#################################################################### # # When you add an entry to the top of this file, add your name, the date # in the UTC timezone, and an explanation of why something is getting masked. # Please be extremely careful not to commit atoms that are not valid, as it can # cause large-scale breakage, especially if it ends up in the daily snapshot. # ## Example: ## ## # Dev E. Loper (2019-07-01) ## # Masking these versions until we can get the ## # v4l stuff to work properly again ## =media-video/mplayer-0.90_pre5 ## =media-video/mplayer-0.90_pre5-r1 # # - Best last rites (removal) practices - # Include the following info: # a) reason for masking # b) bug # for the removal (and yes you should have one) # c) date of removal (either the date or "in x days") # ## Example: ## ## # Dev E. Loper (2019-07-01) ## # Masked for removal in 30 days. Doesn't work ## # with new libfoo. Upstream dead, gtk-1, smells ## # funny. (bug #987654) ## app-misc/some-package #--- END OF EXAMPLES --- # Thomas Deutschmann (2019-08-02) # Ebuild is still in development and shouldn't be used. =dev-db/mysql-8* # Michał Górny (2019-08-01) # Discontinued upstream in July 2017. Has irritating bugs, and is hard # to build from source (we have binary package only). Upstream # recommends net-misc/electrum as a replacement. # See: https://multibit.org/blog/2017/07/26/multibit-shutdown.html # Removal in 30 days. Bug #639530. net-p2p/multibit # David Seifert (2019-08-01) # Dead upstream, last release over 5 years ago, # broken build system, fails with boost 1.70, # removal in 30 days. Bug #646014, #691162 dev-games/vamos # David Seifert (2019-08-01) # Last touched over 3 years ago, broken tests, # fails with boost 1.70, removal in 30 days. # Bug #655886, #690704 dev-python/pgmagick # Brian Evans (2019-07-31) # MySQL 5.5 will no longer receive updates from Oracle # It may or may not have unaccounced security vulnerabilities # Please upgrade to 5.6 or use dev-db/mariadb # Removal in 30 days =dev-db/mysql-5.5* # Miroslav Šulc (2019-07-30) # Depends on >=virtual/{jdk,jre}-11 which is masked =www-servers/tomcat-9.0.22 # Michał Górny (30 Jul 2019) # Obsolete virtual that was created back when dev-python/dnspython # needed separate slots for py2 & py3. The versions needing it are long # gone. Replace all its uses with dev-python/dnspython. # Removal in 30 days. virtual/python-dnspython # Thomas Deutschmann (2019-07-29) # Broken config parser >=app-metrics/collectd-5.9.0 # Mart Raudsepp (2019-07-28) # GNOME 3.33 development release packages >=dev-libs/vala-common-0.45 dev-lang/vala:0.46 # Georgy Yakovlev (2019-07-26) # Mask 5.x version # It breaks hundreds of py2 ebuilds and not all deps are keyworded >=dev-python/pytest-5.0.1 # Brian Evans (2019-07-25) # Mask new beta versions until release dev-lang/php:7.4 ~virtual/httpd-php-7.4 # Andreas Sturmlechner (2019-07-24) # Unmaintained and broken with current Plasma, removal in 30 days # Bugs: https://bugs.kde.org/show_bug.cgi?id=404359, # https://bugs.kde.org/show_bug.cgi?id=404360, see also HOMEPAGE comments kde-misc/plasma-active-window-control # Lars Wendler (2019-07-21) # Requires >=mail-client/thunderbird-68_beta1 which is not in the tree yet >=x11-plugins/enigmail-2.1 # Andreas Sturmlechner (2019-07-20) # Ancient theme for KDE SC 4.4, useless for Plasma 5 # Removal in 15 days x11-themes/korilla x11-themes/noia x11-themes/oxygen-molecule # Sergei Trofimovich (2019-07-20) # Mask linux-headers-5.2 as it breaks at least firefox # and qemu. See bug #690296. >=sys-kernel/linux-headers-5.2 # Hans de Graaff (2019-07-17) # Mask ruby24-only slots for removal in 30 days. These slots do not # have any reverse dependencies. Please migrate to or use a newer slot. dev-ruby/gherkin:4 dev-ruby/net-http-persistent:0 dev-ruby/net-ssh-gateway:2 dev-ruby/rouge:0 dev-ruby/vcr:2 #dev-ruby/webmock:2 dev-util/cucumber-core:0 # Sobhan Mohammadpour (2019-07-14) # Masked for testing >=media-video/totem-3.32.1 # Kent Fredric (2019-07-14) # Broken since 2007, Upstream not seen since 2004. # Removal after 2019-08-16 # Bug #635792 dev-perl/libvorbis-perl # David Seifert (2019-07-14) # Unmaintained, removed from Debian and other distros, tons of CVEs, # unreachable upstream, removal in 30 days # Bug #601068, #614028, #614032, #614566, #619120, #624988, #629286, # #635552, #662160, #674154, #674214, #684826, #689784 media-libs/jasper # Matt Turner (2019-07-10) # sci-chemistry/coot and its dependencies. # Unmaintained. Still depends on guile-1.8. # Masked for removal in 30 days, bug #639760. dev-scheme/guile-gui dev-scheme/guile-www dev-scheme/net-http sci-chemistry/coot sci-chemistry/reduce sci-libs/cctbx sci-libs/clipper sci-libs/coot-data sci-libs/gpp4 sci-libs/libccp4 sci-libs/mmdb sci-libs/monomer-db sci-libs/ssm # Kent Fredric (2019-07-10) # Dead upstream, no remaining revdeps. # Masked for removal after 2019-08-09, bug #631300 dev-perl/File-Slurp-Unicode # Robin H. Johnson (2019-07-08) # Needs LOTS of testing, broke boot on my laptop in early attempts, maybe needs # matching genkernel work? >=sys-fs/lvm2-2.03 # Andreas Sturmlechner (2019-07-07) # Initial package version, no potential revdeps have been tested yet # or amended for support. Please do test. media-video/pipewire # Daniel Pielmeier (2019-07-06) # Requires >=dev-lang/lua-5.2 which is masked >=app-admin/conky-1.11.4 # Sobhan Mohammadpour (2019-07-04) # Mask until further testing is done =dev-libs/libgdata-0.17.10 # Michał Górny (2019-07-04) # The core FreeBSD packages are outdated, and have not been subject # to FreeBSD erratas for quite some time. As a result, at least some # of them are vulnerable (especially the kernel). The Gentoo/FreeBSD # project is on life support, and we can't provide quality packages # at the moment. Use at your own risk. sys-freebsd/boot0 sys-freebsd/freebsd-bin sys-freebsd/freebsd-cddl sys-freebsd/freebsd-lib sys-freebsd/freebsd-libexec sys-freebsd/freebsd-mk-defs sys-freebsd/freebsd-pam-modules sys-freebsd/freebsd-pf sys-freebsd/freebsd-rescue sys-freebsd/freebsd-sbin sys-freebsd/freebsd-share sys-freebsd/freebsd-sources sys-freebsd/freebsd-ubin sys-freebsd/freebsd-usbin sys-freebsd/ubin-wrappers # Jonas Stein (2019-06-24) # Source is broken. Upstream is dead since 2011. # Removal after 2019-08-01. (bug #688552) media-sound/sfc # Georgy Yakovlev (2019-06-17) # this is now provided by dev-lang/rust{-bin}[rustfmt] # it's tightly integrated with rust toolchain, eselect-rust # and it no longer makes sense ship this as standalone pkg dev-util/rustfmt # Mikle Kolyada (2019-06-15) # Part of dev-texlive/texlive-latexextra # does not work with utf-8 (bug #688096) # removal in 30 days dev-tex/quotchap # Miroslav Šulc (2019-06-12) # Depends on >=virtual/{jdk,jre}-11 which is masked =www-servers/tomcat-9.0.21 # Brian Evans (2019-06-11) # Mask these packages for further testing # There is known API breakage and some packages fail, # particuarly with "my_bool" dropped for "bool" >=dev-db/myodbc-8.0 >=dev-db/mysql-connector-c-8.0 ~virtual/libmysqlclient-21 # Zac Medico (2019-05-31) # Upstream is dead and there are multiple security vulnerabilities. # Removal in 30 days. Bug #687100. app-emulation/rkt # Patrick Lauer (2019-05-23) # PostgreSQL beta and release candidate releases are pre-release testing # versions, not meant for production use. They are feature-frozen, and are # released to the public for testing before final release # # NOTE: Successive beta or candidate releases may not be backwards compatible, # so it is important that you review the release notes before upgrading. # # For more information about beta and release candidate versions, see: # https://www.postgresql.org/developer/beta/ dev-db/postgresql:12 # Jonas Stein (2019-05-22) # Masked for removal after 2019-06-23. (bug #686260) # Wrong license, ships non-GPL image, maintainer needed. x11-plugins/gkrellflynn # Sebastian Pipping (2019-05-22) # Masked for removal in 30 days (bug #686562) # Unfixed bug, dead upstream, not relevant enough sys-fs/pytagsfs # Andreas K. Hüttel (2019-05-11) # Perl 5.24 will be removed soon. Please upgrade. (2019-05-11) # Outdated, EAPI=2, unmaintained, segfaults immediately. # See bug 634928 and bug 612980. # Andrew Savchenko (2019-06-09) # festival and speech-tools update is WIP now, so postponing removal. app-accessibility/festival app-accessibility/festival-freebsoft-utils app-accessibility/festival-hts app-accessibility/festival-fi app-accessibility/festival-it app-accessibility/festival-ru app-accessibility/perlbox-voice app-accessibility/pidgin-festival dev-ros/sound_play # Jeroen Roovers (2019-04-24) # Depends on =dev-libs/openssl-1.1.1* due to newly introduced # support for EVP_PKEY_ED25519 and EVP_PKEY_ED448 (bug #670574). =net-libs/nodejs-10.16.0 =net-libs/nodejs-11.15.0 =net-libs/nodejs-12* # Michał Górny (2019-04-18) # All current versions of SystemRescueCD contain vulnerable packages. # Bug #683724. app-admin/systemrescuecd-x86 sys-boot/systemrescuecd-x86-grub # Georgy Yakovlev (2019-04-17) # The Oracle JDK License has changed for releases starting 2019-04-16 # While it may be fine to use for some usecases it's not comepletely clear # what is considered "personal use" and if we can legally distribute it. # License states: # "You may not: # make the Programs available in any manner to any third party" # masking all future versions, removal will follow soon. # Alternatives: icedtea, icedtea-bin, openjdk, openjdk-bin, openjdk-jre-bin # Bug: https://bugs.gentoo.org/681828 >dev-java/oracle-jdk-bin-1.8.0.202:1.8 >dev-java/oracle-jre-bin-1.8.0.202:1.8 # Robin H. Johnson (2019-03-25) # Requires >=dev-lang/lua-5.3 which is masked sys-apps/likwid # Matt Turner (2019-03-16) # Previously packaged drivers, now removed from Gentoo. # Keep this mask in place so users are aware, but can also easily unmask them # in an overlay if so desired. x11-drivers/xf86-input-citron x11-drivers/xf86-video-apm x11-drivers/xf86-video-ark x11-drivers/xf86-video-chips x11-drivers/xf86-video-cirrus x11-drivers/xf86-video-cyrix x11-drivers/xf86-video-i128 x11-drivers/xf86-video-i740 x11-drivers/xf86-video-impact x11-drivers/xf86-video-mach64 x11-drivers/xf86-video-neomagic x11-drivers/xf86-video-newport x11-drivers/xf86-video-nsc x11-drivers/xf86-video-rendition x11-drivers/xf86-video-s3 x11-drivers/xf86-video-s3virge x11-drivers/xf86-video-savage x11-drivers/xf86-video-sis x11-drivers/xf86-video-sisusb x11-drivers/xf86-video-sunbw2 x11-drivers/xf86-video-suncg14 x11-drivers/xf86-video-suncg3 x11-drivers/xf86-video-suncg6 x11-drivers/xf86-video-sunffb x11-drivers/xf86-video-sunleo x11-drivers/xf86-video-suntcx x11-drivers/xf86-video-tdfx x11-drivers/xf86-video-tga x11-drivers/xf86-video-trident x11-drivers/xf86-video-tseng x11-drivers/xf86-video-voodoo # Eray Aslan (2019-03-01) # Mask experimental software =mail-mta/postfix-3.5* # Dennis Lamm (2019-01-29) # Depends on >=app-text/enchant-2.0.0 which is masked =gnome-extra/gtkhtml-4.10.0-r1 # Dennis Lamm (2019-01-28) # Depends on >=app-text/enchant-2.0.0 which is masked >=app-text/gtkspell-3.0.10 # Dennis Lamm (2019-01-28) # Depends on >=app-text/enchant-2.1.3 which is masked >=app-text/gspell-1.8.1 # Miroslav Šulc (2019-01-23) # Depends on >=virtual/{jdk,jre}-11 which is masked =dev-java/ant-eclipse-ecj-4.10 =dev-java/eclipse-ecj-4.10 # Craig Andrews (2019-01-01) # Requires dev-libs/openssl-1.1.1, Bug 674148 dev-libs/gost-engine # Lars Wendler (2018-12-28) # Masked while being tested and reverse deps aren't fully compatible =dev-libs/openssl-1.1.1* # Hanno Boeck =app-crypt/osslsigncode-2.0 # Thomas Deutschmann (2018-12-10) # Requires >=dev-lang/lua-5.2 which is masked >=app-admin/lsyncd-2.2.3 # Andreas Sturmlechner (2018-11-25) # Masked per security vulnerability CVE-2018-14345, bug #661510 # Keeping it masked while users have unsolved issues with >0.15.0. (2018-11-07) # on behalf of Mozilla Project # Mask old/vuln thunderbird for removal by 2019, # see security bug 670102 (2018-11-05) # Causes a dependency loop in the OpenRC script. Bug #651998 =sys-fs/cryptsetup-2.0.5-r1 # Thomas Deutschmann (2018-10-12) # EOL and has known vulnerabilities. Please move to # Firefox 60 or newer if you can. (2018-10-07) # Masked for more testing especially of reverse-deps. >=dev-games/ogre-1.11.2 # Thomas Deutschmann (2018-10-06) # Outdated and vulnerable snapshot; libav-12.3 is the better # version for now =media-video/libav-13_pre20171219 # Andreas K. Hüttel (2018-09-11) # Mask transition ebuilds that were needed only for (2018-08-01) # Multiprocessing versions of gemato. They are known to hang on some # users, so let's keep them masked until somebody figures out what's # wrong. Bug #647964. ~app-portage/gemato-14.1m ~app-portage/gemato-14.0m ~app-portage/gemato-9999m # Kent Fredric (2018-05-27) # Subject to Man-in-the-middle security bypass vulnerability. # Retained in tree only for users who need older versions # for compatibility reasons. # Bug: #623942 (2018-05-25) # New package. Needs to interact with media-libs/mesa and # x11-drivers/nvidia-drivers. Work in progress. media-libs/libglvnd # Brian Evans (2018-04-20) # Likely to break a lot of software # Masked for initial testing >=dev-db/mysql-connector-c++-8.0.0 # James Le Cuirot (2017-12-17) # Java 9+ is not yet fully supported on Gentoo. Packages cannot depend # on it so these virtuals are not yet required. If you wish to use # Java 9+ then install oracle-(jdk|jre)-bin or openjdk(-bin) directly. virtual/jdk:11 virtual/jre:11 # Andreas K. Hüttel (2017-10-18) # sys-devel/automake versions 1.4, 1.5, 1.6, 1.7, 1.8 # have known security vulnerabilities, are broken with # recent Perl (>=5.26.0), and are not used by anything in # the Gentoo repository. Please uninstall. sys-devel/automake:1.4 sys-devel/automake:1.5 sys-devel/automake:1.6 sys-devel/automake:1.7 sys-devel/automake:1.8 # Kent Fredric (2017-10-11) # This package should now be provided entirely by dev-lang/perl, # stable perl 5.24 provides Unicode-Collate-1.140.0 # testing perl 5.26 provides Unicode-Collate-1.190.0 # This should only be unmasked if you're locking to perl-5.24 and need # a newer version of virtual/perl-Unicode-Collate # If you're upgrading to perl-5.26, please do: # emerge -C perl-core/Unicode-Collate # See bug #634040 (2017-09-09) # Python 3 port is almost complete with version 0.6.0. Users might run into # minor bumps here and there which is why the mask is still in place for the # time being. >=dev-java/javatoolkit-0.6.0 # Gilles Dartiguelongue (2017-09-04) # Incompatible changes in API in Enchant 2. Bug #629838. >=app-text/enchant-2 # Kent Fredric (2017-07-21) # Masked due to serious regression that introduces widespread data # corruption when storing data in blobs. Masked, because any code # that is written to use this version is now dependent on this version # and older versions will corrupt your code instead. # However, any existing packages should not use this version. # See: https://github.com/perl5-dbi/DBD-mysql/issues/117 =dev-perl/DBD-mysql-4.42.0 # Nicolas Bock (2017-10-31) # There are multiple unresolved upstream issues with >=jabref-bin-4.0 (#636036). # If you still would like to use this version, please report any issues to # upstream. >=app-text/jabref-bin-4.0 # Hans de Graaff (2017-06-05) # Bundles obsolete and vulnerable webkit version. # Upstream has stopped development and recommends using # headless mode in >=www-client/chromium-59. # Masked for removal in 90 days. Bug #589994. www-client/phantomjs dev-ruby/poltergeist # Michał Górny (2017-05-22) # for Maciej S. Szmigiero # Any version above 5.100.138 breaks b43 driver in various ways. # Also, b43 wiki page says to use 5.100.138. Bug #541080. >=sys-firmware/b43-firmware-6.30.163.46 # Michał Górny , Andreas K. Hüttel , # Matthias Maier (2017-05-21 and later updates) # These old versions of toolchain packages (binutils, gcc, glibc) are no # longer officially supported and are not suitable for general use. Using # these packages can result in build failures (and possible breakage) for # many packages, and may leave your system vulnerable to known security # exploits. # If you still use one of these old toolchain packages, please upgrade (and # switch the compiler / the binutils) ASAP. If you need them for a specific # (isolated) use case, feel free to unmask them on your system. (2017-05-20) # Old versions of CUDA and their reverse dependencies. They do not # support GCC 5+, and are really old. # (updated 2017-12-27 with cuda < 8 because of gcc < 5 mask) (2017-02-04) # Unsecure versions that have been only restored to tree # to resolve compatibility problems with mail-filter/amavisd-new # Use with caution due to these being removed for CVE-2016-1251 # Bug: #601144 # Bug: #604678 (2017-01-07) # This package has some dangerous quality and security issues, but # people may still find it useful. It is masked to prevent accidental # use. See bugs 603346 and 604998 for more information. app-admin/amazon-ec2-init # Robin H. Johnson (2017-01-05) # Masking for testing =app-emulation/ganeti-2.16* =app-emulation/ganeti-2.17* # Michał Górny (2016-11-17) # New version masked for testing. It supports source-window buffer size # over 2G but it 'currently performs 3-5% slower and has 1-2% worse # compression'. >=dev-util/xdelta-3.1.0 # Tim Harder (2016-11-03) # Masked for testing =sys-fs/fuse-3* =net-fs/sshfs-3* # Andreas K. Hüttel (2016-04-03) # Can exhaust all available memory depending on task # but is made available for experts who heed this warning # as newer versions produce different output. Contact # the proxied maintainer Matthew Brewer # for questions. <=media-gfx/slic3r-1.1.9999 # Robin H. Johnson (2014-08-04) # Masked for testing, presently fails upstream testsuite: # FAIL:07:02:35 (00:00:00) db_dump/db_load(./TESTDIR.3/recd001.db:child killed: kill signal): expected 0, got 1 # FAIL:07:02:35 (00:00:00) Dump/load of ./TESTDIR.3/recd001.db failed. # FAIL:07:02:35 (00:00:00) db_verify_preop: expected 0, got 1 # Lars Wendler (2019-01-25) # Also masked because of mostly incompatible license (AGPL-3) =sys-libs/db-6.1* =sys-libs/db-6.2* =sys-libs/db-18.1* # Ulrich Müller (2014-07-15) # Permanently mask sys-libs/lib-compat and its reverse dependencies, # pending multiple security vulnerabilities and QA issues. # See bugs #515926 and #510960. sys-libs/lib-compat sys-libs/lib-compat-loki games-action/mutantstorm-demo games-action/phobiaii games-fps/rtcw games-fps/unreal games-strategy/heroes3 games-strategy/smac # Mikle Kolyada (2014-06-27) # Masked for proper testing. (Major updates in the code). ~dev-perl/PortageXS-0.2.12 # Matti Bickel (2014-04-22) # Masked slotted lua for testing # William Hubbs (2016-08-07) # Taking this mask since Mabi is retired # Rafael Martins (2016-12-04) # Adding Lua 5.3 to mask app-eselect/eselect-lua =dev-lang/lua-5.1.5-r100 =dev-lang/lua-5.1.5-r101 =dev-lang/lua-5.1.5-r102 =dev-lang/lua-5.2.3 =dev-lang/lua-5.2.3-r1 =dev-lang/lua-5.2.3-r2 =dev-lang/lua-5.2.3-r3 =dev-lang/lua-5.2.4 =dev-lang/lua-5.2.4-r1 =dev-lang/lua-5.3.3 =dev-lang/lua-5.3.3-r1 =dev-lang/lua-5.3.3-r2 =dev-lang/lua-5.3.5 =dev-lang/lua-5.3.5-r1 # Samuli Suominen (2012-03-06) # Masked for testing since this is known to break nearly # every reverse dependency wrt bug 407091 >=dev-lang/lua-5.2.0 # Mike Gilbert (2014-03-04) # Dev channel releases are only for people who are developers or want more # experimental features and accept a more unstable release. www-plugins/chrome-binary-plugins:unstable # Diego E. Pettenò (2009-01-03) # These packages are not supposed to be merged directly, instead # please use sys-devel/crossdev to install them. dev-libs/cygwin dev-util/mingw-runtime dev-util/mingw64-runtime dev-util/w32api sys-libs/newlib dev-embedded/avr-libc # Chris Gianelloni (2008-03-03) # Masking due to security bug #194607 and security bug #204067 games-fps/doom3 games-fps/doom3-cdoom games-fps/doom3-chextrek games-fps/doom3-data games-fps/doom3-demo games-fps/doom3-ducttape games-fps/doom3-eventhorizon games-fps/doom3-hellcampaign games-fps/doom3-inhell games-fps/doom3-lms games-fps/doom3-mitm games-fps/doom3-roe games-fps/quake4-bin games-fps/quake4-data games-fps/quake4-demo # (2004-04-01) # The following packages contain a remotely-exploitable # security vulnerability and have been hard masked accordingly. # # Please see https://bugs.gentoo.org/show_bug.cgi?id=44351 for more info # games-fps/unreal-tournament-goty games-fps/unreal-tournament-strikeforce games-fps/unreal-tournament-bonuspacks games-fps/aaut