1 <?xml version="1.0" encoding="iso-8859-1"?>
2 <!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook XML V5.0-Based Extension//EN"
3 "../../../share/xml/freebsd50.dtd" [
4 <!ENTITY % release PUBLIC "-//FreeBSD//ENTITIES Release Specification//EN" "release.ent">
6 <!ENTITY % sponsor PUBLIC "-//FreeBSD//ENTITIES Sponsor Specification//EN" "sponsor.ent">
8 <!ENTITY % vendor PUBLIC "-//FreeBSD//ENTITIES Vendor Specification//EN" "vendor.ent">
11 <article xmlns="http://docbook.org/ns/docbook"
12 xmlns:xlink="http://www.w3.org/1999/xlink" version="5.0">
15 <title>&os; &release.current; Release Notes</title>
18 <orgname>The &os; Project</orgname>
21 <pubdate>$FreeBSD$</pubdate>
39 <holder role="mailto:doc@FreeBSD.org">The &os; Documentation
43 <legalnotice xml:id="trademarks" role="trademarks">
53 <para>The release notes for &os; &release.current; contain
54 a summary of the changes made to the &os; base system on the
55 &release.branch; development line. This document lists
56 applicable security advisories that were issued since the last
57 release, as well as significant changes to the &os; kernel and
58 userland. Some brief remarks on upgrading are also
63 <sect1 xml:id="intro">
64 <title>Introduction</title>
66 <para>This document contains the release notes for &os;
67 &release.current;. It describes recently added, changed, or
68 deleted features of &os;. It also provides some notes on
69 upgrading from previous versions of &os;.</para>
71 <para releasetype="current">The &release.type; distribution to
72 which these release notes apply represents the latest point
73 along the &release.branch; development branch since
74 &release.branch; was created. Information regarding pre-built,
75 binary &release.type; distributions along this branch can be
77 xlink:href="&release.url;">&release.url;</uri>.</para>
79 <para releasetype="snapshot">The &release.type; distribution to
80 which these release notes apply represents a point along the
81 &release.branch; development branch between &release.prev; and
82 the future &release.next;. Information regarding pre-built,
83 binary &release.type; distributions along this branch can be
85 xlink:href="&release.url;">&release.url;</uri>.</para>
87 <para releasetype="release">This distribution of &os;
88 &release.current; is a &release.type; distribution. It can be
89 found at <uri xlink:href="&release.url;">&release.url;</uri> or
90 any of its mirrors. More information on obtaining this (or
91 other) &release.type; distributions of &os; can be found in the
93 xlink:href="&url.books.handbook;/mirrors.html"><quote>Obtaining
94 &os;</quote> appendix</link> to the <link
95 xlink:href="&url.books.handbook;/">&os;
96 Handbook</link>.</para>
98 <para>All users are encouraged to consult the release errata
99 before installing &os;. The errata document is updated with
100 <quote>late-breaking</quote> information discovered late in the
101 release cycle or after the release. Typically, it contains
102 information on known bugs, security advisories, and corrections
103 to documentation. An up-to-date copy of the errata for &os;
104 &release.current; can be found on the &os; Web site.</para>
108 <title>What's New</title>
110 <para>This section describes the most user-visible new or changed
111 features in &os; since &release.prev;.</para>
113 <para>Typical release note items document recent security
114 advisories issued after &release.prev;, new drivers or hardware
115 support, new commands or options, major bug fixes, or
116 contributed software upgrades. They may also list changes to
117 major ports/packages or release engineering practices. Clearly
118 the release notes cannot list every single change made to &os;
119 between releases; this document focuses primarily on security
120 advisories, user-visible changes, and major architectural
123 <sect2 xml:id="security">
124 <title>Security Advisories</title>
126 <para>The following security advisories have been issued since
127 &os; &release.prev;:</para>
129 <informaltable frame="none" pgwide="0">
131 <colspec colwidth="1*" />
132 <colspec colwidth="1*" />
133 <colspec colwidth="3*" />
136 <entry>Advisory</entry>
145 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-13:14.openssh.asc">SA-13:14.openssh</link></entry>
146 <entry>19 November 2013</entry>
147 <entry><para>OpenSSH AES-GCM memory corruption
148 vulnerability</para></entry>
153 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:01.bsnmpd.asc">SA-14:01.bsnmpd</link></entry>
154 <entry>14 January 2014</entry>
155 <entry><para>bsnmpd remote denial of service
156 vulnerability</para></entry>
161 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:02.ntpd.asc">SA-14:02.ntpd</link></entry>
162 <entry>14 January 2014</entry>
163 <entry><para>ntpd distributed reflection Denial of
164 Service vulnerability</para></entry>
169 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:03.openssl.asc">SA-14:03.openssl</link></entry>
170 <entry>14 January 2014</entry>
171 <entry><para>OpenSSL multiple
172 vulnerabilities</para></entry>
177 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:04.bind.asc">SA-14:04.bind</link></entry>
178 <entry>14 January 2014</entry>
179 <entry><para>BIND remote denial of service
180 vulnerability</para></entry>
185 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:05.nfsserver.asc">SA-14:05.nfsserver</link></entry>
186 <entry>8 April 2014</entry>
187 <entry><para>Deadlock in the NFS server</para></entry>
192 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:06.openssl.asc">SA-14:06.openssl</link></entry>
193 <entry>8 April 2014</entry>
194 <entry><para>OpenSSL multiple
195 vulnerabilities</para></entry>
200 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:07.devfs.asc">SA-14:07.devfs</link></entry>
201 <entry>30 April 2014</entry>
202 <entry><para>Fix devfs rules not applied by default for
208 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:08.tcp.asc">SA-14:08.tcp</link></entry>
209 <entry>30 April 2014</entry>
210 <entry><para>Fix TCP reassembly
211 vulnerability</para></entry>
216 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:09.openssl.asc">SA-14:09.openssl</link></entry>
217 <entry>30 April 2014</entry>
218 <entry><para>Fix OpenSSL use-after-free
219 vulnerability</para></entry>
224 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:10.openssl.asc">SA-14:10.openssl</link></entry>
225 <entry>15 May 2014</entry>
226 <entry><para>Fix OpenSSL NULL pointer deference
227 vulnerability</para></entry>
232 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:11.sendmail.asc">SA-14:11.sendmail</link></entry>
233 <entry>3 June 2014</entry>
234 <entry><para>Fix sendmail improper close-on-exec flag
235 handling</para></entry>
240 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:13.pam.asc">SA-14:13.pam</link></entry>
241 <entry>3 June 2014</entry>
242 <entry><para>Fix incorrect error handling in PAM policy
243 parser</para></entry>
248 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:14.openssl.asc">SA-14:14.openssl</link></entry>
249 <entry>5 June 2014</entry>
250 <entry><para>Multiple vulnerabilities</para></entry>
255 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:15.iconv.asc">SA-14:15.iconv</link></entry>
256 <entry>24 June 2014</entry>
257 <entry><para>NULL pointer dereference and out-of-bounds
258 array access</para></entry>
263 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:16.file.asc">SA-14:16.file</link></entry>
264 <entry>24 June 2014</entry>
265 <entry><para>Multiple vulnerabilities</para></entry>
270 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:17.kmem.asc">SA-14:17.kmem</link></entry>
271 <entry>8 July 2014</entry>
272 <entry><para>Kernel memory disclosure in control
273 messages and SCTP notifications</para></entry>
278 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:18.openssl.asc">SA-14:18.openssl</link></entry>
279 <entry>9 September 2014</entry>
280 <entry><para>Multiple vulnerabilities</para></entry>
285 xlink:href="http://www.freebsd.org/security/advisories/FreeBSD-SA-14:19.tcp.asc">SA-14:19.tcp</link></entry>
286 <entry>16 September 2014</entry>
287 <entry><para>Denial of Service in TCP packet
288 processing.</para></entry>
296 <sect2 xml:id="kernel">
297 <title>Kernel Changes</title>
299 <para revision="260431">A new &man.sysctl.8;,
300 <literal>kern.panic_reboot_wait_time</literal>, has been
301 added, which allows controlling how long the system will wait
302 after &man.panic.9; before rebooting.</para>
304 <para revision="262861">The &man.vt.4; driver has been merged
305 from &os;-CURRENT. To enable &man.vt.4;, enter
306 <literal>set kern.vty=vt</literal> at the &man.loader.8;
307 prompt during boot, or add <literal>kern.vty=vt</literal> to
308 &man.loader.conf.5; and reboot the system.</para>
310 <para revision="263122">Support for &man.hwpmc.4; has been added
311 for &powerpc; 970 class processors.</para>
313 <para revision="263197">Support for ADT7460 and ADT7467 fan
314 controllers found in newer PowerBooks™ and
315 iBooks™ has been added to the &man.iicbus.4;
318 <para revision="263256">A panic triggered by removing
319 a &man.urtwn.4; device has been fixed.</para>
321 <para revision="263799">A potential deadlock in the &man.usb.4;
322 stack triggered by detaching USB devices that create character
323 devices has been fixed.</para>
325 <para revision="263869">Support for &amd; Family 16h sensor
326 devices has been added to &man.amdtemp.4;.</para>
328 <para revision="265610">The &man.uslcom.4; driver has been
329 updated to support 26 new devices.</para>
331 <para revision="266165">A kernel bug that inhibited proper
332 functionality of the <literal>dev.cpu.0.freq</literal>
333 &man.sysctl.8; on &intel; processors with Turbo
334 Boost™ enabled has been fixed.</para>
336 <para revision="266436">The &man.uart.4; driver has been
337 updated to include support for the &intel; Lynx Point
338 KT <acronym>AMT</acronym> serial port.</para>
340 <para revision="266594">The <literal>radeonkms(4)</literal>
341 driver has been updated to include 32-bit &man.ioctl.2;
342 support, allowing 32-bit applications to run on a 64-bit
345 <para revision="266718">A bug that would prevent
346 a &man.jail.8; from setting the correct IPv4 source address
347 with some operations that required
348 <literal>security.jail.allow_raw_sockets</literal> has been
351 <para revision="266911">The &man.hwpmc.4; driver has been
352 updated to support core events from the Atom™
353 Silvermont architecture.</para>
355 <para revision="268046">The &man.oce.4; driver has been updated
356 with vendor-supplied fixes for big endian support, and 20GB/s
357 and 25GB/s link speeds.</para>
359 <para revision="270630">The &os; virtual memory subsystem
360 has been updated to implement <quote>fast path</quote> for
361 the page fault handler.</para>
363 <para revision="271069">The &man.asmc.4; driver has been updated
364 to support the &apple; Mac Mini 3,1.</para>
366 <para revision="271111">The &os;/&arch.powerpc64; default kernel
367 configuration, <filename>GENERIC64</filename>, has been
368 updated to enable the &man.vt.4; console driver for the
369 Sony® Playstation 3™ platform.</para>
371 <para revision="271116" contrib="sponsor" sponsor="&ff;">The
372 &os;/&arch.powerpc; <literal>ofwfb</literal> driver, used to
373 provide a graphics console when the &man.vt.4; console driver
374 is used, has been modified to work with the <filename
375 role="package">x11-drivers/xf86-video-scfb</filename>
379 <para>If using an <acronym>ATI</acronym> graphics card with
380 the &man.vt.4; driver, the <filename
381 role="package">x11-servers/xorg-server</filename> package
382 must be updated to version 1.12.4_8 or newer.</para>
385 <para revision="271128" contrib="sponsor" sponsor="&ff;">Several
386 performance enchancements to the &man.vt.4; driver have been
387 merged from &os;-CURRENT.</para>
389 <para revision="271153">The default stack size
390 (<literal>KSTACK_PAGES</literal>) has been increased from
391 <literal>4</literal> to <literal>8</literal> for the
392 &arch.powerpc64; architecture.</para>
394 <para revision="271205">The &os;/&arch.powerpc; ATI driver
395 has been updated to support enabling and disabling the
396 Radeon 9700 backlight, found in the
397 &apple; PowerBook™ G4.</para>
399 <para revision="271816">Hardware context support has been
400 added to the <literal>drm/i915</literal> driver, adding
401 support for <application>Mesa</application> 9.2 and
404 <sect3 xml:id="kernel-virtualization">
405 <title>Virtualization Support</title>
407 <para revision="259450">Support for µsoft; Hyper-V
408 has been added to &os;/i386 as loadable modules, however
409 not available in the <filename>GENERIC</filename> kernel
410 configuration.</para>
412 <para revision="261090">The &man.bhyve.4; hypervisor now
413 supports soft power-off functionality via the ACPI S5
416 <para revision="267399">Support for &os;/i386 guests has been
417 added to &man.bhyve.4;.</para>
419 <para revision="267427">Support for virtualized
420 <literal>XSAVE</literal> has been added to &man.bhyve.4;,
421 allowing guest operating systems to use
422 <literal>XSAVE</literal> and
423 <literal>XSAVE</literal>-enabled features, such as
424 <acronym>AVX</acronym>.</para>
426 <para revision="268932">The &man.bhyve.4; hypervisor now
427 supports booting from a &man.zfs.8; filesystem.</para>
429 <para revision="268933">A new driver, &man.virtio_random.4;,
430 has been added, which allows &os; virtual machines to
431 harvest entropy from the hypervisor.</para>
433 <para revision="270159">The &man.bhyve.4; hypervisor has been
434 synced with the version in &os;-CURRENT.</para>
436 <para>A number of enhancements have been added, and several
437 bug fixes, including:</para>
441 <para>Post-mortem debugging has been added when
442 a guest virtual machine exits with an
443 <quote><acronym>EPT</acronym> Misconfiguration</quote>
448 <para>The hypervisor &man.virtio.4; <acronym>API</acronym>
449 has been expanded from 32- to 64-bit.</para>
453 <para>Support for identifying capabilities of the virtual
454 <acronym>CPU</acronym> has been added.</para>
458 <para>Support for emulating legacy x86 task
459 switching has been added.</para>
463 <para>Support to list the VT-x features in base kernel
464 &man.dmesg.8; has been added.</para>
468 <para>Support for extended PCI configuration space
469 has been added.</para>
474 <sect3 xml:id="kernel-arm">
475 <title>ARM Support</title>
477 <para revision="259355">The <filename>WANDBOARD</filename>
478 kernel configuration file has been added.</para>
480 <para revision="265067">Boot devices may now be specified by
481 setting a u-boot environment variable. If a boot device is
482 not specified, the probe mechanism will be used. To specify
483 the boot device, set the
484 <literal>loaderdev=<replaceable>device</replaceable></literal>
485 u-boot environment variable.</para>
487 <para revision="266000">The <literal>nexus(4)</literal> driver
488 has been updated to include <quote>Flattened Device
489 Tree</quote> support, replacing the &man.fdtbus.4; driver
490 in most cases.</para>
492 <para revision="266105">The &man.gpioiic.4; and
493 &man.gpioled.4; have been merged from &os;-CURRENT.</para>
495 <para>Support for hardware floating point was added to the
496 kernel, and enabled by default in the configuration files
497 for all platforms that contain the required hardware.</para>
499 <para><application>C++</application> exception handling now
500 works with <application>GCC</application>.</para>
502 <para>Support for <acronym>SMP</acronym> was added to the
503 kernel, and enabled by default in the configuration files
504 for all platforms that contain multi-core CPUs.</para>
506 <para>Support was added for:</para>
510 <para>CHROMEBOOK (Samsung Exynos 5250)</para>
514 <para>COLIBRI (Freescale Vybrid)</para>
518 <para>COSMIC (Freescale Vybrid)</para>
522 <para>IMX53-QSB (Freescale i.MX53)</para>
526 <para>QUARTZ (Freescale Vybrid)</para>
530 <para>RADXA (Rockchip rk30xx)</para>
534 <para>WANDBOARD (Freescale i.MX6)</para>
538 <para>An <acronym>I2C</acronym> driver was added for
539 the RaspberryPi.</para>
541 <para>Drivers have been added to support <acronym>TI</acronym>
542 platforms, such as BEAGLEBONE and PANDABOARD:</para>
546 <para>PRUSS (Programmable Realtime Unit Subsystem)</para>
550 <para>MBOX (Mailbox hardware)</para>
554 <para>SDHCI (new faster driver for
555 <acronym>MMC</acronym>/<acronym>SD</acronym>
560 <para>PPS (Pulse Per Second input on a
561 <acronym>GPIO</acronym>/timer pin)</para>
565 <para>PWM (Pulse Width Modulation output)</para>
569 <para>ADC (Analog to Digital converter)</para>
574 <sect3 xml:id="boot">
575 <title>Boot Loader Changes</title>
577 <para revision="262701">A kernel selection menu has been added
578 to &man.loader.8;. If the <quote>beastie menu</quote> is
579 enabled, the kernel to boot may be selected from the kernel
580 selection menu. Additional kernels may be listed in
581 &man.loader.conf.5; as a comma- or space-separated list. By
582 default, <literal>kernel</literal> and
583 <literal>kernel.old</literal> are listed.</para>
585 <para revision="271130" contrib="sponsor" sponsor="&ff;">The
586 <filename class="directory">sys/boot/</filename> sources
587 have been rearranged, moving &man.libstand.3; to a directory
588 indicating the library is built as 32-bit.</para>
590 <para revision="271135" contrib="sponsor" sponsor="&ff;">The
591 &man.libstand.3; library has been updated to produce
592 a 64-bit shared library for the &os;/&arch.amd64; and
593 &os;/&arch.powerpc64; architectures.</para>
595 <para revision="271135" contrib="sponsor"
596 sponsor="&ff;">Initial support for <acronym>UEFI</acronym>
597 boot has been added.</para>
599 <para revision="271136" contrib="sponsor" sponsor="&ff;">Three
600 new files are installed to <filename
601 class="directory">/boot</filename>, supporting
602 <acronym>UEFI</acronym> boot:</para>
606 <para><filename>boot1.efi</filename>: The
607 <acronym>UEFI</acronym> first stage bootstrap
612 <para><filename>boot1.efifat</filename>:
613 A <acronym>FAT</acronym> filesystem image containing
614 an <acronym>EFI</acronym> system partition.</para>
618 <para><filename>loader.efi</filename>: The third stage
619 bootstrap file.</para>
623 <para revision="271880">Serial console and null console
624 support has been added to the <acronym>UEFI</acronym> boot
627 <para revision="272006">Support has been added to cache
628 &man.geli.8; passphrases during system boot. When a system
629 is configured with multiple <literal>GEOM_ELI</literal>
630 providers all using the same passphrase, the passphrase that
631 is cached after the first entry is used for the subsequent
632 <literal>GEOM_ELI</literal> provider. If the passphrase in
633 the cache is incorrect, then a prompt for the passphrase for
634 the next provider is displayed.</para>
637 <sect3 xml:id="proc">
638 <title>Hardware Support</title>
640 <sect4 xml:id="net-if">
641 <title>Network Interface Support</title>
643 <para revision="259453">Support for Ralink RT5370 and
644 RT5372 chipsets has been added to the &man.run.4;
647 <para revision="260120">Firmware for the &man.run.4; driver
648 has been updated to version 0.33.</para>
650 <para revision="261868">Support for the Ralink RT3593
651 chipset has been added to the &man.run.4; driver.</para>
653 <para revision="261972">The &man.nve.4; driver is now
654 deprecated, and the &man.nfe.4; driver should be used
657 <para revision="262137">Support for the &man.axge.4; driver
658 has been added. This driver supports the ASIX AX88178A
659 and AX88179 USB ethernet adapters. The AX88178A supports
660 USB 2.0, and the AX88179 supports USB 2.0 and 3.0.</para>
662 <para revision="262363">The &man.urndis.4; driver has been
663 imported from OpenBSD.</para>
665 <para revision="264866">Support for multiple
666 transmitter/receiver queues has been added to the
667 &man.vmx.4; driver.</para>
670 <para>The &os; guest operating system must have
671 <acronym>MSIX</acronym> enabled as a prerequisite for
672 multiple queues.</para>
675 <para revision="265345">Support for the ASUS USB-N10 Nano
676 wireless card has been added to the &man.urtwn.4;
679 <para revision="266212">Transmission checksum offloading has
680 been disabled for the RTL8168C and RTL8168CP chipsets in
681 the &man.re.4; driver for TCP and UDP frames. This is
682 due to a report of UDP datagrams with IP options
683 generating corrupt frames.</para>
685 <para revision="266578">Preliminary support has been added
686 to the &man.urtwn.4; driver for the Realtek RTL8188EUS and
687 RTL8188ETV chipsets.</para>
689 <para revision="267694">A bug in the fast receiver buffer
690 recycle path has been fixed in the &man.cxgbe.4;
693 <para revision="267849" contrib="vendor"
694 vendor="&chelsio;">The bundled &man.cxgbe.4; firmware for
695 T4 and T5 cards has been updated to version
698 <para revision="269196">The &man.em.4; driver has been
699 updated to version 7.4.2.</para>
701 <para revision="269975">The &man.ixgbe.4; tunables have been
702 renamed to match their &man.sysctl.8; counterparts:</para>
704 <informaltable frame="none" pgwide="0">
706 <colspec colwidth="1*"/>
707 <colspec colwidth="1*"/>
710 <entry>Old Name</entry>
711 <entry>New Name</entry>
717 <entry><literal>hw.ixgbe.enable_aim</literal></entry>
718 <entry><literal>hw.ix.enable_aim</literal></entry>
722 <entry><literal>hw.ixgbe.max_interrupt_rate</literal></entry>
723 <entry><literal>hw.ix.max_interrupt_rate</literal></entry>
727 <entry><literal>hw.ixgbe.rx_process_limit</literal></entry>
728 <entry><literal>hw.ix.rx_process_limit</literal></entry>
732 <entry><literal>hw.ixgbe.tx_process_limit</literal></entry>
733 <entry><literal>hw.ix.tx_process_limit</literal></entry>
737 <entry><literal>hw.ixgbe.enable_msix</literal></entry>
738 <entry><literal>hw.ix.enable_msix</literal></entry>
742 <entry><literal>hw.ixgbe.num_queues</literal></entry>
743 <entry><literal>hw.ix.num_queues</literal></entry>
747 <entry><literal>hw.ixgbe.txd</literal></entry>
748 <entry><literal>hw.ix.txd</literal></entry>
752 <entry><literal>hw.ixgbe.rxd</literal></entry>
753 <entry><literal>hw.ix.rxd</literal></entry>
757 <entry><literal>hw.ixgbe.unsupported_sfp</literal></entry>
758 <entry><literal>hw.ix.unsupported_sfp</literal></entry>
764 <para>Be sure to update &man.loader.conf.5; if using the
765 old tunables before upgrading to
766 &os; &release.current;.</para>
768 <para revision="270061">The &man.if.nf10bmac.4; driver has
769 been merged from &os;-CURRENT to support the NetFPGA-10G
770 Embedded CPU Ethernet Core.</para>
772 <para revision="270297">The &man.cxgbe.4; driver has been
773 updated to support &man.netmap.4; for the T5 10G/40G
776 <para revision="270509">The &man.vtnet.4; driver has been
777 updated to support &man.netmap.4;.</para>
779 <para revision="270514">The &man.urtwn.4; driver has been
780 updated to support the ASUS USB-AC51 wireless card.</para>
782 <para revision="270631">The &intel; XL710 ethernet
783 controller driver, <literal>ixlv(4)</literal>, has been
784 merged from &os;-CURRENT.</para>
788 <sect3 xml:id="net-proto">
789 <title>Network Protocols</title>
791 <para revision="265946">Support for the UDP-Lite protocol
792 (RFC 3828) has been added to the IPv4 and IPv6
795 <para revision="267771">A bug in &man.sctp.4; that would allow
796 two listening sockets bound to the same port has been
799 <para contrib="sponsor" sponsor="&ix;">Kernel RPC code, which
800 is a base of NFS server took multiple optimizations, that
801 significantly improved its performance and
802 <acronym>SMP</acronym> scalability.</para>
804 <para revision="269065" contrib="sponsor" sponsor="&ff;">The
805 <acronym>iSCSI</acronym> initiator has been updated to
806 support redirection handling when an
807 <acronym>iSCSI</acronym> device is configured with multiple
808 <acronym>IP</acronym> addresses across different network
809 interfaces. Previously, clients connecting to
810 such <acronym>iSCSI</acronym> devices could require
811 additional client-side configuration.</para>
813 <para revision="265523" contrib="sponsor" sponsor="&ff;">A new
815 <literal>kern.iscsi.fail_on_disconnection</literal>, has
816 been added, which allows <acronym>iSCSI</acronym> clients to
817 remove the attached disk device when the connection to the
818 target is dropped, where previously I/O would stop until the
819 connection is restored.</para>
821 <para revision="265524" contrib="sponsor" sponsor="&ff;">The
822 <acronym>iSCSI</acronym> transmit code has been optimized
823 to coalesce <acronym>PDUs</acronym> and avoid lock
826 <para revision="265524" contrib="sponsor"
827 sponsor="&ix;">Several performance optimizations have been
828 made to the <acronym>iSCSI</acronym> subsystem, including
829 deferring wakeup until enough data has been received to
830 read or write a file, reducing <acronym>CPU</acronym> usage
831 and throughput performance with large I/O workloads.</para>
833 <para revision="263720" contrib="sponsor"
834 sponsor="&ff;">Support for hostname- and IP-based access
835 restriction has been added to the <acronym>iSCSI</acronym>
836 &man.ctld.8; daemon.</para>
838 <para revision="263725" contrib="sponsor"
839 sponsor="&ff;">The &man.ctld.8; daemon has been updated
840 to allow overriding the <quote>default</quote>
841 <literal>portal-group</literal> configuration.</para>
843 <para revision="263726" contrib="sponsor"
844 sponsor="&ff;">The &man.ctld.8; daemon now includes a new
845 <literal>auth-group</literal>, <quote>default</quote>,
846 defaulting to <literal>deny</literal>, which is possible
850 <sect3 xml:id="disks">
851 <title>Disks and Storage</title>
853 <para revision="260385" contrib="sponsor" sponsor="&ix;">The
854 &man.geom.4; subsystem has been updated to support I/O
855 direct dispatch. When safety requirements are met, it
856 enables avoiding passing I/O requests to GEOM
857 <literal>g_up</literal>/<literal>g_down</literal> thread,
858 executing them directly in the caller context, avoiding
860 <literal>g_up</literal>/<literal>g_down</literal> threads,
861 plus avoid several context switches per I/O.</para>
863 <para revision="260385" contrib="sponsor" sponsor="&ix;">The
864 &man.geom.4; RAID driver has been
865 updated to support unmapped I/O.</para>
867 <para revision="260387" contrib="sponsor" sponsor="&ix;">The
868 &man.cam.4; subsystem has been updated to support
869 finer-grained locking, direct dispatch and multi-queue,
870 which combined with &man.geom.4; direct dispatch, reduces
871 lock congestion and improves <acronym>SMP</acronym>
872 scalability of the SCSI/ATA stack.</para>
874 <para revision="260478">The &man.geom.8;
875 <literal>GEOM_MULTIPATH</literal> class has been updated to
876 support automatic live partition resizing.</para>
878 <para revision="260857">The &man.virtio_blk.4; driver has been
879 updated to support unmapped I/O.</para>
881 <para revision="260858">The &man.virtio_scsi.4; driver has
882 been updated to support unmapped I/O.</para>
884 <para revision="264522">Support for LUN-based CD changers has
885 been removed from the &man.cd.4; driver.</para>
887 <para revision="264732">Support for
888 <literal>BIO_DELETE</literal> has been added to &man.zfs.8;
889 <literal>zvol</literal> volumes.</para>
891 <para revision="264734">Support for 9th generation HP host bus
892 adapter cards has been added to &man.ciss.4;.</para>
894 <para revision="265388" contrib="sponsor" sponsor="&lsi;">The
895 &man.mpr.4; device has been added,
896 providing support for LSI Fusion-MPT 3 12Gb SCSI/SATA
899 <para revision="265678">A new <literal>zvol</literal> property
900 <literal>volmode</literal> and &man.sysctl.8;
901 <literal>vfs.zfs.vol.mode</literal> has been added to allow
902 switching <literal>zvol</literal> between three different
903 ways of exposing it to a user: <literal>geom</literal>,
904 <literal>dev</literal> and <literal>none</literal>.</para>
906 <para revision="265922" contrib="sponsor" sponsor="&lsi;">The
907 &man.mrsas.4; driver has been added, providing support for
908 LSI MegaRAID SAS controllers. The &man.mfi.4; driver will
909 attach to the controller, by default. To enable
910 &man.mrsas.4; add <literal>hw.mfi.mrsas_enable=1</literal>
911 to <filename>/boot/loader.conf</filename>, which turns off
912 &man.mfi.4; device probing.</para>
915 <para>At this time, the &man.mfiutil.8; utility and the &os;
916 version of <application>MegaCLI</application> and
917 <application>StorCli</application> do not work with
918 &man.mrsas.4;.</para>
921 <para revision="266608">Fixed accounting of
922 <literal>BIO_FLUSH</literal> operation in &man.geom.8;
923 <literal>GEOM_DISK</literal> class</para>
925 <para revision="266610">The &man.gstat.8; utility now has an
926 <literal>-o</literal> option, to display
927 <quote>other</quote> operations, such as
928 <literal>BIO_FLUSH</literal>.</para>
930 <para revision="267084">The &man.mfi.4; driver has been
931 updated to include support for unmapped I/O.</para>
933 <para revision="267457">The &man.hpt27xx.4; driver has been
934 updated with various vendor-supplied bug fixes.</para>
936 <para revision="270130" contrib="sponsor"
937 sponsor="&citrix.rd;">Support for unmapped I/O has been
938 added to the &man.xen.4; <literal>blkfront</literal>
941 <para revision="259328" contrib="sponsor" sponsor="&ff;">The
942 &man.geom.8; <literal>label</literal> class is now aware of
943 resized partitions. This corrects an issue where
944 <command>geom resize</command> would resize the partition,
945 but the label provider in <filename
946 class="directory">/dev/gptid/</filename> would not be
949 <para revision="260502">The &man.gmirror.8;
950 utility now has a <literal>resize</literal> command, making
951 it easier to resize the size of a mirror when all of its
952 components have been replaced.</para>
954 <para revision="262967">Support for MegaRAID Fury cards has
955 been added to the &man.mfi.4; driver.</para>
957 <para revision="263024">The &man.aacraid.4; driver has been
958 updated to version 3.2.5.</para>
960 <para revision="265536">The <literal>GEOM_VINUM</literal>
961 option is now able to be built both directly into the kernel
962 or as a &man.kldload.8; loadable module.</para>
964 <para revision="265912">The &man.geom.8;
965 <literal>GEOM_PART</literal> class has been updated to
966 support automatic partition resizing. Changes to the
967 partition size are not saved to disk until
968 <command>gpart commit</command> is run, and prior to saving,
969 can be reverted with <command>gpart undo</command>.</para>
971 <para revision="266220">The &man.geom.uncompress.4; module is
972 built by default which, similar to &man.geom.uzip.4;,
973 provides support for compressed, read-only disk
976 <para revision="268091">Support for the
977 <literal>disklabel64</literal> partitioning scheme has been
978 added to &man.gpart.8;.</para>
980 <para revision="270552">A new &man.sysctl.8; and
981 &man.loader.8; tunable,
982 <literal>kern.geom.part.mbr.enforce_chs</literal> has been
983 added to the &man.geom.8; <literal>MBR</literal> partition
984 class. When set to a non-zero value,
985 <literal>GEOM_PART_MBR</literal> will automatically
986 recalculate the user-specified offset and size for alignment
987 with the disk geometry.</para>
989 <para contrib="sponsor" sponsor="&ix;">Many improvements to
990 the CAM Target Layer (CTL):</para>
993 <para>Support for <literal>UNMAP</literal>, <literal>WRITE
994 SAME</literal>, <literal>COMPARE AND WRITE</literal>,
995 <literal>XCOPY</literal> and some other SCSI commands
996 was added to support VMWare VAAI and Microsoft ODX
997 storage acceleration.</para>
1000 <para revision="265642">The
1001 <literal>READ</literal>/<literal>WRITE</literal> size
1002 limitations were removed by supporting multiple
1003 data moves per command.</para>
1006 <para revision="268556">Finer-grained per-LUN locking and
1007 multiple worker threads for better
1008 <acronym>SMP</acronym> scapability.</para>
1011 <para revision="269297">Memory consumption reduced by
1012 several times by disabling some never used
1013 functionality.</para>
1016 <para revision="269298">The maximum number of
1017 <acronym>SCSI</acronym> ports increased from 32 to
1021 <para revision="269429">Improved <literal>zvol</literal>
1022 integration for better performance.</para>
1026 <para revision="270810" contrib="vendor"
1027 vendor="&highpoint;">The &man.hptnr.4; driver has been
1028 updated to version 1.0.1.</para>
1030 <para revision="271234">The &man.mrsas.4; driver has been
1031 added to the <filename>GENERIC</filename> kernel
1032 configuration on &arch.amd64; and &arch.i386;
1033 architectures.</para>
1037 <title>File Systems</title>
1039 <para revision="260338">The
1040 <literal>vfs.zfs.zio.use_uma</literal> &man.sysctl.8; has
1041 been re-enabled. On multi-CPU machines with enough RAM,
1042 this can easily double &man.zfs.8; performance or reduce CPU
1043 usage in half. It was originally disabled due to memory and
1044 <acronym>KVA</acronym> exhaustion problem reports, which
1045 should be resolved due to several changes in the VM
1048 <para revision="260178" contrib="vendor"
1049 vendor="&netflix;">A new flag, <literal>-R</literal>,
1050 has been added to the &man.fsck.ffs.8; utility. When used,
1051 &man.fsck.ffs.8; will restart itself when too many critical
1052 errors have been detected.</para>
1054 <para revision="263407">The &man.zfs.8; filesystem has been
1055 updated to implement <quote>bookmarks</quote>. See
1056 &man.zfs.8; for further details.</para>
1058 <para revision="266122">The &man.zfs.8; filesystem has been
1059 updated to allow tuning the minimum <quote>ashift</quote>
1060 value when creating new top-level virtual devices (vdevs).
1061 To set the minimum ashift value, for example when creating
1062 a &man.zpool.8; on <quote>Advanced Format</quote> drives,
1063 set the <literal>vfs.zfs.min_auto_ashift</literal>
1064 &man.sysctl.8; accordingly.</para>
1066 <para revision="266612">The <literal>libzfs</literal> thread
1067 pool <acronym>API</acronym> has been imported from
1068 OpenSolaris, and adapted for &os;. This change allows
1069 parallel disk scanning, which can reduce &man.zpool.8;
1070 overall import time in some workloads.</para>
1072 <para revision="269651">The &man.restore.8; utility has been
1073 updated to prevent assertion failures when restoring
1074 a <acronym>UFS</acronym> filesystem dump to
1075 a <acronym>ZFS</acronym> filesystem by writing restored
1076 files in block sizes that are a multiple of 1024.</para>
1078 <para revision="269774">Two &man.sysctl.8;s have been added
1079 to the &man.zfs.8; filesystem:</para>
1084 <literal>vfs.zfs.mg_fragmentation_threshold</literal>: The
1085 percentage of the metaslab group size that should be
1086 considered eligible for allocation, unless all metaslab
1087 groups within the metaslab class have also crossed this
1093 <literal>vfs.zfs.metaslab.fragmentation_threshold</literal>: The
1094 maximum percentage of metaslab fragmentation level to
1095 keep their active state</para>
1099 <para revision="269846">The default &man.zfs.8;
1100 <acronym>ARC</acronym> hash table size has been increased,
1101 and a new &man.loader.8; tunable,
1102 <literal>vfs.zfs.arc_average_blocksize</literal>, has been
1103 added. Previously, the hash table could be too small, which
1104 would lead to long hash chains and limit performance for
1106 <literal>vfs.zfs.arc_average_blocksize</literal> tunable
1107 allows overriding the default block size. The previous
1108 default was 65536, and default of the new &man.loader.8;
1109 tunable is 8192.</para>
1111 <para revision="270157">The Fast File System
1112 (<acronym>FFS</acronym>) has been updated to support
1113 multi-threaded soft updates. Previously, soft updates were
1114 handled by a single thread, and as of this change, now have
1115 one thread per <acronym>FFS</acronym> mountpoint.</para>
1117 <para revision="270892" contrib="sponsor" sponsor="&ff;">The
1118 new filesystem automount facility, &man.autofs.5;, has been
1119 merged from &os;-CURRENT. The new &man.autofs.5; facility
1120 is similar to that found in other &unix;-like operating
1121 systems, such as OS X™ and Solaris™. The
1122 &man.autofs.5; facility uses a &sun;-compatible
1123 &man.auto.master.5; configuration file, and is administered
1124 with the &man.automount.8; userland utility, and the
1125 &man.automountd.8; and &man.autounmountd.8; daemons.</para>
1129 <sect2 xml:id="userland">
1130 <title>Userland Changes</title>
1132 <para revision="260177" contrib="sponsor"
1133 sponsor="&netflix;">A new flag is added to &man.camcontrol.8;,
1134 <literal>-b</literal>, which outputs the existing buses and
1135 their parents.</para>
1137 <para revision="262075">The &man.newsyslog.8; utility has been
1138 updated to rotate files based on the actual file size instead
1139 of the blocks on disk. This matches the behavior documented
1140 in &man.newsyslog.conf.5;.</para>
1142 <para revision="262384">The location of the &man.rctl.8;
1143 configuration file can now be overridden in &man.rc.conf.5;.
1144 To use a non-default location, set
1145 <literal>rctl_rules</literal> in &man.rc.conf.5; to the
1146 location of the file.</para>
1148 <para revision="262855">The <application>ATF</application> test
1149 suite has been updated to version 0.20. The test suite is
1150 disabled by default in &os; 10.1, and can be enabled by
1151 adding <literal>WITH_TESTS=yes</literal> to
1152 &man.src.conf.5;.</para>
1154 <para revision="263019">The <literal>libucl</literal> library
1155 (Unified Configuration Library) has been merged from
1156 &os;-CURRENT.</para>
1158 <para revision="263020">The &man.pkg.7; bootstrapping utility
1159 has been synced with the version in &os;-CURRENT.</para>
1161 <para revision="263403">The &man.zfs.8; userland utility has
1162 been updated to include aliases for
1163 <command>snapshot</command>, which allows use of <command>zfs
1164 list -t snap</command> and <command>zfs
1165 snap</command>.</para>
1167 <para revision="263405">The &man.zfs.8; userland utility has
1168 been updated to include a new flag to <command>zfs
1169 list</command>, <literal>-p</literal>, which when specified,
1170 prints the output in a parsable format.</para>
1172 <para revision="263783">The Blowfish password format
1173 implementation has been updated. Support for
1174 $2b$ has been added, allowing use of passwords
1175 greater than 256 characters long.</para>
1177 <para revision="264497">The &man.iconv.3; library has been
1178 updated to match NetBSD, providing several bug fixes.</para>
1180 <para revision="265265">The &man.date.1; utility has been
1181 updated to include a new flag, <literal>-R</literal>, which
1182 prints the date and time output as specified in RFC
1185 <para revision="265533">The &man.bc.1; utility has been updated
1186 to version 1.1, in sync with the version in OpenBSD.</para>
1188 <para revision="265604" contrib="vendor"
1189 vendor="&netflix;">The &man.pmcstat.8; utility has been
1190 updated to include a new flag, <literal>-a</literal>, which
1191 when specified, produces a full stack track on the sampled
1194 <para revision="265701">The &man.netstat.8; and &man.route.8;
1195 utilities have been updated to include a shorthand equivalent
1196 to the <literal>-f inet</literal> and <literal>-f
1197 inet6</literal> address specifiers, <literal>-4</literal>
1198 and <literal>-6</literal>, respectively.</para>
1200 <para revision="265879">The &man.crypt.3; library now defaults
1201 to SHA512 for password hashing.</para>
1203 <para revision="266014">The &man.gvinum.8; utility has been
1204 updated to allow forceful configuration reset with the
1205 <literal>-f</literal> flag. Additionally, a bug that would
1206 prevent <literal>-f</literal> from properly creating
1207 a &man.gvinum.8; configuration has been fixed.</para>
1209 <para revision="266029">The &man.login.conf.5; file now takes
1210 precedence over the shell-specific environment files. In
1211 particular, the <literal>PATH</literal>,
1212 <literal>BLOCKSIZE</literal> variables are commented from
1213 <filename>/usr/share/skel/dot.profile</filename>, and the
1214 <literal>path</literal>, <literal>BLOCKSIZE</literal>, and
1215 <literal>umask</literal> variables have been commented from
1216 <filename>/usr/share/skel/dot.cshrc</filename>.</para>
1218 <para revision="266272">The &man.binmiscctl.8; userland utility
1219 and related image activator features have been merged from
1220 &os;-CURRENT.</para>
1222 <para revision="266279">The &man.ps.1; utility has been
1223 updated to include the <literal>-J</literal> flag, used to
1224 filter output by matching &man.jail.8; IDs and names.
1225 Additionally, argument <literal>0</literal> can be used to
1226 <literal>-J</literal> to only list processes running on the
1229 <para revision="266280">The &man.top.1; utility has been updated
1230 to filter by &man.jail.8; ID or name, in followup to the
1231 &man.ps.1; change in <literal>r265229</literal>.</para>
1233 <para revision="266610">The &man.gstat.8; utility has been
1234 updated to include a new flag, <literal>-o</literal>. When
1235 set, &man.gstat.8; will display statistics for operations
1236 such as <literal>BIO_FLUSH</literal>.</para>
1238 <para revision="266632">The &man.fetch.3; library has been
1239 updated to look for root <acronym>SSL</acronym> certificates
1240 in <filename class="directory">/usr/local/etc/ssl/</filename>
1242 class="directory">/etc/ssl/</filename>.</para>
1244 <para revision="266715">The &man.clang.1;/llvm suite has been
1245 updated to version 3.4.1.</para>
1247 <para revision="266816">The Blowfish password format
1248 has been changed to $2b$ by default.</para>
1250 <para revision="266888">The amount of data collected for
1251 &man.hwpmc.4; has been updated to work with modern processors
1252 and larger amounts of available memory.</para>
1254 <para revision="266890">The &man.pmcstat.8; utility has been
1255 updated to include a new flag, <literal>-l</literal>, which
1256 ends event collection after the specified number of
1259 <para revision="266953">The &man.mergemaster.8; utility has
1260 been updated to avoid printing
1261 <quote><filename>/var/tmp/temproot</filename>
1262 disappeared</quote> if there is nothing to compare.</para>
1264 <para revision="267056">The &os; installer, &man.bsdinstall.8;,
1265 has been updated to include optional
1266 &man.geli.8;-encrypted or &man.gmirror.8;-mirrored swap
1267 devices when installing onto a full &man.zfs.8; filesystem.
1268 Additionally, the parent &man.zfs.8; dataset is now configured
1269 with <literal>lz4</literal> compression enabled.</para>
1271 <para revision="267113">The default &man.newsyslog.conf.5; now
1272 includes files in the
1273 <filename>/etc/newsyslog.conf.d/</filename> and
1274 <filename>/usr/local/etc/newsyslog.conf.d/</filename>
1275 directories by default for &man.newsyslog.8;.</para>
1277 <para revision="267161">The &man.realpath.1; utility has been
1278 updated to return <literal>ENOTDIR</literal> on paths
1279 components <quote>.</quote> and <quote>..</quote> that are
1280 not directories, such as <filename
1281 class="directory">/dev/null/.</filename> or <filename
1282 class="directory">/dev/null/..</filename>.</para>
1284 <para revision="267236">A new flag, <quote>onifconsole</quote>
1285 has been added to <filename>/etc/ttys</filename>. This allows
1286 the system to provide a login prompt via serial console if the
1287 device is an active kernel console, otherwise it is equivalent
1288 to <literal>off</literal>.</para>
1290 <para revision="267341">Support for legacy
1291 <acronym>PCI</acronym> devices has been removed from
1292 &man.bhyve.8;.</para>
1294 <para revision="267450">The &man.bhyve.8; userland utility
1295 has been updated to include SMBIOS support. A new flag has
1296 been added, <literal>-U</literal>, which allows specifying the
1297 UUID of the guest in the System Information structure.</para>
1299 <para revision="267734">The &os; Project has migrated
1300 from the <application>GNATS</application> bug tracking system
1301 to <application>Bugzilla</application>. The &man.send-pr.1;
1302 utility used for submitting problem reports has been replaced
1303 with a stub shell script that instructs to use the Bugzilla
1304 web interface.</para>
1306 <para revision="267747">The &man.patch.1; utility has been
1307 updated to include a <literal>--dry-run</literal> flag, which
1308 is equivalent to <literal>--check</literal> and
1309 <literal>-C</literal>.</para>
1311 <para revision="267878">A bug in &man.bsdgrep.1; that would
1312 prevent patterns from being matched under certain conditions
1313 has been fixed.</para>
1315 <para revision="267979">The &man.procstat.1; utility has been
1316 updated to include two new flags, <literal>-r</literal> and
1317 <literal>-H</literal>. When <literal>-r</literal> is
1318 specified, &man.procstat.1; will print current resource usage
1319 about the process(es). When <literal>-H</literal> is
1320 specified, &man.procstat.1; will print information about
1321 threads rather than the process(es).</para>
1324 <para>The <literal>-H</literal> flag is currently only used
1325 with <literal>-r</literal> to display resource usage for
1326 individual threads, rather than the entire process.</para>
1329 <para revision="268019">The &man.sed.1; utility has been
1330 updated to include a new flag, <literal>-u</literal>, which
1331 enables unbuffered output when specified.</para>
1333 <para revision="268161">The &man.mkimg.1; utility has been
1334 merged from &os;-CURRENT.</para>
1336 <para revision="268700" contrib="sponsor"
1337 sponsor="&spectralogic;">The &man.camcontrol.8; has been
1338 updated to include a new <literal>persist</literal> command,
1339 which allows issuing <command>SCSI PERSISTENT RESERVE
1340 IN</command> and <command>SCSI PERSISTENT RESERVE
1341 OUT</command>.</para>
1343 <para revision="268791">The &man.gstat.8; utility has been
1344 updated to include a new flag, <literal>-p</literal>, which
1345 displays only physical providers when specified.</para>
1347 <para revision="268903">The &man.kldstat.8; utility has been
1348 updated to allow <literal>-q</literal> to be specified when
1349 also specifying <literal>-n
1350 <replaceable>module.ko</replaceable></literal>.</para>
1352 <para revision="269177">The &man.mkimg.1; utility has been
1353 updated to include support for both fixed- and
1354 dynamically-allocated images for the <acronym>VHD</acronym>
1355 and <acronym>VMDK</acronym> formats.</para>
1357 <para revision="269220">The &man.random.4; entropy collection
1358 script, <filename>/usr/libexec/save-entropy</filename>, no
1359 longer runs within &man.jail.8; environments.</para>
1361 <para revision="269397">The &man.bhyve.8; wrapper script,
1362 <filename>/usr/share/examples/bhyve/vmrun.sh</filename>,
1363 has been synced with &os;-CURRENT.</para>
1365 <para>This update includes:</para>
1369 <para>A new flag, <literal>-e</literal>, has been added,
1370 which is used to set &man.loader.8; environment
1375 <para>A new flag, <literal>-C</literal>, has been added,
1376 which is used to specify the guest console device.</para>
1380 <para>A new flag, <literal>-H</literal>, has been added,
1381 which is used to pass the host path to
1382 &man.bhyveload.8;.</para>
1386 <para>Support for multiple disk and &man.tap.4; devices
1387 has been added.</para>
1391 <para>The <literal>-I</literal> flag has been
1396 <para revision="269398">The &man.nfsd.8; server update to 4.1,
1397 adding support for RFC5661, has merged from
1398 &os;-CURRENT.</para>
1400 <para revision="269432" arch="ia64">The serial terminals
1401 <filename>ttyu0</filename> and <filename>ttyu1</filename> have
1402 been updated to <literal>onifconsole</literal> by default in
1403 &man.ttys.5;, which either can be the serial console,
1404 depending on the platform.</para>
1406 <para revision="269800">The &man.ping6.8; utility has been
1407 updated to reset <literal>itimer</literal> when the maximum
1408 number of packets to send have been reached. This prevents
1409 &man.ping6.8; from exiting when the interval in set to a small
1410 value and a low number of packets to send has been
1413 <para revision="269805">The &man.jail.8; utility has been
1414 updated to support extra &man.ifconfig.8; arguments for the
1415 <literal>ip4.addr</literal> and <literal>ip6.addr</literal>
1416 parameters. This change allows &man.carp.4; interfaces to
1417 be used within the &man.jail.8;.</para>
1419 <para revision="269946">Support for generating and compiling
1420 <acronym>USDT</acronym> <application>DTrace</application>
1421 probes has been improved. <application>DTrace</application>
1422 <acronym>USDT</acronym> files are now handled similar to
1423 &man.lex.1; and &man.yacc.1; files, meaning support for
1424 handling <application>D</application> files as part of the
1425 build process is built into the <literal>SRCS</literal>
1426 &man.make.1; environment variable.</para>
1428 <para revision="269968">The &man.iscsictl.8; utility has been
1429 updated to include a new flag, <literal>-M</literal>, which
1430 allows modifying the <acronym>iSCSI</acronym> session
1431 parameters without requiring the session to be removed and
1434 <para revision="270043">The &man.mount.nfs.8; utility has been
1435 updated to support specifying the NFS version as
1436 a <literal>key=<replaceable>value</replaceable></literal> pair
1437 argument to the <literal>-o</literal> flag. For example, to
1438 specify NFS version 4, the syntax to use is
1439 <literal>-o vers=4</literal>.</para>
1441 <para revision="270242" contrib="sponsor"
1442 sponsor="&spectralogic;">The &man.devd.8; client socket type
1443 has been changed to <literal>SOCK_SEQPACKET</literal>,
1444 providing sequential packet support.</para>
1446 <para revision="270401">Support for the <quote>account</quote>
1447 facility has been added to the &man.pam.group.8;
1450 <para revision="270890">The &man.pathchk.1; utility has been
1451 updated to ensure bytes greater than or equal to 128 are
1452 considered non-portable.</para>
1454 <para revision="270997" contrib="vendor" vendor="&freenas;">The
1455 &man.zdb.8; utility is now included in the set of applications
1456 installed in the <filename
1457 class="directory">/rescue</filename> environment, making it
1458 possible to examine &man.zfs.8; filesystems when <filename
1459 class="directory">/usr</filename> is unavailable.</para>
1461 <para>Several <literal>libc</literal> improvements have been
1462 merged from illumos™ and &apple;, providing better
1463 internationalization support and &posix; compliance.</para>
1465 <para revision="271967">Support for adding empty partitions has
1466 been added to the &man.mkimg.1; utility.</para>
1468 <para revision="272819">Support for QCOW and QCOW2 disk image
1469 formats has been added to the &man.mkimg.1; utility.</para>
1471 <para revision="273098">The &man.mkimg.1; utility has been
1472 updated to include three options used to print information
1473 about &man.mkimg.1; itself:</para>
1475 <informaltable frame="none" pgwide="0">
1477 <colspec colwidth="1*"/>
1478 <colspec colwidth="1*"/>
1481 <entry>Option</entry>
1482 <entry>Output</entry>
1488 <entry><literal>--version</literal></entry>
1489 <entry>The current version of the &man.mkimg.1;
1494 <entry><literal>--formats</literal></entry>
1495 <entry>The disk image file formats supported by
1496 &man.mkimg.1;</entry>
1500 <entry><literal>--schemes</literal></entry>
1501 <entry>The partition schemes supported by
1502 &man.mkimg.1;</entry>
1508 <sect3 xml:id="rc-scripts">
1509 <title><filename>/etc/rc.d</filename> Scripts</title>
1511 <para revision="264438">The <filename>network.subr</filename>
1512 &man.rc.8; script has been updated to loosen the requirement
1513 of listing network aliases in numeric order. Previously,
1515 <literal>_alias<replaceable>2</replaceable></literal>
1516 would not be created if
1517 <literal>_alias<replaceable>1</replaceable></literal> was
1520 <para revision="268098">The &man.service.8; utility has been
1521 updated to check that the &man.rc.d.8; directory exists
1522 before traversing the directory.</para>
1524 <para revision="259141">A regression introduced in
1525 &os; 10.0-RELEASE that would prevent proper IPv6
1526 allocation via the &man.jail.8; &man.rc.8; startup script
1527 has been fixed.</para>
1529 <para revision="264438">The &man.rc.8; restriction requiring
1530 &man.mdconfig.8; devices defined in &man.rc.conf.5; to be
1531 listed sequentially has been removed.</para>
1533 <para revision="262566">The &man.sshd.8; &man.rc.d.8; startup
1534 script now generates <literal>ED25519</literal> &man.sshd.8;
1535 host keys if keys do not already exist when
1536 <literal>ssh_keygen_alg()</literal> is invoked.</para>
1538 <para revision="271095">Support for &man.vt.4; keyboard maps
1539 has been added to the <filename>syscons</filename>
1540 &man.rc.d.8; startup script.</para>
1542 <para revision="271260">Support for subdirectories within
1544 class="directory">/etc/rc.conf.d/<replaceable>service</replaceable>/</filename>
1545 has been added the &man.rc.d.8;. This allows creating
1546 separate configuration files for services such as
1547 <filename>netif</filename>, for example, where each network
1548 interface can have a separate configuration file.</para>
1550 <para revision="272078">The default &man.rc.conf.5;,
1551 <filename>/etc/defaults/rc.conf</filename>, has been updated
1552 to include <filename
1553 class="directory">/usr/lib32/compat</filename> in the
1554 default <filename>ld-elf32.so.1</filename> search
1558 <sect3 xml:id="periodic-scripts">
1559 <title><filename>/etc/periodic</filename> Scripts</title>
1561 <para revision="272430">The daily &man.periodic.8; script
1562 <filename>110.clean-tmps</filename> has been updated to
1563 avoid crossing filesystem mount boundaries when cleaning
1564 files in <filename class="directory">/tmp</filename>.</para>
1568 <sect2 xml:id="contrib">
1569 <title>Contributed Software</title>
1571 <para revision="263285">The &man.xz.1; utility has been updated
1572 to a post-5.0.5 snapshot.</para>
1574 <para revision="264377"><application>OpenSSH</application> has
1575 been updated to version 6.6p1.</para>
1577 <para revision="264911">The &man.nc.1; utility has been updated
1578 to match the version in OpenBSD 5.5.</para>
1580 <para revision="266692"><application>Sendmail</application>
1581 has been updated to 8.14.9.</para>
1583 <para revision="268515">The &man.file.1; utility and
1584 &man.libmagic.3; library have been updated to 5.19.</para>
1586 <para revision="268899">The &man.byacc.1; parser has been
1587 updated to version 20140422.</para>
1589 <para revision="269024" contrib="sponsor"
1590 sponsor="&darpa_afrl;">The &man.lldb.1; debugging library has
1591 been updated to the r202189 snapshot.</para>
1593 <para revision="269257">The &man.unbound.8; caching resolver and
1594 <literal>ldns</literal> have been updated to version
1597 <para revision="269686"><application>OpenSSL</application> has
1598 been updated to version 1.0.1i.</para>
1600 <para revision="269847">The <quote>lite</quote> version of
1601 <application>Subversion</application> included in the
1602 &os; base system and its dependencies have been
1607 <para><application>apr</application> has been
1608 updated to version 1.5.1.</para>
1612 <para><application>apr-util</application> has been
1613 updated to version 1.5.3.</para>
1617 <para><application>serf</application> has been
1618 updated to version 1.3.7.</para>
1622 <para><application>svnlite</application> has been
1623 updated to version 1.8.10.</para>
1627 <para revision="270026">The &man.nvi.1; editor has been
1628 update to version 2.1.2-c80f493b038.</para>
1630 <para revision="270031">The &man.fparseln.3; library has
1631 been updated to version 1.7.</para>
1633 <para revision="270415">The <application>lukemftpd</application>
1634 <acronym>FTP</acronym> server has been removed from the
1635 &os; base system.</para>
1637 <para revision="270817">The timezone database has been updated
1638 to version tzdata2014f.</para>
1640 <para revision="271947"><application>OpenPAM</application> has
1641 been updated to Ourouparia (20140912).</para>
1644 <sect2 xml:id="ports">
1645 <title>Ports/Packages Collection Infrastructure</title>
1647 <para>The &man.pkg.8; package management utility has been
1648 updated to version 1.3.8.</para>
1651 <sect2 xml:id="releng">
1652 <title>Release Engineering and Integration</title>
1654 <para revision="263028">The &man.services.mkdb.8; utility has
1655 been updated to include endianness awareness, allowing the
1656 <filename>services.db</filename> database to be created as
1657 part of the release build, regardless of native- or
1658 cross-built releases.</para>
1660 <para revision="271470" contrib="sponsor" sponsor="&ff;">The
1661 <filename class="directory">release/</filename> scripts have
1662 been updated to produce <acronym>UEFI</acronym>-capable and
1663 <acronym>BIOS</acronym>-capable CD-ROM ISOs as well as memory
1664 stick images for the &os;/&arch.amd64; architecture.</para>
1666 <para revision="271943" contrib="sponsor" sponsor="&ff;">The
1667 <filename>release/scripts/pkg-stage.sh</filename> script has
1668 been updated to include a symlink to the on-disc version of
1669 &man.pkg.8; in the <filename
1670 class="directory">packages/</filename> structure on the
1671 DVD installer. This allows the &man.pkg.7; bootstrap utility
1672 to properly locate the <filename>Latest/pkg.txz</filename>
1673 package on the DVD when <literal>REPOS_DIR</literal> is set to
1674 <filename class="directory">/dist/packages/repos</filename>,
1675 eliminating the need for a network connection or explicitly
1676 providing the path to the version included on the DVD
1677 installation medium.</para>
1679 <para revision="273101" contrib="sponsor" sponsor="&ff;">The
1680 &os; Release Engineering build tools have been updated to
1681 provide support for building virtual machine disk images as
1682 part of the release build process using &man.mkimg.1;. The
1683 disk image formats currently supported include QCOW2, VHD,
1684 VMDK, and raw formats. See &man.release.7; for additional
1687 <para revision="273199" contrib="sponsor" sponsor="&ff;">The
1688 &os; Release Engineering build tools have been updated to
1689 provide support for building &os; virtual machine disk images
1690 for the µsoft; Azure cloud hosting platform. This
1691 functionality is not connected directly to the default
1692 <literal>release</literal> &man.make.1; target, however can be
1693 invoked by specifying the <literal>vm-azure</literal> target
1698 <sect1 xml:id="upgrade">
1699 <title>Upgrading from Previous Releases of &os;</title>
1701 <para arch="amd64,i386">Binary upgrades between RELEASE versions
1702 (and snapshots of the various security branches) are supported
1703 using the &man.freebsd-update.8; utility. The binary upgrade
1704 procedure will update unmodified userland utilities, as well as
1705 unmodified <filename>GENERIC</filename> kernel distributed as
1706 a part of an official &os; release. The &man.freebsd-update.8;
1707 utility requires that the host being upgraded have Internet
1708 connectivity.</para>
1710 <para>Source-based upgrades (those based on recompiling the &os;
1711 base system from source code) from previous versions are
1712 supported, according to the instructions in
1713 <filename>/usr/src/UPDATING</filename>.</para>
1716 <para>Upgrading &os; should only be attempted after
1717 backing up <emphasis>all</emphasis> data and configuration