diff --git a/website/content/en/releases/13.1R/relnotes.adoc b/website/content/en/releases/13.1R/relnotes.adoc --- a/website/content/en/releases/13.1R/relnotes.adoc +++ b/website/content/en/releases/13.1R/relnotes.adoc @@ -90,15 +90,70 @@ // SAMPLE ENTRY: // A new man:rc.conf[5] variable has been added, `linux_mounts_enable`, which controls if Linux(R)-specific filesystems are mounted in [.filename]#/compat/linux# if `linux_enable` is set to `YES`. {{< revision "364883" >}} (Sponsored by The FreeBSD Foundation) +The `-i` flag is now added to man:rtsol[8] and man:rtsold[8] by default in `/etc/defaults/rc.conf`. gitref:a0fc5094bf4c[repository=src] +(Sponsored by https://www.patreon.com/cperciva[https://www.patreon.com/cperciva]) + [[userland-programs]] === Userland Application Changes +The `-i` option has been added to man:rtsol[8] and man:rtsold[8] to disable the random delay between zero and one seconds, speeding up the boot process. gitref:8056b73ea163[repository=src] +(Sponsored by https://www.patreon.com/cperciva[https://www.patreon.com/cperciva]) + +For 64-bit architectures, the base system is now built with Position +Independent Executable (PIE) support enabled by default. +It may be disabled using the `WITHOUT_PIE` knob. + A clean build is required. +gitref:396e9f259d96[repository=src] + Add a new `zfskeys` man:rc[8] service script, which allows for automatic decryption of ZFS datasets encrypted with ZFS native encryption during boot. See the man:rc.conf[5] manual page for more information. gitref:33ff39796ffe[repository=src], gitref:8719e8a951b7[repository=src] (Sponsored by Modirum and Klara Inc.) The NVMe emulation in man:bhyve[8] has been upgraded to version 1.4 of the NVMe specification. gitref:b7a2cf0d9102[repository=src] - gitref:eae02d959363[repository=src] +NVMe iovec construction for large IOs in man:bhyve[8] has been fixed. +The problem was exposed by the UEFI driver included with Rocky Linux 8.4. +gitref:a7761d19dacd[repository=src] + +Extra Alt Gr mappings for Brazillian Portuguese ABNT2 keyboards were added. +gitref:310623908c20[repository=src] + +The `chroot` facility now supports unprivileged operation, and +the man:chroot[8] program now has a `-n` option to enable its use. +gitref:460b4b550dc9[repository=src] (Sponsored by EPSRC) + +The CAM library has been modified to use man:realpath[3] on device names +before parsing them, which allows tools such as man:camcontrol[8] and +man:smartctl[8] to be friendlier when symlinks are in use. +gitref:e32acf95ea25[repository=src] + +man:md5sum[1] and similar message-digest programs compatible with those +on Linux were added by having the corresponding BSD programs run with the `-r` +option if the program name ends in `sum`. +gitref:c0d5665be0dc[repository=src] +(Sponsored by Netflix) + +man:svnlite[1] is disabled in the build by default. gitref:a4f99b3c2384[repository=src] + +man:mpsutil[8] has been extended to show adapter information and to control NCQ. +gitref:395bc3598b47[repository=src] + +Problems after downloading firmware to a device using man:camcontrol[8] +were fixed by forcing a rescan of the LUN after the firmware download. +gitref:327da43602cc[repository=src] +(Sponsored by Netflix) + +A new mode has been added to the scripted partition editor for variant disk +names in man:bsdinstall[8]. +If the disk parameter `DEFAULT` is set in place of an actual device name, +or no disk is specified for the `PARTITIONS` parameter, the installer will +follow the logic used in the automatic-partitioning mode, in which it +will either provide a selection dialog for one of several disks if +several are present or automatically select it if there is only one. +This simplifies the creation of fully-automatic installation media for +hardware or VMs with varying disk names. gitref:5ec4eb443e81[repository=src] + + [[userland-contrib]] === Contributed Software @@ -117,11 +172,40 @@ interpreted as hex numbers, while all other awks (now including One True Awk) interpret them as `0`, in line with awk's historic behavior. +`zlib` has been upgraded to version 1.2.12. + +`libarchive` has been upgraded to verion 3.6.0 with additional bug and +security fixes from the upcoming patchlevel release. +Release notes are available at +https://github.com/libarchive/libarchive/releases[https://github.com/libarchive/libarchive/releases]. + +The `ssh` package has been updated to OpenSSH v8.8p1, including a security +update and bug fixes. Other updates include these changes: + +* man:ssh[1]: When prompting whether to record a new host key, accept that key's fingerprint as a synonym for "yes." +* man:ssh-keygen[1]: When acting as a CA and signing certificates with an RSA key, default to using the `rsa-sha2-512` signature algorithm. +* man:ssh[1]: `UpdateHostkeys` is enabled by default, subject to some conservative preconditions. +* man:scp[1]: The behavior of remote to remote copies (e.g. `scp host-a:/path host-b:`) has been changed to transfer through the local host by default. +* man:scp[1] has experimental support for transfers using the SFTP protocol as a replacement for the venerable SCP/RCP protocol that it has traditionally used. + +The use of FIDO/U2F hardware authenticators has been enabled in `ssh`, +using the new public key types `ecdsa-sk` and `ed25519-sk`, along with +corresponding certificate types. +FIDO/U2F support is described in +https://www.openssh.com/txt/release-8.2[https://www.openssh.com/txt/release-8.2]. +gitref:a613d68fff9a[repository=src] +(Sponsored by The FreeBSD Foundation) + [[userland-libraries]] === Runtime Libraries and API Add assembly optimized code for OpenSSL on powerpc, powerpc64 and powerpc64le. gitref:ce35a3bc852[repository=src] +The detection of CPU features accelerating crypto operations for ARMv7 and +ARM64 has been fixed, speeding up `aes-256-gcm` and `sha256` substantially. +gitref:32a2fed6e71f[repository=src] +(Sponsored by Ampere Computing LLC and Klara Inc.) + Enable building ASAN and UBSAN libraries on riscv64 and riscv64sf. gitref:8c56b338da7[repository=src] Enable building OFED libraries on riscv64 and riscv64sf. gitref:2b978245733[repository=src] @@ -144,6 +228,11 @@ Add superpages support to pmap_mincore on powerpc64(le). gitref:32b50b8520d[repository=src] +HWCAP/HWCAP2 aux args support was added on arm64 for 32-bit ARM binaries. +This fixes build/run of golang under `COMPAT32` emulation. +gitref:28e22482279f[repository=src] +(Sponsored by Rubicon Communications, LLC ("Netgate")) + [[drivers]] == Devices and Drivers @@ -152,6 +241,12 @@ [[drivers-device]] === Device Drivers +The man:igc[4] driver was introduced for the Intel I225 Ethernet controller. +This controller supports 2.5G/1G/100Mb/10Mb speeds, and allows +tx/rx checksum offload, TSO, LRO, and multi-queue operation. +gitref:d7388d33b4dd[repository=src] +(Sponsored by Rubicon Communications, LLC ("Netgate")) + Fix for VGA / HDMI console with AST2500 during boot on powerpc64(le). gitref:c41d129485e[repository=src] Fix PCI common read/write functions on big endian targets in man:virtio[4]. gitref:7e583075a41[repository=src], gitref:8d589845881[repository=src] @@ -160,6 +255,27 @@ Reduce max I/O size to avoid DMA issues in man:aacraid[4]. gitref:572e3575dba[repository=src] +A bug preventing a virtual guest using man:virtio_random[8] from shutting +down or rebooting has been fixed. gitref:fa67c45842bb[repository=src] + +The man:ice[4] driver has been updated to 1.34.2-k, adding firmware logging +and initial DCB support. +gitref:a0cdf45ea1d1[repository=src] +(Sponsored by Intel Corporation) + +The man:mgb[4] network interface driver has been added, with support for +Microchip devices LAN7430 PCIe Gigabit Ethernet controller with PHY and +LAN7431 PCIe Gigabit Ethernet controller with RGMII interface. +The driver has a number of caveats and limitations, but is functional. +gitref:e0262ffbc6ae[repository=src] +(Sponsored by The FreeBSD Foundation) + +Support has been added for link status, media, and VLAN MTU with the +man:cdce[4] device. gitref:973fb85188ea[repository=src] + +The man:iwlwifi[4] driver along with a LinuxKPI 802.11 compatibility layer was added to supplement man:iwm[4] for newer Intel Wireless chipsets. +(Sponsored by The FreeBSD Foundation) + [[drivers-platform]] === Supported Platforms @@ -173,6 +289,13 @@ [[storage-general]] === General Storage +[[storage-zfs]] +=== ZFS Changes + +ZFS has been upgraded to OpenZFS release 2.1.4. +OpenZFS release notes can be found at +https://github.com/openzfs/zfs/releases[https://github.com/openzfs/zfs/releases]. + [[storage-nfs]] === NFS Changes @@ -225,6 +348,29 @@ Fix boot1 and loader on powerpc64le. gitref:8a62b07bce7[repository=src] +[[boot-process]] +=== Other Boot Changes + +Performance improvements have been made to man:loader[8], man:nvme[4], +man:random[4], man:rtsold[8], and x86 clock calibration, which collectively +yield a significant speedup in system boot time. +Configuration changes on the EC2 platform provide additional benefits, +resulting in {releaseCurrent} booting over twice as fast as {releasePrev}. +(Sponsored by https://www.patreon.com/cperciva[https://www.patreon.com/cperciva]) + +EC2 images are now built by default to boot using UEFI instead of legacy BIOS. +Note that UEFI is not supported by Xen-based EC2 instances or by +"bare metal" EC2 instances. gitref:65f22ccf8247[repository=src] +(Sponsored by https://www.patreon.com/cperciva[https://www.patreon.com/cperciva]) + +Support was added for recording EC2 AMI Ids in the AWS Systems +Manager Parameter Store. +FreeBSD will be using the public prefix +`/aws/service/freebsd`, resulting in parameter names which look like +`/aws/service/freebsd/amd64/base/ufs/13.1/RELEASE`. +gitref:242d1c32e42c[repository=src] +(Sponsored by https://www.patreon.com/cperciva[https://www.patreon.com/cperciva]) + [[network]] == Networking