OpenBSD 4.4 Release !

| 1 November 2008 | 0 Comments

What’s New

This is a partial list of new features and systems included in OpenBSD 4.4. For a comprehensive list, see the changelog leading to 4.4.

  • New/extended platforms:
    • OpenBSD/sparc64
      Much more platform support. Machines using the UltraSPARC IV/T1/T2 and Fujitsu SPARC64-V/VI/VII are now supported.
    • OpenBSD/socppc
      For machines based on the Freescale MPC8349E System-on-Chip (SoC) platform that use Das U-Boot as a boot loader.
    • OpenBSD/landisk
      Added shared libraries support.
  • Improved hardware support, including:
    • Several new/improved drivers for sensors, including:
      • New fins(4) driver for Fintek F71805F LPC Super I/O Hardware Monitor.
      • New andl(4) driver for Andigilog aSC7611 Hardware Monitor.
      • New kate(4) driver for AMD K8 embedded temperature sensor.
      • New sdtemp(4) driver for JEDEC JC-42.4 memory module thermal sensors.
      • New adtfsm(4) driver for Analog Devices ADT7462.
      • New km(4) driver for AMD K10 (Phenom, Opteron Barcelona et alia) embedded temperature sensor.
      • The it(4) driver now has better probing procedure.
      • The lmtemp(4) driver now support LM76.
    • Support for the Intel G33 and G35 chipsets in agp(4).
    • New lii(4) driver for Attansic L2 10/100 Ethernet devices.
    • Preliminary support for UVC USB webcams: uvideo(4) and video(4).
    • The openchrome(4) driver replaces the via X.Org driver for VIA video cards.
    • AMD Geode video card driver for X.Org.
    • New vmt(4) driver which implements VMware Tools.
    • New auglx(4) driver for AMD Geode LX CS5536 integrated AC’97 audio.
    • New ix(4) driver for Intel 82598 PCI Express 10Gb Ethernet.
    • New acpithinkpad(4) driver provides additional ACPI support for IBM/Lenovo ThinkPad laptops.
    • New acpiasus(4) driver provides additional ACPI support for ASUS laptops, including the EeePC.
    • New gecko(4) driver supporting the GeckoBOA BC GSC+ port found on some hppa systems.
    • New tsec(4) driver supporting the Freescale Triple Speed Ethernet Controller.
    • The re(4) driver now supports RTL8102E and RTL8168 devices.
    • The cas(4) driver now supports National Semiconductor Saturn devices.
    • The pccom(4) driver has been removed; all platforms use com(4) now.
    • cardbus(4) and pcmcia(4) now work on most sparc64 machines.
    • The udcf(4) driver now supports mouseCLOCK USB II devices.
    • The msk(4) driver now supports 88E8040T devices.
    • The ath(4) driver now supports many more Atheros wireless devices.
    • The ciss(4) driver now supports HP Smart Array P212, P410, P411, P411i and P812 devices.
    • The uftdi(4) driver now supports ELV Elektronik and FTDI 2232L devices.
    • The umsm(4) driver now supports Option GlobeTrotter 3G+, Huawei E220 and more HSDPA MSM devices.
    • The ubsa(4) driver now supports ZTE CMDMA MSM devices.
    • The axe(4) driver now supports Apple USB A1277 devices.
    • The puc(4) driver now supports more Netmos devices.
    • The mgx(4) driver now supports 2D acceleration on selected boards.
    • The isp(4) driver firmware for some controllers has been updated.
    • The isp(4) driver no longer hangs during probe on some machines.
    • The bge(4) driver has better support for BCM5704 chipsets in fiber mode which helps with some blade servers.
    • The bge(4) driver has better support for the BCM5906 chipset on some systems.
    • The bge(4) driver has much better support for PCI Express chipsets resulting in much faster transmit performance.
    • The bge(4) driver has support for the BCM5714/5715/5780 chipsets using fiber interfaces.
    • The bnx(4) driver has support for the BCM5706/5708 chipsets using fiber interfaces.
    • The ral(4) driver now supports Ralink Technology RT2700 devices.
    • Serial ports other than com0 can now be used for console on amd64.
    • The serial console on i386 and amd64 has improved compatibility with server management cards.
  • New tools:
    • rpc.statd(8), the host status monitoring daemon for use with the NFS file locking daemon.
    • Initial import of ypldap(8), a drop-in replacement for ypserv to glue in an LDAP directory for get{pw,gr}ent family of functions.
    • Deprecated slattach(8) and nmeaattach(8) in favor of ldattach(8).
    • Import of tcpbench(1), a small TCP benchmarking tool.
  • New functionality:
    • aucat(1) is now able to play and record audio in full-duplex, mix unlimited number of streams, handle up to 16 channels, resample streams on the fly, support various 24-bit and 32-bit encodings and does format conversions on the fly.
    • httpd(8) now supports IPv6.
    • dhcpd(8) now supports basic synchronization of the /var/db/dhcpd.leases file to allow running multiple instances for redundancy.
    • WPA/WPA2-PSK support for several models of wireless cards.
    • rpc.lockd(8) now supports NLMv4 and does actually do locking.
    • ftp(1) now supports recursive mget transfers.
    • ftp(1) now uses keep alive packets by default.
    • ftp(1) now accepts empty passwords in URLs.
    • locate(1) now supports -b flag to perform search only on the last component of the path.
    • Allow cdio(1) in TAO mode to set the write speed.
    • cdio(1) no longer blanks media twice.
    • Add ability in cdio(1) to determine media capabilities and make it figure out if media supports TAO or blanking.
    • Initial version of softraid(4) crypto support.
    • dhcpd(8) now groks options tftp-config-file and auto-proxy-script in dhcpd.conf(5).
    • dhclient(8) option handling much more resistant to abuse.
    • dhclient(8) now aware of interface link state and reacts to changes.
    • DIOCRLDINFO, DIOCGPDINFO, and DIOCGPART support added to block devices previously lacking it.
    • disklabel(8) no longer supports the ‘-r’ option, and obtains all disklabel information via ioctl’s.
    • disklabel(8) no longer suggests offsets and sizes that would result in partitions starting or ending outside the OpenBSD section of the disk.
    • disklabel(8) now correctly reads back the ‘vendor’ field from text disklabels.
    • disklabel(8) editor mode ‘?’ and ‘p’ commands are more compact and the ‘l’ command has been added to produce previous verbose output.
    • I/O’s outside the bounds of the RAW_PART are now prevented, allowing proper detection of invalid I/O’s.
    • USB floppies now have a valid cylinder count calculated, rather than 0.
    • newfs(8) can now create filesystems on devices with sector sizes other than 512, although such filesystems cannot yet be read.
    • rtadvd(8) now revokes its privileges and runs as its own user _rtadvd.
    • scsi(4) probing displays less useless verbiage and fewer spurious error messages.
    • st(4) devices can now be detached.
    • ATAPI devices are now identified as such, rather than as SCSIn devices.
    • SATA tape drives now work.
    • scsi(4) probing now displays the ID of the initiator on the bus.
    • scsi(4) debug capabilities improved to show commands and input or output data as appropriate.
    • scsi(4) probing makes better use of the TEST UNIT READY command to clear errors and allow successful attachments.
    • scsi(4) probing can now find more fibre channel attached devices.
    • Several mbuf pool cache corruption issues were fixed.
    • identd(8) now supports IPv6 in standalone mode.
    • cal(1) now shows week numbers too.
    • In pf(4), implement a sloppy tcpstate tracker which does not look at sequence numbers at all.
    • pf(4) rule accounting now has a counter to record how many states in total have been created by a rule.
    • The kill states feature in pfctl(8) now supports two additional match targets: Kill by rule label or state ID.
    • Make relayd(8) use sloppy pf(4) state keeping for routed sessions (Direct Server Return).
    • Added support in relayd(8) for transparent L7 forwarding in relays.
    • Added support for dynamic IPv6-to-IPv4 or IPv4-to-IPv6 TCP relays in relayd(8).
    • Improved the DNS mode and use OpenBSD’s Id shuffle code from named(8). in relayd(8).
    • Extend awk(1) with bitwise operations.
    • Updated the display code for systat(1) which adds views for pf(4) states, rules and queues.
    • Imported initial support for IEEE 802.3ad/LACP in trunk(4).
  • Assorted improvements and code cleanup:
    • A greatly changed buffer cache subsystem which maps cache pages only when in use, resulting in improved filesystem performance, and allowing for the effective use of a much larger buffer cache.
    • A greatly improved implementation of malloc(3), the general purpose memory allocator, which catches more mistakes, reduces address space fragmentation, and is faster.
    • The statfs(2) system call has been enhanced to support large filesystems.
    • The strtof(3) function has been added to libc.
    • A lot of work has been done on libm to add several functions towards more C99 compliance.
    • Lots of features have been implemented in OpenCVS, which can now be used to do some real work.
    • New APIs for arc4random(3), one to fill a buffer with random numbers and the other to return a uniformly distributed random number without bias.
  • Install/Upgrade process changes:
    • A new tool sysmerge(8), derived from the old mergemaster port, makes it easier to merge configuration files changes during an upgrade.
    • Fully support OpenBSD inside extended partitions on i386 and amd64.
    • During installation ‘dhcp’ is now the initial default answer during network configuration.
    • Fetching sets via FTP more reliable due to automatic use of keep alive.
    • Fetching sets via NFS no longer hangs retrying a non-functional mount.
    • Installation ensures hostname.* files are installed with mode 600.
    • Serial console configuration now automatically detects speed.
    • Serial console support extended to all architectures.
    • Partition size display no longer limited to 32 bit sizes.
    • Partition sizes now scaled and formatted to use human readable units.
    • ntpd(8) configuration questions improved.
    • Sparc miniroot root disk detection fixed.
    • Invocations of disklabel(8) by the scripts are now less verbose.
  • OpenSSH 5.1:
    • New experimental fingerprint ASCII art visualisation system for easier verification of remote keys.
    • Added chroot(2) support for sshd(8).
    • Added an extended test mode (-T) to sshd(8).
    • Make ssh(1) support negation of groups in a “Match group” block.
    • Increased the ephemeral key size in protocol1 from 768 to 1024 bits.
    • Better tests of primes in /etc/moduli
    • Refuse to read .shosts or authorized_keys files that are not regular files.
    • Enable ~ escapes for multiplex slave sessions.
    • Support CIDR address matching in Match blocks and authorized_keys from=”…” stanzas.
    • Make port forwarding code try additional addresses when connecting to a destination whose DNS name resolves to more than one address.
    • Make the maximum number of ssh(1) sessions run-time controllable via MaxSessions in ssh_config(5).
    • ssh-keyscan(1) now defaults to RSA protocol 2 keys, instead of RSA1.
    • Added an extension to sftp protocol to implement statvfs(3)-like operations and add a df command to sftp(1).
    • Disable execution of ~/.ssh/rc for sessions where a command has been forced by the sshd_config ForceCommand directive.
    • And several bug fixes and performance enhancements.
  • Over 5205 ports, minor robustness improvements in package tools.
  • Many pre-built packages for each architecture:
    • i386: 5033
    • sparc64: 4862
    • alpha: 4852
    • sh: 1285
    • amd64: 4940
    • powerpc: 4466
    • sparc: 3381
    • arm: 4018
    • hppa: 1595
    • vax: 1954
    • mips64: 3099

    Some highlights:

    • Gnome 2.20.3.
    • GNUstep 1.14.2.
    • KDE 3.5.9.
    • Mozilla Firefox 2.0.0.16 and 3.0.1.
    • Mozilla Thunderbird 2.0.0.16.
    • MySQL 5.0.51a
    • OpenMotif 2.3.0.
    • OpenOffice.org 2.4.1.
    • PostgreSQL 8.3.3.
    • Xfce 4.4.2.
  • As usual, steady improvements in manual pages and other documentation.
  • The system includes the following major components from outside suppliers:
    • Xenocara (based on X.Org 7.3 + patches, freetype 2.3.5, fontconfig 2.4.2, Mesa 7.0.3, xterm 234 and more)
    • Gcc 2.95.3 (+ patches) and 3.3.5 (+ patches)
    • Perl 5.8.8 (+ patches)
    • Our improved and secured version of Apache 1.3, with SSL/TLS and DSO support
    • OpenSSL 0.9.7j (+ patches)
    • Groff 1.15
    • Sendmail 8.14.3, with libmilter
    • Bind 9.4.2-P2 (+ patches)
    • Lynx 2.8.5rel.4 with HTTPS and IPv6 support (+ patches)
    • Sudo 1.6.9p17
    • Ncurses 5.2
    • Latest KAME IPv6
    • Heimdal 0.7.2 (+ patches)
    • Arla 0.35.7
    • Binutils 2.15 (+ patches)
    • Gdb 6.3 (+ patches)

Download :

Tags: ,

Category: Catatan Harian

Leave a Reply