Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 18 Dec 2012 06:55:14 +0000 (UTC)
From:      Hiroki Sato <hrs@FreeBSD.org>
To:        src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-stable@freebsd.org, svn-src-stable-9@freebsd.org
Subject:   svn commit: r244379 - in stable/9/release/doc: en_US.ISO8859-1/errata en_US.ISO8859-1/relnotes en_US.ISO8859-1/share/xml share/xml
Message-ID:  <201212180655.qBI6tEsD077348@svn.freebsd.org>

next in thread | raw e-mail | index | archive | help
Author: hrs
Date: Tue Dec 18 06:55:13 2012
New Revision: 244379
URL: http://svnweb.freebsd.org/changeset/base/244379

Log:
  - Trim old entries.
  - Update errata items.
  - Bump &release.*;

Modified:
  stable/9/release/doc/en_US.ISO8859-1/errata/article.xml
  stable/9/release/doc/en_US.ISO8859-1/relnotes/article.xml
  stable/9/release/doc/en_US.ISO8859-1/share/xml/release.dsl
  stable/9/release/doc/share/xml/release.dsl
  stable/9/release/doc/share/xml/release.ent

Modified: stable/9/release/doc/en_US.ISO8859-1/errata/article.xml
==============================================================================
--- stable/9/release/doc/en_US.ISO8859-1/errata/article.xml	Tue Dec 18 06:37:23 2012	(r244378)
+++ stable/9/release/doc/en_US.ISO8859-1/errata/article.xml	Tue Dec 18 06:55:13 2012	(r244379)
@@ -1,22 +1,3 @@
-<?xml version="1.0" encoding="iso-8859-1" standalone="no"?>
-<!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook XML V4.2-Based Extension//EN" [
-<!ENTITY % entities PUBLIC "-//FreeBSD//ENTITIES DocBook FreeBSD Entity Set//EN">
-%entities;
-
-<!ENTITY % release PUBLIC "-//FreeBSD//ENTITIES Release Specification//EN">
-%release;
-
-<![ %release.type.current [
-<!ENTITY release "&release.current;">
-]]>
-<![ %release.type.snapshot [
-<!ENTITY release "&release.prev;">
-]]>
-<![ %release.type.release [
-<!ENTITY release "&release.current;">
-]]>
-]>
-
 <!--
 	FreeBSD errata document.  Unlike some of the other RELNOTESng
 	files, this file should remain as a single SGML file, so that
@@ -28,10 +9,27 @@
 	not be the one that received the last change in the document.)
 
 -->
+<?xml version="1.0" encoding="iso-8859-1" standalone="no"?>
+<!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook XML V4.2-Based Extension//EN" [
+<!ENTITY % entities PUBLIC "-//FreeBSD//ENTITIES DocBook FreeBSD Entity Set//EN">
+%entities;
 
+<!ENTITY % release PUBLIC "-//FreeBSD//ENTITIES Release Specification//EN">
+%release;
+]>
 <article>
   <articleinfo>
-    <title>&os; &release; Errata </title>
+    <title>&os;
+<![ %release.type.current [
+    &release.current;
+]]>
+<![ %release.type.snapshot [
+    &release.prev;
+]]>
+<![ %release.type.release [
+    &release.current;
+]]>
+    Errata</title>
 
     <corpauthor>
     The &os; Project
@@ -132,11 +130,10 @@
 
     <informaltable frame="none" pgwide="1">
       <tgroup cols="3">
-      <colspec colwidth="1*"/>
-      <colspec colwidth="1*"/>
-      <colspec colwidth="3*"/>
-
-      <thead>
+	<colspec colwidth="1*" />
+	<colspec colwidth="1*" />
+	<colspec colwidth="3*" />
+	<thead>
 	  <row>
 	    <entry>Advisory</entry>
 	    <entry>Date</entry>
@@ -146,194 +143,68 @@
 
 	<tbody>
 	  <row>
-	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:01.mountd.asc"
-		>SA-11:01.mountd</ulink></entry>
-	    <entry>20&nbsp;April&nbsp;2011</entry>
-	    <entry><para>Network ACL mishandling in &man.mountd.8;</para></entry>
+	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:01.openssl.asc"
+		>SA-12:01.openssl</ulink></entry>
+	    <entry>3&nbsp;May&nbsp;2012</entry>
+	    <entry><para>OpenSSL multiple vulnerabilities</para></entry>
 	  </row>
 
 	  <row>
-	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:02.bind.asc"
-		>SA-11:02.bind</ulink></entry>
-	    <entry>28&nbsp;May&nbsp;2011</entry>
-	    <entry><para>BIND remote DoS with large RRSIG RRsets and negative
-		caching</para></entry>
+	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:02.crypt.asc"
+		>SA-12:02.crypt</ulink></entry>
+	    <entry>30&nbsp;May&nbsp;2012</entry>
+	    <entry><para>Incorrect <function>crypt()</function> hashing</para></entry>
 	  </row>
 
 	  <row>
-	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:04.compress.asc"
-		>SA-11:04.compress</ulink></entry>
-	    <entry>28&nbsp;September&nbsp;2011</entry>
-	    <entry><para>Errors handling corrupt compress file in
-		&man.compress.1; and &man.gzip.1;</para></entry>
+	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:03.bind.asc"
+		>SA-12:03.bind</ulink></entry>
+	    <entry>12&nbsp;June&nbsp;2012</entry>
+	    <entry><para>Incorrect handling of zero-length RDATA fields in &man.named.8;</para></entry>
 	  </row>
 
 	  <row>
-	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:05.unix.asc"
-		>SA-11:05.unix</ulink></entry>
-	    <entry>28&nbsp;September&nbsp;2011</entry>
-	    <entry><para>Buffer overflow in handling of UNIX socket
-		addresses</para></entry>
+	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:04.sysret.asc"
+		>SA-12:04.sysret</ulink></entry>
+	    <entry>12&nbsp;June&nbsp;2012</entry>
+	    <entry><para>Privilege escalation when returning from kernel</para></entry>
 	  </row>
 
 	  <row>
-	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:06.bind.asc"
-		>SA-11:06.bind</ulink></entry>
-	    <entry>23&nbsp;December&nbsp;2011</entry>
-	    <entry><para>Remote packet Denial of Service against &man.named.8;
-		servers</para></entry>
+	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:05.bind.asc"
+		>SA-12:05.bind</ulink></entry>
+	    <entry>6&nbsp;August&nbsp;2012</entry>
+	    <entry><para>&man.named.8; DNSSEC validation Denial of Service</para></entry>
 	  </row>
 
 	  <row>
-	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:07.chroot.asc"
-		>SA-11:07.chroot</ulink></entry>
-	    <entry>23&nbsp;December&nbsp;2011</entry>
-	    <entry><para>Code execution via chrooted ftpd</para></entry>
+	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:06.bind.asc"
+		>SA-12:06.bind</ulink></entry>
+	    <entry>22&nbsp;November&nbsp;2012</entry>
+	    <entry><para>Multiple Denial of Service vulnerabilities with &man.named.8;</para></entry>
 	  </row>
 
 	  <row>
-	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:08.telnetd.asc"
-		>SA-11:08.telnetd</ulink></entry>
-	    <entry>23&nbsp;December&nbsp;2011</entry>
-	    <entry><para>telnetd code execution vulnerability</para></entry>
+	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:07.hostapd.asc"
+		>SA-12:07.hostapd</ulink></entry>
+	    <entry>22&nbsp;November&nbsp;2012</entry>
+	    <entry><para>Insufficient message length validation for EAP-TLS messages</para></entry>
 	  </row>
 
 	  <row>
-	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:09.pam_ssh.asc"
-		>SA-11:09.pam_ssh</ulink></entry>
-	    <entry>23&nbsp;December&nbsp;2011</entry>
-	    <entry><para>pam_ssh improperly grants access when user account has
-		unencrypted SSH private keys</para></entry>
-	  </row>
-
-	  <row>
-	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:10.pam.asc"
-		>SA-11:10.pam</ulink></entry>
-	    <entry>23&nbsp;December&nbsp;2011</entry>
-	    <entry><para><function>pam_start()</function> does not validate
-		service names</para></entry>
+	    <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-12:08.linux.asc"
+		>SA-12:08.linux</ulink></entry>
+	    <entry>22&nbsp;November&nbsp;2012</entry>
+	    <entry><para>Linux compatibility layer input validation error</para></entry>
 	  </row>
 	</tbody>
       </tgroup>
     </informaltable>
   </sect1>
 
-  <sect1 id="open-issues">
-    <title>Open Issues</title>
-
-    <itemizedlist>
-      <listitem>
-	<para>In some releases prior to &release.current;, upgrading
-	  by using &man.freebsd-update.8; can fail.  This issue has
-	  been fixed by a change in Errata Notice EN-12:01.  For more
-	  information, see <ulink
-	    url="http://security.freebsd.org/advisories/FreeBSD-EN-12:01.freebsd-update.asc"></ulink></para>;
-      </listitem>
-
-      <listitem>
-	<para arch="amd64,i386">&os; &release.current; includes
-	  several changes to improve resource management of PCI
-	  devices.  Some x86 machines may not boot or may have devices
-	  that no longer attach when using ACPI as a result of these
-	  changes.  This can be worked around by setting a
-	  &man.loader.8; tunable
-	  <varname>debug.acpi.disabled</varname> to
-	  <literal>hostres</literal>.  To do this, enter the following
-	  lines at the loader prompt:</para>
-
-	<screen>set debug.acpi.disabled="hostres"
-boot</screen>
-
-	<para>Or, put the following line into
-	  <filename>/boot/loader.conf</filename>:</para>
-
-	<programlisting>debug.acpi.disabled="hostres"</programlisting>
-      </listitem>
-
-      <listitem>
-	<para>A &man.devctl.4; event upon arrival of a &man.ugen.4;
-	  device has been changed.  The event now includes
-	  <literal>ugen</literal> and <literal>cdev</literal>
-	  variables instead of <literal>device-name</literal>.  This
-	  change can prevent the following &man.devd.8; rule which
-	  worked in a previous releases from working:</para>
-
-	<programlisting>attach 0 {
-	match "device-name" "ugen[0-9]+.[0-9]+";
-	action "/path/to/script /dev/$device-name";
-}</programlisting>
-
-	<para>This should be updated to the following:</para>
-
-	<programlisting>attach 0 {
-	match "subsystem" "DEVICE";
-	match "type" "ATTACH";
-	match "cdev" "ugen[0-9]+.[0-9]+";
-	action "/path/to/script /dev/$cdev";
-}</programlisting>
-      </listitem>
-
-      <listitem>
-	<para>The &os; &release.current; Release Notes should have
-	  mentioned that SSM (Source-Specific Multicast) MLDv2 now
-	  uses <literal>ALLOW_NEW_SOURCES</literal> and
-	  <literal>BLOCK_OLD_SOURCES</literal> record types to signal
-	  a join or a leave by default.  This conforms RFC 4604,
-	  <quote>Using Internet Group Management Protocol Version 3
-	  (IGMPv3) and Multicast Listener Discovery Protocol Version 2
-	  (MLDv2) for Source-Specific Multicast</quote>.  A new
-	  &man.sysctl.8; variable
-	  <varname>net.inet6.mld.use_allow</varname> which controls
-	  the behavior has been added.  The default value is
-	  <literal>1</literal> (use
-	  <literal>ALLOW_NEW_SOURCES</literal> and
-	  <literal>BLOCK_OLD_SOURCES</literal>).</para>
-      </listitem>
-
-      <listitem>
-	<para>&release.current; fails to configure an interface
-	  specified in the &man.rc.conf.5; variable
-	  <varname>ipv6_prefix_<replaceable>IF</replaceable></varname>
-	  when the interface does not have a corresponding
-	  <varname>ifconfig_<replaceable>IF</replaceable>_ipv6</varname>
-	  variable.  This problem will be fixed in the future
-	  releases.  To work around this problem on &release.current;,
-	  add an
-	  <varname>ifconfig_<replaceable>IF</replaceable>_ipv6</varname>
-	  line for each interface specified in
-	  <varname>ipv6_prefix_<replaceable>IF</replaceable></varname>
-	  as the following:</para>
-
-	<programlisting>ipv6_prefix_em0="2001:db8:1:0 2001:db8:2:0"
-ifconfig_em0_ipv6="inet6 auto_linklocal"</programlisting>
-      </listitem>
-
-      <listitem>
-	<para>In &release.current; the &os; USB subsystem supports USB
-	  3.0 by the &man.xhci.4; driver.  However, a bug that could
-	  prevent it from working with a USB 3.0 hub has been found
-	  and fixed after the release date.  This means
-	  &release.current; and prior do not work with a USB 3.0 hub.
-	  This problem has been fixed in HEAD and will be merged into
-	  the 9-STABLE branch.</para>
-      </listitem>
-    </itemizedlist>
-  </sect1>
-
   <sect1 id="late-news">
     <title>Late-Breaking News</title>
 
-<![ %release.type.current [
-    <para>No news.</para>
-]]>
-
-<![ %release.type.release [
     <para>No news.</para>
-]]>
-
-<![ %release.type.snapshot [
-    <para>No news.</para>
-]]>
   </sect1>
-
 </article>

Modified: stable/9/release/doc/en_US.ISO8859-1/relnotes/article.xml
==============================================================================
--- stable/9/release/doc/en_US.ISO8859-1/relnotes/article.xml	Tue Dec 18 06:37:23 2012	(r244378)
+++ stable/9/release/doc/en_US.ISO8859-1/relnotes/article.xml	Tue Dec 18 06:55:13 2012	(r244379)
@@ -70,1303 +70,10 @@
 </sect1>
 
 <sect1 id="new">
-  <title>What's New</title>
+    <title>What's New</title>
 
-  <para>This section describes
-    the most user-visible new or changed features in &os;
-    since &release.prev;.</para>
-
-  <para>Typical release note items
-    document recent security advisories issued after
-    &release.prev;,
-    new drivers or hardware support, new commands or options,
-    major bug fixes, or contributed software upgrades.  They may also
-    list changes to major ports/packages or release engineering
-    practices.  Clearly the release notes cannot list every single
-    change made to &os; between releases; this document focuses
-    primarily on security advisories, user-visible changes, and major
-    architectural improvements.</para>
-
-  <sect2 id="security">
-    <title>Security Advisories</title>
-
-      <para>Problems described in the following security advisories have
-	been fixed.  For more information, consult the individual
-	advisories available from
-	<ulink url="http://security.FreeBSD.org/"></ulink>.</para>;
-
-      <informaltable frame="none" pgwide="1">
-	<tgroup cols="3">
-	  <colspec colwidth="1*"/>
-	  <colspec colwidth="1*"/>
-	  <colspec colwidth="3*"/>
-	  <thead>
-	    <row>
-	      <entry>Advisory</entry>
-	      <entry>Date</entry>
-	      <entry>Topic</entry>
-	    </row>
-	  </thead>
-
-	  <tbody>
-	    <row>
-	      <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:01.mountd.asc"
-		  >SA-11:01.mountd</ulink></entry>
-	      <entry>20&nbsp;April&nbsp;2011</entry>
-	      <entry><para>Network ACL mishandling in &man.mountd.8;</para></entry>
-	    </row>
-
-	    <row>
-	      <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:02.bind.asc"
-		  >SA-11:02.bind</ulink></entry>
-	      <entry>28&nbsp;May&nbsp;2011</entry>
-	      <entry><para>BIND remote DoS with large RRSIG RRsets and negative
-		  caching</para></entry>
-	    </row>
-
-	    <row>
-	      <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:04.compress.asc"
-		  >SA-11:04.compress</ulink></entry>
-	      <entry>28&nbsp;September&nbsp;2011</entry>
-	      <entry><para>Errors handling corrupt compress file in
-		  &man.compress.1; and &man.gzip.1;</para></entry>
-	    </row>
-
-	    <row>
-	      <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:05.unix.asc"
-		  >SA-11:05.unix</ulink></entry>
-	      <entry>28&nbsp;September&nbsp;2011</entry>
-	      <entry><para>Buffer overflow in handling of UNIX socket
-		  addresses</para></entry>
-	    </row>
-
-	    <row>
-	      <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:06.bind.asc"
-		  >SA-11:06.bind</ulink></entry>
-	      <entry>23&nbsp;December&nbsp;2011</entry>
-	      <entry><para>Remote packet Denial of Service against &man.named.8;
-		  servers</para></entry>
-	    </row>
-
-	    <row>
-	      <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:07.chroot.asc"
-		  >SA-11:07.chroot</ulink></entry>
-	      <entry>23&nbsp;December&nbsp;2011</entry>
-	      <entry><para>Code execution via chrooted ftpd</para></entry>
-	    </row>
-
-	    <row>
-	      <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:08.telnetd.asc"
-		  >SA-11:08.telnetd</ulink></entry>
-	      <entry>23&nbsp;December&nbsp;2011</entry>
-	      <entry><para>telnetd code execution vulnerability</para></entry>
-	    </row>
-
-	    <row>
-	      <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:09.pam_ssh.asc"
-		  >SA-11:09.pam_ssh</ulink></entry>
-	      <entry>23&nbsp;December&nbsp;2011</entry>
-	      <entry><para>pam_ssh improperly grants access when user account has
-		  unencrypted SSH private keys</para></entry>
-	    </row>
-
-	    <row>
-	      <entry><ulink url="http://security.freebsd.org/advisories/FreeBSD-SA-11:10.pam.asc"
-		  >SA-11:10.pam</ulink></entry>
-	      <entry>23&nbsp;December&nbsp;2011</entry>
-	      <entry><para><function>pam_start()</function> does not validate
-		  service names</para></entry>
-	    </row>
-	  </tbody>
-	</tgroup>
-      </informaltable>
-    </sect2>
-
-  <sect2 id="kernel">
-    <title>Kernel Changes</title>
-
-      <para revision="219129">The &os; kernel now supports Capsicum
-	Capability Mode.  Capsicum is a set of features for sandboxing
-	support, using a capability model in which the capabilities
-	are file descriptors.  Two new kernel options
-	<literal>CAPABILITIES</literal> and
-	<literal>CAPABILITY_MODE</literal> have been added to the
-	<filename>GENERIC</filename> kernel.  For more information
-	about Capsicum, see <ulink
-	url="http://www.cl.cam.ac.uk/research/security/capsicum/"></ulink>.</para>;
-
-      <para revision="219559,219561" arch="amd64,i386">The &os;
-	&man.dtrace.1; framework now supports
-	<literal>systrace</literal> for system calls of
-	<literal>linux32</literal> and <literal>freebsd32</literal> on
-	&os;/&arch.amd64;.  Two new
-	<filename>systrace_linux32</filename> and
-	<filename>systrace_freebsd32</filename> kernel modules provide
-	support for tracing compat system calls in addition to the native
-	system call tracing provided by the
-	<filename>systrace</filename> module.</para>
-
-      <para revision="217152,217396" arch="amd64,i386,powerpc">The
-	&os; ELF image activator now supports the
-	<literal>PT_GNU_STACK</literal> program header.  This is
-	disabled by default.  New &man.sysctl.8; variables
-	<varname>kern.elf32.nxstack</varname> and
-	<varname>kern.elf64.nxstack</varname> allow enabling
-	<literal>PT_GNU_STACK</literal> for the specified ABIs
-	(e.g. <literal>elf32</literal> for 32-bit ABI).</para>
-
-      <para revision="216758,216615">The &man.hhook.9; (Helper Hook)
-	and &man.khelp.9; (Kernel Helpers) KPIs have been implemented.
-	These are a kind of superset of &man.pfil.9; framework for
-	more general use in the kernel.  The &man.hhook.9; KPI
-	provides a way for kernel subsystems to export hook points
-	that &man.khelp.9; modules can hook to provide enhanced or new
-	functionality to the kernel.  The &man.khelp.9; KPI provides a
-	framework for managing &man.khelp.9; modules, which indirectly
-	use the &man.hhook.9; KPI to register their hook functions
-	with hook points of interest within the kernel.  These allow a
-	structured way to dynamically extend the kernel at runtime in
-	an ABI preserving manner.</para>
-
-      <para revision="224516" arch="amd64,i386,pc98">A &man.loader.8;
-	tunable <varname>hw.memtest.tests</varname> has been added.
-	This controls whether to perform memory testing at boot time
-	or not.  The default value is <literal>1</literal> (perform a
-	memory test).</para>
-
-      <para revision="220137">A new resource accounting API has been
-	implemented.  It can keep per-process, per-jail, and
-	per-loginclass resource accounting information.  Note that
-	this is not built nor installed by default.  To build and
-	install them, specify <literal>options RACCT</literal> in the
-	kernel configuration file and rebuild the base system as
-	described in the <ulink
-	url="http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/makeworld.html">&os;
-	Handbook</ulink>.</para>
-
-      <para revision="220163">A new resource-limiting API has been
-	implemented.  It works in conjunction with the
-	<literal>RACCT</literal> resource accounting implementation
-	and takes user-configurable actions based on the set of rules
-	it maintains and the current resource usage.  The &man.rctl.8;
-	utility has been added to manage the rules in userland.  Note
-	that this is not built nor installed by default.  To build and
-	install them, specify <literal>options RCTL</literal> in the
-	kernel configuration file and rebuild the base system as
-	described in the <ulink
-	url="http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/makeworld.html">&os;
-	Handbook</ulink>.</para>
-
-      <para revision="220031">The &man.sendmsg.2; and &man.recvmsg.2;
-	system calls in the &os; Linux ABI compatibility have been
-	improved.</para>
-
-      <para revision="219999">The &man.open.2; and &man.fhopen.2;
-	system calls now support the <literal>O_CLOEXEC</literal> flag,
-	which allows setting the <literal>FD_CLOEXEC</literal> flag for the
-	newly created file descriptor.  This is standardized in IEEE
-	Std 1003.1-2008 (POSIX, Single UNIX Specification Version
-	4).</para>
-
-      <para revision="220791">The &man.posix.fallocate.2; system call has
-	been implemented.  This is a function in POSIX to ensure that
-	a part of the storage for regular file data is allocated on the
-	file system storage media.</para>
-
-      <para revision="219304">Two new system calls
-	<function>setloginclass(2)</function> and
-	<function>getloginclass(2)</function> have been added.  This
-	makes it possible for the kernel to track the login class a
-	process is assigned to, which is required for the
-	<literal>RCTL</literal> resource limiting framework.</para>
-
-      <para revision="220238" arch="amd64">&os; now supports executing
-	&os; 1/&arch.i386; a.out binaries on &os;/&arch.amd64;.  Note
-	that this is not built nor installed by default.  To build and
-	install them, specify <literal>options COMPAT_43</literal> in
-	the kernel configuration file and rebuild the base system as
-	described in the <ulink
-	url="http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/makeworld.html">&os;
-	Handbook</ulink>.</para>
-
-      <para revision="218485,219028,219029">The following
-	&man.sysctl.8; variables have been added to show the availability
-	of various kernel features:</para>
-
-      <informaltable frame="none" pgwide="1">
-	<tgroup cols="2">
-	  <colspec colwidth="1*"/>
-	  <colspec colwidth="3*"/>
-	  <thead>
-	    <row>
-	      <entry>&man.sysctl.8; variable name</entry>
-	      <entry>Description</entry>
-	    </row>
-	  </thead>
-
-	  <tbody>
-	    <row>
-	      <entry><varname>kern.features.ufs_acl</varname></entry>
-	      <entry>ACL (Access Control List) support in UFS</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.ufs_gjournal</varname></entry>
-	      <entry>journaling support through &man.gjournal.8; for
-		UFS</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.ufs_quota</varname></entry>
-	      <entry>UFS disk quotas support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.ufs_quota64</varname></entry>
-	      <entry>64-bit UFS disk quotas support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.softupdates</varname></entry>
-	      <entry>FFS soft-updates support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.ffs_snapshot</varname></entry>
-	      <entry>FFS snapshot support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.nfsclient</varname></entry>
-	      <entry>NFS client (old implementation)</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.nfscl</varname></entry>
-	      <entry>NFS client (new implementation)</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.nfsserver</varname></entry>
-	      <entry>NFS server (old implementation)</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.nfsd</varname></entry>
-	      <entry>NFS server (new implementation)</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.kdtrace_hooks</varname></entry>
-	      <entry>Kernel DTrace hooks which are required to load
-		DTrace kernel modules</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.ktr</varname></entry>
-	      <entry>Kernel support for KTR kernel tracing facility</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.ktrace</varname></entry>
-	      <entry>Kernel support for system call tracing</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.hwpmc_hooks</varname></entry>
-	      <entry>Kernel support for HW PMC</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.sysv_msg</varname></entry>
-	      <entry>System V message queues support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.sysv_sem</varname></entry>
-	      <entry>System V semaphores support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.p1003_1b_mqueue</varname></entry>
-	      <entry>POSIX P1003.1B message queues support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.p1003_1b_semaphores</varname></entry>
-	      <entry>POSIX P1003.1B semaphores support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.kposix_priority_scheduling</varname></entry>
-	      <entry>POSIX P1003.1B real-time extensions</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.stack</varname></entry>
-	      <entry>Support for capturing the kernel stack</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.sysv_shm</varname></entry>
-	      <entry>System V shared memory segments support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.pps_sync</varname></entry>
-	      <entry>Support usage of external PPS signal by kernel PLL</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.regression</varname></entry>
-	      <entry>Kernel support for interfaces necessary for
-		regression testing</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.invariant_support</varname></entry>
-	      <entry>Support for modules compiled with the INVARIANTS option</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.zero_copy_sockets</varname></entry>
-	      <entry>Zero copy sockets support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.libmchain</varname></entry>
-	      <entry>mchain library</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.scbus</varname></entry>
-	      <entry>SCSI devices support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.mac</varname></entry>
-	      <entry>Mandatory Access Control Framework support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.audit</varname></entry>
-	      <entry>BSM audit support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_gate</varname></entry>
-	      <entry>GEOM Gate module</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_uzip</varname></entry>
-	      <entry>GEOM uzip read-only compressed disks support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_cache</varname></entry>
-	      <entry>GEOM cache module</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_mirror</varname></entry>
-	      <entry>GEOM mirroring support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_stripe</varname></entry>
-	      <entry>GEOM striping support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_concat</varname></entry>
-	      <entry>GEOM concatenation support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_raid3</varname></entry>
-	      <entry>GEOM RAID-3 functionality</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_fox</varname></entry>
-	      <entry>GEOM FOX redundant path mitigation support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_multipath</varname></entry>
-	      <entry>GEOM multipath support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.g_virstor</varname></entry>
-	      <entry>GEOM virtual storage support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_bde</varname></entry>
-	      <entry>GEOM-based Disk Encryption</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_eli</varname></entry>
-	      <entry>GEOM crypto module</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_journal</varname></entry>
-	      <entry>GEOM journaling support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_shsec</varname></entry>
-	      <entry>GEOM shared secret device support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_vol</varname></entry>
-	      <entry>GEOM support for volume names from UFS superblocks</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_label</varname></entry>
-	      <entry>GEOM labeling support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_sunlabel</varname></entry>
-	      <entry>GEOM Sun/Solaris partitioning support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_bsd</varname></entry>
-	      <entry>GEOM BSD disklabels support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_pc98</varname></entry>
-	      <entry>GEOM NEC PC9800 partitioning support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_linux_lvm</varname></entry>
-	      <entry>GEOM Linux LVM partitioning support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_part_pc98</varname></entry>
-	      <entry>GEOM partitioning class for PC-9800 disk partitions</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_part_vtoc8</varname></entry>
-	      <entry>GEOM partitioning class for SMI VTOC8 disk labels</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_part_bsd</varname></entry>
-	      <entry>GEOM partitioning class for BSD disklabels</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_part_ebr</varname></entry>
-	      <entry>GEOM partitioning class for extended boot records support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_part_ebr_compat</varname></entry>
-	      <entry>GEOM EBR partitioning class:
-		backward-compatible partition names</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_part_gpt</varname></entry>
-	      <entry>GEOM partitioning class for GPT partitions
-		support</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_part_apm</varname></entry>
-	      <entry>GEOM partitioning class for Apple-style
-		partitions</entry>
-	    </row>
-
-	    <row>
-	      <entry><varname>kern.features.geom_part_mbr</varname></entry>
-	      <entry>GEOM partitioning class for MBR support</entry>
-	    </row>
-	  </tbody>
-	</tgroup>
-      </informaltable>
-
-    <sect3 id="boot">
-      <title>Boot Loader Changes</title>
-
-	<para revision="222417">The default boot loader menu has been
-	  updated.</para>
-
-	<para revision="219541" arch="ia64">The &man.loader.8; loader
-	  now supports PBVM (Pre-Boot Virtual Memory).  This allows
-	  linking the kernel at a fixed virtual address without having to
-	  make any assumptions about the physical memory layout.  The
-	  PBVM also allows fine control of the address where the
-	  kernel and its modules are to be loaded.</para>
-      </sect3>
-
-    <sect3 id="proc">
-      <title>Hardware Support</title>
-
-	<para revision="217044" arch="powerpc">&os;/powerpc now
-	  supports Sony Playstation 3 using the OtherOS feature
-	  available on firmwares 3.15 and earlier.</para>
-
-	<para revision="219473,220577">A new &man.loader.8; tunable
-	  <varname>machdep.disable_tsc</varname> has been added.
-	  Setting this to a non-zero value disables use of TSC (Time
-	  Stamp Counter) by turning off boot-time CPU frequency
-	  calibration, DELAY(9) with TSC, and using TSC as a CPU
-	  ticker.  Another new &man.loader.8; tunable
-	  <varname>machdep.disable_tsc_calibration</varname> allows to
-	  skip the TSC frequency calibration only.  This is useful when
-	  one wants to use the nominal frequency of the chip in Intel
-	  processors, for example.</para>
-
-	<para revision="223098" arch="amd64,i386">The &os; &man.usb.4;
-	  subsystem now supports USB 3.0 by default.</para>
-
-	<para revision="215649">The &os; &man.usb.4; subsystem now
-	  supports USB packet filter.  This allows to capture packets
-	  which go through each USB host controller.  The
-	  implementation is almost based on &man.bpf.4; code.
-	  The userland program &man.usbdump.8; has been added.</para>
-
-      <sect4 id="net-if">
-	<title>Network Interface Support</title>
-
-	  <para revision="217649">A bug in the &man.alc.4; driver which
-	    could make AR8152-based network interfaces stop working
-	    has been fixed.</para>
-
-	  <para revision="219647">A bxe(4) driver for Broadcom
-	    NetXtreme II 10GbE controllers (BCM57710, BCM57711,
-	    BCM57711E) has been added.</para>
-
-	  <para revision="220009">The &man.cxgb.4; driver has been
-	    updated to version 7.11.0.</para>
-
-	  <para revision="218794">A &man.cxgbe.4; driver for Chelsio
-	    T4 (Terminator 4) based 10Gb/1Gb adapters has been
-	    added.</para>
-
-	  <para revision="218832" arch="i386">The &man.dc.4; driver
-	    now works correctly in kernels with the
-	    <option>PAE</option> option.</para>
-
-	  <para revision="219753">The &man.em.4; driver has been
-	    updated to version 7.3.2.</para>
-
-	  <para revision="223350">The &man.igb.4; driver has been
-	    updated to version 2.2.5.</para>
-
-	  <para revision="218530">The &man.igb.4; driver now supports
-	    Intel I350 PCIe Gigabit Ethernet controllers.</para>
-
-	  <para revision="217593">The &man.ixgbe.4; driver has been
-	    updated to version 2.3.8.</para>
-
-	  <para revision="220892">Firmware images in the &man.iwn.4;
-	    driver for 1000, 5000, 6000, and 6500 series cards have been
-	    updated.</para>
-
-	  <para revision="216860">A bug in the &man.msk.4; driver has been
-	    fixed.  It could prevent RX checksum offloading from
-	    working.</para>
-
-	  <para revision="217794">A bug in the &man.nfe.4; driver which
-	    could prevent reinitialization after changing the MTU has
-	    been fixed.</para>
-
-	  <para revision="217511">A bug in the &man.ral.4; and &man.run.4;
-	    drivers which could prevent <literal>hostap</literal> mode
-	    from working has been fixed.</para>
-
-	  <para revision="216828">A rdcphy(4) driver for RDC Semiconductor
-	    R6040 10/100 PHY has been added.</para>
-
-	  <para revision="217498,218760">The &man.re.4; driver now supports
-	    RTL8168E/8111E-VL PCIe Gigabit Ethernet controllers and
-	    RTL8401E PCIe Fast Ethernet controllers.</para>
-
-	  <para revision="217766">The &man.re.4; driver now supports
-	    TX interrupt moderation on RTL810xE PCIe Fast Ethernet
-	    controllers.</para>
-
-	  <para revision="217902">The &man.re.4; driver now supports
-	    another mechanism for RX interrupt moderation because of
-	    performance problems.  A &man.sysctl.8; variable
-	    <varname>dev.re.<replaceable>N</replaceable>.int_rx_mod</varname>
-	    has been added to control amount of time to delay RX
-	    interrupt processing, in units of microsecond.  Setting it
-	    to <literal>0</literal> completely disables RX interrupt
-	    moderation.  A &man.loader.8; tunable
-	    <varname>hw.re.intr_filter</varname> controls whether the
-	    old mechanism utilizing MSI/MSI-X capability on
-	    supported controllers is used or not.  When set to
-	    a non-zero value, the &man.re.4; driver uses the old
-	    mechanism.  The default value is <literal>0</literal> and
-	    this tunable has no effect on controllers without MSI/MSI-X
-	    capability.</para>
-
-	  <para revision="217246,217832">The &man.re.4; driver now
-	    supports TSO (TCP Segmentation Offload) on RealTek
-	    RTL8168/8111 C or later controllers.  Note that this is
-	    disabled by default because broken frames can be sent
-	    under certain conditions.</para>
-
-	  <para revision="217381,218289">The &man.re.4; driver now
-	    supports enabling TX and/or RX checksum offloading
-	    independently from each other.  Note that TX IP checksum
-	    is disabled on some RTL8168C-based network interfaces
-	    because it can generate an incorrect IP checksum when the
-	    packet contains IP options.</para>
-
-	  <para revision="217296">A bug in the &man.re.4; driver has
-	    been fixed.  It could cause a panic when receiving a jumbo
-	    frame on an RTL8169C, 8169D, or 8169E controller-based
-	    network interface.</para>
-
-	  <para revision="217911">The &man.re.4; driver now supports
-	    RTL8105E PCIe Fast Ethernet controllers.</para>
-
-	  <para revision="217910">The rlphy(4) driver now supports the
-	    Realtek RTL8201E 10/100 PHY found in RTL8105E
-	    controllers.</para>
-
-	  <para revision="217548">A bug in the &man.sis.4; driver has
-	    been fixed.  It could prevent a proper reinitialization
-	    on DP83815, DP83816, and SiS 900/7016 controllers when the
-	    configuration of multicast packet handling and/or
-	    promiscuous mode is changed.</para>
-
-	  <para revision="216650">A bug in the &man.vlan.4; pseudo interface
-	    han been fixed.  It could have a random interface
-	    identifier in an automatically configured IPv6 link-local
-	    address, instead of one generated with the parent
-	    interface's IEEE 802 48-bit MAC address and an algorithm
-	    described in RFC 4291.</para>
-
-	  <para revision="216829">A &man.vte.4; driver for RDC R6040 Fast
-	    Ethernet controllers, which are commonly found on the Vortex86
-	    System On a Chip, has been added.</para>
-
-	  <para revision="221167">A &man.vxge.4; driver for the Neterion
-	    X3100 10GbE Server/Storage adapter has been added.</para>
-
-	  <para revision="216824">A bug in the &man.wpi.4; driver has been
-	    fixed.  It could display the following error messages and
-	    result in the device being unusable:</para>
-

*** DIFF OUTPUT TRUNCATED AT 1000 LINES ***



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201212180655.qBI6tEsD077348>