-attrib.intel; 30 &tm-attrib.sparc; 31 &tm-attrib.general; 32 </legalnotice> 33 34 <abstract> 35 <para>The release notes for &os; &release.current; contain 36 a summary of the changes made to the &os; base system on the 37 &release.branch; development line. This document lists 38 applicable security advisories that were issued since the last 39 release, as well as significant changes to the &os; kernel and 40 userland. Some brief remarks on upgrading are also 41 presented.</para> 42 </abstract> 43 </info> 44 45 <sect1 xml:id="intro"> 46 <title>Introduction</title> 47 48 <para>This document contains the release notes for &os; 49 &release.current;. It describes recently added, changed, or 50 deleted features of &os;. It also provides some notes on 51 upgrading from previous versions of &os;.</para> 52 53 <para>This distribution of &os; &release.current; is 54 a &release.type; distribution. It can be found at <uri 55 xlink:href="&release.url;">&release.url;</uri> or any of its 56 mirrors. More information on obtaining this (or other) 57 &release.type; distributions of &os; can be found in the <link 58 xlink:href="&url.books.handbook;/mirrors.html"><quote>Obtaining 59 &os;</quote> appendix</link> to the <link 60 xlink:href="&url.books.handbook;/">&os; 61 Handbook</link>.</para> 62 63 <para>All users are encouraged to consult the release errata 64 before installing &os;. The errata document is updated with 65 <quote>late-breaking</quote> information discovered late in the 66 release cycle or after the release. Typically, it contains 67 information on known bugs, security advisories, and corrections 68 to documentation. An up-to-date copy of the errata for &os; 69 &release.current; can be found on the &os; Web site.</para> 70 </sect1> 71 72 <sect1 xml:id="new"> 73 <title>What's New</title> 74 75 <para>This section describes the most user-visible new or changed 76 features in &os; since &release.prev;.</para> 77 78 <para>Typical release note items document recent security 79 advisories issued after &release.prev;, new drivers or hardware 80 support, new commands or options, major bug fixes, or 81 contributed software upgrades. They may also list changes to 82 major ports/packages or release engineering practices. Clearly 83 the release notes cannot list every single change made to &os; 84 between releases; this document focuses primarily on security 85 advisories, user-visible changes, and major architectural 86 improvements.</para> 87 88 <sect2 xml:id="security"> 89 <title>Security Advisories</title> 90 91 <para>Problems described in the following security advisories 92 have been fixed. For more information, consult the individual 93 advisories available from <uri 94 xlink:href="http://security.FreeBSD.org/">http://security.FreeBSD.org/</uri>.</para> 95 96 <informaltable frame="none" pgwide="1"> 97 <tgroup cols="3"> 98 <colspec colwidth="1*"/> 99 <colspec colwidth="1*"/> 100 <colspec colwidth="3*"/> 101 <thead> 102 <row> 103 <entry>Advisory</entry> 104 <entry>Date</entry> 105 <entry>Topic</entry> 106 </row> 107 </thead> 108 109 <tbody> 110 <row> 111 <entry><link 112 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:01.bsnmpd.asc">FreeBSD-SA-14:01.bsnmpd</link></entry> 113 <entry>14 January 2014</entry> 114 <entry><para>Fix &man.bsnmpd.1; remote denial of service 115 vulnerability</para></entry> 116 </row> 117 118 <row> 119 <entry><link 120 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:02.ntpd.asc">FreeBSD-SA-14:02.ntpd</link></entry> 121 <entry>14 January 2014</entry> 122 <entry><para>Disable <quote>monitor</quote> feature in 123 &man.ntpd.8; by default</para></entry> 124 </row> 125 126 <row> 127 <entry><link 128 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:04.bind.asc">FreeBSD-SA-14:04.bind</link></entry> 129 <entry>14 January 2014</entry> 130 <entry><para>Remote denial of service 131 vulnerability</para></entry> 132 </row> 133 134 <row> 135 <entry><link 136 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:05.nfsserver.asc">FreeBSD-SA-14:05.nfsserver</link></entry> 137 <entry>8 April 2014</entry> 138 <entry><para>Deadlock in the NFS server</para></entry> 139 </row> 140 141 <row> 142 <entry><link 143 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:06.openssl.asc">FreeBSD-SA-14:06.openssl</link></entry> 144 <entry>8 April 2014</entry> 145 <entry><para>ECDSA side channel leak</para></entry> 146 </row> 147 148 <row> 149 <entry><link 150 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:08.tcp.asc">FreeBSD-SA-14:08.tcp</link></entry> 151 <entry>30 April 2014</entry> 152 <entry><para>TCP reassembly vulnerability</para></entry> 153 </row> 154 155 <row> 156 <entry><link 157 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:11.sendmail.asc">FreeBSD-SA-14:11.sendmail</link></entry> 158 <entry>26 May 2014</entry> 159 <entry><para><application>Sendmail</application> 160 improper close-on-exec flag handling</para></entry> 161 </row> 162 163 <row> 164 <entry><link 165 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:12.ktrace.asc">FreeBSD-SA-14:12.ktrace</link></entry> 166 <entry>3 June 2014</entry> 167 <entry><para>&man.ktrace.1; kernel memory 168 disclosure</para></entry> 169 </row> 170 171 <row> 172 <entry><link 173 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:13.pam.asc">FreeBSD-SA-14:13.pam</link></entry> 174 <entry>3 June 2014</entry> 175 <entry><para>Incorrect error handling in PAM policy 176 parser</para></entry> 177 </row> 178 179 <row> 180 <entry><link 181 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:14.openssl.asc">FreeBSD-SA-14:14.openssl</link></entry> 182 <entry>5 June 2014</entry> 183 <entry><para>Multiple vulnerabilities</para></entry> 184 </row> 185 </tbody> 186 </tgroup> 187 </informaltable> 188 </sect2> 189 190 <sect2 xml:id="kernel"> 191 <title>Kernel Changes</title> 192 193 <para revision="256033">The &man.arcmsr.4; driver has been 194 updated to version 1.20.00.28.</para> 195 196 <para revision="256437" contrib="sponsor" 197 sponsor="&ff;">The &man.isci.4; driver is now loadable 198 via &man.kldload.8;.</para> 199 200 <para revision="256759">System-level &man.sysctl.8; values are 201 now exposed to the system for the &man.ixgbe.4; device.</para> 202 203 <para revision="256924">The &man.mfi.4; driver has been updated 204 to support MegaRAID Invader controllers.</para> 205 206 <para revision="257119">A kernel panic triggered in 207 <literal>zfs_root()</literal> after a failed rollback has 208 been fixed.</para> 209 210 <para revision="257125" contrib="sponsor" 211 sponsor="&ff;">A new &man.sysctl.8;, 212 <literal>debug.devfs_iosize_max_clamp</literal> has been added 213 which enables and disables <literal>SSIZE_MAX</literal>-sized 214 I/O requests on &man.devfs.5; files.</para> 215 216 <para revision="257126" contrib="sponsor" sponsor="&ff;">A new 217 &man.sysctl.8;, <literal>kern.disallow_high_osrel</literal>, 218 has been added which disables executing the images compiled on 219 a userland with a higher major version number than the major 220 version number of the running kernel.</para> 221 222 <para revision="257253">A kernel panic triggered by unmounting 223 a busy &man.zfs.8; filesystem has been fixed.</para> 224 225 <para revision="257373">A deadlock triggered by powering off 226 a USB device has been fixed.</para> 227 228 <para revision="258214">The &man.ata.4; driver has been updated 229 to support Intel Lynx Point PCH SMBus devices.</para> 230 231 <para revision="258215">The &man.ata.4; driver has been updated 232 to support Coleto Creek devices.</para> 233 234 <para revision="258217">The &man.ahci.4; driver has been updated 235 to support the PCI-express solid state drive in the 236 &apple; MacBook Air (model A1465).</para> 237 238 <para revision="258635">The &man.sysctl.8; 239 <literal>vfs.zfs.arc_meta_limit</literal> can now be changed 240 at runtime.</para> 241 242 <para revision="258870">The &man.mmap.2; system call has been 243 updated to more optimally use superpages and provide support 244 for tweaking the alignment of virtual mappings.</para> 245 246 <para revision="258962">A workaround has been implemented 247 in the &man.bge.4; driver for hung transmission on BCM5719 248 and BCM5720 chipsets.</para> 249 250 <para revision="259002">A kernel panic when listing sysctls 251 on a system with <literal>INVARIANTS</literal> enabled has 252 been fixed.</para> 253 254 <para revision="259466">A new &man.sysctl.8;, 255 <literal>kern.supported_archs</literal> has been added, 256 which will list the <envar>MACHINE_ARCH</envar> values 257 whose binaries can be run on the system.</para> 258 259 <para revision="259519" contrib="sponsor" 260 sponsor="&spectralogic;">Several problems that could trigger 261 kernel panic on &man.kldload.8; and &man.kldunload.8; have 262 been fixed.</para> 263 264 <para revision="260082" contrib="sponsor" 265 sponsor="&ff;">A kernel panic triggered by some 266 multi-threaded applications has been fixed.</para> 267 268 <para revision="260134">The &man.runfw.4; firmware has been 269 renamed from <literal>runfw</literal> to 270 <literal>run.fw</literal> for consistency with other firmware 271 files.</para> 272 273 <para revision="260433">A new &man.sysctl.8;, 274 <literal>kern.panic_reboot_wait_time</literal>, has been 275 added. This allows tuning the amount of time the system 276 will wait before rebooting after &man.panic.9;. The 277 <literal>kern.panic_reboot_wait_time</literal> value defaults 278 to the kernel configuration option, 279 <literal>PANIC_REBOOT_WAIT_TIME</literal>.</para> 280 281 <para revision="260644">Hardware Random Number Generators have 282 been disabled by default.</para> 283 284 <para revision="261485">Support for GPS ports has been added 285 to the &man.uhso.4; driver.</para> 286 287 <para revision="262116">A memory leak of compressed buffers 288 has been fixed in 289 <literal>l2arc_write_done()</literal>.</para> 290 291 <para revision="262153">The &man.netmap.4; framework has been 292 updated to match the version in <literal>head/</literal>, 293 which includes netmap pipes, kqueue support, and enhanced 294 VALE switch port.</para> 295 296 <para revision="262175">A deadlock triggered by sending 297 a mounted &man.zfs.8; snapshot has been fixed.</para> 298 299 <para revision="262231">Support for SIIG X1 PCI-e has been added 300 to &man.ppc.4;.</para> 301 302 <para revision="262564">Support for the ext4 filesystem 303 has been enabled, supporting read-only mounts.</para> 304 305 <para revision="262594">A kernel panic triggered by inserting 306 a USB ethernet device on VIMAGE-enabled systems has been 307 fixed.</para> 308 309 <para revision="262988" contrib="sponsor" sponsor="&ff;">TTM, 310 a memory manager used by video 311 drivers, has been merged.</para> 312 313 <para revision="263103">Support for 314 <literal>/sys/kernel/random/uuid</literal> has been added 315 to &man.linprocfs.5;.</para> 316 317 <para revision="263128">A memory leak in the 318 <literal>zpool_in_use()</literal> function has been 319 fixed.</para> 320 321 <para revision="263391">The 322 <literal>extensible_dataset</literal> &man.zpool.8; feature 323 has been added. See &man.zpool-features.7; for more 324 information.</para> 325 326 <para revision="263408">A memory leak has been fixed in 327 <literal>libzfs</literal>.</para> 328 329 <para revision="263817,263818" contrib="sponsor" 330 sponsor="&ff;">The <literal>vt</literal> driver 331 has been merged from <literal>head/</literal>.</para> 332 333 <para revision="265729" contrib="sponsor" 334 sponsor="&lsi;, &spectralogic;">The &man.mpr.4; device has 335 been added, providing support for LSI Fusion-MPT 3 12Gb 336 SCSI/SATA controllers.</para> 337 338 <para revision="266167">A kernel bug that inhibited proper 339 functionality of the <literal>dev.cpu.0.freq</literal> 340 &man.sysctl.8; on &intel; processors with Turbo 341 Boost ™ enabled has been fixed.</para> 342 343 <para revision="266269">Support for &man.xen.4; 344 hardware-assisted virtualization, <literal>XENHVM</literal>, 345 is now available as a loadable module, 346 <literal>xenhvm.ko</literal>.</para> 347 348 <sect3 xml:id="proc"> 349 <title>Hardware Support</title> 350 351 <para revision="261510">Trackpad support for 352 &apple; MacBook products has been added.</para> 353 354 <para revision="261973">The &man.nve.4; driver has been 355 deprecated, and the &man.nfe.4; driver should be used 356 instead.</para> 357 358 <para revision="262968">The &man.mfi.4; driver has been 359 updated to support MegaRAID Fury cards.</para> 360 361 <para revision="263170,263171">The Radeon KMS driver has been 362 added.</para> 363 364 <para revision="263340">The &man.aacraid.4; driver has been 365 updated to version 3.2.5.</para> 366 367 <sect4 xml:id="net-if"> 368 <title>Network Interface Support</title> 369 370 <para revision="257611">The &man.re.4; driver has been 371 updated to add preliminary support for the RTL8106E 372 chipset.</para> 373 374 <para revision="257614,257616">The &man.re.4; driver has 375 been updated to support the RTL8168G, RTL8168GU and 376 RTL8411B chipsets.</para> 377 378 <para revision="257618">The &man.re.4; driver has been 379 updated to add preliminary support for the RTL8168EP 380 chipset.</para> 381 382 <para revision="258586">The &man.oce.4; driver has been 383 updated to version 10.0.664.0.</para> 384 385 <para revision="258898">The &man.qlxgbe.4; driver has been 386 imported from <literal>head/</literal>.</para> 387 388 <para revision="258936">The &man.qlxge.4; driver has been 389 imported from <literal>head/</literal>.</para> 390 391 <para revision="258965">The &man.bge.4; driver has been 392 updated to support the BCM5725 chipset.</para> 393 394 <para revision="258967">The &man.bge.4; driver has been 395 updated to support the BCM57764, BCM57767, BCM57782, 396 BCM57786 and BCM57787 chipsets.</para> 397 398 <para revision="259457">The &man.run.4; driver has been 399 updated to support MediaTek/Ralink chipsets RT5370 and 400 RT5372.</para> 401 402 <para revision="259460">The &man.usb.4; wireless radiotap 403 headers have been realigned, allowing wireless adapters 404 to work on &arch.arm;, &arch.mips;, and other similar 405 platforms where alignment is important.</para> 406 407 <para revision="260119">The &man.run.4; firmware has been 408 updated to version 0.33.</para> 409 410 <para revision="260252">The &man.bxe.4; driver has been 411 merged from <literal>head/</literal>, providing support 412 for Broadcom NetXtreme II 10Gb PCIe adapters.</para> 413 414 <para revision="261865">The &man.run.4; driver has been 415 updated to include support for the MediaTek/Ralink RT3593 416 chipset.</para> 417 418 <para revision="261933">The &man.run.4; driver has been 419 updated to include support for the DLINK DWA-127 wireless 420 adapter.</para> 421 422 <para revision="262153">The &man.axge.4; driver has been 423 added.</para> 424 425 <para revision="262362">The &man.urndis.4; driver has been 426 imported from OpenBSD.</para> 427 428 <para revision="263582">The &man.bxe.4; driver has been 429 updated to version 1.78.78.</para> 430 </sect4> 431 </sect3> 432 433 <sect3 xml:id="fs"> 434 <title>File Systems</title> 435 436 <para revision="263410">The &man.zfs.8; filesystem has been 437 updated to support the <literal>bookmarks</literal> 438 feature.</para> 439 </sect3> 440 </sect2> 441 442 <sect2 xml:id="userland"> 443 <title>Userland Changes</title> 444 445 <para revision="256054">A new flag <literal>-c</literal>, has 446 been added to &man.pgrep.1; and &man.pkill.1;, which restricts 447 the process lookup to the specified login class.</para> 448 449 <para revision="257496">The &man.ddb.8; utility has been updated 450 to add <command>show ioapic</command> and <command>show all 451 ioapics</command>.</para> 452 453 <para revision="258183">Setting <literal>nmbcluster</literal> 454 values to their current value will now be ignored, instead of 455 failing with an error.</para> 456 457 <para revision="258763">The <filename 458 class="directory">/var/cache</filename> directory is now 459 created with mode <literal>0755</literal> instead of mode 460 <literal>0750</literal>, since this directory is used by 461 many third-party applications, which makes dropping group 462 privileges impossible.</para> 463 464 <para revision="258818">The &man.uname.1; utility has been 465 updated to include the <literal>-U</literal> and 466 <literal>-K</literal> flags, which print the 467 <envar>__FreeBSD_version</envar> for the running userland 468 and kernel, respectively.</para> 469 470 <para revision="258844">The &man.fetch.3; library has been 471 updated to support SNI (Server Name Identification), allowing 472 to use virtual hosts on HTTPS.</para> 473 474 <para revision="259243">A segmentation fault and internal 475 compiler error bug in &man.gcc.1; triggered by throwing 476 a warning before parsing any tokens has been fixed.</para> 477 478 <para revision="259269,259406" contrib="vendor" 479 vendor="&google;">Several updates to &man.gcc.1; 480 have been imported from Google.</para> 481 482 <para revision="259448">A byte-order bug in the Heimdal 483 <literal>gss_pseudo_random()</literal> function which would 484 prevent interoperability with other 485 <application>Kerberos</application> implementations has been 486 fixed. In particular, this would prevent interoperability 487 with the MIT implementation.</para> 488 489 <para revision="260007">The &man.hastctl.8; utility has been 490 updated to output the current queue sizes.</para> 491 492 <para revision="260197">The &man.ps.1; utility will no longer 493 truncate the <literal>command</literal> output column.</para> 494 495 <para revision="260208">The &man.protect.1; command has been 496 added, which allows exempting processes from being killed 497 when swap is exhausted.</para> 498 499 <para revision="260507">The &man.gmirror.8; utility now prevents 500 deactivating the last component of a mirror.</para> 501 502 <para revision="260507">A new &man.gmirror.8; command, 503 <command>gmirror destroy</command>, has been added, which will 504 destroy the &man.geom.8; and erase the &man.gmirror.8; 505 metadata.</para> 506 507 <para revision="260650">The &man.etcupdate.8; utility, a tool 508 for managing updates to files in <filename 509 class="directory">/etc</filename>, has been merged from 510 <literal>head/</literal>.</para> 511 512 <para revision="260651">The &man.find.1; utility has been 513 updated to fix incorrect behavior with the 514 <literal>-lname</literal> and <literal>-ilname</literal> 515 flags.</para> 516 517 <para revision="260868,260869">The 518 <literal>hw.uart.console</literal> is now always updated when 519 the comconsole setup changes.</para> 520 521 <para revision="260909">The &man.kldload.8; utility has been 522 updated to display a message directing to &man.dmesg.8;, 523 instead of the cryptic message <quote>Exec format 524 error</quote>.</para> 525 526 <para revision="261674">A bug that could trigger an infinite 527 loop in KDE and X has been fixed.</para> 528 529 <para revision="262076">The &man.newsyslog.8; utility has been 530 changed to use the size of the file, instead of the blocks the 531 file takes on the disk to match the behavior documented in 532 &man.newsyslog.conf.5;.</para> 533 534 <para revision="262105">A bug in &man.zdb.8; which would cause 535 numeric parameters to a flag as being treated as additional 536 flags has been fixed.</para> 537 538 <para revision="262124">The default number of &man.nfsd.8; 539 threads has been increased from <literal>4</literal> to 540 <literal>(8 * N)</literal>, where <literal>N</literal> is 541 the number of CPUs as reported by 542 <command>sysctl -n hw.ncpu</command>.</para> 543 544 <para revision="262134">The &man.pciconf.8; utility now has 545 a <literal>-V</literal> flag, which lists information such 546 as serial numbers for each device.</para> 547 548 <para revision="262158">A bug that would allow creating 549 a &man.zfs.8; snapshot of an inconsistent dataset has been 550 fixed.</para> 551 552 <para revision="262160">Receiving a &man.zfs.8; dataset with 553 <command>zfs recv -F</command> now properly destroys any 554 snapshots that were created since the incremental source 555 snapshot.</para> 556 557 <para revision="263031">Installation from a read-only 558 <envar>.OBJDIR</envar> has been fixed.</para> 559 560 <para revision="263031">A new shared library directory, 561 <filename class="directory">/usr/lib/private</filename>, 562 has been added for internal-use shared libraries.</para> 563 564 <para revision="263031">A default 565 <filename>libmap32.conf</filename> has been added, for 32-bit 566 applications.</para> 567 568 <para revision="263032">The <literal>libucl</literal> library, 569 a JSON-compatible configuration file parsing library, has been 570 imported.</para> 571 572 <para revision="263038">The &man.pkg.7; package management 573 utility has been syncronized with <literal>head/</literal>. 574 This implements binary package signature verification when 575 bootstrapping the system with <command>pkg 576 bootstrap</command>.</para> 577 578 <para revision="263042">The system timezone data files have 579 been updated to version tzdata2014a.</para> 580 581 <para revision="263212">The NetBSD &man.make.1; utility, 582 <command>bmake</command> has been imported for compatibility 583 with the &os; Ports Collection. It is installed as 584 <command>bmake</command>, and the <command>make</command> 585 remains the &os; version.</para> 586 587 <para revision="263326">The &man.fetch.3; library now 588 supports <literal>Last-Modified</literal> timestamps which 589 return UTC instead of GMT.</para> 590 591 <para revision="263404">Aliases for the &man.zfs.8; commands 592 <literal>list -t snap</literal> and <literal>snap</literal> 593 have been added to match &oracle; Solaris 11.</para> 594 595 <para revision="263406">A new flag, <literal>-p</literal>, has 596 been added to the &man.zfs.8; <literal>list</literal> command, 597 providing output in a parseable form.</para> 598 599 <para revision="263421"><application>OpenPAM</application> has 600 been updated to Nummularia (20130907), which incorporates 601 several bug fixes and documentation improvements. The 602 &man.openpam.ttyconv.3; library has been completely 603 rewritten.</para> 604 605 <para revision="264423">The &man.sh.1; command interpreter has 606 been updated to expand assignments after 607 <literal>export</literal>, <literal>local</literal>, and 608 <literal>readonly</literal> differently. As result of this 609 change, variable assignment such as <literal>local 610 v=$1</literal> will assign the first positional 611 parameter to <literal>v</literal>, even if 612 <literal>$1</literal> contains spaces, and 613 <literal>local w=<replaceable>~/myfile</replaceable></literal> 614 will expand the tilde (<literal>~</literal>).</para> 615 616 <para revision="264699">The &man.find.1; utility has been 617 updated to implement <literal>-ignore_readdir_race</literal>. 618 Prior to this change, <literal>-ignore_readdir_race</literal> 619 existed as an option for GNU &man.find.1; compatibility, and 620 was ignored if specified. A counter primary, 621 <literal>-noignore_readdir_race</literal> now also exists, and 622 is the default behavior.</para> 623 624 <para revision="266286">The &man.ps.1; utility has been updated 625 to include the <literal>-J</literal> flag, used to filter 626 output by matching &man.jail.8; IDs and names. Additionally, 627 argument <literal>0</literal> can be used to 628 <literal>-J</literal> to only list processes running on the 629 host system.</para> 630 631 <para revision="266287">The &man.top.1; utility has been updated 632 to filter by &man.jail.8; ID or name, in followup to the 633 &man.ps.1; change in <literal>r265229</literal>.</para> 634 635 <para revision="266818">The Blowfish &man.crypt.3; default 636 format has been changed to 637 <literal>$2b$</literal>.</para> 638 639 <para revision="267114">The default &man.newsyslog.conf.5; now 640 includes files in the 641 <filename>/etc/newsyslog.conf.d/</filename> and 642 <filename>/usr/local/etc/newsyslog.conf.d/</filename> 643 directories by default for &man.newsyslog.8;.</para> 644 645 <para revision="267243">A new flag, <quote>onifconsole</quote> 646 has been added to <filename>/etc/ttys</filename>. This allows 647 the system to provide a login prompt via serial console if the 648 device is an active kernel console, otherwise it is equivalent 649 to <literal>off</literal>.</para> 650 651 <para revision="267379">The &man.arc4random.3; library has been 652 updated to match that of &os;-CURRENT.</para> 653 654 <para revision="267411">The &man.pmcstat.8; utility has been 655 updated to include a new flag, <literal>-l</literal>, which 656 ends event collection after the specified number of 657 seconds.</para> 658 659 <sect3 xml:id="periodic-scripts"> 660 <title>&man.periodic.8; Scripts</title> 661 662 <para revision="263662">The 663 <filename>/etc/periodic/security/800.loginfail</filename> 664 &man.periodic.8; script has been refined to catch more 665 authentication failures and reduce false positives.</para> 666 </sect3> 667 668 <sect3 xml:id="rc-scripts"> 669 <title>&man.rc.8; Scripts</title> 670 671 <para revision="256917">Support for <quote>first boot</quote> 672 scripts has been added to &man.rc.8;. See &man.rc.8; and 673 &man.rc.conf.5; for implementation details.</para> 674 675 <para revision="260432">The &man.rc.8; system will now 676 re-source &man.rc.conf.5; on receipt of 677 <literal>SIGALRM</literal>.</para> 678 </sect3> 679 </sect2> 680 681 <sect2 xml:id="contrib"> 682 <title>Contributed Software</title> 683 684 <para revision="255934">The &man.readline.3; library has been 685 updated to version 1.104.</para> 686 687 <para revision="266711"><application>Sendmail</application> has 688 been updated to version 8.14.9.</para> 689 690 <para revision="262706" contrib="sponsor" 691 sponsor="&dkhostmaster;"><application>BIND</application> has 692 been updated to version 9.9.5.</para> 693 694 <para revision="263286">The &man.xz.1; utility has been updated 695 to a post-5.0.5 snapshot.</para> 696 697 <para revision="263970"><application>OpenSSH</application> has 698 been updated to version 6.6p1.</para> 699 700 <para revision="267285"><application>OpenSSL</application> has 701 been updated to version 0.9.8za.</para> 702 </sect2> 703 704 <sect2 xml:id="releng"> 705 <title>Release Engineering and Integration</title> 706 707 <para revision="260891">As part of the release build, the 708 &man.etcupdate.8; utility will bootstrap the system, allowing 709 &man.etcupdate.8; to work after the first upgrade of a 710 system.</para> 711 712 <para revision="262879" contrib="sponsor" 713 sponsor="&ff;">The <filename>release.sh</filename> 714 script and release <filename>Makefile</filename> have been 715 updated to use &man.pkg.7; to populate the dvd installation 716 medium.</para> 717 718 <para revision="263028">The &man.services.mkdb.8; utility has 719 been updated to support multiple byte orders. Similar to 720 &man.cap.mkdb.1;, the <filename>services.db</filename> will 721 be created with proper endinanness as part of 722 cross-architecture release builds.</para> 723 </sect2> 724 </sect1> 725 726 <sect1 xml:id="upgrade"> 727 <title>Upgrading from Previous Releases of &os;</title> 728 729 <sect2> 730 <title>Upgrading Using &man.freebsd-update.8; or a Source-Based 731 Procedure</title> 732 733 <para arch="amd64,i386">Binary upgrades between RELEASE versions 734 (and snapshots of the various security branches) are supported 735 using the &man.freebsd-update.8; utility. The binary upgrade 736 procedure will update unmodified userland utilities, as well 737 as an unmodified <filename>GENERIC</filename> kernel, 738 distributed as a part of an official &os; release. The 739 &man.freebsd-update.8; utility requires that the host being 740 upgraded have Internet connectivity.</para> 741 742 <para>Source-based upgrades (those based on recompiling the &os; 743 base system from source code) from previous versions are 744 supported using to the instructions in 745 <filename>/usr/src/UPDATING</filename>.</para> 746 747 <para>For more specific information about upgrading 748 instructions, see <uri 749 xlink:href="http://www.FreeBSD.org/releases/9.3R/installation.html">http://www.FreeBSD.org/releases/9.3R/installation.html</uri>.</para> 750 751 <important> 752 <para>Upgrading &os; should only be attempted 753 after backing up <emphasis>all</emphasis> data and 754 configuration files.</para> 755 </important> 756 </sect2> 757 758 <sect2> 759 <title xml:id="upgrade-pitfalls">User-Visible 760 Incompatibilities</title> 761 762 <para>&os; 9.0 and later have several incompatibilities in 763 system configuration which you might want to know before 764 upgrading your system. <emphasis>Please read this section and 765 the <link 766 xlink:href="http://www.freebsd.org/releases/9.0R/relnotes-detailed.html#UPGRADE">Upgrading 767 Section in 9.0-RELEASE Release Notes</link> carefully 768 before submitting a problem report and/or posting a question 769 to the &os; mailing lists.</emphasis></para> 770 </sect2> 771 </sect1> 772</article> 773