1 <?xml version="1.0" encoding="iso-8859-1"?>
2 <!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook XML V5.0-Based Extension//EN"
3 "../../../share/xml/freebsd50.dtd" [
4 <!ENTITY % release PUBLIC "-//FreeBSD//ENTITIES Release Specification//EN" "release.ent">
6 <!ENTITY % sponsor PUBLIC "-//FreeBSD//ENTITIES Sponsor Specification//EN" "sponsor.ent">
8 <!ENTITY % vendor PUBLIC "-//FreeBSD//ENTITIES Vendor Specification//EN" "vendor.ent">
10 <!ENTITY security SYSTEM "../../share/xml/security.xml">
11 <!ENTITY errata SYSTEM "../../share/xml/errata.xml">
13 <article xmlns="http://docbook.org/ns/docbook"
14 xmlns:xlink="http://www.w3.org/1999/xlink" version="5.0">
17 <title>&os; &release.current; Release Notes</title>
20 <orgname>The &os; Project</orgname>
23 <pubdate>$FreeBSD$</pubdate>
25 <!-- Last rev: 288943 -->
29 <holder role="mailto:doc@FreeBSD.org">The &os; Documentation
33 <legalnotice xml:id="trademarks" role="trademarks">
43 <para>The release notes for &os; &release.current; contain
44 a summary of the changes made to the &os; base system on the
45 &release.branch; development line. This document lists
46 applicable security advisories that were issued since the last
47 release, as well as significant changes to the &os; kernel and
48 userland. Some brief remarks on upgrading are also
53 <sect1 xml:id="intro">
54 <title>Introduction</title>
56 <para>This document contains the release notes for &os;
57 &release.current;. It describes recently added, changed, or
58 deleted features of &os;. It also provides some notes on
59 upgrading from previous versions of &os;.</para>
61 <para releasetype="current">The &release.type; distribution to
62 which these release notes apply represents the latest point
63 along the &release.branch; development branch since
64 &release.branch; was created. Information regarding pre-built,
65 binary &release.type; distributions along this branch can be
67 xlink:href="&release.url;">&release.url;</uri>.</para>
69 <para releasetype="snapshot">The &release.type; distribution to
70 which these release notes apply represents a point along the
71 &release.branch; development branch between &release.prev; and
72 the future &release.next;. Information regarding pre-built,
73 binary &release.type; distributions along this branch can be
75 xlink:href="&release.url;">&release.url;</uri>.</para>
77 <para releasetype="release">This distribution of &os;
78 &release.current; is a &release.type; distribution. It can be
79 found at <uri xlink:href="&release.url;">&release.url;</uri> or
80 any of its mirrors. More information on obtaining this (or
81 other) &release.type; distributions of &os; can be found in the
83 xlink:href="&url.books.handbook;/mirrors.html"><quote>Obtaining
84 &os;</quote> appendix</link> to the <link
85 xlink:href="&url.books.handbook;/">&os;
86 Handbook</link>.</para>
88 <para>All users are encouraged to consult the release errata
89 before installing &os;. The errata document is updated with
90 <quote>late-breaking</quote> information discovered late in the
91 release cycle or after the release. Typically, it contains
92 information on known bugs, security advisories, and corrections
93 to documentation. An up-to-date copy of the errata for &os;
94 &release.current; can be found on the &os; Web site.</para>
96 <para>This document describes the most user-visible new or changed
97 features in &os; since &release.prev;. In general, changes
98 described here are unique to the &release.branch; branch unless
99 specifically marked as &merged; features.</para>
101 <para>Typical release note items document recent security
102 advisories issued after &release.prev;, new drivers or hardware
103 support, new commands or options, major bug fixes, or
104 contributed software upgrades. They may also list changes to
105 major ports/packages or release engineering practices. Clearly
106 the release notes cannot list every single change made to &os;
107 between releases; this document focuses primarily on security
108 advisories, user-visible changes, and major architectural
112 <sect1 xml:id="upgrade">
113 <title>Upgrading from Previous Releases of &os;</title>
115 <para arch="amd64,i386">Binary upgrades between RELEASE versions
116 (and snapshots of the various security branches) are supported
117 using the &man.freebsd-update.8; utility. The binary upgrade
118 procedure will update unmodified userland utilities, as well as
119 unmodified GENERIC kernels distributed as a part of an official
120 &os; release. The &man.freebsd-update.8; utility requires that
121 the host being upgraded have Internet connectivity.</para>
123 <para>Source-based upgrades (those based on recompiling the &os;
124 base system from source code) from previous versions are
125 supported, according to the instructions in
126 <filename>/usr/src/UPDATING</filename>.</para>
129 <para>Upgrading &os; should only be attempted after backing up
130 <emphasis>all</emphasis> data and configuration files.</para>
134 <sect1 xml:id="security-errata">
135 <title>Security and Errata</title>
137 <para>This section lists the various Security Advisories and
138 Errata Notices since &release.prev;.</para>
140 <sect2 xml:id="security">
141 <title>Security Advisories</title>
146 <sect2 xml:id="errata">
147 <title>Errata Notices</title>
153 <sect1 xml:id="userland">
154 <title>Userland</title>
156 <para>This section covers changes and additions to userland
157 applications, contributed software, and system utilities.</para>
159 <sect2 xml:id="userland-config">
160 <title>Userland Configuration Changes</title>
162 <para revision="313203">The &man.inetd.8; utility is now built
163 without <literal>libwrap</literal> support when
164 <literal>WITHOUT_TCP_WRAPPERS</literal> is set in
165 &man.src.conf.5;.</para>
167 <para revision="316045">The &man.libthr.3; library and related
168 files are now evaluated and removed by the
169 <literal>delete-old-libs</literal> target when upgrading the
170 system if <literal>WITHOUT_LIBTHR</literal> is
171 set in &man.src.conf.5;.</para>
173 <para revision="316423" contrib="sponsor" sponsor="&ff;">The
174 <literal>WITH_LLD_AS_LD</literal> build knob has been added,
175 which installs <application>LLD</application> as
176 <filename>/usr/bin/ld</filename> if set.</para>
178 <para revision="318472" contrib="sponsor" sponsor="&ff;">
179 <application>LLD</application> has been enabled by default and
180 installed as <filename>/usr/bin/ld</filename> on
181 &os;/&arch.arm64;.</para>
183 <para revision="319244">The
184 <literal>WITH_RPCBIND_WARMSTART_SUPPORT</literal>
185 &man.src.conf.5; knob has been added, which when enabled
186 allows building &man.rpcbind.8; with
187 <literal>warmstart</literal> support.</para>
190 <sect2 xml:id="userland-programs">
191 <title>Userland Application Changes</title>
193 <para revision="305476" contrib="sponsor"
194 sponsor="&ff;">Support for &man.blacklistd.8; has been added
195 to <application>OpenSSH</application>.</para>
197 <para revision="306213">The &man.bspatch.1; utility has been
198 updated with &man.capsicum.4; support.</para>
200 <para revision="308720" contrib="sponsor" sponsor="&gandi;">The
201 &man.cron.8; utility has been updated to add support for
202 including files within <filename
203 class="directory">/etc/cron.d</filename> and <filename
204 class="directory">/usr/local/etc/cron.d</filename> by
207 <para revision="308721" contrib="sponsor" sponsor="&gandi;">The
208 &man.syslogd.8; utility has been updated to add the
209 <literal>include</literal> keyword which allows specifying
210 a directory containing configuration files to be included in
211 addition to &man.syslog.conf.5;. The default
212 &man.syslog.conf.5; has been updated to include <filename
213 class="directory">/etc/syslog.d</filename> and <filename
214 class="directory">/usr/local/etc/syslog.d</filename> by
217 <para revision="308914">The &man.zfsbootcfg.8; utility has been
218 added, providing one-time &man.boot.config.5;-style options
219 for &man.zfsboot.8;.</para>
221 <para revision="315514" contrib="sponsor" sponsor="&yandex;">The
222 &man.setkey.8; utility has been modified to show the runtime
223 <acronym>NAT-T</acronym> configuration. The
224 <literal>-g</literal> and <literal>-t</literal> flags have
225 been added, which list only global and virtual policies,
226 respectively, when used with the <literal>-D</literal> and
227 <literal>-P</literal> flags.</para>
229 <para revision="316098" contrib="sponsor"
230 sponsor="&dellemc;">The &man.getaddrinfo.1; utility has been
231 added, ported from NetBSD.</para>
233 <para revision="316944" contrib="sponsor"
234 sponsor="&multiplay;">The &man.jail.8; utility has been
235 updated to allow explicitly-assigned <acronym>IPv4</acronym>
236 and <acronym>IPv6</acronym> addresses to be used within
239 <para revision="317855">The &man.daemon.8; utility has been
240 updated to allow redirecting &man.stdout.4; and &man.stderr.4;
241 output to &man.syslog.3; or to a file.</para>
243 <para revision="318576" contrib="sponsor" sponsor="&ff;">The
244 &man.efivar.8; utility has been added, providing an interface
245 to manage <acronym>UEFI</acronym> variables.</para>
247 <para revision="319388">The &man.cxgbetool.8; utility has been
248 added, providing command-line access to features and debugging
249 facilities of &man.cxgbe.4; devices.</para>
251 <para revision="320218">The &man.primes.6; utility now
252 enumerates primes beyond
253 <literal>3825123056546413050</literal>, up to a new limit of
254 <literal>2^64 - 1</literal>.</para>
257 <sect2 xml:id="userland-contrib">
258 <title>Contributed Software</title>
260 <para revision="305837">&man.readelf.1; has been updated to
261 report &arch.arm; program and section header types.</para>
263 <para revision="305844" contrib="sponsor" sponsor="&ff;">The
264 <acronym>ELF</acronym> Tool Chain has been updated to upstream
265 revision r3490.</para>
267 <para revision="307631">&man.groff.1; has been updated to use
268 the changelog date rather than file modification date in
269 manual pages for build reproducibility.</para>
272 <para>&man.groff.1; is planned to be deprecated effective &os;
276 <para revision="307729">&man.unbound.8; has been updated to
277 version 1.5.10.</para>
279 <para revision="309125">&man.strings.1; has been updated to fix
280 the exit status when multiple files are provided as arguments,
281 and an error is encountered before the last file.</para>
283 <para revision="309183" contrib="sponsor"
284 sponsor="&ff;">&man.makewhatis.1; has been updated to produce
285 build-reproducible output.</para>
287 <para revision="309511"><application>Subversion</application>
288 has been updated to version 1.9.5.</para>
290 <para revision="309847">&man.file.1; has been updated to version
293 <para revision="310490">The &man.amd.8; utility has been updated
294 to version 6.2.</para>
296 <para revision="312336">The <acronym>CLDR</acronym> locales have
297 been updated to version 30.0.3. The unicode locales have been
298 updated to version 9.0.0.</para>
300 <para revision="312517">&man.xz.1; has been updated to version
303 <para revision="313537">&man.tcpdump.1; has been updated to
304 version 4.9.0.</para>
306 <para revision="313795">&man.zlib.3; has been updated to version
309 <para revision="313980"><application>openresolv</application>
310 has been updated to version 3.9.0.</para>
312 <para revision="313680">The NetBSD test suite has been updated
313 to the 01.11.2017_23.20 snapshot.</para>
315 <para revision="314278"><literal>libucl</literal> has been
316 updated to version 20170219.</para>
318 <para revision="315432">&man.libarchive.3; has been updated to
319 version 3.3.1.</para>
321 <para revision="315995">&man.dma.8; has been updated to the
322 2017-02-10 snapshot.</para>
324 <para revision="316068">&man.ntpd.8; has been updated to version
327 <para revision="316303"><application>ACPICA</application> has
328 been updated to version 20170303.</para>
330 <para revision="316349">Timezone data files have been updated to
331 version 2017b.</para>
333 <para revision="316420">&man.mandoc.1; has been updated to
336 <para revision="316423"><application>Clang</application> has
337 been updated to version 4.0.0.</para>
339 <para revision="316423"><application>LLVM</application> has
340 been updated to version 4.0.0.</para>
342 <para revision="316423"><application>LLD</application> has
343 been updated to version 4.0.0.</para>
345 <para revision="316423"><application>LLDB</application> has
346 been updated to version 4.0.0.</para>
348 <para revision="316423"><application>compiler-rt</application>
349 has been updated to version 4.0.0.</para>
351 <para revision="316423"><application>libc++</application> has
352 been updated to version 4.0.0.</para>
354 <para revision="316957">&man.tcsh.1; has been updated to version
357 <para revision="318239" contrib="sponsor"
358 sponsor="&ff;">&man.blacklistd.8; has been updated to the
359 20170503 snapshot.</para>
361 <para revision="318402" contrib="sponsor"
362 sponsor="&ff;">&man.blacklistd.8; support for
363 <application>OpenSSH</application> has been refined to adjust
364 notification points to catch all authentication failures
365 rather than only those caused by invalid login
368 <para revision="319349">&man.byacc.1; has been updated to
369 version 20170201.</para>
371 <para revision="319884"><application>bmake</application> has
372 been updated to version 20170510.</para>
375 <sect2 xml:id="userland-installer">
376 <title>Installation and Configuration Tools</title>
378 <para revision="311686">The installer, &man.bsdinstall.8;, has
379 been updated to include support for hidden wireless networks
380 when configuring the &man.wlan.4; interface.</para>
382 <para revision="320088" contrib="sponsor" sponsor="&ff;">The
383 default <acronym>EFI</acronym> partition created by
384 &man.bsdinstall.8; has been increased from 800KB to
388 <sect2 xml:id="userland-rc">
389 <title><filename class="directory">/etc/rc.d</filename>
392 <para revision="310009" contrib="sponsor"
393 sponsor="&fisglobal;">The <literal>jail_confwarn</literal>
394 &man.rc.conf.5; entry has been added, which suppresses
395 warnings about obsolete per-&man.jail.8;
396 configurations.</para>
399 <sect2 xml:id="userland-periodic">
400 <title><filename class="directory">/etc/periodic</filename>
403 <para revision="317373">The default &man.periodic.conf.5; has
404 been updated to include the
405 <literal>anticongestion_sleeptime</literal> option,
406 consolidating random sleeps in &man.periodic.8; scripts and
407 replacing the <literal>daily_ntpd_avoid_congestion</literal>
408 option. The default value is 3600 seconds.</para>
410 <para revision="317857">The <filename>410.status-mfi</filename>
411 &man.periodic.8; script has been added to monitor the status
412 of &man.mfi.4; volumes.</para>
415 <sect2 xml:id="userland-libraries">
416 <title>Runtime Libraries and API</title>
418 <para revision="310372">The <literal>libmd</literal> library has
419 been updated to introduce functions that operate on &man.fd.4;
420 instead of <literal>filename</literal>.</para>
422 <para revision="316039">The &man.kvm.close.3; function has been
423 updated to return the accumulated error from previous
424 &man.close.2; calls.</para>
426 <para revision="316613">The C standard library has been updated
427 to make use of &man.reallocarray.3; for bounds
430 <para revision="317618" contrib="sponsor"
431 sponsor="&dellemc;">The <function>clock_nanosleep()</function>
432 system call has been added. The
433 <function>nanosleep()</function> system call is now a wrapper
434 around <function>clock_nanosleep()</function>.</para>
436 <para revision="318121">The system libraries have been updated
437 to make use of &man.reallocarray.3; for bounds
441 <sect2 xml:id="userland-abi">
442 <title>ABI Compatibility</title>
444 <para revision="309258">The type <literal>max_align_t</literal>
445 is now defined for C11 compliance.</para>
447 <para revision="315274" contrib="sponsor"
448 sponsor="&dellemc;">The
449 <function>sem_clockwait_np()</function> library function has
450 been added, which allows the caller to specify the reference
451 clock and choose between absolute and relative mode.</para>
453 <para revision="315282">The <application>clang</application>
454 <literal>nullability</literal> qualifiers have been added to
455 the <literal>C</literal> library headers.</para>
457 <para revision="315282">Uses of the <acronym>GNU</acronym>
458 <literal>__nonnull__</literal> attribute have been replaced
459 with the more benign <application>Clang</application>
460 nullability attributes.</para>
463 <sect2 xml:id="userland-debug">
464 <title>Userland Debugging</title>
466 <para revision="304499">&man.ptrace.2; now supports events for
467 &man.vfork.2;, permitting reliable debugging across
468 &man.vfork.2; invocations.</para>
470 <para revision="306786">Process core dumps now include the
471 process ID (<acronym>PID</acronym>) and command line
476 <sect1 xml:id="kernel">
477 <title>Kernel</title>
479 <para>This section covers changes to kernel configurations, system
480 tuning, and system control parameters that are not otherwise
483 <sect2 xml:id="kernel-general">
484 <title>General Kernel Changes</title>
486 <para revision="305514">The &man.getdtablesize.2; system call is
487 now permitted in capability mode.</para>
489 <para revision="305516">The <literal>kern.proc.nfds</literal>
490 &man.sysctl.8; is now permitted in capability mode.</para>
492 <para revision="312249">The
493 <filename>sys/conf/newvers.sh</filename> script has been
494 updated with an option to exclude build-specific metadata from
495 the kernel for build reproducibility.</para>
498 <sect2 xml:id="kernel-bugfix">
499 <title>Kernel Bug Fixes</title>
501 <para revision="317434">The &man.ipf.4; packet filter has been
502 updated to prevent <literal>keep state</literal> from
503 incorrectly implying <literal>keep frags</literal>, matching
504 the behavior documented in &man.ipf.5;.</para>
507 <sect2 xml:id="kernel-config">
508 <title>Kernel Configuration</title>
510 <para revision="312730">The
511 <literal>WITH_REPRODUCIBLE_BUILD</literal> &man.src.conf.5;
512 knob has been added, which when set, excludes build-specific
513 metadata from the kernel, for build reproducibility.</para>
515 <para revision="315514" contrib="sponsor"
516 sponsor="&yandex;">Support for <acronym>NAT-T</acronym> is now
517 enabled by default. The <literal>IPSEC_NAT_T</literal> kernel
518 configuration option has been removed.</para>
520 <para revision="315514" contrib="sponsor" sponsor="&yandex;">The
521 <literal>IPSEC_FILTERTUNNEL</literal> kernel option has been
522 removed, which was deprecated by the
523 <literal>net.inet.ipsec.filtertunnel</literal> sysctl.</para>
525 <para revision="318763">The <literal>EARLY_AP_STARTUP</literal>
526 option has been enabled by default on &arch.amd64; and
527 &arch.i386; architectures, which when enabled releases
528 Application Processors (<acronym>AP</acronym>s) earlier in the
529 kernel startup process.</para>
532 <sect2 xml:id="kernel-modules">
533 <title>Kernel Modules</title>
535 <para revision="307144">&man.cloudabi.4; has been updated to
536 allow running 32-bit binaries within 64-bit userland
537 environments when the kernel configuration file has the
538 <literal>COMPAT_CLOUDABI32</literal> option present.</para>
540 <para revision="315514" contrib="sponsor" sponsor="&yandex;">The
541 <literal>ipsec</literal> and <literal>tcpmd5</literal> kernel
542 modules have been added.</para>
545 <para>Following the addition of the <literal>tcpmd5</literal>
546 module, it is now necessary to have a security association
547 (<acronym>SA</acronym>) entry for both inbound and outbound
551 <para revision="316274" contrib="sponsor" sponsor="&yandex;">The
552 &man.ipfw.4; packet filter has been updated to add support for
553 named dynamic states.</para>
555 <para revision="316444" contrib="sponsor" sponsor="&yandex;">The
556 <literal>ipfw_nptv6</literal> kernel module has been added,
557 implementing Network Prefix Translation for
558 <acronym>IPv6</acronym> as defined in <acronym>RFC</acronym>
561 <para revision="316446" contrib="sponsor" sponsor="&yandex;">The
562 <literal>ipfw_nat64</literal> kernel module has been added,
563 implementing stateless and stateful
564 <acronym>NAT64</acronym>.</para>
566 <para revision="316660" contrib="sponsor" sponsor="&ff;">The
567 &man.cfumass.4; device has been added, providing a storage
568 frontend to <acronym>USB</acronym>
569 <acronym>OTG</acronym>-capable hardware.</para>
571 <para revision="317045" contrib="sponsor" sponsor="&yandex;">The
572 <literal>ipfw_pmod</literal> kernel module has been added,
573 designed for modifying packets of any protocol.</para>
576 <para>At present, only <acronym>TCP</acronym>
577 <acronym>MSS</acronym> modification is implemented.</para>
581 <sect2 xml:id="kernel-sysctl">
582 <title>System Tuning and Controls</title>
584 <para revision="315539">The
585 <literal>vfs.root_mount_always_wait</literal> tunable has been
586 added, which forces the kernel to wait for root mount holds
587 even if the root device is already present.</para>
589 <para revision="316120" contrib="sponsor"
590 sponsor="&dellemc;">When the system real time clock
591 (<acronym>RTC</acronym>) is adjusted, such as by
592 <function>clock_settime()</function>, sleeping threads are now
593 awakened and absolute sleep times are reevaluated based on the
594 new value of the RTC.</para>
598 <sect1 xml:id="drivers">
599 <title>Devices and Drivers</title>
601 <para>This section covers changes and additions to devices and
602 device drivers since &release.prev;.</para>
604 <sect2 xml:id="drivers-device">
605 <title>Device Drivers</title>
607 <para revision="307768">The &man.jedec.ts.4; driver has been
608 added, providing support for thermal sensors on memory
609 modules. The driver currently supports chips that are fully
610 compliant with the <acronym>JEDEC</acronym>
611 <acronym>JC</acronym> 42.4 specification.</para>
613 <para revision="308104">The &man.chromebook.platform.4; driver
614 has been added, providing support for various Chromebook
617 <para revision="308942">The &man.bytgpio.4; driver has been
618 added, providing support for Intel® Bay Trail™
619 SoC GPIO controllers.</para>
621 <para revision="312394"><filename>/dev/kmem</filename> no longer
622 supports access via <function>mmap()</function>. Consumers
623 wishing to use <filename>/dev/kmem</filename> must use
624 <function>read()</function> and
625 <function>write()</function>.</para>
627 <para revision="306533" contrib="sponsor"
628 sponsor="&chelsio;">&man.devctl.8; now supports a "clear
629 driver" command as a complement to "set
633 <sect2 xml:id="drivers-storage">
634 <title>Storage Drivers</title>
636 <para revision="319435">The &man.mpr.4; driver has been updated
638 (<acronym>SAS</acronym>/<acronym>SATA</acronym>/<acronym>PCIe</acronym>)
639 Broadcom® storage adapters.</para>
642 <sect2 xml:id="drivers-network">
643 <title>Network Drivers</title>
645 <para revision="306660" contrib="sponsor"
646 sponsor="&chelsio;">The &man.cxgbe.4; driver has been updated
647 to provide support for Virtual Function devices
648 (<acronym>VFs</acronym>) on Chelsio T4 and T5 adapters.</para>
650 <para revision="306661" contrib="sponsor"
651 sponsor="&chelsio;">TCP connections using the TCP Offload
652 Engine (<acronym>TOE</acronym>) on Chelsio T4+ adapters can
653 now perform zero-copy sends via
654 <function>aio_write()</function>.</para>
656 <para revision="306664" contrib="sponsor"
657 sponsor="&chelsio;">The &man.cxgbev.4; driver has been added,
658 providing support for Virtual Function devices
659 (<acronym>VFs</acronym>) on Chelsio T4 and T5 adapters.</para>
661 <para revision="309377" contrib="sponsor"
662 sponsor="&broadcom;">The &man.bnxt.4; driver has been added,
663 providing support for Broadcom® NetXtreme-C™ and
664 NetXtreme-E™ devices.</para>
666 <para revision="309560" contrib="sponsor"
667 sponsor="&chelsio;">The &man.cxgbe.4; driver now supports
668 devices using T6-based adapters which support 10, 25, 40, and
671 <para revision="309560" contrib="sponsor"
672 sponsor="&chelsio;">The &man.cxgbe.4; driver has been updated
673 to provide support for Virtual Function devices
674 (<acronym>VFs</acronym>) on Chelsio T6 adapters.</para>
676 <para revision="309560" contrib="sponsor"
677 sponsor="&chelsio;">The &man.cxgbev.4; driver has been updated
678 to provide support for Virtual Function devices
679 (<acronym>VFs</acronym>) on Chelsio T6 adapters.</para>
681 <para revision="310852" contrib="sponsor"
682 sponsor="&netgate;">The &man.miibus.4; driver has been updated
683 to support Microchip/Micrel KSZ9031 Gigabit ethernet
686 <para revision="312358">The &man.alc.4; driver has been updated
687 to provide support for Atheros® Killer E2400™
688 Gigabit ethernet cards.</para>
690 <para revision="314005" contrib="sponsor" sponsor="&ms;">The
691 &man.alc.4; driver has been updated to provide support for
692 Atheros® Killer E2500™ Gigabit ethernet
695 <para revision="315330" contrib="sponsor"
696 sponsor="&netgate;">The &man.etherswitch.4; driver has been
697 updated to support RTL8366RB and RTL8366SR cards.</para>
699 <para revision="315514" contrib="sponsor" sponsor="&yandex;">The
700 &man.if.ipsec.4; virtual tunneling interface has been added,
701 implementing route-based <acronym>VPN</acronym>s protected
702 with Encapsulating Security Payload
703 (<acronym>ESP</acronym>).</para>
705 <para revision="317116">The &man.qlnxe.4; driver has been added,
706 providing support for Cavium® Qlogic™ 45000 Series
709 <para revision="317182">The &man.qlxgbe.4; firmware has been
710 updated to version 5.4.64.</para>
712 <para revision="318357" contrib="sponsor"
713 sponsor="&intelcorp;">The &man.ixl.4; driver has been updated
714 to version 1.7.12-k.</para>
716 <para revision="319269" contrib="sponsor"
717 sponsor="&chelsio;">The &man.cxgbe.4; driver has been updated
718 to firmware version 1.16.45.0 for T4, T5, and T6 cards.</para>
720 <para revision="320164">The &man.qlnxe.4; driver has been
721 updated to support QLE41XXX hardware.</para>
723 <para revision="320164">The &man.qlnxe.4; driver firmware has
724 been updated to version 8.30.0.0.</para>
728 <sect1 xml:id="hardware">
729 <title>Hardware Support</title>
731 <para>This section covers general hardware support for physical
732 machines, hypervisors, and virtualization environments, as well
733 as hardware changes and updates that do not otherwise fit in
734 other sections of this document.</para>
736 <sect2 xml:id="hardware-support">
737 <title>Hardware Support</title>
739 <para revision="307576">The &man.atkbdc.4; driver has been
740 updated to provide support for Elantech® trackpads. To
741 enable hardware support, add
742 <literal>hw.psm.elantech_support=1</literal> to
743 &man.loader.conf.5;.</para>
746 <sect2 xml:id="hardware-virtualization">
747 <title>Virtualization Support</title>
749 <para revision="306471" contrib="sponsor"
750 sponsor="&chelsio;"><acronym>PCI</acronym> passthrough with
751 &man.bhyve.4; supports more dynamic configurations permitting
752 devices to be marked for passthrough or host use at
755 <para revision="306520" contrib="sponsor"
756 sponsor="&chelsio;"><acronym>PCI</acronym> passthrough with
757 &man.bhyve.4; resets functions via <acronym>FLR</acronym> when
758 a virtual machine is started and stopped.</para>
760 <para revision="309312" contrib="sponsor"
761 sponsor="&ms;"><acronym>PCI</acronym> passthrough support has
762 been enabled on &os; virtual machines running on
763 Microsoft® Hyper-V™.</para>
765 <para revision="314091" contrib="sponsor" sponsor="&ms;">The
766 &man.hv.netvsc.4; driver <acronym>SR-IOV</acronym>
767 implementation has been updated to support Virtual Function
768 (<acronym>VF</acronym>) devices, such as the Mellanox®
769 Connect-X3™ network card.</para>
771 <para revision="316272" contrib="sponsor" sponsor="&ms;">Support
772 for Microsoft® Hyper-V™ Generation 2 virtual
773 machines has been added.</para>
775 <para revision="317119" contrib="sponsor" sponsor="&ms;">Support
776 for synthetic keyboards has been added for virtual machines
777 running on Microsoft® Hyper-V™.</para>
779 <para revision="312790">The &os; virtual machines provided on
780 Amazon® EC2™ now enable <acronym>IPv6</acronym> by
784 <sect2 xml:id="hardware-arm">
785 <title>ARM Support</title>
787 <para revision="305436">Support for the Allwinner A13 board has
792 <sect1 xml:id="storage">
793 <title>Storage</title>
795 <para>This section covers changes and additions to file systems
796 and other storage subsystems, both local and networked.</para>
798 <sect2 xml:id="storage-general">
799 <title>General Storage</title>
804 <sect2 xml:id="storage-net">
805 <title>Networked Storage</title>
807 <para revision="318660">The <acronym>NFS</acronym> client now
808 properly handles <literal>NFS4ERR_BAD_SESSION</literal> errors
809 received from an <acronym>NFS</acronym> server. Additionally,
810 the kernel <acronym>RPC</acronym> client has been updated to
811 prevent creating new <acronym>TCP</acronym> connections when
812 <literal>ERESTART</literal> is received from
813 &man.sosend.9;.</para>
815 <para revision="318660">The <acronym>NFS</acronym> client now
816 supports the Amazon® Elastic File System™
817 (<acronym>EFS</acronym>).</para>
820 <sect2 xml:id="storage-zfs">
823 <para revision="318785">The
824 <literal>vfs.zfs.debug_flags</literal> &man.sysctl.8; has been
825 deprecated in favor of
826 <literal>vfs.zfs.debugflags</literal>. Additionally,
827 <literal>vfs.zfs.debugflags</literal> can now be configured in
828 &man.loader.conf.5;, whereas
829 <literal>vfs.zfs.debug_flags</literal> could not.</para>
832 <sect2 xml:id="storage-geom">
833 <title><literal>geom(4)</literal></title>
839 <sect1 xml:id="boot">
840 <title>Boot Loader Changes</title>
842 <para>This section covers the boot loader, boot menu, and other
843 boot-related changes.</para>
845 <sect2 xml:id="boot-loader">
846 <title>Boot Loader Changes</title>
848 <para revision="305845" contrib="sponsor" sponsor="&ff;">The
849 <acronym>UEFI</acronym> boot loader has been updated for build
850 reproducibility.</para>
852 <para revision="307632" contrib="sponsor" sponsor="&gandi;">The
853 <acronym>EFI</acronym> loader has been updated to support
854 <acronym>TFTPFS</acronym>, providing netboot support without
855 requiring an <acronym>NFS</acronym> server.</para>
858 <sect2 xml:id="boot-menu">
859 <title>Boot Menu Changes</title>
865 <sect1 xml:id="network">
866 <title>Networking</title>
868 <para>This section describes changes that affect networking in
871 <sect2 xml:id="network-general">
872 <title>General Network Changes</title>
874 <para revision="311681" contrib="sponsor" sponsor="&yandex;">The
875 network stack has been updated to include
876 <function>ip6_tryforward()</function>, providing performance
877 benefits as result of a reduced number of checks.</para>
879 <para revision="313523" contrib="sponsor"
880 sponsor="&dellemc;">The network stack has been modified to fix
881 incorrect or invalid <acronym>IP</acronym> addresses if
882 multiple threads emit a <acronym>UDP</acronym>
883 <literal>log_in_vain</literal> message concurrently.</para>
885 <para revision="317386" contrib="sponsor"
886 sponsor="&multiplay;">The <acronym>TCP</acronym> stack has
887 been changed to use the estimated <acronym>RTT</acronym>
888 instead of timestamps for receive buffer auto resizing.</para>
891 <sect2 xml:id="network-protocols">
892 <title>Network Protocols</title>
894 <para revision="309337" contrib="sponsor"
895 sponsor="&dellemc;">Support for <acronym>GARP</acronym>
896 (gratuitous <acronym>ARP</acronym>) retransmit has been added.
897 A new &man.sysctl.8;,
898 <literal>net.link.ether.inet.garp_rexmit_count</literal>, has
899 been added, which sets the maximum number of retransmissions
900 when set to a non-zero value.</para>
902 <para revision="315514" contrib="sponsor"
903 sponsor="&yandex;">Support for the
904 <literal>UDP_ENCAP_ESPINUDP_NON_IKE</literal> encapsulation
905 type has been removed.</para>
909 <sect1 xml:id="ports">
910 <title>Ports Collection and Package Infrastructure</title>
912 <para>This section covers changes to the &os; Ports
913 Collection, package infrastructure, and package maintenance and
914 installation tools.</para>
916 <sect2 xml:id="ports-infrastructure">
917 <title>Infrastructure Changes</title>
922 <sect2 xml:id="ports-packages ">
923 <title>Packaging Changes</title>
930 <title>Documentation</title>
932 <para>This section covers changes to the &os; Documentation
933 Project sources and toolchain.</para>
935 <sect2 xml:id="doc-sources">
936 <title>Documentation Source Changes</title>
941 <sect2 xml:id="doc-toolchain">
942 <title>Documentation Toolchain Changes</title>
948 <sect1 xml:id="releng">
949 <title>Release Engineering and Integration</title>
951 <para>This section convers changes that are specific to the
952 &os; Release Engineering processes.</para>
954 <sect2 xml:id="releng-changes">
955 <title>Integration Changes</title>