diff --git a/release/doc/en_US.ISO8859-1/relnotes/article.sgml b/release/doc/en_US.ISO8859-1/relnotes/article.sgml index 1ae9bfc1bfaa..177c07a6c21a 100644 --- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml +++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml @@ -130,7 +130,20 @@ Boot Loader Changes - + A new option , + which allows setting the boot2 + serial console speed in the /boot.config + file or on the boot: prompt line, + has been added. + + A new loader tunable + comconsole_speed to change + the serial console speed has been added. + If the previous stage boot loader requested a serial console + then the default speed is determined from the current serial port + speed, and otherwise it is set to 9600 or the value of + the kernel option BOOT_COMCONSOLE_SPEED + at compile time. @@ -149,6 +162,9 @@ A bug which prevents the &man.ichsmb.4; kernel module from unloading has been fixed. + The loader tunable debug.mpsafevfs + is set to 1 by default. + The smbios(4) driver support for amd64 has been added. @@ -172,8 +188,10 @@ The &man.snd.via8233.4; driver is now MPSAFE. - The &man.snd.via82c686.4; driver is now MPSAFE. + The &man.snd.via8233.4; driver is now supported + on &os;/amd64. + The &man.snd.via82c686.4; driver is now MPSAFE. @@ -204,12 +222,53 @@ The &man.gre.4; driver, which is for GRE encapsulation found in RFC 1701 and RFC 1702 now supports IPv6 over GRE. + The path MTU discovery for multicast packets in the &os; + &man.ip6.4; stack has been disabled by default because + notifying path MTU by a lot of routers in multicast + can be a kind of distributed Denial-of-Service attack to a router. + This feature can be enabled by using a new sysctl variable + net.inet6.ip6.mcast_pmtu. + The &man.ipfw.4;, IP packet filter now supports IPv6. The &man.ip6fw.8; is deprecated and will be removed in the future releases. The &man.natm.4;, Native Mode ATM protocol layer is now MPSAFE. + A new sysctl variable net.inet.icmp.reply_from_interface + has been added. This allows the &man.icmp.4; + reply to non-local packets generated with + the IP address the packet came through in. + This is useful for routers to show in &man.traceroute.8; + the actual path a packet has taken instead of + the possibly different return path. + + A new sysctl variable net.inet.icmp.quotelen + has been added. This allows to change length of + the quotation of the original packet in an ICMP reply. + The minimum of 8 bytes is internally enforced. + The maximum quotation is the remaining space in the + reply mbuf. This option is added in response to the + issues raised in I-D + draft-gont-icmp-payload-00.txt. + + The &man.icmp.4; now always quotes the entire TCP header + when responding and allocate an mbuf cluster if needed. + This change fixes the TCP issues raised in I-D + draft-gont-icmp-payload-00.txt. + + A new socket option IP_MINTTL has been added. + This may be used to set the minimum acceptable + TTL a packet must have when received on a socket. + All packets with a lower TTL are silently dropped, + and this works on already connected/connecting and + listening sockets for RAW, UDP, and TCP. This option + is only really useful when set to 255 preventing packets + from outside the directly connected networks reaching + local listeners on sockets. Also, this option allows + userland implementation of The Generalized TTL + Security Mechanism (GTSM) found in RFC 3682. + The stealth forwarding now supports IPv6 as well as IPv4. This behavior can be controlled by using a new sysctl variable net.inet6.ip6.stealth. @@ -218,6 +277,11 @@ Disks and Storage + The &man.ata.4; driver now supports a workaround + for some controllers whose DMA does not work properly + in 48bit mode. For the suspicious controllers + the PIO mode will be used for access to over 137GB areas. + A new GEOM class GEOM_ZERO has been added. It creates very huge provider (41PB) /dev/gzero and mainly for performance testing. @@ -277,6 +341,10 @@ have been added. These are tools for constructing and applying binary patches. + The &man.cmp.1; utility now supports an + flag to compare the symbolic link itself rather than the + file that the link points to. + The &man.ifconfig.8; utility now supports a flag to allow printing potentially sensitive keying material to standard output. @@ -289,16 +357,38 @@ statistics, wrapped around the binary stream sysctl variables for the allocators. &merged; + A new function &man.memmem.3; has been implemented in + libc. This is the binary equivalent to + &man.strstr.3; and found in glibc. + The &man.moused.8; now supports an flag to enable horizontal virtual scrolling similar to a flag for vertical virtual scrolling. + The &man.netstat.1; utility now supports an + flag for interface stats mode, + which prints all interface statistics in human readable form. + + A new functions, &man.pidfile.3;, which allow reliable + pidfiles handling have been implemented in + libutil. + The &man.ping.8; utility now supports a sweeping ping in which &man.icmp.4; payload of packets being sent is increased with given step. This is useful for testing problematic channels, MTU issues or traffic policing functions in networks. + The &man.pkill.1; utility now supports a + option which allows to + restrict matches to a process whose PID is stored in the + pidfile file. When another new option + is also specified, the pidfile file must be locked with the + &man.flock.2; syscall or created with &man.pidfile.3;. + + The &man.powerd.8; program now supports a + option which allows to specify pidfile. + The shared library version number of all libraries have been updated due to some possible ABI changes. The libraries include: snmp_*, libdialog, libg2c, libobjc, @@ -326,6 +416,15 @@ The geli and geli2 scripts has been added for &man.geli.8; device configuration on boot. + + The removable_interfaces variable + has been removed. + + A new variable ifconfig_ifn + has been added. This allows + /etc/rc.d/netif + to be used to start and stop an interface + on a purely manual basis. @@ -359,7 +458,69 @@ Release Engineering and Integration - + The default partition sizing algorithm of the + &man.sysinstall.8; utility has been changed. + + + + On systems where the disk capacity is larger than (3 * RAMsize + 10GB), + the default sizes will now be as follows: + + + + + + + + Partition + Size + + + + + swapRAMsize * 2 + /512 MB + /tmp512 MB + /var1024 MB + RAMsize + /usrthe rest (8GB or more) + + + + + + + On systems where the disk capacity is larger than + (RAMsize / 8 + 2 GB), the default sizes will be + in the following ranges, with space allocated + proportionally: + + + + + + + + Partition + Size + + + + + swapfrom RAMsize / 8 to RAMsize * 2 + /from 256MB to 512MB + /tmpfrom 128MB to 512MB + /varfrom 128MB to 1024MB + /usrfrom 1536MB to 8192MB + + + + + + + On systems with even less disk space, the existing behavior is not + changed. + + diff --git a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml index 1ae9bfc1bfaa..177c07a6c21a 100644 --- a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml +++ b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml @@ -130,7 +130,20 @@ Boot Loader Changes - + A new option , + which allows setting the boot2 + serial console speed in the /boot.config + file or on the boot: prompt line, + has been added. + + A new loader tunable + comconsole_speed to change + the serial console speed has been added. + If the previous stage boot loader requested a serial console + then the default speed is determined from the current serial port + speed, and otherwise it is set to 9600 or the value of + the kernel option BOOT_COMCONSOLE_SPEED + at compile time. @@ -149,6 +162,9 @@ A bug which prevents the &man.ichsmb.4; kernel module from unloading has been fixed. + The loader tunable debug.mpsafevfs + is set to 1 by default. + The smbios(4) driver support for amd64 has been added. @@ -172,8 +188,10 @@ The &man.snd.via8233.4; driver is now MPSAFE. - The &man.snd.via82c686.4; driver is now MPSAFE. + The &man.snd.via8233.4; driver is now supported + on &os;/amd64. + The &man.snd.via82c686.4; driver is now MPSAFE. @@ -204,12 +222,53 @@ The &man.gre.4; driver, which is for GRE encapsulation found in RFC 1701 and RFC 1702 now supports IPv6 over GRE. + The path MTU discovery for multicast packets in the &os; + &man.ip6.4; stack has been disabled by default because + notifying path MTU by a lot of routers in multicast + can be a kind of distributed Denial-of-Service attack to a router. + This feature can be enabled by using a new sysctl variable + net.inet6.ip6.mcast_pmtu. + The &man.ipfw.4;, IP packet filter now supports IPv6. The &man.ip6fw.8; is deprecated and will be removed in the future releases. The &man.natm.4;, Native Mode ATM protocol layer is now MPSAFE. + A new sysctl variable net.inet.icmp.reply_from_interface + has been added. This allows the &man.icmp.4; + reply to non-local packets generated with + the IP address the packet came through in. + This is useful for routers to show in &man.traceroute.8; + the actual path a packet has taken instead of + the possibly different return path. + + A new sysctl variable net.inet.icmp.quotelen + has been added. This allows to change length of + the quotation of the original packet in an ICMP reply. + The minimum of 8 bytes is internally enforced. + The maximum quotation is the remaining space in the + reply mbuf. This option is added in response to the + issues raised in I-D + draft-gont-icmp-payload-00.txt. + + The &man.icmp.4; now always quotes the entire TCP header + when responding and allocate an mbuf cluster if needed. + This change fixes the TCP issues raised in I-D + draft-gont-icmp-payload-00.txt. + + A new socket option IP_MINTTL has been added. + This may be used to set the minimum acceptable + TTL a packet must have when received on a socket. + All packets with a lower TTL are silently dropped, + and this works on already connected/connecting and + listening sockets for RAW, UDP, and TCP. This option + is only really useful when set to 255 preventing packets + from outside the directly connected networks reaching + local listeners on sockets. Also, this option allows + userland implementation of The Generalized TTL + Security Mechanism (GTSM) found in RFC 3682. + The stealth forwarding now supports IPv6 as well as IPv4. This behavior can be controlled by using a new sysctl variable net.inet6.ip6.stealth. @@ -218,6 +277,11 @@ Disks and Storage + The &man.ata.4; driver now supports a workaround + for some controllers whose DMA does not work properly + in 48bit mode. For the suspicious controllers + the PIO mode will be used for access to over 137GB areas. + A new GEOM class GEOM_ZERO has been added. It creates very huge provider (41PB) /dev/gzero and mainly for performance testing. @@ -277,6 +341,10 @@ have been added. These are tools for constructing and applying binary patches. + The &man.cmp.1; utility now supports an + flag to compare the symbolic link itself rather than the + file that the link points to. + The &man.ifconfig.8; utility now supports a flag to allow printing potentially sensitive keying material to standard output. @@ -289,16 +357,38 @@ statistics, wrapped around the binary stream sysctl variables for the allocators. &merged; + A new function &man.memmem.3; has been implemented in + libc. This is the binary equivalent to + &man.strstr.3; and found in glibc. + The &man.moused.8; now supports an flag to enable horizontal virtual scrolling similar to a flag for vertical virtual scrolling. + The &man.netstat.1; utility now supports an + flag for interface stats mode, + which prints all interface statistics in human readable form. + + A new functions, &man.pidfile.3;, which allow reliable + pidfiles handling have been implemented in + libutil. + The &man.ping.8; utility now supports a sweeping ping in which &man.icmp.4; payload of packets being sent is increased with given step. This is useful for testing problematic channels, MTU issues or traffic policing functions in networks. + The &man.pkill.1; utility now supports a + option which allows to + restrict matches to a process whose PID is stored in the + pidfile file. When another new option + is also specified, the pidfile file must be locked with the + &man.flock.2; syscall or created with &man.pidfile.3;. + + The &man.powerd.8; program now supports a + option which allows to specify pidfile. + The shared library version number of all libraries have been updated due to some possible ABI changes. The libraries include: snmp_*, libdialog, libg2c, libobjc, @@ -326,6 +416,15 @@ The geli and geli2 scripts has been added for &man.geli.8; device configuration on boot. + + The removable_interfaces variable + has been removed. + + A new variable ifconfig_ifn + has been added. This allows + /etc/rc.d/netif + to be used to start and stop an interface + on a purely manual basis. @@ -359,7 +458,69 @@ Release Engineering and Integration - + The default partition sizing algorithm of the + &man.sysinstall.8; utility has been changed. + + + + On systems where the disk capacity is larger than (3 * RAMsize + 10GB), + the default sizes will now be as follows: + + + + + + + + Partition + Size + + + + + swapRAMsize * 2 + /512 MB + /tmp512 MB + /var1024 MB + RAMsize + /usrthe rest (8GB or more) + + + + + + + On systems where the disk capacity is larger than + (RAMsize / 8 + 2 GB), the default sizes will be + in the following ranges, with space allocated + proportionally: + + + + + + + + Partition + Size + + + + + swapfrom RAMsize / 8 to RAMsize * 2 + /from 256MB to 512MB + /tmpfrom 128MB to 512MB + /varfrom 128MB to 1024MB + /usrfrom 1536MB to 8192MB + + + + + + + On systems with even less disk space, the existing behavior is not + changed. + +