OpenBSD 4.1 发行版本

OpenBSD 4.1 版本:

发布于2007年5月1日
Copyright 1997-2007, Theo de Raadt.
ISBN 978-0-9731791-9-4
4.1 歌曲: "Puffy Baba and the 40 Vendors"

如何得到此版本的文件:

从我们的订购系统中购买 CDROM。
从镜像站点的 FTP 页面中选择合适的镜像。
进入镜像站点的 pub/OpenBSD/4.1/ 目录。
简要阅读本文档的剩余部分。
阅读 4.1 勘误表获得问题列表和背景。
阅读 4.0 与 4.1 之间的详细修改记录。

说明: 所有相关的版权和荣誉声明在 src.tar.gz，sys.tar.gz 和 XF4.tar.gz 文件中，或在通过 ports.tar.gz 下载的文件中。由于空间不足，用于构建 ports.tar.gz 文件中的程序包的发行文件并未包括在 CDROM 中。

新特性

以下是仅 OpenBSD 4.1 中新特性和新系统功能的部分列表。完整的列表位于 4.1 的修改记录中。

新增/扩展的构架平台:
- OpenBSD/landisk.
  各种基于 SH4的变体，IO-Data 制造，Plextor 组装发行。
- OpenBSD/sparc64.
  现在基于 UltraSPARC III 的机器支持得更好，而且全速运行！
删除的构架平台:
- OpenBSD/cats.
  由于这些机器很难找到，并且开发人员憎恨它们。
更新了硬件支持, 包括:
- New USB client controller support:
  - Support for the USB client functionality in the pxaudc(4) driver on the Zaurus.
  - New usbf(4) midlayer for USB Client controllers.
  - New cdcef(4) driver for providing a CDCE function on USB client controllers.
- New cas(4) driver for Sun Cassini 10/100/Gigabit Ethernet devices.
- New uow(4) driver for Maxim/Dallas DS2490 USB 1-Wire devices.
- New owsbm(4) driver for 1-Wire smart battery monitor devices.
- New zyd(4) driver for ZyDAS ZD1211/ZD1211B USB IEEE 802.11b/g wireless network devices.
- New moscom(4) driver for MosChip Semiconductor MCS7703 based USB serial adapters.
- New glxsb(4) driver for hardware random numbers and AES acceleration on the AMD Geode LX processor.
- New vic(4) driver for VMware VMXnet Virtual Interface Controllers.
- New malo(4) driver for Marvell Libertas IEEE 802.11b/g wireless network devices.
- New pwdog(4) driver for Quancom PWDOG1 watchdog timer devices.
- New uberry(4) driver for Research In Motion Blackberry devices.
- New mbg(4) driver for Meinberg Funkuhren radio clocks.
- New mesh(4) driver for the on-board SCSI controller of old world Apple Power Macintosh systems.
- New mc(4) driver for the on-board Ethernet of many old world Apple Power Macintosh systems
- Improved msk(4) driver now supports many more Marvell Yukon-2 variants including dual port cards and fiber cards.
- The gem(4) driver now supports fiber cards.
- The OpenBSD/amd64 platform now has more accurate and robust time keeping.
- The OpenBSD/i386 boot(8) program now works properly on Intel-based Macs.
- The pciide(4) driver has had support added for newer chipsets, including:
  - AMD CS5536 IDE;
  - Intel i31244;
  - NVIDIA MCP67 PATA, MCP67 SATA.
- The com(4) driver now supports ST16C654 devices.
- The adt(4) driver supports some newer chipsets, such as the ADT7475.
- The OpenBSD/macppc platform now automatically turns the machine back on following an unexpected loss of power.
- boot.mac an XCOFF formated boot loader for OpenBSD/macppc capable of booting on many old world macs.
新工具:
- BSD-licensed pkg-config(1), a complete rewrite of the GNU tool of the same name, significantly smaller and more maintainable.
- hoststated(8), a layer 3 and layer 7 server load balancing daemon with host monitoring capacities.
- new BSD-licensed ripd(8).
- bgplg(8), a CGI looking glass for OpenBGPD, is now available for use with the system httpd.
- bgplgsh(8), a looking glass shell for OpenBGPD, is now available for use as a restricted read-only command line interface.
新功能:
- syslogd(8) can now pipe logs directly to other programs, making real-time log analysis easier.
- The IP_RECVTTL ip(4) socket option allows programs to receive the incoming ttl on raw and udp sockets.
- The IP_MINTTL ip(4) socket option allows programs to ask the kernel to discard any packets with a ttl smaller than the given one, for implementing the IP TTL security hack aka the Generalized TTL Security Mechanism specified in RFC 3682.
- Multiple, independent routing tables, with pf(4) acting as selector. route(8) can be told which table to work with now, and routing daemons have been modified to cope as well.
- The pflog(4) interface is now clonable. pf(4) can log to multiple pflog interfaces now, each rule can specify which pflog interface to log to. pflogd(8) and spamlogd(8) can now be told which pflog interface to work with.
- The pfsync(4) interface is now clonable as well, thus only there when actually needed.
- pfctl(8) can now expire table entries.
- keep state is now the default for pf.conf(5) rules, as is the flags S/SA option on TCP connections. no state and flags any can be used to disable stateful filtering or TCP flags checking.
- The pfctl(8) ruleset optimiser can be enabled in pf.conf(5).
- pf(4) anchors can now be loaded inline in the main pf.conf(5) and can be printed recursively.
- Allow pf(4) rules inside anchors to have their counters reset, and make counter read & reset an atomic operation.
- sensorsd(8) dampens status changes now, thus not alerting for a single wrong sensor read, since many sensors lie once in a while.
- spamd(8) and spamlogd(8) now support synchronisation of the greylist database across multiple hosts. The greytrapping mechanism now allows for whole domain traps, and noticing out of order MX use.
- spamd(8) database format has changed from DB_BTREE to DB_HASH for much better performance on large installations with big databases.
- The bridge(4) driver and the brconfig(8) tool now support the Rapid Spanning Tree Protocol (RSTP). The new RSTP mode is now used by default when enabled with the stp option.
- cd(4) now supports reading from region protected DVDs.
- Detect MS-DOS filesystems and spoof disklabel partitions for them even when there is no MBR, e.g. on some newer iPods.
各种改进和代码清理:
- The fsck_ffs(8) command has been improved to be more robust to various forms of inode and superblock corruption.
- The top(1) command got some new ways of filtering the display.
- pthreads(3) file descriptor handling has been improved to eliminate several race and deadlock conditions and improve performance.
- The MS-DOS filesystem has had a potential corruption issue fixed, and is more reliable when given a corrupted filesystem to mount.
- The MS-DOS filesystem and the fdisk(8) command have been enhanced to work on devices with 2048 byte sectors, e.g. newer iPods.
- The OpenRCS tools are smarter at handling files, especially when dealing with binary files. GNU RCS compatibility has also been improved.
- The mg(1) editor now displays column numbers in the status bar. It has also received several improvements which make it more reliable: line numbers, file insertions, and search wrapping all now work as expected.
- The systat(1) command has a cleaner look, and a display was added for hardware sensors.
- The OpenBSD/alpha platform now uses gcc3.
- Improved support for usb attached cd drives and ever more odd umass(4) devices.
- Don't treat NetBSD or FreeBSD MBR partitions as substitutes for an OpenBSD partition. i.e. don't try to boot from them or use them to store OpenBSD disklabels.
对安装/升级过程的修改:
- More reliable detection of disk and cd devices.
- More reliable installation from MSDOS FAT partitions.
- New sanity check in case sets for the wrong architecture are selected.
- No need to specify the filesystem types of source partitions during disk or cd installs.
- No need to select a source partition during disk or cd installs when there is only one to choose from.
OpenBGPD 4.1:
- Fixes for sessions with tcp md5sig and ipsec. Now sessions can be migrated from and to any form of ipsec and tcpmd5 with just a simple bgpctl reload, and the session migrates the next time it gets established.
- Include file support in the config parser.
- Can now use the new IP_MINTTL socket option to implement the ttl security mechanism.
OpenOSPFD 4.1:
- Reload support added. It is no longer needed to restart ospfd after a configuration change.
- Multiple networks per interface are now supported.
- It is now possible to specify the route metric and type for each redistribution rule.
OpenNTPD 4.1:
- Greatly improved support for timedelta sensors.
- ntpd now uses a strictly monotonically increasing time (uptime, basically) for its internal timers, so setting the system clock doesn't influence query rates, trust levels, etc. any more.
OpenSSH 4.6:
- sshd now allows the enabling and disabling of authentication methods on a per user, group, host and network basis via the Match directive in sshd_config(5).
超过 4200 个 ports，4000 个预先构建的包(i386)，改进的 package 工具一些精彩程序:
- gstreamer-0.10 tools.
- OpenOffice.org package, available through ftp for size reasons.
- KDE 3.5.6 and koffice 1.6.2.
- a large (> 500) number of new/updated perl modules, from CPAN, including most of the catalyst web framework.
- NetBeans 5.5 Java IDE.
- updated Linux emulation support by using Fedora Core libraries.
- Mozilla Firefox 2.0.0.2 (with translations).
- PostgreSQL 8.2.3.
按照惯例，手册或其它文档也有相应补充和修改。
以下是系统内置的外部提供的重要程序:
- X.Org 6.9.0 (+ patches, and i386 contains XFree86 3.3.6 servers (+ patches) for legacy chipsets not supported by X.Org)
- Gcc 2.95.3 (+ patches) and 3.3.5 (+ patches)
- Perl 5.8.8 (+ patches)
- our improved and secured version of Apache 1.3, with SSL/TLS and DSO support
- OpenSSL 0.9.7j (+ patches)
- Groff 1.15
- Sendmail 8.14.0, with libmilter
- Bind 9.3.4 (+ patches)
- Lynx 2.8.5rel.4 with HTTPS and IPv6 support (+ patches)
- Sudo 1.6.8p9
- Ncurses 5.2
- Latest KAME IPv6
- Heimdal 0.7.2 (+ patches)
- Arla 0.35.7
- Binutils 2.15 (+ patches)
- Gdb 6.3 (+ patches)

如何安装

如果通过购买的 CD 安装，请按照下述指令操作。使用 FTP(或其它安装方式)安装与之类似；CDROM 中的安装说明，会让你知道如果使用购买的 CD 安装是多么方便。

有关安装 OpenBSD 4.1 更详细的信息，请参阅在三张 CD 或相关 FTP 镜像站点中的以下文件:

CD1:4.1/i386/INSTALL.i386
CD2:4.1/amd64/INSTALL.amd64
CD2:4.1/macppc/INSTALL.macppc
CD3:4.1/sparc/INSTALL.sparc
CD3:4.1/sparc64/INSTALL.sparc64
FTP:.../OpenBSD/4.1/alpha/INSTALL.alpha
FTP:.../OpenBSD/4.1/armish/INSTALL.armish
FTP:.../OpenBSD/4.1/hp300/INSTALL.hp300
FTP:.../OpenBSD/4.1/hppa/INSTALL.hppa
FTP:.../OpenBSD/4.1/landisk/INSTALL.landisk
FTP:.../OpenBSD/4.1/luna88k/INSTALL.luna88k
FTP:.../OpenBSD/4.1/mac68k/INSTALL.mac68k
FTP:.../OpenBSD/4.1/mvme68k/INSTALL.mvme68k
FTP:.../OpenBSD/4.1/mvme88k/INSTALL.mvme88k
FTP:.../OpenBSD/4.1/sgi/INSTALL.sgi
FTP:.../OpenBSD/4.1/vax/INSTALL.vax
FTP:.../OpenBSD/4.1/zaurus/INSTALL.zaurus

快速安装仅适合熟悉 OpenBSD 和"isklabel -E"命令用法的人。如果你根本不懂安装 OpenBSD，请参阅上面罗列的相应 INSTALL.* 文件!

OpenBSD/i386:

CD1:4.1/i386/floppy41.fs

使用 CD1:4.1/i386/floppyB41.fs 来制作引导软盘，可以获得更好的 SCSI 支持，或者使用 CD1:4.1/i386/floppyC41.fs 来制作引导软盘，获得更好的笔记本电脑支持。

如果你不能从 CD 和软盘启动的话，还可以用 PXE 通过网络安装，请参阅 INSTALL.i386 文件。

如果计划让 OpenBSD 与另一操作系统共存，双重启动，请参阅 INSTALL.i386 文件。

在 MS-DOS 环境制作启动软盘，请使用位于 CD1:4.1/tools/rawrite.exe 的"rawrite"工具。在 Unix OS 环境制作启动软盘，请使用 dd(1) 工具。下面是使用 dd(1) 的例子，"device"可以是"floppy"，"rfd0c"，或"rfd0a"。

# dd if=<file> of=/dev/<device> bs=32k

请确保你的软盘无坏道，已经正确格式化。否则很可能会安装失败。有关制作启动软盘和安装 OpenBSD/i386 的信息请参阅 FAQ 4.3.1。

OpenBSD/amd64:

CD2:4.1/amd64/floppy41.fs

如果不能从 CD 或软盘启动，可以用 PXE 通过网络来安装，有关信息请参阅 INSTALL.amd64 文件。

如果计划让OpenBSD 与另一个操作系统共存，双重启动，请参阅 INSTALL.amd64。

OpenBSD/macppc:

OpenBSD/macppc boot

或者在出现 Open Firmware 提示时，输入 boot cd:,ofwboot /4.1/macppc/bsd.rd 。

OpenBSD/sparc:

ok boot cdrom 4.1/sparc/bsd.rd
或
> b sd(0,6,0)4.1/sparc/bsd.rd

如果你的 SPARC 系统没有 CD 驱动器，将 floppy41.fs 写入软盘，通过软盘来启动安装。更多的信息请参阅 FAQ 4.3.1。根据 ROM 版本的不同，从软盘启动安装需要下面两个命令中的一个。

ok boot floppy
或
> b fd()

请确保你的软盘无坏道，已经正确格式化。否则很可能会安装失败。

如果你的 SPARC 系统没有软驱和 CD，你可以制作可引导磁带，或者通过网络来安装。相关内容在 INSTALL.sparc 中。

OpenBSD/sparc64:

boot cdrom

如果这个没用，或没有光驱，你可以把 CD3:4.1/sparc64/floppy41.fs 或 CD3:4.1/sparc64/floppyB41.fs 写入软盘，用它作为启动盘，输入 boot floppy 来启动。详细内容参阅 INSTALL.sparc64。

请确保你的软盘无坏道，已经正确格式化。否则很可能会安装失败。

你也可以将 CD3:4.1/sparc64/miniroot41.fs 写入磁盘中的 swap 分区，然后在启动时输入 boot disk:b 。

如果以上都不行，你可以通过网络来启动安装。相关内容在 INSTALL.sparc64 中。

OpenBSD/alpha:

根据你的机器类型，将 FTP:4.1/alpha/floppy41.fs 或 FTP:4.1/alpha/floppyB41.fs 写入软盘，然后在启动时输入 boot dva0 。详细内容参阅 INSTALL.alpha。

请确保你的软盘无坏道，已经正确格式化。否则很可能会安装失败。

OpenBSD/armish:

连接串口之后，Thecus 能直接通过网络用 tftp 或 http 启动。使用 fconfig 配置网络，重置之后，加载 bsd.rd。详细信息请参阅 INSTALL.armish 。IOData HDL-G 只能在 EXT2 格式的分区上启动。进入 linux，复制"boot"和"bsd.rd"到 wd0(hda1)，然后加载和运行 bsd.rd，保留 wd0i(hda1) 上的 EXT2 分区。请参阅 INSTALL.armish 以获得更多信息。

OpenBSD/hp300:

按照 INSTALL.hp300 的相关说明通过网络来启动安装。

OpenBSD/hppa:

按照 INSTALL.hppa 或 hppa 平台的相关说明通过网络来启动安装。

OpenBSD/landisk:

将 miniroot41.fs 写入 CF 卡或磁盘的开始，正常启动后安装。

OpenBSD/luna88k:

将 bsd.rd 复制到 Mach 或 UniOS 分区，通过 PROM 启动安装。你也可以制作可启动磁带来安装。更多信息请参阅 INSTALL.luna88k。

OpenBSD/mac68k:

正常启动 MacOS，将 FTP:4.1/mac68k/utils 下的程序 “BSD/Mac68k Booter” 解压到硬盘。用 bsd.rd 内核文件的位置配置 “BSD/Mac68k Booter”，启动后进入安装程序。更多相关信息请参阅 INSTALL.mac68k。

OpenBSD/mvme68k:

可以制作启动磁带或通过网络来安装。
网络启动需要支持 NIOT 和 NBO 调试命令的 MVME68K BUG 版本。更多相关信息请参阅 INSTALL.mvme68k。

OpenBSD/mvme88k:

可以制作启动磁带或通过网络来安装。
网络启动需要支持 NIOT 和 NBO 调试命令的 MVME88K BUG 版本。更多相关信息请参阅 INSTALL.mvme88k。

OpenBSD/sgi:

刻录一张 cd41.iso 的光盘，将其放入光驱中，从系统维护菜单中选择 Install System Software进行安装。

如果没有光驱，可以通过 DHCP 或 tftp 连接到网络服务器的话，用 bootp()/bsd.rd 来引导启动安装。更多相关信息请参阅 INSTALL.sgi。

OpenBSD/vax:

用 mopbooting 通过网络启动来安装，相关信息请参阅 INSTALL.vax。

OpenBSD/zaurus:

用 Linux 内置的图形化安装程序 ipkg 来安装 openbsd41_arm.ipk 包。重启之后，即可运行。更多信息请参阅INSTALL.zaurus。

关于源代码的说明:

# mkdir -p /usr/src
# cd /usr/src
# tar xvfz /tmp/src.tar.gz

sys.tar.gz 包含的源代码文件路径开始是 /usr/src/sys。该文件包括了重建内核需要的所有源代码。解压方法:

# mkdir -p /usr/src/sys
# cd /usr/src
# tar xvfz /tmp/sys.tar.gz

这些文件是 CVS 检出格式。可以使用匿名 CVS 服务器基于它们获得最新的版本。基于这些文件更新，比完全重新从 CVS 检出的速度要快得多。

How to upgrade

如果你已经安装了OpenBSD 4.0，不想重新安装，可以在升级指南中找到升级方法和忠告。

使用 ports 的方法

也提供了 ports 的档案文件。解压方法:

# cd /usr
# tar xvfz /tmp/ports.tar.gz
# cd ports

ports/ 子目录是 OpenBSD ports 树的检出副本。假如你不了解 ports，请浏览 ports 页面。该文件并非是如何使用 ports 的手册，它只是 OpenBSD ports 系统用户的初级读本。

ports/ 目录是我们从 CVS(如果你不熟悉 CVS，请参阅手册 cvs(1)) 检出的 ports 副本。与我们的代码一样，ports 也可以通过匿名 CVS 服务器更新。因此，为了确保版本是最新的，必须使 ports/ 在可读写的介质中，更新的命令是:

# cd [portsdir]/; cvs -d anoncvs@server.openbsd.org:/cvs update -Pd -rOPENBSD_4_1

[当然，在实际操作时需要将本地目录和服务器名称替换成你的 ports 所在位置和较近的匿名 CVS 服务器。]

注意大部分的 ports 可以通过 FTP 获得预先编译的二进制包。如果发现问题，会为 4.1 版本发布升级包。

如果你有兴趣观察 ports 的变动信息，或者帮助我们，或者只想获得更多的信息，请加入邮件列表 ports@openbsd.org 。

www@openbsd.org
$OpenBSD: 41.html,v 1.6 2009/11/10 13:38:43 ajacoutot Exp $