1 This file documents some of the problems you may encounter when upgrading
2 your ports. We try our best to minimize these disruptions, but sometimes
5 You should get into the habit of checking this file for changes each time
6 you update your ports collection, before attempting any port upgrades.
9 AFFECTS: users of www/node*
10 AUTHOR: bradleythughes@fastmail.fm
12 The BUNDLED_SSL option is now enabled by default on FreeBSD 10, since
13 Node.js requires OpenSSL 1.0.2, and FreeBSD 10 is shipped with 1.0.1.
16 AFFECTS: users of graphics/libGL, graphics/libEGL, graphics/libglesv2
17 AUTHOR: kwm@FreeBSD.org
19 The workaround for handling conflicting libraries between the
20 nvidia-driver, libGL, libEGL and libglesv2 ports was removed. If the
21 nvidia-driver port is updated before the other ports, it will remove
22 the libraries of said ports. This is a side effect of how the workaround
23 worked. If this happens reinstalling the affected port is enough.
25 pkg users can run: pkg install -f libGL libEGL libglesv2
28 AFFECTS: users of x11-server/xorg-server
29 AUTHOR: rezny@FreeBSD.org
31 Xorg server has been updated to 1.18.4 and autodetection has changed.
32 The order in which drivers are now attempted is:
33 1) vendor/model specific driver according to PCI IDs
34 2) generic modesetting driver which requires a drm driver with KMS
35 3) scfb, the generic framebuffer driver
36 4) vesa (only if arch is x86)
38 This should minimize the need for xorg.conf files. It is recommended to
39 load the correct KMS driver (i915kms.ko or radeonkms.ko) via rc.conf,
40 i.e. kld_list="i915kms.ko", to ensure correct functionality. Although
41 the vendor drivers may attempt to load the correct drm driver, which
42 does not always work, the modesetting driver assumes the required KMS
43 driver is already loaded and will fail if there is none. The modesetting
44 driver is now recommended as an alternative to the Intel driver; the
45 performance is comparable and stability is better with modesetting. The
46 ATI driver continues to offer better performance than modesetting.
49 AFFECTS: users of security/libressl-devel
50 AUTHOR: brnrd@FreeBSD.org
52 The version 2.5.1 bumps the libcrypto, libssl and libtls shared library
53 versions. You will have to rebuild all packages that depend on
54 libressl-devel. Check the 20160811 libressl entry for more detailed
55 guidance on rebuilding.
58 AFFECTS: users of www/uwsgi
59 AUTHOR: feld@FreeBSD.org
61 The previous disruptive changes to uwsgi for security have been remediated
62 through creation of a dedicated uwsgi user/group and utilizing the
63 uwsgi feature to set socket ownership. The uwsgi daemon by default now
64 has the following properties:
66 * Process runs as uwsgi user and group (UID/GID 165)
67 * Socket mode is 660, still protecting unauthorized access from "other"
68 * Socket ownership is www:www, restoring compatibility
71 AFFECTS: users of devel/ice, devel/py-ice, devel/php5-ice
72 AUTHOR: grembo@FreeBSD.org
74 Since __WORDSIZE as defined by <stdint.h> always reports 32 when using
75 C++98/03 (unless __STDC_LIMIT_MACROS is set explictly), Ice 3.6.3 used
76 "long long" for Int64 instead of "long" on 64-bit platforms by mistake.
77 A workaround has been added in version 3.6.3_2 of these three ports,
78 requiring to upgrade all of them at the same time and to rebuild all
79 custom code that links against them.
82 AFFECTS: users of multimedia/motion
83 AUTHOR: jhale@FreeBSD.org
85 Version 3.x expected the configuration files to reside in:
87 Version 4.x expects the configuration files to reside in:
88 ${LOCALBASE}/etc/motion
89 This was unfortunately overlooked when the port was updated to 4.x, but it
90 has now been fixed to install the default configuration file in the new
91 location. The rc script now checks for motion.conf in the new location.
93 While you may be able to simply copy your old motion.conf to the new location,
94 it is recommended to review ${LOCALBASE}/etc/motion/motion.conf and make
95 changes to it based on your old ${LOCALBASE}/etc/motion.conf as some options
96 have been added and removed.
98 Further, if you use motion with multiple cameras and have
99 ${LOCALBASE}/etc/thread[0-9].conf files, they should be moved to
100 ${LOCALBASE}/etc/motion as well. These files are deprecated and should be
101 renamed to camera[0-9].conf and in motion.conf, lines like:
102 thread /usr/local/etc/thread1.conf
103 Should be converted to:
104 camera /usr/local/etc/motion/camera1.conf
107 AFFECTS: users of www/uwsgi
108 AUTHOR: feld@FreeBSD.org
110 The default socket mode for uwsgi as 777 is a severe security concern.
111 This has been remediated by changing the rc script to default to 600.
112 The mode is configurable with rc.conf values: uwsgi_socket_mode="600"
113 or for a profile named "www", uwsgi_www_socket_mode="600".
116 AFFECTS: users of security/tinc
117 AUTHOR: dinoex@FreeBSD.org
119 this version of tinc requires all nodes in the VPN to be linked with a
120 version of OpenSSL or LibreSSL that supports the AES256 and SHA256
125 AFFECTS: users of databases/mysql56-server
126 AUTHOR: feld@FreeBSD.org
128 databases/mysql56-server was updated to 5.6.35 which included backported
129 rc script changes from the mysql57-server port. This broke mysql_optfile in
130 rc.conf and also forced a sample my.cnf if none existed. MySQL has
131 some parameters which cannot be changed after a database has been
132 created, so this caused MySQL to fail to start.
134 This change was reverted in mysql56-server-5.6.35_1
136 An additional change was made in mysql56-server-5.6.35_2 to prevent
137 automatic loading of a sample my.cnf which was causing issues for
138 users who were running without a my.cnf.
141 AFFECTS: users of EoL'ed FreeBSD versions (<10.3, 11 prior to 11.0)
142 AUTHOR: amdmi3@FreeBSD.org
144 The ports system will now refuse to build anything if it's run on
145 outdated system version. This protects users from unexpected build
146 failures after code to support EoL'ed systems is removed from the
147 tree. You may define ALLOW_UNSUPPORTED_SYSTEM to override this and
148 allow builds, but no support will be provided in case of failures.
151 AFFECTS: users of java/wildfly10
152 AUTHOR: olgeni@FreeBSD.org
154 The java/wildfly10 port has been updated to 10.1.0. To complete the
155 migration you must copy your existing configuration (directories
156 "appclient", "standalone", and "domain") from /usr/local/wildfly-10.0.0
157 to /usr/local/wildfly10.
160 AFFECTS: users of net-mgmt/librenms
161 AUTHOR: dvl@FreeBSD.org
163 The following is recommended for /var/db/mysql/my.cnf
165 NOTE: these are global settings. Please read this first:
167 http://dev.mysql.com/doc/refman/5.7/en/sql-mode.html
170 innodb_file_per_table=1
174 AFFECTS: users of lang/ruby22
175 AUTHOR: swills@FreeBSD.org
177 The default ruby version has been updated from 2.2 to 2.3.
179 If you compile your own ports you may keep 2.2 as the default version by
180 adding the following lines to your /etc/make.conf file:
183 # Keep ruby 2.2 as default version
185 DEFAULT_VERSIONS+=ruby=2.2
187 If you wish to update to the new default version, you need to first stop any
188 software that uses ruby. Then, you will need to follow these steps, depending
189 upon how you manage your system.
191 If you use pkgng, simply upgrade:
194 If you use portmaster, install new ruby, then rebuild all ports that depend
196 # portmaster -o lang/ruby23 lang/ruby22
197 # portmaster -R -r ruby-2.3
199 If you use portupgrade, install new ruby, then rebuild all ports that depend
202 # pkg delete -f ruby portupgrade
203 # make -C /usr/ports/ports-mgmt/portupgrade install clean
204 # pkg set -o lang/ruby22:lang/ruby23
205 # portupgrade -x ruby-2.3.\* -fr lang/ruby23
208 AFFECTS: multimedia/ffmpeg
209 AUTHOR: jbeich@FreeBSD.org
211 OPTIMIZED_CFLAGS switched to only use vendor optimizations which
212 means -ffast-math -fno-finite-math-only are no longer applied. If
213 you did like the former behavior consider adding
215 # multimedia/ffmpeg/Makefile.local
216 OPTIMIZED_CFLAGS_CFLAGS += -ffast-math -fno-finite-math-only
221 .if ${.CURDIR:M*/multimedia/ffmpeg}
222 CFLAGS += -ffast-math -fno-finite-math-only
226 AFFECTS: users of x11/xfce4-terminal
227 AUTHOR: olivierd@FreeBSD.org
229 The port has been updated to the latest stable version 0.8.2.
230 Please, don't active the hidden 'MiscSlimTabs' option in
231 ~/.config/xfce4/terminal/terminalrc, it requires Gtk+ > 3.20.
234 AFFECTS: users of multimedia/mlt
235 AUTHOR: avilla@FreeBSD.org
237 MLT Qt plugins have been moved to their own ports, mlt-qt4 and
238 mlt-qt5. Please, uninstall multimedia/mlt before you update:
243 AFFECTS: users of security/openvpn, security/openvpn-polarssl
244 AUTHOR: Matthias Andree <mandree@FreeBSD.org>
246 The OpenVPN ports have been updated to the new upstream release v2.4,
247 and their predecessors preserved as openvpn23 and openvpn23-polarssl,
248 respectively. Note that for the new v2.4 release, the
249 openvpn-polarssl port has been renamed to openvpn-mbedtls to match the
250 upstream library's new name.
253 AFFECTS: users of www/nghttp2
254 AUTHOR: sunpoet@FreeBSD.org
256 nghttp2 has been split into 2 ports: www/libnghttp2 for core library and
257 www/nghttp2 for the rest. Please uninstall nghttp2 before you update
261 AFFECTS: mail/thunderbird, www/seamonkey
262 AUTHOR: gecko@FreeBSD.org
264 ENIGMAIL is no longer provided as part of the ports after upstream
265 dropped binary components in 1.9. Go to Tools -> Add-ons Manager
266 then type "enigmail" in the search box to install.
269 AFFECTS: users of devel/skalibs, lang/execline, sysutils/s6
270 AUTHOR: Colin Booth <colin-ports@heliocat.net>
272 skalibs has undergone a major version bump and compatibility is not
273 guaranteed for software with a runtime dependency on
274 libskarnet.so.2.3.9.0. This will not affect lang/execline or
275 sysutils/s6 as those are statically linked against libskarnet.a.
277 execline has undergone a major version bump and compatibility is not
278 guaranteed for software with a runtime dependency on
279 libexecline.so.2.1.4.5. This will not affect sysutils/s6 as all s6
280 programs are statically linked against libexecline.a.
282 s6 has undergone a major version bump and compatibility is not
283 guaranteed for software with a runtime dependency on
284 libs6.so.2.2.4.3. Additionally, s6-applyuidgid and s6-setuidgid
285 have moved from $PREFIX/sbin to $PREFIX/bin. Any scripts calling
286 those utilities that are not relying on $PATH resolution to find
287 them will need to be rewritten.
290 AFFECTS: users of www/node
291 AUTHOR: bradleythughes@fastmail.fm
293 The www/node port has been updated to node.js v7.2.0, the latest
294 upstream release. A new port, www/node6, has been created for the
295 v6.x LTS branch. Users wanting to stay on v6.x can replace www/node
296 with www/node6 with one of the following commands:
298 # pkg set -o www/node:www/node6
300 # portmaster -o www/node6 www/node
302 # portupgrade -o www/node6 www/node
305 AFFECTS: Users of textproc/p5-Search-Elasticsearch
306 AUTHOR: tj@FreeBSD.org
308 As of the 5.01 release of ths package, the client libraries for older
309 versions of Elasticsearch have started to be shipped seperately. If you are
310 using this library to access a none 5.X server you will need to install one of
311 the textproc/p5-Search-Elasticsearch-Client-* ports.
314 AFFECTS: Users of security/gpgme-*
315 AUTHOR: jhale@FreeBSD.org
317 Gpgme has been updated to 1.8.0.
318 With it comes the removal of libgpgme-pthread.so in favor of using
319 libgpgme.so itself as the thread-safe library. Ports that may have
320 linked to -lgpgme-pthread will now just link to -lgpgme. PORTREVISION
321 has been bumped on all ports with a dependency on security/gpgme.
323 The Python module provided by security/py-gpgme has been renamed
324 from pyme3 to gpg, as well.
329 portupgrade -fr security/gpgme
332 AFFECTS: Users of graphics/tiff
333 AUTHOR: antoine@FreeBSD.org
335 The tiff port was updated to 4.0.7.
336 The following tools are removed from this release: bmp2tiff, gif2tiff, ras2tiff, rgb2ycbcr and thumbnail.
339 AFFECTS: Users of sysutils/bareos-*
340 AUTHOR: rand@iteris.com
342 Bareos v1.6.x changed the configuration scheme, from one configuration
343 file per Bareos component (file daemon, storage daemon, and director)
344 to several configuration files, in several directories, for each
345 component. See http://doc.bareos.org/master/html/bareos-manual-main-reference.html
347 The new scheme will use all files named *.conf in the directory
348 hierarchies for each component:
350 /usr/local/etc/bareos/bareos-dir.d/
351 /usr/local/etc/bareos/bareos-fd.d/
352 /usr/local/etc/bareos/bareos-sd.d/
354 To retain the old configuration scheme of one file per component add
355 appropriate lines such as these to your /etc/rc.conf:
357 bareos_dir_config="/usr/local/etc/bareos/bareos-dir.conf"
358 bareos_fd_config="/usr/local/etc/bareos/bareos-fd.conf"
359 bareos_sd_config="/usr/local/etc/bareos/bareos-sd.conf"
362 AFFECTS: users of devel/libosinfo
363 AUTHOR: novel@FreeBSD.org
365 The libosinfo port was separated into three different ports
366 to follow the upstream split:
368 - sysutils/osinfo-db-tools: contains the CLI tools
369 - misc/osinfo-db: contains database with OS data
370 - devel/libosinfo: the library
372 As osinfo-db-tools now ships binaries that previously were
373 part of libosinfo, it's required to delete the old libosinfo
374 package to prevent conflict because of same files installation:
376 # pkg delete libosinfo
378 And then install the new version.
381 AFFECTS: users of security/heimdal
382 AUTHOR: hrs@FreeBSD.org
384 Heimdal in the base system and security/heimdal <= 1.5.3_6 use
385 Berkeley DB to store principals into /var/heimdal/heimdal.db and
386 the database format is version 3 by default. On the other hand,
387 security/heimdal 1.5.3_7 or newer use the newer version of
388 Berkeley DB and the database format is version 9.
389 These two versions are not compatible with each other. If there is
390 a mismatch between Heimdal utilities and its database format,
391 you will get an error like the following:
393 # /usr/local/sbin/kadmin -l dump
394 BDB0641 __db_meta_setup: /var/heimdal/heimdal.db: unexpected file type or format
395 kadmin: hdb_open: opening /var/heimdal/heimdal: Invalid argument
397 This mismatch can occur in the following three cases:
399 1. You used Heimdal in the base system and switch to use security/heimdal
400 after creating /var/db/heimdal.db.
402 2. You used security/heimdal >= 1.5.3_7 and switch to use one in the
405 3. You used security/heimdal < 1.5.3_7 and upgrade it to 1.5.3_7 or later.
407 To fix this mismatch, you need to dump contents of heimdal.db and
408 rebuild the database by using kadmin(8) utility.
410 If you use Heimdal in the base system or older versions of
411 security/heimdal, and plan to switch to use
412 security/heimdal >= 1.5.3_7, execute the following command
413 *after* creating a backup copy of /var/heimdal and installing
416 # /usr/bin/kadmin -l dump /var/heimdal/heimdal.db.dump
417 # rm /var/heimdal/heimdal.db
418 # /usr/local/sbin/kadmin -l load /var/heimdal/heimdal.db.dump
419 # rm /var/heimdal/heimdal.db.dump
421 The above example assumes security/heimdal is installed into
422 /usr/local. If your base system is compiled with WITHOUT_KERBEROS
423 use the following instead:
425 # db_dump185-5 /var/heimdal/heimdal.db | db_load-5 /var/heimdal/heimdal.db.new
426 # chown 0600 /var/heimdal/heimdal.db.new
427 # mv /var/heimdal/heimdal.db.new /var/heimdal/heimdal.db
429 db_dump and db_load utilitites are installed by database/db5 as
430 dependency of security/heimdal.
432 If you want to switch from security/heimdal to Heimdal in the base
433 system, use the following:
435 # /usr/local/sbin/kadmin -l dump /var/heimdal/heimdal.db.dump
436 # rm /var/heimdal/heimdal.db
437 # /usr/bin/kadmin -l load /var/heimdal/heimdal.db.dump
438 # rm /var/heimdal/heimdal.db.dump
441 AFFECTS: users of security/heimdal
442 AUTHOR: hrs@FreeBSD.org
444 kadmin(8) in heimdal-1.5.3_5 and prior did not create a database
445 in /var/heimdal in Berkeley DB format which kdc(8) required. This
446 problem has been fixed in heimdal-1.5.3_6.
449 AFFECTS: users of mail/mu4e and mail/mu4e-maildirs
450 AUTHOR: hrs@FreeBSD.org
452 The package name of mail/mu4e* have been changed from mu4e* to
453 mu4e*-emacsNN. When upgrading the older versions, this change can
454 cause the following error which prevents it from upgrading:
456 pkg-static: mu4e-emacs25-0.9.16 conflicts with mu4e-0.9.16 (installs files into the same place).
458 If this error occurs, please remove the old packages by using
459 "pkg delete" manually:
461 # pkg delete mu4e-0.9.16 mu4e-maildirs-0.8.20160126_1
464 AFFECTS: users of lang/perl5*
465 AUTHOR: mat@FreeBSD.org
467 The default Perl version has been switched to Perl 5.24. If you are using
468 binary packages to upgrade your system, you do not have anything to do, pkg
469 upgrade will do the right thing. For the other people, assuming you are
470 migrating from 5.20 to 5.24, do:
472 First, add to /etc/make.conf:
474 DEFAULT_VERSIONS+= perl5=5.24
477 portupgrade -o lang/perl5.24 -f lang/perl5.20
479 You can now remove the DEFAULT_VERSIONS line added earlier
482 Then you will need to rebuild everything that uses libperl.so, you
485 portupgrade -f `pkg shlib -qR libperl.so.5.20`
488 portmaster -o lang/perl5.24 lang/perl5.20
490 You can now remove the DEFAULT_VERSIONS line added earlier
493 Then you will need to rebuild everything that uses libperl.so, you
496 portmaster -f `pkg shlib -qR libperl.so.5.20`
499 AFFECTS: users of security/acme-client
500 AUTHOR: brnrd@FreeBSD.org
502 The default configuration paths have changed from 'letsencrypt' to
503 'acme'. Rename the directories used accordingly
505 mv /usr/local/etc/letsencrypt /usr/local/etc/acme
506 mv /usr/local/etc/ssl/letsencrypt /usr/local/etc/ssl/acme
507 mv /usr/local/www/letsencrypt /usr/local/www/acme
509 Check your scripts to ensure proper operation.
512 AFFECTS: users of mail/squirrelmail
513 AUTHOR: adamw@FreeBSD.org
515 For better php70 support, the squirrelmail port has switched from
516 PEAR database access to PDO. If you are using squirrelmail with
517 a database backend, you'll need to install a corresponding PDO
518 database module, such as php56-pdo_sqlite.
521 AFFECTS: users of security/srm
522 AUTHOR: rakuco@FreeBSD.org
524 srm has been updated from 1.2.12 to 1.2.15. Since version 1.2.14,
525 srm defaults to using its "simple" mode to overwrite files (one pass
526 writing 0x00 to the files) instead of the 35-pass Gutmann method.
529 AFFECTS: users of irc/quassel
530 AUTHOR: woodsb02@freebsd.org
532 Quassel is now split into two ports / packages; one for providing
533 the server backend (irc/quassel-core), and one for providing the
534 client front-end (irc/quassel). Alternatively, the irc/quassel
535 port can be built with the MONO option enabled to also install
536 the client and server combined into a single monolithic binary.
539 AFFECTS: users of security/openssl and security/openssl-devel
540 AUTHOR: brnrd@freebsd.org
542 The shared library versions of OpenSSL have been bumped to avoid
543 issues with ports' and base's OpenSSL not being binary compatible.
545 Please rebuild all ports that depend on OpenSSL if you use OpenSSL
548 If you use portmaster:
549 portmaster -r openssl
550 If you use portupgrade:
551 portupgrade -fr security/openssl
554 AFFECTS: users of net-p2p/deluge
555 AUTHOR: rm@FreeBSD.org
557 Deluge port has been split out onto CLI part and GUI part. So if user
558 only needs deluged, net-p2p/deluge-cli should be installed. For full
559 deluge installation, including GTK+ GUI client, net-p2p/deluge should
560 be installed as a usual.
562 Old deluge package should be removed manually first:
566 After that install preferred deluge package as usual.
569 AFFECTS: users of x11/xfce4-terminal
570 AUTHOR: olivierd@FreeBSD.org
572 The port has been updated to the latest stable version 0.8.0.
573 A warning appears each time we open new tab:
575 Gtk-WARNING **: gtk_widget_size_allocate(): attempt to allocate
578 This issue will disappear with Gtk > 3.21.
581 AFFECTS: users of lang/python3
582 AUTHOR: antoine@FreeBSD.org
584 The default version of python3 has changed from 3.4 to 3.5.
585 If you wish to stick with older version, add "python3=3.4" to your
586 DEFAULT_VERSIONS variable in /etc/make.conf. To upgrade:
588 If using portupgrade:
589 # portupgrade -o lang/python35 lang/python34
592 # portmaster -o lang/python35 lang/python34
595 AFFECTS: Users of net-im/ejabberd
596 AUTHOR: ashish@FreeBSD.org
598 Before upgrading ejabberd to 16.09, please make sure to backup your
601 % sudo -u ejabberd -H ejabberdctl backup /path/to/backup/file
603 In some cases, ejabberd may fail to start, for which a workaround is to
604 remove the schema.DAT file from /var/spool/ejabberd before starting, and
605 then restoring everything from the backup using:
607 % sudo -u ejabberd -H ejabberdctl restore /path/to/backup/file
611 https://github.com/processone/ejabberd/issues/1305
614 AFFECTS: Users of audio/squeezeboxserver (now audio/logitechmediaserver)
615 AUTHOR: woodsb02@FreeBSD.org
617 With the rename of the audio/squeezeboxserver port to
618 audio/logitechmediaserver, the server and database are now installed in
619 different locations by default (/usr/local/share/logitechmediaserver and
620 /var/db/logitechmediaserver respectively).
622 If you were an existing user of audio/squeezeboxserver, you should
623 consider backing up you server configuration files and database before
624 upgrading to audio/logitechmediaserver. If you wish to override the
625 default locations for storing the server and database, you can set the
626 SLIMDIR and SLIMDBDIR variables in your /etc/make.conf when building
627 the audio/logitechmediaserver port.
630 AFFECTS: mail/roundcube-carddav
631 AUTHOR: gahr@FreeBSD.org
633 There is no upgrade path from the 1.0 version. You'll need to:
635 1. Log off from Roundcube.
636 2. Manually drop all carddav_* tables from your db backend.
637 3. Upgrade the mail/roundcube-carddav port.
639 The new tables will be created upon login. The CardDAV plugin will need to be
642 If you are running php < 7.0.0, you'll need to set the plugin option:
643 $prefs['_GLOBAL']['suppress_version_warning'] = true;
645 See https://github.com/blind-coder/rcmcarddav/issues/165 for details.
648 AFFECTS: emulators/ppsspp
649 AUTHOR: jbeich@FreeBSD.org
651 Qt* GUI was split into separate ports:
657 AFFECTS: sysutils/android-file-transfer
658 AUTHOR: jbeich@FreeBSD.org
660 Qt* GUI was split into separate ports:
662 sysutils/android-file-transfer-qt4
663 sysutils/android-file-transfer-qt5
666 AFFECTS: users of databases/pglogical, databases/pglogical-output
667 AUTHOR: matthew@FreeBSD.org
669 As of version 1.2.0, databases/pglogical-output has been merged into
670 databases/pglogical. portmaster or portupgrade users should delete
671 pglogical-output manually before upgrading.
674 AFFECTS: users of mail/sieve-connect
675 AUTHOR: alexey@renatasystems.org
677 Version 0.88 contains two breaking changes:
678 1. If the Sieve server does not offer STARTTLS, then connections should now
680 2. When deriving a remote script name from the local filename, use the
681 basename and strip off directories.
683 For additional information see:
684 http://mail.globnix.net/pipermail/sieve-connect-announce/2016/000012.html
687 AFFECTS: users of net/vtun
688 AUTHOR: cy@FreeBSD.org
690 The VTUN_EXTENDED_MODE option has been replaced by -e command line
694 AFFECTS: users of www/nginx-devel
695 AUTHOR: osa@FreeBSD.org
697 Nginx now creates logs under /var/log/nginx/ and changes default log
698 names from "nginx-access.log" and "nginx-error.log" to "access.log" and
699 "error.log" respectively. This is important for the error log because
700 the location is encoded and touched by nginx during startup regardless
701 of the configured location for the error log.
703 See http://trac.nginx.org/nginx/ticket/147 for additional information
707 AFFECTS: users of deskutils/xfce4-volumed-pulse
708 AUTHOR: olivierd@FreeBSD.org
710 The port has been updated to the latest stable version 0.2.2.
711 Support of xfce4-mixer has been removed, so you can delete
712 its properties with the following command:
714 xfconf-query -c xfce4-mixer -p / -rR
717 AFFECTS: users of security/letsencrypt.sh
718 AUTHOR: riggs@FreeBSD.org
720 The config filename has been changed upstream from "config.sh"
721 to "config". Users must rename the current config file manually.
722 In addition, the default WELLKNOWN location has been changed to
723 %%PREFIX%%/www/letsencrypt. In order to use the previous default
724 location, the config file must be updated manually as well.
727 AFFECTS: users of math/galculator
728 AUTHOR: woodsb02@FreeBSD.org
730 galculator now uses GTK3 by default. An option exists in the port to revert
734 AFFECTS: uses of www/nginx
735 AUTHOR: marino@FreeBSD.org
737 Nginx now creates logs under /var/log/nginx/ and changes default log
738 names from "nginx-access.log" and "nginx-error.log" to "access.log" and
739 "error.log" respectively. This is important for the error log because
740 the location is encoded and touched by nginx during startup regardless
741 of the configured location for the error log.
743 See http://trac.nginx.org/nginx/ticket/147 for additional information
747 AFFECTS: users of databases/postgresql96-server
748 AUTHOR: girgen@FreeBSD.org
750 The default unix user used by the PostgreSQL daemon has changed to
751 `postgres' to reflect the long time upstream's convention. Any scripts
752 you have using the old `pgsql' unix user should be modified when upgrading to
753 PostgreSQL version 9.6. Older versions of PostgreSQL will continue using
754 `pgsql' until their end-of-life.
756 For users with UTF-8 locales in the database: The ICU patch is *activated by
757 default* for the PostgreSQL-9.6 server. For previous versions it was optional
758 and default off, but this has changed. Please read the entry here below from
759 20160811 and understand the consequences of changing between ICU and system
760 locale for database collation (short version: don't). pg_upgrade requires the
761 collation method to be the same (or a reindex), while pg_dump/restore does not.
763 Also, the default home directory for the postgres user is now
764 /var/db/postgres, and the default data directory for PostgreSQL 9.6 is
765 /var/db/postgres/data96.
768 AFFECTS: users of x11/nvidia-driver
769 AUTHOR: cem@FreeBSD.org
771 The NVidia driver has been updated to version 367.35. Starting with
772 version 358.09, new kernel module was added, nvidia-modeset.ko. This
773 new driver component works in conjunction with the nvidia.ko kernel
774 module to program the display engine of the GPU.
776 Users that experience hangs when starting X11 server, or observe
778 (II) NVIDIA(0): Validated MetaModes:
779 (II) NVIDIA(0): "NULL"
781 messages in their /var/log/Xorg.0.log file should replace ``nvidia''
782 with ``nvidia-modeset'' in /boot/loader.conf or /etc/rc.conf files,
783 depending on how they prefer to load NVidia driver kernel module.
786 AFFECTS: users of security/sshguard
787 AUTHOR: feld@FreeBSD.org
789 Sshguard has been updated to 1.7.0. There have been several changes to
790 this release. Notably the hosts and ipfilter backends are no longer
791 supported. If you need these backends to be supported and you missed
792 the survey sent out by upstream I urge you to contact upstream.
794 The hosts backend was previously served by security/sshguard directly.
795 The additional backends were slave ports with package name suffixes. I
796 have opted to keep the master/slave port relationship but not choose a
797 specific backend for security/sshguard. Instead it is now a metaport
798 which will prompt you for which backend you prefer. If no backend is
799 configured it will depend on security/sshguard-ipfw, which is the
800 native FreeBSD firewall. This my be surprising to users who depended
801 on security/sshguard which only provided hosts/TCP Wrappers blocking,
802 but there is no replacement at this time.
804 I would also like to document that sshguard no longer accepts the -e
805 argument which allowed external scripts to run when sshguard finds a
806 match. As a result the null backend can no longer be used to create
807 custom blocking functionality; it only serves as a detection backend.
809 If the removed backends return due to user demand they will be added
810 as slave ports for consistency. I apologize for any inconvenience and
811 lack of notice on the deprecation of these features.
814 AFFECTS: users of mail/rspamd*
815 AUTHOR: vsevolod@FreeBSD.org
817 Rspamd users should update Rspamd to 1.3.3 version as soon as possible
818 and ensure that '/usr/local/etc/rspamd/module.d/fuzzy_check.conf` has
819 the line `algorithm = "mumhash";` for the "rspamd.com" rule. The more
820 detailed information could be found on
821 https://rspamd.com/announce/2016/08/15/rspamd-1.3.3.html
824 AFFECTS: users of dns/powerdns*
825 AUTHOR: junovitch@FreeBSD.org
827 PowerDNS Authoritative Server and Recursor 4.0.0+ introduce significant
828 changes to the configuration files, which need to be handled before
829 restarting the services. As from the Recursor changelog, "The Lua hook
830 infrastructure was redone using LuaWrapper; old scripts will no longer
831 work, but new scripts are easier to write under the new interface."
834 AFFECTS: users of security/libressl
835 AUTHOR: brnrd@FreeBSD.org
837 The port has been updated to the latest stable version 2.4 of LibreSSL.
838 The shared library versions of the libraries have been bumped.
839 With this update, the patch for the OPENSSL_VERSION_NUMBER has been
840 removed. This causes issues with a number of ports. Patches for all
841 ports for which this issues is known can be found on
842 https://wiki.freebsd.org/LibreSSL/Ports#OPENSSL_VERSION_NUMBER
844 After upgrading, manually update all packages that depend on any of the
845 libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
846 versions of these libraries have changed. Normally, you can obtain the
847 list of dependent software by running the following command:
849 # pkg info -r libressl
851 Then you should rebuild all ports depending on libressl to avoid dangling
852 shared library dependencies. Poudriere and pkg handle this correctly,
853 portmaster and portupgrade users can use the following to rebuild all
857 portmaster -r libressl
859 portupgrade -fr security/libressl
862 AFFECTS: users of databases/postgresqlNN-server with ICU patch
863 AUTHOR: girgen@FreeBSD.org
865 The ICU patch is added to the PostgreSQL-9.5 server. Please note that you
866 must never change between using the ICU patch and using system locale for
867 the same database cluster without REINDEXing all TEXT/VARCHAR columns, or
868 dump and restore your database. Failing to do so will result in corrupted
869 indexes due to the differences between the locale definitions. ICU will
870 always be the better choice for speed and correctness.
872 Also, the ICU patch used to support other Unicode encodings than UTF-8,
873 but that has been removed due to lack of demand and the complicated testing
874 required. If you use another Unicode encoding and rely on ICU for collation,
875 please refrain from upgrading the postgresql server and instead contact the
879 AFFECTS: users of emulators/virtualbox-ose
880 AUTHOR: jkim@FreeBSD.org
882 VirtualBox has been updated to 5.0.26 and it is incompatible with old
883 kernel modules. You should upgrade emulators/virtualbox-ose-kmod and
884 load new kernel modules before starting new version, e.g.,
886 # service vboxnet restart
889 AFFECTS: users of games/stonesoup-*
890 AUTHOR: lifanov@mail.lifanov.com
892 The WIZARD option has been renamed to NOWIZARD and is now an opt-out to
893 better reflect the upstream. If you run a shared game server and would
894 like the Wizard mode support disabled, please update port options.
897 AFFECTS: users of www/awstats
898 AUTHOR: adamw@FreeBSD.org
900 The directory containing icons has changed from ".../icons" to ".../icon".
901 awstats has, in its suggested configuration file, contained an alias
902 from /awstatsicons. After applying the awstats-7.5 update, you must
903 update that alias to point to /usr/local/www/awstats/icon (just remove
907 AFFECTS: users of sysutils/screen
908 AUTHOR: cy@FreeBSD.org
910 GNU Screen was updated to version 4.4.0 (r417201). Note that there was
911 fix to screen message structure field responsible for $TERM handling,
912 making it impossible to attach to older versions.
915 AFFECTS: users of databases/mysql57-*
916 AUTHOR: riggs@FreeBSD.org
918 The default location for my.cnf has changed from "/var/db/mysql/my.cnf"
919 to "/usr/local/etc/mysql/my.cnf". Existing my.cnf files must be merged
920 manually with the new default and moved to the new location. To
921 continue using the my.cnf file at the old location, set "mysql_optfile"
922 in /etc/rc.conf to point to the location of the existing my.cnf file.
925 AFFECTS: users of www/node5
926 AUTHOR: bradleythughes@fastmail.fm
928 Node.js v5.x has reached end of life and has been removed. Users that
929 have not yet moved to v6.x should do so now by switching to the www/node
933 AFFECTS: users of sysutils/rsyslog7
934 AUTHOR: brd@FreeBSD.org
936 Rsyslog 7.x has reached end of life status and is being marked as
937 depreciated. Rsyslog 8 has been made the default.
940 AFFECTS: users of www/calendarserver
941 AUTHOR: pi@FreeBSD.org
943 Please note that updating from the previous version (5.1) to the current
944 version (8.0) requires manual steps. Please consult the pkg-message for
948 AFFECTS: users of shells/zsh
949 AUTHOR: adamw@FreeBSD.org
951 zsh now looks for system-wide conf files in ${PREFIX}/etc, instead of
952 /etc. If you have files like zshrc, zshenv, zprofile, zlogin, or zlogout
953 in /etc, either move them to /usr/local/etc or rebuild zsh with the
956 Note that this change only affects system-wide conf files, which are not
957 installed or created by a default installation.
960 AFFECTS: users of www/redmine
961 AUTHOR: tz@FreeBSD.org
963 Redmine was updated from 2.6.9 to 3.2.3. Since this an update over
964 major versions be careful with your update.
965 For further update instructions please have a look at:
966 https://www.redmine.org/projects/redmine/wiki/RedmineUpgrade
969 AFFECTS: users of ftp/wget
970 AUTHOR: vd@FreeBSD.org
972 Wget 1.18 fixes a security vulnerability (CVE-2016-4971) and the fix
973 introduces a backward-incompatibility for HTTP->FTP redirects. Any script that
974 relies on the old behaviour must use --trust-server-names in order to trust
975 the HTTP response and redirect to the new filename.
978 AFFECTS: users of databases/py-apsw
979 AUTHOR: rm@FreeBSD.org
981 SQLite 3.12 completely changed the semantics of VFS.xGetLastError() in an
982 incompatible way. This required a rewrite of the relevant C, Python and test
983 code. If you implement or use this method then you have to rewrite your code
984 too. Also note that running the test suite from an earlier version of APSW
985 against this or future SQLite versions will result in consuming all memory,
986 swap or address space (an underlying integer changed meaning).
989 AFFECTS: users of security/openssl*, security/libressl*
990 AUTHOR: mat@FreeBSD.org
992 Previously, to tell the ports tree, you needed to set:
994 WITH_OPENSSL_PORT=yes
996 And if you wanted a port that was not security/openssl, you needed to add,
999 OPENSSL_PORT= security/libressl
1001 Now, all you need to do is:
1003 DEFAULT_VERSIONS+= ssl=libressl
1005 Valid values are base, openssl, openssl-devel, libressl, and libressl-devel.
1008 AFFECTS: users of www/node, www/node5, and www/node4
1009 AUTHOR: adamw@FreeBSD.org
1011 node now prefers a few libraries from ports to the versions bundled
1012 with node. However, node cannot use the libssl from LibreSSL. If you
1013 are using LibreSSL as your SSL provider, you must enable the
1014 "BUNDLED_SSL" option when building node.
1017 AFFECTS: users of textproc/xmlroff
1018 AUTHOR: hrs@FreeBSD.org
1020 The library part of xmlroff has been separated into textproc/libfo.
1021 Remove the installed xmlroff first when upgrading it because older
1022 xmlroff than 0.6.2_6 have files which libfo installs. A typical
1023 error message is the following:
1025 pkg-static: libfo-0.6.2 conflicts with xmlroff-0.6.2_5 (installs files into the same place). Problematic file: /usr/local/include/libfo-0.6/libfo/area/fo-area.h
1028 AFFECTS: users of databases/postgresql-repmgr
1029 AUTHOR: bofh@FreeBSD.org
1031 The port has been repocopied to databases/postgresql-repmgr2 and current
1032 post has been updated to 3.x series. If anyone is still looking forward
1033 to use the 2.x please upgrade as following.
1035 # portmaster -o databases/postgresql-repmgr2 databases/postgresql-repmgr
1037 # portupgrade -o databases/postgresql-repmgr2 databases/postgresql-repmgr
1039 Otherwise if you want to move on with 3.x series just use
1041 # portmaster -r databases/postgresql-repmgr
1043 # portupgrade -fr databases/postgresql-repmgr
1046 AFFECTS: users of www/h2o
1047 AUTHOR: junovitch@FreeBSD.org
1049 File paths no longer have a trailing / appended to them. This enables
1050 directing specific paths to a file but may break existing configurations.
1051 Refer to https://h2o.examp1e.net/configure/file_directives.html and
1052 revise your yaml config appropriately.
1055 AFFECTS: users of security/libressl-devel
1056 AUTHOR: brnrd@FreeBSD.org
1058 The port has been updated to the latest "unstable" version of LibreSSL.
1059 The shared library versions of the libraries have been bumped.
1060 With this update, the patch for the OPENSSL_VERSION_NUMBER has been
1061 removed. This causes issues with a number of ports. Patches for many of
1062 these issues can be found on
1063 https://wiki.freebsd.org/LibreSSL/Ports#OPENSSL_VERSION_NUMBER
1065 After upgrading to 2.4.0, manually update all packages that depend on
1066 any of the libraries provided by LibreSSL (libssl, libcrypto and
1067 libtls) since the versions of these libraries have changed. Normally,
1068 you can obtain the list of dependent software by running the following
1071 # pkg info -r libressl-devel
1073 Then you should rebuild all ports depending on libressl-devel to avoid
1074 dangling shared library dependencies. Poudriere and pkg handle this
1075 correctly, portmaster and portupgrade users can use the following to
1076 rebuild all dependent ports.
1079 portmaster -r libressl-devel
1081 portupgrade -fr security/libressl-devel
1084 AFFECTS: users of mail/opensmtpd-extras (any of them)
1085 AUTHOR: adamw@FreeBSD.org
1087 The invocation for extras has changed. Some extras might fail unless
1088 you pass all options/arguments separated by quotes:
1090 filter myfilter dnsbl "-c /var/chroot/dnsbl" "-h my.dnsbl.com"
1092 Additionally, extras now run in a chroot. Either pass "-C" to skip the
1093 chroot entirely (not recommended), or put all required config files,
1094 resolv.conf, and external binaries into the chroot. For example:
1096 # mkdir -p /var/chroot/dnsbl/etc
1097 # cp /etc/resolv.conf /var/chroot/dnsbl/etc
1099 And pass "-c /var/chroot/dnsbl" to the filter.
1102 AFFECTS: users of mail/opensmtpd
1103 AUTHOR: brnrd@FreeBSD.org
1105 Due to changes to the rc-script you must stop smtpd prior to upgrading
1106 mail/opensmtpd to version 5.9.2
1108 # service smtpd stop
1110 Then upgrade OpenSMTPD to version 5.9.2.
1111 Additionally version 5.9.2 changes the file mode bits for two directories.
1112 To allow existing installations to start successfully you must apply the
1115 # chown -R root:_smtpq /var/spool/smtpd/offline
1116 # chmod -R 770 /var/spool/smtpd/offline
1117 # chmod -R 700 /var/spool/smtpd/purge
1119 After applying the changes, the smtpd daemon can successfully be started.
1122 AFFECTS: users of devel/qtcreator
1123 AUTHOR: nolden@kde.org
1125 QBS (Qt Build System) was previously shipped as part of qtcreator, now
1126 it is independently available as devel/qbs. However, on upgrading
1127 qtcreator to 3.6.1, the depends will detect qbs through a previously
1128 installed qtcreator port and will not build/install correctly
1129 (devel/qbs won't be installed automatically as depends)
1131 The solution is to pkg remove qtcreator, then building works correctly.
1134 AFFECTS: users of databases/db6
1135 AUTHOR: mandree@FreeBSD.org
1137 The databases/db6 port has been updated to release 6.2.23.
1139 This requires manual action in two places:
1140 1. dependent applications need to be recompiled,
1141 2. SQL databases, if any, need to be reindexed.
1143 To obtain a list of ports needing a recompilation,
1144 the following command should provide it:
1148 Then rebuild db6 and the dependent ports. For pkg users, this should
1152 # portmaster -r databases/db6
1154 # portupgrade -fr databases/db6
1156 In order to reindex SQL databases, a db6-upgrade61.sh script is
1157 provided in ${PREFIX}/bin, if and only if the port's SQL option is
1158 enabled. For detailed reindexing instructions, see
1159 http://docs.oracle.com/cd/E17076_05/html/installation/sqlite_ver61.html
1160 and note that the FreeBSD port installs the upgrade61.sh script with a
1161 db6- prefix that you need to add.
1164 AFFECTS: users of audio/clementine-player
1165 AUTHOR: sbruno@FreeBSD.org
1167 The audio/clementine-player port has been updated to v1.3.1, the latest
1168 upstream release. The music database code now has a hard dependency on
1169 databases/sqlite having the FTS3_TOKENIZER option enabled. This has
1170 been made the default option in databases/sqlite.
1172 Without this option, clementine-player will crash on startup.
1175 AFFECTS: users of biology/seqan
1176 AUTHOR: junovitch@FreeBSD.org
1178 The biology/seqan port has been split into biology/seqan (only the
1179 library) and biology/seqan-apps for the programs based on SeqAn. Both
1180 ports are based on version 2.1.1 of the SeqAn repository. There is a new
1181 biology/seqan1 port with version 1.3 of SeqAn for backwards compatibility,
1182 but this port will likely be deprecated in the next year so please update
1183 your software to SeqAn2.
1186 AFFECTS: users of www/node
1187 AUTHOR: bradleythughes@fastmail.fm
1189 The www/node port has been updated to node.js v6.0.0, the latest
1190 upstream release. Users of node.js v5.x are encouraged to upgrade as
1191 soon as possible, as upstream support will end two months from now.
1193 The www/node5 port has been created to aid users transition. Use one of
1194 the following commands to continue using node.js v5.x:
1198 # portmaster -o www/node5 www/node
1200 # portupgrade -o www/node5 www/node
1203 AFFECTS: users of security/libressl
1204 AUTHOR: brnrd@FreeBSD.org
1206 LibreSSL 2.3 has removed SSLv3 support completely which leads to issues
1207 with a number of ports. Patches for many of these issues can be found
1208 on https://wiki.freebsd.org/OpenSSL/No-SSLv3
1210 After upgrading to 2.3.4, manually update all packages that depend on
1211 any of the libraries provided by LibreSSL (libssl, libcrypto and
1212 libtls) since the versions of these libraries have changed. Normally,
1213 you can obtain the list of dependent software by running the following
1216 # pkg info -r libressl
1218 Then you should rebuild all ports depending on libressl to avoid dangling
1219 shared library dependencies. Poudriere and pkg handle this correctly,
1220 portmaster and portupgrade users can use the following to rebuild all
1224 portmaster -r libressl
1226 portupgrade -fr security/libressl
1229 AFFECTS: users of mail/dspam
1230 AUTHOR: junovitch@FreeBSD.org
1232 dspam has been modified to no longer run as root:mail by default.
1233 Existing configuration must be adjusted to reflect using a non-privileged
1234 port and the /var/run/dspam directory for PID and socket files. If you
1235 need dspam to run as root for your mail setup, you can use the SETUID
1236 config option to enable the old insecure behavior.
1239 AFFECTS: users of www/nginx and www/nginx-devel
1240 AUTHOR: osa@FreeBSD.org
1242 The ${MODULESDIR}, default directory for dynamic modules, has been
1243 changed from ${ETCDIR}/modules to ${PREFIX}/libexec/${PORTNAME}.
1244 It's highly recommended to review existing configuration files of
1245 nginx, i.e. ${PREFIX}/etc/nginx/nginx.conf.
1248 AFFECTS: users of net-mgmt/icinga2
1249 AUTHOR: lme@FreeBSD.org
1251 The creation of Icinga2 directories and files in /var is now controlled
1252 by the /etc/rc.conf variable icinga2_mkvar. Earlier ports always
1253 created the /var entries, but could slow startup significantly when /var
1254 was a normal disk rather than a RAM disk. icinga2_mkvar defaults to
1258 AFFECTS: users of audio/chromaprint
1259 AUTHOR: jhale@FreeBSD.org
1261 chromaprint has been updated to version 1.3.1 and includes a shared
1262 library bump. PORTREVISIONS have been bumped on affected ports.
1263 If you are using binary pkg, 'pkg upgrade' will do the right thing.
1264 Users of portmaster/portupgrade must rebuild all ports which depend
1268 portmaster -w -r chromaprint
1270 portupgrade -fr audio/chromaprint
1273 AFFECTS: users of www/tt-rss
1274 AUTHOR: thierry@FreeBSD.org
1276 Tiny Tiny RSS can use a database running on a separate server.
1277 Previously, in this case, you had to set the option DBLOCAL; this option
1278 has been removed and replaced by a settable run-time flag: now you
1280 ttrssd_local_db="NO"
1281 in your /etc/rc.conf .
1284 AFFECTS: users of graphics/kipi-plugin-googledrive and graphics/kipi-plugin-picasaweb
1285 AUTHOR: kde@FreeBSD.org
1287 DigiKam and its related ports have been updated to 4.14.0, the latest
1288 stable upstream release.
1290 The graphics/kipi-plugin-googledrive and graphics/kipi-plugin-picasaweb
1291 have both been merged into the new graphics/kipi-plugin-googleservices
1292 following a move done upstream.
1294 Those two ports must be removed, and graphics/kipi-plugin-googleservices
1295 should be used instead.
1298 AFFECTS: users of www/node-devel
1299 AUTHOR: bradleythughes@fastmail.fm
1301 www/node-devel was outdated and has been removed. Upstream no longer
1302 releases a development version. You can use the www/node port to get
1303 node.js 5.x by running one of the following commands:
1307 # portmaster -o www/node www/node-devel
1309 # portupgrade -o www/node www/node-devel
1312 AFFECTS: multimedia/x264
1313 AUTHOR: jbeich@FreeBSD.org
1315 LSMASH replaced GPAC by default. If you use BATCH=y in /etc/make.conf
1316 and hit below error make sure to re-run "make config".
1318 ====> You cannot select multiple options from the MP4 radio
1322 AFFECTS: users of net/samba42 and net/samba/43
1323 AUTHOR: timur@FreeBSD.org
1325 Samba 4.2.x and 4.3.x ports have been updated to address
1326 BadLock(http://badlock.org) vulnerability, as well as few other
1329 Please note that Samba 4.1.x and older versions are also affected by
1330 the issues fixed with this release but are not supported anymore. It is
1331 strongly recommend to upgrade to a recent version at your earliest
1334 The security updates include new smb.conf options and a number of
1335 stricter behaviours to prevent Man in the Middle attacks. Between these
1336 changes, compatibility with a large number of older software versions
1337 has been lost in the default configuration.
1339 For more information about the related behaviour changes and the
1340 security issues please visit:
1342 https://www.samba.org/samba/latest_news.html#4.4.2
1343 https://www.samba.org/samba/history/samba-4.3.8.html
1344 https://www.samba.org/samba/history/samba-4.2.11.html
1347 AFFECTS: users of databases/influxdb
1348 AUTHOR: cheffo@freebsd-bg.org
1350 To upgrade to InfluxDB 0.12, you must be on version 0.10 and all shards must
1351 be in TSM format (the default storage engine starting with InfluxDB 0.10).
1352 See the 0.10 documentation [1] for how to convert b1 and bz1 shards to TSM. If
1353 any b1 or bz1 shards are present, InfluxDB 0.12 will not start.
1355 Next, you need to update your metastore *before updating to 0.12.* [2]
1357 [1] https://docs.influxdata.com/influxdb/v0.10/administration/upgrading/#convert-b1-and-bz1-shards-to-tsm1
1358 [2] https://docs.influxdata.com/influxdb/v0.12/administration/upgrading/
1361 AFFECTS: users of www/pecl-http
1362 AUTHOR: bofh@FreeBSD.org
1364 www/pecl-http has been updated to the latest 3.x stable release, which
1365 supports php70+ and a new port www/pecl-http2 has been created for the
1368 Should users want to continue to use version 2.x, replace www/pecl-http with
1369 www/pecl-http2 as follows:
1373 # pkg delete pecl-http
1374 # pkg install pecl-http2
1378 # portupgrade -o www/pecl-http2 www/pecl-http
1382 # portmaster -o www/pecl-http2 www/pecl-http
1385 AFFECTS: users of lang/ruby21
1386 AUTHOR: swills@FreeBSD.org
1388 The default ruby version has been updated from 2.1 to 2.2.
1390 If you compile your own ports you may keep 2.1 as the default version by
1391 adding the following lines to your /etc/make.conf file:
1394 # Keep ruby 2.1 as default version
1396 DEFAULT_VERSIONS+=ruby=2.1
1398 If you wish to update to the new default version, you need to first stop any
1399 software that uses ruby. Then, you will need to follow these steps, depending
1400 upon how you manage your system.
1402 If you use pkgng, simply upgrade:
1405 If you use portmaster, install new ruby, then rebuild all ports that depend
1407 # portmaster -o lang/ruby22 lang/ruby21
1408 # portmaster -R -r ruby-2.2
1410 If you use portupgrade, install new ruby, then rebuild all ports that depend
1413 # pkg delete -f ruby portupgrade
1414 # make -C /usr/ports/ports-mgmt/portupgrade install clean
1415 # pkg set -o lang/ruby21:lang/ruby22
1416 # portupgrade -x ruby-2.2.\* -fr lang/ruby22
1419 AFFECTS: mail/spamassassin
1420 AUTHOR: adamw@FreeBSD.org
1422 Support for SSLv3 has been removed from SpamAssassin, because
1423 SSLv3 is a Bad Idea. No direct option is provided to re-enable it.
1424 If your setup requires use of SSLv3, some instructions are available
1425 in FreeBSD PR 208225.
1428 AFFECTS: security/clamav-unofficial-sigs
1429 AUTHOR: lukasz@wasikowski.net, sf@maxempire.com
1431 This version of clamav-unofficial-sigs is eXtremeSHOK's fork.
1432 Configuration file location has changed from
1433 %PREFIX%/clamav-unofficial-sigs.conf to
1434 %PREFIX%/clamav-unofficial-sigs/
1436 master.conf and os.conf hold default values, local changes should
1437 be placed in user.conf.
1440 AFFECTS: print/ghostscript9-base
1441 AUTHOR: tijl@FreeBSD.org
1443 The default Ghostscript port has changed from print/ghostscript9-base,
1444 which is no longer developed, to print/ghostscript9-agpl-base. Package
1445 users will upgrade automatically. Ports users can stick with the old
1446 port by adding "DEFAULT_VERSIONS+=ghostscript=9" to /etc/make.conf, or
1447 move to the new port with:
1449 portmaster -o print/ghostscript9-agpl-base ghostscript9-base
1450 or: portupgrade -o print/ghostscript9-agpl-base print/ghostscript9-base
1452 And if you have ghostscript9-x11 installed:
1454 portmaster -o print/ghostscript9-agpl-x11 ghostscript9-x11
1455 or: portupgrade -o print/ghostscript9-agpl-x11 print/ghostscript9-x11
1457 Note that print/ghostscript9-agpl-base is licensed under the AGPLv3
1458 while print/ghostscript9-base is licensed under the GPLv3.
1461 AFFECTS: security/openvas-client
1462 AUTHOR: tijl@FreeBSD.org
1464 The OpenVAS ports have been updated from version 2 to version 8. All
1465 components have been renamed and rearranged. The old OpenVAS client
1466 no longer exists. Instead there is a web interface provided by
1467 security/greenbone-security-assistant or a command-line interface
1468 provided by security/openvas-cli.
1471 AFFECTS: print/hplip
1472 AUTHOR: tijl@FreeBSD.org
1474 HPLIP has been updated to verion 3.16.2. As part of the update support
1475 for the hpijs/foomatic-rip filter has been dropped. This has long been
1476 unsupported upstream. If you used this filter with your printer you'll
1477 have to remove the printer with HP Device Manager and then add it back as
1481 AFFECTS: print/cups-base, print/cups-client, print/cups-image
1482 AUTHOR: tijl@FreeBSD.org
1484 The cups-base, cups-client and cups-image packages have been combined
1485 into one cups package.
1487 If you build your own ports the easiest way to update is to delete these
1488 packages first and then build and install print/cups.
1490 If you are using binary packages, depending on the packages installed on
1491 your system, pkg(8)'s solver might get confused. In this case do not proceed
1492 with the upgrade but delete first the packages:
1494 pkg delete -fg "cups*"
1496 Then usual upgrade process: pkg upgrade
1498 The device URI of USB printers has changed so you have to adjust the
1499 printer configuration. Go to http://localhost:631/printers/. Click on
1500 your printer and select "Modify Printer" in the Administration drop-down.
1501 You should then be able to select the new URI of the printer. The web
1502 interface requires cookies and JavaScript to function properly so make
1503 sure your browser does not block them.
1505 The package also installs a devd(8) configuration file now that gives
1506 cups access to USB printers. Unless you have any special needs you can
1507 remove any devd(8), devfs.conf(5) or devfs.rules(5) configuration related
1508 to cups that you may have added in the past.
1511 AFFECTS: net-mgmt/yaf
1512 AUTHOR: pi@FreeBSD.org
1514 YAF is updated to version 2.8.1 with many new OPTIONS. Please use
1515 the default options to get same behavior as previous version.
1518 AFFECTS: audio/alsa-utils, www/firefox, www/firefox-esr, www/seamonkey
1519 AUTHOR: jbeich@FreeBSD.org
1521 ALSA backend in libcubeb as used by Firefox has an unresolved issue
1522 with the OSS patch in audio/alsa-plugins. To avoid excessive CPU
1523 usage when playing HTML5 videos rebuild the port with BUFSZ_P2
1524 option enabled or reset options to default.
1526 However, with BUFSZ_P2 enabled alsa-utils may crash:
1529 Playing WAVE 'test.wav' : Signed 16 bit Little Endian, Rate 48000 Hz, Stereo
1530 Assertion failed: (err >= 0), function set_params, file aplay.c, line 1289.
1531 Aborted by signal Abort trap...
1534 AFFECTS: users of security/openssh-portable-devel
1535 AUTHOR: bdrewery@FreeBSD.org
1537 openssh-portable-devel has been removed since it is stale, insecure and
1538 not worth maintaining any longer.
1540 Users should switch back to openssh-portable.
1544 # pkg delete openssh-portable-devel
1545 # pkg install openssh-portable
1549 # portmaster -o security/openssh-portable openssh-portable-devel
1553 # portupgrade -o security/openssh-portable security/openssh-portable-devel
1556 AFFECTS: users of mail/postfix
1557 AUTHOR: ohauer@FreeBSD.org
1559 Postfix has been updated to version 3.1, VDA and native SPF is no
1562 - if VDA support is needed, users should stay on mail/postfix211
1563 - SPF support can be added to postfix via one of the mail/*spf* ports
1565 The Dovecot SASL OPTION was removed, Dovecot SASL support is always given
1566 from now on. In addition, for each mail/postfix* port there is now a
1567 mail/postfix*-sasl slave port providing Cyrus SASL as default.
1569 To stay on postfix-2.11.x run the command:
1571 # pkg set -o mail/postfix:mail/postfix211
1574 AFFECTS: users of www/nginx-devel
1575 AUTHOR: osa@FreeBSD.org
1577 Dynamic modules support has been enabled for the following third-party
1578 modules, in case of usage of these modules please update nginx
1579 configuration file for load these modules:
1581 load_module "modules/ngx_dynamic_upstream_module.so";
1582 load_module "modules/ngx_http_small_light_module.so";