1 <!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook V4.1-Based Extension//EN" [
2 <!ENTITY % articles.ent PUBLIC "-//FreeBSD//ENTITIES DocBook FreeBSD Articles Entity Set//EN">
5 <!ENTITY % release PUBLIC "-//FreeBSD//ENTITIES Release Specification//EN">
11 <title>&os; &release.current; Release Notes</title>
13 <corpauthor>The &os; Project</corpauthor>
15 <pubdate>$FreeBSD$</pubdate>
19 <holder role="mailto:doc@FreeBSD.org">The &os; Documentation Project</holder>
22 <legalnotice id="trademarks" role="trademarks">
32 <para>The release notes for &os; &release.current; contain a summary
33 of the changes made to the &os; base system on the
34 &release.branch; development line.
35 This document lists applicable security advisories that were issued since
36 the last release, as well as significant changes to the &os;
38 Some brief remarks on upgrading are also presented.</para>
43 <title>Introduction</title>
45 <para>This document contains the release notes for &os;
47 describes recently added, changed, or deleted features of &os;.
48 It also provides some notes on upgrading
49 from previous versions of &os;.</para>
51 <![ %release.type.current [
53 <para>The &release.type; distribution to which these release notes
54 apply represents the latest point along the &release.branch; development
55 branch since &release.branch; was created. Information regarding pre-built, binary
56 &release.type; distributions along this branch
57 can be found at <ulink url="&release.url;"></ulink>.</para>
61 <![ %release.type.snapshot [
63 <para>The &release.type; distribution to which these release notes
64 apply represents a point along the &release.branch; development
65 branch between &release.prev; and the future &release.next;.
67 pre-built, binary &release.type; distributions along this branch
68 can be found at <ulink url="&release.url;"></ulink>.</para>
72 <![ %release.type.release [
74 <para>This distribution of &os; &release.current; is a
75 &release.type; distribution. It can be found at <ulink
76 url="&release.url;"></ulink> or any of its mirrors. More
77 information on obtaining this (or other) &release.type;
78 distributions of &os; can be found in the <ulink
79 url="&url.books.handbook;/mirrors.html"><quote>Obtaining
80 &os;</quote> appendix</ulink> to the <ulink
81 url="&url.books.handbook;/">&os;
82 Handbook</ulink>.</para>
86 <para>All users are encouraged to consult the release errata before
87 installing &os;. The errata document is updated with
88 <quote>late-breaking</quote> information discovered late in the
89 release cycle or after the release. Typically, it contains
90 information on known bugs, security advisories, and corrections to
91 documentation. An up-to-date copy of the errata for &os;
92 &release.current; can be found on the &os; Web site.</para>
97 <title>What's New</title>
99 <para>This section describes the most user-visible new or changed
100 features in &os; since &release.prev;.</para>
102 <para>Typical release note items document recent security
103 advisories issued after &release.prev;, new drivers or hardware
104 support, new commands or options, major bug fixes, or
105 contributed software upgrades. They may also list changes to
106 major ports/packages or release engineering practices. Clearly
107 the release notes cannot list every single change made to &os;
108 between releases; this document focuses primarily on security
109 advisories, user-visible changes, and major architectural
112 <sect2 id="security">
113 <title>Security Advisories</title>
115 <para>Problems described in the following security advisories have
116 been fixed. For more information, consult the individual
117 advisories available from
118 <ulink url="http://security.FreeBSD.org/"></ulink>.</para>
120 <informaltable frame="none" pgwide="0">
122 <colspec colwidth="1*">
123 <colspec colwidth="1*">
124 <colspec colwidth="3*">
127 <entry>Advisory</entry>
135 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-10:08.bzip2.asc"
136 >SA-10:08.bzip2</ulink></entry>
137 <entry>20 September 2010</entry>
138 <entry><para>Integer overflow in bzip2 decompression</para></entry>
140 <!-- XXX: not for 8.2
142 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-10:09.pseudofs.asc"
143 >SA-10:09.pseudofs</ulink></entry>
144 <entry>10 October 2010</entry>
145 <entry><para>Spurious mutex unlock</para></entry>
149 <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-10:10.openssl.asc"
150 >SA-10:10.openssl</ulink></entry>
151 <entry>29 November 2010</entry>
152 <entry><para>OpenSSL multiple vulnerabilities</para></entry>
160 <title>Kernel Changes</title>
162 <para arch="ia64" revision="209326">The maximum number of pages
163 used for DMA bounce buffer pool has been increased from 256 to
166 <para arch="powerpc" revision="209765">The default value of
167 <varname>kern.hz</varname> has been increased from 100 to
170 <para arch="powerpc" revision="209767">The SMP kernel now works on
171 MPC7400-based Apple desktop machines such as
174 <para arch="powerpc" revision="211593">&os;/powerpc now supports
175 DMA bounce buffer which is required on systems with larger RAM
178 <para arch="amd64" revision="214620">&os;/amd64 now always sets
179 the KVA space as equal to or larger than physical memory size.
180 The default size was calculated based on one-third of the
181 physical memory size by a code derived from one for i386. It
182 has been changed because constraints for memory space are not
183 severe on amd64 and this change would help to prevent a
184 <quote>kmem_map too small</quote> panic which often occurs
185 when using ZFS.</para>
187 <para arch="amd64,i386" revision="214621">CPU topology detection
188 for Intel CPUs has been improved.</para>
190 <para revision="209692">The &man.ddb.8; kernel debugger now
191 supports an optional delay in <command>reset</command> and
192 <command>reboot</command> commands. This allows an
193 administrator to break the system into debugger and trigger
194 automatic textdump when an unattended panic occurs.</para>
196 <para revision="212230">The &man.ddb.8; kernel debugger now
197 supports a <command>show cdev</command> command. This
198 displays the list of all created cdev's, consisting of devfs
199 node name and struct cdev address.</para>
201 <para revision="214326">The &os; <filename>GENERIC</filename>
202 kernel is now compiled with <option>KDB</option> and
203 <option>KDB_TRACE</option> options. From 8.2-RELEASE the
204 kernel supports displaying a stack trace on panic by using
205 &man.stack.9; facility with no debugger backend like
206 &man.ddb.8;. Note that this does not change the default
207 behaviors of the <filename>GENERIC</filename> kernel on
210 <para revision="213554,213556,213560">The following
211 &man.sysctl.8; variables are also now loader tunables:
212 <varname>vm.kmem_size</varname>,
213 <varname>vm.kmem_size_max</varname>, and
214 <varname>vm.kmem_size_min</varname>,
215 <varname>debug.kdb.stop_cpus</varname>,
216 <varname>debug.trace_on_panic</varname>, and
217 <varname>kern.sync_on_panic</varname>. Also, new
218 &man.sysctl.8; variables <varname>vm.kmem_map_size</varname>
219 for the current kmem map size and
220 <varname>vm.kmem_map_free</varname> for largest contiguous
221 free range in kmem map, <varname>vfs.ncsizefactor</varname>
222 for size factor for namecache, and
223 <varname>vfs.ncnegfactor</varname> for ratio of negative
224 namecache entries have been added.</para>
226 <para revision="212427">The &os; &man.memguard.9; framework has
227 been improved to make it able to detect use-after-free of
228 allocated memories over a longer time. For more details, see
229 &man.memguard.9; manual page.</para>
231 <para revision="214254">The &os; &man.crypto.4; framework
232 (opencrypto) now supports XTS-AES (XEX-TCB-CTS, or XEX-based
233 Tweaked Code Book mode with CipherText Stealing), which is
234 defined in IEEE Std. 1619-2007.</para>
237 <title>Boot Loader Changes</title>
239 <para revision="213994">&os; now fully supports GPT (GUID
240 Partition Table). Checksums of primary header and primary
241 partition table are verified properly now.</para>
243 <para revision="212717">The &man.pxeboot.8; now uses NFS
244 version 3 instead of version 2 by default.</para>
248 <title>Hardware Support</title>
250 <para revision="210476">The &man.aibs.4; driver has been
251 added. This supports the hardware sensors in ASUS
252 motherboards and replaces the &man.acpi.aiboost.4;
255 <para revision="211914">The &man.coretemp.4; driver now supports
256 Xeon 5500/5600 series.</para>
258 <para revision="209952">The &man.ichwd.4; driver
259 now supports Intel NM10 Express chipset watchdog
263 <title>Multimedia Support</title>
265 <para>The &os; Linux emulation subsystem now supports
266 video4linux API. This requires native video4linux
267 hardware drivers such as ones which<filename
268 role="ports">multimedia/pwc</filename> and <filename
269 role="ports">multimedia/webcamd</filename> provide.</para>
273 <title>Network Interface Support</title>
275 <para revision="212021">The &man.alc.4; driver now supports
276 Atheros AR8151/AR8152 PCIe Gigabit/Fast Ethernet
279 <para revision="212011">The TX interrupt moderation timer in
280 the &man.alc.4; driver has been reduced from 50ms to 1ms.
281 The 50ms timer resulted in a poor UDP performance.</para>
283 <para revision="214297,214298,214301">The &man.axe.4; driver
284 has been improved for stability and better performance on
285 the TX packet rate.</para>
287 <para revision="211379">The &man.bce.4; driver now supports
290 <para revision="211367">A bug in the &man.bge.4; driver which
291 prevents TSO in BCM57780 from working has been
294 <para revision="214700">A bug in the &man.bge.4; driver
295 which can wrongly disable the TX checksum offloading
296 feature as well when one tries only the RX checksum
297 offloading has been fixed.</para>
299 <para revision="214714">Some improvements for reliability of
300 the &man.bge.4; driver with BCM5906 or BCM6906 controller
301 has been added.</para>
303 <para revision="213109">UDP checksum offloading in the
304 &man.bge.4; driver has been disabled by default. This is
305 because Broadcom controllers have a bug which can generate
306 UDP datagrams with checksum value <literal>0</literal>
307 when TX UDP checksum offloading is enabled. The checksum
308 offloading can be enabled by using the following loader
311 <programlisting>dev.bge.<replaceable>N</replaceable>.forced_udpcsum</programlisting>
313 <para revision="213593">A bug in the &man.bge.4; driver
314 which can lead poor performance on a system with RAM
315 larger than 4GB has been fixed. The cause was that all of
316 Broadcom controllers except for BCM5755 and later has 4GB
317 boundary DMA bug and the inefficient use of bounce
320 <para revision="212275">The &man.bwi.4; driver, which supports
321 Broadcom BCM430* and BCM431* family Wireless Ethernet
322 controllers, has been added. This is not compiled into
323 the <filename>GENERIC</filename> kernel because there are
324 some problems. The kernel module
325 <filename>if_bwi.ko</filename> is available and can be
326 loaded without recompiling the kernel to enable this
329 <para revision="212274">A bug in the &man.bwn.4; driver which
330 prevents WPA authentication from working has been
333 <para revision="211848">The &man.cxgb.4; driver now supports
334 the following new &man.sysctl.8; variables:
335 <varname>hw.cxgb.nfilters</varname> sets the maximum
336 number of entries in the hardware filter table,
337 <varname>dev.cxgbc.<replaceable>N</replaceable>.pkt_timestamp</varname>
338 provides packet timestamp instead of connection hash, and
339 <varname>dev.cxgbc.<replaceable>N</replaceable>.core_clock</varname>
340 provides the core clock frequency in kHz.</para>
342 <para>The &man.em.4; driver has been updated to version
345 <para>The &man.igb.4; driver has been updated to version
348 <para revision="209309">The &man.em.4; and &man.igb.4; drivers
349 now provide statistics counters as &man.sysctl.8; MIB
352 <para revision="211241">The &man.em.4; and &man.igb.4; drivers
353 now support &man.led.4; interface via
354 <filename>/dev/led/em<replaceable>N</replaceable></filename>
356 <filename>/dev/led/igb<replaceable>N</replaceable></filename>
357 for identification LED control. The following command
358 line makes the LED blink on <literal>em0</literal>:</para>
360 <screen>&prompt.root; echo f2 > /dev/led/em0</screen>
362 <para revision="212386">The &man.ixgbe.4;
363 driver is now also provided as a kernel module.</para>
365 <para revision="212150">The &man.epair.4; virtual Ethernet
366 interface driver now supports explicit UP/DOWN linkstate.
367 This fixes an issue when it is used with the &man.carp.4;
370 <para revision="214717">The &man.fxp.4; driver now supports
371 TSO over VLAN on i82550 and i82551 controllers.</para>
373 <para revision="210673">The &man.iwn.4; driver now supports
374 Intel Wireless WiFi Link 6000 series. The firmware has
375 been updated to version 9.221.4.1.</para>
377 <para revision="209308">The &man.ixgbe.4; driver has been
378 updated to version 2.2.1. It now supports 82599, better
379 interrupt handling, hardware assist to LRO, and so
382 <para revision="212386">The &man.mwlfw.4;
383 driver is now also provided as a kernel module.</para>
385 <para revision="211377">The &man.rl.4; driver now supports WoL
386 (Wake on LAN) on RTL8139B or newer controllers.</para>
388 <para revision="212039">The &man.rl.4; driver now supports a
389 device hint to change a way of register access. Although
390 some newer RTL8139 controllers support memory-mapped
391 register access, it is difficult to detect the support
392 automatically. For this reason the driver uses I/O
393 mapping by default and provides the following device hint.
394 If it is set to <literal>0</literal>, the driver uses
395 memory mapping for register access.</para>
397 <programlisting>hint.rl.<replaceable>N</replaceable>.prefer_iomap="0"</programlisting>
399 <para>Note that the default value is <literal>1</literal>.</para>
401 <para revision="214407">The man.rl.4; driver has been
402 improved on interrupt handling. It now has better TX
403 performance under high RX load.</para>
405 <para revision="212468,213612,213628">The &man.sis.4; driver
406 now works on all supported platforms. Some stability and
407 performance issues have also been fixed.</para>
409 <para revision="213637">The &man.sis.4; driver now supports
410 WoL (Wake on LAN) on NS DP8315 controller.</para>
412 <para revision="213626">A tunable
413 <varname>dev.sis.<replaceable>N</replaceable>.manual_pad</varname>
414 for the &man.sis.4; driver has been added. This controls
415 whether padding with 0x00 for short frames by software,
416 not the controller. The reason why this tunable has been
417 added is that NS DP83815/DP83816 pads them with 0xff
418 though RFC 1042 specifies it should be 0x00. The tunable
419 is disabled by default, which means padding with 0xff is
420 used because padding with 0x00 by software needs extra CPU
421 cycles. Setting a non-zero value enables the software
424 <para revision="211357">The &man.ste.4; driver now supports a
425 device hint to change a way of register access. Although
426 it uses memory-mapped register access by default, some old
427 IC Plus Corp (formerly Sundace) controllers are found
428 unstable. The following device hint makes the driver use
429 I/O mapping for register access:</para>
431 <programlisting>hint.ste.<replaceable>N</replaceable>.prefer_iomap="1"</programlisting>
433 <para revision="211359">The &man.sk.4; driver now disable TX
434 checksum offloading by default. This is because some
435 revision of Yukon controller generates corrupted frames.
436 The checksum offloading can be enabled manually by using
437 <option>txcsum</option> option in the &man.ifconfig.8;
440 <para revision="213120">The &man.xl.4; driver now supports
441 WoL (Wake on LAN). Note that not all controllers support
442 this functionality and some need an additional remote
447 <sect3 id="net-proto">
448 <title>Network Protocols</title>
450 <para revision="209783">The &man.altq.4; support is now provided
451 as a kernel module <filename>alq.ko</filename>.</para>
453 <para revision="212738">A bug in the &man.ipfw.4; packet
454 filter subsystem has been fixed. The syctl variable
455 <varname>net.inet.ip.fw.one_pass</varname> did not work for
456 <literal>netgraph</literal> action.</para>
458 <para revision="212742">A <literal>ngtee</literal> action in
459 the &man.ipfw.4; packet filter subsystem has been changed.
460 It no longer accepts a packet.</para>
462 <para revision="214108">A possible panic in the &man.ipfw.4;
463 pseudo interface for logging has been fixed.</para>
465 <para revision="209691">IPsec flow distribution has been
466 improved for more parallel processing.</para>
468 <para revision="209277">A bug in &os; IPv4 stack that a proxy
469 ARP entry cannot be added over &man.netgraph.4; interfaces
470 has been fixed.</para>
472 <para revision="211435">A bug in &os; IPv6 stack which prevents
473 an <option>-I</option> in the &man.ping6.8; utility from
475 <varname>net.inet6.ip6.use_defaultzone=1</varname> has been
478 <para revision="214111">The &man.lagg.4; interface now
479 supports a sysctl variable
480 <varname>net.link.lagg.failover_rx_all</varname>. This
481 controls whether to accept input packets on any link in a
482 failover lagg.</para>
484 <para revision="209843">A new &man.netgraph.4; node
485 &man.ng.patch.4; has been added. This performs data
486 modification of packets passing through. Modifications are
487 restricted to a subset of C language operations on unsigned
488 integers of 8, 16, 32 or 64-bit size.</para>
490 <para revision="212320">The &man.ng.ether.4; &man.netgraph.4;
491 node now supports interface transfer between multiple virtual
492 network stacks by &man.ifconfig.8; <command>vnet</command>
493 command. A &man.ng.ether.4; node associated with an network
494 interface is now destroyed and recreated when the network
495 interface is moved to another vnet.</para>
497 <para revision="212905">An ICMP unreachable problem in the
498 &man.pf.4; packet filter subsystem when TSO support is
499 enabled has been fixed.</para>
501 <para revision="211538">A TCP bandwidth delay product window
502 limiting algorithm by a &man.sysctl.8; variable
503 <varname>net.inet.tcp.inflight.enable</varname> is now
504 disabled by default. It has been found that this algorithm
505 is inefficient on a fast network with smaller RTT than 10ms.
506 It had been enabled by default since 5.2-RELEASE, and then
507 had been disabled only if the RTT was lesser than 10ms since
508 7.0-RELEASE. Pluggable TCP congestion control algorithm
509 modules are planned to be added for the future
512 <para revision="211602">A bug in &os; TCP Path MTU discovery
513 which can lead to a wrong calculation for a smaller MTU than
514 256 octets has been fixed. Note that this bug does not
515 affect when MTU is equal to or larger than 256
518 <para revision="211870">The TCP initial window increase in RFC
519 3390 which can be controlled by a &man.sysctl.8; variable
520 <varname>net.inet.tcp.rfc3390</varname> now reduces the
521 congestion window to the restart window if a TCP connection
522 has been idle for one retransmit timeout or more. For more
523 details, see RFC 5681 Section 4.1.</para>
525 <para revision="212319">&os; virtual network stack (vnet) now
526 supports IPv4 multicast routing.</para>
530 <title>Disks and Storage</title>
532 <para revision="211458">The &man.ahci.4; driver now disables NCQ
533 and PMP support on VIA VT8251 because they are unreliable
536 <para revision="211718">The &man.ahci.4; driver now uses 15
537 seconds for device reset timeout instead of 10 seconds
538 because some devices needs 10-12 seconds to spin up.</para>
540 <para revision="210836">The &man.arcmsr.4; driver
541 has been updated to version 1.20.00.17.</para>
543 <para revision="210164">The &man.ata.4; driver
544 now supports limiting initial ATA mode for devices via
546 <varname>hint.<replaceable>devname</replaceable>.<replaceable>unit</replaceable>.dev<replaceable>N</replaceable
548 <varname>hint.<replaceable>devname</replaceable>.<replaceable>unit</replaceable>.mode</varname>.
549 The valid values are the same as ones supported in the
550 &man.atacontrol.8; and &man.camcontrol.8;.</para>
552 <para revision="210204">The &man.ata.4; driver
553 now enables cable status check on both of controller and
555 <varname>hw.ata.ata_dma_check_80pin</varname> is
558 <para revision="213291">An issue of device detection of
559 Serverworks K2 SATA controllers in the &man.ata.4; has been fixed.</para>
561 <para revision="214667">A bug in the &man.ata.4; driver which
562 prevents some Silicon Image chipsets from working on big
563 endian systems has been fixed.</para>
565 <para revision="214330">The &man.gconcat.8; GEOM class now
566 supports kernel crash dump. The dumping is performed to the
567 component where a dump partition begins.</para>
569 <para revision="214405">A bug in the &man.geli.8; GEOM class
570 on little endian platforms has been fixed. The metadata
571 version has been updated to <literal>4</literal> due to
574 <para revision="214405">The &man.geli.8; GEOM class now
575 supports a &man.sysctl.8; variable
576 <varname>kern.geom.eli.overwrites</varname>. This specifies
577 the number of times on-disk keys should be overwritten when
578 destroying them. The default value is
579 <literal>5</literal>.</para>
581 <para revision="214405">The &man.geli.8; GEOM class has been
582 improved for preventing the same encryption key from being
583 used in 2^20 blocks (sectors).</para>
585 <para revision="214405">The &man.geli.8; GEOM class now uses
586 XTS-AES mode by default.</para>
588 <para revision="214405">A &man.sysctl.8; variable
589 <varname>kern.geom.eli.debug</varname> now allows a value
590 <literal>-1</literal>. This means turn off any log messages
591 of the &man.geli.8; GEOM class.</para>
593 <para revision="210376">The &man.mpt.4; driver now supports
594 larger I/O sizes which the device and &man.CAM.4; subsystem
595 can support. This was limited to 64KB, and the number of
596 scatter/gather segments was limited to 33 on platforms with
599 <para revision="209404">The &man.twa.4;
600 driver has been updated. The version number is
605 <title>File Systems</title>
607 <para revision="214050">The &man.linprocfs.5; Linux process
608 file system now supports
609 <filename>proc/$$/environment</filename>.</para>
611 <para revision="212716">The &os; NFS client now supports a
612 kernel environment variable
613 <varname>boot.nfsroot.nfshandlelen</varname>. This lets the
614 diskless root file system on boot to use NFS version 3 and
615 the spedified file handle length. If this variable is not
616 set, NFS version 2 is used.</para>
618 <para revision="212668">The ZFS on-disk format has been updated
619 to version 15.</para>
621 <para revision="212671">The ZFS metaslab code has been updated.
622 This provides a noticeable improvement on write speed,
623 especially on pools with less than 30% of free space. The
624 related OpenSolaris Bug IDs are 6826241, 6869229, 6918420,
627 <para revision="214013">The ZFS now supports offlining of log
628 devices. The related OpenSolaris Bug IDs are 6599442,
629 6726045, and 6803605.</para>
631 <para revision="212672">Performance improvements for the ZFS
632 have been imported from OpenSolaris. They include cachin of
633 ACL permission checks, faster handling of &man.stat.2;,
634 mitigation of mutex lock contention. The related
635 OpenSolaris Bug IDs are 6802734, 6844861, 6848431, 6775100,
636 6827779, 6857433, 6860318, 6865875, 6867395, 6868276, and
639 <para revision="210541">The default value of
640 <varname>vfs.zfs.vdev.max_pending</varname> has been
641 decreased from 35 to 10 (OpenSolaris Bug ID is 6891731) to
642 improve latency.</para>
644 <para>Various bugs in the ZFS subsystem have been fixed. The
645 related OpenSolaris Bug IDs are: 6328632, 6396518, 6501037,
646 6504953, 6542860, 6551866, 6572357, 6572376, 6582163,
647 6586537, 6595194, 6596237, 6604992, 6621164, 6623978,
648 6633095, 6635482, 6664765, 6674216, 6696858, 6696858,
649 6702206, 6710376, 6713916, 6717022, 6722540, 6722991,
650 6737463, 6739487, 6739553, 6740164, 6745863, 6747596,
651 6747698, 6748436, 6755435, 6757430, 6758107, 6759986,
652 6759999, 6761100, 6761406, 6764124, 6765294, 6767129,
653 6769612, 6770866, 6774713, 6774886, 6775697, 6776104,
654 6776548, 6780491, 6784104, 6784108, 6788152, 6788152,
655 6788830, 6789318, 6790064, 6790345, 6790687, 6791064,
656 6791066, 6791071, 6791101, 6792134, 6792139, 6792884,
657 6793430, 6794136, 6794570, 6794570, 6794830, 6797109,
658 6797118, 6798384, 6798878, 6798878, 6799895, 6800184,
659 6800942, 6801507, 6801810, 6803343, 6803822, 6804954,
660 6807339, 6807765, 6809340, 6809683, 6809683, 6809691,
661 6810367, 6815592, 6815893, 6816124, 6818183, 6821169,
662 6821170, 6822816, 6824006, 6824062, 6824968, 6826466,
663 6826468, 6826469, 6826470, 6826471, 6826472, 6827260,
664 6830237, 6833162, 6833711, 6833999, 6834217, 6836714,
665 6836714, 6836768, 6838062, 6838344, 6841321, 6843014,
666 6843069, 6843235, 6844069, 6844069, 6844900, 6847229,
667 6848242, 6856634, 6857012, 6857012, 6857012, 6861983,
668 6862984, 6863610, 6870564, 6870564, 6880764, 6882227,
669 6892298, 6898245, 6906110, 6906946, 6939941, 6950219,
670 6951024, and 6953403.</para>
674 <sect2 id="userland">
675 <title>Userland Changes</title>
677 <para revision="209267">The &man.arp.8; utility has been improved.
678 It now runs faster even when a single interface has a number
681 <para revision="214729">A bug in the &man.b64decode.1; which
682 prevernts an <option>-r</option> option from handling arbitary
683 breaks in a base64 encoded string has been fixed.</para>
685 <para revision="211723">The &man.calendar.1; utility now supports
686 repeating events which span multiple years, lunar events, and
689 <para revision="210915">The &man.dhclient.8; utility now reports a
690 reason for exiting and the 10-second period in which the
691 &man.dhclient.8; ignores routing messages has been changed to
692 start just after <filename>dhclient-script</filename> starts
693 instead of just after it finished. This change fixes a
694 symptom that &man.dhclient.8; silently exits under a certain
697 <para revision="209362">The &man.du.1; utility now supports a
698 <option>-t <replaceable>threshold</replaceable></option>
699 option to display entries that exceeds the value of
700 <replaceable>threshold</replaceable>. If the value is
701 negative, it displays entries with a value less than the
702 absolute value of <replaceable>threshold</replaceable>.</para>
704 <para revision="210567">The &man.gcore.1; utility now supports an
705 <option>-f</option> flag which forces a full dump of all the
706 segments except for the malformed ones.</para>
708 <para revision="214405">The &man.geli.8; utility now supports
709 <command>resize</command> subcommand to resize encrypted file
710 systems prior to growing it</para>
712 <para revision="214405">The &man.geli.8; utility now supports
713 <command>suspend</command> and <command>resume</command>
714 subcommands. The <command>suspend</command> subcommand makes
715 &man.geli.8; devices wait for all in-flight I/O requests,
716 suspend new I/O requests, remove all &man.geli.8; sensitive
717 data from the kernel memory (like encryption keys) and will
718 wait for either <command>geli resume</command> or
719 <command>geli detach</command> commmand. For more
720 information, see &man.geli.8; manual page.</para>
722 <para revision="214405">The &man.geli.8; utility now checks the
723 metadata provider size strictly. If the check fails, the
724 provider is not attached. A new option <option>-f</option>
725 can override this behavior.</para>
727 <para revision="214405">The &man.geli.8; utility now supports
728 <option>-J <replaceable>newpassfile</replaceable></option> and
729 <option>-j <replaceable>passfile</replaceable></option>
730 options for loading passphrease from a file.</para>
732 <para revision="211938">The <function>gethost*()</function>,
733 <function>getnet*()</function>, and
734 <function>getproto*()</function> functions now set the errno
735 to <literal>ERANGE</literal> and the NSS backend terminates
736 with <literal>NS_RETURN</literal> when the result buffer size
739 <para revision="209497">The &man.gpart.8; utility now supports
740 <command>resize</command> command to resize partitions for all
741 schemes but EBR.</para>
743 <para revision="213661">The &man.gpart.8; utility now handles
744 given geom/provider names with and without
745 <filename>/dev/</filename> prefix.</para>
747 <para revision="213684">The &man.gpart.8; utility now supports
748 an <option>-F</option> option for <command>force</command>
749 subcommand. This option force destroying of the partition
750 table even if it is not empty.</para>
752 <para revision="213994">The &man.gpart.8; utility now supports
753 <literal>GPT_ENT_ATTR_BOOTME</literal>,
754 <literal>GPT_ENT_ATTR_BOOTONCE</literal>, and
755 <literal>GPT_ENT_ATTR_BOOTFAILED</literal> attributes in GPT.
756 The attribute keywords in the command line are
757 <literal>bootme</literal>, <literal>bootonce</literal>, and
758 <literal>bootfailed</literal> respectively.</para>
760 <para revision="213049">The &man.hastd.8; utility now supports
761 <literal>SIGHUP</literal> for reloading the configuration
762 file. When <literal>SIGTERM</literal> or
763 <literal>SIGINT</literal> is received, the worker processes
766 <para revision="212144">The &man.ifconfig.8; utility now check an
767 invalid CIDR subnet notation more strictly. It wrongly
768 accepted <literal>10.0.0.1/10.0.0.1</literal> as
769 <literal>10.0.0.1/10</literal>.</para>
771 <para revision="209284">Incorrect behaviors in stuttering
772 sequences and reverse ranges in the &man.jot.1; utility have
775 <para revision="213667">The <filename>libarchive</filename> and
776 &man.tar.1; utility now support LZMA (Lempel-Ziv-Markov
777 chain-Algorithm) compression format.</para>
779 <para revision="214442">A bug in the &man.lpr.1; utility which
780 prevents it from working with some files on a ZFS file system
781 has been fixed.</para>
783 <para revision="213978">The <option>-p</option> option in the
784 &man.mount.8; utility now displays <literal>rw</literal> mount
785 option correctly as in the &man.fstab.5; format.</para>
787 <para revision="213889">The &man.ncal.1; utility has been
788 updated. The option <option>-b</option> has been replaced
789 with <option>-C</option> and <option>-B
790 <replaceable>number</replaceable></option>. Options
791 <option>-3</option> to show previous, this and next month, and
792 <option>-A <replaceable>number</replaceable></option> to show
793 months after this month have been added. The option
794 <option>-m <replaceable>N</replaceable>
795 <replaceable>YYYY</replaceable></option> now prints only the
796 month, not the whole year.</para>
798 <para revision="211699">The &man.newsyslog.8; utility now supports
799 an <option>-S <replaceable>pidfile</replaceable></option>
800 option to override the default &man.syslogd.8; PID
803 <para revision="213980">The &man.ntpd.8; utility is now compiled
804 with shared memory reference clock driver. For exmaple, GPS
805 devices can be used as source of precise time via <filename
806 role="ports">astro/gpsd</filename> in the Ports
809 <para revision="212848">An off-by-one error in the &man.pax.1;
810 utility when ustar file name is too long has been
813 <para revision="209912">The &man.pkill.1; utility now supports
814 an <option>-l</option> option which the &man.kill.1; utility
817 <para revision="211098">The &man.pmcstat.8; utility now supports a
818 file and a network socket as a top source. A new option
819 <option>-O <replaceable>filename</replaceable></option>
820 specifies to send log output to
821 <replaceable>filename</replaceable>, and another new option
822 <option>-R <replaceable>filename</replaceable></option>
823 specifies to receive events from
824 <replaceable>filename</replaceable>. For a socket, the
825 <replaceable>filename</replaceable> is in a form of
826 <replaceable>ipaddr:port</replaceable>. This allows top
827 monitoring over TCP on a system with no local symbols, for
830 <para revision="210089">The &man.pom.6; utility now
831 supports a <option>-p</option> flag to print only the
834 <para revision="212472">The &man.powerd.8; utility now supports
835 an <option>-m <replaceable>freq</replaceable></option> and
836 <option>-M <replaceable>freq</replaceable></option> to control
837 the minimum and maximum frequency, respectively.</para>
839 <para revision="213825">The &man.ruptime.1; utility now displays
840 hostnames longer than 12 characters.</para>
842 <para revision="210616">A bug in the &man.sh.1; program has been
843 fixed. A <literal>SIGINT</literal> signal is now passed
844 through from a child process if the shell is interactive and
845 the job control is enabled. For example, aborting
846 &man.sleep.1; command by Ctrl-C no longer display
847 <literal>ok</literal> in the following command line:</para>
849 <screen>&prompt.user; sleep 5; echo ok</screen>
851 <para revision="210732">The &man.sh.1; program now supports a
852 <command>bg</command> command consisting solely of
853 redirections. For example:</para>
855 <screen>&prompt.user; < /dev/null &</screen>
857 <para revision="211536">The &man.sleep.1; utility now supports
858 <literal>SIGINFO</literal> signal and reports the specified
859 sleep time and the remaining time.</para>
861 <para revision="213036,213038">The &man.tftp.1; and &man.tftpd.8;
862 utilities have been improved for better interoperability and
863 they now supports RFC 1350, 2347, 2348, 2349, and 3617.</para>
865 <para revision="213899">A bug in <literal>[=]=]</literal>
866 equivalent class handling in the &man.tr.1; utility has been
869 <para revision="210566">The &man.uname.1; utility now supports an
870 <option>-o</option> flag as a synonym for the
871 <option>-s</option> flag for compatibility with other
874 <para revision="211060">Bugs in &man.vi.1; utility have been
875 fixed. They include handling of <literal>^@</literal> and
876 <literal>^C</literal> in insert mode when reading an ex
879 <para revision="214345">The &man.watchdogd.8; program now set
880 <literal>MADV_PROTECT</literal> memory flag onto themselves to
881 protect from being terminated by the &os; kernel when
882 available memory becomes short. This kind of process
883 termination happens in a swap-intensive workload.</para>
885 <para revision="209870">The <command>set sharenfs</command>
886 command in the &man.zfs.8; utility now supports
887 <option>sec</option> option.</para>
889 <sect3 id="periodic-scripts">
890 <title><filename>/etc/periodic</filename> Scripts</title>
892 <para>A periodic script for <command>zfs scrub</command> has
893 been added. For more details, see &man.periodic.conf.5;
897 <sect3 id="rc-scripts">
898 <title><filename>/etc/rc.d</filename> Scripts</title>
905 <title>Contributed Software</title>
909 <para>The <application>ACPI-CA</application> has been updated to
912 <para>The <application>awk</application> has been updated from
913 the 23 October 2007 release to the 26 November 2009 release.</para>
915 <para revision="214287">The &man.ee.1; program has been updated
916 to version 1.5.2.</para>
919 <para><application>ISC BIND</application> has been updated to
920 version 9.6.2-P2.</para>
922 <para><application>netcat</application> has been updated to
925 <para><application>OpenSSH</application> has been updated from
926 version 5.1p1 to version 5.4p1.</para>
928 <para><application>OpenSSL</application> has been updated to
929 version 0.9.8n.</para>
931 <para><application>sendmail</application> has been updated to
932 version 8.14.4.</para>
934 <para>The timezone database has been updated to the
935 <application>tzdata2010o</application> release.</para>
939 <title>Release Engineering and Integration</title>
941 <para revision="211007">The &man.sysinstall.8; utility now uses
942 the following numbers for default and minimum partition sizes:
943 1GB for <filename>/</filename>, 4GB for
944 <filename>/var</filename>, and 1GB for
945 <filename>/tmp</filename>.</para>
947 <para revision="211009">The &man.sysinstall.8; utility now
948 attempts to enable &man.getty.8; on a serial port when no VGA
949 card on the system.</para>
951 <para>The supported version of
952 the <application>GNOME</application> desktop environment
953 (<filename role="package">x11/gnome2</filename>) has been
954 updated to 2.32.1.</para>
956 <para>The supported version of
957 the <application>KDE</application> desktop environment
958 (<filename role="package">x11/kde4</filename>) has been
959 updated to 4.5.5.</para>
964 <title>Upgrading from previous releases of &os;</title>
966 <para arch="amd64,i386">Upgrades between RELEASE versions (and
967 snapshots of the various security branches) are supported using
968 the &man.freebsd-update.8; utility. The binary upgrade
969 procedure will update unmodified userland utilities, as well as
970 unmodified GENERIC kernel distributed as a part of an
971 official &os; release. The &man.freebsd-update.8; utility
972 requires that the host being upgraded has Internet
975 <para>An older form of binary upgrade is supported through the
976 <command>Upgrade</command> option from the main
977 &man.sysinstall.8; menu on CDROM distribution media. This type
978 of binary upgrade may be useful on non-&arch.i386;,
979 non-&arch.amd64; machines or on systems with no Internet
982 <para>Source-based upgrades (those based on recompiling the &os;
983 base system from source code) from previous versions are
984 supported, according to the instructions in
985 <filename>/usr/src/UPDATING</filename>.</para>
988 <para>Upgrading &os; should, of course, only be attempted after
989 backing up <emphasis>all</emphasis> data and configuration