Annotation of www/69.html, Revision 1.3
1.1 deraadt 1: <!doctype html>
2: <html lang=en id=release>
3: <meta charset=utf-8>
4:
5: <title>OpenBSD 6.9</title>
6: <meta name="description" content="OpenBSD 6.9">
7: <meta name="viewport" content="width=device-width, initial-scale=1">
8: <link rel="stylesheet" type="text/css" href="openbsd.css">
9: <link rel="canonical" href="https://www.openbsd.org/69.html">
10:
11: <h2 id=OpenBSD>
12: <a href="index.html">
13: <i>Open</i><b>BSD</b></a>
14: 6.9
15: </h2>
16:
17: <table>
18: <tr>
19: <td>
20: <a href="images/XXX.png">
21: <img width="227" height="303" src="images/XXX-s.gif" alt="XXX"></a>
22: <td>
1.2 kn 23: Released May 1, 2021.<br>
24: Copyright 1997-2021, Theo de Raadt.<br>
1.1 deraadt 25: <br>
26: 6.9 Song:
27: <a href="lyrics.html#69">"XXX"</a>.
28: <br>
29: Artwork by Siah Files.
30: <br>
31: <ul>
32: <li>See the information on <a href="ftp.html">the FTP page</a> for
33: a list of mirror machines.
34: <li>Go to the <code class=reldir>pub/OpenBSD/6.9/</code> directory on
35: one of the mirror sites.
36: <li>Have a look at <a href="errata69.html">the 6.9 errata page</a> for a list
37: of bugs and workarounds.
38: <li>See a <a href="plus69.html">detailed log of changes</a> between the
39: 6.8 and 6.9 releases.
40: <p>
41: <li><a href="https://man.openbsd.org/signify.1">signify(1)</a>
42: pubkeys for this release:<p>
43:
44: <table class=signify>
45: <tr><td>
46: openbsd-69-base.pub:
47: <td>
48: <a href="https://ftp.openbsd.org/pub/OpenBSD/6.9/openbsd-69-base.pub">
49: RWQZj25CSG5R2oLo5735Hh6C48kkjFsj5rJDjW+fGZwyY+BkD5/zps8f</a>
50: <tr><td>
51: openbsd-69-fw.pub:
52: <td>
53: RWSYx4htNi/zavF8ZToMBDFz2xymRfFnnR1MEKV9csYbvnrTBwdkXhdy
54: <tr><td>
55: openbsd-69-pkg.pub:
56: <td>
57: RWQlDXyHx5KlPoEiz4yWRK/Gt/rvPwI8KEAt3utge/dBS7R+EscdzA5K
58: <tr><td>
59: openbsd-69-syspatch.pub:
60: <td>
61: RWRWuHkSV0U8PUX24vGa3ywrvKNQY6llV3PLvKEzDTiTVPfIRaXPfvzR
62: </table>
63: </ul>
64: <p>
65: All applicable copyrights and credits are in the src.tar.gz,
66: sys.tar.gz, xenocara.tar.gz, ports.tar.gz files, or in the
67: files fetched via <code>ports.tar.gz</code>.
68: </table>
69:
70: <hr>
71:
72: <section id=new>
73: <h3>What's New</h3>
74: <p>
75: This is a partial list of new features and systems included in OpenBSD 6.9.
76: For a comprehensive list, see the <a href="plus69.html">changelog</a> leading
77: to 6.9.
78:
79: <ul>
80:
81: <li>New/extended platforms:
82: <ul>
1.3 ! benno 83:
! 84: <li>Added <a href="https://man.openbsd.org/astfb.4">astfb(4)</a>, a
! 85: driver for the framebuffer of the Aspeed BMC found on many POWER8 and
! 86: POWER9 systems.
! 87: <li>Added bsd.mp to powerpc64's installXX.{img,iso}.
! 88: <li>Added RETGUARD implementation for powerpc and powerpc64.
! 89: <li>Added powerpc64 retguard macros for setjmp/longjmp.
! 90: <li>Added retguard macros to powerpc64 locore functions.
! 91: <li>Added a workaround for PCIO devices that cannot address the full
! 92: 64-bit PCI address space to powerpc64. Needed for <a
! 93: href="https://man.openbsd.org/radeondrm.4">radeondrm(4)</a> and <a
! 94: href="https://man.openbsd.org/amdgpu.4">amdgpu(4)</a> since Radeon
! 95: GPUs only implement 36, 40, or 44 bits of address space.
! 96: <li>Added limited emulation of unaligned access in the powerpc64 kernel.
! 97: <li>Changed <a href="https://man.openbsd.org/astfb.4">astfb(4)</a> to
! 98: allow it to become the console on powerpc64.
! 99: <li>Added support for passing a bootmac command line argument to
! 100: RAMDISK on powerpc64.
! 101:
! 102:
1.1 deraadt 103: </ul>
104:
105: <li>Improvements to time measurements, mostly in the kernel:
106: <ul>
107: <li>...
108: </ul>
109:
110: <li>Various kernel improvements:
111: <ul>
1.3 ! benno 112: <li>Added basic support for kclock timeouts to <a href="https://man.openbsd.org/timeout.9">timeout(9)</a>.
! 113: <li>Added a top-level 'reboot' command to <a href="https://man.openbsd.org/ddb.4">ddb(4)</a>.
! 114: <li>Fixed the "entry point at 0x10010000" hang reported on amd64 machines by using a 64MB block to load the kernel.
! 115: <li>Added <a href="https://man.openbsd.org/witness.4">witness(4)</a> check for uninitialized (or zeroed) lock usage.
! 116:
! 117: <!-- SMP -->
! 118: <li>Introduced "if_cloners_lock" rwlock and used it to serialize if_clone_{create,destroy}(), avoiding multiple race conditions.
! 119: <li>Introduced a system-wide mutex that serializes msgbuf operations.
! 120:
! 121:
! 122: <!-- DRM -->
! 123: <li>Implemented linux interval tree functions for <a href="https://man.openbsd.org/drm.4">drm(4)</a>.
! 124: <li>Fixed <a href="https://man.openbsd.org/wsconsctl.8">wsconsctl(8)</a> display commands when using <a href="https://man.openbsd.org/drm.4">drm(4)</a> drivers on macppc.
! 125: <li>Changed from <a href="https://man.openbsd.org/rwlock.9">rwlock(9)</a> to <a href="https://man.openbsd.org/mutex.9">mutex(9)</a> for linux rwlocks.
! 126: <li>Fixed a panic associated with locks and <a href="https://man.openbsd.org/drm.4">drm(4)</a> on macppc with Powerbook5,6 and RV350.
! 127: <li>Revised the initialization of the <a href="https://man.openbsd.org/drm.4">drm(4)</a> Linux emulation layer to call it only when the first drm instance attaches.
! 128:
! 129:
1.1 deraadt 130: </ul>
131:
132: <li>Various new userland features:
133: <ul>
1.3 ! benno 134: <li>Added <a
! 135: href="https://man.openbsd.org/doas.conf.5">doas.conf(5)</a> "nolog"
! 136: option to avoid <a
! 137: href="https://man.openbsd.org/syslog.3">syslog(3)</a>.
! 138: <li>Allowed specific <a
! 139: href="https://man.openbsd.org/sndio.7">sndio(7)</a> devices to be used
! 140: for play-only and rec-only modes.
! 141:
1.1 deraadt 142: </ul>
143:
144: <li>Various bugfixes and tweaks in userland:
145: <ul>
1.3 ! benno 146: <li>Fixed a pledge violation in <a
! 147: href="https://man.openbsd.org/csh.1">csh(1)</a> where redirecting
! 148: input from a file containing ^T would cause csh(1) to perform a tty
! 149: ioctl operation against a non-tty.
! 150: <li>Prevented a crash due to <a
! 151: href="https://man.openbsd.org/httpd.8">httpd(8)</a> listening on port
! 152: 443 with missing TLS certificates.
! 153: <li>Stopped exempting file systems from <a
! 154: href="https://man.openbsd.org/security.8">security(8)</a> on the basis
! 155: of nodev and nosuid options, which may not be used for file systems
! 156: mounted beneath.
! 157: <li>Modified <a href="https://man.openbsd.org/daily.8">daily(8)</a>
! 158: to stop reporting disk status and networking statistics.
! 159: <li>Made <a
! 160: href="https://man.openbsd.org/sysupgrade.8">sysupgrade(8)</a> specify
! 161: a version when it uses <a
! 162: href="https://man.openbsd.org/fw_update.1">fw_update(1)</a> to avoid
! 163: the situation where upgrading a pre-6.8 snapshot to 6.8 release with
! 164: "-r" would install firmware packages from snapshots.
! 165: <li>Increased speed of the dependency check pass for <a
! 166: href="https://man.openbsd.org/pkg_add.1">pkg_add(1)</a>.
! 167:
! 168: <li>Prevented process exit in multithreaded programs from reporting
! 169: the wrong error code.
! 170:
! 171:
1.1 deraadt 172: </ul>
173:
174: <li>Improved hardware support and driver bugfixes, including:
175: <ul>
1.3 ! benno 176:
! 177: <li>Moved mfokclock(4) from loongson to make it available for other
! 178: platforms and renamed it to <a
! 179: href="https://man.openbsd.org/mfokrtc.4">mfokrtc(4)</a>.
! 180: <li>Fixed brightness setting on MacBooks.
! 181: <li>Added AMD Vi and Intel VTD IOMMU support. This creates separate
! 182: domains for each PCI device and can provide protection against invalid
! 183: memory access.
! 184: <li>Enabled brightness keys on powerbooks where the keyboard attaches
! 185: as <a href="https://man.openbsd.org/ukbd.4">ukbd(4)</a>.
! 186: <li>Set initial default display brightness on macppc via
! 187: of_setbrightness() to ensure <a
! 188: href="https://man.openbsd.org/wscons.4">wscons(4)</a> and ofw are in
! 189: sync.
! 190: <li>Added the ClearFog GT 8K to <a
! 191: href="https://man.openbsd.org/mvclock.4">mvclock(4)</a>.
! 192: <li>Added support for the PL2303HXN series chips to <a
! 193: href="https://man.openbsd.org/uplcom.4">uplcom(4)</a>.
! 194: <li>Added support for the PCA9547 I2C mux to <a
! 195: href="https://man.openbsd.org/pcamux.4">pcamux(4)</a>.
! 196: <li>Extended <a href="https://man.openbsd.org/pcamux.4">pcamux(4)</a>
! 197: with ACPI support.
! 198: <li>Added <a href="https://man.openbsd.org/acpige.4">acpige(4)</a>, a
! 199: driver for ACPI generic event devices, used on te HoneyComb LX2K to
! 200: implement power button handling.
! 201: <li>Added <a href="https://man.openbsd.org/pchgpio.4">pchgpio(4)</a>,
! 202: a driver for the GPIO controllers found on modern Intel PCHs.
! 203: <li>Added ACPI support to <a
! 204: href="https://man.openbsd.org/imxiic.4">imxiic(4)</a>.
! 205: <li>Fixed panics on the HoneyComb LX2K with <a
! 206: href="https://man.openbsd.org/amdgpu.4">amdgpu(4)</a>.
! 207: <li>Fixed very old <a
! 208: href="https://man.openbsd.org/umass.4">umass(4)</a> devices where the
! 209: INQUIRY command succeeds but with a residue equal to the requested
! 210: bytes.
! 211:
! 212: <!-- ARM64 -->
! 213: <li>Optimized arm64 <a
! 214: href="https://man.openbsd.org/copyin.9">copyin(9)</a>, <a
! 215: href="https://man.openbsd.org/copyout.9">copyout(9)</a> and <a
! 216: href="https://man.openbsd.org/kcopy.9">kcopy(9)</a> by doing 16-byte
! 217: copies if possible.
! 218: <li>Added recognition of Cortex-A78AE, Cortex-X1 and Neoverse V1 arm64 CPUs.
! 219: <li>Added clock support for i.MX8MP.
! 220: <li>Added support for the VF610 I2C controller to <a
! 221: href="https://man.openbsd.org/imxiic.4">imxiic(4)</a>.
! 222: <li>Fixed a panic seen with mbuf chains on arm64.
! 223:
! 224:
1.1 deraadt 225: </ul>
226:
227: <li>New or improved network hardware support:
228: <ul>
1.3 ! benno 229: <li>Fixed link state change behavior in 82598 <a
! 230: href="https://man.openbsd.org/ix.4">ix(4)</a> chips.
! 231: <li>Fixed issues with network stopping after the first down/up cycle
! 232: in <a href="https://man.openbsd.org/mvpp.4">mvpp(4)</a> Marvel Armada
! 233: Ethernet device.
! 234: <li>Added SFP+ support to ofw, including support for direct attach cables.
! 235: <li>Added 10G media support to <a
! 236: href="https://man.openbsd.org/mvpp.4">mvpp(4)</a>.
! 237: <li>Added support for 1000base-x and 2500base-x connections to <a
! 238: href="https://man.openbsd.org/mvneta.4">mvneta(4)</a>.
! 239: <li>Added <a href="https://man.openbsd.org/mvsw.4">mvsw(4)</a>, a
! 240: driver for Marvel "SOHO" switches.
! 241:
1.1 deraadt 242: </ul>
243:
244: <li>Added or improved wireless network drivers:
245: <ul>
1.3 ! benno 246: <li>Fixed <a href="https://man.openbsd.org/athn.4">athn(4)</a> in
! 247: client mode against APs that use WPA1/TKIP as the group cipher.
! 248: <li>Fixed <a href="https://man.openbsd.org/urtwn.4">urtwn(4)</a>
! 249: against access points using WPA1/TKIP as the group cipher.
! 250: <li>Added multicast support to <a
! 251: href="https://man.openbsd.org/bwfm.4">bwfm(4)</a> to allow IPv6.
! 252: <li>Fixed <a href="https://man.openbsd.org/urtwn.4">urtwn(4)</a>
! 253: repeated DEAUTH and loss/restoration of link.
! 254:
1.1 deraadt 255: </ul>
256:
257: <li>IEEE 802.11 wireless stack improvements and bugfixes:
258: <ul>
259: <li>...
260: </ul>
261:
262: <li>Generic network stack improvements and bugfixes:
263: <ul>
1.3 ! benno 264: <li>Prevented kernel reuse of mbuf memory when generating the ICMP6
! 265: response to an IPv6 packet.
! 266: <li>Added the ability to force the selection of source IP address for
! 267: programs that do not specify a source IP, configurable via <a
! 268: href="https://man.openbsd.org/route.8">route(8)</a>.
! 269: <li>For IPv6 addresses, added tracking of address proposal creation
! 270: times to be able to establish total lifetime. This information is used
! 271: to renew pltime/vltime of privacy addresse per RFC 4941.
! 272: <li>Fixed <a href="https://man.openbsd.org/wg.4">wg(4)</a> on macppc
! 273: by keeping track of allowed ips pointer correctly.
! 274:
! 275:
1.1 deraadt 276: </ul>
277:
278: <li>Installer improvements:
279: <ul>
280: <li>...
281: </ul>
282:
283: <li>Improvements in the FFS2 filesystem:
284: <ul>
285: <li>...
286: </ul>
287:
288: <li>Security improvements:
289: <ul>
1.3 ! benno 290: <li>Added notices to syslog whenever the "%n" format string component of <a href="https://man.openbsd.org/printf.3">printf(3)</a> is used.
1.1 deraadt 291: </ul>
292:
293: <li>Routing daemons and other userland network improvements:
294: <ul>
1.3 ! benno 295: <!-- BGP -->
! 296: <li>Fixed a memory leak when parsing <a
! 297: href="https://man.openbsd.org/bgpd.8">bgpd(8)</a> roa-set lists.
! 298: <li>Stopped allowing configuration of the same neighbor multiple
! 299: times in <a href="https://man.openbsd.org/bgpd.8">bgpd(8)</a>.
! 300: <!-- HTTPD -->
! 301: <li>Created a new "location (found|notfound)" option for <a
! 302: href="https://man.openbsd.org/httpd.conf.5">httpd.conf(5)</a> to allow
! 303: testing for resource path existence.
! 304: <li>Added a directive to <a
! 305: href="https://man.openbsd.org/httpd.8">httpd(8)</a> to check if a path
! 306: is accessible.
! 307: <li>Fixed detection of duplicate locations in <a
! 308: href="https://man.openbsd.org/httpd.8">httpd(8)</a>.
! 309:
! 310:
! 311: <!-- IKE/IPSEC -->
! 312: <li>Added support to request IP addresses as IKEv2 initiator to <a
! 313: href="https://man.openbsd.org/iked.8">iked(8)</a>. If 'request addr
! 314: 0.0.0.0' is configured, any address will be accepted.
! 315: <li>Make <a href="https://man.openbsd.org/iked.8">iked(8)</a> accept
! 316: ANY dynamic address with 'request addr 0.0.0.0'.
! 317: <li>Added 'dynamic' keyword to <a
! 318: href="https://man.openbsd.org/iked.conf.5">iked.conf(5)</a> to allow
! 319: configuration of flows to dynamically assigned addresses.
! 320: <li>Added the 'any' keyword to <a
! 321: href="https://man.openbsd.org/iked.conf.5">iked.conf(5)</a> for
! 322: requests to allow "request address any".
! 323: <li>Enabled <a href="https://man.openbsd.org/iked.8">iked(8)</a>
! 324: support for ASN1_DN ipsec identifiers.
! 325: <li>Implemented <a href="https://man.openbsd.org/iked.8">iked(8)</a>
! 326: "from dynamic," installing flows where "dynamic" is replaced by the
! 327: received dynamic IP address.
! 328: <li>Made sure not to replace 0.0.0.0 with a dynamic address in <a
! 329: href="https://man.openbsd.org/iked.8">iked(8)</a> if it is a network
! 330: address.
! 331: <li>Added <a href="https://man.openbsd.org/iked.8">iked(8)</a> -s
! 332: socket option to specify a control socket.
! 333: <li>Used a counter instead of random IV for AES-GCM in <a
! 334: href="https://man.openbsd.org/iked.8">iked(8)</a>, eliminating the
! 335: risk of random collisions.
! 336: <li>Added <a href="https://man.openbsd.org/iked.8">iked(8)</a>
! 337: support for multiple address pools.
! 338: <li>Added the <a href="https://man.openbsd.org/iked.8">iked(8)</a>
! 339: "set stickyaddress" option, which attempts to assign the same "config
! 340: address" when an IKESA is negotiated with the DSTID of an existing
! 341: IKESA.
! 342: <li>Ensured rekeying of every child SA in <a
! 343: href="https://man.openbsd.org/iked.8">iked(8)</a>.
! 344:
! 345:
! 346: <!-- LDAP -->
! 347: <li>Fixed <a href="https://man.openbsd.org/ldapd.8">ldapd(8)</a> cert
! 348: and key path inference for absolute paths.
! 349:
! 350:
! 351: <!-- PF -->
! 352: <li>Relaxed checks in <a
! 353: href="https://man.openbsd.org/pfctl.8">pfctl(8)</a> and <a
! 354: href="https://man.openbsd.org/pf.4">pf(4)</a> to accept any valid
! 355: routing domain, even if it does not yet exist.
! 356:
! 357:
! 358: <li>Changed <a href="https://man.openbsd.org/ping.8">ping(8)</a> to
! 359: drain the raw socket of packets received before we were fully setup to
! 360: avoid reporting ICMP responses intended for other instances of ping(8)
! 361: running in parallel.
! 362:
! 363: <li>Implemented RFC 8914 Extended DNS Errors for <a
! 364: href="https://man.openbsd.org/dig.1">dig(1)</a>.
! 365:
! 366: <li>Changed <a href="https://man.openbsd.org/slaacd.8">slaacd(8)</a>
! 367: Duplicate Address Detection (DAD) to only generate a new address if we
! 368: are using Semantically Opaque Interface Identifiers.
! 369: <li>Handled an autoconf interface changing its rdomain in <a
! 370: href="https://man.openbsd.org/slaacd.8">slaacd(8)</a>.
! 371: <li>Fixed rare crashes of <a
! 372: href="https://man.openbsd.org/unwind.8">unwind(8)</a> when DNS answers
! 373: are larger than the maximum imsg size.
! 374: <li>Removed the -L option from <a
! 375: href="https://man.openbsd.org/dhclient.8">dhclient(8)</a>.
! 376: <li>Fixed incorrect behavior when using <a
! 377: href="https://man.openbsd.org/dhclient.conf.5">dhclient.conf(5)</a> to
! 378: change the lease renew/rebind/expiry timing.
! 379: <li>Added a simple --timeout implementation to <a
! 380: href="https://man.openbsd.org/openrsync.1">openrsync(1)</a>.
! 381: <li>Added support for the use of !command to <a
! 382: href="https://man.openbsd.org/mygate.5">mygate(5)</a>, so that
! 383: netstart has a late opportunity to perform network configuration.
! 384:
! 385:
1.1 deraadt 386: </ul>
387:
388: <li><a href="https://man.openbsd.org/tmux">tmux(1)</a> improvements and bug fixes:
389: <ul>
390: <li>...
391: </ul>
392:
393: <li>OpenSMTPD 6.9.0
394: <ul>
395: <li>...
396: </ul>
397:
398: <li>LibreSSL 3.2.2
399: <ul>
400: <li>New Features
401: <ul>
1.3 ! benno 402: <!-- XXX not sorted into categories yet -->
! 403: <li>Added a -legacy_verify flag to <a href="https://man.openbsd.org/openssl.1">openssl(1)</a> to force use of the old validator.
! 404: <li>Changed <a href="https://man.openbsd.org/crypto.3">crypto(3)</a>
! 405: to call its get_issuer() callback to try and find a suitable
! 406: certificate in cases where it has failed to find a print certificate
! 407: from the supplied roots and intermediates.
! 408: <li>Corrected an issue where <a href="https://man.openbsd.org/openssl.1">openssl(1)</a> verify might not error on expired certificates.
! 409: <li>Fixed an issue in the TLS 1.3 code that caused stalls in haproxy and other software.
! 410: <li>Implemented auto chain for the TLSv1.3 server.
! 411: <li>Implemented the key material exporter for TLSv1.3.
! 412:
! 413:
1.1 deraadt 414: </ul>
415:
416: <li>API and Documentation Enhancements
417: <ul>
418: <li>...
419: </ul>
420:
421: <li>Compatibility Changes
422: <ul>
423: <li>...
424: </ul>
425:
426: <li>Testing and Proactive Security
427: <ul>
428: <li>...
429: </ul>
430:
431: <li>Internal Improvements
432: <ul>
433: <li>...
434: </ul>
435:
436: <li>Portable Improvements
437: <ul>
438: <li>...
439: </ul>
440:
441: <li>Bug Fixes
442: <ul>
443: <li>...
444: </ul>
445: </ul>
446:
447: <li>OpenSSH 8.4
1.3 ! benno 448:
1.1 deraadt 449: <ul>
1.3 ! benno 450:
! 451: <!-- XXX not sorted into categories yet -->
! 452: <li>Preferred ed25519 signature algorithm variants over ECDSA in <a
! 453: href="https://man.openbsd.org/ssh_config.5">ssh_config(5)</a> and <a
! 454: href="https://man.openbsd.org/sshd_config.5">sshd_config(5)</a>.
! 455: <li>Enabled <a
! 456: href="https://man.openbsd.org/ssh_config.5">ssh_config(5)</a>
! 457: UpdateHostkeys by default when the configuration has not overridden
! 458: UserKnownHostFile.
! 459: <li>Prefixed <a href="https://man.openbsd.org/ssh.1">ssh(1)</a>
! 460: keyboard interactive prompts with "user@host" for easier
! 461: identification of connections.
! 462: <li>Displayed any other hostnames/addresses associated with a new
! 463: hostkey when <a href="https://man.openbsd.org/ssh.1">ssh(1)</a>
! 464: prompts the user to accept it.
! 465: <li>When doing an <a href="https://man.openbsd.org/sftp.1">sftp(1)</a>
! 466: recursive upload or download of a read-only directory, ensured that
! 467: the directory was created with write and execute permissions in the
! 468: interim to allow the transfer.
! 469: <li>Set the specified TOS/DSCP for interactive use prior to TCP
! 470: connect in <a href="https://man.openbsd.org/ssh.1">ssh(1)</a>.
! 471: <li>CLeaned up passing of struct passwd from monitor to preauth
! 472: privsep process in <a href="https://man.openbsd.org/ssh.1">ssh(1)</a>.
! 473:
! 474:
1.1 deraadt 475: <li>Potentially incompatible changes.
476: <ul>
477: <li>...
478: </ul>
479: <li>New Features
480: <ul>
481: <li>...
482: </ul>
483: <li>Bugfixes
484: <ul>
485: <li>...
486: </ul>
487: </ul>
488:
489: <li>Ports and packages:
490: <p>Many pre-built packages for each architecture:
491: <!-- number of FTP packages minus SHA256, SHA256.sig, index.txt -->
492: <ul style="column-count: 3">
493: <li>aarch64: XXX
494: <li>amd64: XXX
495: <li>arm: XXX
496: <li>i386: XXX
497: <li>mips64: XXX
498: <li>mips64el: XXX
499: <li>powerpc: XXX
500: <li>powerpc64: XXX
501: <li>sparc64: XXX
502: </ul>
503:
504: <li>As usual, steady improvements in manual pages and other documentation.
505:
506: <li>The system includes the following major components from outside suppliers:
507: <ul>
508: <li>Xenocara (based on X.Org 7.7 with xserver 1.20.8 + patches,
1.3 ! benno 509: freetype 2.10.4, fontconfig 2.12.4, Mesa 20.0.8, xterm 351,
! 510: xkeyboard-config 2.20, fonttosfnt 1.2.0 and more)
1.1 deraadt 511: <li>LLVM/Clang 10.0.1 (+ patches)
512: <li>GCC 4.2.1 (+ patches) and 3.3.6 (+ patches)
513: <li>Perl 5.30.3 (+ patches)
1.3 ! benno 514: <li>NSD 4.3.3
! 515: <li>Unbound 1.12.0
1.1 deraadt 516: <li>Ncurses 5.7
517: <li>Binutils 2.17 (+ patches)
518: <li>Gdb 6.3 (+ patches)
519: <li>Awk August 7, 2020 version
520: <li>Expat 2.2.8
521: </ul>
522:
523: </ul>
524: </section>
525:
526: <hr>
527:
528: <section id=install>
529: <h3>How to install</h3>
530: <p>
531: Please refer to the following files on the mirror site for
532: extensive details on how to install OpenBSD 6.9 on your machine:
533:
534: <ul>
535: <li><a href="https://ftp.openbsd.org/pub/OpenBSD/6.9/alpha/INSTALL.alpha">
536: .../OpenBSD/6.9/alpha/INSTALL.alpha</a>
537: <li><a href="https://ftp.openbsd.org/pub/OpenBSD/6.9/amd64/INSTALL.amd64">
538: .../OpenBSD/6.9/amd64/INSTALL.amd64</a>
539: <li><a href="https://ftp.openbsd.org/pub/OpenBSD/6.9/arm64/INSTALL.arm64">
540: .../OpenBSD/6.9/arm64/INSTALL.arm64</a>
541: <li><a href="https://ftp.openbsd.org/pub/OpenBSD/6.9/armv7/INSTALL.armv7">
542: .../OpenBSD/6.9/armv7/INSTALL.armv7</a>
543: <li><a href="https://ftp.openbsd.org/pub/OpenBSD/6.9/hppa/INSTALL.hppa">
544: .../OpenBSD/6.9/hppa/INSTALL.hppa</a>
545: <li><a href="https://ftp.openbsd.org/pub/OpenBSD/6.9/i386/INSTALL.i386">
546: .../OpenBSD/6.9/i386/INSTALL.i386</a>
547: <li><a href="https://ftp.openbsd.org/pub/OpenBSD/6.9/landisk/INSTALL.landisk">
548: .../OpenBSD/6.9/landisk/INSTALL.landisk</a>
549: <li><a href="https://ftp.openbsd.org/pub/OpenBSD/6.9/loongson/INSTALL.loongson">
550: .../OpenBSD/6.9/loongson/INSTALL.loongson</a>
551: <li><a href="https://ftp.openbsd.org/pub/OpenBSD/6.9/luna88k/INSTALL.luna88k">
552: .../OpenBSD/6.9/luna88k/INSTALL.luna88k</a>
553: <li><a href="https://ftp.openbsd.org/pub/OpenBSD/6.9/macppc/INSTALL.macppc">
554: .../OpenBSD/6.9/macppc/INSTALL.macppc</a>
555: <li><a href="https://ftp.openbsd.org/pub/OpenBSD/6.9/octeon/INSTALL.octeon">
556: .../OpenBSD/6.9/octeon/INSTALL.octeon</a>
557: <li><a href="https://ftp.openbsd.org/pub/OpenBSD/6.9/powerpc64/INSTALL.powerpc64">
558: .../OpenBSD/6.9/octeon/INSTALL.powerpc64</a>
559: <li><a href="https://ftp.openbsd.org/pub/OpenBSD/6.9/sgi/INSTALL.sgi">
560: .../OpenBSD/6.9/sgi/INSTALL.sgi</a>
561: <li><a href="https://ftp.openbsd.org/pub/OpenBSD/6.9/sparc64/INSTALL.sparc64">
562: .../OpenBSD/6.9/sparc64/INSTALL.sparc64</a>
563: </ul>
564: </section>
565:
566: <hr>
567:
568: <section id=quickinstall>
569: <p>
570: Quick installer information for people familiar with OpenBSD, and the use of
571: the "<a href="https://man.openbsd.org/disklabel.8">disklabel</a> -E" command.
572: If you are at all confused when installing OpenBSD, read the relevant
573: INSTALL.* file as listed above!
574:
575: <h3>OpenBSD/alpha:</h3>
576:
577: <p>
578: If your machine can boot from CD, you can write <i>install69.iso</i> or
579: <i>cd69.iso</i> to a CD and boot from it.
580: Refer to INSTALL.alpha for more details.
581:
582: <h3>OpenBSD/amd64:</h3>
583:
584: <p>
585: If your machine can boot from CD, you can write <i>install69.iso</i> or
586: <i>cd69.iso</i> to a CD and boot from it.
587: You may need to adjust your BIOS options first.
588:
589: <p>
590: If your machine can boot from USB, you can write <i>install69.img</i> or
591: <i>miniroot69.img</i> to a USB stick and boot from it.
592:
593: <p>
594: If you can't boot from a CD, floppy disk, or USB,
595: you can install across the network using PXE as described in the included
596: INSTALL.amd64 document.
597:
598: <p>
599: If you are planning to dual boot OpenBSD with another OS, you will need to
600: read INSTALL.amd64.
601:
602: <h3>OpenBSD/arm64:</h3>
603:
604: <p>
605: Write <i>miniroot69.img</i> to a disk and boot from it after connecting
606: to the serial console. Refer to INSTALL.arm64 for more details.
607:
608: <h3>OpenBSD/armv7:</h3>
609:
610: <p>
611: Write a system specific miniroot to an SD card and boot from it after connecting
612: to the serial console. Refer to INSTALL.armv7 for more details.
613:
614: <h3>OpenBSD/hppa:</h3>
615:
616: <p>
617: Boot over the network by following the instructions in INSTALL.hppa or the
618: <a href="hppa.html#install">hppa platform page</a>.
619:
620: <h3>OpenBSD/i386:</h3>
621:
622: <p>
623: If your machine can boot from CD, you can write <i>install69.iso</i> or
624: <i>cd69.iso</i> to a CD and boot from it.
625: You may need to adjust your BIOS options first.
626:
627: <p>
628: If your machine can boot from USB, you can write <i>install69.img</i> or
629: <i>miniroot69.img</i> to a USB stick and boot from it.
630:
631: <p>
632: If you can't boot from a CD, floppy disk, or USB,
633: you can install across the network using PXE as described in
634: the included INSTALL.i386 document.
635:
636: <p>
637: If you are planning on dual booting OpenBSD with another OS, you will need to
638: read INSTALL.i386.
639:
640: <h3>OpenBSD/landisk:</h3>
641:
642: <p>
643: Write <i>miniroot69.img</i> to the start of the CF
644: or disk, and boot normally.
645:
646: <h3>OpenBSD/loongson:</h3>
647:
648: <p>
649: Write <i>miniroot69.img</i> to a USB stick and boot bsd.rd from it
650: or boot bsd.rd via tftp.
651: Refer to the instructions in INSTALL.loongson for more details.
652:
653: <h3>OpenBSD/luna88k:</h3>
654:
655: <p>
656: Copy 'boot' and 'bsd.rd' to a Mach or UniOS partition, and boot the bootloader
657: from the PROM, and then bsd.rd from the bootloader.
658: Refer to the instructions in INSTALL.luna88k for more details.
659:
660: <h3>OpenBSD/macppc:</h3>
661:
662: <p>
663: Burn the image from a mirror site to a CDROM, and power on your machine
664: while holding down the <i>C</i> key until the display turns on and
665: shows <i>OpenBSD/macppc boot</i>.
666:
667: <p>
668: Alternatively, at the Open Firmware prompt, enter <i>boot cd:,ofwboot
669: /6.9/macppc/bsd.rd</i>
670:
671: <h3>OpenBSD/octeon:</h3>
672:
673: <p>
674: After connecting a serial port, boot bsd.rd over the network via DHCP/tftp.
675: Refer to the instructions in INSTALL.octeon for more details.
676:
677: <h3>OpenBSD/powerpc64:</h3>
678:
679: <p>
680: To install, write <i>install69.img</i> or <i>miniroot69.img</i> to a
681: USB stick, plug it into the machine and choose the <i>OpenBSD
682: install</i> menu item in Petitboot.
683: Refer to the instructions in INSTALL.powerpc64 for more details.
684:
685: <h3>OpenBSD/sgi:</h3>
686:
687: <p>
688: To install, burn cd69.iso on a CD-R, put it in the CD drive of your
689: machine and select <i>Install System Software</i> from the System Maintenance
690: menu. Indigo/Indy/Indigo2 (R4000) systems will not boot automatically from
691: CD-ROM, and need a proper invocation from the PROM prompt.
692: Refer to the instructions in INSTALL.sgi for more details.
693:
694: <p>
695: If your machine doesn't have a CD drive, you can setup a DHCP/tftp network
696: server, and boot using "bootp()/bsd.rd.IP##" using the kernel matching your
697: system type. Refer to the instructions in INSTALL.sgi for more details.
698:
699: <h3>OpenBSD/sparc64:</h3>
700:
701: <p>
702: Burn the image from a mirror site to a CDROM, boot from it, and type
703: <i>boot cdrom</i>.
704:
705: <p>
706: If this doesn't work, or if you don't have a CDROM drive, you can write
707: <i>floppy69.img</i> or <i>floppyB69.img</i>
708: (depending on your machine) to a floppy and boot it with <i>boot
709: floppy</i>. Refer to INSTALL.sparc64 for details.
710:
711: <p>
712: Make sure you use a properly formatted floppy with NO BAD BLOCKS or your install
713: will most likely fail.
714:
715: <p>
716: You can also write <i>miniroot69.img</i> to the swap partition on
717: the disk and boot with <i>boot disk:b</i>.
718:
719: <p>
720: If nothing works, you can boot over the network as described in INSTALL.sparc64.
721: </section>
722:
723: <hr>
724:
725: <section id=upgrade>
726: <h3>How to upgrade</h3>
727: <p>
728: If you already have an OpenBSD 6.7 system, and do not want to reinstall,
729: upgrade instructions and advice can be found in the
730: <a href="faq/upgrade69.html">Upgrade Guide</a>.
731: </section>
732:
733: <hr>
734:
735: <section id=sourcecode>
736: <h3>Notes about the source code</h3>
737: <p>
738: <code>src.tar.gz</code> contains a source archive starting at <code>/usr/src</code>.
739: This file contains everything you need except for the kernel sources,
740: which are in a separate archive.
741: To extract:
742: <blockquote><pre>
743: # <kbd>mkdir -p /usr/src</kbd>
744: # <kbd>cd /usr/src</kbd>
745: # <kbd>tar xvfz /tmp/src.tar.gz</kbd>
746: </pre></blockquote>
747: <p>
748: <code>sys.tar.gz</code> contains a source archive starting at <code>/usr/src/sys</code>.
749: This file contains all the kernel sources you need to rebuild kernels.
750: To extract:
751: <blockquote><pre>
752: # <kbd>mkdir -p /usr/src/sys</kbd>
753: # <kbd>cd /usr/src</kbd>
754: # <kbd>tar xvfz /tmp/sys.tar.gz</kbd>
755: </pre></blockquote>
756: <p>
757: Both of these trees are a regular CVS checkout. Using these trees it
758: is possible to get a head-start on using the anoncvs servers as
759: described <a href="anoncvs.html">here</a>.
760: Using these files
761: results in a much faster initial CVS update than you could expect from
762: a fresh checkout of the full OpenBSD source tree.
763: </section>
764:
765: <hr>
766:
767: <section id=ports>
768: <h3>Ports Tree</h3>
769: <p>
770: A ports tree archive is also provided. To extract:
771: <blockquote><pre>
772: # <kbd>cd /usr</kbd>
773: # <kbd>tar xvfz /tmp/ports.tar.gz</kbd>
774: </pre></blockquote>
775: <p>
776: Go read the <a href="faq/ports/index.html">ports</a> page
777: if you know nothing about ports
778: at this point. This text is not a manual of how to use ports.
779: Rather, it is a set of notes meant to kickstart the user on the
780: OpenBSD ports system.
781: <p>
782: The <i>ports/</i> directory represents a CVS checkout of our ports.
783: As with our complete source tree, our ports tree is available via
784: <a href="anoncvs.html">AnonCVS</a>.
785: So, in order to keep up to date with the -stable branch, you must make
786: the <i>ports/</i> tree available on a read-write medium and update the tree
787: with a command like:
788: <blockquote><pre>
789: # <kbd>cd /usr/ports</kbd>
790: # <kbd>cvs -d anoncvs@server.openbsd.org:/cvs update -Pd -rOPENBSD_6_9</kbd>
791: </pre></blockquote>
792: <p>
793: [Of course, you must replace the server name here with a nearby anoncvs
794: server.]
795: <p>
796: Note that most ports are available as packages on our mirrors. Updated
797: ports for the 6.9 release will be made available if problems arise.
798: <p>
799: If you're interested in seeing a port added, would like to help out, or just
800: would like to know more, the mailing list
801: <a href="mail.html">ports@openbsd.org</a> is a good place to know.
802: </section>