ViewVC Help
View File | Revision Log | Show Annotations | Download File | View Changeset | Root Listing
root/src/trunk/UPDATING
Revision: 1456
Committed: Sun Apr 6 06:49:18 2008 UTC (16 years, 1 month ago) by laffer1
File size: 16253 byte(s)
Log Message: 
Import OpenSSH 4.9p1

File Contents

# Content
1 Updating Information for MidnightBSD users
2
3 Items affecting the mports and packages system can be found in
4 /usr/mports/UPDATING.
5
6 20080406:
7 Import OpenSSH 4.9p1
8
9 20080322:
10 The default umask was changed to 022.
11
12 /usr/X11R6 paths were removed from several config files.
13
14 .mkshrc files are now installed for root.
15
16 20080316:
17 FIx a problem with gif0 tunnels and neighbors with IPV6.
18
19 20080312:
20 Add lndir from X.org. This aides in the porting of MirPorts.
21
22 New OS versions were added to the mapage code (groff)
23
24 20080310:
25 Correct a buffer overflow in ppp.
26
27 20080308:
28 Remove /usr/X11R6 from manpath config.
29
30 20080307:
31 Atheros driver no longer has several options set
32 which corrects building in tinderbox on all three platforms.
33
34 Added a new macro to sx.h which returns true if the current
35 thread holds an exclusive lock on a specifix sx.
36
37 Removed OS/2's HPFS file system. It's not maintained and
38 I don't know anyone using OS/2 or ecomstation these days.
39 My copy is in the closet collecting dust.
40
41 20080306:
42 Synced tinderbox with FreeBSD. Modified it for MidnightBSD.
43 Developers can now use it to check src builds.
44
45 20080303:
46 Add mksh to /etc/shells, made some adjustments to options
47 for mksh builds per suggestion upstream.
48
49 USB HID table updated with modern hardware list.
50
51 Updated BSD family true (we're not in there yet)
52
53 iso3166 file updated and import of tzdata2007k for
54 new time zones.
55
56 Updated mksh to latest version R33.
57
58 20080228:
59 Remplaced the random IP id generation code with a new
60 version by Amit Klein.
61
62 20080221:
63 Sendfile write only permissions fix.
64
65 Removed some HPFS and PC98 code.
66
67 iso639 file sycned with DragonFly.
68
69 20080128:
70 Changed NTP configuration so that ips aren't cached
71 so multiple servers are used.
72
73 Fix an issue with fork() in libpthread.
74
75 20080121:
76 Add virtualization detection to set the HZ rate
77 according to a VM present. VMWare and Parallels
78 should work better like this.
79
80 Change to full x11 install in sysinstall. Add
81 xorg 7 support.
82
83 20080115:
84 Fix the handling of PTY's. CVE-2008-0216
85
86 20080105:
87 mport delete code added, USE_MPORT_TOOLS knob aded.
88
89 20080101:
90 Happy New Year
91
92 20071123:
93 Update sendmail to 8.14.2
94
95 20071120:
96 Update system compiler to gcc 3.4.6.
97
98 20071023:
99 Updated mksh to R31d.
100
101 20070911:
102 Updated mksh to version R31b.
103
104 Fixed stderr output in libpthread. Previously it was
105 written to stdout.
106
107 20070831:
108 Added dot.mkshrc file to support the recent change to
109 mksh from OpenBSD's ksh derived from pdksh.
110
111 Added new firewall configuration. ipfw is enabled by default
112 with a "desktop" configuration. Consult /etc/rc.firewall
113 or ipfw show to see the ruleset used. You can disable
114 ipfw by setting firewall_enable="NO" in /etc/rc.conf This
115 change only effects IPv4. IPv6 does not have a firewall
116 enabled by default.
117
118 20070814:
119 Removed GNU tar source. We've been using BSD tar
120 for awhile.
121
122 20070806:
123 Finished removing umapfs and autofs from the tree.
124
125 20070804:
126 BIND and Tcpdump have been patched for recent vulnerabilities.
127
128 We switched to BSD cpio (pax).
129
130 20070719:
131 Imported cpdup from DragonFly as /bin/cpdup
132
133 20070716:
134 Update GNU cpio to 2.8.
135
136 20070410:
137 cvs was updated to 1.12.13. cvsbug was removed.
138 cvs now behaves similarly to DragonFly's cvs with
139 most of their local changes.
140
141 20070409:
142 RELENG_0_1 was created. More aggresive changes will
143 continue here.
144
145 20070406:
146 Back out propolice. propolice caused several problems
147 with our threading libraries libthr and libpthread.
148 curthread was often NULL after the patch and many
149 multithreaded applications would crash. We plan to
150 work on either bringing in gcc 4.1 or developing a new
151 patch which also corrects our threading issues later.
152
153 It is more important to have a stable system for our
154 mport work and other projects at this time.
155
156 This is not a clean removal. It is recommended that you
157 have a recently SNAP CD handy. You can either reinstall
158 or perform a make buildworld and make buildkernel and
159 make installkernel. Reboot on the cd and copy the contents
160 of /bin, /sbin, /lib, /libexec, and /usr/bin, /usr/sbin,
161 /usr/lib, and /usr/libexec to the respective directories on
162 your disk. Then you should be able to boot into single user
163 mode and run make installworld. You will need to run
164 chflags noschg on some of the files if you can't overwrite
165 them.
166
167 You will get __guard missing errors since we had to remove
168 this from libc.
169
170 You will need to rebuild any ports built while propolice was
171 installed.
172
173 20070401:
174 Importing propolice into MidnightBSD. Propolice is going to
175 provide us with much greater security and stability in the
176 long run. If upgrading from a pre-propolice system, please
177 follow the these instructions:
178
179 cd /usr/src/lib/libc && make obj && make && make install
180 cd /usr/src/gnu/usr.bin/cc && make obj && make && make install
181 cd /usr/src/lib/libpthread && make obj && make && make install
182 cd /usr/src/lib/libthr && make obj && make && make install
183 buildworld and kernel
184
185 It is adviced that any mports which were installed and/or built
186 prior to the propolice update also be updated. If any errors
187 or issue are encounted, please contact security@midnightbsd.org
188 and we will be sure to investigate and come up with an expeditious
189 fix.
190
191 20070314:
192 Remove send-pr from src.
193
194 Switch to NetBSD's gzip.
195
196 Bump MBSD minor revision.
197
198 20070313:
199 Imported OpenSSH 4.6p1.
200
201 Imported FreeBSD's libarchive and updated tar to work with it.
202
203 Disabled debug statements cluttering up /var/log/messages for
204 the tcp autobuf patch applied previously.
205
206 20070312:
207 Synced several audio changes from FreeBSD 6.1. Removed the
208 BSD Daemon files from src/share.
209
210 20070308:
211 Added mfi which supports LSI Logic MegaRAID SAS devices including
212 the Dell perc5i.
213
214 20070206:
215 Imported OpenBSD's sudo into source. Please install
216 /usr/src/usr.bin/sudo/lib first before building.
217
218 Those who install from a snapshot after this date
219 will not be effected.
220
221 20070119:
222 Added audit group. Be sure to add audit to your /etc/group file
223 before installing world.
224
225 hostapd was updated to 0.4.8.
226
227 An accidental commit in usr.sbin/bluetooth/hccontrol was fixed to
228 unbreak world.
229
230 wpa_supplicant was updated.
231
232 For stability and compatibility reasons, it was decided that MidnightBSD
233 sync with FreeBSD 6.1 Release. Nearly every change between the original
234 fork date of February 24, 2006 and the release of FreeBSD 6.1 in May
235 2006 will be merged. Beyond this, MidnightBSD will be a "real" fork and
236 will not sync every little change with FreeBSD.
237
238 20061231:
239 Updated COPYRIGHT for 2007.
240
241 Updated and bumped libutil after importing NetBSD efun(3) functions.
242
243 Added MidnightBSD_version and bumped the FreeBSD version as we've
244 synced all commits between the fork and that version. It is now safe
245 to assume MidnightBSD is compatible with FreeBSD RELENG_6 from
246 Feb 26, 2006.
247
248 Added spell(1) and deroff(1) from NetBSD. Also added additional
249 dict files to work with it. /usr/share/dict/american,
250 /usr/share/dict/british and /usr/share/dict/special/math
251
252 Numerous man page and bug fixes.
253
254 20061226:
255 Setup /usr/share/examples/cvsup SUPfiles for the new
256 MidnightBSD CVSup server.
257
258 Fix a bug in burncd where it would continue forever while
259 erasing CDRW media.
260
261 Add csup to /usr/bin. csup is a CVSup replacement written
262 in C.
263
264 Fixed a bug with bsnmpd build from Oct 30.
265
266 Corrected some race conditions and fixed a few bugs in
267 geom. Imported changes from FreeBSD RELENG_6.
268
269 20061225:
270 Fixed a typo in src/lib/libc/sparc64/fpu/fpu_implode.c
271 that caused long double to long and long long
272 conversion of negative numbers to always result in -1.
273
274 20061221:
275 Fixed acpi_battery.c to not report an ERROR if no
276 batteries are present.
277
278 Performed some minor updates on the RL and RE NIC drivers.
279 RL should no longer panic when trying to print errors.
280
281 Corrected a bug with TTY.
282
283 20061218:
284 Corrected a bug with libpthread where newly created suspended
285 threads don't get scheduled.
286
287 20061206:
288 Fixed a typo with the firewire security patch.
289
290 20061129:
291 Minor cleanups to utilities in bin.
292
293 Fixed msdos file system short file name behavior to match
294 FreeBSD.
295
296 20061031:
297 Updated man pages in section 7.
298
299 20061030:
300 Updated sys/dev/drm to support intel 915 and radeon
301 r300 cards properly.
302
303 Synced snmpd with FreeBSD-stable.
304
305 Fixed a bug in rm which could cause data loss.
306
307 20061027:
308 Added Intel ICH8 and nForce 5 support to ATA. cam, mpt,
309 random, kbdmux, atkbd, and usb were updated. Changes
310 to clearing registers on SSE enabled processors (i386)
311 commited.
312
313 lukemftpd updated.
314
315 openssh rc script was altered which effects initial
316 seeding.
317
318 20061014:
319 Workaround for em driver problem on shared IRQ.
320
321 Started removal of alpha support.
322
323 20061013:
324 ATA driver was updated. USB/USB1/USB2 types added.
325
326 20061010:
327 OpenSSH was updated to 4.4p1.
328
329 20060909:
330 OpenNTPD was added to MidnightBSD. Run make delete-old to remove
331 the old ntpd daemon.
332
333 cat has a new option -D which allows you to timestamp output
334 on a per line basis.
335
336 The kernel has a keyboard mux which allows you to have multiple
337 keyboard connected simultaneously. USB keyboard support was also
338 improved with this patch.
339
340 The Intel em driver was updated. Network performance was greatly
341 increased on many systems. Additional models are supported.
342
343 The ATA driver was patched to fix a potential deadlock.
344
345 Bind was patched to fix a potential denial of service condition.
346
347 20060817:
348 ksh has been added to the base system. If you previously had
349 the port installed, it will be overwritten on the next buildworld.
350
351
352
353 To build a kernel
354 -----------------
355 If you are updating from a prior version of MidnightBSD (even one just
356 a few days old), you should follow this procedure. With a
357 /usr/obj tree with a fresh buildworld,
358 make -DALWAYS_CHECK_MAKE buildkernel KERNCONF=YOUR_KERNEL_HERE
359 make -DALWAYS_CHECK_MAKE installkernel KERNCONF=YOUR_KERNEL_HERE
360
361 To test a kernel once
362 ---------------------
363 If you just want to boot a kernel once (because you are not sure
364 if it works, or if you want to boot a known bad kernel to provide
365 debugging information) run
366 make installkernel KERNCONF=YOUR_KERNEL_HERE KODIR=/boot/testkernel
367 nextboot -k testkernel
368
369 To just build a kernel when you know that it won't mess you up
370 --------------------------------------------------------------
371 This assumes you are already running a 6.X system. Replace
372 ${arch} with the architecture of your machine (e.g. "i386",
373 "amd64", "ia64", "pc98", "sparc64", etc).
374
375 cd src/sys/${arch}/conf
376 config KERNEL_NAME_HERE
377 cd ../compile/KERNEL_NAME_HERE
378 make depend
379 make
380 make install
381
382 If this fails, go to the "To build a kernel" section.
383
384 To rebuild everything and install it on the current system.
385 -----------------------------------------------------------
386 # Note: sometimes if you are running current you gotta do more than
387 # is listed here if you are upgrading from a really old current.
388
389 <make sure you have good level 0 dumps>
390 make buildworld
391 make kernel KERNCONF=YOUR_KERNEL_HERE
392 [1]
393 <reboot in single user> [3]
394 mergemaster -p [5]
395 make installworld
396 make delete-old
397 mergemaster [4]
398 <reboot>
399
400
401 To cross-install current onto a separate partition
402 --------------------------------------------------
403 # In this approach we use a separate partition to hold
404 # current's root, 'usr', and 'var' directories. A partition
405 # holding "/", "/usr" and "/var" should be about 2GB in
406 # size.
407
408 <make sure you have good level 0 dumps>
409 <boot into -stable>
410 make buildworld
411 make buildkernel KERNCONF=YOUR_KERNEL_HERE
412 <maybe newfs current's root partition>
413 <mount current's root partition on directory ${CURRENT_ROOT}>
414 make installworld DESTDIR=${CURRENT_ROOT}
415 cd src/etc; make distribution DESTDIR=${CURRENT_ROOT} # if newfs'd
416 make installkernel KERNCONF=YOUR_KERNEL_HERE DESTDIR=${CURRENT_ROOT}
417 cp /etc/fstab ${CURRENT_ROOT}/etc/fstab # if newfs'd
418 <edit ${CURRENT_ROOT}/etc/fstab to mount "/" from the correct partition>
419 <reboot into current>
420 <do a "native" rebuild/install as described in the previous section>
421 <maybe install compatibility libraries from src/lib/compat>
422 <reboot>
423
424
425 To upgrade in-place from 5.x-stable or higher to 6.x-stable
426 -----------------------------------------------------------
427 <make sure you have good level 0 dumps>
428 make buildworld [9]
429 make kernel KERNCONF=YOUR_KERNEL_HERE [8]
430 [1]
431 <reboot in single user> [3]
432 mergemaster -p [5]
433 make installworld
434 make delete-old
435 mergemaster -i [4]
436 <reboot>
437
438 Make sure that you've read the UPDATING file to understand the
439 tweaks to various things you need. At this point in the life
440 cycle of current, things change often and you are on your own
441 to cope. The defaults can also change, so please read ALL of
442 the UPDATING entries.
443
444 Also, if you are tracking -current, you must be subscribed to
445 freebsd-current@freebsd.org. Make sure that before you update
446 your sources that you have read and understood all the recent
447 messages there. If in doubt, please track -stable which has
448 much fewer pitfalls.
449
450 [1] If you have third party modules, such as vmware, you
451 should disable them at this point so they don't crash your
452 system on reboot.
453
454 [3] From the bootblocks, boot -s, and then do
455 fsck -p
456 mount -u /
457 mount -a
458 cd src
459 adjkerntz -i # if CMOS is wall time
460 Also, when doing a major release upgrade, it is required that
461 you boot into single user mode to do the installworld.
462
463 [4] Note: This step is non-optional. Failure to do this step
464 can result in a significant reduction in the functionality of the
465 system. Attempting to do it by hand is not recommended and those
466 that pursue this avenue should read this file carefully, as well
467 as the archives of freebsd-current and freebsd-hackers mailing lists
468 for potential gotchas.
469
470 [5] Usually this step is a noop. However, from time to time
471 you may need to do this if you get unknown user in the following
472 step. It never hurts to do it all the time.
473
474 [8] In order to have a kernel that can run the 5.x binaries
475 needed to do an installworld, you must include the COMPAT_FREEBSD5
476 option in your kernel. Failure to do so may leave you with a system
477 that is hard to boot to recover. A similar kernel option COMPAT_FREEBSD5
478 is required to run the 5.x binaries on more recent kernels.
479
480 Make sure that you merge any new devices from GENERIC since the
481 last time you updated your kernel config file.
482
483 [9] When checking out sources, you must include the -P flag to have
484 cvs prune empty directories.
485
486 If CPUTYPE is defined in your /etc/make.conf, make sure to use the
487 "?=" instead of the "=" assignment operator, so that buildworld can
488 override the CPUTYPE if it needs to.
489
490 MAKEOBJDIRPREFIX must be defined in an environment variable, and
491 not on the command line, or in /etc/make.conf. buildworld will
492 warn if it is improperly defined.
493
494 Copyright information:
495
496 Copyright 1998-2005 M. Warner Losh. All Rights Reserved.
497
498 Redistribution, publication, translation and use, with or without
499 modification, in full or in part, in any form or format of this
500 document are permitted without further permission from the author.
501
502 THIS DOCUMENT IS PROVIDED BY WARNER LOSH ``AS IS'' AND ANY EXPRESS OR
503 IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
504 WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
505 DISCLAIMED. IN NO EVENT SHALL WARNER LOSH BE LIABLE FOR ANY DIRECT,
506 INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
507 (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
508 SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
509 HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
510 STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING
511 IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
512 POSSIBILITY OF SUCH DAMAGE.
513
514 If you find this document useful, and you want to, you may buy the
515 author a beer.
516
517 Contact Warner Losh if you have any questions about your use of
518 this document.
519
520 $FreeBSD: src/UPDATING,v 1.416.2.18 2006/02/22 11:51:57 yar Exp $
521 $MidnightBSD: src/UPDATING,v 1.32 2008/03/22 06:21:11 laffer1 Exp $

Properties

Name Value
cvs2svn:cvs-rev 1.33