1 This file documents some of the problems you may encounter when upgrading
2 your ports. We try our best to minimize these disruptions, but sometimes
5 You should get into the habit of checking this file for changes each time
6 you update your ports collection, before attempting any port upgrades.
10 AFFECTS: users of sysutils/screen
11 AUTHOR: cy@FreeBSD.org
13 As of GNU Screen 4.4.0 (r417201):
15 Note that there was fix to screen message structure field
16 responsible for $TERM handling, making it impossible
17 to attach to older versions.
20 AFFECTS: users of databases/mysql57-*
21 AUTHOR: riggs@FreeBSD.org
23 The default location for my.cnf has changed from "/var/db/mysql/my.cnf"
24 to "/usr/local/etc/mysql/my.cnf". Existing my.cnf files must be merged
25 manually with the new default and moved to the new location. To
26 continue using the my.cnf file at the old location, set "mysql_optfile"
27 in /etc/rc.conf to point to the location of the existing my.cnf file.
30 AFFECTS: users of www/node5
31 AUTHOR: bradleythughes@fastmail.fm
33 Node.js v5.x has reached end of life and has been removed. Users that
34 have not yet moved to v6.x should do so now by switching to the www/node
38 AFFECTS: users of sysutils/rsyslog7
39 AUTHOR: brd@FreeBSD.org
41 Rsyslog 7.x has reached end of life status and is being marked as
42 depreciated. Rsyslog 8 has been made the default.
45 AFFECTS: users of www/calendarserver
46 AUTHOR: pi@FreeBSD.org
48 Please note that updating from the previous version (5.1) to the current
49 version (8.0) requires manual steps. Please consult the pkg-message for
53 AFFECTS: users of shells/zsh
54 AUTHOR: adamw@FreeBSD.org
56 zsh now looks for system-wide conf files in ${PREFIX}/etc, instead of
57 /etc. If you have files like zshrc, zshenv, zprofile, zlogin, or zlogout
58 in /etc, either move them to /usr/local/etc or rebuild zsh with the
61 Note that this change only affects system-wide conf files, which are not
62 installed or created by a default installation.
65 AFFECTS: users of www/redmine
66 AUTHOR: tz@FreeBSD.org
68 Redmine was updated from 2.6.9 to 3.2.3. Since this an update over
69 major versions be careful with your update.
70 For further update instructions please have a look at:
71 https://www.redmine.org/projects/redmine/wiki/RedmineUpgrade
74 AFFECTS: users of ftp/wget
75 AUTHOR: vd@FreeBSD.org
77 Wget 1.18 fixes a security vulnerability (CVE-2016-4971) and the fix
78 introduces a backward-incompatibility for HTTP->FTP redirects. Any script that
79 relies on the old behaviour must use --trust-server-names in order to trust
80 the HTTP response and redirect to the new filename.
83 AFFECTS: users of databases/py-apsw
84 AUTHOR: rm@FreeBSD.org
86 SQLite 3.12 completely changed the semantics of VFS.xGetLastError() in an
87 incompatible way. This required a rewrite of the relevant C, Python and test
88 code. If you implement or use this method then you have to rewrite your code
89 too. Also note that running the test suite from an earlier version of APSW
90 against this or future SQLite versions will result in consuming all memory,
91 swap or address space (an underlying integer changed meaning).
94 AFFECTS: users of security/openssl*, security/libressl*
95 AUTHOR: mat@FreeBSD.org
97 Previously, to tell the ports tree, you needed to set:
101 And if you wanted a port that was not security/openssl, you needed to add,
104 OPENSSL_PORT= security/libressl
106 Now, all you need to do is:
108 DEFAULT_VERSIONS+= ssl=libressl
110 Valid values are base, openssl, openssl-devel, libressl, and libressl-devel.
113 AFFECTS: users of www/node, www/node5, and www/node4
114 AUTHOR: adamw@FreeBSD.org
116 node now prefers a few libraries from ports to the versions bundled
117 with node. However, node cannot use the libssl from LibreSSL. If you
118 are using LibreSSL as your SSL provider, you must enable the
119 "BUNDLED_SSL" option when building node.
122 AFFECTS: users of textproc/xmlroff
123 AUTHOR: hrs@FreeBSD.org
125 The library part of xmlroff has been separated into textproc/libfo.
126 Remove the installed xmlroff first when upgrading it because older
127 xmlroff than 0.6.2_6 have files which libfo installs. A typical
128 error message is the following:
130 pkg-static: libfo-0.6.2 conflicts with xmlroff-0.6.2_5 (installs files into the same place). Problematic file: /usr/local/include/libfo-0.6/libfo/area/fo-area.h
133 AFFECTS: users of databases/postgresql-repmgr
134 AUTHOR: bofh@FreeBSD.org
136 The port has been repocopied to databases/postgresql-repmgr2 and current
137 post has been updated to 3.x series. If anyone is still looking forward
138 to use the 2.x please upgrade as following.
140 # portmaster -o databases/postgresql-repmgr2 databases/postgresql-repmgr
142 # portupgrade -o databases/postgresql-repmgr2 databases/postgresql-repmgr
144 Otherwise if you want to move on with 3.x series just use
146 # portmaster -r databases/postgresql-repmgr
148 # portupgrade -fr databases/postgresql-repmgr
151 AFFECTS: Users of www/h2o
152 AUTHOR: junovitch@FreeBSD.org
154 File paths no longer have a trailing / appended to them. This enables
155 directing specific paths to a file but may break existing configurations.
156 Refer to https://h2o.examp1e.net/configure/file_directives.html and
157 revise your yaml config appropriately.
160 AFFECTS: users of security/libressl-devel
161 AUTHOR: brnrd@FreeBSD.org
163 The port has been updated to the latest "unstable" version of LibreSSL.
164 The shared library versions of the libraries have been bumped.
165 With this update, the patch for the OPENSSL_VERSION_NUMBER has been
166 removed. This causes issues with a number of ports. Patches for many of
167 these issues can be found on
168 https://wiki.freebsd.org/LibreSSL/Ports#OPENSSL_VERSION_NUMBER
170 After upgrading to 2.4.0, manually update all packages that depend on
171 any of the libraries provided by LibreSSL (libssl, libcrypto and
172 libtls) since the versions of these libraries have changed. Normally,
173 you can obtain the list of dependent software by running the following
176 # pkg info -r libressl-devel
178 Then you should rebuild all ports depending on libressl-devel to avoid
179 dangling shared library dependencies. Poudriere and pkg handle this
180 correctly, portmaster and portupgrade users can use the following to
181 rebuild all dependent ports.
184 portmaster -r libressl-devel
186 portupgrade -fr security/libressl-devel
189 AFFECTS: Users of mail/opensmtpd-extras (any of them)
190 AUTHOR: adamw@FreeBSD.org
192 The invocation for extras has changed. Some extras might fail unless
193 you pass all options/arguments separated by quotes:
195 filter myfilter dnsbl "-c /var/chroot/dnsbl" "-h my.dnsbl.com"
197 Additionally, extras now run in a chroot. Either pass "-C" to skip the
198 chroot entirely (not recommended), or put all required config files,
199 resolv.conf, and external binaries into the chroot. For example:
201 # mkdir -p /var/chroot/dnsbl/etc
202 # cp /etc/resolv.conf /var/chroot/dnsbl/etc
204 And pass "-c /var/chroot/dnsbl" to the filter.
207 AFFECTS: Users of mail/opensmtpd
208 AUTHOR: brnrd@FreeBSD.org
210 Due to changes to the rc-script you must stop smtpd prior to upgrading
211 mail/opensmtpd to version 5.9.2
215 Then upgrade OpenSMTPD to version 5.9.2.
216 Additionally version 5.9.2 changes the file mode bits for two directories.
217 To allow existing installations to start succesfully you must apply the
220 # chown -R root:_smtpq /var/spool/smtpd/offline
221 # chmod -R 770 /var/spool/smtpd/offline
222 # chmod -R 700 /var/spool/smtpd/purge
224 After applying the changes, the smtpd daemon can succesfully be started.
227 AFFECTS: Users of devel/qtcreator
228 AUTHOR: nolden@kde.org
230 QBS (Qt Build System) was previously shipped as part of qtcreator, now
231 it is independently available as devel/qbs. However, on upgrading
232 qtcreator to 3.6.1, the depends will detect qbs through a previously
233 installed qtcreator port and will not build/install correctly
234 (devel/qbs won't be installed automatically as depends)
236 The solution is to pkg remove qtcreator, then building works correctly.
239 AFFECTS: Users of databases/db6
240 AUTHOR: mandree@FreeBSD.org
242 The databases/db6 port has been updated to release 6.2.23.
244 This requires manual action in two places:
245 1. dependent applications need to be recompiled,
246 2. SQL databases, if any, need to be reindexed.
248 To obtain a list of ports needing a recompilation,
249 the following command should provide it:
253 Then rebuild db6 and the dependent ports. For pkg users, this should
257 # portmaster -r databases/db6
259 # portupgrade -fr databases/db6
261 In order to reindex SQL databases, a db6-upgrade61.sh script is
262 provided in ${PREFIX}/bin, if and only if the port's SQL option is
263 enabled. For detailed reindexing instructions, see
264 http://docs.oracle.com/cd/E17076_05/html/installation/sqlite_ver61.html
265 and note that the FreeBSD port installs the upgrade61.sh script with a
266 db6- prefix that you need to add.
269 AFFECTS: Users of audio/clementine-player
270 AUTHOR: sbruno@FreeBSD.org
272 The audio/clementine-player port has been updated to v1.3.1, the latest
273 upstream release. The music database code now has a hard dependency on
274 databases/sqlite having the FTS3_TOKENIZER option enabled. This has
275 been made the default option in databases/sqlite.
277 Without this option, clementine-player will crash on startup.
280 AFFECTS: Users of biology/seqan
281 AUTHOR: junovitch@FreeBSD.org
283 The biology/seqan port has been split into biology/seqan (only the
284 library) and biology/seqan-apps for the programs based on SeqAn. Both
285 ports are based on version 2.1.1 of the SeqAn repository. There is a new
286 biology/seqan1 port with version 1.3 of SeqAn for backwards compatibility,
287 but this port will likely be deprecated in the next year so please update
288 your software to SeqAn2.
291 AFFECTS: Users of www/node
292 AUTHOR: bradleythughes@fastmail.fm
294 The www/node port has been updated to node.js v6.0.0, the latest
295 upstream release. Users of node.js v5.x are encouraged to upgrade as
296 soon as possible, as upstream support will end two months from now.
298 The www/node5 port has been created to aid users transition. Use one of
299 the following commands to continue using node.js v5.x:
303 # portmaster -o www/node5 www/node
305 # portupgrade -o www/node5 www/node
308 AFFECTS: users of security/libressl
309 AUTHOR: brnrd@FreeBSD.org
311 LibreSSL 2.3 has removed SSLv3 support completely which leads to issues
312 with a number of ports. Patches for many of these issues can be found
313 on https://wiki.freebsd.org/OpenSSL/No-SSLv3
315 After upgrading to 2.3.4, manually update all packages that depend on
316 any of the libraries provided by LibreSSL (libssl, libcrypto and
317 libtls) since the versions of these libraries have changed. Normally,
318 you can obtain the list of dependent software by running the following
321 # pkg info -r libressl
323 Then you should rebuild all ports depending on libressl to avoid dangling
324 shared library dependencies. Poudriere and pkg handle this correctly,
325 portmaster and portupgrade users can use the following to rebuild all
329 portmaster -r libressl
331 portupgrade -fr security/libressl
334 AFFECTS: Users of mail/dspam
335 AUTHOR: junovitch@FreeBSD.org
337 dspam has been modified to no longer run as root:mail by default.
338 Existing configuration must be adjusted to reflect using a non-privileged
339 port and the /var/run/dspam directory for PID and socket files. If you
340 need dspam to run as root for your mail setup, you can use the SETUID
341 config option to enable the old insecure behavior.
344 AFFECTS: users of www/nginx and www/nginx-devel
345 AUTHOR: osa@FreeBSD.org
347 The ${MODULESDIR}, default directory for dynamic modules, has been
348 changed from ${ETCDIR}/modules to ${PREFIX}/libexec/${PORTNAME}.
349 It's highly recommended to review existing configuration files of
350 nginx, i.e. ${PREFIX}/etc/nginx/nginx.conf.
353 AFFECTS: Users of net-mgmt/icinga2
354 AUTHOR: lme@FreeBSD.org
356 The creation of Icinga2 directories and files in /var is now controlled
357 by the /etc/rc.conf variable icinga2_mkvar. Earlier ports always
358 created the /var entries, but could slow startup significantly when /var
359 was a normal disk rather than a RAM disk. icinga2_mkvar defaults to
363 AFFECTS: users of audio/chromaprint
364 AUTHOR: jhale@FreeBSD.org
366 chromaprint has been updated to version 1.3.1 and includes a shared
367 library bump. PORTREVISIONS have been bumped on affected ports.
368 If you are using binary pkg, 'pkg upgrade' will do the right thing.
369 Users of portmaster/portupgrade must rebuild all ports which depend
373 portmaster -w -r chromaprint
375 portupgrade -fr audio/chromaprint
378 AFFECTS: Users of www/tt-rss
379 AUTHOR: thierry@FreeBSD.org
381 Tiny Tiny RSS can use a database running on a separate server.
382 Previously, in this case, you had to set the option DBLOCAL; this option
383 has been removed and replaced by a settable run-time flag: now you
386 in your /etc/rc.conf .
389 AFFECTS: Users of graphics/kipi-plugin-googledrive and graphics/kipi-plugin-picasaweb
390 AUTHOR: kde@FreeBSD.org
392 DigiKam and its related ports have been updated to 4.14.0, the latest
393 stable upstream release.
395 The graphics/kipi-plugin-googledrive and graphics/kipi-plugin-picasaweb
396 have both been merged into the new graphics/kipi-plugin-googleservices
397 following a move done upstream.
399 Those two ports must be removed, and graphics/kipi-plugin-googleservices
400 should be used instead.
403 AFFECTS: All users of www/node-devel
404 AUTHOR: bradleythughes@fastmail.fm
406 www/node-devel was outdated and has been removed. Upstream no longer
407 releases a development version. You can use the www/node port to get
408 node.js 5.x by running one of the following commands:
412 # portmaster -o www/node www/node-devel
414 # portupgrade -o www/node www/node-devel
417 AFFECTS: multimedia/x264
418 AUTHOR: jbeich@FreeBSD.org
420 LSMASH replaced GPAC by default. If you use BATCH=y in /etc/make.conf
421 and hit below error make sure to re-run "make config".
423 ====> You cannot select multiple options from the MP4 radio
427 AFFECTS: Users of net/samba42 and net/samba/43
428 AUTHOR: timur@FreeBSD.org
430 Samba 4.2.x and 4.3.x ports have been updated to address
431 BadLock(http://badlock.org) vulnerability, as well as few other
434 Please note that Samba 4.1.x and older versions are also affected by
435 the issues fixed with this release but are not supported anymore. It is
436 strongly recommend to upgrade to a recent version at your earliest
439 The security updates include new smb.conf options and a number of
440 stricter behaviours to prevent Man in the Middle attacks. Between these
441 changes, compatibility with a large number of older software versions
442 has been lost in the default configuration.
444 For more information about the related behaviour changes and the
445 security issues please visit:
447 https://www.samba.org/samba/latest_news.html#4.4.2
448 https://www.samba.org/samba/history/samba-4.3.8.html
449 https://www.samba.org/samba/history/samba-4.2.11.html
452 AFFECTS: Users if databases/influxdb
453 AUTHOR: cheffo@freebsd-bg.org
455 To upgrade to InfluxDB 0.12, you must be on version 0.10 and all shards must
456 be in TSM format (the default storage engine starting with InfluxDB 0.10).
457 See the 0.10 documentation [1] for how to convert b1 and bz1 shards to TSM. If
458 any b1 or bz1 shards are present, InfluxDB 0.12 will not start.
460 Next, you need to update your metastore *before updating to 0.12.* [2]
462 [1] https://docs.influxdata.com/influxdb/v0.10/administration/upgrading/#convert-b1-and-bz1-shards-to-tsm1
463 [2] https://docs.influxdata.com/influxdb/v0.12/administration/upgrading/
466 AFFECTS: All users of www/pecl-http
469 www/pecl-http has been updated to the latest 3.x stable release, which
470 supports php70+ and a new port www/pecl-http2 has been created for the
473 Should users want to continue to use version 2.x, replace www/pecl-http with
474 www/pecl-http2 as follows:
478 # pkg delete pecl-http
479 # pkg install pecl-http2
483 # portupgrade -o www/pecl-http2 www/pecl-http
487 # portmaster -o www/pecl-http2 www/pecl-http
490 AFFECTS: users of lang/ruby21
491 AUTHOR: swills@FreeBSD.org
493 The default ruby version has been updated from 2.1 to 2.2.
495 If you compile your own ports you may keep 2.1 as the default version by
496 adding the following lines to your /etc/make.conf file:
499 # Keep ruby 2.1 as default version
501 DEFAULT_VERSIONS+=ruby=2.1
503 If you wish to update to the new default version, you need to first stop any
504 software that uses ruby. Then, you will need to follow these steps, depending
505 upon how you manage your system.
507 If you use pkgng, simply upgrade:
510 If you use portmaster, install new ruby, then rebuild all ports that depend
512 # portmaster -o lang/ruby22 lang/ruby21
513 # portmaster -R -r ruby-2.2
515 If you use portupgrade, install new ruby, then rebuild all ports that depend
518 # pkg delete -f ruby portupgrade
519 # make -C /usr/ports/ports-mgmt/portupgrade install clean
520 # pkg set -o lang/ruby21:lang/ruby22
521 # portupgrade -x ruby-2.2.\* -fr lang/ruby22
524 AFFECTS: mail/spamassassin
525 AUTHOR: adamw@FreeBSD.org
527 Support for SSLv3 has been removed from SpamAssassin, because
528 SSLv3 is a Bad Idea. No direct option is provided to re-enable it.
529 If your setup requires use of SSLv3, some instructions are available
530 in FreeBSD PR 208225.
533 AFFECTS: security/clamav-unofficial-sigs
534 AUTHOR: lukasz@wasikowski.net, sf@maxempire.com
536 This version of clamav-unofficial-sigs is eXtremeSHOK's fork.
537 Configuration file location has changed from
538 %PREFIX%/clamav-unofficial-sigs.conf to
539 %PREFIX%/clamav-unofficial-sigs/
541 master.conf and os.conf hold default values, local changes should
542 be placed in user.conf.
545 AFFECTS: print/ghostscript9-base
546 AUTHOR: tijl@FreeBSD.org
548 The default Ghostscript port has changed from print/ghostscript9-base,
549 which is no longer developed, to print/ghostscript9-agpl-base. Package
550 users will upgrade automatically. Ports users can stick with the old
551 port by adding "DEFAULT_VERSIONS+=ghostscript=9" to /etc/make.conf, or
552 move to the new port with:
554 portmaster -o print/ghostscript9-agpl-base ghostscript9-base
555 or: portupgrade -o print/ghostscript9-agpl-base print/ghostscript9-base
557 And if you have ghostscript9-x11 installed:
559 portmaster -o print/ghostscript9-agpl-x11 ghostscript9-x11
560 or: portupgrade -o print/ghostscript9-agpl-x11 print/ghostscript9-x11
562 Note that print/ghostscript9-agpl-base is licensed under the AGPLv3
563 while print/ghostscript9-base is licensed under the GPLv3.
566 AFFECTS: security/openvas-client
567 AUTHOR: tijl@FreeBSD.org
569 The OpenVAS ports have been updated from version 2 to version 8. All
570 components have been renamed and rearranged. The old OpenVAS client
571 no longer exists. Instead there is a web interface provided by
572 security/greenbone-security-assistant or a command-line interface
573 provided by security/openvas-cli.
577 AUTHOR: tijl@FreeBSD.org
579 HPLIP has been updated to verion 3.16.2. As part of the update support
580 for the hpijs/foomatic-rip filter has been dropped. This has long been
581 unsupported upstream. If you used this filter with your printer you'll
582 have to remove the printer with HP Device Manager and then add it back as
586 AFFECTS: print/cups-base, print/cups-client, print/cups-image
587 AUTHOR: tijl@FreeBSD.org
589 The cups-base, cups-client and cups-image packages have been combined
590 into one cups package.
592 If you build your own ports the easiest way to update is to delete these
593 packages first and then build and install print/cups.
595 If you are using binary packages, depending on the packages installed on
596 your system, pkg(8)'s solver might get confused. In this case do not proceed
597 with the upgrade but delete first the packages:
599 pkg delete -fg "cups*"
601 Then usual upgrade process: pkg upgrade
603 The device URI of USB printers has changed so you have to adjust the
604 printer configuration. Go to http://localhost:631/printers/. Click on
605 your printer and select "Modify Printer" in the Administration drop-down.
606 You should then be able to select the new URI of the printer. The web
607 interface requires cookies and JavaScript to function properly so make
608 sure your browser does not block them.
610 The package also installs a devd(8) configuration file now that gives
611 cups access to USB printers. Unless you have any special needs you can
612 remove any devd(8), devfs.conf(5) or devfs.rules(5) configuration related
613 to cups that you may have added in the past.
616 AFFECTS: net-mgmt/yaf
617 AUTHOR: pi@FreeBSD.org
619 YAF is updated to version 2.8.1 with many new OPTIONS. Please use
620 the default options to get same behavior as previous version.
623 AFFECTS: audio/alsa-utils, www/firefox, www/firefox-esr, www/seamonkey
624 AUTHOR: jbeich@FreeBSD.org
626 ALSA backend in libcubeb as used by Firefox has an unresolved issue
627 with the OSS patch in audio/alsa-plugins. To avoid excessive CPU
628 usage when playing HTML5 videos rebuild the port with BUFSZ_P2
629 option enabled or reset options to default.
631 However, with BUFSZ_P2 enabled alsa-utils may crash:
634 Playing WAVE 'test.wav' : Signed 16 bit Little Endian, Rate 48000 Hz, Stereo
635 Assertion failed: (err >= 0), function set_params, file aplay.c, line 1289.
636 Aborted by signal Abort trap...
639 AFFECTS: users of security/openssh-portable-devel
640 AUTHOR: bdrewery@FreeBSD.org
642 openssh-portable-devel has been removed since it is stale, insecure and
643 not worth maintaining any longer.
645 Users should switch back to openssh-portable.
649 # pkg delete openssh-portable-devel
650 # pkg install openssh-portable
654 # portmaster -o security/openssh-portable openssh-portable-devel
658 # portupgrade -o security/openssh-portable security/openssh-portable-devel
661 AFFECTS: users of mail/postfix
662 AUTHOR: ohauer@FreeBSD.org
664 Postfix has been updated to version 3.1, VDA and native SPF is no
667 - if VDA support is needed, users should stay on mail/postfix211
668 - SPF support can be added to postfix via one of the mail/*spf* ports
670 The Dovecot SASL OPTION was removed, Dovecot SASL support is always given
671 from now on. In addition, for each mail/postfix* port there is now a
672 mail/postfix*-sasl slave port providing Cyrus SASL as default.
674 To stay on postfix-2.11.x run the command:
676 # pkg set -o mail/postfix:mail/postfix211
679 AFFECTS: users of www/nginx-devel
680 AUTHOR: osa@FreeBSD.org
682 Dynamic modules support has been enabled for the following third-party
683 modules, in case of usage of these modules please update nginx
684 configuration file for load these modules:
686 load_module "modules/ngx_dynamic_upstream_module.so";
687 load_module "modules/ngx_http_small_light_module.so";
690 AFFECTS: users of www/nginx-devel
691 AUTHOR: osa@FreeBSD.org
693 Dynamic modules support has been enabled for the following third-party
694 modules, in case of usage of these modules please update nginx
695 configuration file for load these modules:
697 load_module "modules/ngx_http_echo_module.so";
698 load_module "modules/ngx_http_headers_more_filter_module.so";
699 load_module "modules/ngx_http_eval_module.so";
700 load_module "modules/ngx_http_lua_module.so";
701 load_module "modules/ngx_http_set_misc_module.so";
704 AFFECTS: users of www/nginx-devel
705 AUTHOR: osa@FreeBSD.org
707 Dynamic modules support has been enabled. In case of usage following
708 modules please update nginx configuration file for load these modules:
710 load_module "modules/ngx_http_geoip_module.so";
711 load_module "modules/ngx_http_image_filter_module.so";
712 load_module "modules/ngx_http_xslt_filter_module.so";
713 load_module "modules/ngx_mail_module.so";
714 load_module "modules/ngx_stream_module.so";
716 See https://www.nginx.com/blog/dynamic-modules-nginx-1-9-11/ for details.
719 AFFECTS: users of net-im/uTox
720 AUTHOR: amdmi3@FreeBSD.org
722 Before upgrading uTox port, please set maximum font scale in the
726 AFFECTS: users of security/tor, security/tor-devel
727 AUTHOR: amdmi3@FreeBSD.org
729 The tor ports now create /var/log/tor subdirectory for tor logs. If
730 you've used /var/log/tor as a log _file_, you'll need to update your
731 torrc and move the file before updating the port.
734 AFFECTS: users of mail/rspamd and mail/rmilter
735 AUTHOR: vsevolod@FreeBSD.org
737 Rspamd has been updated to the version 1.1.0. If you have used per user
738 statistics, then please consult changelog for details: your configuration
741 Rmilter has been updated to the version 1.7.0. Support of SPF and Spamassassin
742 has been dropped from this project completely. You might also consider
743 migration from memcahched to redis in this version.
746 AFFECTS: users of sysutils/ansible
747 AUTHOR: lifanov@mail.lifanov.com
749 Ansible 2.0.0 introduces a number of incompatible configuration changes.
750 Please read changelog and migrate current configuration:
752 https://raw.githubusercontent.com/ansible/ansible/v2.0.0.0-1/CHANGELOG.md
754 Ansible 1.9.* will be provided as sysutils/ansible1 until the next update
758 AFFECTS: users of security/easy-rsa
759 AUTHOR: mandree@FreeBSD.org
761 The port has been upgraded to version 3. This incurs major changes,
762 please see ${PREFIX}/share/doc/easy-rsa/doc/EasyRSA-Upgrade-Notes.md
765 The old version 2.2.2 has been retained as security/easy-rsa2.
768 AFFECTS: users of games/nethack34
769 AUTHOR: glewis@FreeBSD.org
771 The port name and installation location of games/nethack34 have changed
772 to allow for a port of NetHack 3.6.0. To preserve your save and bones
773 files do the following after updating:
775 # sudo cp -p ${LOCALBASE}/share/nethack/save/* ${LOCALBASE}/share/nethack34/save/
776 # sudo cp -p ${LOCALBASE}/share/nethack/bon* ${LOCALBASE}/share/nethack34/
778 After verifying the files were copied correctly, remove the playground
779 directory (as these files are incompatible with NetHack 3.6.0).
781 # sudo rm -r ${LOCALBASE}/share/nethack
784 AFFECTS: users of net/samba4, net/samba41
785 AUTHOR: timur@FreeBSD.org
787 Given version of Samba were marked as deprecated. Please, consider to upgrade.
789 Samba4 was giving wrong builds with recent version of p5-Parse-Pidl. It was
790 converted to use bundled version instead and to conflict with the given package.
791 If you still intend to build net/samba4 - remove p5-Parse-Pidle first.
794 AFFECTS: users of security/tor, security/tor-devel
797 Tor rc.d script no longer overrides or forces logfile configuration,
798 you now need to setup logging by hand. To preserve old behavior, add
799 the following line to /usr/local/etc/tor/torrc:
801 Log notice file /var/log/tor
804 AFFECTS: All users of www/node
807 www/node has been updated to the latest 5.x stable release, and a new port
808 www/node4 has been created for the 4.x LTS branch.
810 Should users want to continue to use version 4.x, replace www/node with
811 www/node4 as follows:
820 # portupgrade -o www/node4 www/node
824 # portmaster -o www/node4 node
827 AFFECTS: users of comms/gammu
828 AUTHOR: vanilla@FreeBSD.org
830 The python binding of comms/gammu were split from the main port. To get them you
831 need to install comms/py-gammu.
834 AFFECTS: users of mail/postfixadmin
835 AUTHOR: riggs@FreeBSD.org
837 Caveat when updating to version 2.93: If you have an existing
838 configuration and are NOT using the recommended practice of putting your
839 settings changes in config.local.php:
841 Copy config.inc.php to config.local.php prior to upgrading, then revise
842 config.local.php for the current version afterward.
844 Postfixadmin will not function correctly unless correct and complete
845 data structures are placed in config.inc.php. Therefore the file must be
846 upgraded as part of the package and any changes to config.inc.php will
849 Detailed information regarding this procedure is provided in step 3 of
850 the installation instructions in ${DATADIR}/INSTALL.TXT (by default
851 /usr/local/share/postfixadmin/INSTALL.TXT).
854 AFFECTS: users of devel/ncurses
855 AUTHOR: bapt@FreeBSD.org
857 ncurses has been updated to 6.0.
858 If you are using binary pkg, 'pkg upgrade' will do the right thing.
859 Users of portmaster/portupgrade must rebuild all ports which depend
863 portmaster -w -r ncurses
865 portupgrade -fr devel/ncurses
868 AFFECTS: users of x11-toolkits/qt4-gui or x11-toolkits/qt5-gui
869 AUTHOR: kde@FreeBSD.org
871 Back in mid-2012, pkg-message was added to the port suggesting changes to the
872 default shared memory limits in loader.conf(5). Since then, the default
873 limits have been changed and the values suggested by the port are no longer
874 sensible. If you have changed the following values in loader.conf(5) due to
875 qt4-gui's or qt5-gui's pkg-message, please considering removing them and
876 using the default settings:
880 See base r209037 and ports PR 202927 for more context.
883 AFFECTS: users of sysutils/logstash
884 AUTHOR: junovitch@FreeBSD.org
886 Logstash has been updated to the 2.1.0 release. The embedded ElasticSearch
887 instance is no longer supported. If in use, end users must update
888 logstash.conf to point to the URL of an ElasticSearch instance.
891 AFFECTS: users of net/samba43
892 AUTHOR: timur@FreeBSD.org
894 A new version of Samba server that has better integration with Windows 10.
895 This is still experimental and there were reports that rolling upgrade from
896 previous version of Samba fails to work.
898 Please, backup all relevant files from /var/db/samba4/ directory, as well
899 as configuration files.
901 Follow https://wiki.samba.org/index.php/Updating_Samba for the upgrade path.
904 AFFECTS: users of net/samba4, net/samba41, net/samba42
905 AUTHOR: timur@FreeBSD.org
907 Recent versions of devel/talloc, devel/tevent, database/tdb, database/ldb
908 contained infinit recursive call to the strtol* set of replacement functions,
909 which lead to coredumps. Unofficial patch was added meanwhile, but now
910 official version of the fixed libs were released. If your version of
911 net/samba4 works fine you don't need to recompile it. Other ports were also
912 upgraded and some bugs were fixed in upstream.
915 AFFECTS: users of audio/audacity
916 AUTHOR: riggs@FreeBSD.org
918 Audacity has been upgraded to version 2.1.1. Changes in its settings
919 processing may prevent it from starting. If this happens, removing its
920 user-specific configuration directory ~/.audacity-data resolves this.
923 AFFECTS: users of mail/rmilter
924 AUTHOR: vsevolod@FreeBSD.org
926 Rmilter now has switched from user postfix to user _rmilter for security
927 and sanity purposes. You might want to fix the ownership of
928 /var/run/rmilter to user _rmilter and group mail.
931 AFFECTS: users of deskutils/egroupware
932 AUTHOR: danilo@FreeBSD.org
934 EGroupware 1.8 was deprecated and removed from sourceforge.net.
935 To upgrade to the new version (14.3), make a backup of all files and
936 database, remove all files from ${PREFIX}/www/eg:
938 # pkg remove egroupware
939 # rm -rf ${PREFIX}/www/eg
941 Install the new egroupware:
942 # pkg install egroupware
944 # make -C /usr/ports/deskutils/egroupware install clean
946 Access the setup page on your browser and run the upgrade process
947 (eg: http://<server>/eg/setup).
950 AFFECTS: users of www/codeigniter
951 AUTHOR: junovitch@FreeBSD.org
953 CodeIgniter has been updated to the 3.0.x release branch. End users
954 must ensure their web applications are compliant with the guidance
955 in the "Upgrading From a Previous Version" document.
957 http://www.codeigniter.com/user_guide/installation/upgrade_300.html
959 CodeIgniter 2.2.x has reached EOL as of 31 October 2015 but may be
960 installed in the interim from the www/codeigniter22 port.
963 AFFECTS: users of security/keepassx2
965 Due to a package name change, first remove the existing package
966 and then reinstall it:
968 # pkg delete security/keepassx2
969 # portmaster security/keepassx2
972 AFFECTS: users of www/varnish4
973 AUTHOR: feld@FreeBSD.org
975 Varnish has been updated to 4.1.0. As part of the update an effort has
976 been made to increase the security of the varnish daemons by utilizing
977 separate UIDs. Users who upgrade will likely run into a permissions
978 issue as a result. The simplest solution is to delete files varnish
979 will recreate with the correct permissions and to adjust permissions
980 of existing log files.
982 The following changes will allow you to start varnishd, varnishlog,
983 and varnishncsa successfully:
985 # rm -r /usr/local/varnish/$(hostname)
986 # rm /var/run/varnishlog.pid
987 # rm /var/run/varnishncsa.pid
988 # chown varnishlog /var/log/varnish.log
989 # chown varnishlog /var/log/varnishncsa.log
991 Please also note that the syntax for binding to additional IPs has
992 changed in 4.1.0. Multiple listening addresses are now specified by
993 using multiple -a arguments. In rc.conf it would look like this:
995 varnishd_listen="x.x.x.x:80 -a y.y.y.y:80"
998 AFFECTS: users of devel/subversion, its bindings and www/mod_dav_svn
999 AUTHOR: lev@FreeBSD.org
1001 The subversion upgdate to 1.9 branch introduces new "old" subversion
1002 port devel/subversion18.
1004 If you don't want to update your subversion installation, run
1006 pkg set -n subversion:subversion18
1010 WITH_SUBVERSION_VER=18
1012 to your /etc/make.conf
1015 AFFECTS: users of security/sshguard-ipfw
1016 AUTHOR: feld@FreeBSD.org
1018 The sshguard update to 1.6.2 introduces a rewritten IPFW backend. The
1019 previous approach was to insert individual block rules with a
1020 predefined numbered range. This does not scale well and is not
1021 flexible so the design was scrapped. The new approach utilizes IPFW
1022 tables. The sshguard IPFW backend now inserts offenders into hardcoded
1025 To continue blocking the attackers effectively you will need to add a
1026 block rule like the following:
1028 ipfw add deny all from 'table(22)' to any
1030 The release announcement can be found here:
1031 http://sourceforge.net/p/sshguard/mailman/message/34534861/
1034 AFFECTS: users of emulators/qemu-sbruno, emulators/qemu-user-static
1035 AUTHOR: sbruno@FreeBSD.org
1037 The Jemalloc update at svn r286871 introduced some TLS enhancements
1038 for MIPS targets that require a bit of workaround. Users who want
1039 to build MIPS packages should update their host systems past r286871
1040 prior to upgrading their qemu-user-static/qemu-sbruno ports.
1042 Discussion about this can be found here:
1043 https://lists.freebsd.org/pipermail/freebsd-mips/2015-October/004018.html
1046 AFFECTS: users of www/firefox, www/seamonkey
1047 AUTHOR: gecko@FreeBSD.org
1049 Firefox since 41.0 and SeaMonkey since 2.38 require databases/sqlite3
1050 port built with DBSTAT option enabled (default). Re-run "make config"
1051 if the port(s) fail to build as described in ports/200853.
1054 AFFECTS: users of mail/rspamd
1055 AUTHOR: vsevolod@FreeBSD.org
1057 rspamd has been updated to the version 1.0.
1058 For migration from the previous releases, please read the following document:
1059 https://rspamd.com/doc/migration.html
1062 AFFECTS: users of multimedia/ffmpeg
1063 AUTHOR: riggs@FreeBSD.org
1065 ffmpeg has been updated to the version 2.8.
1066 If you are using binary pkg, 'pkg upgrade' will do the right thing.
1067 Users of portmaster/portupgrade must rebuild all ports which depend
1071 portmaster -w -r ffmpeg
1073 portupgrade -fr multimedia/ffmpeg
1076 AFFECTS: users of graphics/jpeg
1077 AUTHOR: antoine@FreeBSD.org
1079 Default implementation of jpeg has been switched from graphics/jpeg to
1080 graphics/jpeg-turbo. To perform the upgrade, use instructions below.
1082 If using binary packages: 'pkg upgrade' will do the right thing. If it
1083 doesn't and complains about 'Cannot solve problem using SAT solver', run
1084 'pkg delete -f jpeg' before 'pkg upgrade'.
1086 If using portmaster:
1087 # portmaster -o graphics/jpeg-turbo jpeg
1089 If using portupgrade:
1090 # portupgrade -f -o graphics/jpeg-turbo graphics/jpeg
1092 If you compile your ports and want to keep using IJG's jpeg implementation,
1093 add this line to your /etc/make.conf file:
1094 JPEG_PORT=graphics/jpeg
1097 AFFECTS: users of lang/perl5*
1098 AUTHOR: mat@FreeBSD.org
1100 Binary package users can ignore this.
1102 The way lang/perl5* ports install themselves has changed. From now on, only
1103 the default Perl port (currently 5.20), or the version listed in
1104 DEFAULT_VERSIONS, will install /usr/local/bin/perl.
1106 If you are NOT using the default version of Perl (as of right now, it is
1107 5.20) you MUST add a line setting the version you are using to your
1108 /etc/make.conf, to preserve /usr/local/bin/perl:
1110 DEFAULT_VERSIONS+= perl5=5.xx
1112 If your Perl package name is not called perl5-5.xx.y but perl5.xx-5.xx.y,
1113 you will need to rename it so that portupgrade and portmaster do not get
1116 pkg set -n perl5.xx:perl5
1118 After this date, to migrate from one Perl version to the other, you must
1119 first put the DEFAULT_VERSIONS line in your make.conf, and then, for example,
1120 if you want to move from 5.20 to 5.22, do:
1122 pkg set -o lang/perl5.20:lang/perl5.22
1123 portmaster `pkg shlib -qR libperl.so.5.20`
1125 If you do not do that, you will replace your default Perl 5.20 installation
1126 (one that has /usr/local/bin/perl) with an installation that does not have
1127 /usr/local/bin/perl, and it will break everything.
1130 AFFECTS: users of print/texlive-base
1131 AUTHOR: hrs@FreeBSD.org
1133 pdfclose and pdfopen utilities in print/texlive-base are now in a separate
1134 port print/xpdfopen. While upgrading print/texlive-base, a conflict may
1135 occur between pdfclose utility installed by an old print/texlive-base and
1136 one being installed by print/xpdfopen. If it occurred on your system,
1137 remove the installed print/texlive-base first by using the following
1140 # pkg delete -f texlive-base
1143 AFFECTS: users of editors/libreoffice
1144 AUTHOR: jkim@FreeBSD.org
1146 editors/libreoffice has been updated to 5.0.1. However, FreeBSD 9.x is
1147 no longer supported because it requires C++11-capable library installed
1148 in the base. If you cannot upgrade your system or still want 4.3.x for
1149 some reason, use editors/libreoffice4.
1152 AFFECTS: users of print/ghostscript*
1153 AUTHOR: hrs@FreeBSD.org
1155 print/ghostscript{7,8,9,9-agpl} have been split into
1156 print/ghostscript{7,8,9,9-agpl}-{base,x11}.
1157 print/ghostscript*-nox11 ports have been removed.
1159 The -base installs Ghostscript binaries, libgs, and other data files
1160 and it depends on no X11 library. The -x11 installs a small shared
1161 library to enable x11* devices in the installed -base package.
1163 In most cases, Ghostscript is installed as a dependency. A port/package
1164 which requires Ghostscript will automatically pick up -base, and
1165 when x11* devices required it will pick up -x11 in addition.
1167 If one wants to install Ghostscript manually and full compatibility
1168 with the previous versions, just install -x11 because it installs
1169 -base as a dependency. Combination of the two provides the same
1170 functionality as before.
1173 AFFECTS: users of security/openssh-portable
1174 AUTHOR: bdrewery@FreeBSD.org
1176 OpenSSH 7.0 disables support for:
1178 * 1024-bit diffie-hellman-group1-sha1 key exchange
1179 * ssh-dss, ssh-dss-cert-* host and user keys
1180 * legacy v00 cert format
1182 See http://www.openssh.com/txt/release-7.0 for more information and
1183 http://www.openssh.com/legacy.html for how to re-enable some of these
1187 AFFECTS: users of lang/ghc and */hs-*
1188 AUTHOR: haskell@FreeBSD.org
1190 The Glorious Glasgow Haskell Compiler has been updated to version
1191 7.10.2 and Haskell Platform has been removed. As a result, it is
1192 recommended to rebuild or reinstall all the dependent ports and the
1193 lang/ghc port itself in one of the following ways:
1195 # portmaster -w -r ghc
1197 # portupgrade -fr lang/ghc
1199 In case of pkg(8), it is probably safer to remove all the GHC-dependent
1200 packages along with GHC and reinstall everything from scratch. For
1203 # pkg query "%ro" ghc > ghc-pkgs.txt
1204 # pkg delete -y lang/ghc
1206 In ghc-pkgs.txt, check and remove all the packages that have been moved,
1209 # pkg install -y `cat ghc-pkgs.txt`
1212 AFFECTS: users of sysutils/s6
1213 AUTHOR: Colin Booth <colin@heliocat.net>
1215 s6-notifywhenup has been removed as of v2.2.0.0. Any run scripts
1216 using readyness notification must be updated to use a notification
1219 s6-svc options have changed for sending syncronous up/down timeouts.
1220 Any management or wrapper scripts using those options will need to
1224 AFFECTS: everybody who still uses <UNIQUENAME>_SET/UNSET in make.conf
1225 AUTHOR: mat@FreeBSD.org
1227 The use of <UNIQUENAME>_SET/UNSET has been deprecated for a long time,
1228 replaced by <OPTIONS_NAME>_SET/UNSET. It is now not supported any more.
1229 A warning will be issued telling you what to do, for example:
1233 You are using perl_SET which is not supported any more, use:
1234 lang_perl5.20_SET= DEBUG
1237 AFFECTS: users of sysutils/s6
1238 AUTHOR: Colin Booth <colin@heliocat.net>
1240 s6-notifywhenup is deprecated and will be removed in the next version
1241 of s6. Any run scripts depending on that program should be updated to
1242 use an in-servicedir notification-fd file as described under
1243 "Readyness notification support" in s6-supervise.html.
1246 AFFECTS: users of net-mgmt/icinga and net-mgmt/icinga2
1247 AUTHOR: lme@FreeBSD.org
1249 The Icinga port has been split into two ports: net-mgmt/icinga-core
1250 which contains the Icinga 1.x backend and net-mgmt/icinga-classicweb
1251 which contains the Icinga classic web (CGI) interface. The latter can
1252 be both used with Icinga 1.x and the Icinga 2 port (net-mgmt/icinga2).
1253 A new meta-port net-mgmt/icinga was added which depends on both new
1254 ports, so updating the Icinga port should be transparent.
1257 AFFECTS: users of sysutils/moosefs-master and other moosefs packages
1258 AUTHOR: feld@FreeBSD.org
1260 MooseFS ports have been updated to 2.0.72-1. Upstream has been
1261 providing a private package repository to distribute newer releases of
1262 MooseFS. These changes have now made it into the ports tree. This has
1263 resulted in splitting up the sysutils/moosefs-master port into several
1266 sysutils/moosefs-cli
1267 sysutils/moosefs-cgi
1268 sysutils/moosefs-cgiserv
1269 sysutils/moosefs-metalogger
1270 sysutils/moosefs-netdump
1272 You may need to install these additional ports/packages to restore the
1273 complete functionality of your MooseFS cluster. Please review the
1274 upstream documentation.
1276 http://moosefs.com/documentation/moosefs-2-0.html
1279 AFFECTS: users of sysutils/xfce4-power-manager
1280 AUTHOR: olivierd@FreeBSD.org
1282 After upgrading to 1.5.2, by default a label is displayed next to the
1283 panel icon (it shows percentage and remaining time).
1285 To hide this label, a new property /xfce4-power-manager/show-panel-label
1288 xfconf-query -c xfce4-power-manager \
1289 -p /xfce4-power-manager/show-panel-label -n -t int -s 0
1291 Possible values are:
1292 - 0 -> does not display label
1293 - 1 -> displays only percentage
1294 - 2 -> displays only remaining time
1295 - 3 -> displays only percentage and remaining time (default value)
1298 AFFECTS: users of security/libressl
1299 AUTHOR: brnrd@FreeBSD.org
1301 After upgrading to 2.2.2, manually update all packages that depend on
1302 any of the libraries provided by LibreSSL (libssl, libcrypto and
1303 libtls) since the versions of these libraries have changed. Normally,
1304 you can obtain the list of dependent software by running the following
1307 # pkg info -r libressl
1309 Then you should rebuild all ports depending on libressl to avoid dangling
1310 shared library dependencies. Poudriere and pkg handle this correctly,
1311 portmaster and portupgrade users can use the following to rebuild all
1315 portmaster -r libressl
1317 portupgrade -fr security/libressl
1320 AFFECTS: users of sysutils/tracker
1321 AUTHOR: kwm@FreeBSD.org
1323 The new tracker version does not build if the old version is installed.
1325 # pkg delete -f tracker
1327 After use your upgrade tool of choice.
1330 AFFECTS: users of mail/opensmtpd
1331 AUTHOR: ashish@FreeBSD.org
1333 After upgrading, you will need to review all your configuration, as
1334 there are some configuration changes between 5.4.x and 5.7.1.
1337 AFFECTS: users of ukrainian/monacofonts
1338 AUTHOR: mi@aldan.algebra.com
1340 The destination-directory used by monacofonts port was altered.
1341 The fonts-location changed from koi8u-monaco/ to koi8-u-monaco/
1343 Users are advised to modify the path set in their xorg.conf files.
1346 AFFECTS: users of print/texlive-base and other TeXLive packages
1347 AUTHOR: hrs@FreeBSD.org
1349 TeXLive in Ports Collection has been updated to TL2015. To upgrade
1350 installed old packages, upgrading of "tex-*" packages is required.
1352 If you have a problem with upgrading, please send it to
1353 freebsd-tex@FreeBSD.org and/or file a PR.