Created attachment 200837 [details]
Update cacti to 1.2.0
Update cacti to 1.2.0
Release notes: https://www.cacti.net/release_notes.php?version=1.2.0
This update also fixes a problem in the current port/package which can cause NaN data being recorded (and therefore no graphs!)
This also adds additional fixes for CVE-2009-4112 and a few other security based patches - as a result of both of these, i've requested merge-quarterly.
Also tidied up pkg-plist.
Notes to committer:
* Please ignore warnings about gettext, cacti has built-in gettext support so no external gettext is needed.
* Added file: files/patch-lib_installer.php
* Removed file: files/patch-scripts__diskfree.pl
Poudriere testport logs for 11.2/amd64 + 11.2/i386 located at:
Poudriere testport logs for 12.0/amd64 + 12.0/i386 located at:
Thanks; I am using pkg as opposed to source builds on the impacted machine so when it rolls into the pkg system I'll check it.
A commit references this bug:
Date: Sun Jan 6 16:32:06 UTC 2019
New revision: 489505
net-mgmt/cacti: update to 1.2.0
Submitted by: Daniel Austin <firstname.lastname@example.org> (maintainer)
Please see https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=234735 for an typo fix in a patchfile :S
NOT Fixed -- installed 1.2.0 and the problem is still there with some graphs....
(In reply to karl from comment #5)
can you feed that back upstream to the cacti bug, cuz we're now running the latest codebase released only a few days ago so it is supposed to be fixed according to them.
(In reply to Daniel Austin from comment #6)
(In reply to karl from comment #7)
thanks :) i'd rather them fix it upstream than making workarounds locally if we can help it :)
(In reply to Daniel Austin from comment #8)
The issue appears to be that php72-snmp is installed. If you force its removal (so it doesn't pull Cacti, since that's listed as a dependency) the problem disappears.
I asked if that would be the Cacti "official" view (e.g. that php72-snmp should NOT be installed) and so far haven't gotten an "official" answer back but removing that module DOES resolve the problem.
(In reply to karl from comment #9)
I'll see if I can setup an option (default off) for people who still want to use the PHP module (and pull it in), and switch the dependancy to the snmp library instead.
I'll work on a patch tonight and submit it as a new PR.
(In reply to Daniel Austin from comment #10)
The trick may well be figuring out how to prevent cacti from using the module if someone has a separate reason to load it. My particular set of packages had no other dependencies on it so it wasn't a big deal to force-unload it on the box where I'm impacted. YMMV.
(In reply to karl from comment #11)
I've submitted a patch at:
It adds an option (default on) to forcibly override the autodetection and use the binaries.