Active OpenBSD development is known as the -current branch. These sources are frequently compiled into releases known as snapshots.
Aggressive changes are sometimes pushed in this branch, and complications can arise when building the latest code or upgrading from a previous point in time. Some of the steps for getting over these hurdles are explained on this page. Make sure you've read and understand how to build the system from source before using -current and the instructions below.
In general, it's far easier to use snapshots, as developers will have gone through much of the trouble for you already.
You should always use a snapshot as the starting point for running
-current.
This process typically consists of running
sysupgrade(8) with the
-s
flag.
Alternatively, download (and verify) the appropriate
bsd.rd file from the /snapshots/
directory of your preferred mirror, boot from it,
and choose (U)pgrade
at the prompt.
Any installed packages should then be
upgraded after booting into the new system.
Upgrading to -current by compiling your own source code is discouraged for everyone except for experts, as difficult build-time crossing-points can occur often, and no assistance will be provided. In case of failure, use a snapshot to recover.
Most of these changes will have to be performed as root.
The databases/influxdb port was upgraded to a new major version, which has several impacts:
# doas -u _influx influxd upgrade
# doas -u _influx influx setup
[[inputs.socket_listener]] service_address = "udp://:25826" data_format = "collectd" collectd_auth_file = "/etc/collectd/collectd.auth" collectd_security_level = "encrypt" collectd_typesdb = ["/usr/local/share/collectd_types.db"] collectd_parse_multivalue = "split" [[outputs.influxdb_v2]] urls = ["http://influxdb:8086"] token = "$DOCKER_INFLUXDB_INIT_ADMIN_TOKEN" organization = "$DOCKER_INFLUXDB_INIT_ORG" bucket = "$DOCKER_INFLUXDB_INIT_BUCKET"
pfsync(4) has been rewritten. In most cases, no change is needed, and the protocol is compatible with the older version, however if you are configuring it with a hostname.pfsync0 entry like up syncdev $interface (where the interface is brought up before configuring it), it must be rearranged so that the interface is configured first:
syncdev $interface up
A flaw in the cryptographic authentication scheme in borgbackup<1.2.5 allowed an attacker to fake archives and potentially indirectly cause backup data loss in the repository. borgbackup>=1.2.5 enforces checking the TAM authentication tag of archives at critical places, and now considers archives without TAM as garbage or an attack.
Steps you must take to upgrade a repository are detailed in the documentation.
As of the 12.5 release, torrc has been moved from ~/TorBrowser-Data/torrc to ~/TorBrowser-Data/Tor/torrc. If you wish to preserve your tor configuration (e.g., bridges), please do the following BEFORE starting tor-browser after you upgrade:
$ mv ~/TorBrowser-Data/torrc ~/TorBrowser-Data/Tor
The 1.1 branch of borgbackup is end-of-life, and has been removed from ports. Upgrading packages using pkg_add -u will result in borgbackup-1.1.18 to be replaced by a release from the 1.2 branch, which at this time is borgbackup-1.2.6.
Before upgrading it is recommended to follow the upgrade notes.