1 <?xml version="1.0" encoding="iso-8859-1"?>
2 <!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook XML V5.0-Based Extension//EN"
3 "../../../share/xml/freebsd50.dtd" [
4 <!ENTITY % release PUBLIC "-//FreeBSD//ENTITIES Release Specification//EN" "release.ent">
6 <!ENTITY % sponsor PUBLIC "-//FreeBSD//ENTITIES Sponsor Specification//EN" "sponsor.ent">
8 <!ENTITY % vendor PUBLIC "-//FreeBSD//ENTITIES Vendor Specification//EN" "vendor.ent">
11 <article xmlns="http://docbook.org/ns/docbook" xmlns:xlink="http://www.w3.org/1999/xlink" version="5.0">
13 <title>&os; &release.current; Release Notes</title>
15 <author><orgname>The &os; Project</orgname></author>
17 <pubdate>$FreeBSD$</pubdate>
21 <holder role="mailto:doc@FreeBSD.org">The &os; Documentation
25 <legalnotice xml:id="trademarks" role="trademarks">
35 <para>The release notes for &os; &release.current; contain
36 a summary of the changes made to the &os; base system on the
37 &release.branch; development line. This document lists
38 applicable security advisories that were issued since the last
39 release, as well as significant changes to the &os; kernel and
40 userland. Some brief remarks on upgrading are also
45 <sect1 xml:id="intro">
46 <title>Introduction</title>
48 <para>This document contains the release notes for &os;
49 &release.current;. It describes recently added, changed, or
50 deleted features of &os;. It also provides some notes on
51 upgrading from previous versions of &os;.</para>
53 <para>This distribution of &os; &release.current; is
54 a &release.type; distribution. It can be found at <uri
55 xlink:href="&release.url;">&release.url;</uri> or any of its
56 mirrors. More information on obtaining this (or other)
57 &release.type; distributions of &os; can be found in the <link
58 xlink:href="&url.books.handbook;/mirrors.html"><quote>Obtaining
59 &os;</quote> appendix</link> to the <link
60 xlink:href="&url.books.handbook;/">&os;
61 Handbook</link>.</para>
63 <para>All users are encouraged to consult the release errata
64 before installing &os;. The errata document is updated with
65 <quote>late-breaking</quote> information discovered late in the
66 release cycle or after the release. Typically, it contains
67 information on known bugs, security advisories, and corrections
68 to documentation. An up-to-date copy of the errata for &os;
69 &release.current; can be found on the &os; Web site.</para>
73 <title>What's New</title>
75 <para>This section describes the most user-visible new or changed
76 features in &os; since &release.prev;.</para>
78 <para>Typical release note items document recent security
79 advisories issued after &release.prev;, new drivers or hardware
80 support, new commands or options, major bug fixes, or
81 contributed software upgrades. They may also list changes to
82 major ports/packages or release engineering practices. Clearly
83 the release notes cannot list every single change made to &os;
84 between releases; this document focuses primarily on security
85 advisories, user-visible changes, and major architectural
88 <sect2 xml:id="security">
89 <title>Security Advisories</title>
91 <para>Problems described in the following security advisories
92 have been fixed. For more information, consult the individual
93 advisories available from <uri
94 xlink:href="http://security.FreeBSD.org/">http://security.FreeBSD.org/</uri>.</para>
96 <informaltable frame="none" pgwide="1">
98 <colspec colwidth="1*"/>
99 <colspec colwidth="1*"/>
100 <colspec colwidth="3*"/>
103 <entry>Advisory</entry>
112 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:01.bsnmpd.asc">FreeBSD-SA-14:01.bsnmpd</link></entry>
113 <entry>1 January 2014</entry>
114 <entry><para>Fix &man.bsnmpd.1; remote denial of service
115 vulnerability</para></entry>
120 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:02.ntpd.asc">FreeBSD-SA-14:02.ntpd</link></entry>
121 <entry>1 January 2014</entry>
122 <entry><para>Disable <quote>monitor</quote> feature in
123 &man.ntpd.8; by default</para></entry>
128 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:04.bind.asc">FreeBSD-SA-14:04.bind</link></entry>
129 <entry>1 January 2014</entry>
130 <entry><para>Remote denial of service
131 vulnerability</para></entry>
136 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:05.nfsserver.asc">FreeBSD-SA-14:05.nfsserver</link></entry>
137 <entry>8 April 2014</entry>
138 <entry><para>Deadlock in the NFS server</para></entry>
143 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:06.openssl.asc">FreeBSD-SA-14:06.openssl</link></entry>
144 <entry>8 April 2014</entry>
145 <entry><para>ECDSA side channel leak</para></entry>
150 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:08.tcp.asc">FreeBSD-SA-14:08.tcp</link></entry>
151 <entry>30 April 2014</entry>
152 <entry><para>TCP reassembly vulnerability</para></entry>
157 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:11.sendmail.asc">FreeBSD-SA-14:11.sendmail</link></entry>
158 <entry>26 May 2014</entry>
159 <entry><para><application>Sendmail</application>
160 improper close-on-exec flag handling</para></entry>
165 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:12.ktrace.asc">FreeBSD-SA-14:12.ktrace</link></entry>
166 <entry>3 June 2014</entry>
167 <entry><para>&man.ktrace.1; kernel memory
168 disclosure</para></entry>
173 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:13.pam.asc">FreeBSD-SA-14:13.pam</link></entry>
174 <entry>3 June 2014</entry>
175 <entry><para>Incorrect error handling in PAM policy
176 parser</para></entry>
181 xlink:href="http://security.freebsd.org/advisories/FreeBSD-SA-14:14.openssl.asc">FreeBSD-SA-14:14.openssl</link></entry>
182 <entry>5 June 2014</entry>
183 <entry><para>Multiple vulnerabilities</para></entry>
190 <sect2 xml:id="kernel">
191 <title>Kernel Changes</title>
193 <para revision="256033">The &man.arcmsr.4; driver has been
194 updated to version 1.20.00.28.</para>
196 <para revision="256437" contrib="sponsor"
197 sponsor="&ff;">The &man.isci.4; driver is now loadable
198 via &man.kldload.8;.</para>
200 <para revision="256759">System-level &man.sysctl.8; values are
201 now exposed to the system for the &man.ixgbe.4; device.</para>
203 <para revision="256924">The &man.mfi.4; driver has been updated
204 to support MegaRAID Invader controllers.</para>
206 <para revision="257119">A kernel panic triggered in
207 <literal>zfs_root()</literal> after a failed rollback has
210 <para revision="257125" contrib="sponsor"
211 sponsor="&ff;">A new &man.sysctl.8;,
212 <literal>debug.devfs_iosize_max_clamp</literal> has been added
213 which enables and disables <literal>SSIZE_MAX</literal>-sized
214 I/O requests on &man.devfs.5; files.</para>
216 <para revision="257126" contrib="sponsor" sponsor="&ff;">A new
217 &man.sysctl.8;, <literal>kern.disallow_high_osrel</literal>,
218 has been added which disables executing the images compiled on
219 a userland with a higher major version number than the major
220 version number of the running kernel.</para>
222 <para revision="257253">A kernel panic triggered by unmounting
223 a busy &man.zfs.8; filesystem has been fixed.</para>
225 <para revision="257373">A deadlock triggered by powering off
226 a USB device has been fixed.</para>
228 <para revision="258214">The &man.ata.4; driver has been updated
229 to support Intel Lynx Point PCH SMBus devices.</para>
231 <para revision="258215">The &man.ata.4; driver has been updated
232 to support Coleto Creek devices.</para>
234 <para revision="258217">The &man.ahci.4; driver has been updated
235 to support the PCI-express solid state drive in the
236 &apple; MacBook Air (model A1465).</para>
238 <para revision="258635">The &man.sysctl.8;
239 <literal>vfs.zfs.arc_meta_limit</literal> can now be changed
242 <para revision="258870">The &man.mmap.2; system call has been
243 updated to more optimally use superpages and provide support
244 for tweaking the alignment of virtual mappings.</para>
246 <para revision="258962">A workaround has been implemented
247 in the &man.bge.4; driver for hung transmission on BCM5719
248 and BCM5720 chipsets.</para>
250 <para revision="259002">A kernel panic when listing sysctls
251 on a system with <literal>INVARIANTS</literal> enabled has
254 <para revision="259466">A new &man.sysctl.8;,
255 <literal>kern.supported_archs</literal> has been added,
256 which will list the <envar>MACHINE_ARCH</envar> values
257 whose binaries can be run on the system.</para>
259 <para revision="259519" contrib="sponsor"
260 sponsor="&spectralogic;">Several problems that could trigger
261 kernel panic on &man.kldload.8; and &man.kldunload.8; have
264 <para revision="260082" contrib="sponsor"
265 sponsor="&ff;">A kernel panic triggered by some
266 multi-threaded applications has been fixed.</para>
268 <para revision="260134">The &man.runfw.4; firmware has been
269 renamed from <literal>runfw</literal> to
270 <literal>run.fw</literal> for consistency with other firmware
273 <para revision="260433">A new &man.sysctl.8;,
274 <literal>kern.panic_reboot_wait_time</literal>, has been
275 added. This allows tuning the amount of time the system
276 will wait before rebooting after &man.panic.9;. The
277 <literal>kern.panic_reboot_wait_time</literal> value defaults
278 to the kernel configuration option,
279 <literal>PANIC_REBOOT_WAIT_TIME</literal>.</para>
281 <para revision="260644">Hardware Random Number Generators have
282 been disabled by default.</para>
284 <para revision="261485">Support for GPS ports has been added
285 to the &man.uhso.4; driver.</para>
287 <para revision="262116">A memory leak of compressed buffers
289 <literal>l2arc_write_done()</literal>.</para>
291 <para revision="262153">The &man.netmap.4; framework has been
292 updated to match the version in <literal>head/</literal>,
293 which includes netmap pipes, kqueue support, and enhanced
294 VALE switch port.</para>
296 <para revision="262175">A deadlock triggered by sending
297 a mounted &man.zfs.8; snapshot has been fixed.</para>
299 <para revision="262231">Support for SIIG X1 PCI-e has been added
300 to &man.ppc.4;.</para>
302 <para revision="262564">Support for the ext4 filesystem
303 has been enabled, supporting read-only mounts.</para>
305 <para revision="262594">A kernel panic triggered by inserting
306 a USB ethernet device on VIMAGE-enabled systems has been
309 <para revision="262988" contrib="sponsor" sponsor="&ff;">TTM,
310 a memory manager used by video
311 drivers, has been merged.</para>
313 <para revision="263103">Support for
314 <literal>/sys/kernel/random/uuid</literal> has been added
315 to &man.linprocfs.5;.</para>
317 <para revision="263128">A memory leak in the
318 <literal>zpool_in_use()</literal> function has been
321 <para revision="263391">The
322 <literal>extensible_dataset</literal> &man.zpool.8; feature
323 has been added. See &man.zpool-features.7; for more
326 <para revision="263408">A memory leak has been fixed in
327 <literal>libzfs</literal>.</para>
329 <para revision="263817,263818" contrib="sponsor"
330 sponsor="&ff;">The <literal>vt</literal> driver
331 has been merged from <literal>head/</literal>.</para>
333 <para revision="265729" contrib="sponsor"
334 sponsor="&lsi;, &spectralogic;">The &man.mpr.4; device has
335 been added, providing support for LSI Fusion-MPT 3 12Gb
336 SCSI/SATA controllers.</para>
338 <para revision="266167">A kernel bug that inhibited proper
339 functionality of the <literal>dev.cpu.0.freq</literal>
340 &man.sysctl.8; on &intel; processors with Turbo
341 Boost ™ enabled has been fixed.</para>
343 <para revision="266269">Support for &man.xen.4;
344 hardware-assisted virtualization, <literal>XENHVM</literal>,
345 is now available as a loadable module,
346 <literal>xenhvm.ko</literal>.</para>
348 <sect3 xml:id="proc">
349 <title>Hardware Support</title>
351 <para revision="261510">Trackpad support for
352 &apple; MacBook products has been added.</para>
354 <para revision="261973">The &man.nve.4; driver has been
355 deprecated, and the &man.nfe.4; driver should be used
358 <para revision="262968">The &man.mfi.4; driver has been
359 updated to support MegaRAID Fury cards.</para>
361 <para revision="263170,263171">The Radeon KMS driver has been
364 <para revision="263340">The &man.aacraid.4; driver has been
365 updated to version 3.2.5.</para>
367 <sect4 xml:id="net-if">
368 <title>Network Interface Support</title>
370 <para revision="257611">The &man.re.4; driver has been
371 updated to add preliminary support for the RTL8106E
374 <para revision="257614,257616">The &man.re.4; driver has
375 been updated to support the RTL8168G, RTL8168GU and
376 RTL8411B chipsets.</para>
378 <para revision="257618">The &man.re.4; driver has been
379 updated to add preliminary support for the RTL8168EP
382 <para revision="258586">The &man.oce.4; driver has been
383 updated to version 10.0.664.0.</para>
385 <para revision="258898">The &man.qlxgbe.4; driver has been
386 imported from <literal>head/</literal>.</para>
388 <para revision="258936">The &man.qlxge.4; driver has been
389 imported from <literal>head/</literal>.</para>
391 <para revision="258965">The &man.bge.4; driver has been
392 updated to support the BCM5725 chipset.</para>
394 <para revision="258967">The &man.bge.4; driver has been
395 updated to support the BCM57764, BCM57767, BCM57782,
396 BCM57786 and BCM57787 chipsets.</para>
398 <para revision="259457">The &man.run.4; driver has been
399 updated to support MediaTek/Ralink chipsets RT5370 and
402 <para revision="259460">The &man.usb.4; wireless radiotap
403 headers have been realigned, allowing wireless adapters
404 to work on &arch.arm;, &arch.mips;, and other similar
405 platforms where alignment is important.</para>
407 <para revision="260119">The &man.run.4; firmware has been
408 updated to version 0.33.</para>
410 <para revision="260252">The &man.bxe.4; driver has been
411 merged from <literal>head/</literal>, providing support
412 for Broadcom NetXtreme II 10Gb PCIe adapters.</para>
414 <para revision="261865">The &man.run.4; driver has been
415 updated to include support for the MediaTek/Ralink RT3593
418 <para revision="261933">The &man.run.4; driver has been
419 updated to include support for the DLINK DWA-127 wireless
422 <para revision="262153">The &man.axge.4; driver has been
425 <para revision="262362">The &man.urndis.4; driver has been
426 imported from OpenBSD.</para>
428 <para revision="263582">The &man.bxe.4; driver has been
429 updated to version 1.78.78.</para>
434 <title>File Systems</title>
436 <para revision="263410">The &man.zfs.8; filesystem has been
437 updated to support the <literal>bookmarks</literal>
442 <sect2 xml:id="userland">
443 <title>Userland Changes</title>
445 <para revision="256054">A new flag <literal>-c</literal>, has
446 been added to &man.pgrep.1; and &man.pkill.1;, which restricts
447 the process lookup to the specified login class.</para>
449 <para revision="257496">The &man.ddb.8; utility has been updated
450 to add <command>show ioapic</command> and <command>show all
451 ioapics</command>.</para>
453 <para revision="258183">Setting <literal>nmbcluster</literal>
454 values to their current value will now be ignored, instead of
455 failing with an error.</para>
457 <para revision="258763">The <filename
458 class="directory">/var/cache</filename> directory is now
459 created with mode <literal>0755</literal> instead of mode
460 <literal>0750</literal>, since this directory is used by
461 many third-party applications, which makes dropping group
462 privileges impossible.</para>
464 <para revision="258818">The &man.uname.1; utility has been
465 updated to include the <literal>-U</literal> and
466 <literal>-K</literal> flags, which print the
467 <envar>__FreeBSD_version</envar> for the running userland
468 and kernel, respectively.</para>
470 <para revision="258844">The &man.fetch.3; library has been
471 updated to support SNI (Server Name Identification), allowing
472 to use virtual hosts on HTTPS.</para>
474 <para revision="259243">A segmentation fault and internal
475 compiler error bug in &man.gcc.1; triggered by throwing
476 a warning before parsing any tokens has been fixed.</para>
478 <para revision="259269,259406" contrib="vendor"
479 vendor="&google;">Several updates to &man.gcc.1;
480 have been imported from Google.</para>
482 <para revision="259448">A byte-order bug in the Heimdal
483 <literal>gss_pseudo_random()</literal> function which would
484 prevent interoperability with other
485 <application>Kerberos</application> implementations has been
486 fixed. In particular, this would prevent interoperability
487 with the MIT implementation.</para>
489 <para revision="260007">The &man.hastctl.8; utility has been
490 updated to output the current queue sizes.</para>
492 <para revision="260197">The &man.ps.1; utility will no longer
493 truncate the <literal>command</literal> output column.</para>
495 <para revision="260208">The &man.protect.1; command has been
496 added, which allows exempting processes from being killed
497 when swap is exhausted.</para>
499 <para revision="260507">The &man.gmirror.8; utility now prevents
500 deactivating the last component of a mirror.</para>
502 <para revision="260507">A new &man.gmirror.8; command,
503 <command>gmirror destroy</command>, has been added, which will
504 destroy the &man.geom.8; and erase the &man.gmirror.8;
507 <para revision="260650">The &man.etcupdate.8; utility, a tool
508 for managing updates to files in <filename
509 class="directory">/etc</filename>, has been merged from
510 <literal>head/</literal>.</para>
512 <para revision="260651">The &man.find.1; utility has been
513 updated to fix incorrect behavior with the
514 <literal>-lname</literal> and <literal>-ilname</literal>
517 <para revision="260868,260869">The
518 <literal>hw.uart.console</literal> is now always updated when
519 the comconsole setup changes.</para>
521 <para revision="260909">The &man.kldload.8; utility has been
522 updated to display a message directing to &man.dmesg.8;,
523 instead of the cryptic message <quote>Exec format
524 error</quote>.</para>
526 <para revision="261674">A bug that could trigger an infinite
527 loop in KDE and X has been fixed.</para>
529 <para revision="262076">The &man.newsyslog.8; utility has been
530 changed to use the size of the file, instead of the blocks the
531 file takes on the disk to match the behavior documented in
532 &man.newsyslog.conf.5;.</para>
534 <para revision="262105">A bug in &man.zdb.8; which would cause
535 numeric parameters to a flag as being treated as additional
536 flags has been fixed.</para>
538 <para revision="262124">The default number of &man.nfsd.8;
539 threads has been increased from <literal>4</literal> to
540 <literal>(8 * N)</literal>, where <literal>N</literal> is
541 the number of CPUs as reported by
542 <command>sysctl -n hw.ncpu</command>.</para>
544 <para revision="262134">The &man.pciconf.8; utility now has
545 a <literal>-V</literal> flag, which lists information such
546 as serial numbers for each device.</para>
548 <para revision="262158">A bug that would allow creating
549 a &man.zfs.8; snapshot of an inconsistent dataset has been
552 <para revision="262160">Receiving a &man.zfs.8; dataset with
553 <command>zfs recv -F</command> now properly destroys any
554 snapshots that were created since the incremental source
557 <para revision="263031">Installation from a read-only
558 <envar>.OBJDIR</envar> has been fixed.</para>
560 <para revision="263031">A new shared library directory,
561 <filename class="directory">/usr/lib/private</filename>,
562 has been added for internal-use shared libraries.</para>
564 <para revision="263031">A default
565 <filename>libmap32.conf</filename> has been added, for 32-bit
568 <para revision="263032">The <literal>libucl</literal> library,
569 a JSON-compatible configuration file parsing library, has been
572 <para revision="263038">The &man.pkg.7; package management
573 utility has been syncronized with <literal>head/</literal>.
574 This implements binary package signature verification when
575 bootstrapping the system with <command>pkg
576 bootstrap</command>.</para>
578 <para revision="263042">The system timezone data files have
579 been updated to version tzdata2014a.</para>
581 <para revision="263212">The NetBSD &man.make.1; utility,
582 <command>bmake</command> has been imported for compatibility
583 with the &os; Ports Collection. It is installed as
584 <command>bmake</command>, and the <command>make</command>
585 remains the &os; version.</para>
587 <para revision="263326">The &man.fetch.3; library now
588 supports <literal>Last-Modified</literal> timestamps which
589 return UTC instead of GMT.</para>
591 <para revision="263404">Aliases for the &man.zfs.8; commands
592 <literal>list -t snap</literal> and <literal>snap</literal>
593 have been added to match &oracle; Solaris 11.</para>
595 <para revision="263406">A new flag, <literal>-p</literal>, has
596 been added to the &man.zfs.8; <literal>list</literal> command,
597 providing output in a parseable form.</para>
599 <para revision="263421"><application>OpenPAM</application> has
600 been updated to Nummularia (20130907), which incorporates
601 several bug fixes and documentation improvements. The
602 &man.openpam.ttyconv.3; library has been completely
605 <para revision="264423">The &man.sh.1; command interpreter has
606 been updated to expand assignments after
607 <literal>export</literal>, <literal>local</literal>, and
608 <literal>readonly</literal> differently. As result of this
609 change, variable assignment such as <literal>local
610 v=$1</literal> will assign the first positional
611 parameter to <literal>v</literal>, even if
612 <literal>$1</literal> contains spaces, and
613 <literal>local w=<replaceable>~/myfile</replaceable></literal>
614 will expand the tilde (<literal>~</literal>).</para>
616 <para revision="264699">The &man.find.1; utility has been
617 updated to implement <literal>-ignore_readdir_race</literal>.
618 Prior to this change, <literal>-ignore_readdir_race</literal>
619 existed as an option for GNU &man.find.1; compatibility, and
620 was ignored if specified. A counter primary,
621 <literal>-noignore_readdir_race</literal> now also exists, and
622 is the default behavior.</para>
624 <para revision="266286">The &man.ps.1; utility has been updated
625 to include the <literal>-J</literal> flag, used to filter
626 output by matching &man.jail.8; IDs and names. Additionally,
627 argument <literal>0</literal> can be used to
628 <literal>-J</literal> to only list processes running on the
631 <para revision="266287">The &man.top.1; utility has been updated
632 to filter by &man.jail.8; ID or name, in followup to the
633 &man.ps.1; change in <literal>r265229</literal>.</para>
635 <para revision="266818">The Blowfish &man.crypt.3; default
636 format has been changed to
637 <literal>$2b$</literal>.</para>
639 <para revision="267114">The default &man.newsyslog.conf.5; now
640 includes files in the
641 <filename>/etc/newsyslog.conf.d/</filename> and
642 <filename>/usr/local/etc/newsyslog.conf.d/</filename>
643 directories by default for &man.newsyslog.8;.</para>
645 <para revision="267243">A new flag, <quote>onifconsole</quote>
646 has been added to <filename>/etc/ttys</filename>. This allows
647 the system to provide a login prompt via serial console if the
648 device is an active kernel console, otherwise it is equivalent
649 to <literal>off</literal>.</para>
651 <para revision="267379">The &man.arc4random.3; library has been
652 updated to match that of &os;-CURRENT.</para>
654 <para revision="267411">The &man.pmcstat.8; utility has been
655 updated to include a new flag, <literal>-l</literal>, which
656 ends event collection after the specified number of
659 <sect3 xml:id="periodic-scripts">
660 <title>&man.periodic.8; Scripts</title>
662 <para revision="263662">The
663 <filename>/etc/periodic/security/800.loginfail</filename>
664 &man.periodic.8; script has been refined to catch more
665 authentication failures and reduce false positives.</para>
668 <sect3 xml:id="rc-scripts">
669 <title>&man.rc.8; Scripts</title>
671 <para revision="256917">Support for <quote>first boot</quote>
672 scripts has been added to &man.rc.8;. See &man.rc.8; and
673 &man.rc.conf.5; for implementation details.</para>
675 <para revision="260432">The &man.rc.8; system will now
676 re-source &man.rc.conf.5; on receipt of
677 <literal>SIGALRM</literal>.</para>
681 <sect2 xml:id="contrib">
682 <title>Contributed Software</title>
684 <para revision="255934">The &man.readline.3; library has been
685 updated to version 1.104.</para>
687 <para revision="266711"><application>Sendmail</application> has
688 been updated to version 8.14.9.</para>
690 <para revision="262706" contrib="sponsor"
691 sponsor="&dkhostmaster;"><application>BIND</application> has
692 been updated to version 9.9.5.</para>
694 <para revision="263286">The &man.xz.1; utility has been updated
695 to a post-5.0.5 snapshot.</para>
697 <para revision="263970"><application>OpenSSH</application> has
698 been updated to version 6.6p1.</para>
700 <para revision="267285"><application>OpenSSL</application> has
701 been updated to version 0.9.8za.</para>
704 <sect2 xml:id="releng">
705 <title>Release Engineering and Integration</title>
707 <para revision="260891">As part of the release build, the
708 &man.etcupdate.8; utility will bootstrap the system, allowing
709 &man.etcupdate.8; to work after the first upgrade of a
712 <para revision="262879" contrib="sponsor"
713 sponsor="&ff;">The <filename>release.sh</filename>
714 script and release <filename>Makefile</filename> have been
715 updated to use &man.pkg.7; to populate the dvd installation
718 <para revision="263028">The &man.services.mkdb.8; utility has
719 been updated to support multiple byte orders. Similar to
720 &man.cap.mkdb.1;, the <filename>services.db</filename> will
721 be created with proper endinanness as part of
722 cross-architecture release builds.</para>
726 <sect1 xml:id="upgrade">
727 <title>Upgrading from Previous Releases of &os;</title>
730 <title>Upgrading Using &man.freebsd-update.8; or a Source-Based
733 <para arch="amd64,i386">Binary upgrades between RELEASE versions
734 (and snapshots of the various security branches) are supported
735 using the &man.freebsd-update.8; utility. The binary upgrade
736 procedure will update unmodified userland utilities, as well
737 as an unmodified <filename>GENERIC</filename> kernel,
738 distributed as a part of an official &os; release. The
739 &man.freebsd-update.8; utility requires that the host being
740 upgraded have Internet connectivity.</para>
742 <para>Source-based upgrades (those based on recompiling the &os;
743 base system from source code) from previous versions are
744 supported using to the instructions in
745 <filename>/usr/src/UPDATING</filename>.</para>
747 <para>For more specific information about upgrading
748 instructions, see <uri
749 xlink:href="http://www.FreeBSD.org/releases/9.3R/installation.html">http://www.FreeBSD.org/releases/9.3R/installation.html</uri>.</para>
752 <para>Upgrading &os; should only be attempted
753 after backing up <emphasis>all</emphasis> data and
754 configuration files.</para>
759 <title xml:id="upgrade-pitfalls">User-Visible
760 Incompatibilities</title>
762 <para>&os; 9.0 and later have several incompatibilities in
763 system configuration which you might want to know before
764 upgrading your system. <emphasis>Please read this section and
766 xlink:href="http://www.freebsd.org/releases/9.0R/relnotes-detailed.html#UPGRADE">Upgrading
767 Section in 9.0-RELEASE Release Notes</link> carefully
768 before submitting a problem report and/or posting a question
769 to the &os; mailing lists.</emphasis></para>