pkgsrc.se | The NetBSD package collection

./www/squid3, Post-Harvest_cached WWW proxy cache and accelerator

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: pkgsrc-2015Q1, Version: 3.5.4, Package name: squid-3.5.4, Maintainer: pkgsrc-users

Squid is a fully-featured HTTP/1.0 proxy with partial HTTP/1.1 support
The 3.1 series brings many new features and upgrades to the basic
networking protocols. A short list of the major new features is:

* Connection Pinning (for NTLM Auth Passthrough)
* Native IPv6
* Quality of Service (QoS) Flow support
* Native Memory Cache
* SSL Bump (for HTTPS Filtering and Adaptation)
* TProxy v4.1+ support
* eCAP Adaptation Module support
* Error Page Localization
* Follow X-Forwarded-For support
* X-Forwarded-For options extended (truncate, delete, transparent)
* Peer-Name ACL
* Reply headers to external ACL.
* ICAP and eCAP Logging
* ICAP Service Sets and Chains
* ICY (SHOUTcast) streaming protocol support
* HTTP/1.1 support on connections to web servers and peers.
(with plans to make this full support within the 3.1 series)

Required to run:
[devel/libltdl] [lang/perl5]

Package options: inet6, snmp, squid-backend-diskd, squid-carp, squid-ipf, squid-pam-helper, squid-unlinkd, ssl

Master sites: (Expand)

SHA1: 71a04a5f7c4c38464a8a08ae1089c47abcea0e49
RMD160: 3bf031032aa131ebb58c859d56740e29e7a290a9
Filesize: 2236.105 KB

Version history: (Expand)

(2015-05-12) Updated to version: squid-3.5.4
(2015-04-03) Package added to pkgsrc.se, version squid-3.5.2 (created)

CVS history: (Expand)

2015-05-11 21:42:27 by Matthias Scheler | Files touched by this commit (4) | Package updated

Log message:
Pullup ticket #4711 - requested by taca
www/squid3: security update

Revisions pulled up:
- www/squid3/Makefile                                           1.45
- www/squid3/distinfo                                           1.32
- www/squid3/options.mk                                         1.16
- www/squid3/patches/patch-configure                            1.6

---
   Module Name:	pkgsrc
   Committed By:	adam
   Date:		Mon May  4 09:13:35 UTC 2015

   Modified Files:
   	pkgsrc/www/squid3: Makefile distinfo options.mk
   	pkgsrc/www/squid3/patches: patch-configure

   Log message:
   Changes 3.5.4:
   * Fix X509 server certificate domain matching
   * Bug 3775: Disable HTTP/1.1 pipeline feature for pinned connections
   * Cleanup: Display correct error code in debugging output for IoCallback::finish
   * Cleanup: Fix spelling error in debug message in parseHttpRequest()
   * Cleanup: Add whitespace to make debug message in writeComplete() more readable
   * Add Kerberos support for MAC OS X 10.x
   * Bug 4234: comm_connect_addr uses errno incorrectly
   * Fix 'access_log none' to prevent following logs being used
   * Unexpected SQUID_X509_V_ERR_DOMAIN_MISMATCH errors while accessing sites \ 
with valid certificates
   * Docs: Update CONTRIBUTORS
   * Ensure class Lock counter remains within bounds
   * Portability: Add hacks to define C++11 explicit N-bit type limits
   * Fix SSL_get_peer_certificate memory leak
   * Bug 4231 pt2: comm_open_uds does not provide description for newly opened FD
   * Bug 4231 pt1: fd_open() not correctly handling empty descriptions
   * Negotiate Kerberos authentication request size exceeds output buffer size.
   * Do not increment an iterator invalidated by std::map::erase().
   * Fix require-proxy-header preventing HTTPS proxying and ssl-bump
   * Fix atomics check broken by C++11 #include added in v3.5 branch r13783
   * Support for resuming TLS sessions
   * Bug 4212: ssl_crtd crashes with corrupt database
   * Fix rev.13795 ServerName class
   * Add server_name ACL matching server name(s) obtained from various sources
   * Bug 4226: digest_edirectory_auth: found but cannot be built
   * Invalid request->clientConnectionManager object used by \ 
Ssl::PeerConnector::handleNegotiateError
   * Bug 4198: assertion failed: client_side.h:364: "sslServerBump == \ 
srvBump"
   * Fix cross-compile issues with SSL_get_certificate()
   * Docs: RFC 7238 obsoleted by RFC 7538
   * Boilerplate: reference Translator copyrights in CREDITS
   * Cleanup: Place explicit size on ref-count lock counter
   * Cleanup: extend SBuf debugging information
   * digest_edirectory_auth: Fix -lnettle dependency error