Mandriva Linux 2008.0 Release Notes Contents * 1 Introduction * 2 General information about new features and major changes * 3 Deprecation + 3.1 Support for loopback-based encrypted filesystems * 4 Changes to the Mandriva installer * 5 Changes to supported hardware and drivers + 5.1 Supported hardware + 5.2 Default NTFS write support + 5.3 Support for the Belgian eID card * 6 Kernel changes + 6.1 Naming + 6.2 Source and headers + 6.3 AppArmor + 6.4 Modular IDE drivers + 6.5 New devicescape wireless stack * 7 Changes regarding software packages + 7.1 XFS no longer used + 7.2 Changes to the NVIDIA and ATI proprietary driver packages o 7.2.1 NVIDIA o 7.2.2 ATI + 7.3 Man pages now compressed with LZMA + 7.4 New development package naming policy + 7.5 Compiz Fusion replaces Beryl + 7.6 Services no longer restarted when updating glibc + 7.7 GCC 4.2 not advised for Java development + 7.8 php and suhosin Introduction This page contains important information the Mandriva Linux 2008 release. The following topics are covered: * General information about new features and major changes * Changes to the Mandriva installer and upgrade instructions for Mandriva Linux 2007 Spring users * Changes to supported hardware and drivers * Changes regarding software packages * Other technical information for experienced users Please also refer to Mandriva Linux 2008 Errata - the Errata for the 2008 release. The Errata page contains information on known bugs and problems in the release and instructions on fixing, avoiding or working around them. Mandriva Linux 2008 is not yet released. These release notes currently cover the beta releases of Mandriva Linux 2008. The current beta release is Mandriva Linux 2008 beta 2. General information about new features and major changes Mandriva Linux 2008 includes the following versions of the major distribution components: kernel 2.6.22, X.org 7.2, KDE 3.5.7, GNOME 2.19.6, Mozilla Firefox 2.0.0.6, OpenOffice.org 2.2. Other major new features are the merging of the Beryl and Compiz 3D desktop technologies into Compiz Fusion, a new network management tool, a Windows documents and settings migration tool, and support for WPA-EAP. You can find an introduction to the most interesting new features in What's coming in Mandriva Linux 2008. Mandriva Linux 2008 will be available in several different editions: * the "One" edition will be an installable live CD integrating the latest proprietary drivers, available free of charge * the commercial editions will include support, services, a wider range of packages, and many third-party proprietary applications like Flash, Scilab and 03 Spaces * the "Free" edition will be pure free / open source software edition, without any of the non-free packages bundled with other editions; it is also available as a free download For more information on the editions in which the latest Mandriva Linux 2008 beta is available, see the specific page. For more information on the various editions, see Choosing the Mandriva Linux edition that's right for you. Additional information is also available online: * List of Compatible/Certified Computers and The detailed Mandriva Hardware Database * The Mandriva Club * The Mandriva User Forums * The Mandriva Wiki Deprecation Support for loopback-based encrypted filesystems Mandriva Linux has for some time included a tool named drakloop which can create and mount encrypted filesystems using the loopback technique via the losetup utility. This method of creating encryption is vulnerable to certain types of attack and is deprecated by the upstream kernel in favor of systems based on the new devicemapper framework. LUKS is the most prominent example of such a system. As of Mandriva Linux 2008, loopback-based encryption is deprecated in Mandriva Linux. Support will still be available for these filesystems, but we recommend all users begin the process of migrating to newer encryption systems. Support for loopback-based encryption may well be removed in future Mandriva Linux releases. Changes to the Mandriva installer Due to the change to modular IDE drivers (see below), installation to partitions beyond the 15th on IDE disks are no longer supported. Changes to supported hardware and drivers Supported hardware In addition to the improved graphics card support discussed above, support for other devices has been added or improved. Notable changes include support for: * NVIDIA Geforce 8400, 8500 and 8600 series graphics cards * Intel 4965AGN wireless chipsets * Intel Santa Rosa drive controllers * ATI SB700 chipset motherboards * Many newer onboard sound devices using the High Definition Audio codec, particularly on motherboards using Intel chipsets * Wacom Graphire and Intuos tablet input devices * Realtek 8187 USB and ZyDAS ZD1211/ZD1211B USB wireless controllers Default NTFS write support In Mandriva Linux 2008, drives and partitions formatted with the NTFS file system will be writable by default (via the use of the ntfs-3g driver). This applies to both conventional internal disks and to external disks, USB storage devices and so on. Support for the Belgian eID card Support has been added for the Belgian national electronic identity card system. The acr38u package contains a driver for the most commonly used card reader (the one distributed by the government), and the beid package provides the tools that allow the card to be used. The acr38u package will be automatically installed if the card reader is connected to the computer during installation. Kernel changes Mandriva Linux 2008 uses Linux kernel 2.6.22, updated from 2.6.17 in Mandriva Linux 2007 Spring. This involves many significant changes. Naming The kernel package has now adopted the kernel-tmb spec file, which means that the kernel packages have been renamed. The old kernel is now kernel-desktop. The old kernel-enterprise is now kernel-server. The old kernel-legacy is now kernel-desktop586. A kernel-laptop package is now introduced, which contains several customizations useful to laptops in terms of reducing power usage. Source and headers The official kernel packages have now adopted the kernel-tmb style for source and headers. Each kernel package now has its own -devel package - e.g. kernel-desktop586-devel - which contains the source and headers necessary for building external kernel modules. This is the package you should install if you need to compile external kernel modules. The single kernel-source package is of interest only to those who need to build an application against a complete copy of the kernel source, or those interested in building their own kernels. AppArmor Apparmor has replaced RSBAC as the in-kernel application security tool. Modular IDE drivers Drivers for IDE controllers are now compiled as modules rather than built into the kernel itself. This change should not have any consequences visible to the user: it will be handled by the installation / upgrade process. New devicescape wireless stack The new wireless stack known as devicescape or mac80211 has been added to the kernel. We now use the devicescape versions of several drivers by default, including the iwl3945 driver for Intel 3945ABG chipsets (replacing ipw3945), and the b43 driver for Broadcom chipsets (replacing bcm43xx). Changes regarding software packages XFS no longer used XFS, the X Font Server, is no longer used by default in Mandriva Linux 2008. It is still available and will function normally if manually enabled. This reduces the weight of the system with no regression in functionality in almost all cases. A new convention for defining font paths has been introduced with this change: font paths are added as symlinks in /etc/X11/fontpath.d/, which allows fonts to be installed and removed with the changes being reflected immediately with no need for XFS. More information on this change is available in this mail from the Cooker mailing list archives. Note that these changes are irrelevant to applications using fontconfig, which is almost all modern applications. Only fairly old applications will be at all affected by these changes. Changes to the NVIDIA and ATI proprietary driver packages The NVIDIA and ATI proprietary driver packages have a new maintainer, Anssi Hannula. He has made the following changes to the packages: NVIDIA The naming scheme has been updated. The new packages are: dkms-nvidia-current dkms-nvidia96xx dkms-nvidia71xx x11-driver-video-nvidia-current x11-driver-video-nvidia96xx x11-driver-video-nvidia71xx nvidia-current-devel nvidia96xx-devel nvidia71xx-devel Please note that users who upgrade from Mandriva Linux 2007 Spring or earlier to Mandriva Linux 2008 using urpmi will need to run drakx11 to re-configure their graphics card following these name changes. The name change should be handled automatically for users upgrading via the official installer. The NVIDIA configuration tools are now included in the package. ATI The naming scheme has been updated. The new packages are: dkms-fglrx x11-driver-video-fglrx fglrx-devel A new package, fglrx-control-center, has also been introduced. This contains the ATI configuration tool. Man pages now compressed with LZMA During the development of Mandriva Linux 2008, the compression format used for man pages has been changed from bzip2 to LZMA. All packages built after this change have their man pages in LZMA format. Note that some packages have not been rebuilt since this change, and their man pages are still compressed in bzip2 format. This change should be transparent in typical usage. New development package naming policy In prior releases, the names of development packages contained the library major version number, matching the non-development library package (so the development package for libfoo1 would be named libfoo1-devel). During the development of Mandriva Linux 2008, this policy was changed. In future, development packages will normally not include this version number (so the development package for libfoo1 will be named libfoo-devel). This resolves several problems with upgrading development packages when the library major version is changed, and reduces the complexity required in building these packages. In the rare cases where it is necessary to include development packages for two or more different library major versions, the most commonly used will be unversioned, and the others will be versioned. This change requires no special action on the part of users. This change has been applied to all packages built since the new policy was introduced. Packages that have not been rebuilt since the new policy was introduced will still include the version number in the package name. This does not cause any problems. Compiz Fusion replaces Beryl The Beryl 3D desktop technology has been merged back into Compiz (it began as a Compiz fork). Mandriva Linux 2008 no longer contains Beryl. On upgrading from a previous release, Beryl will be replaced by Compiz Fusion. All plugins that were previously available for Beryl are now available as Compiz Fusion plugins. Please note that as of Beta 1, drak3d is not capable of correctly configuring Compiz Fusion. This will be resolved in future releases. Please see the Mandriva Linux 2008 Errata for more details. Services no longer restarted when updating glibc In previous releases, if the glibc package was updated, all services in the current runlevel would be automatically restarted. From this release onwards, this will no longer occur. We advise that all processes should be restarted by the system administrator as soon as possible after an upgrade of the glibc package. If continued availability of the system is not critical, the simplest way to achieve this is to restart the system. Processes that are not restarted will still be using the old glibc and will be vulnerable to whatever problems or security issues are resolved by the updated glibc. GCC 4.2 not advised for Java development Due to issues described in Bug #21249, we do not advise the use of GCC 4.2 for Java development purposes. GCC 4.3 is available in the package gcc4.3, in the main repository. We advise that this version of GCC be used for the purposes of Java development. php and suhosin suhosin protection is enabled per default, if you don't want this please disable the php-suhosin extension by commenting the "extension = suhosin.so" line in the /etc/php.d/Z98_suhosin.ini configuration file. It is highly recommended to not disable the protection in critical production environments. Learn more about suhosin at http://www.hardened-php.net/suhosin/index.html.