From owner-svn-src-all@FreeBSD.ORG Fri Mar 19 18:33:41 2010 Return-Path: Delivered-To: svn-src-all@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 17C70106566C; Fri, 19 Mar 2010 18:33:41 +0000 (UTC) (envelope-from hrs@FreeBSD.org) Received: from svn.freebsd.org (svn.freebsd.org [IPv6:2001:4f8:fff6::2c]) by mx1.freebsd.org (Postfix) with ESMTP id 0477D8FC08; Fri, 19 Mar 2010 18:33:41 +0000 (UTC) Received: from svn.freebsd.org (localhost [127.0.0.1]) by svn.freebsd.org (8.14.3/8.14.3) with ESMTP id o2JIXfJI031017; Fri, 19 Mar 2010 18:33:41 GMT (envelope-from hrs@svn.freebsd.org) Received: (from hrs@localhost) by svn.freebsd.org (8.14.3/8.14.3/Submit) id o2JIXeBX031015; Fri, 19 Mar 2010 18:33:40 GMT (envelope-from hrs@svn.freebsd.org) Message-Id: <201003191833.o2JIXeBX031015@svn.freebsd.org> From: Hiroki Sato Date: Fri, 19 Mar 2010 18:33:40 +0000 (UTC) To: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-releng@freebsd.org X-SVN-Group: releng MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Cc: Subject: svn commit: r205342 - releng/7.3/release/doc/en_US.ISO8859-1/relnotes X-BeenThere: svn-src-all@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "SVN commit messages for the entire src tree \(except for " user" and " projects" \)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Mar 2010 18:33:41 -0000 Author: hrs Date: Fri Mar 19 18:33:40 2010 New Revision: 205342 URL: http://svn.freebsd.org/changeset/base/205342 Log: Update relnotes (final round, hopefully): SA-09:09,10,11,12,14,15,16,17,10:01,02,03, security.jail.ip[46]_saddrsel, acpidump(8) SRAT support (acpi(4) entry removed)[1], sched_ule(4) deadlock fixed (EN-10:02), superpages enabled by default on amd64 (superpages entry revised)[1], security.bsd.map_at_zero, boot2 on pc98 reimplemented, vgapci(4) MSI/MSI-X proxying (item of the old pci(4) item removed)[1], bce(4) bugfix, cxgb(4) firmware 7.8.0[2], fxp(4) + TSO = poor performance fixed, mxge(4) firmware 1.4.48b, ste(4) improvements, vlan(4) now in GENERIC, gstripe(8) default stripe size is now 64KB, fetch(1) HTTP digest auth support, fetch(1) NO_PROXY/no_proxy support, getpagesize(3) added, mergemaster(8) DELETE_STALE_RC_FILES support, tftp(1) exit status fixed, traceroute(8) address selection in jail, whois(1) -d removed, $vlans_IF in rc.conf added, ISC BIND 9.4-ESV, tzdata2010b, GNOME 2.28.2, and KDE 4.3.5. Spotted by: jhb[1] and np[2] Approved by: re (implicitly) Modified: releng/7.3/release/doc/en_US.ISO8859-1/relnotes/article.sgml Modified: releng/7.3/release/doc/en_US.ISO8859-1/relnotes/article.sgml ============================================================================== --- releng/7.3/release/doc/en_US.ISO8859-1/relnotes/article.sgml Fri Mar 19 17:48:34 2010 (r205341) +++ releng/7.3/release/doc/en_US.ISO8859-1/relnotes/article.sgml Fri Mar 19 18:33:40 2010 (r205342) @@ -120,7 +120,6 @@ advisories available from . - Kernel Changes - The &man.acpi.4; subsystem now supports parsing SRAT - (System Resource Affinity Table used to describe affinity - relationships between CPUs and memory. - The &man.closefrom.2; system call has been added. This closes any open file descriptors which are equal to or larger than the specified value. Note that this does not fail with @@ -167,6 +230,21 @@ system call now support a sysctl variable vfs.timestamp_precision. + The &man.jail.8; subsystem now supports + security.jail.ip4_saddrsel and + security.jail.ip6_saddrsel sysctl variables + to control whether to use source address selection or the + primary jail address for unbound outgoing connections. The + default is that the source address selection is enabled. + Also, the jail parameter ip4.saddrsel and + ip6.saddrsel are boolean option to enable + the source address selection for IPv4 and IPv6, respectively. + If another boolean parameters + ip4.nosaddrsel and + ip6.nosaddrsel are set, the child jails do + not inherit the address selection options of the + parent. + The kmem_map KVA space has been increased to 512GB. @@ -193,13 +271,17 @@ (P1003_1B_SEMAPHORES kernel option) by default. + A deadlock in the &man.sched.ule.4; scheduler has been + fixed. For more details, see EN-10:02.sched_ule. + &os; now supports shared memory segments for System V IPC which is larger than 2GB on 64-bit platforms. For more details, see /usr/src/UPDATING file. The &man.sglist.9; API to manage scatter/gather lists of - phyiscal addresses has been added. + physical addresses has been added. &os; ABI of some of the structures used by the System V IPC API has been changed internally. For new kernel modules, @@ -211,19 +293,19 @@ shims. The old functions remain as the old names to provide backward compatibility for older kernel modules. - The &os; virtual memory - subsystem now supports fully transparent use of - superpages for application memory; - application memory pages are dynamically promoted to or - demoted from superpages without any modification to - application code. This change offers the benefit of large - page sizes such as improved virtual memory efficiency and - reduced TLB (translation lookaside buffer) misses without - downsides like application changes and virtual memory - inflexibility. This can be enabled by setting a loader tunable - vm.pmap.pg_ps_enabled to - 1 and is enabled by default on - &arch.amd64;. + The superpages in + the &os; virtual memory subsystem is now enabled by + default. + + A new sysctl variable + security.bsd.map_at_zero has been added and + set to 1 (allow) by default. This controls + whether &os; allows to map an object at the address + 0, which is part of the user-controlled + portion of the virtual address space. Disabling this has some + effect on preventing an attack which injects malicious code + into that location and triggers a NULL pointer dereference in + the kernel. Boot Loader Changes @@ -246,6 +328,10 @@ A bug in the boot loader has been fixed. It failed to recognize GPT correctly when the system supports both of MBR and GPT and they are synchronized with each other. + + The boot2 program + has been replaced with the latest version for + &arch.i386;. @@ -266,6 +352,29 @@ The &man.cpufreq.4; driver now supports Phenom (Family 10h). + CPU cache flushing has been optimized + when changing caching attributes of pages by doing nothing + for CPUs that support self-snooping and using + CLFLUSH instead of a full cache + invalidate when possible. &os; does not use + CLFLUSH on Intel CPUs due to problems + with flushing the local APIC range by default. This can be + controlled via the hw.clflush_disable + loader tunable. A setting of 1 disables + the use of CLFLUSH. A setting of + 0 allows CLFLUSH to be + used for Intel CPUs when CPUID_SS is not + present. This fixes a kernel panic occurred on Xen which + disables self-snooping. + + The epic(4) driver for the front panel + LEDs in Sun Fire V215/V245 has been added. + + The fire(4) driver for + Fire JBus to PCIe bridges found in at least + the Sun Fire V215/V245 and Sun Ultra 25/45 machines has been + added. + The &man.hwpmc.4; driver for Hardware Performance Monitoring Counter support has been added. This consists of the kernel driver, &man.pmc.3; interface @@ -291,11 +400,6 @@ been added. This reports all of the supported page sizes on the system. - The &man.pci.4; subsystem now supports proxying of PCI - Express MSI/MSI-X (Message Signaled Interrupt) requests and - bus interrupt requests for child devices. This allows child - devices to use MSI/MSI-X interrupts. - PCI Express memory-mapped configuration space access, ACPI MCFG table support, and BAR (Base Address Register) handling in the &man.pci.4; subsystem has been improved. @@ -313,19 +417,35 @@ DRM now supports Radeon HD 4200 (RS880), 4770 (RV740), and R6/7xx 3D, and Intel G41 chips. + + The vgapci(4) driver for PCI VGA display devices + which can attach devices as the children now supports + proxying of PCI MSI/MSI-X (Message Signaled Interrupt) + requests and bus interrupt requests for the child devices. + This allows child devices to use MSI/MSI-X interrupts. Network Interface Support The &man.alc.4; driver for Atheros AR8131/AR8132 PCIe - ethernet controller has been added. + Ethernet controller has been added. + + A bug in the &man.bce.4; driver has been fixed. When + adding a &man.bce.4; interface on the system as a + &man.lagg.4; member with the LACP aggregation protocol + enabled network communication via the &man.bce.4; + interface stopped completely. Although the &man.bce.4; + interface worked if it was not a &man.lagg.4; member, the + incoming traffic statistics which can be found in + &man.netstat.1; output was incorrect because every packet + was recognized as full-sized one. Several bugs in the &man.bge.4; driver have been fixed. It caused a panic when a lot of traffic is being handled on the interface while the system is shutting down, and had a DMA issue when buffer address crosses a - multple of the 4GB boundaries. + multiple of the 4GB boundaries. The &man.bge.4; driver now supports TSO (TCP segmentation offloading) for BCM5755 or newer @@ -337,7 +457,7 @@ devices. The &man.cxgb.4; driver has been upgraded to the - latest version. The firmware version is 7.1.0. + latest version. The firmware version is 7.8.0. The &man.et.4; driver now supports IPv4/TCP/UDP Tx checksum offloading. @@ -346,7 +466,8 @@ multicast filter re-programming is now more robust. A bug which caused incorrect IP packet length in the header when TSO (TCP segmentation offloading) is enabled has been - fixed. + fixed. This fixes poor performance when TSO is enabled in + the previous releases. The &man.msk.4; driver has been improved for robust operation. Also, it now supports Yukon FE+ A0 including @@ -354,8 +475,9 @@ 88E8070. Several bugs in the &man.mxge.4; driver have been - fixed. It could lost the promiscuous flag on resetting - and a kernel panic on the hardware fault. + fixed and the firmware version is now 1.4.48b. It could + lost the promiscuous flag on resetting and a kernel panic + on the hardware fault. A bug in the &man.nfe.4; driver has been fixed. It caused buffer allocation failure for jumbo frames. @@ -376,6 +498,17 @@ default is 1. For more details, see &man.nge.4; manual page. + The &man.ste.4; driver has been improved and now works + on all supported platforms. It now supports + suspend/resume and WoL (Wake-on-Lan). Hardware MAC + statistics can be obtained via a new sysctl variable + dev.ste.N.stats. + Another new sysctl variables + dev.ste.N.int_rx_mod + has been added to control RX interrupt moderation time. + The default value is 150 (150us). For + more details, see &man.ste.4; manual page. + The &man.vge.4; driver has been improved. It now supports hardware checksum offloading for &man.vlan.4; tagged frames and WoL (Wake-on-Lan). Hardware MAC @@ -431,6 +564,9 @@ convenient shortcut ported from NetBSD to obtain network interface name using file descriptor for character device. + + The &man.vlan.4; driver is now enabled in the + GENERIC kernel. @@ -447,7 +583,7 @@ . A bug in the &man.ata.4; driver has been fixed. It - could generate an I/O request larger than contoller's + could generate an I/O request larger than controller's maximum I/O size and caused a kernel panic. An algorithm for load balancing mode @@ -462,6 +598,9 @@ It could not handle a GPT header whose size is greater than 92 bytes which is written by OpenSolaris. + The default stripe size of &man.gstripe.8; GEOM class + has been changed from 4KB to 64KB. + The &man.hptrr.4; driver now supports a new loader tunable hw.hptrr.attach_generic to prevent the driver from being attached to some Marvell chips @@ -512,7 +651,7 @@ for caching or the ZFS Intent Log, and partial &man.chflags.2; support. It also includes some &os;-specific additions, such as booting from ZFS file systems, removal of ARC - size limitations, ARC backpressure (which allows ZFS to work + size limitations, ARC back pressure (which allows ZFS to work without tunables on &arch.amd64;), and many bugfixes. @@ -520,6 +659,10 @@ Userland Changes + The &man.acpidump.8; utility now supports parsing SRAT + (System Resource Affinity Table used to describe affinity + relationships between CPUs and memory. + The &man.apropos.1; command no longer sets the necessary directories to PATH variable. This means if the caller does not have * for automatic calculation in the p command. + The &man.fetch.1; command now supports HTTP digest + authentication. + + The &man.fetch.1; command now supports + NO_PROXY and no_proxy + environment variables to disable use of HTTP proxy. For more + details, see &man.fetch.3; manual page. + A bug in the &man.fetch.1; command that FTP_TIMEOUT and HTTP_TIMEOUT environment variables were @@ -621,6 +772,11 @@ named kernel feature is present by checking the kern.features sysctl MIB. + &os; libc library now includes + &man.getpagesize.3; function that returns either the number of + page sizes supported by the system or a specified subset of + the supported page sizes. + The &man.libradius.3; now supports simple embedded RADIUS server. @@ -640,6 +796,11 @@ option when it invokes &man.mtree.8; command to follow symbolic links. + The &man.mergemaster.8; utility now supports + DELETE_STALE_RC_FILES variable in + mergemaster.rc file to delete stale rc.d + scripts automatically. + A userland utility &man.mfiutil.8; for the &man.mfi.4; devices has been added. This includes basic features to monitor controller, array, and drive status, @@ -712,18 +873,31 @@ an error. ENOENT errors are not reported. This behavior is consistent with the GNU version. + The &man.tftp.1; command now returns a correct exit status + in the case of successful file transfer. + + The &man.traceroute.8; program now uses in-kernel source + address selection even in a &man.jail.8; environment. + The &man.traceroute.8; and &man.traceroute6.8; now support an flag to display AS number corresponding to the lookup IP address on each hop. It will query the number to WHOIS server specified in option. If no is specified, - whois.radb.net will be used as the default - value. + whois.radb.net will be used as the default value. The &man.tzsetup.8; command now supports an option to skip the initial question about adjusting the clock if not set to UTC. + The &man.whois.1; utility has been updated. A + option has been removed because + whois.nic.mil no longer exists, and it + supports searching for IPv6 addresses just like it can do for + IPv4 addresses without having to explicitly specify that the + ARIN server should be used to get the initial + information. + The &man.yp.8; utilities now support shadow.byname and shadow.byuid maps. These requires @@ -740,6 +914,16 @@ for interfaces created via cloned_interfaces + The &man.rc.conf.5; file now supports + vlans_IF for + creating &man.vlan.4; interfaces. If a vlan interface is a + number, then that number is treated as the vlan tag for the + interface and the interface will be named + IF.N. + Otherwise, the vlan tag must be provided via a + parameter in a create_args_IF + variable. + The rc.d/fsck script now supports options for fsck_y_enable via fsck_y_flags. @@ -787,13 +971,13 @@ static_arp_gw="192.168.1.1 00:01:02:03:0 Contributed Software ISC BIND has been updated to - version 9.4.3-P4. + version 9.4-ESV. sendmail has been updated from version 8.14.3 to version 8.14.4. The timezone database has been updated - to the tzdata2009u release. + to the tzdata2010b release. The timezone binary has been updated to the tzcode2009k release. @@ -815,12 +999,16 @@ static_arp_gw="192.168.1.1 00:01:02:03:0 &os; release ISO images now have FreeBSD- at the beginning of the filenames. - - - - Documentation - + The supported version of the + GNOME desktop environment + (x11/gnome2) has been + updated to 2.28.2. + + The supported version of the + KDE desktop environment (x11/kde4) has been updated to + 4.3.5.