article.xml revision 267848
1<?xml version="1.0" encoding="iso-8859-1"?> 2<!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook XML V5.0-Based Extension//EN" 3 "../../../share/xml/freebsd50.dtd" [ 4<!ENTITY % release PUBLIC "-//FreeBSD//ENTITIES Release Specification//EN" "release.ent"> 5 %release; 6<!ENTITY % sponsor PUBLIC "-//FreeBSD//ENTITIES Sponsor Specification//EN" "sponsor.ent"> 7 %sponsor; 8<!ENTITY % vendor PUBLIC "-//FreeBSD//ENTITIES Vendor Specification//EN" "vendor.ent"> 9 %vendor; 10]> 11<article xmlns="http://docbook.org/ns/docbook" xmlns:xlink="http://www.w3.org/1999/xlink" version="5.0"> 12 <info> 13 <title>&os; &release.current; Release Notes</title> 14 15 <author><orgname>The &os; Project</orgname></author> 16 17 <pubdate>$FreeBSD: releng/9.3/release/doc/en_US.ISO8859-1/relnotes/article.xml 267848 2014-06-25 00:33:30Z gjb $</pubdate> 18 19 <copyright> 20 <year>2014</year> 21 <holder role="mailto:doc@FreeBSD.org">The &os; Documentation 22 Project</holder> 23 </copyright> 24 25 <legalnotice xml:id="trademarks" role="trademarks"> 26 &tm-attrib.freebsd; 27 &tm-attrib.ibm; 28 &tm-attrib.ieee; 29 &tm-attrib.intel; 30 &tm-attrib.sparc; 31 &tm-attrib.general; 32 </legalnotice> 33 34 <abstract> 35 <para>The release notes for &os; &release.current; contain 36 a summary of the changes made to the &os; base system on the 37 &release.branch; development line. This document lists 38 applicable security advisories that were issued since the last 39 release, as well as significant changes to the &os; kernel and 40 userland. Some brief remarks on upgrading are also 41 presented.</para> 42 </abstract> 43 </info> 44 45 <sect1 xml:id="intro"> 46 <title>Introduction</title> 47 48 <para>This document contains the release notes for &os; 49 &release.current;. It describes recently added, changed, or 50 deleted features of &os;. It also provides some notes on 51 upgrading from previous versions of &os;.</para> 52 53 <para>This distribution of &os; &release.current; is 54 a &release.type; distribution. It can be found at <uri 55 xlink:href="&release.url;">&release.url;</uri> or any of its 56 mirrors. More information on obtaining this (or other) 57 &release.type; distributions of &os; can be found in the <link 58 xlink:href="&url.books.handbook;/mirrors.html"><quote>Obtaining 59 &os;</quote> appendix</link> to the <link 60 xlink:href="&url.books.handbook;/">&os; 61 Handbook</link>.</para> 62 63 <para>All users are encouraged to consult the release errata 64 before installing &os;. The errata document is updated with 65 <quote>late-breaking</quote> information discovered late in the 66 release cycle or after the release. Typically, it contains 67 information on known bugs, security advisories, and corrections 68 to documentation. An up-to-date copy of the errata for &os; 69 &release.current; can be found on the &os; Web site.</para> 70 </sect1> 71 72 <sect1 xml:id="new"> 73 <title>What's New</title> 74 75 <para>This section describes the most user-visible new or changed 76 features in &os; since &release.prev;.</para> 77 78 <para>Typical release note items document recent security 79 advisories issued after &release.prev;, new drivers or hardware 80 support, new commands or options, major bug fixes, or 81 contributed software upgrades. They may also list changes to 82 major ports/packages or release engineering practices. Clearly 83 the release notes cannot list every single change made to &os; 84 between releases; this document focuses primarily on security 85 advisories, user-visible changes, and major architectural 86 improvements.</para> 87 88 <sect2 xml:id="security"> 89 <title>Security Advisories</title> 90 91 <para>Problems described in the following security advisories 92 have been fixed. For more information, consult the individual 93 advisories available from <uri 94 xlink:href="http://security.FreeBSD.org/">http://security.FreeBSD.org/</uri>.</para> 95 96 <informaltable frame="none" pgwide="1"> 97 <tgroup cols="3"> 98 <colspec colwidth="1*"/> 99 <colspec colwidth="1*"/> 100 <colspec colwidth="3*"/> 101 <thead> 102 <row> 103 <entry>Advisory</entry> 104 <entry>Date</entry> 105 <entry>Topic</entry> 106 </row> 107 </thead> 108 109 <tbody> 110 <row> 111 <entry><link 112 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:01.bsnmpd.asc">FreeBSD-SA-14:01.bsnmpd</link></entry> 113 <entry>14 January 2014</entry> 114 <entry><para>Fix &man.bsnmpd.1; remote denial of service 115 vulnerability</para></entry> 116 </row> 117 118 <row> 119 <entry><link 120 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:02.ntpd.asc">FreeBSD-SA-14:02.ntpd</link></entry> 121 <entry>14 January 2014</entry> 122 <entry><para>Disable <quote>monitor</quote> feature in 123 &man.ntpd.8; by default</para></entry> 124 </row> 125 126 <row> 127 <entry><link 128 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:04.bind.asc">FreeBSD-SA-14:04.bind</link></entry> 129 <entry>14 January 2014</entry> 130 <entry><para>Remote denial of service 131 vulnerability</para></entry> 132 </row> 133 134 <row> 135 <entry><link 136 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:05.nfsserver.asc">FreeBSD-SA-14:05.nfsserver</link></entry> 137 <entry>8 April 2014</entry> 138 <entry><para>Deadlock in the NFS server</para></entry> 139 </row> 140 141 <row> 142 <entry><link 143 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:06.openssl.asc">FreeBSD-SA-14:06.openssl</link></entry> 144 <entry>8 April 2014</entry> 145 <entry><para>ECDSA side channel leak</para></entry> 146 </row> 147 148 <row> 149 <entry><link 150 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:08.tcp.asc">FreeBSD-SA-14:08.tcp</link></entry> 151 <entry>30 April 2014</entry> 152 <entry><para>TCP reassembly vulnerability</para></entry> 153 </row> 154 155 <row> 156 <entry><link 157 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:11.sendmail.asc">FreeBSD-SA-14:11.sendmail</link></entry> 158 <entry>26 May 2014</entry> 159 <entry><para><application>Sendmail</application> 160 improper close-on-exec flag handling</para></entry> 161 </row> 162 163 <row> 164 <entry><link 165 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:12.ktrace.asc">FreeBSD-SA-14:12.ktrace</link></entry> 166 <entry>3 June 2014</entry> 167 <entry><para>&man.ktrace.1; kernel memory 168 disclosure</para></entry> 169 </row> 170 171 <row> 172 <entry><link 173 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:13.pam.asc">FreeBSD-SA-14:13.pam</link></entry> 174 <entry>3 June 2014</entry> 175 <entry><para>Incorrect error handling in PAM policy 176 parser</para></entry> 177 </row> 178 179 <row> 180 <entry><link 181 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:14.openssl.asc">FreeBSD-SA-14:14.openssl</link></entry> 182 <entry>5 June 2014</entry> 183 <entry><para>Multiple vulnerabilities</para></entry> 184 </row> 185 186 <row> 187 <entry><link xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:16.file.asc">SA-14:16.file</link></entry> 188 <entry>24 June 2014</entry> 189 <entry><para>Multiple vulnerabilities</para></entry> 190 </row> 191 </tbody> 192 </tgroup> 193 </informaltable> 194 </sect2> 195 196 <sect2 xml:id="kernel"> 197 <title>Kernel Changes</title> 198 199 <para revision="256033">The &man.arcmsr.4; driver has been 200 updated to version 1.20.00.28.</para> 201 202 <para revision="256437" contrib="sponsor" 203 sponsor="&ff;">The &man.isci.4; driver is now loadable 204 via &man.kldload.8;.</para> 205 206 <para revision="256759">System-level &man.sysctl.8; values are 207 now exposed to the system for the &man.ixgbe.4; device.</para> 208 209 <para revision="256924">The &man.mfi.4; driver has been updated 210 to support MegaRAID Invader controllers.</para> 211 212 <para revision="257119">A kernel panic triggered in 213 <literal>zfs_root()</literal> after a failed rollback has 214 been fixed.</para> 215 216 <para revision="257125" contrib="sponsor" 217 sponsor="&ff;">A new &man.sysctl.8;, 218 <literal>debug.devfs_iosize_max_clamp</literal> has been added 219 which enables and disables <literal>SSIZE_MAX</literal>-sized 220 I/O requests on &man.devfs.5; files.</para> 221 222 <para revision="257126" contrib="sponsor" sponsor="&ff;">A new 223 &man.sysctl.8;, <literal>kern.disallow_high_osrel</literal>, 224 has been added which disables executing the images compiled on 225 a userland with a higher major version number than the major 226 version number of the running kernel.</para> 227 228 <para revision="257253">A kernel panic triggered by unmounting 229 a busy &man.zfs.8; filesystem has been fixed.</para> 230 231 <para revision="257373">A deadlock triggered by powering off 232 a USB device has been fixed.</para> 233 234 <para revision="258214">The &man.ata.4; driver has been updated 235 to support Intel Lynx Point PCH SMBus devices.</para> 236 237 <para revision="258215">The &man.ata.4; driver has been updated 238 to support Coleto Creek devices.</para> 239 240 <para revision="258217">The &man.ahci.4; driver has been updated 241 to support the PCI-express solid state drive in the 242 &apple; MacBook Air (model A1465).</para> 243 244 <para revision="258635">The &man.sysctl.8; 245 <literal>vfs.zfs.arc_meta_limit</literal> can now be changed 246 at runtime.</para> 247 248 <para revision="258870">The &man.mmap.2; system call has been 249 updated to more optimally use superpages and provide support 250 for tweaking the alignment of virtual mappings.</para> 251 252 <para revision="258962">A workaround has been implemented 253 in the &man.bge.4; driver for hung transmission on BCM5719 254 and BCM5720 chipsets.</para> 255 256 <para revision="259002">A kernel panic when listing sysctls 257 on a system with <literal>INVARIANTS</literal> enabled has 258 been fixed.</para> 259 260 <para revision="259466">A new &man.sysctl.8;, 261 <literal>kern.supported_archs</literal> has been added, 262 which will list the <envar>MACHINE_ARCH</envar> values 263 whose binaries can be run on the system.</para> 264 265 <para revision="259519" contrib="sponsor" 266 sponsor="&spectralogic;">Several problems that could trigger 267 kernel panic on &man.kldload.8; and &man.kldunload.8; have 268 been fixed.</para> 269 270 <para revision="260082" contrib="sponsor" 271 sponsor="&ff;">A kernel panic triggered by some 272 multi-threaded applications has been fixed.</para> 273 274 <para revision="260134">The &man.runfw.4; firmware has been 275 renamed from <literal>runfw</literal> to 276 <literal>run.fw</literal> for consistency with other firmware 277 files.</para> 278 279 <para revision="260433">A new &man.sysctl.8;, 280 <literal>kern.panic_reboot_wait_time</literal>, has been 281 added. This allows tuning the amount of time the system 282 will wait before rebooting after &man.panic.9;. The 283 <literal>kern.panic_reboot_wait_time</literal> value defaults 284 to the kernel configuration option, 285 <literal>PANIC_REBOOT_WAIT_TIME</literal>.</para> 286 287 <para revision="260644">Hardware Random Number Generators have 288 been disabled by default.</para> 289 290 <para revision="261485">Support for GPS ports has been added 291 to the &man.uhso.4; driver.</para> 292 293 <para revision="262116">A memory leak of compressed buffers 294 has been fixed in 295 <literal>l2arc_write_done()</literal>.</para> 296 297 <para revision="262153">The &man.netmap.4; framework has been 298 updated to match the version in <literal>head/</literal>, 299 which includes netmap pipes, kqueue support, and enhanced 300 VALE switch port.</para> 301 302 <para revision="262175">A deadlock triggered by sending 303 a mounted &man.zfs.8; snapshot has been fixed.</para> 304 305 <para revision="262231">Support for SIIG X1 PCI-e has been added 306 to &man.ppc.4;.</para> 307 308 <para revision="262564">Support for the ext4 filesystem 309 has been enabled, supporting read-only mounts.</para> 310 311 <para revision="262594">A kernel panic triggered by inserting 312 a USB ethernet device on VIMAGE-enabled systems has been 313 fixed.</para> 314 315 <para revision="262988" contrib="sponsor" sponsor="&ff;">TTM, 316 a memory manager used by video 317 drivers, has been merged.</para> 318 319 <para revision="263103">Support for 320 <literal>/sys/kernel/random/uuid</literal> has been added 321 to &man.linprocfs.5;.</para> 322 323 <para revision="263128">A memory leak in the 324 <literal>zpool_in_use()</literal> function has been 325 fixed.</para> 326 327 <para revision="263391">The 328 <literal>extensible_dataset</literal> &man.zpool.8; feature 329 has been added. See &man.zpool-features.7; for more 330 information.</para> 331 332 <para revision="263408">A memory leak has been fixed in 333 <literal>libzfs</literal>.</para> 334 335 <para revision="263817,263818" contrib="sponsor" 336 sponsor="&ff;">The <literal>vt</literal> driver 337 has been merged from <literal>head/</literal>.</para> 338 339 <para revision="265729" contrib="sponsor" 340 sponsor="&lsi;, &spectralogic;">The &man.mpr.4; device has 341 been added, providing support for LSI Fusion-MPT 3 12Gb 342 SCSI/SATA controllers.</para> 343 344 <para revision="266167">A kernel bug that inhibited proper 345 functionality of the <literal>dev.cpu.0.freq</literal> 346 &man.sysctl.8; on &intel; processors with Turbo 347 Boost ™ enabled has been fixed.</para> 348 349 <para revision="266269">Support for &man.xen.4; 350 hardware-assisted virtualization, <literal>XENHVM</literal>, 351 is now available as a loadable module, 352 <literal>xenhvm.ko</literal>.</para> 353 354 <sect3 xml:id="proc"> 355 <title>Hardware Support</title> 356 357 <para revision="261510">Trackpad support for 358 &apple; MacBook products has been added.</para> 359 360 <para revision="261973">The &man.nve.4; driver has been 361 deprecated, and the &man.nfe.4; driver should be used 362 instead.</para> 363 364 <para revision="262968">The &man.mfi.4; driver has been 365 updated to support MegaRAID Fury cards.</para> 366 367 <para revision="263170,263171">The Radeon KMS driver has been 368 added.</para> 369 370 <para revision="263340">The &man.aacraid.4; driver has been 371 updated to version 3.2.5.</para> 372 373 <sect4 xml:id="net-if"> 374 <title>Network Interface Support</title> 375 376 <para revision="257611">The &man.re.4; driver has been 377 updated to add preliminary support for the RTL8106E 378 chipset.</para> 379 380 <para revision="257614,257616">The &man.re.4; driver has 381 been updated to support the RTL8168G, RTL8168GU and 382 RTL8411B chipsets.</para> 383 384 <para revision="257618">The &man.re.4; driver has been 385 updated to add preliminary support for the RTL8168EP 386 chipset.</para> 387 388 <para revision="258586">The &man.oce.4; driver has been 389 updated to version 10.0.664.0.</para> 390 391 <para revision="258898">The &man.qlxgbe.4; driver has been 392 imported from <literal>head/</literal>.</para> 393 394 <para revision="258936">The &man.qlxge.4; driver has been 395 imported from <literal>head/</literal>.</para> 396 397 <para revision="258965">The &man.bge.4; driver has been 398 updated to support the BCM5725 chipset.</para> 399 400 <para revision="258967">The &man.bge.4; driver has been 401 updated to support the BCM57764, BCM57767, BCM57782, 402 BCM57786 and BCM57787 chipsets.</para> 403 404 <para revision="259457">The &man.run.4; driver has been 405 updated to support MediaTek/Ralink chipsets RT5370 and 406 RT5372.</para> 407 408 <para revision="259460">The &man.usb.4; wireless radiotap 409 headers have been realigned, allowing wireless adapters 410 to work on &arch.arm;, &arch.mips;, and other similar 411 platforms where alignment is important.</para> 412 413 <para revision="260119">The &man.run.4; firmware has been 414 updated to version 0.33.</para> 415 416 <para revision="260252">The &man.bxe.4; driver has been 417 merged from <literal>head/</literal>, providing support 418 for Broadcom NetXtreme II 10Gb PCIe adapters.</para> 419 420 <para revision="261865">The &man.run.4; driver has been 421 updated to include support for the MediaTek/Ralink RT3593 422 chipset.</para> 423 424 <para revision="261933">The &man.run.4; driver has been 425 updated to include support for the DLINK DWA-127 wireless 426 adapter.</para> 427 428 <para revision="262153">The &man.axge.4; driver has been 429 added.</para> 430 431 <para revision="262362">The &man.urndis.4; driver has been 432 imported from OpenBSD.</para> 433 434 <para revision="263582">The &man.bxe.4; driver has been 435 updated to version 1.78.78.</para> 436 </sect4> 437 </sect3> 438 439 <sect3 xml:id="fs"> 440 <title>File Systems</title> 441 442 <para revision="263410">The &man.zfs.8; filesystem has been 443 updated to support the <literal>bookmarks</literal> 444 feature.</para> 445 </sect3> 446 </sect2> 447 448 <sect2 xml:id="userland"> 449 <title>Userland Changes</title> 450 451 <para revision="256054">A new flag <literal>-c</literal>, has 452 been added to &man.pgrep.1; and &man.pkill.1;, which restricts 453 the process lookup to the specified login class.</para> 454 455 <para revision="257496">The &man.ddb.8; utility has been updated 456 to add <command>show ioapic</command> and <command>show all 457 ioapics</command>.</para> 458 459 <para revision="258183">Setting <literal>nmbcluster</literal> 460 values to their current value will now be ignored, instead of 461 failing with an error.</para> 462 463 <para revision="258763">The <filename 464 class="directory">/var/cache</filename> directory is now 465 created with mode <literal>0755</literal> instead of mode 466 <literal>0750</literal>, since this directory is used by 467 many third-party applications, which makes dropping group 468 privileges impossible.</para> 469 470 <para revision="258818">The &man.uname.1; utility has been 471 updated to include the <literal>-U</literal> and 472 <literal>-K</literal> flags, which print the 473 <envar>__FreeBSD_version</envar> for the running userland 474 and kernel, respectively.</para> 475 476 <para revision="258844">The &man.fetch.3; library has been 477 updated to support SNI (Server Name Identification), allowing 478 to use virtual hosts on HTTPS.</para> 479 480 <para revision="259243">A segmentation fault and internal 481 compiler error bug in &man.gcc.1; triggered by throwing 482 a warning before parsing any tokens has been fixed.</para> 483 484 <para revision="259269,259406" contrib="vendor" 485 vendor="&google;">Several updates to &man.gcc.1; 486 have been imported from Google.</para> 487 488 <para revision="259448">A byte-order bug in the Heimdal 489 <literal>gss_pseudo_random()</literal> function which would 490 prevent interoperability with other 491 <application>Kerberos</application> implementations has been 492 fixed. In particular, this would prevent interoperability 493 with the MIT implementation.</para> 494 495 <para revision="260007">The &man.hastctl.8; utility has been 496 updated to output the current queue sizes.</para> 497 498 <para revision="260197">The &man.ps.1; utility will no longer 499 truncate the <literal>command</literal> output column.</para> 500 501 <para revision="260208">The &man.protect.1; command has been 502 added, which allows exempting processes from being killed 503 when swap is exhausted.</para> 504 505 <para revision="260507">The &man.gmirror.8; utility now prevents 506 deactivating the last component of a mirror.</para> 507 508 <para revision="260507">A new &man.gmirror.8; command, 509 <command>gmirror destroy</command>, has been added, which will 510 destroy the &man.geom.8; and erase the &man.gmirror.8; 511 metadata.</para> 512 513 <para revision="260650">The &man.etcupdate.8; utility, a tool 514 for managing updates to files in <filename 515 class="directory">/etc</filename>, has been merged from 516 <literal>head/</literal>.</para> 517 518 <para revision="260651">The &man.find.1; utility has been 519 updated to fix incorrect behavior with the 520 <literal>-lname</literal> and <literal>-ilname</literal> 521 flags.</para> 522 523 <para revision="260868,260869">The 524 <literal>hw.uart.console</literal> is now always updated when 525 the comconsole setup changes.</para> 526 527 <para revision="260909">The &man.kldload.8; utility has been 528 updated to display a message directing to &man.dmesg.8;, 529 instead of the cryptic message <quote>Exec format 530 error</quote>.</para> 531 532 <para revision="261674">A bug that could trigger an infinite 533 loop in KDE and X has been fixed.</para> 534 535 <para revision="262076">The &man.newsyslog.8; utility has been 536 changed to use the size of the file, instead of the blocks the 537 file takes on the disk to match the behavior documented in 538 &man.newsyslog.conf.5;.</para> 539 540 <para revision="262105">A bug in &man.zdb.8; which would cause 541 numeric parameters to a flag as being treated as additional 542 flags has been fixed.</para> 543 544 <para revision="262124">The default number of &man.nfsd.8; 545 threads has been increased from <literal>4</literal> to 546 <literal>(8 * N)</literal>, where <literal>N</literal> is 547 the number of CPUs as reported by 548 <command>sysctl -n hw.ncpu</command>.</para> 549 550 <para revision="262134">The &man.pciconf.8; utility now has 551 a <literal>-V</literal> flag, which lists information such 552 as serial numbers for each device.</para> 553 554 <para revision="262158">A bug that would allow creating 555 a &man.zfs.8; snapshot of an inconsistent dataset has been 556 fixed.</para> 557 558 <para revision="262160">Receiving a &man.zfs.8; dataset with 559 <command>zfs recv -F</command> now properly destroys any 560 snapshots that were created since the incremental source 561 snapshot.</para> 562 563 <para revision="263031">Installation from a read-only 564 <envar>.OBJDIR</envar> has been fixed.</para> 565 566 <para revision="263031">A new shared library directory, 567 <filename class="directory">/usr/lib/private</filename>, 568 has been added for internal-use shared libraries.</para> 569 570 <para revision="263031">A default 571 <filename>libmap32.conf</filename> has been added, for 32-bit 572 applications.</para> 573 574 <para revision="263032">The <literal>libucl</literal> library, 575 a JSON-compatible configuration file parsing library, has been 576 imported.</para> 577 578 <para revision="263038">The &man.pkg.7; package management 579 utility has been syncronized with <literal>head/</literal>. 580 This implements binary package signature verification when 581 bootstrapping the system with <command>pkg 582 bootstrap</command>.</para> 583 584 <para revision="263042">The system timezone data files have 585 been updated to version tzdata2014a.</para> 586 587 <para revision="263212">The NetBSD &man.make.1; utility, 588 <command>bmake</command> has been imported for compatibility 589 with the &os; Ports Collection. It is installed as 590 <command>bmake</command>, and the <command>make</command> 591 remains the &os; version.</para> 592 593 <para revision="263326">The &man.fetch.3; library now 594 supports <literal>Last-Modified</literal> timestamps which 595 return UTC instead of GMT.</para> 596 597 <para revision="263404">Aliases for the &man.zfs.8; commands 598 <literal>list -t snap</literal> and <literal>snap</literal> 599 have been added to match &oracle; Solaris 11.</para> 600 601 <para revision="263406">A new flag, <literal>-p</literal>, has 602 been added to the &man.zfs.8; <literal>list</literal> command, 603 providing output in a parseable form.</para> 604 605 <para revision="263421"><application>OpenPAM</application> has 606 been updated to Nummularia (20130907), which incorporates 607 several bug fixes and documentation improvements. The 608 &man.openpam.ttyconv.3; library has been completely 609 rewritten.</para> 610 611 <para revision="264423">The &man.sh.1; command interpreter has 612 been updated to expand assignments after 613 <literal>export</literal>, <literal>local</literal>, and 614 <literal>readonly</literal> differently. As result of this 615 change, variable assignment such as <literal>local 616 v=$1</literal> will assign the first positional 617 parameter to <literal>v</literal>, even if 618 <literal>$1</literal> contains spaces, and 619 <literal>local w=<replaceable>~/myfile</replaceable></literal> 620 will expand the tilde (<literal>~</literal>).</para> 621 622 <para revision="264699">The &man.find.1; utility has been 623 updated to implement <literal>-ignore_readdir_race</literal>. 624 Prior to this change, <literal>-ignore_readdir_race</literal> 625 existed as an option for GNU &man.find.1; compatibility, and 626 was ignored if specified. A counter primary, 627 <literal>-noignore_readdir_race</literal> now also exists, and 628 is the default behavior.</para> 629 630 <para revision="266286">The &man.ps.1; utility has been updated 631 to include the <literal>-J</literal> flag, used to filter 632 output by matching &man.jail.8; IDs and names. Additionally, 633 argument <literal>0</literal> can be used to 634 <literal>-J</literal> to only list processes running on the 635 host system.</para> 636 637 <para revision="266287">The &man.top.1; utility has been updated 638 to filter by &man.jail.8; ID or name, in followup to the 639 &man.ps.1; change in <literal>r265229</literal>.</para> 640 641 <para revision="266818">The Blowfish &man.crypt.3; default 642 format has been changed to 643 <literal>$2b$</literal>.</para> 644 645 <para revision="267114">The default &man.newsyslog.conf.5; now 646 includes files in the 647 <filename>/etc/newsyslog.conf.d/</filename> and 648 <filename>/usr/local/etc/newsyslog.conf.d/</filename> 649 directories by default for &man.newsyslog.8;.</para> 650 651 <para revision="267243">A new flag, <quote>onifconsole</quote> 652 has been added to <filename>/etc/ttys</filename>. This allows 653 the system to provide a login prompt via serial console if the 654 device is an active kernel console, otherwise it is equivalent 655 to <literal>off</literal>.</para> 656 657 <para revision="267379">The &man.arc4random.3; library has been 658 updated to match that of &os;-CURRENT.</para> 659 660 <para revision="267411">The &man.pmcstat.8; utility has been 661 updated to include a new flag, <literal>-l</literal>, which 662 ends event collection after the specified number of 663 seconds.</para> 664 665 <sect3 xml:id="periodic-scripts"> 666 <title>&man.periodic.8; Scripts</title> 667 668 <para revision="263662">The 669 <filename>/etc/periodic/security/800.loginfail</filename> 670 &man.periodic.8; script has been refined to catch more 671 authentication failures and reduce false positives.</para> 672 </sect3> 673 674 <sect3 xml:id="rc-scripts"> 675 <title>&man.rc.8; Scripts</title> 676 677 <para revision="256917">Support for <quote>first boot</quote> 678 scripts has been added to &man.rc.8;. See &man.rc.8; and 679 &man.rc.conf.5; for implementation details.</para> 680 681 <para revision="260432">The &man.rc.8; system will now 682 re-source &man.rc.conf.5; on receipt of 683 <literal>SIGALRM</literal>.</para> 684 </sect3> 685 </sect2> 686 687 <sect2 xml:id="contrib"> 688 <title>Contributed Software</title> 689 690 <para revision="255934">The &man.readline.3; library has been 691 updated to version 1.104.</para> 692 693 <para revision="266711"><application>Sendmail</application> has 694 been updated to version 8.14.9.</para> 695 696 <para revision="262706" contrib="sponsor" 697 sponsor="&dkhostmaster;"><application>BIND</application> has 698 been updated to version 9.9.5.</para> 699 700 <para revision="263286">The &man.xz.1; utility has been updated 701 to a post-5.0.5 snapshot.</para> 702 703 <para revision="263970"><application>OpenSSH</application> has 704 been updated to version 6.6p1.</para> 705 706 <para revision="267285"><application>OpenSSL</application> has 707 been updated to version 0.9.8za.</para> 708 </sect2> 709 710 <sect2 xml:id="releng"> 711 <title>Release Engineering and Integration</title> 712 713 <para revision="260891">As part of the release build, the 714 &man.etcupdate.8; utility will bootstrap the system, allowing 715 &man.etcupdate.8; to work after the first upgrade of a 716 system.</para> 717 718 <para revision="262879" contrib="sponsor" 719 sponsor="&ff;">The <filename>release.sh</filename> 720 script and release <filename>Makefile</filename> have been 721 updated to use &man.pkg.7; to populate the dvd installation 722 medium.</para> 723 724 <para revision="263028">The &man.services.mkdb.8; utility has 725 been updated to support multiple byte orders. Similar to 726 &man.cap.mkdb.1;, the <filename>services.db</filename> will 727 be created with proper endinanness as part of 728 cross-architecture release builds.</para> 729 </sect2> 730 </sect1> 731 732 <sect1 xml:id="upgrade"> 733 <title>Upgrading from Previous Releases of &os;</title> 734 735 <sect2> 736 <title>Upgrading Using &man.freebsd-update.8; or a Source-Based 737 Procedure</title> 738 739 <para arch="amd64,i386">Binary upgrades between RELEASE versions 740 (and snapshots of the various security branches) are supported 741 using the &man.freebsd-update.8; utility. The binary upgrade 742 procedure will update unmodified userland utilities, as well 743 as an unmodified <filename>GENERIC</filename> kernel, 744 distributed as a part of an official &os; release. The 745 &man.freebsd-update.8; utility requires that the host being 746 upgraded have Internet connectivity.</para> 747 748 <para>Source-based upgrades (those based on recompiling the &os; 749 base system from source code) from previous versions are 750 supported using to the instructions in 751 <filename>/usr/src/UPDATING</filename>.</para> 752 753 <para>For more specific information about upgrading 754 instructions, see <uri 755 xlink:href="http://www.FreeBSD.org/releases/9.3R/installation.html">http://www.FreeBSD.org/releases/9.3R/installation.html</uri>.</para> 756 757 <important> 758 <para>Upgrading &os; should only be attempted 759 after backing up <emphasis>all</emphasis> data and 760 configuration files.</para> 761 </important> 762 </sect2> 763 764 <sect2> 765 <title xml:id="upgrade-pitfalls">User-Visible 766 Incompatibilities</title> 767 768 <para>&os; 9.0 and later versions have several 769 configuration incompatibilities with earlier versions of &os;. 770 These differences are best understood before upgrading. 771 <emphasis>Please read this section and the <link 772 xlink:href="http://www.freebsd.org/releases/9.0R/relnotes-detailed.html#UPGRADE">Upgrading 773 Section in 9.0-RELEASE Release Notes</link> carefully 774 before submitting a problem report and/or posting a question 775 to the &os; mailing lists.</emphasis></para> 776 </sect2> 777 </sect1> 778</article> 779