Those variables seem not being used in this article?

They're not necessarily public domain, they're just publicly released.

I wouldn't say secteam is part of the re process at all; and security patches and integration into release branches is after the release is out not "during" the RE process

Check them against what?

maybe semi-automatically?

biweekly?

We probably need to clarify the targets in release/Makefile vs. the release/release.sh script and thermite here; e.g. TARGET and TARGET_ARCH are for the first one

parallel builds are possible with or without MAKEOBJDIRPREFIX
the object files are placed in a subdir of MAKEOBJDIRPREFIX (/usr/obj if not set) based on the src tree path and target arch and it's that aspect that allows parallel builds of mutliple architectures

Probably choose an example that isn't the default

These are not release artifact targets. I'm not sure there's a reason to document DESTDIR for release artifacts?

Not sure these belong with release artifact builds either?

And same here. Probably all of these belong in a different document?

NO_PROFILE is an error (see 20200212 UPDATING)
Profile support is gone entirely for some time

The double/triple negative here is confusing: release builds disable the feature that disables the logic that strips build timestamps

it's probably better to explain that historically some build artifacts included build timestamps, user information etc. and that has now been removed by default. WITHOUT_REPRODUCIBLE_BUILD restores those non-reproducible things

Note that for ISO and memstick release artifacts this is an internal detail between release/Makefile's targets and installworld et. al. The user doesn't have to set this - it is explicitly passed to the make invocations (distributeworld, packageworld, distributekernel, packagekernel, installworld, installkernel, distribution) in release/Makefile.

This shouldn't be the case - any META_MODE-induced non-reproducibility is a bug to fix. Are there actual examples of this?

is it fair to say that make release is the make target to build all release artifacts for one given TARGET/TARGET_ARCH pair?

We should also have an example showing this or at least explicitly point out that this is a target in release/Makefile not the top-level

?

something like "for each TARGET/TARGET_ARCH pair, release.sh:"?

At least prior to 15.0.

base.txz?

I had a discussion with @cperciva and he mentioned that secteam@ actually generates related freebsd-update deltas for the BET and RC releases and users can actually update to these intermediate releases either for testing or whatever the purpose is. So I have updated the description to match to that statement.

See above comments. This line has also been updated to address this.

This is something I will need to recheck. I am more than confirmed that I have faced this issue.

Perhaps add: In many cases this work is done by FreeBSD developer who are also developers of the upstream projects.

s/releng@/re@/ (here and elsewhere)

Mismatched punctuation; if you use a dash after "teams" you should have one after "clusteradm".

s/ in coordination with clusteradm//, there's coordination about the pkg repositories but not about the final release artifacts.

s/roadmap/roadmap (typically in September of every odd-numbered year)/

s/a code slush/a 2 week code slush/

Since you mentioned regressions earlier, perhaps add "Any regressions which landed in the stable branch since the previous release will ideally be fixed by this point."

Process has changed. Replace this with: "During this phase, developers must request that the Release Engineering Team merge any changes from stable/XX into the releng/XX.Y branch."

I'd change this to say "security advisories and errata notices", since doing a X.Y.Z-RELEASE is extremely rare.

s/Releases/Builds/

I don't want people to confuse the weekly snapshots with releases.

s/fortnight/week/

Maybe also mention that they can be useful for tracking down when regressions were introduced.

This is only possible using EC2 images (since we keep those forever while the weekly snapshots get deleted from download.freebsd.org after two weeks) but I've done it a few times.

I usually call these minor releases.

Major vs minor releases?

Should probably link to https://www.freebsd.org/platforms/ somewhere in here.

Include "boot loader" in the list here since that's a common point of confusion.

"On most architectures, the default configuration file is GENERIC, but custom configurations can be specified through the KERNCONF variable."

Since on powerpc64 it's GENERIC64.

Internally, `make release`:

* Runs `installworld`, `installkernel`, and `distribution` or `packages` into a release-specific layout.

since the word "runs" is not relevant to the other bullet points.

s/a separate/an extra/

since Thermite calls into release.sh.

s/PkgBase/Pkgbase/

No camels here.

There are also "set" packages such as FreeBSD-set-base which can be used to quickly select a useful collection of packages.