Slashdot Mirror

← Back to Stories (view on slashdot.org)

What's New in OpenBSD 4.2?

Posted by Zonk on from the new-footloose-and-fancy-free dept.

blackbearnh writes "OpenBSD 4.2 was released today, and has a host of new features. O'Reilly's ONLamp site has a pretty thorough overview of the release. 'Even though security is still there, this release comes with some amazing performance improvements: basic benchmarks showed PF being twice as fast, a rewrite of the TLB shootdown code for i386 and amd64 cut the time to do a full package build by 20 percent (mostly because all the forks in configure scripts have become much cheaper), and the improved frequency scaling on MP systems can help save nearly 20 percent of battery power. And then the new features: FFS2, support for the Advanced Host Controller Interface, IP balancing in CARP, layer 7 manipulation with hoststated, Xenocara, and more!'"

31 of 203 comments (clear)

  1. Where to get it... by KingSkippus · · Score: 5, Informative

    Since the submitter didn't bother linking to their site (!!?), if you want to try out some of these amazing new features and improvements instead of just reading about them, you should head over to the OpenBSD 4.2 page and snag a copy!

    1. Re:Where to get it... by notamisfit · · Score: 3, Interesting

      I didn't see anything about it in the interview, but it looks like they've made install ISO's available for the various platforms (install42.iso in each directory). Might give it a spin if I can find a machine for it -- I gave 4.1 a try (and even bought a CD set) and was mostly impressed.

      --
      Jesus is coming -- look busy!
    2. Re:Where to get it... by Anonymous Coward · · Score: 2, Funny

      I think I'll wait until those evil linux developers rip the BSD copyright from the headers and relicense the lot under GPLv3. /ducks

  2. Jun-ichiro "itojun" Hagino by eldavojohn · · Score: 5, Informative
    It should probably be noted (as one of the articles states) that this release is dedicated to a man who passed away a few days ago. From another article on KernelTrap:

    "Jun-ichiro 'itojun' Itoh Hagino passed away on October 29, 2007 at the age of 37. "To those in the BSD communities he was simply Itojun, best known in his role as IPv6 KAME project core researcher. Itojun did the vast majority of the work to get IPv6 into the BSD network stacks. He was also instrumental in moving IPv6 forward in all aspects through his participation in IETF protocol design meetings. Itojun was helpful to everyone around him, and dedicated to his work. He believed and worked toward making technology available to everyone. He will be missed, and always remembered." Truly unfortunate for the open source community, the networking community & all of Itojun's family. It's a shame to see someone so promising go at a young age.
    --
    My work here is dung.
    1. Re:Jun-ichiro "itojun" Hagino by Anonymous Coward · · Score: 3, Insightful

      It says a lot about the kinds of people who post here when things like this happen, a man dies, and some random jackass makes a crack about it. Fuck you, you little shit, itojun was a good man. He put a huge amount of his life's work into the KAME project, and through it provided the world with IPv6, that's a significant accomplishment. What have you done? Made a jab about a dead man.

    2. Re:Jun-ichiro "itojun" Hagino by Anonymous Coward · · Score: 2, Informative

      He died almost instantly in a car accident. Stupid driver wasn't looking where he was going and plowed straight into him. It could happen to any one of us.

      He was a damn fine fellow and it's a real shame to see him gone. RIP.

    3. Re:Jun-ichiro "itojun" Hagino by nacturation · · Score: 3, Informative

      And if you want to learn about IPv6 he has a good series of videos.

      --
      Want to improve your Karma? Instead of "Post Anonymously", try the "Post Humously" option.
  3. Love! by antifoidulus · · Score: 4, Funny

    Remember, Theo de Raadt loves each and every one of you, he includes love in each copy of OpenBSD! Well, love or an incredible hatred of the x86 platform and everything not OpenBSD.

    --
    Monstar L
  4. Huh? by LotsOfPhil · · Score: 3, Funny

    What's BSD?

    --
    This post climbed Mt. Washington.
    1. Re:Huh? by king-manic · · Score: 2, Funny

      What's BSD? A LSD precursor.
      --
      "There are more things in heaven and earth, Horatio, than are dreamt of in your philosophy."
  5. Re:I need to try BSD by ByOhTek · · Score: 5, Informative

    One of the first things I do on FreeBSD after installing bash and portupgrade...

    portupgrade -Nf sysutils/gnutools
    echo "
    alias ls='gls --color=always'
    alias cp='gcp'
    alias mv='gmv'
    " >> ~/.bashrc

    Something similar will probably work on OpenBSD

    (oh, and for those who need their [modified] meems... OpenBSD is Undead, netcraft confirms it!)

    --
    Self proclaimed typo king, and inventor of the bear destroying coffee table (patent not pending).
  6. 4.2BSD by m2943 · · Score: 2, Informative

    Ah, that brings back memories of 4.2BSD, the first BSD with real Internet support.

    (OpenBSD 4.2 seems somewhat less exciting to me.)

  7. How dissapointing- they didn't include Xen by LukeCrawford · · Score: 2, Interesting

    Christoph Egger did a OpenBSD Xen port (based on the NetBSD xen stuff) see: http://hg.recoil.org/openbsd-xen-sys.hg It looked pretty promising. It's too bad they aren't going to support that platform. I've got lots of customers who'd really like a OpenBSD option.

    1. Re:How dissapointing- they didn't include Xen by e9th · · Score: 2, Informative

      Theo has strong feelings about virtualization.

  8. Request for information by cdn-programmer · · Score: 2, Interesting

    I've filed a bug report on this but at this point I'm not even sure its a bug... could be a hardware issue..

    If anyone is running Adaptec SCSI 2940 controllers with more than one SCSI hard drive and it works then I'd like to know... if anyone is having problems I'd like to know.

    The issue is that I have one 2940 fast narrow card and it won't boot... says there is no O/S. In the same machine... swap that card out to a 2940 fast wide and it boots just fine. Perhaps this is a firmware card issue. I have so far only tested these two cards... I plan to go get a handfull more.

    Next issue. With the fast wide all seems 100%. Then I start an rsync from another machine and within seconds I get a kernel panic. There is a bug report here: http://paste.lisp.org/display/49908#1

    Is OpenBSD bug report # 5616

    I'm not at this point asking anyone to debug this. I want to know if others have a similar setup and it works.

    This machine is a Pentium I, with two fast narrow SCSI disks and in this case an AHA 2940 FW card. There is nothing else on the bus.

    O/S version was 4.1 and now I can try the new version. Since OpenBSD is such a great O/S I sure would like to get to the bottom of this without wasting people's time. If we have a problem we need to know about it and potentially fix it. If its an isolated issue then I need to know this so I can shelve the hardware if in fact it is flakey hardware.

    Note: With that fast wide controller... dd if=/dev/sd1 of=/dev/sd1 bs=2048 will run 100% and never glitch at all. But try that rsync on the system.. kernel panics 100% of the time within seconds.

    1. Re:Request for information by Antique+Geekmeister · · Score: 2, Funny

      Welcome to the (lack of) driver support for OpenBSD.

    2. Re:Request for information by kv9 · · Score: 2, Funny

      3d graphics cards, anyone? USB->serial adapters? Wacom graphics tablets? External USB DVD burners? I've seen reports of all of them failing with OpenBSD, where they work well under Linux, even with live Linux CD's. all these have no purpose in a server orientated OS. OpenBSD supports lots of hardware and people that check if their hardware is supported before whining are known to be running it as a workstation (not a "desktop"). OBSD is exciting because of its PF goodness, various other network magics and security, not because it supports the latest tablets.

      Unless there's been a huge influx of driver support, which seems unlikely with Theo in charge and insulting polite GPL developers judge a man by his deeds, not his attitude.

      I see it stuck in supporting network security applicances, not desktop use. I don't see that as "stuck". not everyone is trying to make the next point-click-drool Noobuntu, you know?
      --
      Stop Computers/Cars Analogies on S
  9. Re:I need to try BSD by notamisfit · · Score: 2, Insightful

    Hmmm, I just learned to get used to no color, no longopts, and readable man pages. Crazy, innit? (Although, IMNSHO, zsh kicks the shit out of bash for usability).

    --
    Jesus is coming -- look busy!
  10. Good Desktop OS by LM741N · · Score: 4, Interesting

    I know OpenBSD is renowned as a secure system, but it also is a good desktop OS. In fact, I bet it recognizes more devices than my Windoze Vista. I was pleasantly surprised the last time I tried out OpenBSD on my laptop. My only complaint is that the ports are not as comprehensive as FreeBSD. But then, maybe I should be a maintainer for one and stop complaining, lol.

  11. Stable branch, still from source only? by BlueParrot · · Score: 2, Interesting

    One of the things that has put me of OpenBSD is the need to compile from source if you want to use the stable branch. I realise this is partially due to limited resources and priorities, but I would argue that this is probably one area where there is room for improvement.

    In any case they have done a lot of good work. Copyleft vs OSS ideology disputes aside. ; )

    1. Re:Stable branch, still from source only? by kv9 · · Score: 2, Informative

      One of the things that has put me of OpenBSD is the need to compile from source if you want to use the stable branch. I realise this is partially due to limited resources and priorities, but I would argue that this is probably one area where there is room for improvement. no you do not. stop spreading FUD. there are binary sets for multiple archs in every release. this also goes for the ports. it is clearly stated in the FAQ that if you want stable you should use binary packages. the only time when you have to compile is when you make changes to the kernel (or are tracking -current system or ports).
      --
      Stop Computers/Cars Analogies on S
  12. Never got the hang of patching it by Just+Some+Guy · · Score: 3, Interesting

    One thing I never really figured out with OpenBSD is why errata patches are handled the way they are. Why doesn't OpenBSD offer binary updates? For example, here are the instructions to fix errata entry 009 ("Fix possible heap overflow in file(1), aka CVE-2007-1536."):

    Apply by doing:
    cd /usr/src
    patch -p0 < 009_file.patch

    And then rebuild and install file:
    cd usr.bin/file
    make obj
    make cleandir
    make depend
    make
    make install

    Given that I installed from binary packages as do most users, and I might not even have a compiler installed, the startup cost of following those steps is fairly substantial. It seems like it would be easier for someone at OpenBSD to run those commands, see which files changed, wrap them up into a tarball, and distribute those - at least for the most popular architecture or two.

    Now, I'm not saying they should do this or that they owe it to us end users to do it. I just mean that it'd be amazingly convenient with a seemingly minimal amount of extra work. Am I wrong about what would be involved?

    --
    Dewey, what part of this looks like authorities should be involved?
  13. Re:I need to try BSD by Stamen · · Score: 2, Informative

    colorls is in ports for gnubies, Can't you just turn on color with ls -G like in OS X? No need for gnu ls. The only reason I'd want gnu stuff is to be consistent with the Linux servers, so I could have 1 set of scripts. Personally, I don't install gnu tools in OS X, I use ls - G, and curl instead of wget, etc.

  14. what is new? the answer is... by lordholm · · Score: 2, Informative

    There is a new song, as far as I am concerned, that is one of the more exciting features in OpenBSD 4.2. :)

    --
    "Civis Europaeus sum!"
  15. Oh boy! by rabel · · Score: 3, Funny

    basic benchmarks showed PF being twice as fast, a rewrite of the TLB shootdown code for i386 and amd64 cut the time to do a full package build by 20 percent (mostly because all the forks in configure scripts have become much cheaper)

    And the bifflespaf WTF has more pargodoogen XRR! But what about the Garblerackin' snarkenlugey 533p?

    Yeah, yeah, I know, it's /. so this is to be expected, but this is getting ridiculous.

  16. Because... by emil · · Score: 2, Insightful

    ...the OpenBSD philosophy is security through openness. When you receive a security patch as source code, you can see exactly what is being done. If the patch were to include a binary image, verification would be slightly more difficult.

    There have been binary patch projects (I used to use one at openbsd.org.mx), but since I have resigned myself to installing a compiler and the whole of the OS source code into /usr/src, I find the binary patches to be superfluous.

    OpenBSD does cling to some of the other BSD behaviors in lieu of POSIX. Default use of the long-deprecated C-Shell and old-style "ps" behavior ("ps aux" rather than "ps -ef") come to mind.

    Having everything in /usr/src is really the UNIX way from the days of old. It's a shame that we moved away from this practice.

  17. sp1? by farkus888 · · Score: 5, Funny

    I am thinking some of the optimizations to pf and the network stack are pretty cool but I think I will be waiting for sp1 when they have worked out all the bugs and security holes before I upgrade my machine.

    --
    thats right, I rarely use capitals. deal with it. but don't mistake my laziness for stupidity
  18. I'm just strollin' by FoolsGold · · Score: 4, Funny

    The only reason I clicked on this article is 'cos I really dig the red stylesheet for BSD news here. Reminds me of strawberries.

    I assume BSD has other, more useful features though.

  19. BSD License by Danathar · · Score: 2, Interesting

    And since this is all BSD licensed code you are free to take the code, put it in your proprietary "net security appliance" making any improvements of course without giving one single improvement back.

    There are SO many 1U security "black boxes" that obviously rip off OpenBSD for 95% of their product it's just pathetic. I don't recall many of them touting that they used OpenBSD or ever hearing some of the "cool" features they SAY they have ever being contributed back to the main code repository for OpenBSD.

    1. Re:BSD License by Slashcrap · · Score: 3, Interesting

      And since this is all BSD licensed code you are free to take the code, put it in your proprietary "net security appliance" making any improvements of course without giving one single improvement back.

      There are SO many 1U security "black boxes" that obviously rip off OpenBSD for 95% of their product it's just pathetic. I don't recall many of them touting that they used OpenBSD or ever hearing some of the "cool" features they SAY they have ever being contributed back to the main code repository for OpenBSD. Yes, I used to work for a company that did exactly this. They had a range of VPN gateways which were basically OpenBSD with a user interface. And while I'm not saying that they never contributed anything back, it definitely wasn't a priority.

      On the other hand, they also have a great deal of Linux based products. And whenever they need to fix any Linux bugs or add features, they always contribute them back. Doing otherwise would be a breach of the license and expose them to legal liabilities.

      The point is that as a rule, large corporations aren't going to do anything that they aren't legally obliged to do. You would probably call RMS a political zealot and an unrealistic idealist. But at the end of the day he's not the one that expects commercial enterprises to change their nature and act altruistically just because it would be nice. If they give those "cool" features back, they're also giving them to their competitors. Which is probably not a career extending move for the person responsible.

      If these realities offend you so much, I would suggest that you avoid releasing any software under the BSD license.
  20. Re:I need to try BSD by DrSkwid · · Score: 2, Funny

    > some of the GNU tools aren't there

    That's called a feature

    --
    There are places where the networks are not touching,and there are places where they are-Boeing's Lori Gunter