Page MenuHomeFreeBSD
Files F145321770

D53857.diff
No OneTemporary
Actions

D53857.diff
View Options

diff --git a/website/content/en/releases/15.0R/relnotes.adoc b/website/content/en/releases/15.0R/relnotes.adoc
--- a/website/content/en/releases/15.0R/relnotes.adoc
+++ b/website/content/en/releases/15.0R/relnotes.adoc
@@ -54,6 +54,18 @@
They may also list changes to major ports/packages or release engineering practices.
Clearly the release notes cannot list every single change made to FreeBSD between releases; this document focuses primarily on security advisories, user-visible changes, and major architectural improvements.
+FreeBSD {releaseCurrent} introduces full NO_ROOT build and image support across the base system and release infrastructure.
+All stages of the release process including `make installworld`, package staging, and image generation can now be performed entirely without requiring root privileges.
+This refactoring removes the need for privileged operations such as device-node creation or man:chown[8] transitions during builds, improving security and isolation within build environments.
+The `NO_ROOT` framework allows developers and automated systems to build release artifacts safely under unprivileged accounts or in constrained CI sandboxes, reducing attack surface and simplifying continuous integration.
+
+Building on this foundation, FreeBSD {releaseCurrent} also delivers fully reproducible builds for the base system and core release images.
+The build pipeline has been audited and modified to eliminate nondeterminism like normalizing timestamps, filesystem ordering, and metadata, and ensuring consistent environment variables and toolchain behavior.
+As a result, binaries and images built from identical source commits now produce bit-for-bit identical results across machines and environments.
+Release artifacts such as VM images, cloud images, and DVD installers that include third-party packages are not yet fully reproducible, since not all external software supports reproducible builds.
+However base system artifacts such as the ISO, boot-only, and memstick images, which contain no third-party packages, are completely reproducible.
+This advance strengthens supply-chain transparency, enables independent verification of release artifacts, and marks a major milestone in FreeBSD's long-term reproducibility initiative.
+
[[upgrade]]
== Upgrading from Previous Releases of FreeBSD

File Metadata

Mime Type
text/plain
Expires
Thu, Feb 19, 9:44 AM (11 h, 6 m)
Storage Engine
blob
Storage Format
Raw Data
Storage Handle
26359781
Default Alt Text
D53857.diff (2 KB)

Event Timeline