Navigation:
Browse pkgsrc
(this page)| 2011-10-22 19:54:25 by Matthias Scheler | Files touched by this commit (2) |
Log message: Update "squid31" package to version 3.1.16. Changes since 3.1.15: - Bug 3373: invalid URL in ERR_CACHE_ACCESS_DENIED - Bug 3368: Unhandled exceptions are not logged (workaround) - Bug 3326: miss_access incorrect default - Bug 3320: miss_access description confusing - Bug 3241: squid_kerb_auth cross compilation fix - Bug 3237: seq fault in free() from rfc1035RRDestroy - Bug 3190: Large HTTP POST stuck after early ICAP 400 error response - db_auth: display available DSN drivers on connect error - Updated OpenSSL 1.0.0 version checks - ... and several documentation fixes |
| 2011-08-31 01:02:57 by Matthias Scheler | Files touched by this commit (2) |
Log message: Update "squid31" package to version 3.1.15. Changes since version 3.1.14: - Regression fix: vhost and defaultsite causing vport to be ignored - Regression Bug 3295: broken escaping in rfc1738_do_escape - Bug #3232: fails to compile with OpenSSL v1.0.0 - Bug #3222: cache_peer name is not logging on CONNECT - Bug #3131: fd_table[fd].closing() assert from ConnStateData::noteMoreBodySpaceAvailable() - Bug #3217: "!fd_table[fd].closing()" from ServerStateData::noteMoreBodySpaceAvailable - Bug #3213: https sites (CONNECT) not open when using NTLM - Bug #3114: Memory leak in SSL certificate verify code - Bug #3107: ncsa_auth DES silently truncates passwords to 8 bytes - Bug #2662: cf_gen failure when cross compiling - Bug #2655: passing wrong the username to the url_rewrite_program - Bug #2495: ignore whitespace prefix on config lines - Bug #2051: 'default' cache_peer option does not match documentation - Bug #1842: Optimize order of tests in peerWouldBePinged() and peerHTTPOkay() - Bug #1791: timestampsSet does not validate Date: if server sends very old date - Correct parsing of large Gopher indexes - Enable negative cacheing on unknown or -1 expiry timestamp - Remove hierarchy_stoplist default value - Migrate cf_gen tool from C-style to C++ - ... and several documentation and compiler warning fixes |
| 2011-07-20 13:44:27 by Adam Ciarcinski | Files touched by this commit (4) |
Log message: Changes 3.1.14: * Regression Bug 3261: Could not create a DNS socket and exit Changes 3.1.13: * Regression Bug 3239: problems with myip/myport upgrade * Bug 3153: hung ICAP RESPMOD transactions * Update ssl_crtd to use 'OK' status inline with other helpers |
| 2011-05-11 06:26:15 by Adam Ciarcinski | Files touched by this commit (1) |
Log message: Enabled ICAP client, for dependend packages to work. |
2011-04-15 11:48:57 by Adam Ciarcinski | Files touched by this commit (2) |  |
Log message: Changes 3.1.12: * Regression fix: Use bigger buffer for server reads. * Regression fix: Add reply_header_replace directive for ability lost since 2.7 * Bug 3181: /dev/poll fails to build on Solaris with GCC 4.5.0 * Bug 3177: assertion failed: comm.cc:1583: "fd >= 0" * Bug 3175: IPv6 PTR lookup crashes on raw-IP URLs when IPv6 disabled * Bug 3173: Assertion bodyPipe!=NULL on SslBump CONNECT response writing failure * Bug 3164: Total memory info display 32-bit overflows * Bug 3155: Werror is hard-coded in libTrie build * Bug 3151: squid_kerb_auth: use autoconf LIBS instead of FLAGS for library linkage * Bug 2976: invalid URL on intercepted requests during reconfigure * Bug 2720: comment in same line as cache/mem_replacement_policy causes error * Bug 2621: Provide request headers to RESPMOD when using cache_peer. * Bug 2330: AuthUser objects are never unlocked * Prevent CONNECT request relaying to origin servers * squidclient HTTP/1.1 compliance updates (Pragma and User-Agent headers) * squidclient: send Cache Manager password using -w * eCAP: give full Request-URI to adapters * ... and several debug and error display cleanups |
| 2011-02-28 19:55:54 by Adam Ciarcinski | Files touched by this commit (2) | |
Log message: Changes 3.1.11: * Bug 3149: not caching eCAP adapted body * Bug 3144: redirector program blocks while reading STDIN * Bug 3140: memory leak in error page generation * Bug 3137: RADIUS auth helper does not send identifier to RADIUS server * Bug 3115: logging segfaults if access_log is set to a directory * Bug 2968: Show the Vary: headers information in cachemgr objects report * Bug 2959: remove SAMBAPREFIX dependency * Bug 2868: icc doesn't like string literal in assert checks * HTTP/1.1: Send 307 status on deny_info redirection * HTTP/1.1: Support POST/PUT with no body * HTTP/1.1: Allow persistent connections for Mozilla/3.0 User-Agents * Support RFC 5861 Cache-Control: stale-if-error option * Add ftp_eprt directive to disable EPRT extensions in FTP * Fix external_acl_type grace=0 to obey TTL * Fix IP/FQDN cache accounting to avoid idle caches on busy servers * Prevent pipeline_prefetch misconfigurations breaking NTLM/Negotiate auth * ... and some documentation updates and corrections * ... and some portability and stability fixes |
| 2011-01-15 11:32:09 by Adam Ciarcinski | Files touched by this commit (7) | |
Log message: Changes 3.1.10: * Bug 3121: memory leak in DigestAuth: AuthUser object is locked twice * Bug 3113: Consuming too much memory when uploading files * Bug 3110: 'reply_body_max_size none' does not work with x-forwarded-for * Bug 3096: Consuming too much memory when delaying traffic * Bug 3091: Bypassed ICAP errors are not counted as service failures * Bug 3090: Polish FTP login error handing * Bug 3068: cache_dir capacity and usage overflows * Bug 3028: Permit wbinfo_group.pl to authenticate Kerberos users with NT domain * Bug 427: HTTP Compliance: Support If-Match and If-None-Match requests * Fix memory leak in adaptation_access * Fix /dev/poll and poll() selection priority * Fix PREFIX/var/run creation during install * Fix cachemgr http_port config report display * Add upgrade help process for obsolete options * Accept RFC 2965 Set-Cookie2 / Cookie2 headers as 'known' * HTTP/1.1: entry is stale if request has max-age=0 * HTTP/1.1: do not forward TRACE with Max-Forwards: 0 after REQMOD * Toolchain update to support newer auto-tools * ... and updated error page translations * ... and updated documentation * ... and some code optimization/simplification polish |
| 2010-11-03 11:18:27 by Matthias Scheler | Files touched by this commit (2) |
Log message: Update "squid31" package to version 3.1.9. Changes since 3.1.8: - Bug 3088: dnsserver is segfaulting - Bug 3084: IPv6 without Host: header in request causes connection to hang - Bug 3082: Typo in error message - Bug 3073: tunnelStateFree memory leak of host member - Bug 3058: errorSend and ICY leak MemBuf object - Bug 3057: 64-bit Solaris 9 Squid unable to determine peer IP and port - Bug 3056: comm.cc "!fd_table[fd].closing()" assertion crash when a helper dies - Bug 3053: cache version 1 LFS support detection broken - Bug 3051: integer display overflow - Bug 3040: Lower-case domain entries from hosts and resolv.conf files - Bug 3036: adaptation_access acls cannot see myportname - Bug 3023: url_rewrite_program silently fails to rewrite on broken URLs - Bug 2964: Prevent memory leaks when ICAP transactions fail - Bug 2808: getRoundRobinParent not handling weights correctly - Bug 2793: memory statistics sometimes display wrong - Bug 2356: Port from 2.7: Solaris /dev/poll event ports support - Bug 2311: crashes with ICAP RESPMOD for HTTP body size greater than 100kb - Ensure /var/cache or jail equivalent exists on install - HTTP/1.1: delete Warnings that have warning-date different from Date - HTTP/1.1: do not remove ETag header from partial responses - HTTP/1.1: make date parser stricter to better handle malformed Expires - HTTP/1.1: improve age calculation - HTTP/1.1: reply with a 504 error if required validation fails - HTTP/1.1: add appropriate Warnings if serving a stale hit - HTTP/1.1: support requests with Cache-Control: min-fresh - HTTP/1.1: do not cache replies to requests with Cache-Control: no-store - squidclient: Display IP(s) connected to in verbose (-v) display - Fixes several issues with ICAP persistent connections - Fixes small leaks in Netdb, DNS, ICAP, ICY, HTTPS - ... and some cosmetic polishing |
| 2010-09-07 21:55:17 by Matthias Scheler | Files touched by this commit (2) |
Log message: Update "squid31" package to version 3.1.8. Changes since 3.1.7: - Security fixes: - Fixes for the request processing vulnerability tagged SQUID-2010:3. http://www.squid-cache.org/Advisories/SQUID-2010_3.txt - A hardening of the DNS client against packet queueing approaches used to enable attacks. This completes the protection against attacks published by Yamaguchi late in 2009. - An HTTP request-line parser hardened against several categories of request attack. This greatly increasing the speed of detection and reducing resources used to detect these categories of attack. - Fixes for the following bugs: - Bug 3020: Segmentation fault: nameservers[vc->ns].vc = NULL - Bug 3005,2972: Locate LTDL headers correctly (again) - Bug 2872: leaking file descriptors - Bug 2583: pure virtual method called |
| 2010-08-25 19:53:44 by Matthias Scheler | Files touched by this commit (2) |
Log message: Update "squid31" package to version 3.1.7. Change since 3.1.6: - Regression Bug 3021: Large DNS reply causes crash - Regression Bug 3011: ICAP, HTTPS, cache_peer probe IPv4-only port fixes - Regression Bug 2997: visible_hostname directive no longer matches docs - Bug 3012: deprecate sslBump and support ssl-bump spelling in http_port - Bug 3006: handle IPV6_V6ONLY definition missing - Bug 3004: Solaris 9 SunStudio 12 build failure - Bug 3003: inconsistent concepts in documentation of cache_dir - Bug 3001: dnsserver link issues - HTTP/1.1: default keep-alive for 1.1 clients (bug 3016) - HTTP/1.1: Improved Range header field validation - HTTP/1.1: Forward multiple unknown Cache-Control directives - HTTP/1.1: Stop sending Proxy-Connection header - Fix 32-bit wrap in refresh_pattern min/max values - ... and several documentation corrections. |
New packages: