/
new.sgml
336 lines (255 loc) · 11.9 KB
/
new.sgml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
<articleinfo>
<title>&os;/&arch; &release.current; Release Notes</title>
<pubdate>$FreeBSD$</pubdate>
<corpauthor>The FreeBSD Project</corpauthor>
<copyright>
<year>2000</year>
<year>2001</year>
<year>2002</year>
<year>2003</year>
<year>2004</year>
<year>2005</year>
<holder role="mailto:doc@FreeBSD.org">The FreeBSD Documentation Project</holder>
</copyright>
<abstract>
<para>The release notes for &os; &release.current; contain a
summary of the changes made to the &os; base system since
&release.prev;. Both changes for kernel and userland are
listed, as well as applicable security advisories for the base
system that were issued since the last release. Some brief
remarks on upgrading are also presented.</para>
</abstract>
</articleinfo>
<sect1 id="intro">
<title>Introduction</title>
<para>This document contains the release notes for &os;
&release.current; on the &arch.print; hardware platform. It
describes new features of &os; that have been added (or changed)
since &release.prev;. It also provides some notes on upgrading
from previous versions of &os;.</para>
<![ %release.type.snapshot [
<para>The &release.type; distribution to which these release notes
apply represents a point along the &release.branch; development
branch between &release.prev; and the future &release.next;. Some
pre-built, binary &release.type; distributions along this branch
can be found at <ulink url="&release.url;"></ulink>.</para>
]]>
<![ %release.type.release [
<para>This distribution of &os; &release.current; is a
&release.type; distribution. It can be found at <ulink
url="&release.url;"></ulink> or any of its mirrors. More
information on obtaining this (or other) &release.type;
distributions of &os; can be found in the <ulink
url="http://www.FreeBSD.org/doc/en_US.ISO8859-1/books/handbook/mirrors.html"><quote>Obtaining
FreeBSD</quote></ulink> appendix in the <ulink
url="http://www.FreeBSD.org/doc/en_US.ISO8859-1/books/handbook/">FreeBSD
Handbook</ulink>.</para>
]]>
</sect1>
<!--
The "What's New" section of the release notes.
Guidelines for new entries:
1. If there is some obvious "keyword" associated with an
entry (such as a manpage entry or an application name), try to
put it at the start of the sentence.
2. Within each subsection (i.e. kernel, security, userland),
list items in alphabetical order by these keywords.
Some entries will have no obvious keywords to help with
ordering. In sections containing these entries, put those
containing (e.g.) manpage references first, then some
suitable SGML comment line as a demarc, then the remaining
entries.
-->
<sect1 id="new">
<title>What's New</title>
<para>This section describes the most user-visible new or changed
features in &os; since &release.prev;. Typical release note items
document new drivers or hardware support, new commands or options,
major bugfixes, or contributed software upgrades. Security
advisories for the base system that were issued after
&release.prev; are also listed.</para>
<sect2 id="security">
<title>Security Advisories</title>
<para>A programming error in the FreeBSD Linux binary
compatibility which allows a local attacker to read
or write portions of the kernel memory has been fixed.
For more details, see security advisory
<ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:13.linux.asc">FreeBSD-SA-04:13.linux</ulink>.</para>
<para>Various remotely-exploitable vulnerabilities of
<application>CVS</application>'s server mode including double-free,
integer overflow, and buffer overflow which can result
in information disclosure, denial-of-service, and/or possibly
arbitrary code execution, have been fixed via an upgrade
to <application>CVS</application> 1.11.17.
For more details, see security advisory
<ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:14.cvs.asc">FreeBSD-SA-04:14</ulink>.</para>
<para>A bug in the &man.fetch.1; utility which allows
a malicious HTTP server to cause arbitrary portions of the client's
memory to be overwritten, has been fixed.
For more information, see security advisory
<ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:16.fetch.asc">FreeBSD-SA-04:16</ulink>.</para>
<para>A bug in &man.procfs.5; and &man.linprocfs.5;
which could cause a malicious local user could perform a local
denial of service attack by causing a system panic, or the user
could read parts of kernel memory, has been fixed.
For more information, see security advisory
<ulink url="ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:17.procfs.asc">FreeBSD-SA-04:17</ulink>.</para>
</sect2>
<sect2 id="kernel">
<title>Kernel Changes</title>
<para arch="i386">The &man.cp.4; driver has been added for Cronyx Tau-PCI
synchronous serial adapters.
</para>
<para arch="alpha">The &man.em.4; driver has been added to the kernel
on the installation media.
</para>
<para>A bug in &man.mmap.2; that pages marked as <literal>PROT_NONE</literal>
may become readable under certain circumstances, has been fixed.</para>
<!-- Above this line, kernel changes ordered by manpage/variable name -->
<sect3 id="proc">
<title>Platform-Specific Hardware Support</title>
<para arch="alpha">Support for the floppy interface is broken on
DS10-class systems. The kernel probes the hardware correctly but
the floppy does not work properly. Booting and installing from
floppies is not affected.
</para>
</sect3>
<sect3 id="boot">
<title>Boot Loader Changes</title>
<para></para>
<!-- Above this line, order boot loader changes by manpage/variable name-->
</sect3>
<sect3 id="net-if">
<title>Network Interface Support</title>
<para>The &man.ng.hub.4; Netgraph node type, which supports
a simple packet distribution that acts like an Ethernet hub
has been added.</para>
<para>The &man.vr.4; driver now supports &man.polling.4;.</para>
<para>The per-interface &man.polling.4; support has been
implemented. All of the network drivers that support &man.polling.4;
(&man.dc.4;, &man.fxp.4;, &man.em.4;, &man.nge.4;, &man.re.4;,
&man.rl.4;, &man.sis.4;, &man.ste.4;, and &man.vr.4;)
now also support this capability and it can be controlled
via &man.ifconfig.8;.</para>
<!-- Above this line, order network driver changes by manpage/variable name-->
</sect3>
<sect3 id="net-proto">
<title>Network Protocols</title>
<para>The random ephemeral port allocation, which come from OpenBSD
has been implemented. This is enabled by default and can be disabled
using the <varname>net.inet.ip.portrange.randomized</varname>
sysctl.</para>
<para>&man.ipfw.4; now supports lookup tables. This feature is
useful for handling large sparse address sets.</para>
</sect3>
<sect3 id="disks">
<title>Disks and Storage</title>
<para></para>
</sect3>
<sect3 id="fs">
<title>File Systems</title>
<para></para>
</sect3>
<sect3 id="pccard">
<title>PCCARD Support</title>
<para></para>
</sect3>
<sect3 id="mm">
<title>Multimedia Support</title>
<para></para>
</sect3>
</sect2>
<sect2 id="userland">
<title>Userland Changes</title>
<para>The &man.cron.8 daemon now accepts two new options,
<option>-j</option> and <option>-J</option>, to enable
time jitter for jobs to run as unpriviliged users and the
superuser, respectively. Time jitter means that &man.cron.8
will sleep for a small random period of time in the specified
range before executing a job. This feature is intended to
smooth load peaks appearing when a lot of jobs are scheduled
for a particular moment.</para>
<para>The LQM, Link Quality Monitoring support in &man.ppp.8;
has been reimplemented. The LQM, which is described
in RFC 1989, allows PPP to keep track of the quality
of a running connection.</para>
<para>The userland &man.ppp.8; implementation now supports a <quote>set rad_alive
<replaceable>N</replaceable></quote> command
to enable periodic RADIUS accounting information
being sent to the RADIUS server.</para>
<para>A bug in &man.rarpd.8; that prevents it from working properly
when a interface has more than one IP address has been fixed.</para>
<!-- Above this line, order userland changes by manpage/variable name-->
</sect2>
<sect2 id="contrib">
<title>Contributed Software</title>
<para><application>sendmail</application> has been updated from
version 8.12.11 to version 8.13.1.</para>
</sect2>
<sect2 id="ports">
<title>Ports/Packages Collection Infrastructure</title>
<para></para>
</sect2>
<sect2 id="releng">
<title>Release Engineering and Integration</title>
<para>The supported release of <application>GNOME</application>
has been updated from 2.6 to 2.8.2.
The list of changes for each component can be found at
<a href="http://mail.gnome.org/archives/gnome-announce-list/2004-December/msg00026.html">
http://mail.gnome.org/archives/gnome-announce-list/2004-December/msg00026.html</a></para>
<para>The supported release of <application>KDE</application>
has been updated from 3.2.2 to 3.3.2.</para>
</sect2>
</sect1>
<sect1 id="upgrade">
<title>Upgrading from previous releases of &os;</title>
<para>If you're upgrading from a previous release of &os;, you
generally will have three options:
<itemizedlist>
<listitem>
<para>Using the binary upgrade option of &man.sysinstall.8;.
This option is perhaps the quickest, although it presumes
that your installation of &os; uses no special compilation
options.</para>
</listitem>
<listitem>
<para>Performing a complete reinstall of &os;. Technically,
this is not an upgrading method, and in any case is usually less
convenient than a binary upgrade, in that it requires you to
manually backup and restore the contents of
<filename>/etc</filename>. However, it may be useful in
cases where you want (or need) to change the partitioning of
your disks.
</listitem>
<listitem>
<para>From source code in <filename>/usr/src</filename>. This
route is more flexible, but requires more disk space, time,
and technical expertise. More information can be found
in the <ulink
url="http://www.FreeBSD.org/doc/en_US.ISO8859-1/books/handbook/makeworld.html"><quote>Using
<command>make world</command></quote></ulink> section of the <ulink
url="http://www.FreeBSD.org/doc/en_US.ISO8859-1/books/handbook/">FreeBSD
Handbook</ulink>. Upgrading from very old
versions of &os; may be problematic; in cases like this, it
is usually more effective to perform a binary upgrade or a
complete reinstall.</para>
</listitem>
</itemizedlist>
</para>
<para>Please read the <filename>INSTALL.TXT</filename> file for more
information, preferably <emphasis>before</emphasis> beginning an
upgrade. If you are upgrading from source, please be sure to read
<filename>/usr/src/UPDATING</filename> as well.</para>
<para>Finally, if you want to use one of various means to track the
-STABLE or -CURRENT branches of &os;, please be sure to consult
the <ulink
url="http://www.FreeBSD.org/doc/en_US.ISO8859-1/books/handbook/current-stable.html"><quote>-CURRENT
vs. -STABLE</quote></ulink> section of the <ulink
url="http://www.FreeBSD.org/doc/en_US.ISO8859-1/books/handbook/">FreeBSD
Handbook</ulink>.</para>
<important>
<para>Upgrading &os; should, of course, only be attempted after
backing up <emphasis>all</emphasis> data and configuration
files.</para>
</important>
</sect1>