Allow freebsd-update to install binary updates to the FreeBSD base system

[probonopd]

The freebsd-update tool is used to fetch, install, and rollback binary updates to the FreeBSD base system.

% sudo freebsd-update fetch       
src component not installed, skipped
Looking up update.FreeBSD.org mirrors... 3 mirrors found.
Fetching public key from update2.freebsd.org... done.
Fetching metadata signature for 12.1-RELEASE from update2.freebsd.org... done.
Fetching metadata index... done.
Fetching 2 metadata files... done.
Inspecting system... done.
Preparing to download files... done.
Fetching 343 patches.....10....20....30....40....50....60....70....80....90....100....110....120....130....140....150....160....170....180....190....200....210....220....230....240....250....260....270....280....290....300....310....320....330....340. done.
Applying patches... 

WARNING: FreeBSD 12.1-RELEASE HAS PASSED ITS END-OF-LIFE DATE.
Any security issues discovered after Sun Jan 31 01:00:00 CET 2021
will not have been corrected.

% sudo freebsd-update install
src component not installed, skipped
Installing updates... done.

We should probably automatically create a ZFS Boot Environment before doing this.

[crees]

You could modify the ISO watcher to also run freebsd-update fetch on boot and daily thereafter, and change colour if any are available. The fetch stage is always safe, but notification for installing the updates is a good idea.

I think we need to think of another method for version upgrades (the eventual 12.2 to 12.3)-- perhaps pkgbase, but the plain fetch/install is probably an immediate need for security patches.

[probonopd]

Wrote some detailed thoughts over at https://github.com/helloSystem/Utilities/issues/33#issuecomment-800472572.