Update "squid" package to version 2.4STABLE1. Changes since 2.3STABLE4:
- Fixed a bug in and cleaned up class 2/3 delay pools incrementing.
- Fixed a coredump bug when using external dnsservers that become overloaded.
- Fixed some NULL pointer bugs for NULL storage system when reconfiguring.
- Fixed a bug with useragent logging that caused Squid to think the logfile
never got opened.
- Fixed a compiling bug with --disable-unlinkd.
- Changed src/squid.h to always use O_NONBLOCK on Solaris if it is defined.
- Fixed a bug with signed/unsigned bitfield flag variables that caused
problems on Solaris.
- Fixed a bug in clientBuildReplyHeader() that could add an Age: header with
a negative value, causing an assertion later.
- Fixed an SNMP reporting bug. cacheCurrentResFileDescrCnt was returning
the number of FDs in use, rather than the number of reserved FDs.
- Added the 'pipeline_prefetch' configuration option.
- cache_dir syntax changed to use options instead of many arguments. This
means that the max_objsize argument now is an optional option, and that
the syntax for how to specify the diskd magics is slightly different.
- Various fixes for CYGWIN
- Upgraded MSNT auth module to version 2.0.
- Fixed potential problems with HTML by making sure all HTML output is
properly encoded.
- Fixed a memory initialization problem with resource records in
lib/rfc1035.c.
- Rewrote date parsing in lib/rfc1123.c and made it a little more lenient.
- Added Cache-control: max-stale support.
- Fixed 'range_offset_limit' again. The problem this time is that
client_side.c wouldn't set the we_dont_do_ranges flag for normal cache
misses. It was only being set for requests that might have been hits,
but we decided to change to a miss.
- Added the Authenticate-Info and Proxy-Authenticate-Info headers from
RFC 2617.
- HTTP header lines longer than 64K could cause an assertion.
Now they get ignored.
- Fixed an IP address scanning bug that caused "123.foo.com" to be
interpreted as an IP address.
- Converted many structure allocations to use mem pools.
- Changed proxy authentication to strip leading whitespace from usernames
after decoding.
- Prevented NULL pointer access in aclMatchAcl(). Some ACL types require
checklist->request_t, but it won't be available in some cases (like
snmp_access). Warn the admin that the ACL can't be checked and that
we're denying it.
- Allow zero-size disk caches.
- The actual filesystem blocksize is now used to account
for space overheads when calculating on-disk cache size.
- Made the maximum memory cache object size configurable.
- Added 'minimum_direct_rtt' configuration option.
- Added 'ie_refresh' configuration option, which is a hack
to turn IMS requests into no-cache requests.
- Added Linux netfilter support for intercepted connections.
- Fixed a bug with clientAccessCheck() that allowed proxy
requests in accel mode.
- Fixed a bug with 301/302 replies from redirectors. Now
we force them to be cache misses.
- Accommodated changes to the IP-Filter ioctl() interface
for intercepted connections.
- Fixed handling of client lifetime timeouts.
- Fixed a buffer overflow bug with internal DNS replies
by truncating received packets to 512 bytes, as per
RFC 1035.
- Added "forward.log" support, but its work in progress.
- Rewrote much of the IP and FQDN cache implementation.
This change gets rid of pending hits.
- Changed peerWouldBePinged() to return false if our
ICP/HTCP port is zero (i.e. disabled).
- Changed src/net_db.c to use src/logfile.c routines,
rather than stdio, because of solaris stdio filedescriptor
limits.
- Made netdbReloadState() more robust in case of corrupted
data.
- Rewrote some freshness/staleness functions in src/refresh.c,
partially inspired to support cache-control max-stale.
- Fixed status code logging for SSL/CONNECT requests.
- Added a hack to subtract cache digest network traffic
from statistics so that byte hit ratio stays positive
and more closely reflects what people expect it to be.
- Fixed a bug with storeCheckTooSmall() that caused
internal icons and cache digests to always be released.
- Added statfs(2) support for displaying actual filesystem
usage in the cache manager 'storedir' output.
- Changed status reporting for storage rebuilding. Now it
prints percentage complete instead of number of entries
parsed.
- Use mkstemp() rather than problem-prone tempnam().
- Changed urlParse() to condense multiple dots in hostnames.
- Major rewrite of async-io (src/fs/aufs) to make it behave
a bit more sane with substantially less overhead. Some
tuning work still remains to make it perform optimal.
See the start of store_asyncufs.h for all the knobs.
- Fixed storage FS modules to use individual swap space
high/low values rather than the global ones.
- Fixed storage FS bugs with calling file_map_bit_reset()
before checking the bit value. Calling with an invalid
value caused memory corruption in random places.
- Prevent NULL pointer access in store_repl_lru.c for
entries that exist in the hash but not the LRU list.
- Added --enable-auth-modules=... configure option
- Improved ICP dead peer detection to also work when the workload
is low
- Improved TCP dead peer detection and recovery
- Squid is now a bit more persistent in trying to find a alive
parent when never_direct is used.
- nonhierarchical_direct squid.conf directive to make non-ICP
peer selection behave a bit more like ICP selection with respect
to hierarchy.
- Bugfix where netdb selection could override never_direct
- ICP timeout selection now prefers to use parents only when
calculating the dynamic timeout to compensate for common RTT
differences between parents and siblings.
- No longer starts to swap out objects which are known to be above
the maximum allowed size.
- allow-miss cache_peer option disabling the use of "only-if-cached".
Meant to be used in conjunction with icp_hit_stale.
- Delay pools tuned to allow large initial pool values
- cachemgr filesystem space information changed to show useable space
rather than raw space, and platform support somewhat extended.
- Logs destination IP in the hierarchy log tag when going direct.
(can be disabled by turning log_ip_on_direct off)
- Async-IO on linux now makes proper use of mutexes. This fixes some
odd pthread segfaults on SMP Linux machines, at a slight performance
penalty.
- %s can now be used in cache_swap_log and will be substituded with
the last path component of cache_dir.
- no_cache is now a full ACL check without, allowing most ACL types
to be used.
- The CONNECT method now obeys miss_access requirements
- proxy_auth_regex and ident_regex ACL types
- Fixed a StoreEntry memory leak during "dirty" rebuild
- Helper processes no longer hold unrelated filedescriptors open
- Helpers are now restarted when the logs are rotated
- Negatively cached DNS entries are now purged on "reload".
- PURGE now also purges the DNS cache
- HEAD on FTP objects no longer retreives the whole object
- More cleanups of the dstdomain ACL type
- Squid no longer tries to do Range internally if it is not supported
by the origin server. Doing so could cause bandwidth spikes and/or
negative hit ratio.
- httpd_accel_single_host squid.conf directive
- "round-robin" cache_peer counters are reset every 5 minutes to
compensate previously dead peers
- DNS retransmit parameters
- Show all FTP server messages
- squid.conf.default now indicates if a directive isn't enabled in
the installed binary, and what configure option to use for enabling it
- Fixed a temporary memory leak on persistent POSTs
- Fixed a temporary memory leak when the server response headers
includes NULL characters
- authenticate_ip_ttl_is_strict squid.conf option
- req_mime_type ACL type
- A reworked storage system that supports storage directories in
a more modular fashion. The object replacement and IO is now
responsibility of the storage directory, and not of the storage
manager.
- Fixed a bogous MD5 mismatch warning sometimes seen when using
aufs or diskd stores
- Added --enable-stacktraces configure option to set PRINT_STACK_TRACE,
and extended support for this to Linux/GNU libc.
- Disabled the "request timeout" error message sent if the user agent
did not provide a request in a timely manner after opening the
connection. Now the connection is silently closed. The error message
was confusing user agents utilizing persistent connections.
- Fixed configure --enable descriptions to match the arg names.
- Eliminated compile warnings from auth_modules/MSNT code.
- Require first character of hostnames to be alphanumeric.
- Made ARP ACL work for Solaris.
- Removed storeClientListSearch().
- Added counters to track diskd operation success and
failures.
- Fixed range_offset_limit.
- Added code to retry ServFail replies for internal DNS
lookups.
- Added referer header logging (Jens-S. Voeckler).
- Added "multi-domain-NTLM" authentication module, a Perl
script from Thomas Jarosch.
- Added configurable warning messages for high memory usage,
high response time, and high page faults.
- Made store dir selection algorithm configurable.
- Added support for admin-definable extension methods,
up to 20.
- Added 'maximum_object_size_in_memory' as a configuration option -
this defines the watermark where objects transit from being true
hot objects to being in-transit objects in memory. It currently
defaults to 8 KB.
- Change to the fqdn code which changes how pending DNS requests
are treated as private and only become public once they are
completed. This can add extra load on DNS servers but prevents
all the pending clients blocking if one of the queries got
stuck. (Duane Wessels)
- Converted more code to use MemPools, from Andres Kroonmaa.
- Added more CYGWIN patches from Robert Collins.
- Added Logfile module.
- Added DISKD stats via cachemgr.
- Added squid.conf options for DISKD magic constants.
2001-04-14 12:05:00 +02:00
|
|
|
# $NetBSD: Makefile,v 1.44 2001/04/14 10:05:00 tron Exp $
|
1998-05-23 23:27:20 +02:00
|
|
|
|
Update "squid" package to version 2.4STABLE1. Changes since 2.3STABLE4:
- Fixed a bug in and cleaned up class 2/3 delay pools incrementing.
- Fixed a coredump bug when using external dnsservers that become overloaded.
- Fixed some NULL pointer bugs for NULL storage system when reconfiguring.
- Fixed a bug with useragent logging that caused Squid to think the logfile
never got opened.
- Fixed a compiling bug with --disable-unlinkd.
- Changed src/squid.h to always use O_NONBLOCK on Solaris if it is defined.
- Fixed a bug with signed/unsigned bitfield flag variables that caused
problems on Solaris.
- Fixed a bug in clientBuildReplyHeader() that could add an Age: header with
a negative value, causing an assertion later.
- Fixed an SNMP reporting bug. cacheCurrentResFileDescrCnt was returning
the number of FDs in use, rather than the number of reserved FDs.
- Added the 'pipeline_prefetch' configuration option.
- cache_dir syntax changed to use options instead of many arguments. This
means that the max_objsize argument now is an optional option, and that
the syntax for how to specify the diskd magics is slightly different.
- Various fixes for CYGWIN
- Upgraded MSNT auth module to version 2.0.
- Fixed potential problems with HTML by making sure all HTML output is
properly encoded.
- Fixed a memory initialization problem with resource records in
lib/rfc1035.c.
- Rewrote date parsing in lib/rfc1123.c and made it a little more lenient.
- Added Cache-control: max-stale support.
- Fixed 'range_offset_limit' again. The problem this time is that
client_side.c wouldn't set the we_dont_do_ranges flag for normal cache
misses. It was only being set for requests that might have been hits,
but we decided to change to a miss.
- Added the Authenticate-Info and Proxy-Authenticate-Info headers from
RFC 2617.
- HTTP header lines longer than 64K could cause an assertion.
Now they get ignored.
- Fixed an IP address scanning bug that caused "123.foo.com" to be
interpreted as an IP address.
- Converted many structure allocations to use mem pools.
- Changed proxy authentication to strip leading whitespace from usernames
after decoding.
- Prevented NULL pointer access in aclMatchAcl(). Some ACL types require
checklist->request_t, but it won't be available in some cases (like
snmp_access). Warn the admin that the ACL can't be checked and that
we're denying it.
- Allow zero-size disk caches.
- The actual filesystem blocksize is now used to account
for space overheads when calculating on-disk cache size.
- Made the maximum memory cache object size configurable.
- Added 'minimum_direct_rtt' configuration option.
- Added 'ie_refresh' configuration option, which is a hack
to turn IMS requests into no-cache requests.
- Added Linux netfilter support for intercepted connections.
- Fixed a bug with clientAccessCheck() that allowed proxy
requests in accel mode.
- Fixed a bug with 301/302 replies from redirectors. Now
we force them to be cache misses.
- Accommodated changes to the IP-Filter ioctl() interface
for intercepted connections.
- Fixed handling of client lifetime timeouts.
- Fixed a buffer overflow bug with internal DNS replies
by truncating received packets to 512 bytes, as per
RFC 1035.
- Added "forward.log" support, but its work in progress.
- Rewrote much of the IP and FQDN cache implementation.
This change gets rid of pending hits.
- Changed peerWouldBePinged() to return false if our
ICP/HTCP port is zero (i.e. disabled).
- Changed src/net_db.c to use src/logfile.c routines,
rather than stdio, because of solaris stdio filedescriptor
limits.
- Made netdbReloadState() more robust in case of corrupted
data.
- Rewrote some freshness/staleness functions in src/refresh.c,
partially inspired to support cache-control max-stale.
- Fixed status code logging for SSL/CONNECT requests.
- Added a hack to subtract cache digest network traffic
from statistics so that byte hit ratio stays positive
and more closely reflects what people expect it to be.
- Fixed a bug with storeCheckTooSmall() that caused
internal icons and cache digests to always be released.
- Added statfs(2) support for displaying actual filesystem
usage in the cache manager 'storedir' output.
- Changed status reporting for storage rebuilding. Now it
prints percentage complete instead of number of entries
parsed.
- Use mkstemp() rather than problem-prone tempnam().
- Changed urlParse() to condense multiple dots in hostnames.
- Major rewrite of async-io (src/fs/aufs) to make it behave
a bit more sane with substantially less overhead. Some
tuning work still remains to make it perform optimal.
See the start of store_asyncufs.h for all the knobs.
- Fixed storage FS modules to use individual swap space
high/low values rather than the global ones.
- Fixed storage FS bugs with calling file_map_bit_reset()
before checking the bit value. Calling with an invalid
value caused memory corruption in random places.
- Prevent NULL pointer access in store_repl_lru.c for
entries that exist in the hash but not the LRU list.
- Added --enable-auth-modules=... configure option
- Improved ICP dead peer detection to also work when the workload
is low
- Improved TCP dead peer detection and recovery
- Squid is now a bit more persistent in trying to find a alive
parent when never_direct is used.
- nonhierarchical_direct squid.conf directive to make non-ICP
peer selection behave a bit more like ICP selection with respect
to hierarchy.
- Bugfix where netdb selection could override never_direct
- ICP timeout selection now prefers to use parents only when
calculating the dynamic timeout to compensate for common RTT
differences between parents and siblings.
- No longer starts to swap out objects which are known to be above
the maximum allowed size.
- allow-miss cache_peer option disabling the use of "only-if-cached".
Meant to be used in conjunction with icp_hit_stale.
- Delay pools tuned to allow large initial pool values
- cachemgr filesystem space information changed to show useable space
rather than raw space, and platform support somewhat extended.
- Logs destination IP in the hierarchy log tag when going direct.
(can be disabled by turning log_ip_on_direct off)
- Async-IO on linux now makes proper use of mutexes. This fixes some
odd pthread segfaults on SMP Linux machines, at a slight performance
penalty.
- %s can now be used in cache_swap_log and will be substituded with
the last path component of cache_dir.
- no_cache is now a full ACL check without, allowing most ACL types
to be used.
- The CONNECT method now obeys miss_access requirements
- proxy_auth_regex and ident_regex ACL types
- Fixed a StoreEntry memory leak during "dirty" rebuild
- Helper processes no longer hold unrelated filedescriptors open
- Helpers are now restarted when the logs are rotated
- Negatively cached DNS entries are now purged on "reload".
- PURGE now also purges the DNS cache
- HEAD on FTP objects no longer retreives the whole object
- More cleanups of the dstdomain ACL type
- Squid no longer tries to do Range internally if it is not supported
by the origin server. Doing so could cause bandwidth spikes and/or
negative hit ratio.
- httpd_accel_single_host squid.conf directive
- "round-robin" cache_peer counters are reset every 5 minutes to
compensate previously dead peers
- DNS retransmit parameters
- Show all FTP server messages
- squid.conf.default now indicates if a directive isn't enabled in
the installed binary, and what configure option to use for enabling it
- Fixed a temporary memory leak on persistent POSTs
- Fixed a temporary memory leak when the server response headers
includes NULL characters
- authenticate_ip_ttl_is_strict squid.conf option
- req_mime_type ACL type
- A reworked storage system that supports storage directories in
a more modular fashion. The object replacement and IO is now
responsibility of the storage directory, and not of the storage
manager.
- Fixed a bogous MD5 mismatch warning sometimes seen when using
aufs or diskd stores
- Added --enable-stacktraces configure option to set PRINT_STACK_TRACE,
and extended support for this to Linux/GNU libc.
- Disabled the "request timeout" error message sent if the user agent
did not provide a request in a timely manner after opening the
connection. Now the connection is silently closed. The error message
was confusing user agents utilizing persistent connections.
- Fixed configure --enable descriptions to match the arg names.
- Eliminated compile warnings from auth_modules/MSNT code.
- Require first character of hostnames to be alphanumeric.
- Made ARP ACL work for Solaris.
- Removed storeClientListSearch().
- Added counters to track diskd operation success and
failures.
- Fixed range_offset_limit.
- Added code to retry ServFail replies for internal DNS
lookups.
- Added referer header logging (Jens-S. Voeckler).
- Added "multi-domain-NTLM" authentication module, a Perl
script from Thomas Jarosch.
- Added configurable warning messages for high memory usage,
high response time, and high page faults.
- Made store dir selection algorithm configurable.
- Added support for admin-definable extension methods,
up to 20.
- Added 'maximum_object_size_in_memory' as a configuration option -
this defines the watermark where objects transit from being true
hot objects to being in-transit objects in memory. It currently
defaults to 8 KB.
- Change to the fqdn code which changes how pending DNS requests
are treated as private and only become public once they are
completed. This can add extra load on DNS servers but prevents
all the pending clients blocking if one of the queries got
stuck. (Duane Wessels)
- Converted more code to use MemPools, from Andres Kroonmaa.
- Added more CYGWIN patches from Robert Collins.
- Added Logfile module.
- Added DISKD stats via cachemgr.
- Added squid.conf options for DISKD magic constants.
2001-04-14 12:05:00 +02:00
|
|
|
DISTNAME= squid-2.4.STABLE1-src
|
|
|
|
|
PKGNAME= squid-2.4.1
|
1998-05-23 23:27:20 +02:00
|
|
|
CATEGORIES= www
|
Update "squid" package to version 2.4STABLE1. Changes since 2.3STABLE4:
- Fixed a bug in and cleaned up class 2/3 delay pools incrementing.
- Fixed a coredump bug when using external dnsservers that become overloaded.
- Fixed some NULL pointer bugs for NULL storage system when reconfiguring.
- Fixed a bug with useragent logging that caused Squid to think the logfile
never got opened.
- Fixed a compiling bug with --disable-unlinkd.
- Changed src/squid.h to always use O_NONBLOCK on Solaris if it is defined.
- Fixed a bug with signed/unsigned bitfield flag variables that caused
problems on Solaris.
- Fixed a bug in clientBuildReplyHeader() that could add an Age: header with
a negative value, causing an assertion later.
- Fixed an SNMP reporting bug. cacheCurrentResFileDescrCnt was returning
the number of FDs in use, rather than the number of reserved FDs.
- Added the 'pipeline_prefetch' configuration option.
- cache_dir syntax changed to use options instead of many arguments. This
means that the max_objsize argument now is an optional option, and that
the syntax for how to specify the diskd magics is slightly different.
- Various fixes for CYGWIN
- Upgraded MSNT auth module to version 2.0.
- Fixed potential problems with HTML by making sure all HTML output is
properly encoded.
- Fixed a memory initialization problem with resource records in
lib/rfc1035.c.
- Rewrote date parsing in lib/rfc1123.c and made it a little more lenient.
- Added Cache-control: max-stale support.
- Fixed 'range_offset_limit' again. The problem this time is that
client_side.c wouldn't set the we_dont_do_ranges flag for normal cache
misses. It was only being set for requests that might have been hits,
but we decided to change to a miss.
- Added the Authenticate-Info and Proxy-Authenticate-Info headers from
RFC 2617.
- HTTP header lines longer than 64K could cause an assertion.
Now they get ignored.
- Fixed an IP address scanning bug that caused "123.foo.com" to be
interpreted as an IP address.
- Converted many structure allocations to use mem pools.
- Changed proxy authentication to strip leading whitespace from usernames
after decoding.
- Prevented NULL pointer access in aclMatchAcl(). Some ACL types require
checklist->request_t, but it won't be available in some cases (like
snmp_access). Warn the admin that the ACL can't be checked and that
we're denying it.
- Allow zero-size disk caches.
- The actual filesystem blocksize is now used to account
for space overheads when calculating on-disk cache size.
- Made the maximum memory cache object size configurable.
- Added 'minimum_direct_rtt' configuration option.
- Added 'ie_refresh' configuration option, which is a hack
to turn IMS requests into no-cache requests.
- Added Linux netfilter support for intercepted connections.
- Fixed a bug with clientAccessCheck() that allowed proxy
requests in accel mode.
- Fixed a bug with 301/302 replies from redirectors. Now
we force them to be cache misses.
- Accommodated changes to the IP-Filter ioctl() interface
for intercepted connections.
- Fixed handling of client lifetime timeouts.
- Fixed a buffer overflow bug with internal DNS replies
by truncating received packets to 512 bytes, as per
RFC 1035.
- Added "forward.log" support, but its work in progress.
- Rewrote much of the IP and FQDN cache implementation.
This change gets rid of pending hits.
- Changed peerWouldBePinged() to return false if our
ICP/HTCP port is zero (i.e. disabled).
- Changed src/net_db.c to use src/logfile.c routines,
rather than stdio, because of solaris stdio filedescriptor
limits.
- Made netdbReloadState() more robust in case of corrupted
data.
- Rewrote some freshness/staleness functions in src/refresh.c,
partially inspired to support cache-control max-stale.
- Fixed status code logging for SSL/CONNECT requests.
- Added a hack to subtract cache digest network traffic
from statistics so that byte hit ratio stays positive
and more closely reflects what people expect it to be.
- Fixed a bug with storeCheckTooSmall() that caused
internal icons and cache digests to always be released.
- Added statfs(2) support for displaying actual filesystem
usage in the cache manager 'storedir' output.
- Changed status reporting for storage rebuilding. Now it
prints percentage complete instead of number of entries
parsed.
- Use mkstemp() rather than problem-prone tempnam().
- Changed urlParse() to condense multiple dots in hostnames.
- Major rewrite of async-io (src/fs/aufs) to make it behave
a bit more sane with substantially less overhead. Some
tuning work still remains to make it perform optimal.
See the start of store_asyncufs.h for all the knobs.
- Fixed storage FS modules to use individual swap space
high/low values rather than the global ones.
- Fixed storage FS bugs with calling file_map_bit_reset()
before checking the bit value. Calling with an invalid
value caused memory corruption in random places.
- Prevent NULL pointer access in store_repl_lru.c for
entries that exist in the hash but not the LRU list.
- Added --enable-auth-modules=... configure option
- Improved ICP dead peer detection to also work when the workload
is low
- Improved TCP dead peer detection and recovery
- Squid is now a bit more persistent in trying to find a alive
parent when never_direct is used.
- nonhierarchical_direct squid.conf directive to make non-ICP
peer selection behave a bit more like ICP selection with respect
to hierarchy.
- Bugfix where netdb selection could override never_direct
- ICP timeout selection now prefers to use parents only when
calculating the dynamic timeout to compensate for common RTT
differences between parents and siblings.
- No longer starts to swap out objects which are known to be above
the maximum allowed size.
- allow-miss cache_peer option disabling the use of "only-if-cached".
Meant to be used in conjunction with icp_hit_stale.
- Delay pools tuned to allow large initial pool values
- cachemgr filesystem space information changed to show useable space
rather than raw space, and platform support somewhat extended.
- Logs destination IP in the hierarchy log tag when going direct.
(can be disabled by turning log_ip_on_direct off)
- Async-IO on linux now makes proper use of mutexes. This fixes some
odd pthread segfaults on SMP Linux machines, at a slight performance
penalty.
- %s can now be used in cache_swap_log and will be substituded with
the last path component of cache_dir.
- no_cache is now a full ACL check without, allowing most ACL types
to be used.
- The CONNECT method now obeys miss_access requirements
- proxy_auth_regex and ident_regex ACL types
- Fixed a StoreEntry memory leak during "dirty" rebuild
- Helper processes no longer hold unrelated filedescriptors open
- Helpers are now restarted when the logs are rotated
- Negatively cached DNS entries are now purged on "reload".
- PURGE now also purges the DNS cache
- HEAD on FTP objects no longer retreives the whole object
- More cleanups of the dstdomain ACL type
- Squid no longer tries to do Range internally if it is not supported
by the origin server. Doing so could cause bandwidth spikes and/or
negative hit ratio.
- httpd_accel_single_host squid.conf directive
- "round-robin" cache_peer counters are reset every 5 minutes to
compensate previously dead peers
- DNS retransmit parameters
- Show all FTP server messages
- squid.conf.default now indicates if a directive isn't enabled in
the installed binary, and what configure option to use for enabling it
- Fixed a temporary memory leak on persistent POSTs
- Fixed a temporary memory leak when the server response headers
includes NULL characters
- authenticate_ip_ttl_is_strict squid.conf option
- req_mime_type ACL type
- A reworked storage system that supports storage directories in
a more modular fashion. The object replacement and IO is now
responsibility of the storage directory, and not of the storage
manager.
- Fixed a bogous MD5 mismatch warning sometimes seen when using
aufs or diskd stores
- Added --enable-stacktraces configure option to set PRINT_STACK_TRACE,
and extended support for this to Linux/GNU libc.
- Disabled the "request timeout" error message sent if the user agent
did not provide a request in a timely manner after opening the
connection. Now the connection is silently closed. The error message
was confusing user agents utilizing persistent connections.
- Fixed configure --enable descriptions to match the arg names.
- Eliminated compile warnings from auth_modules/MSNT code.
- Require first character of hostnames to be alphanumeric.
- Made ARP ACL work for Solaris.
- Removed storeClientListSearch().
- Added counters to track diskd operation success and
failures.
- Fixed range_offset_limit.
- Added code to retry ServFail replies for internal DNS
lookups.
- Added referer header logging (Jens-S. Voeckler).
- Added "multi-domain-NTLM" authentication module, a Perl
script from Thomas Jarosch.
- Added configurable warning messages for high memory usage,
high response time, and high page faults.
- Made store dir selection algorithm configurable.
- Added support for admin-definable extension methods,
up to 20.
- Added 'maximum_object_size_in_memory' as a configuration option -
this defines the watermark where objects transit from being true
hot objects to being in-transit objects in memory. It currently
defaults to 8 KB.
- Change to the fqdn code which changes how pending DNS requests
are treated as private and only become public once they are
completed. This can add extra load on DNS servers but prevents
all the pending clients blocking if one of the queries got
stuck. (Duane Wessels)
- Converted more code to use MemPools, from Andres Kroonmaa.
- Added more CYGWIN patches from Robert Collins.
- Added Logfile module.
- Added DISKD stats via cachemgr.
- Added squid.conf options for DISKD magic constants.
2001-04-14 12:05:00 +02:00
|
|
|
MASTER_SITES= http://www.squid-cache.org/Versions/v2/2.4/ \
|
|
|
|
|
ftp://ftp.leo.org/pub/comp/general/infosys/www/daemons/squid/squid-2/STABLE/ \
|
|
|
|
|
ftp://ftp1.au.squid-cache.org/pub/squid/squid-2/STABLE/
|
2000-03-21 11:09:51 +01:00
|
|
|
|
Update "squid" package to version 2.4STABLE1. Changes since 2.3STABLE4:
- Fixed a bug in and cleaned up class 2/3 delay pools incrementing.
- Fixed a coredump bug when using external dnsservers that become overloaded.
- Fixed some NULL pointer bugs for NULL storage system when reconfiguring.
- Fixed a bug with useragent logging that caused Squid to think the logfile
never got opened.
- Fixed a compiling bug with --disable-unlinkd.
- Changed src/squid.h to always use O_NONBLOCK on Solaris if it is defined.
- Fixed a bug with signed/unsigned bitfield flag variables that caused
problems on Solaris.
- Fixed a bug in clientBuildReplyHeader() that could add an Age: header with
a negative value, causing an assertion later.
- Fixed an SNMP reporting bug. cacheCurrentResFileDescrCnt was returning
the number of FDs in use, rather than the number of reserved FDs.
- Added the 'pipeline_prefetch' configuration option.
- cache_dir syntax changed to use options instead of many arguments. This
means that the max_objsize argument now is an optional option, and that
the syntax for how to specify the diskd magics is slightly different.
- Various fixes for CYGWIN
- Upgraded MSNT auth module to version 2.0.
- Fixed potential problems with HTML by making sure all HTML output is
properly encoded.
- Fixed a memory initialization problem with resource records in
lib/rfc1035.c.
- Rewrote date parsing in lib/rfc1123.c and made it a little more lenient.
- Added Cache-control: max-stale support.
- Fixed 'range_offset_limit' again. The problem this time is that
client_side.c wouldn't set the we_dont_do_ranges flag for normal cache
misses. It was only being set for requests that might have been hits,
but we decided to change to a miss.
- Added the Authenticate-Info and Proxy-Authenticate-Info headers from
RFC 2617.
- HTTP header lines longer than 64K could cause an assertion.
Now they get ignored.
- Fixed an IP address scanning bug that caused "123.foo.com" to be
interpreted as an IP address.
- Converted many structure allocations to use mem pools.
- Changed proxy authentication to strip leading whitespace from usernames
after decoding.
- Prevented NULL pointer access in aclMatchAcl(). Some ACL types require
checklist->request_t, but it won't be available in some cases (like
snmp_access). Warn the admin that the ACL can't be checked and that
we're denying it.
- Allow zero-size disk caches.
- The actual filesystem blocksize is now used to account
for space overheads when calculating on-disk cache size.
- Made the maximum memory cache object size configurable.
- Added 'minimum_direct_rtt' configuration option.
- Added 'ie_refresh' configuration option, which is a hack
to turn IMS requests into no-cache requests.
- Added Linux netfilter support for intercepted connections.
- Fixed a bug with clientAccessCheck() that allowed proxy
requests in accel mode.
- Fixed a bug with 301/302 replies from redirectors. Now
we force them to be cache misses.
- Accommodated changes to the IP-Filter ioctl() interface
for intercepted connections.
- Fixed handling of client lifetime timeouts.
- Fixed a buffer overflow bug with internal DNS replies
by truncating received packets to 512 bytes, as per
RFC 1035.
- Added "forward.log" support, but its work in progress.
- Rewrote much of the IP and FQDN cache implementation.
This change gets rid of pending hits.
- Changed peerWouldBePinged() to return false if our
ICP/HTCP port is zero (i.e. disabled).
- Changed src/net_db.c to use src/logfile.c routines,
rather than stdio, because of solaris stdio filedescriptor
limits.
- Made netdbReloadState() more robust in case of corrupted
data.
- Rewrote some freshness/staleness functions in src/refresh.c,
partially inspired to support cache-control max-stale.
- Fixed status code logging for SSL/CONNECT requests.
- Added a hack to subtract cache digest network traffic
from statistics so that byte hit ratio stays positive
and more closely reflects what people expect it to be.
- Fixed a bug with storeCheckTooSmall() that caused
internal icons and cache digests to always be released.
- Added statfs(2) support for displaying actual filesystem
usage in the cache manager 'storedir' output.
- Changed status reporting for storage rebuilding. Now it
prints percentage complete instead of number of entries
parsed.
- Use mkstemp() rather than problem-prone tempnam().
- Changed urlParse() to condense multiple dots in hostnames.
- Major rewrite of async-io (src/fs/aufs) to make it behave
a bit more sane with substantially less overhead. Some
tuning work still remains to make it perform optimal.
See the start of store_asyncufs.h for all the knobs.
- Fixed storage FS modules to use individual swap space
high/low values rather than the global ones.
- Fixed storage FS bugs with calling file_map_bit_reset()
before checking the bit value. Calling with an invalid
value caused memory corruption in random places.
- Prevent NULL pointer access in store_repl_lru.c for
entries that exist in the hash but not the LRU list.
- Added --enable-auth-modules=... configure option
- Improved ICP dead peer detection to also work when the workload
is low
- Improved TCP dead peer detection and recovery
- Squid is now a bit more persistent in trying to find a alive
parent when never_direct is used.
- nonhierarchical_direct squid.conf directive to make non-ICP
peer selection behave a bit more like ICP selection with respect
to hierarchy.
- Bugfix where netdb selection could override never_direct
- ICP timeout selection now prefers to use parents only when
calculating the dynamic timeout to compensate for common RTT
differences between parents and siblings.
- No longer starts to swap out objects which are known to be above
the maximum allowed size.
- allow-miss cache_peer option disabling the use of "only-if-cached".
Meant to be used in conjunction with icp_hit_stale.
- Delay pools tuned to allow large initial pool values
- cachemgr filesystem space information changed to show useable space
rather than raw space, and platform support somewhat extended.
- Logs destination IP in the hierarchy log tag when going direct.
(can be disabled by turning log_ip_on_direct off)
- Async-IO on linux now makes proper use of mutexes. This fixes some
odd pthread segfaults on SMP Linux machines, at a slight performance
penalty.
- %s can now be used in cache_swap_log and will be substituded with
the last path component of cache_dir.
- no_cache is now a full ACL check without, allowing most ACL types
to be used.
- The CONNECT method now obeys miss_access requirements
- proxy_auth_regex and ident_regex ACL types
- Fixed a StoreEntry memory leak during "dirty" rebuild
- Helper processes no longer hold unrelated filedescriptors open
- Helpers are now restarted when the logs are rotated
- Negatively cached DNS entries are now purged on "reload".
- PURGE now also purges the DNS cache
- HEAD on FTP objects no longer retreives the whole object
- More cleanups of the dstdomain ACL type
- Squid no longer tries to do Range internally if it is not supported
by the origin server. Doing so could cause bandwidth spikes and/or
negative hit ratio.
- httpd_accel_single_host squid.conf directive
- "round-robin" cache_peer counters are reset every 5 minutes to
compensate previously dead peers
- DNS retransmit parameters
- Show all FTP server messages
- squid.conf.default now indicates if a directive isn't enabled in
the installed binary, and what configure option to use for enabling it
- Fixed a temporary memory leak on persistent POSTs
- Fixed a temporary memory leak when the server response headers
includes NULL characters
- authenticate_ip_ttl_is_strict squid.conf option
- req_mime_type ACL type
- A reworked storage system that supports storage directories in
a more modular fashion. The object replacement and IO is now
responsibility of the storage directory, and not of the storage
manager.
- Fixed a bogous MD5 mismatch warning sometimes seen when using
aufs or diskd stores
- Added --enable-stacktraces configure option to set PRINT_STACK_TRACE,
and extended support for this to Linux/GNU libc.
- Disabled the "request timeout" error message sent if the user agent
did not provide a request in a timely manner after opening the
connection. Now the connection is silently closed. The error message
was confusing user agents utilizing persistent connections.
- Fixed configure --enable descriptions to match the arg names.
- Eliminated compile warnings from auth_modules/MSNT code.
- Require first character of hostnames to be alphanumeric.
- Made ARP ACL work for Solaris.
- Removed storeClientListSearch().
- Added counters to track diskd operation success and
failures.
- Fixed range_offset_limit.
- Added code to retry ServFail replies for internal DNS
lookups.
- Added referer header logging (Jens-S. Voeckler).
- Added "multi-domain-NTLM" authentication module, a Perl
script from Thomas Jarosch.
- Added configurable warning messages for high memory usage,
high response time, and high page faults.
- Made store dir selection algorithm configurable.
- Added support for admin-definable extension methods,
up to 20.
- Added 'maximum_object_size_in_memory' as a configuration option -
this defines the watermark where objects transit from being true
hot objects to being in-transit objects in memory. It currently
defaults to 8 KB.
- Change to the fqdn code which changes how pending DNS requests
are treated as private and only become public once they are
completed. This can add extra load on DNS servers but prevents
all the pending clients blocking if one of the queries got
stuck. (Duane Wessels)
- Converted more code to use MemPools, from Andres Kroonmaa.
- Added more CYGWIN patches from Robert Collins.
- Added Logfile module.
- Added DISKD stats via cachemgr.
- Added squid.conf options for DISKD magic constants.
2001-04-14 12:05:00 +02:00
|
|
|
PATCH_SITES= http://www.squid-cache.org/Versions/v2/2.4/bugs/
|
|
|
|
|
PATCHFILES= squid-2.4.stable1-diskd_fixed_path.patch \
|
|
|
|
|
squid-2.4.stable1-force_valid_blksize.patch \
|
|
|
|
|
squid-2.4.stable1-high_cpu_with_peers.patch \
|
|
|
|
|
squid-2.4.stable1-htcp_assertion_fix.patch \
|
|
|
|
|
squid-2.4.stable1-kill_parent_on_child_sigkill.patch \
|
|
|
|
|
squid-2.4.stable1-wrong_sign_on_timestamp_check.patch
|
|
|
|
|
|
1999-11-12 23:20:49 +01:00
|
|
|
MAINTAINER= tron@netbsd.org
|
2000-03-21 11:09:51 +01:00
|
|
|
HOMEPAGE= http://www.squid-cache.org/
|
2001-02-17 18:21:28 +01:00
|
|
|
COMMENT= Post-Harvest_cached WWW proxy cache and accelerator
|
1998-05-23 23:27:20 +02:00
|
|
|
|
2001-03-27 05:19:43 +02:00
|
|
|
BUILD_DEPENDS+= perl-5.*:../../lang/perl5
|
1998-12-06 13:42:00 +01:00
|
|
|
|
2000-08-27 04:46:03 +02:00
|
|
|
GNU_CONFIGURE= # defined
|
1999-11-12 23:20:49 +01:00
|
|
|
CONFIGURE_ARGS+= --sysconfdir=/etc \
|
|
|
|
|
--localstatedir=/var/squid \
|
|
|
|
|
${SQUID_CONFIGURE_ARGS}
|
|
|
|
|
CONFIGURE_ENV+= CACHE_HTTP_PORT=${SQUID_HTTP_PORT} \
|
|
|
|
|
CACHE_ICP_PORT=${SQUID_ICP_PORT} \
|
2000-08-27 04:46:03 +02:00
|
|
|
PERL=${PERL5}
|
1999-11-12 23:20:49 +01:00
|
|
|
|
|
|
|
|
BUILD_DEFS+= SQUID_CONFIGURE_ARGS SQUID_HTTP_PORT SQUID_ICP_PORT
|
1998-12-06 13:42:00 +01:00
|
|
|
MAKEFILE= makefile
|
1999-01-29 20:26:37 +01:00
|
|
|
MAKE_ENV+= INSTALL_SCRIPT="${INSTALL_SCRIPT}" PKG_PREFIX="${PREFIX}"
|
1999-05-02 14:49:43 +02:00
|
|
|
PLIST_SRC= ${PKGDIR}/PLIST ${WRKDIR}/PLIST.share
|
1999-06-03 18:42:35 +02:00
|
|
|
WRKSRC= ${WRKDIR}/${DISTNAME:S/-src//}
|
1998-05-23 23:27:20 +02:00
|
|
|
|
1999-08-02 14:14:00 +02:00
|
|
|
.include "../../mk/bsd.prefs.mk"
|
1999-11-12 23:56:31 +01:00
|
|
|
# Configuration options which can be overwritten by the user.
|
|
|
|
|
SQUID_CONFIGURE_ARGS?= --enable-cachemgr-hostname=localhost \
|
2000-10-10 12:28:39 +02:00
|
|
|
--enable-delay-pools \
|
1999-11-12 23:56:31 +01:00
|
|
|
--enable-icmp \
|
|
|
|
|
--enable-ipf-transparent \
|
2000-02-28 00:11:12 +01:00
|
|
|
--enable-snmp \
|
|
|
|
|
--enable-underscores
|
1999-11-12 23:56:31 +01:00
|
|
|
SQUID_HTTP_PORT?= 3128
|
|
|
|
|
SQUID_ICP_PORT?= 3130
|
1999-08-02 14:14:00 +02:00
|
|
|
|
|
|
|
|
.if ${OPSYS} == "SunOS"
|
|
|
|
|
DEPENDS+= egcs-1.1.2:../../lang/egcs
|
|
|
|
|
MAKE_ENV+= CPPFLAGS= CFLAGS=
|
|
|
|
|
.endif
|
|
|
|
|
|
2000-10-15 22:17:44 +02:00
|
|
|
post-configure:
|
|
|
|
|
@cd ${WRKSRC}/include && \
|
|
|
|
|
${MV} autoconf.h autoconf.h.prepatch && \
|
|
|
|
|
${SED} -e 's%#define fd_mask int%/* #undef fd_mask */%' <autoconf.h.prepatch \
|
|
|
|
|
>autoconf.h
|
2000-03-21 11:09:51 +01:00
|
|
|
|
1998-05-23 23:27:20 +02:00
|
|
|
post-build:
|
1998-05-24 21:01:19 +02:00
|
|
|
${SED} s#@PREFIX@#${PREFIX}#g <${FILESDIR}/squid.sh >${WRKDIR}/squid.sh
|
1998-05-23 23:27:20 +02:00
|
|
|
|
1998-12-06 13:42:00 +01:00
|
|
|
pre-install:
|
|
|
|
|
@-rm -f ${WRKDIR}/PLIST.share
|
2001-02-25 05:17:35 +01:00
|
|
|
@${INSTALL_DATA_DIR} ${PREFIX}/share/squid
|
|
|
|
|
@${INSTALL_DATA_DIR} ${PREFIX}/share/squid/errors
|
|
|
|
|
@${INSTALL_DATA_DIR} ${PREFIX}/share/squid/icons
|
1998-12-06 13:42:00 +01:00
|
|
|
@( \
|
|
|
|
|
cd ${WRKSRC}/errors/English; \
|
1999-05-02 14:49:43 +02:00
|
|
|
ls ERR_* | ${SED} -e 's@^@share/squid/errors/@'; \
|
|
|
|
|
${ECHO} "@dirrm share/squid/errors"; \
|
1998-12-06 13:42:00 +01:00
|
|
|
cd ${WRKSRC}/icons; \
|
1999-05-02 14:49:43 +02:00
|
|
|
ls anthony-*.gif | ${SED} -e 's@^@share/squid/icons/@'; \
|
|
|
|
|
${ECHO} "@dirrm share/squid/icons"; \
|
|
|
|
|
${ECHO} "share/squid/mib.txt"; \
|
|
|
|
|
${ECHO} "share/squid/mime.conf"; \
|
|
|
|
|
${ECHO} "share/squid/mime.conf.default"; \
|
|
|
|
|
${ECHO} "share/squid/squid.conf.default"; \
|
|
|
|
|
${ECHO} "@dirrm share/squid"; \
|
1998-12-06 13:42:00 +01:00
|
|
|
) > ${WRKDIR}/PLIST.share
|
|
|
|
|
|
1998-05-23 23:27:20 +02:00
|
|
|
post-install:
|
2001-02-25 05:17:35 +01:00
|
|
|
${INSTALL_DATA_DIR} /var/squid
|
2000-12-16 10:45:18 +01:00
|
|
|
${INSTALL} -d -o nobody /var/squid/logs
|
1999-03-08 11:53:55 +01:00
|
|
|
cd ${WRKSRC}/src; ${MAKE} install-pinger
|
2001-01-26 05:56:13 +01:00
|
|
|
${INSTALL_SCRIPT} ${WRKDIR}/squid.sh ${PREFIX}/etc/rc.d/squid
|
1999-08-18 01:10:55 +02:00
|
|
|
@${SETENV} ${MAKE_ENV} ${SH} ${INSTALL_FILE} ${PKGNAME} POST-INSTALL
|
1998-05-23 23:27:20 +02:00
|
|
|
|
1999-09-28 22:40:02 +02:00
|
|
|
.include "../../mk/bsd.pkg.mk"
|
