kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
117889 commits 166 branches 0 tags 1.5 GiB
Commit graph

134 commits

Author SHA1 Message Date
taca
55db8153da Update squid to 2.6.16 (2.6.STABLE16). 
Changes to squid-2.6.STABLE16 (5 Sep 2007)

	- Test for sys/capability.h linux include file to avoid failing on
	  linux systems missing libcap
	- Release private objects on cache rebuild
	- Segfault in clientBuildReplyHeader when http->entry == NULL
	- Bug #2072: digest_pw_auth fails when using plaintext passwords
	- Bug #2073: assertion failed: client_side.c:4175: "buf != NULL ||
	  !conn->body.request on POST
	- Adjust default pconn timeouts to avoid shutting down connection while
	  child sends request
	- Bug #1980: cache_peer monitortimeout not working
	- Bug #1882: Parent responses are not cached if sibling returns 504
	- More squid.conf reordering to get the dependencies between options
	  sorted proper

Changes to squid-2.6.STABLE15 (31 Aug 2007)

	- The select() I/O loop got broken by the /dev/poll addition
	  (2.6.STABLE14)
	- Bug #2017: Fails to work around broken servers sending just the HTTP
	  headers
	- Bug #2023: Compile error with old GCC 2.x or other ANSI-C compilers
	  before C99
	- squid.conf.default updated and reorganised in more sensible groups
	- correct and document the syslog access_log format
	- Armenian error pages translation
	- digest_ldap_helper usage help updated
	- Bug #1560: ftpSendPasv: getsockname(-1,..): (9) Bad file descriptor
	- Improve delay pools in low traffic environment by checking timeouts
	  at a steady 1 second interval even when there is not much activity
	- Don't request authentication on transparently intercepted
	  connections
	- Cleanup linux capabilities for tproxy
	- Bug #2003: 'via' config directive doesn't affect response headers
	- Bug #1902: Adds Numeric Hit and invalid request counters to IP Cache
	- Add missing $|=1 to squid_db_auth
	- Bug #2050: Persistent connection dropped if cache has no
	  Content-Length
	- Verify the URL on memory cache hits
	- Bug #2057: NTLM stop work in messengers after upgrade to 2.6.STABLE14
	- Bug #1972: Squid sets peers to down state when they are in fact
	  working.
	- potential segmentation fault in storeLocateVary()
	- Bug #2066: chdir after chroot
	- Windows port: Fix compiler warnings when building Squid as
	  application (not Windows service mode)
	- Spelling correction of received
 2007-09-07 10:39:35 +00:00
taca
a97fb789bb Update squid pacakge to 2.6.14 (2.6.STABLE14). 
pkgsrc chagnes

  o Add "coss" option which enable COSS (Cyclic Object storage system).
    Noted by Chris Ross on pkgsrc-users.

Changes to squid-2.6.STABLE14 (15 Jul 2007)

	- squid.conf.default cleanup to have options in their proper sections.
	- documentation correction in the refresh_pattern ignore-auth option
	- URI-escaping not uses the recommended upper-case hex codes
	- refresh_pattern min-age 0 correted to really mean 0, and not 1 second
	- Always use xisxxxx() Squid defined macros instead of ctype
	  functions.
	- Kerberos SPNEGO/Negotiate helper for the negotiate scheme
	- Database basic auth helper using Perl DBI to connect to most SQL DBs
	- Solaris /dev/poll network I/O support
	- configure fixes to make cross compilation somewhat easier
	- Removed incorrect -a reference from http_port documentation
	- Bug #1900: Double "squid -k shutdown" makes Squid restart again
	- Bug #1968: Squid hangs occasionally when using DNS search paths
	- Novell eDirectory digest auth helper (digest_edir_auth)
	- Bug #1130: min-size option for cache_dir
	- POP3 basic auth helper querying a POP3 server
	- Cosmetic squid_ldap_auth fixes from Squid-3
	- Bug #1085: Add no-wrap to cache manager HTML tables
	- Automatically restart if number of available filedescriptors becomes
	  alarmingly low, preventing a situation where Squid would otherwise
	  permanently stop processing requests.
	- Bug #2010: snmp_core.cc:828: warning: array subscript is above
	  array bounds
	- Deal better with forwarding loops
 2007-08-02 15:45:09 +00:00
taca
de8a5315df Update squid pacakge to 2.6.13 (2.6.STABLE13). 
Changes to squid-2.6.STABLE13 (11 May 2007)

	- Make sure reply headers gets sent even if there is no body available
	  yet, fixing RealMedia streaming over HTTP issues.
	- Undo an accidental name change of storeUnregisterAbort.
	- Kill an ancient malplaced storeUnregisterAbort call from ftp.c
	- Bug #1814: SSL memory leak on persistent SSL connections
	- Don't log ECONNREFUSED/ECONNABORTED accept failures in cache.log
	- Cosmetic fix: added missing newline in WCCPv2 configuration dump.
	- Ukrainan error messages
	- Convert various error pages from DOS to UNIX text format
	- Bug #1820: COSS assertion failure t->length == MD5_DIGEST_CHARS
	- Clarify the max-conn=n cache_peer option syntax slightly
	- Bug #1892: COSS segfault on shutdown
	- Windows port: fix undefined ECONNABORTED
	- Make refreshIsCachable handle ETag as a cache validator, not
	  only last-modified
	- in_port_t is not portable, use unsigned short instead
	- Fix fs / auth / snmp dependencies
	- Portability: statfs() may reqire #include <sys/statfs.h>
 2007-05-13 16:45:44 +00:00
taca
d80eb25d95 Update squid package to 2.6.12. 
This fixes a DoS security problem.

	http://www.squid-cache.org/Advisories/SQUID-2007_1.txt

Changes to squid-2.6.STABLE12 (Mar 20 2007)

	- Assertion error on TRACE
 2007-03-21 05:25:01 +00:00
taca
338a75820b Update squid to 2.6.11 (squid-2.6.STABLE11). 
Changes to squid-2.6.STABLE11 (Mar 17 2007)

	- Bug #1915: assertion failed: client_side.c:4055: "buf != NULL ||
	  !conn->body.request"
	- Handle garbage helper responses better in concurrent protocol format
	- Fix kqueue when overflowing the changes queue
	- Make sure the child worker process commits suicide if it could
	  not start up
	- Don't log short responses at debug level 1
	- Fix bswap16 & bwsap32 error on NetBSD
	- Fix collapsed_forwarding for non-GET requests
 2007-03-17 15:14:27 +00:00
taca
718370376b Update www/squid to squid-2.6.10 (squid-2.6.STABLE10). 
Changes to squid-2.6.STABLE10 (Mar  4 2007)

	- Upgrade HTTP/0.9 responses to our HTTP version (HTTP/1.0)
	- various diskd bugfixes
	- In the access.log hierarchy field log the unique peer name
	  instead of the host name
	- unlinkdClose() should be called after (not before) storeDirSync()
	- CLEAN_BUF_SZ was defined, but never used anywhere
	- logging HTTP-request size
	- Fix icmp pinger communication on FreeBSD and other not supporing
	  large dgram AF_UNIX sockets
	- Release objects on swapin failure
	- Bug #1787: Objects stuck in cache if origin server clock in future
	- Bug #1420: 302 responses with an Expires header is always cached
	- Primitive support for HTTP/1.1 chunked encoding, working around
	  broken servers
	- Clean up relations between TCP probing and DNS checks of peers with
	  no known addresses.
	- Fix a minor HTML coding error in ftp directory listings with // in
	  the path
	- Bug #1875, #1420. Cleanup of refresh logics when dealing with
	  non-refreshable content
	- Negotiate authentication fixed again. Broken since STABLE7 by the
	  patch for Bug #1792.
	- Bug #1892: COSS tries to shut down the same directory twice on exit
	- Bug #1908: store*DirRebuildFromSwapLog() ignores some SWAP_LOG_DEL
	  entries
	- Added support for Subversion HTTP request methods MKACTIVITY,
	  CHECKOUT and MERGE.
 2007-03-04 11:32:59 +00:00
joerg
0d25576d5d don't complain if the location of the DragonFly header exists. 2007-02-06 22:06:32 +00:00
joerg
e744e09729 Allow transparent proxy support for PF on DragonFly. 2007-02-06 20:22:14 +00:00
taca
8bb6483d75 Update squid to 2.6.9 (2.6.STABLE9). I deleted DIST_SUBDIR for now. 
Changes to squid-2.6.STABLE9 (Jan 24 2007)

	- Bug #1878: If-Modified-Since broken in 2.6.STABLE8
	- Bug #1877 diskd bug in storeDiskdIOCallback()

Changes to squid-2.6.STABLE8 (Jan 21 2007)

	- Bug #1873: authenticateNTLMFixErrorHeader: state 4.
	- Document the https_port vhost option, useful in combination with
	  a wildcard certificate
	- Document the existence of connection pinning / forwarding of NTLM
	  auth and a few other features overlooked in the release notes.
	- Spelling correction of the ssl cache_peer option
	- Add back the optional "accel" http_port option. Makes accelerator
	  mode configurations easier to read.
	- Bug #1872: Date parsing error causing objects to get unexpectedly
	  cached.
	- Cleanup to have the access.log tags autogenerated from enums.h
	- Bug #1783: STALE: Entry's timestamp greater than check time. Clock
	  going backwards?
	- Don't update object timestamps on a failed revalidation.
	- Fix how ftp://user@host URLs is rendered when Squid is built with
	  leak checking enabled
 2007-01-28 05:39:23 +00:00
taca
a10ae24d22 Update squid package to 2.6.7 (2.6.STABLE7). 
o arp-acl is now supported on NetBSD contributed by Jaromir Dolecek <jdolecek@>.

Changes to squid-2.6.STABLE7 (Jan 13 2007)

	- Windows port: Fix intermittent build error using Visual Studio
	- Add missing tproxy info from the dump of http port configuration
	- Bug #1853: Support for ARP ACL on NetBSD
	- clientNatLookup(): fix wrong function name in debug messages
	- Convert ncsa_auth man page from DOS to Unix text format.
	- Bug #1858: digest_ldap_auth had some remains of old hash format
	- Correct the select_loops counter when using select(). Was counted twice
	- Clarify the http_port vhost option a bit
	- Fix cache-control: max-stale without value or bad value
	- Bug #1857: Segmentation fault on certain types of ftp:// requests
	- Bug #1848: external_acl crashes with an infinite loop under high load
	- Bug #1792: max_user_ip not working with NTLM authentication
	- Bug #1865: deny_info redirection with authentication related acls
	- Small example on how to use the squid_session helper
	- Bug #1863: cache_peer monitorurl, monitorsize and monitorinterval not working properly
	- Clarify the transparent http_port option a bit more
	- Bug #1828: squid.conf docutemtation error for proxy_auth digest
	- Bug #1867: squid.pid isn't removed on shutdown
 2007-01-14 04:12:12 +00:00
taca
4c09e1d220 Update squid package to 2.6.6 (squid-2.6.STABLE6). 
pkgsrc change: remove PATCHFILES which hasn't used recent days.


Changes to squid-2.6.STABLE6 (Dec 12 2006)

- Bug #1817: Assertion failure assert(buflen >= copy_sz) in htcp.c htcpBuildAuth()
- Add client source port logformat tag >p
- Cleanup of transparent & accelerator mode request parsing to untangle the firewall dependencies a bit
- Bug #1799: Harmless 1 byte buffer overflow on long host names in /etc/hosts
- automake no longer recommends mkinstalldirs. Removed.
- Only use crypt() if it's available, allowing ncsa_auth to be built
  on platofms without crypt() support.
- Windows port documentation updates
- Bug #1818: Assertion failure assert(e->swap_dirn >= 0) in fs/coss/store_dir_coss.c storeCoss_DeleteStoreEntry
- Bug #1117: assertion failed: aufs/store_dir_aufs.c:642: "rb->flags.need_to_validate"
- Remove extra newline in redirect message sent by deny_info http://... aclname
- Bug #1805: assertion failed: StatHist.c:195: "D[i] >= 0"
- Clarify the external_acl_type helper format specification and some defaults
- Add support for the weight= parameter to round-robin peers
- Bug #1832: Error building squid-2.6.STABLE5 using --enable-truncate
- Convert snmpDebugOid to use a temporary String object instead of strcat
- Document that proxy_auth also accepts -i for case-insensitive operation
- Remove malloc/free of temporary buffer in time parsing routines.
- Reduce memory allocator pressure by not continually allocating client-side read buffers
- Accept large dates >2^31 on 64-bit platformst. Seen for example in the Google logo.
- Convert the connStateData->chr single link list to a normal dlink_list for clarity.
- Bug #1584: Unable to register with multiple WCCP2 routers
- Fix the WCCPv2 mask assignment code to not crash as the value assignments are built.
- Bug #439: Multicast ICP peering is unstable and considers most peers dead
- Bug #1801: NTLM authentication ends up in a loop if the server responds with a retriable error
- Bug #1839: Cosmetic debug message cleanup in peerHandleHtcpReply.
- Bug #1840: Disable digest and netdb queries to multicast peers
- Bug #1641: assertion failed: stmem.c:149: "size > 0" while processing certain Vary objects
- Fix build errors when using latest MinGW Windows environment
 2006-12-12 14:46:56 +00:00
jdolecek
fb1f3d0016 add NetBSD support to ARP ACL code 
enable arp-acl option also for NetBSD and OpenBSD

spell the configure option for ARP ACL properly
 2006-12-04 21:50:53 +00:00
taca
1c7cc80bfe pkgsrc chagnes 
* install pinger program setuid to make ICMP work; the problem noted by
  Heron Gallegos via private mail.

Key changes squid-2.6.STABLE4 to 2.6.STABLE5

* Bug #1776: 2.6.STABLE4 aufs fails to compile if coss isn't enabled
* COSS improvements and cleanups
* Bug #1785: Memory leak in handling of negatively cached objects
* Bug #1780: Incorrect Vary processing in combination with collapsed_forwarding
* Bug #1779: Delay pools fairness when multiple connections compete for bandwidth
* Bug #1796: Assertion error HttpHeader.c:914: "str"
* All comm loops now use the generic event framework
* a number of other minor and cosmetic bugfixes. See the list of squid-2.6.STABLE4 changes and the ChangeLog file for details.
 2006-11-09 15:16:21 +00:00
taca
e61cb07916 Update squid package to 2.6.4 (2.6.STABLE4). 
Changes to squid-2.6.STABLE4 (Sep 22 2006)

	- Bug #1736: Missing Italian translation of ERR_TOO_BIG error page
	- Windows port enhancement: added native exception handler with signal emulation
	- Fix the %un log_format tag again. Got broken in 2.6.STABLE2
	- Fix Squid crash when using %a in ERR_INVALID_REQ and ERR_INVALID_URL error messages.
	- Bug #212: variable %i always 0.0.0.0 in many error pages
	- Bug #1708: Ports in ACL accepts characters and out of range
	- Bug #1706: Squid time acl accepts invalid time range.
	- Fix another harmless fake_auth compiler warning on gcc 4.1.1 x86
	- Fix an harmless snmp_core.c compiler warning on gcc 4.1.1 x86
	- Bug #1744: squid-2.6.STABLE3 - fakeauth_auth crashing on certain requests
	- Bug #1746: Harmless off by one overrun in ncsa_auth md5 password validation
	- Bug #1598: start_announce cannot be disabled
	- Periodically flush cache.log to disk when "buffered_logs on" is set
	- Numerous COSS improvements and fixes
	- Windows port: merge of MinGW support
	- Windows port: Merged Windows threads support into aufs
	- Bug #1759: Windows port cachemgr.cgi attempts to write to file system root directory
	- Numerous portability fixes
	- Various minor statistics cleanup on 64-bit hosts with more than 4GB of memory
	- Bug #1758: HEAD on ftp:// URLs always returned 200 OK.
	- Bug #1760: FTP related memory leak
	- Bug #1770: WCCP2 weighted assignment
	- Bug #1768: Redundant DNS PTR lookups
	- Bug #1696: Add support for wccpv2 mask assignment
	- Bug #1774: ncsa_auth support for cramfs timestamps
	- Bug #1769: near-hit and filedescriptor usage missing in SNMP MIB
	- Bug #1725: cache_peer login=PASS documentation somewhat confusing
	- Bug #1590: Silence those ETag loop warnings
	- Bug #1740: Squid crashes on certain malformed HTTP responses
	- Bug #1699: assertion failed: authenticate.c:836: "auth_user_request != NULL"
	- Improve error reporting on unexpected CONNECT requests in accelerator mode
	- Cosmetic change to increase cache.log detail level on invalid requests
	- Bug #1229: http_port and other directives accept invalid ports
	- Reject http_port specifications using both transparent and accelerator options
	- Cosmetic cleanup to not dump stacktraces on configuration errors
 2006-09-26 03:40:20 +00:00
taca
25c7796eed Update www/squid pacakge to 2.6.3 (squid 2.6.STABLE3). 
Too may changes to mention here.
Please refer ${PREFIX}/share/doc/squid/RELEASENOTES.html.
 2006-09-13 14:41:58 +00:00
taca
e1be6bdcdf Apply recent patch: 
2006-06-21 12:25 (Cosmetic) Parent not always logged to access.log

Bump PKGREVISION.
 2006-07-09 12:23:22 +00:00
taca
54a6461ee4 Update www/squid package to 2.5.14nb1. 
2006-06-02 22:07 (Major) assertion failed: HttpReply.c:105: "rep"
 2006-06-12 15:36:11 +00:00
taca
20f19eb555 Update www/squid package to 2.5.14. 
This release is almost the same as 2.5.13nb1 except:

- documentation change; most of them are release name.
- one debug level change.
 2006-05-31 04:04:28 +00:00
taca
c370516ff2 Add recnet squi's official patches. 
* 2006-05-13 13:16 (Minor) On some systems POSIX AIO functions are in libaio
* 2006-05-14 15:41 (Medium) Memory leak in header processing related to external_acl or custom log formats
* 2006-05-14 15:41 (Major) memory leak in ident processing
* 2006-05-14 15:41 (Medium) Memleak in HTCP client code
* 2006-05-14 15:41 (Minor) Mime icons are not displayed when viewing ftp sites when
* 2006-05-14 15:41 (Cosmetic) SQUIDHOSTNAMELEN issues
* 2006-05-14 15:41 (Cosmetic) Current release is STABLE13, not 12..

Bump PKGREVISION.
 2006-05-18 05:17:35 +00:00
taca
531161f4e6 Correct default value (in comment) of cache_effective_user in squid.conf. 
Based on PR pkg/33458 from david l goodrich.

I won't bump PKGREVISION since this is very trivial change and I'll commit
another changes soon.
 2006-05-16 05:47:53 +00:00
taca
cd4846650e Update squid package to 2.5.13 (2.5.STABLE13). Most of changes are 
already in our previous package.  Here is changes from 2.5.12 (2.5.STABLE12):

Changes to squid-2.5.STABLE12 (12 Mar 2006)
	- [Minor] Fails to compile on Solaris and some other platforms
	  with undefined reference to setenv (Bug #1435)
	- [Cosmetic] Added WebDAV REPORT method to know HTTP methods list
	- [Minor] Squid ntlm_auth (not the Samba provided one) giving
	  odd results if --enable-ntlm-fail-open is used (Bug #1022)
	- [Minor] wbinfo_group.pl doesn't work with Samba 3.0.21 and later
	  (Bug #1472)
	- [Minor] Squid crash when asyncio function counters url accessed
	  from Cachemgr CGI (Bug #1464)
	- [Cosmetic] Linix compile warning about prctl called with too few
 	  arguments (Bug #1483)
	- [Minor] Wrong timezone declaration for 64 bit Irix (Bug #1479)
	- [Minor] Some 206 responses logged incorrectly (Bug #1511)
	- [Minor] Issues in processing ranges on objects &gt;2GB (Bug #437)
	- [Cosmetic] Segmentation fault on empty proxy_auth ACLs (Bug #1414)
	- [Minor] Ident access lists don't work in delay_access statements
	  (Bug #1428)
	- [Minor] Some clients support NTLM even if not initially negotiating
	  persistent connections (Bug #1447)
	- [Medium] 504 Gateway Time-out on FTP uploads (Bug #1459)
	- [Medium] delay pools given too much bandwidht after "-k reconfigure"
	  (Bug #1481)
	- [Cosmetic] New persistent_connection_after_error configuration
	  directive (Bug #1482)
	- [Cosmetic] Hangs at 100% CPU if /dev/null is not accessible (Bug
	  #1484)
	- [Minor] Fails to compile on Fedora Core 5 test 2 x86_64 (Bug #1492)
	- [Cosmetic] Typo in ftp.c (Bug #1507)
	- [Cosmetic] Error in FTP listings of files with -> in their name
	  (Bug #1508)
	- [Cosmetic] With Squid-2.5 there is no more the DUPLICATE IP logging
 	  in cache.log (Bug #779)
	- [Minor] Fails to process long host names (Bug #1434)
	- [Cosmetic] Azerbaijani errors translation (Bug #1454)
	- [Cosmetic] misleading error message message for bad/unresolveable
	  cache_peer name (Bug #1504)
	- [Cosmetic] confusing statistics on stateful helpers (NTLM auth)
	  (Bug #1506)
	- [Major] connstate memory leak (Bug #1522)
 2006-03-12 12:12:19 +00:00
taca
6b3eb99131 Update squid package to 2.5.12nb7, applying some official patches. 
o 2006-03-10 23:17 (Major) connstate memory leag
o 2006-03-10 23:17 (Cosmetic) confusing statistics on stateful helpers (NTLM auth)
o 2006-03-10 23:17 (Cosmetic) misleading error message message for bad/unresolveable cache_peer name
o 2006-03-10 23:17 (Cosmetic) Azerbaijani errors translation
o 2006-03-10 23:17 (Minor) Fails to process long host names
o 2006-03-10 23:17 (Cosmetic) With Squid-2.5 there is no more the DUPLICATE IP logging in cache.log
 2006-03-11 13:15:59 +00:00
taca
d081bcbe86 Update www/squid package to squid-2.5.12nb6. 
- Reflect update of official patches and addition of missing one.

    Added

    o 2006-02-26 14:47 (Cosmetic) Added WebDAV REPORT method to know
			HTTP methods list

    Updated

    o 2006-03-04 03:30 (Minor) Issues in processing ranges on objects >2GB
    o 2006-03-04 03:39 (Minor) Some 206 responses logged incorrectly

- A few fixes checking by pkglint.
 2006-03-04 13:40:07 +00:00
taca
fc1414bee6 Update www/squid pacakge to 2.5.12nb5. 
* 2006-02-26 00:06 (Cosmetic) Error in FTP listings of files with -> in their name
* 2006-02-26 00:06 (Cosmetic) Harmless typo in ftp.c
* 2006-02-26 00:06 (Minor) Fails to compile on Fedora Core 5 test 2 x86_64
* 2006-02-26 00:06 (Cosmetic) Hangs at 100% CPU if /dev/null is not accessible
* 2006-02-26 00:06 (Cosmetic) New persistent_connection_after_error configuration directive
* 2006-02-26 00:06 (Medium) delay pools given too much bandwidht after "-k reconfigure"
* 2006-02-26 00:06 (Medium) 504 Gateway Time-out on FTP uploads
* 2006-02-26 00:06 (Minor) Some clients support NTLM even if not initially negotiating persiste
* 2006-02-26 00:06 (Minor) Ident access lists don't work in delay_access statements
* 2006-02-26 00:06 (Cosmetic) Segmentation fault on empty proxy_auth ACLs
* 2006-02-26 00:06 (Minor) Issues in processing ranges on objects >2GB
* 2006-02-26 14:36 (Minor) Some 206 responses logged incorrectly
 2006-02-26 15:03:53 +00:00
taca
831e4543cd Update squid package to 2.5.12nb4. 
o 2006-01-22 17:28 (Minor) Wrong timezone declaration for 64 bit Irix
o 2006-01-15 01:23 (Cosmetic) prctl called with too few arguments
o 2005-12-26 16:41 (Minor) Squid crash when asyncio function counters url
			   accessed from Cachemgr CGI
o 2005-12-24 11:02 (Minor) wbinfo_group.pl doesn't work with Samba 3.0.21
o 2005-12-11 10:52 (Minor) bad credentials fetch (no user)

And replace "ls" in Makefile to ${LS}.
 2006-02-13 15:07:17 +00:00
joerg
d868ab2791 Comment out an unused function, which takes FILE (!) as parameter, 
breaking the build on DragonFly.
 2005-12-30 14:37:38 +00:00
taca
5b3c9817ff Use official patch instead of temporary one. 
2005-10-26 20:31 (Minor) fails to compile with undefined reference to setenv

Bump PKGREVISION.
 2005-10-31 09:53:41 +00:00
taca
2787a2cbc1 Add a patch to compile on SunOS from squid's bugzilla. 
Bump PKGREVISION.
 2005-10-25 14:05:22 +00:00
taca
81c518753b Update squid package to 2.5.12 (squid-2.5.STABLE12). 
Changes to squid-2.5.STABLE12 (22 Oct 2005)

	- [Major] Error introduced in 2.5.STABLE11 causing truncated responses
	  when using delay pools (Bug #1405)
	- [Cosmetic] Document that tcp_outgoing_* works badly in combination
	  with server_persistent_connections (Bug #454)
	- [Cosmetic] Add additinal tracing to squid_ldap_auth making
	  diagnostics easier on squid_ldap_auth configuration errors
	  (Bug #1395)
	- [Minor] $HOME not set when started as root (Bug #1401)
	- [Minor] httpd_accel_single_host breaks in combination with
	  server_persistent_connections (Bug #1402)
	- [Cosmetic] Setting CACHE_HTTP_PORT to configure was only partially
	  implemented, effectively ignored. (Bug #1403)
	- [Minor] CNAME based DNS addresses could get cached for longer
	  than intended (Bug #1404)
	- [Minor] Incorrect handling of squid-internal-dynamic/netdb exchanges
	  in transparently intercepting proxies (Bug #1410).
	- [Minor] Cache revalidations on HEAD requests causing poor cache
	  hit ratio (Bug #1411).
	- [Minor] Not possible to send 302 redirects via a redirector in
	  response to CONNECT requests (bug #1412)
	- [Minor] Incorrect handling of Set-Cookie on cache refreshes (Bug
	  #1419)
	- [Major] Segmentation fault crash in rfc1738_do_escape (Bug #1426)
	- [Minor] Delay pools class 3 fails on clients in network 255
	  (Bug #1431)
 2005-10-23 22:32:32 +00:00
taca
d4cdc85e5f Update squid package to 2.5.11 (2.5.STABLE11 + official 6 patches). 
o pkgsrc changes: change DIST_SUBDIR to ${PKGNAME_NOREV} only (stop
  using time stamp) since squid's patches are provided with revision
  if updated.


o official patches:

* 2005-09-28 21:52 (Minor) CNAME adresses remembered with wrong TTL
* 2005-09-28 21:16 (Cosmetic) Defining CACHE_HTTP_PORT does not set
				the default http_port
* 2005-09-28 21:07 (Minor) httpd_accel_single_host breaks in combination
				with server_persistent_connections
* 2005-09-28 21:07 (Cosmetic) More tracing in test mode of squid_ldap_auth
* 2005-09-28 21:07 (Cosmetic) Document that tcp_outgoing_xxx works badly
			in combination with server_persistent_connections
* 2005-09-27 22:29 (Major) Truncated responses when using delay pools


o changes from 2.5.10; most of them are already included in squid 2.5.10nb5
  package

Changes to squid-2.5.STABLE11 (22 Sep 2005)

	- [Minor] Workaround for servers sending double content-length headers
	  (Bug #1305)
	- [Cosmetic] Updated Spanish error messages by Nicolas Ruiz
	- [Cosmetic] Date header corrected on internal objects (icons etc)
	  (Bug #1275)
	- [Minor] squid -k fails in combination with chroot after patch for
	  bug 1157 (Bug #1307)
	- [Cosmetic] Segmentation fault if compiled with
	  --enable-ipf-transparent but denied access to the NAT device.
	  (Bug #1313)
	- [Minor] httpd_accel_signle_host incompatible with redireection
	  (Bug #1314)
	- [Minor] squid -k reconfigure internal corruption if the type of
	  a cache_dir is changed (Bug #1308)
	- [Minor] SNMP GETNEXT fails if the given OID is outside the Squid MIB
	  (Bug #1317)
	- [Minor] Title in FTP listings somewhat messed up after previous
	  patch for bug 1220 (Bug #1220)
	- [Minor] FTP listings uses "BASE HREF" much more than it needs to,
	  confusing authentication. (Bug #1204)
	- [Minor] winfo_group.pl only looked for the first group if multiple
	  groups were defined in the same acl. (Bug #1333)
	- [Cosmetic] Compiler warnings on some 64-bit platforms (Bug #1316)
	- [Cosmetic] Removed some debug output from wb_ntlm_atuh (Bug #518)
	- [Cosmetic] The new --with-build-environment=... option doesn't work
	- [Cosmetic] New 'mail_program' configuration option in squid.conf
	- [Minor] Fails to compile with ip-filter and ARP support on Solaris
	  x86 (Bug #199)
	- [Major] Segmentation fault in sslConnectTimeout (Bug #1355)
	- [Medium] assertion failed in StatHist.c:93  (Bug #1325)
	- [Minor] More chroot_dir and squid -k reconfigure issues (Bug #1331)
	- [Cosmetic] Invalid URLs in error messages when failing to connect
	  to peer, and a few other inconsistent error messages (Bug #1342)
	- [Cosmetic] Fails to compile with glibc -D_FORTIFY_SOURCE=2
	  (Bug #1344)
	- [Minor] Some odd FTP servers respond with 250 where 226 is expected
	  (Bug #1348)
	- [Cosmetic] Greek translation of error messages (Bug #1351)
	- [Major] Assertion failed store_status == STORE_PENDING (Bug #1368)
	- [Minor] squid_ldap_auth -U does not work (Bug #1370)
	- [Minor] SNMP cacheClientTable fails on "long" IP addresses
	  (Bug #1375)
	- [Minor] Solaris Sparc + IP-Filter compile error (Bug #1374)
	- [Minor] E-mail sent when cache dies is blocked from many antispam
	  rules (Bug #1380)
	- [Minor] LDAP helpers does not work with TLS (-Z option) (Bug #1389)
	- [Cosmetic] Incorrect store dir selection debug message on objects
	  larger than 2Gigabyte (Bug #1343)
	- [Cosmetic] header_id enum misused as an signed integer (Bug #1343)
	- [Cosmetic] Allow leaving core dumps when started as root (Bug #1335)
	- [Medium] Clients could bypass delay_pool settings by faking a cache
	  hit request (Bug #500)
	- [Minor] IP-Filter 4.X support (Bug #1378)
	- [Medium] Odd results on pipelined CONNECT requests
	- [Major] Squid crashing with "FATAL: Incorrect scheme in auth header"
	  when using NTLM authentication.
	- [Cosmetic] Odd results when pipeline_prefetch is combined with NTLM
	  authentication (bug #1396)
	- [Minor] invalid host was processed as IP 255.255.255.255 in dst acl
	  (Bug #1394)
	- [Cosmetic] New --with-maxfd=N configure option to override build
	  time filedescriptor limit test
	- [Minor] Added support for Windows code name "Longhorn" on Cygwin.
 2005-10-09 14:47:55 +00:00
taca
181781b587 Update squid package to squid-2.5.10nb5. 
Three new official patches are added.

o 2005-09-19 15:50 (Cosmetic) --with-maxfd=N configure option to override
			      max filedescriptors test
o 2005-09-16 21:58 (Minor) invalid host is processed as IP 255.255.255.255
			   in dst acl
o 2005-09-16 21:49 (Cosmetic) Odd results when pipeline_prefetch is combined
			      with NTLM authentication

One official patch was updated.

o 2005-09-20 12:29 (Major) FATAL: Incorrect scheme in auth header
 2005-09-21 15:06:07 +00:00
taca
4188f4fdb0 The latest official patch updated to make NTLM authentication work again. 
Bump PKGREVISION.
 2005-09-16 14:19:00 +00:00
taca
3a41160487 Update squid package to 2.5.10nb3. 
- pkgsrc update:

o s/SQUID_BACKEND/SQUID_BACKENDS/ as suggested by pkglint.
o Fix leaving ${PREFIX}/etc/squid/msntauth.conf.default out of PLIST.
o IP Filter related patches are incorporated to squid.


- Add/update official patches:

o 2005-09-15 11:15 (Major) FATAL: Incorrect scheme in auth header
o 2005-09-15 09:56 (Medium) Odd results on pipelined CONNECT requests
o 2005-09-13 23:59 (Minor) Transparent proxy problem with IP Filter
o 2005-09-11 01:53 (Medium) Clients bypassing delay pools by faking a cache
  hit
o 2005-09-11 01:42 (Cosmetic) Allow leaving core dumps on Linux
o 2005-09-11 01:21 (Cosmetic) enums can not be assumed to be signed ints
o 2005-09-11 01:21 (Cosmetic) Incorrect store dir selection debug message on
  objects >2G
o 2005-09-11 00:57 (Minor) LDAP helpers does not work with TLS (-Z option)
 2005-09-15 15:40:47 +00:00
taca
5ed8b5eb1e Update squid package to 2.5.10nb2. 
- pkgsrc changes: check IP filter's header file <ipl.h> as well as
		  <netinet/ipl.h>.

- Apply recent official patches including a security fix for DoS noted by
  http://secunia.com/advisories/16674/

* 2005-09-03 09:41 (Minor) E-mail sent when cache dies is blocked from many
			   antispam rules
* 2005-09-03 09:41 (Minor) Solaris 10 SPARC transparent proxy build problem
			   with ipfilter
* 2005-09-01 22:57 (Minor) snmo cacheClientTable fails on "long" IP addresses
* 2005-09-01 22:49 (Minor) squid_ldap_auth -U does not work
* 2005-09-01 22:44 (Major) assertion failed:
			   store.c:523: "e->store_status == STORE_PENDING"
* 2005-09-01 22:39 (Cosmetic) Greek translation of error messages
* 2005-09-01 22:31 (Minor) Some odd FTP servers respond with 250
			   where 226 is expected
* 2005-09-01 22:26 (Cosmetic) Fails to compile with glibc -D_FORTIFY_SOURCE=2
* 2005-09-01 22:18 (Cosmetic) Odd URLs when failing to forward request via
			      parent and several error messages inconsistent
			      in reported request details
* 2005-09-01 22:09 (Minor) More chroot_dir and squid -k reconfigure issues
* 2005-09-01 21:56 (Medium) assertion failed:
	StatHist.c:93: ((int) floor (0.99L + statHistVal(H, 0) - min)) == 0
* 2005-09-01 20:27 (Major) Segmentation fault in sslConnectTimeout
* 2005-08-19 09:31 (Minor) sync redeclarations when support for ARP acls
* 2005-08-14 17:05 (Cosmetic) New 'mail_program' configuration option in
			      squid.conf
 2005-09-04 05:07:05 +00:00
taca
6f17a6aa86 - Add missing optional installed files. 
- Slightly simplify installation of example configurations.
- Add official patches.

* 2005-07-11 00:46 (Cosmetic) The new --with-build-environment=...
				option doesn't work
* 2005-07-09 08:58 (Cosmetic) Allow wb_ntlm_auth to run more silent
* 2005-07-03 08:24 (Cosmetic) "make all" gives many warnings
* 2005-06-29 20:36 (Minor) wbinfo_group.pl only looks into the first
				group specified
* 2005-06-21 22:28 (Minor) FTP listings uses "BASE HREF" much more than
				it needs to,
* 2005-06-22 10:46 (Cosmetic) Title in FTP listings somewhat messed up
* 2005-06-19 21:03 (Minor) SNMP GETNEXT fails if the given OID is
				outside the Squid MIB
* 2005-06-19 09:39 (Minor) squid -k reconfigure internal corruption
				if the type of a cache_dir is changed
* 2005-06-13 22:55 (Minor) httpd_accel_signle_host incompatible
				with redireection
* 2005-06-30 08:49 (Minor) Core dump with --enable-ipf-transparent
				if access to NAT device not granted
* 2005-06-27 21:24 (Minor) squid -k fails in combination with chroot
				after patch for bug 1157
* 2005-06-09 08:01 (Minor) Squid internal icons served up with slightly
				incorrect HTTP headers
* 2005-06-06 21:38 (Cosmetic) Updated Spanish error messages

Bump PKGREVISION.
 2005-08-09 15:48:29 +00:00
taca
723d67dc4e - Fix build problem with IP Filter prior to 4.0; NetBSD 1.6.2. 
- Avoid use of ":ts" modifier of make(1) since NetBSD 1.6.2's make(1)
  dosen't support it.  It might be fix "diskd" PKG_OPTION problem, too.
- Remove extra "--enable-async-io" configure option.

No PKGREVISION change.
 2005-06-07 14:19:10 +00:00
taca
cf4dc39b61 Update squid package to 2.5.10 
* squid 2.5.STABLE10 + official + one official patch.

    - 2005-05-25 23:01 (Cosmetic) Double content-length often harmless

  Other fixes are already done by official patches for squid 2.5.STABLE9.

* Add missing cachemgr.cgi.8 to PLIST.
* Introduce options.mk which may need to be brushed more.
* Drop support for diskd on Darwin since diskd needs System V msg function
  which dosen't supported on Darwin.
* Real fix for transparent proxy with IP Filter, fix PR pkg/30085.
 2005-06-05 14:20:25 +00:00
taca
ff7d20926e Update squid package to 2.5.9nb11. 
Apply 9 official fixes including security improvement in DNS lookup.

I still disable transparent_port.patch because it needs a missing header
file of IP Filter.  NetBSD current and 3.0_BETA already fixed this problem
but still netbsd-2/2-0 branches.  I will apply it after netbsd-2/2-0
branches fix this problem.  (And this fix needs to update squid package
to 2.5.STABLE10 which is RC3 now.)

* 2005-05-10 23:11 (Cosmetic)
		Extended documentation of the always_direct directive

* 2005-05-10 22:33 (Medium)
		assertion failed: store_client.c:343:
		"storeSwapOutObjectBytesOnDisk(mem) > sc->copy_offset"

* 2005-05-11 19:19 (Security issue)
		DNS lookups unreliable on untrusted networks

* 2005-05-09 01:51 (Minor)
		Allow dstdomain and dstdom_regex to match IP based hosts

* 2005-05-08 14:01 (Cosmetic) Minor arp ACL improvements

* 2005-05-04 18:09 (Minor)
		SNMP Agent updates to support SNMP Version 2 and bulk requests

* 2005-05-01 10:58 (Cosmetic) Cosmetic change to DISKD statistics

* 2005-04-30 12:58 (Medium)
		Poor hot object cache hit ratio and sporadic assertion
		failed: store_swapin.c: e->mem_status == NOT_IN_MEMORY

* 2005-04-25 16:36 (Cosmetic) Minor aufs improvements
 2005-05-12 16:09:48 +00:00
taca
805f8ace86 Disable squid-2.5.STABLE9-transparent_port.patch since it is broken with 
IP Filter 4.1 and later.  (It has no problem on IP Filter 3.x, but it is
difficult apply it conditionally with IP Filter's version.)

This apparently fix PR pkg/30085.  But note, Squid's transparent proxy
with IP Filter dosen't work.  It is worked without IP Filter's NAT process.
So, web acceess through squid may fail for HTTP 1.0 client which dosen't
send Host header.

Bump PKGREVISION (squid-2.5.9nb10).
 2005-05-01 23:17:49 +00:00
taca
433471a6b1 squid package maintainous. 
- Fix bad PID directory of squid binary introduced by previous pkgsrc.
- Update DIST_SUBDIR through DIST_STAMP since some of patch files
  are updated.
- Fix error in doc/Makefile with nbmake.
- Newer patch (aufs improvement) aren't included now.

Bump PKGREVISION.
 2005-04-26 16:19:43 +00:00
taca
e57babd9e7 Add new four official patches. 
o 2005-04-23 01:38 (Minor Security)
	Fix for CVE-1999-0710: cachemgr malicouse use
o 2005-04-22 20:48 (Cosmetic) PID file check fails when chrooting
o 2005-04-24 16:35 (Minor)
	Make the use of the %m error page to return auth info messages
o 2005-04-22 20:21 (Minor)
	Unrecognized cache-control directives are silently dropped

pkgsrc change.

- remove aufs from store I/O backend until it controlled by options.mk
  frame work.
- remove patch-cd; it is covered by squid-2.5.STABLE9-transparent_port.patch.

Bump PKGREVISION.
 2005-04-25 15:39:13 +00:00
taca
be324c7a54 Update squid package to squid-2.5.9nb7. 
o 2005-04-21 10:31 (Cosmetic)
	Correctly read DOS/Windows formatted config files with CRLF as
	line terminator
o 2005-04-20 21:55 (Minor) Unable to run "squid -k" when hostname cannot
	be determined
o 2005-04-20 21:55 (Minor) fix transparent proxying when squid listens
	on NATed non-80 port
o 2005-04-21 10:46 (Cosmetic) Missing newlines in debug statements
o 2005-04-20 21:36 (Cosmetic) Error template substitution for
	authenitcated user name

Because of update of squid-2.5.STABLE9-2GB.patch, DIST_SUBDIR updated again.
 2005-04-21 15:49:53 +00:00
taca
e487b00f22 Two of offcial patches are updated. 
- squid-2.5.STABLE9-LDAP_SUN_SDK.patch
	- squid-2.5.STABLE9-2GB.patch

Bump PKGREVISION.
 2005-04-20 00:55:41 +00:00
taca
b1f706bfa8 Update squid package to 2.5.9nb5. 
* Add one more offcial patch:

    - 2005-04-05 23:05 (Cosmetic) should syslog to daemon facility not local4

* One patch updated, so update DIST_SUBDIR through DIST_STAMP change.

* Add aufs to --enable-storeio configuration.

TODO:	use <bsd.options.mk> frame work and allow to use
	--enable-pf-transparent which is mutual exclusive parameter
	with --enable-ipf-transparent.
 2005-04-19 15:14:31 +00:00
tron
4d3ec6dc8a "squid-2.5.STABLE9-2GB.patch" was updated again. Update checksum, 
use different sub directory and bump package revision.
 2005-04-04 14:16:08 +00:00
taca
b0cd9a46c1 Oops, I forgot the update of DIST_STAMP just before. 2005-04-04 01:35:22 +00:00
taca
5e298c11b5 One of official patch has been updated. 
* 2005-04-04 00:19 (Medium)
	Fails to process requests for files larger than 2GB in size

Since the name of the patch file is the same as before, DIST_SUBDIR has
been udpated via DIST_STAMP.

Bump PKGREVISION.
 2005-04-04 01:12:37 +00:00
taca
8e27bc7b0c Update squid packate to 2.5.9nb2. 
Add these official patches:

* 2005-03-30 22:51 (Cosmetic)
	external acls requiring authentication does not request new
	credentials on access denials like proxy_auth does.
* 2005-03-29 09:52 (Cosmetic)
	New cachemgr pending_objects and client_objects actions
* 2005-03-26 23:53 (Minor) rename() related cleanup
* 2005-03-30 22:51 (Medium)
	Fails to process requests for files larger than 2GB in size
* 2005-03-19 23:57 (Cosmetic)
	aufs warning about open event filedescriptors on shutdown
* 2005-03-19 01:35 (Minor) --disable-hostname-checks not working
* 2005-03-19 01:11 (Cosmetic) LDAP helpers fails to compile with SUN LDAP SDK
* 2005-03-21 20:44 (Minor)
	CONNECT requests truncated if client side disconnects first
	assertion failed: comm.c:430: "ntohs(address->sin_port) != 0"
* 2005-03-19 00:25 (Minor)
	Basic authentication fails with very long logins or password
* 2005-03-29 08:45 (Minor) Several minor aufs issues
* 2005-03-09 15:46 (Cosmetic)
	Extend relaxed_header_parser to work around "excess data from"
	errors from many major web servers.
* 2005-03-09 15:46 (Cosmetic)
	Duplicate content-length headers logged as conflicting with
	relaxed_header_parser off
* 2005-03-09 15:46 (Cosmetic)
	Defer digest fetch if the peer is not allowed to be used
* 2005-03-10 23:38 (Minor) Incorrect use of ctype functions
* 2005-03-15 04:27 (Minor) compile warnings due to pid_t not being an int
* 2005-03-09 15:46 (Minor)
	bzero is a non-standard function not available on all platforms
* 2005-03-09 15:46 (Cosmetic)
	Check several squid.conf directives for int overflows
* 2005-03-09 15:46 (Cosmetic) Clarify delay_access function
* 2005-03-09 15:46 (Minor)
	reload_into_ims fails to revalidate negatively cached entries
* 2005-03-09 15:46 (Minor) Handle odd date formats
 2005-03-31 16:44:25 +00:00
taca
b47fbffcd6 Update squid to 2.5.9nb1. 
* 2005-03-04 22:48 (Cosmetic Security)
	Unexpected access control results on configuration errors

* 2005-03-04 11:55 (Minor)
	Links in FTP listings without / fails due to missing BASE HREF

* 2005-03-04 11:55 (Minor)
	Fails to parse the EPLF FTP directory format

* 2005-03-03 02:26 (Minor Security)
	Race condition related to Set-Cookie header
 2005-03-06 13:30:48 +00:00
taca
14037da5c4 Update squid package to 2.5.9 (2.5.STABLE9). 
There is no runtime change from 2.5.8nb3.

- Fix for a wrong configure warning on Solaris 9 x86 when enabling ARP
  ACl support: The effective host type is i386-pc-solaris2.9.

- Documentation update for squid 2.5.STALBE9.
 2005-03-01 11:16:57 +00:00