1 This file documents some of the problems you may encounter when upgrading
2 your ports. We try our best to minimize these disruptions, but sometimes
5 You should get into the habit of checking this file for changes each time
6 you update your ports collection, before attempting any port upgrades.
9 AFFECTS: users of mail/rspamd*
10 AUTHOR: vsevolod@FreeBSD.org
12 Rspamd users should update Rspamd to 1.3.3 version as soon as possible
13 and ensure that '/usr/local/etc/rspamd/module.d/fuzzy_check.conf` has
14 the line `algorithm = "mumhash";` for the "rspamd.com" rule. The more
15 detailed information could be found on
16 https://rspamd.com/announce/2016/08/15/rspamd-1.3.3.html
19 AFFECTS: users of dns/powerdns*
20 AUTHOR: junovitch@FreeBSD.org
22 PowerDNS Authoritive Server and Recursor 4.0.0+ introduce significant
23 changes to the configuration files, which need to be handled before
24 restarting the services. As from the Recursor changelog, "The Lua hook
25 infrastructure was redone using LuaWrapper; old scripts will no longer
26 work, but new scripts are easier to write under the new interface."
29 AFFECTS: users of security/libressl
30 AUTHOR: brnrd@FreeBSD.org
32 The port has been updated to the latest stable version 2.4 of LibreSSL.
33 The shared library versions of the libraries have been bumped.
34 With this update, the patch for the OPENSSL_VERSION_NUMBER has been
35 removed. This causes issues with a number of ports. Patches for all
36 ports for which this issues is known can be found on
37 https://wiki.freebsd.org/LibreSSL/Ports#OPENSSL_VERSION_NUMBER
39 After upgrading, manually update all packages that depend on any of the
40 libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
41 versions of these libraries have changed. Normally, you can obtain the
42 list of dependent software by running the following command:
44 # pkg info -r libressl
46 Then you should rebuild all ports depending on libressl to avoid dangling
47 shared library dependencies. Poudriere and pkg handle this correctly,
48 portmaster and portupgrade users can use the following to rebuild all
52 portmaster -r libressl
54 portupgrade -fr security/libressl
57 AFFECTS: users of databases/postgresqlNN-server with ICU patch
58 AUTHOR: girgen@FreeBSD.org
60 The ICU patch is added to the PostgreSQL-9.5 server. Please note that you
61 must never change between using the ICU patch and using system locale for the
62 same database cluster without REINDEXing all TEXT/VARCHAR columns or
63 dump+restore your database. Failing to do so will result in corrupted indexes
64 due to the differences between the locale definitions. ICU will always be the
65 better choice for speed and correctness. :)
67 Also, the ICU patch used to support other unicode encodings than UTF-8, but
68 that has been removed due to lack of demand and the complicated testing
69 required. If you use another unicode encoding and rely on ICU for collation,
70 please refrain from upgrading the postgresql server and instead contact the
74 AFFECTS: users of emulators/virtualbox-ose
75 AUTHOR: jkim@FreeBSD.org
77 VirtualBox has been updated to 5.0.26 and it is incompatible with old
78 kernel modules. You should upgrade emulators/virtualbox-ose-kmod and
79 load new kernel modules before starting new version, e.g.,
81 # service vboxnet restart
84 AFFECTS: users of games/stonesoup-*
85 AUTHOR: lifanov@mail.lifanov.com
87 The WIZARD option has been renamed to NOWIZARD and is now an opt-out to
88 better reflect the upstream. If you run a shared game server and would
89 like the Wizard mode support disabled, please update port options.
92 AFFECTS: users of www/awstats
93 AUTHOR: adamw@FreeBSD.org
95 The directory containing icons has changed from ".../icons" to ".../icon".
96 awstats has, in its suggested configuration file, contained an alias
97 from /awstatsicons. After applying the awstats-7.5 update, you must
98 update that alias to point to /usr/local/www/awstats/icon (just remove
102 AFFECTS: users of sysutils/screen
103 AUTHOR: cy@FreeBSD.org
105 As of GNU Screen 4.4.0 (r417201):
107 Note that there was fix to screen message structure field
108 responsible for $TERM handling, making it impossible
109 to attach to older versions.
112 AFFECTS: users of databases/mysql57-*
113 AUTHOR: riggs@FreeBSD.org
115 The default location for my.cnf has changed from "/var/db/mysql/my.cnf"
116 to "/usr/local/etc/mysql/my.cnf". Existing my.cnf files must be merged
117 manually with the new default and moved to the new location. To
118 continue using the my.cnf file at the old location, set "mysql_optfile"
119 in /etc/rc.conf to point to the location of the existing my.cnf file.
122 AFFECTS: users of www/node5
123 AUTHOR: bradleythughes@fastmail.fm
125 Node.js v5.x has reached end of life and has been removed. Users that
126 have not yet moved to v6.x should do so now by switching to the www/node
130 AFFECTS: users of sysutils/rsyslog7
131 AUTHOR: brd@FreeBSD.org
133 Rsyslog 7.x has reached end of life status and is being marked as
134 depreciated. Rsyslog 8 has been made the default.
137 AFFECTS: users of www/calendarserver
138 AUTHOR: pi@FreeBSD.org
140 Please note that updating from the previous version (5.1) to the current
141 version (8.0) requires manual steps. Please consult the pkg-message for
145 AFFECTS: users of shells/zsh
146 AUTHOR: adamw@FreeBSD.org
148 zsh now looks for system-wide conf files in ${PREFIX}/etc, instead of
149 /etc. If you have files like zshrc, zshenv, zprofile, zlogin, or zlogout
150 in /etc, either move them to /usr/local/etc or rebuild zsh with the
153 Note that this change only affects system-wide conf files, which are not
154 installed or created by a default installation.
157 AFFECTS: users of www/redmine
158 AUTHOR: tz@FreeBSD.org
160 Redmine was updated from 2.6.9 to 3.2.3. Since this an update over
161 major versions be careful with your update.
162 For further update instructions please have a look at:
163 https://www.redmine.org/projects/redmine/wiki/RedmineUpgrade
166 AFFECTS: users of ftp/wget
167 AUTHOR: vd@FreeBSD.org
169 Wget 1.18 fixes a security vulnerability (CVE-2016-4971) and the fix
170 introduces a backward-incompatibility for HTTP->FTP redirects. Any script that
171 relies on the old behaviour must use --trust-server-names in order to trust
172 the HTTP response and redirect to the new filename.
175 AFFECTS: users of databases/py-apsw
176 AUTHOR: rm@FreeBSD.org
178 SQLite 3.12 completely changed the semantics of VFS.xGetLastError() in an
179 incompatible way. This required a rewrite of the relevant C, Python and test
180 code. If you implement or use this method then you have to rewrite your code
181 too. Also note that running the test suite from an earlier version of APSW
182 against this or future SQLite versions will result in consuming all memory,
183 swap or address space (an underlying integer changed meaning).
186 AFFECTS: users of security/openssl*, security/libressl*
187 AUTHOR: mat@FreeBSD.org
189 Previously, to tell the ports tree, you needed to set:
191 WITH_OPENSSL_PORT=yes
193 And if you wanted a port that was not security/openssl, you needed to add,
196 OPENSSL_PORT= security/libressl
198 Now, all you need to do is:
200 DEFAULT_VERSIONS+= ssl=libressl
202 Valid values are base, openssl, openssl-devel, libressl, and libressl-devel.
205 AFFECTS: users of www/node, www/node5, and www/node4
206 AUTHOR: adamw@FreeBSD.org
208 node now prefers a few libraries from ports to the versions bundled
209 with node. However, node cannot use the libssl from LibreSSL. If you
210 are using LibreSSL as your SSL provider, you must enable the
211 "BUNDLED_SSL" option when building node.
214 AFFECTS: users of textproc/xmlroff
215 AUTHOR: hrs@FreeBSD.org
217 The library part of xmlroff has been separated into textproc/libfo.
218 Remove the installed xmlroff first when upgrading it because older
219 xmlroff than 0.6.2_6 have files which libfo installs. A typical
220 error message is the following:
222 pkg-static: libfo-0.6.2 conflicts with xmlroff-0.6.2_5 (installs files into the same place). Problematic file: /usr/local/include/libfo-0.6/libfo/area/fo-area.h
225 AFFECTS: users of databases/postgresql-repmgr
226 AUTHOR: bofh@FreeBSD.org
228 The port has been repocopied to databases/postgresql-repmgr2 and current
229 post has been updated to 3.x series. If anyone is still looking forward
230 to use the 2.x please upgrade as following.
232 # portmaster -o databases/postgresql-repmgr2 databases/postgresql-repmgr
234 # portupgrade -o databases/postgresql-repmgr2 databases/postgresql-repmgr
236 Otherwise if you want to move on with 3.x series just use
238 # portmaster -r databases/postgresql-repmgr
240 # portupgrade -fr databases/postgresql-repmgr
243 AFFECTS: Users of www/h2o
244 AUTHOR: junovitch@FreeBSD.org
246 File paths no longer have a trailing / appended to them. This enables
247 directing specific paths to a file but may break existing configurations.
248 Refer to https://h2o.examp1e.net/configure/file_directives.html and
249 revise your yaml config appropriately.
252 AFFECTS: users of security/libressl-devel
253 AUTHOR: brnrd@FreeBSD.org
255 The port has been updated to the latest "unstable" version of LibreSSL.
256 The shared library versions of the libraries have been bumped.
257 With this update, the patch for the OPENSSL_VERSION_NUMBER has been
258 removed. This causes issues with a number of ports. Patches for many of
259 these issues can be found on
260 https://wiki.freebsd.org/LibreSSL/Ports#OPENSSL_VERSION_NUMBER
262 After upgrading to 2.4.0, manually update all packages that depend on
263 any of the libraries provided by LibreSSL (libssl, libcrypto and
264 libtls) since the versions of these libraries have changed. Normally,
265 you can obtain the list of dependent software by running the following
268 # pkg info -r libressl-devel
270 Then you should rebuild all ports depending on libressl-devel to avoid
271 dangling shared library dependencies. Poudriere and pkg handle this
272 correctly, portmaster and portupgrade users can use the following to
273 rebuild all dependent ports.
276 portmaster -r libressl-devel
278 portupgrade -fr security/libressl-devel
281 AFFECTS: Users of mail/opensmtpd-extras (any of them)
282 AUTHOR: adamw@FreeBSD.org
284 The invocation for extras has changed. Some extras might fail unless
285 you pass all options/arguments separated by quotes:
287 filter myfilter dnsbl "-c /var/chroot/dnsbl" "-h my.dnsbl.com"
289 Additionally, extras now run in a chroot. Either pass "-C" to skip the
290 chroot entirely (not recommended), or put all required config files,
291 resolv.conf, and external binaries into the chroot. For example:
293 # mkdir -p /var/chroot/dnsbl/etc
294 # cp /etc/resolv.conf /var/chroot/dnsbl/etc
296 And pass "-c /var/chroot/dnsbl" to the filter.
299 AFFECTS: Users of mail/opensmtpd
300 AUTHOR: brnrd@FreeBSD.org
302 Due to changes to the rc-script you must stop smtpd prior to upgrading
303 mail/opensmtpd to version 5.9.2
307 Then upgrade OpenSMTPD to version 5.9.2.
308 Additionally version 5.9.2 changes the file mode bits for two directories.
309 To allow existing installations to start succesfully you must apply the
312 # chown -R root:_smtpq /var/spool/smtpd/offline
313 # chmod -R 770 /var/spool/smtpd/offline
314 # chmod -R 700 /var/spool/smtpd/purge
316 After applying the changes, the smtpd daemon can succesfully be started.
319 AFFECTS: Users of devel/qtcreator
320 AUTHOR: nolden@kde.org
322 QBS (Qt Build System) was previously shipped as part of qtcreator, now
323 it is independently available as devel/qbs. However, on upgrading
324 qtcreator to 3.6.1, the depends will detect qbs through a previously
325 installed qtcreator port and will not build/install correctly
326 (devel/qbs won't be installed automatically as depends)
328 The solution is to pkg remove qtcreator, then building works correctly.
331 AFFECTS: Users of databases/db6
332 AUTHOR: mandree@FreeBSD.org
334 The databases/db6 port has been updated to release 6.2.23.
336 This requires manual action in two places:
337 1. dependent applications need to be recompiled,
338 2. SQL databases, if any, need to be reindexed.
340 To obtain a list of ports needing a recompilation,
341 the following command should provide it:
345 Then rebuild db6 and the dependent ports. For pkg users, this should
349 # portmaster -r databases/db6
351 # portupgrade -fr databases/db6
353 In order to reindex SQL databases, a db6-upgrade61.sh script is
354 provided in ${PREFIX}/bin, if and only if the port's SQL option is
355 enabled. For detailed reindexing instructions, see
356 http://docs.oracle.com/cd/E17076_05/html/installation/sqlite_ver61.html
357 and note that the FreeBSD port installs the upgrade61.sh script with a
358 db6- prefix that you need to add.
361 AFFECTS: Users of audio/clementine-player
362 AUTHOR: sbruno@FreeBSD.org
364 The audio/clementine-player port has been updated to v1.3.1, the latest
365 upstream release. The music database code now has a hard dependency on
366 databases/sqlite having the FTS3_TOKENIZER option enabled. This has
367 been made the default option in databases/sqlite.
369 Without this option, clementine-player will crash on startup.
372 AFFECTS: Users of biology/seqan
373 AUTHOR: junovitch@FreeBSD.org
375 The biology/seqan port has been split into biology/seqan (only the
376 library) and biology/seqan-apps for the programs based on SeqAn. Both
377 ports are based on version 2.1.1 of the SeqAn repository. There is a new
378 biology/seqan1 port with version 1.3 of SeqAn for backwards compatibility,
379 but this port will likely be deprecated in the next year so please update
380 your software to SeqAn2.
383 AFFECTS: Users of www/node
384 AUTHOR: bradleythughes@fastmail.fm
386 The www/node port has been updated to node.js v6.0.0, the latest
387 upstream release. Users of node.js v5.x are encouraged to upgrade as
388 soon as possible, as upstream support will end two months from now.
390 The www/node5 port has been created to aid users transition. Use one of
391 the following commands to continue using node.js v5.x:
395 # portmaster -o www/node5 www/node
397 # portupgrade -o www/node5 www/node
400 AFFECTS: users of security/libressl
401 AUTHOR: brnrd@FreeBSD.org
403 LibreSSL 2.3 has removed SSLv3 support completely which leads to issues
404 with a number of ports. Patches for many of these issues can be found
405 on https://wiki.freebsd.org/OpenSSL/No-SSLv3
407 After upgrading to 2.3.4, manually update all packages that depend on
408 any of the libraries provided by LibreSSL (libssl, libcrypto and
409 libtls) since the versions of these libraries have changed. Normally,
410 you can obtain the list of dependent software by running the following
413 # pkg info -r libressl
415 Then you should rebuild all ports depending on libressl to avoid dangling
416 shared library dependencies. Poudriere and pkg handle this correctly,
417 portmaster and portupgrade users can use the following to rebuild all
421 portmaster -r libressl
423 portupgrade -fr security/libressl
426 AFFECTS: Users of mail/dspam
427 AUTHOR: junovitch@FreeBSD.org
429 dspam has been modified to no longer run as root:mail by default.
430 Existing configuration must be adjusted to reflect using a non-privileged
431 port and the /var/run/dspam directory for PID and socket files. If you
432 need dspam to run as root for your mail setup, you can use the SETUID
433 config option to enable the old insecure behavior.
436 AFFECTS: users of www/nginx and www/nginx-devel
437 AUTHOR: osa@FreeBSD.org
439 The ${MODULESDIR}, default directory for dynamic modules, has been
440 changed from ${ETCDIR}/modules to ${PREFIX}/libexec/${PORTNAME}.
441 It's highly recommended to review existing configuration files of
442 nginx, i.e. ${PREFIX}/etc/nginx/nginx.conf.
445 AFFECTS: Users of net-mgmt/icinga2
446 AUTHOR: lme@FreeBSD.org
448 The creation of Icinga2 directories and files in /var is now controlled
449 by the /etc/rc.conf variable icinga2_mkvar. Earlier ports always
450 created the /var entries, but could slow startup significantly when /var
451 was a normal disk rather than a RAM disk. icinga2_mkvar defaults to
455 AFFECTS: users of audio/chromaprint
456 AUTHOR: jhale@FreeBSD.org
458 chromaprint has been updated to version 1.3.1 and includes a shared
459 library bump. PORTREVISIONS have been bumped on affected ports.
460 If you are using binary pkg, 'pkg upgrade' will do the right thing.
461 Users of portmaster/portupgrade must rebuild all ports which depend
465 portmaster -w -r chromaprint
467 portupgrade -fr audio/chromaprint
470 AFFECTS: Users of www/tt-rss
471 AUTHOR: thierry@FreeBSD.org
473 Tiny Tiny RSS can use a database running on a separate server.
474 Previously, in this case, you had to set the option DBLOCAL; this option
475 has been removed and replaced by a settable run-time flag: now you
478 in your /etc/rc.conf .
481 AFFECTS: Users of graphics/kipi-plugin-googledrive and graphics/kipi-plugin-picasaweb
482 AUTHOR: kde@FreeBSD.org
484 DigiKam and its related ports have been updated to 4.14.0, the latest
485 stable upstream release.
487 The graphics/kipi-plugin-googledrive and graphics/kipi-plugin-picasaweb
488 have both been merged into the new graphics/kipi-plugin-googleservices
489 following a move done upstream.
491 Those two ports must be removed, and graphics/kipi-plugin-googleservices
492 should be used instead.
495 AFFECTS: All users of www/node-devel
496 AUTHOR: bradleythughes@fastmail.fm
498 www/node-devel was outdated and has been removed. Upstream no longer
499 releases a development version. You can use the www/node port to get
500 node.js 5.x by running one of the following commands:
504 # portmaster -o www/node www/node-devel
506 # portupgrade -o www/node www/node-devel
509 AFFECTS: multimedia/x264
510 AUTHOR: jbeich@FreeBSD.org
512 LSMASH replaced GPAC by default. If you use BATCH=y in /etc/make.conf
513 and hit below error make sure to re-run "make config".
515 ====> You cannot select multiple options from the MP4 radio
519 AFFECTS: Users of net/samba42 and net/samba/43
520 AUTHOR: timur@FreeBSD.org
522 Samba 4.2.x and 4.3.x ports have been updated to address
523 BadLock(http://badlock.org) vulnerability, as well as few other
526 Please note that Samba 4.1.x and older versions are also affected by
527 the issues fixed with this release but are not supported anymore. It is
528 strongly recommend to upgrade to a recent version at your earliest
531 The security updates include new smb.conf options and a number of
532 stricter behaviours to prevent Man in the Middle attacks. Between these
533 changes, compatibility with a large number of older software versions
534 has been lost in the default configuration.
536 For more information about the related behaviour changes and the
537 security issues please visit:
539 https://www.samba.org/samba/latest_news.html#4.4.2
540 https://www.samba.org/samba/history/samba-4.3.8.html
541 https://www.samba.org/samba/history/samba-4.2.11.html
544 AFFECTS: Users if databases/influxdb
545 AUTHOR: cheffo@freebsd-bg.org
547 To upgrade to InfluxDB 0.12, you must be on version 0.10 and all shards must
548 be in TSM format (the default storage engine starting with InfluxDB 0.10).
549 See the 0.10 documentation [1] for how to convert b1 and bz1 shards to TSM. If
550 any b1 or bz1 shards are present, InfluxDB 0.12 will not start.
552 Next, you need to update your metastore *before updating to 0.12.* [2]
554 [1] https://docs.influxdata.com/influxdb/v0.10/administration/upgrading/#convert-b1-and-bz1-shards-to-tsm1
555 [2] https://docs.influxdata.com/influxdb/v0.12/administration/upgrading/
558 AFFECTS: All users of www/pecl-http
561 www/pecl-http has been updated to the latest 3.x stable release, which
562 supports php70+ and a new port www/pecl-http2 has been created for the
565 Should users want to continue to use version 2.x, replace www/pecl-http with
566 www/pecl-http2 as follows:
570 # pkg delete pecl-http
571 # pkg install pecl-http2
575 # portupgrade -o www/pecl-http2 www/pecl-http
579 # portmaster -o www/pecl-http2 www/pecl-http
582 AFFECTS: users of lang/ruby21
583 AUTHOR: swills@FreeBSD.org
585 The default ruby version has been updated from 2.1 to 2.2.
587 If you compile your own ports you may keep 2.1 as the default version by
588 adding the following lines to your /etc/make.conf file:
591 # Keep ruby 2.1 as default version
593 DEFAULT_VERSIONS+=ruby=2.1
595 If you wish to update to the new default version, you need to first stop any
596 software that uses ruby. Then, you will need to follow these steps, depending
597 upon how you manage your system.
599 If you use pkgng, simply upgrade:
602 If you use portmaster, install new ruby, then rebuild all ports that depend
604 # portmaster -o lang/ruby22 lang/ruby21
605 # portmaster -R -r ruby-2.2
607 If you use portupgrade, install new ruby, then rebuild all ports that depend
610 # pkg delete -f ruby portupgrade
611 # make -C /usr/ports/ports-mgmt/portupgrade install clean
612 # pkg set -o lang/ruby21:lang/ruby22
613 # portupgrade -x ruby-2.2.\* -fr lang/ruby22
616 AFFECTS: mail/spamassassin
617 AUTHOR: adamw@FreeBSD.org
619 Support for SSLv3 has been removed from SpamAssassin, because
620 SSLv3 is a Bad Idea. No direct option is provided to re-enable it.
621 If your setup requires use of SSLv3, some instructions are available
622 in FreeBSD PR 208225.
625 AFFECTS: security/clamav-unofficial-sigs
626 AUTHOR: lukasz@wasikowski.net, sf@maxempire.com
628 This version of clamav-unofficial-sigs is eXtremeSHOK's fork.
629 Configuration file location has changed from
630 %PREFIX%/clamav-unofficial-sigs.conf to
631 %PREFIX%/clamav-unofficial-sigs/
633 master.conf and os.conf hold default values, local changes should
634 be placed in user.conf.
637 AFFECTS: print/ghostscript9-base
638 AUTHOR: tijl@FreeBSD.org
640 The default Ghostscript port has changed from print/ghostscript9-base,
641 which is no longer developed, to print/ghostscript9-agpl-base. Package
642 users will upgrade automatically. Ports users can stick with the old
643 port by adding "DEFAULT_VERSIONS+=ghostscript=9" to /etc/make.conf, or
644 move to the new port with:
646 portmaster -o print/ghostscript9-agpl-base ghostscript9-base
647 or: portupgrade -o print/ghostscript9-agpl-base print/ghostscript9-base
649 And if you have ghostscript9-x11 installed:
651 portmaster -o print/ghostscript9-agpl-x11 ghostscript9-x11
652 or: portupgrade -o print/ghostscript9-agpl-x11 print/ghostscript9-x11
654 Note that print/ghostscript9-agpl-base is licensed under the AGPLv3
655 while print/ghostscript9-base is licensed under the GPLv3.
658 AFFECTS: security/openvas-client
659 AUTHOR: tijl@FreeBSD.org
661 The OpenVAS ports have been updated from version 2 to version 8. All
662 components have been renamed and rearranged. The old OpenVAS client
663 no longer exists. Instead there is a web interface provided by
664 security/greenbone-security-assistant or a command-line interface
665 provided by security/openvas-cli.
669 AUTHOR: tijl@FreeBSD.org
671 HPLIP has been updated to verion 3.16.2. As part of the update support
672 for the hpijs/foomatic-rip filter has been dropped. This has long been
673 unsupported upstream. If you used this filter with your printer you'll
674 have to remove the printer with HP Device Manager and then add it back as
678 AFFECTS: print/cups-base, print/cups-client, print/cups-image
679 AUTHOR: tijl@FreeBSD.org
681 The cups-base, cups-client and cups-image packages have been combined
682 into one cups package.
684 If you build your own ports the easiest way to update is to delete these
685 packages first and then build and install print/cups.
687 If you are using binary packages, depending on the packages installed on
688 your system, pkg(8)'s solver might get confused. In this case do not proceed
689 with the upgrade but delete first the packages:
691 pkg delete -fg "cups*"
693 Then usual upgrade process: pkg upgrade
695 The device URI of USB printers has changed so you have to adjust the
696 printer configuration. Go to http://localhost:631/printers/. Click on
697 your printer and select "Modify Printer" in the Administration drop-down.
698 You should then be able to select the new URI of the printer. The web
699 interface requires cookies and JavaScript to function properly so make
700 sure your browser does not block them.
702 The package also installs a devd(8) configuration file now that gives
703 cups access to USB printers. Unless you have any special needs you can
704 remove any devd(8), devfs.conf(5) or devfs.rules(5) configuration related
705 to cups that you may have added in the past.
708 AFFECTS: net-mgmt/yaf
709 AUTHOR: pi@FreeBSD.org
711 YAF is updated to version 2.8.1 with many new OPTIONS. Please use
712 the default options to get same behavior as previous version.
715 AFFECTS: audio/alsa-utils, www/firefox, www/firefox-esr, www/seamonkey
716 AUTHOR: jbeich@FreeBSD.org
718 ALSA backend in libcubeb as used by Firefox has an unresolved issue
719 with the OSS patch in audio/alsa-plugins. To avoid excessive CPU
720 usage when playing HTML5 videos rebuild the port with BUFSZ_P2
721 option enabled or reset options to default.
723 However, with BUFSZ_P2 enabled alsa-utils may crash:
726 Playing WAVE 'test.wav' : Signed 16 bit Little Endian, Rate 48000 Hz, Stereo
727 Assertion failed: (err >= 0), function set_params, file aplay.c, line 1289.
728 Aborted by signal Abort trap...
731 AFFECTS: users of security/openssh-portable-devel
732 AUTHOR: bdrewery@FreeBSD.org
734 openssh-portable-devel has been removed since it is stale, insecure and
735 not worth maintaining any longer.
737 Users should switch back to openssh-portable.
741 # pkg delete openssh-portable-devel
742 # pkg install openssh-portable
746 # portmaster -o security/openssh-portable openssh-portable-devel
750 # portupgrade -o security/openssh-portable security/openssh-portable-devel
753 AFFECTS: users of mail/postfix
754 AUTHOR: ohauer@FreeBSD.org
756 Postfix has been updated to version 3.1, VDA and native SPF is no
759 - if VDA support is needed, users should stay on mail/postfix211
760 - SPF support can be added to postfix via one of the mail/*spf* ports
762 The Dovecot SASL OPTION was removed, Dovecot SASL support is always given
763 from now on. In addition, for each mail/postfix* port there is now a
764 mail/postfix*-sasl slave port providing Cyrus SASL as default.
766 To stay on postfix-2.11.x run the command:
768 # pkg set -o mail/postfix:mail/postfix211
771 AFFECTS: users of www/nginx-devel
772 AUTHOR: osa@FreeBSD.org
774 Dynamic modules support has been enabled for the following third-party
775 modules, in case of usage of these modules please update nginx
776 configuration file for load these modules:
778 load_module "modules/ngx_dynamic_upstream_module.so";
779 load_module "modules/ngx_http_small_light_module.so";
782 AFFECTS: users of www/nginx-devel
783 AUTHOR: osa@FreeBSD.org
785 Dynamic modules support has been enabled for the following third-party
786 modules, in case of usage of these modules please update nginx
787 configuration file for load these modules:
789 load_module "modules/ngx_http_echo_module.so";
790 load_module "modules/ngx_http_headers_more_filter_module.so";
791 load_module "modules/ngx_http_eval_module.so";
792 load_module "modules/ngx_http_lua_module.so";
793 load_module "modules/ngx_http_set_misc_module.so";
796 AFFECTS: users of www/nginx-devel
797 AUTHOR: osa@FreeBSD.org
799 Dynamic modules support has been enabled. In case of usage following
800 modules please update nginx configuration file for load these modules:
802 load_module "modules/ngx_http_geoip_module.so";
803 load_module "modules/ngx_http_image_filter_module.so";
804 load_module "modules/ngx_http_xslt_filter_module.so";
805 load_module "modules/ngx_mail_module.so";
806 load_module "modules/ngx_stream_module.so";
808 See https://www.nginx.com/blog/dynamic-modules-nginx-1-9-11/ for details.
811 AFFECTS: users of net-im/uTox
812 AUTHOR: amdmi3@FreeBSD.org
814 Before upgrading uTox port, please set maximum font scale in the
818 AFFECTS: users of security/tor, security/tor-devel
819 AUTHOR: amdmi3@FreeBSD.org
821 The tor ports now create /var/log/tor subdirectory for tor logs. If
822 you've used /var/log/tor as a log _file_, you'll need to update your
823 torrc and move the file before updating the port.
826 AFFECTS: users of mail/rspamd and mail/rmilter
827 AUTHOR: vsevolod@FreeBSD.org
829 Rspamd has been updated to the version 1.1.0. If you have used per user
830 statistics, then please consult changelog for details: your configuration
833 Rmilter has been updated to the version 1.7.0. Support of SPF and Spamassassin
834 has been dropped from this project completely. You might also consider
835 migration from memcahched to redis in this version.
838 AFFECTS: users of sysutils/ansible
839 AUTHOR: lifanov@mail.lifanov.com
841 Ansible 2.0.0 introduces a number of incompatible configuration changes.
842 Please read changelog and migrate current configuration:
844 https://raw.githubusercontent.com/ansible/ansible/v2.0.0.0-1/CHANGELOG.md
846 Ansible 1.9.* will be provided as sysutils/ansible1 until the next update
850 AFFECTS: users of security/easy-rsa
851 AUTHOR: mandree@FreeBSD.org
853 The port has been upgraded to version 3. This incurs major changes,
854 please see ${PREFIX}/share/doc/easy-rsa/doc/EasyRSA-Upgrade-Notes.md
857 The old version 2.2.2 has been retained as security/easy-rsa2.
860 AFFECTS: users of games/nethack34
861 AUTHOR: glewis@FreeBSD.org
863 The port name and installation location of games/nethack34 have changed
864 to allow for a port of NetHack 3.6.0. To preserve your save and bones
865 files do the following after updating:
867 # sudo cp -p ${LOCALBASE}/share/nethack/save/* ${LOCALBASE}/share/nethack34/save/
868 # sudo cp -p ${LOCALBASE}/share/nethack/bon* ${LOCALBASE}/share/nethack34/
870 After verifying the files were copied correctly, remove the playground
871 directory (as these files are incompatible with NetHack 3.6.0).
873 # sudo rm -r ${LOCALBASE}/share/nethack
876 AFFECTS: users of net/samba4, net/samba41
877 AUTHOR: timur@FreeBSD.org
879 Given version of Samba were marked as deprecated. Please, consider to upgrade.
881 Samba4 was giving wrong builds with recent version of p5-Parse-Pidl. It was
882 converted to use bundled version instead and to conflict with the given package.
883 If you still intend to build net/samba4 - remove p5-Parse-Pidle first.
886 AFFECTS: users of security/tor, security/tor-devel
889 Tor rc.d script no longer overrides or forces logfile configuration,
890 you now need to setup logging by hand. To preserve old behavior, add
891 the following line to /usr/local/etc/tor/torrc:
893 Log notice file /var/log/tor
896 AFFECTS: All users of www/node
899 www/node has been updated to the latest 5.x stable release, and a new port
900 www/node4 has been created for the 4.x LTS branch.
902 Should users want to continue to use version 4.x, replace www/node with
903 www/node4 as follows:
912 # portupgrade -o www/node4 www/node
916 # portmaster -o www/node4 node
919 AFFECTS: users of comms/gammu
920 AUTHOR: vanilla@FreeBSD.org
922 The python binding of comms/gammu were split from the main port. To get them you
923 need to install comms/py-gammu.
926 AFFECTS: users of mail/postfixadmin
927 AUTHOR: riggs@FreeBSD.org
929 Caveat when updating to version 2.93: If you have an existing
930 configuration and are NOT using the recommended practice of putting your
931 settings changes in config.local.php:
933 Copy config.inc.php to config.local.php prior to upgrading, then revise
934 config.local.php for the current version afterward.
936 Postfixadmin will not function correctly unless correct and complete
937 data structures are placed in config.inc.php. Therefore the file must be
938 upgraded as part of the package and any changes to config.inc.php will
941 Detailed information regarding this procedure is provided in step 3 of
942 the installation instructions in ${DATADIR}/INSTALL.TXT (by default
943 /usr/local/share/postfixadmin/INSTALL.TXT).
946 AFFECTS: users of devel/ncurses
947 AUTHOR: bapt@FreeBSD.org
949 ncurses has been updated to 6.0.
950 If you are using binary pkg, 'pkg upgrade' will do the right thing.
951 Users of portmaster/portupgrade must rebuild all ports which depend
955 portmaster -w -r ncurses
957 portupgrade -fr devel/ncurses
960 AFFECTS: users of x11-toolkits/qt4-gui or x11-toolkits/qt5-gui
961 AUTHOR: kde@FreeBSD.org
963 Back in mid-2012, pkg-message was added to the port suggesting changes to the
964 default shared memory limits in loader.conf(5). Since then, the default
965 limits have been changed and the values suggested by the port are no longer
966 sensible. If you have changed the following values in loader.conf(5) due to
967 qt4-gui's or qt5-gui's pkg-message, please considering removing them and
968 using the default settings:
972 See base r209037 and ports PR 202927 for more context.
975 AFFECTS: users of sysutils/logstash
976 AUTHOR: junovitch@FreeBSD.org
978 Logstash has been updated to the 2.1.0 release. The embedded ElasticSearch
979 instance is no longer supported. If in use, end users must update
980 logstash.conf to point to the URL of an ElasticSearch instance.
983 AFFECTS: users of net/samba43
984 AUTHOR: timur@FreeBSD.org
986 A new version of Samba server that has better integration with Windows 10.
987 This is still experimental and there were reports that rolling upgrade from
988 previous version of Samba fails to work.
990 Please, backup all relevant files from /var/db/samba4/ directory, as well
991 as configuration files.
993 Follow https://wiki.samba.org/index.php/Updating_Samba for the upgrade path.
996 AFFECTS: users of net/samba4, net/samba41, net/samba42
997 AUTHOR: timur@FreeBSD.org
999 Recent versions of devel/talloc, devel/tevent, database/tdb, database/ldb
1000 contained infinit recursive call to the strtol* set of replacement functions,
1001 which lead to coredumps. Unofficial patch was added meanwhile, but now
1002 official version of the fixed libs were released. If your version of
1003 net/samba4 works fine you don't need to recompile it. Other ports were also
1004 upgraded and some bugs were fixed in upstream.
1007 AFFECTS: users of audio/audacity
1008 AUTHOR: riggs@FreeBSD.org
1010 Audacity has been upgraded to version 2.1.1. Changes in its settings
1011 processing may prevent it from starting. If this happens, removing its
1012 user-specific configuration directory ~/.audacity-data resolves this.
1015 AFFECTS: users of mail/rmilter
1016 AUTHOR: vsevolod@FreeBSD.org
1018 Rmilter now has switched from user postfix to user _rmilter for security
1019 and sanity purposes. You might want to fix the ownership of
1020 /var/run/rmilter to user _rmilter and group mail.
1023 AFFECTS: users of deskutils/egroupware
1024 AUTHOR: danilo@FreeBSD.org
1026 EGroupware 1.8 was deprecated and removed from sourceforge.net.
1027 To upgrade to the new version (14.3), make a backup of all files and
1028 database, remove all files from ${PREFIX}/www/eg:
1030 # pkg remove egroupware
1031 # rm -rf ${PREFIX}/www/eg
1033 Install the new egroupware:
1034 # pkg install egroupware
1036 # make -C /usr/ports/deskutils/egroupware install clean
1038 Access the setup page on your browser and run the upgrade process
1039 (eg: http://<server>/eg/setup).
1042 AFFECTS: users of www/codeigniter
1043 AUTHOR: junovitch@FreeBSD.org
1045 CodeIgniter has been updated to the 3.0.x release branch. End users
1046 must ensure their web applications are compliant with the guidance
1047 in the "Upgrading From a Previous Version" document.
1049 http://www.codeigniter.com/user_guide/installation/upgrade_300.html
1051 CodeIgniter 2.2.x has reached EOL as of 31 October 2015 but may be
1052 installed in the interim from the www/codeigniter22 port.
1055 AFFECTS: users of security/keepassx2
1057 Due to a package name change, first remove the existing package
1058 and then reinstall it:
1060 # pkg delete security/keepassx2
1061 # portmaster security/keepassx2
1064 AFFECTS: users of www/varnish4
1065 AUTHOR: feld@FreeBSD.org
1067 Varnish has been updated to 4.1.0. As part of the update an effort has
1068 been made to increase the security of the varnish daemons by utilizing
1069 separate UIDs. Users who upgrade will likely run into a permissions
1070 issue as a result. The simplest solution is to delete files varnish
1071 will recreate with the correct permissions and to adjust permissions
1072 of existing log files.
1074 The following changes will allow you to start varnishd, varnishlog,
1075 and varnishncsa successfully:
1077 # rm -r /usr/local/varnish/$(hostname)
1078 # rm /var/run/varnishlog.pid
1079 # rm /var/run/varnishncsa.pid
1080 # chown varnishlog /var/log/varnish.log
1081 # chown varnishlog /var/log/varnishncsa.log
1083 Please also note that the syntax for binding to additional IPs has
1084 changed in 4.1.0. Multiple listening addresses are now specified by
1085 using multiple -a arguments. In rc.conf it would look like this:
1087 varnishd_listen="x.x.x.x:80 -a y.y.y.y:80"
1090 AFFECTS: users of devel/subversion, its bindings and www/mod_dav_svn
1091 AUTHOR: lev@FreeBSD.org
1093 The subversion upgdate to 1.9 branch introduces new "old" subversion
1094 port devel/subversion18.
1096 If you don't want to update your subversion installation, run
1098 pkg set -n subversion:subversion18
1102 WITH_SUBVERSION_VER=18
1104 to your /etc/make.conf
1107 AFFECTS: users of security/sshguard-ipfw
1108 AUTHOR: feld@FreeBSD.org
1110 The sshguard update to 1.6.2 introduces a rewritten IPFW backend. The
1111 previous approach was to insert individual block rules with a
1112 predefined numbered range. This does not scale well and is not
1113 flexible so the design was scrapped. The new approach utilizes IPFW
1114 tables. The sshguard IPFW backend now inserts offenders into hardcoded
1117 To continue blocking the attackers effectively you will need to add a
1118 block rule like the following:
1120 ipfw add deny all from 'table(22)' to any
1122 The release announcement can be found here:
1123 http://sourceforge.net/p/sshguard/mailman/message/34534861/
1126 AFFECTS: users of emulators/qemu-sbruno, emulators/qemu-user-static
1127 AUTHOR: sbruno@FreeBSD.org
1129 The Jemalloc update at svn r286871 introduced some TLS enhancements
1130 for MIPS targets that require a bit of workaround. Users who want
1131 to build MIPS packages should update their host systems past r286871
1132 prior to upgrading their qemu-user-static/qemu-sbruno ports.
1134 Discussion about this can be found here:
1135 https://lists.freebsd.org/pipermail/freebsd-mips/2015-October/004018.html
1138 AFFECTS: users of www/firefox, www/seamonkey
1139 AUTHOR: gecko@FreeBSD.org
1141 Firefox since 41.0 and SeaMonkey since 2.38 require databases/sqlite3
1142 port built with DBSTAT option enabled (default). Re-run "make config"
1143 if the port(s) fail to build as described in ports/200853.
1146 AFFECTS: users of mail/rspamd
1147 AUTHOR: vsevolod@FreeBSD.org
1149 rspamd has been updated to the version 1.0.
1150 For migration from the previous releases, please read the following document:
1151 https://rspamd.com/doc/migration.html
1154 AFFECTS: users of multimedia/ffmpeg
1155 AUTHOR: riggs@FreeBSD.org
1157 ffmpeg has been updated to the version 2.8.
1158 If you are using binary pkg, 'pkg upgrade' will do the right thing.
1159 Users of portmaster/portupgrade must rebuild all ports which depend
1163 portmaster -w -r ffmpeg
1165 portupgrade -fr multimedia/ffmpeg
1168 AFFECTS: users of graphics/jpeg
1169 AUTHOR: antoine@FreeBSD.org
1171 Default implementation of jpeg has been switched from graphics/jpeg to
1172 graphics/jpeg-turbo. To perform the upgrade, use instructions below.
1174 If using binary packages: 'pkg upgrade' will do the right thing. If it
1175 doesn't and complains about 'Cannot solve problem using SAT solver', run
1176 'pkg delete -f jpeg' before 'pkg upgrade'.
1178 If using portmaster:
1179 # portmaster -o graphics/jpeg-turbo jpeg
1181 If using portupgrade:
1182 # portupgrade -f -o graphics/jpeg-turbo graphics/jpeg
1184 If you compile your ports and want to keep using IJG's jpeg implementation,
1185 add this line to your /etc/make.conf file:
1186 JPEG_PORT=graphics/jpeg
1189 AFFECTS: users of lang/perl5*
1190 AUTHOR: mat@FreeBSD.org
1192 Binary package users can ignore this.
1194 The way lang/perl5* ports install themselves has changed. From now on, only
1195 the default Perl port (currently 5.20), or the version listed in
1196 DEFAULT_VERSIONS, will install /usr/local/bin/perl.
1198 If you are NOT using the default version of Perl (as of right now, it is
1199 5.20) you MUST add a line setting the version you are using to your
1200 /etc/make.conf, to preserve /usr/local/bin/perl:
1202 DEFAULT_VERSIONS+= perl5=5.xx
1204 If your Perl package name is not called perl5-5.xx.y but perl5.xx-5.xx.y,
1205 you will need to rename it so that portupgrade and portmaster do not get
1208 pkg set -n perl5.xx:perl5
1210 After this date, to migrate from one Perl version to the other, you must
1211 first put the DEFAULT_VERSIONS line in your make.conf, and then, for example,
1212 if you want to move from 5.20 to 5.22, do:
1214 pkg set -o lang/perl5.20:lang/perl5.22
1215 portmaster `pkg shlib -qR libperl.so.5.20`
1217 If you do not do that, you will replace your default Perl 5.20 installation
1218 (one that has /usr/local/bin/perl) with an installation that does not have
1219 /usr/local/bin/perl, and it will break everything.
1222 AFFECTS: users of print/texlive-base
1223 AUTHOR: hrs@FreeBSD.org
1225 pdfclose and pdfopen utilities in print/texlive-base are now in a separate
1226 port print/xpdfopen. While upgrading print/texlive-base, a conflict may
1227 occur between pdfclose utility installed by an old print/texlive-base and
1228 one being installed by print/xpdfopen. If it occurred on your system,
1229 remove the installed print/texlive-base first by using the following
1232 # pkg delete -f texlive-base
1235 AFFECTS: users of editors/libreoffice
1236 AUTHOR: jkim@FreeBSD.org
1238 editors/libreoffice has been updated to 5.0.1. However, FreeBSD 9.x is
1239 no longer supported because it requires C++11-capable library installed
1240 in the base. If you cannot upgrade your system or still want 4.3.x for
1241 some reason, use editors/libreoffice4.