head 1.10; access; symbols pkgsrc-2013Q2:1.10.0.16 pkgsrc-2013Q2-base:1.10 pkgsrc-2012Q4:1.10.0.14 pkgsrc-2012Q4-base:1.10 pkgsrc-2011Q4:1.10.0.12 pkgsrc-2011Q4-base:1.10 pkgsrc-2011Q2:1.10.0.10 pkgsrc-2011Q2-base:1.10 pkgsrc-2009Q4:1.10.0.8 pkgsrc-2009Q4-base:1.10 pkgsrc-2008Q4:1.10.0.6 pkgsrc-2008Q4-base:1.10 pkgsrc-2008Q3:1.10.0.4 pkgsrc-2008Q3-base:1.10 cube-native-xorg:1.10.0.2 cube-native-xorg-base:1.10 pkgsrc-2008Q2:1.9.0.12 pkgsrc-2008Q2-base:1.9 cwrapper:1.9.0.10 pkgsrc-2008Q1:1.9.0.8 pkgsrc-2008Q1-base:1.9 pkgsrc-2007Q4:1.9.0.6 pkgsrc-2007Q4-base:1.9 pkgsrc-2007Q3:1.9.0.4 pkgsrc-2007Q3-base:1.9 pkgsrc-2007Q2:1.9.0.2 pkgsrc-2007Q2-base:1.9 pkgsrc-2007Q1:1.8.0.6 pkgsrc-2007Q1-base:1.8 pkgsrc-2006Q4:1.8.0.4 pkgsrc-2006Q4-base:1.8 pkgsrc-2006Q3:1.8.0.2 pkgsrc-2006Q3-base:1.8 pkgsrc-2006Q2:1.7.0.4 pkgsrc-2006Q2-base:1.7 pkgsrc-2006Q1:1.7.0.2 pkgsrc-2006Q1-base:1.7 pkgsrc-2005Q4:1.6.0.8 pkgsrc-2005Q4-base:1.6 pkgsrc-2005Q3:1.6.0.6 pkgsrc-2005Q3-base:1.6 pkgsrc-2005Q2:1.6.0.4 pkgsrc-2005Q2-base:1.6 pkgsrc-2005Q1:1.6.0.2 pkgsrc-2005Q1-base:1.6 pkgsrc-2004Q4:1.5.0.4 pkgsrc-2004Q4-base:1.5 pkgsrc-2004Q3:1.5.0.2 pkgsrc-2004Q3-base:1.5 pkgsrc-2004Q2:1.4.0.8 pkgsrc-2004Q2-base:1.4 pkgsrc-2004Q1:1.4.0.6 pkgsrc-2004Q1-base:1.4 pkgsrc-2003Q4:1.4.0.4 pkgsrc-2003Q4-base:1.4 netbsd-1-6-1:1.4.0.2 netbsd-1-6-1-base:1.4 netbsd-1-6:1.3.0.8 netbsd-1-6-RELEASE-base:1.3 pkgviews:1.3.0.4 pkgviews-base:1.3 buildlink2:1.3.0.2 buildlink2-base:1.3 netbsd-1-5-PATCH003:1.3 netbsd-1-5-PATCH001:1.2; locks; strict; comment @# @; 1.10 date 2008.09.12.14.59.52; author taca; state dead; branches; next 1.9; 1.9 date 2007.05.13.16.45.44; author taca; state Exp; branches; next 1.8; 1.8 date 2006.09.13.14.41.58; author taca; state Exp; branches; next 1.7; 1.7 date 2006.03.12.12.12.19; author taca; state Exp; branches; next 1.6; 1.6 date 2005.02.11.14.47.18; author taca; state Exp; branches; next 1.5; 1.5 date 2004.08.22.15.11.09; author taca; state Exp; branches 1.5.4.1; next 1.4; 1.4 date 2002.10.13.16.43.21; author taca; state Exp; branches; next 1.3; 1.3 date 2001.12.12.17.06.20; author taca; state Exp; branches; next 1.2; 1.2 date 2000.11.02.10.41.45; author jdolecek; state Exp; branches; next 1.1; 1.1 date 2000.11.02.10.31.39; author jdolecek; state Exp; branches; next ; 1.5.4.1 date 2005.02.11.23.30.56; author snj; state Exp; branches; next ; desc @@ 1.10 log @Restructuring Squid package: * Now www/squid directory is common directory for squid packages. * package options clean up and all options are described. * LDAP helper support. (PR pkg/39386) * DESTDIR support. * Move some MESSAGE to documation directory. Next, I'll import squid26, squid27 and squid30 packages. @ text @$NetBSD: patch-al,v 1.9 2007/05/13 16:45:44 taca Exp $ --- src/structs.h.orig 2007-04-27 08:11:51.000000000 +0900 +++ src/structs.h @@@@ -599,6 +599,7 @@@@ struct _SquidConfig { wordlist *mcast_group_list; wordlist *dns_testname_list; wordlist *dns_nameservers; + wordlist *log_mime_hdrs_list; peer *peers; int npeers; struct { @ 1.9 log @Update squid pacakge to 2.6.13 (2.6.STABLE13). Changes to squid-2.6.STABLE13 (11 May 2007) - Make sure reply headers gets sent even if there is no body available yet, fixing RealMedia streaming over HTTP issues. - Undo an accidental name change of storeUnregisterAbort. - Kill an ancient malplaced storeUnregisterAbort call from ftp.c - Bug #1814: SSL memory leak on persistent SSL connections - Don't log ECONNREFUSED/ECONNABORTED accept failures in cache.log - Cosmetic fix: added missing newline in WCCPv2 configuration dump. - Ukrainan error messages - Convert various error pages from DOS to UNIX text format - Bug #1820: COSS assertion failure t->length == MD5_DIGEST_CHARS - Clarify the max-conn=n cache_peer option syntax slightly - Bug #1892: COSS segfault on shutdown - Windows port: fix undefined ECONNABORTED - Make refreshIsCachable handle ETag as a cache validator, not only last-modified - in_port_t is not portable, use unsigned short instead - Fix fs / auth / snmp dependencies - Portability: statfs() may reqire #include @ text @d1 1 a1 1 $NetBSD: patch-al,v 1.8 2006/09/13 14:41:58 taca Exp $ @ 1.8 log @Update www/squid pacakge to 2.6.3 (squid 2.6.STABLE3). Too may changes to mention here. Please refer ${PREFIX}/share/doc/squid/RELEASENOTES.html. @ text @d1 1 a1 1 $NetBSD: patch-al,v 1.7 2006/03/12 12:12:19 taca Exp $ d3 1 a3 1 --- src/structs.h.orig 2006-07-31 08:27:03.000000000 +0900 d5 1 a5 1 @@@@ -597,6 +597,7 @@@@ struct _SquidConfig { @ 1.7 log @Update squid package to 2.5.13 (2.5.STABLE13). Most of changes are already in our previous package. Here is changes from 2.5.12 (2.5.STABLE12): Changes to squid-2.5.STABLE12 (12 Mar 2006) - [Minor] Fails to compile on Solaris and some other platforms with undefined reference to setenv (Bug #1435) - [Cosmetic] Added WebDAV REPORT method to know HTTP methods list - [Minor] Squid ntlm_auth (not the Samba provided one) giving odd results if --enable-ntlm-fail-open is used (Bug #1022) - [Minor] wbinfo_group.pl doesn't work with Samba 3.0.21 and later (Bug #1472) - [Minor] Squid crash when asyncio function counters url accessed from Cachemgr CGI (Bug #1464) - [Cosmetic] Linix compile warning about prctl called with too few arguments (Bug #1483) - [Minor] Wrong timezone declaration for 64 bit Irix (Bug #1479) - [Minor] Some 206 responses logged incorrectly (Bug #1511) - [Minor] Issues in processing ranges on objects >2GB (Bug #437) - [Cosmetic] Segmentation fault on empty proxy_auth ACLs (Bug #1414) - [Minor] Ident access lists don't work in delay_access statements (Bug #1428) - [Minor] Some clients support NTLM even if not initially negotiating persistent connections (Bug #1447) - [Medium] 504 Gateway Time-out on FTP uploads (Bug #1459) - [Medium] delay pools given too much bandwidht after "-k reconfigure" (Bug #1481) - [Cosmetic] New persistent_connection_after_error configuration directive (Bug #1482) - [Cosmetic] Hangs at 100% CPU if /dev/null is not accessible (Bug #1484) - [Minor] Fails to compile on Fedora Core 5 test 2 x86_64 (Bug #1492) - [Cosmetic] Typo in ftp.c (Bug #1507) - [Cosmetic] Error in FTP listings of files with -> in their name (Bug #1508) - [Cosmetic] With Squid-2.5 there is no more the DUPLICATE IP logging in cache.log (Bug #779) - [Minor] Fails to process long host names (Bug #1434) - [Cosmetic] Azerbaijani errors translation (Bug #1454) - [Cosmetic] misleading error message message for bad/unresolveable cache_peer name (Bug #1504) - [Cosmetic] confusing statistics on stateful helpers (NTLM auth) (Bug #1506) - [Major] connstate memory leak (Bug #1522) @ text @d1 1 a1 1 $NetBSD: patch-al,v 1.6 2005/02/11 14:47:18 taca Exp $ d3 1 a3 1 --- src/structs.h.orig 2006-03-11 07:54:38.000000000 +0900 d5 1 a5 1 @@@@ -540,6 +540,7 @@@@ struct _SquidConfig { @ 1.6 log @Update squid package to 2.5.8 (squid-2.5.STABLE8). Most of these changes are already included in previous squid-2.5.7nb12. But last one is really new one. Changes to squid-2.5.STABLE8 (11 Feb 2005) - [Minor] 100% CPU usage on half-closed PUT/POST requests (Bug #354, #1096) - [Cosmetic] Document -v (protocol version) option to LDAP helpers - [Minor] The new req_header and resp_header acls segfaults immediately on parse of squid.conf (Bug #961) - [Minor] Failure to shut down busy helpers on -k rotate/reconfigure (Bug #1118) - [Minor] Don't use O_NONBLOCK on disk files. (Bug #1102) - [Minor] Squid fails to close TCP connection after blank HTTP response (Bug #1116) - [Minor security] Random error messages in response to malformed host name (Bug #1143) - [Minor] PURGE should not be able to delete internal objects (Bug #1112) - [Minor] httpd_accel_port 0 (virtual) not working correctly (Bug #1121) - [Minor] cachemgr vm_objects segfault (Bug #1149) - [Minor security] Confusing results on empty acl declarations (Bug #1166) - [Minor] Don't close all "other" filedescriptors on startup (Bug #1177) - [Minor] fakeauth_auth memory leak and NULL pointer access (Bug #1183) - [Security] buffer overflow bug in gopherToHTML() (Bug #1189) - [Medium security] Denial of service with forged WCCP messages (Bug #1190) - [Minor] DNS related memory leak on certain malformed DNS responses (Bug #1197) - [Minor] Internal DNS sometimes truncates host names in reverse (PTR) lookups (Bug #1136) - [Minor Security] Add sanity checks on LDAP user names (Bug #1187) - [Security] Harden Squid agains HTTP request smuggling attacks - [Minor] Icon URLs fails in non-anonymous FTP directory listings is short_icon_urls is on (Bug #1203) - [Security] Harden Squid agains HTTP response splitting attacks (Bug #1200) - [Medium security] Buffer overflow in WCCP recvfrom() call (Bug #1217) - [Security] Properly handle oversized reply headers (Bug #1216) - [Minor] LDAP helpers search fixed to properly ask for no attributes - [Minor] A sporadic segmentation fault when using ntlm authentication fixed (Bug #1127) - [Major] Segmentation fault on failed PUT/POST requests (Bug #1224) - [Medium] Persistent connection mismatch on failed PUT/POST request (Bug #1122) - [Minor] WCCP easily disturbed by forged packets (Bug #1225) - [Minor] Password management in ftp:// gatewaying improved (Bug #1226) - [Major] HTTP reply data corruption in certain situations involving reply headers split over multiple packets (Bug #1233) @ text @d1 1 a1 1 $NetBSD: patch-al,v 1.5 2004/08/22 15:11:09 taca Exp $ d3 1 a3 1 --- src/structs.h.orig 2005-02-04 09:30:01.000000000 +0900 d5 1 a5 1 @@@@ -537,6 +537,7 @@@@ struct _SquidConfig { @ 1.5 log @Update squid package to 2.5.6 (squid 2.5.STALBE6 + official patches). Squid 2.5.STABLE5 to 2.5.STABLE6: * Several "Assertion error" bugs fixed * Several "Segmentation fault" bugs fixes * Corrects a security issue in the old ntlm_auth NTLM helper used in transparent NTLM authentication to a NT domain without using samba. * Processing of Vary: * and Vary on error messages corrected * a large number of minor and cosmetic bugfixes. See the list of squid-2.5.STABLE5 patches and the ChangeLog file for details. 2.5.STABLE56 official patches: * 2004-08-20 08:18 (Major) NTLM authentication denial of service * 2004-08-14 21:07 (Minor) external_acl does not handle newlines * 2004-08-09 14:03 (Minor) Supplementary group memberships not set * 2004-08-05 20:33 (Medium) Segfaults and other strange crashes when using heap policies * 2004-08-06 11:05 (Cosmetic) Unknown %X errorpage codes incorrectly quoted * 2004-08-17 12:22 (Cosmetic) Grammatical corrections in squid.conf.default * 2004-07-27 21:52 (Minor) NTLM authentication truncated * 2004-07-17 22:43 (Minor) Memory leak in client_db * 2004-07-17 20:11 (Cosmetic) Add delay pools information to active_requests * 2004-07-17 19:57 (Minor) case insensitive authentication * 2004-07-17 19:48 (Cosmetic) Warn if cache_dir ufs can not create files * 2004-07-17 16:33 (Cosmetic) HEAD requests may return stale information * 2004-07-17 16:33 (Minor) Partial hit results in TCP_HIT, not TCP_MISS * 2004-07-17 16:33 (Cosmetic) request_header_max_size configuration option doesn't work correctly * 2004-07-29 13:29 (Minor) A large number of queued DNS lookups for the same domain * 2004-08-10 09:40 (Minor) LDAP helpers update * 2004-07-14 16:29 (Medium) storeCreate: no valid swapdirs for this object @ text @d1 1 a1 1 $NetBSD: patch-al,v 1.4 2002/10/13 16:43:21 taca Exp $ d3 1 a3 1 --- src/structs.h.orig 2004-08-20 18:35:25.000000000 +0900 d5 1 a5 1 @@@@ -527,6 +527,7 @@@@ struct _SquidConfig { @ 1.5.4.1 log @Pullup ticket 280 - requested by Takahiro Kambe update squid Revisions pulled up: pkgsrc/www/squid/Makefile 1.134 pkgsrc/www/squid/distinfo 1.80 pkgsrc/www/squid/patches/patch-al 1.6 pkgsrc/www/squid/patches/patch-cd 1.5 Module Name: pkgsrc Committed By: taca Date: Fri Feb 11 14:47:18 UTC 2005 Modified Files: pkgsrc/www/squid: Makefile distinfo pkgsrc/www/squid/patches: patch-al patch-cd Log Message: Update squid package to 2.5.8 (squid-2.5.STABLE8). Most of these changes are already included in previous squid-2.5.7nb12. But last one is really new one. Changes to squid-2.5.STABLE8 (11 Feb 2005) - [Minor] 100% CPU usage on half-closed PUT/POST requests (Bug #354, #1096) - [Cosmetic] Document -v (protocol version) option to LDAP helpers - [Minor] The new req_header and resp_header acls segfaults immediately on parse of squid.conf (Bug #961) - [Minor] Failure to shut down busy helpers on -k rotate/reconfigure (Bug #1118) - [Minor] Don't use O_NONBLOCK on disk files. (Bug #1102) - [Minor] Squid fails to close TCP connection after blank HTTP response (Bug #1116) - [Minor security] Random error messages in response to malformed host name (Bug #1143) - [Minor] PURGE should not be able to delete internal objects (Bug #1112) - [Minor] httpd_accel_port 0 (virtual) not working correctly (Bug #1121) - [Minor] cachemgr vm_objects segfault (Bug #1149) - [Minor security] Confusing results on empty acl declarations (Bug #1166) - [Minor] Don't close all "other" filedescriptors on startup (Bug #1177) - [Minor] fakeauth_auth memory leak and NULL pointer access (Bug #1183) - [Security] buffer overflow bug in gopherToHTML() (Bug #1189) - [Medium security] Denial of service with forged WCCP messages (Bug #1190) - [Minor] DNS related memory leak on certain malformed DNS responses (Bug #1197) - [Minor] Internal DNS sometimes truncates host names in reverse (PTR) lookups (Bug #1136) - [Minor Security] Add sanity checks on LDAP user names (Bug #1187) - [Security] Harden Squid agains HTTP request smuggling attacks - [Minor] Icon URLs fails in non-anonymous FTP directory listings is short_icon_urls is on (Bug #1203) - [Security] Harden Squid agains HTTP response splitting attacks (Bug #1200) - [Medium security] Buffer overflow in WCCP recvfrom() call (Bug #1217) - [Security] Properly handle oversized reply headers (Bug #1216) - [Minor] LDAP helpers search fixed to properly ask for no attributes - [Minor] A sporadic segmentation fault when using ntlm authentication fixed (Bug #1127) - [Major] Segmentation fault on failed PUT/POST requests (Bug #1224) - [Medium] Persistent connection mismatch on failed PUT/POST request (Bug #1122) - [Minor] WCCP easily disturbed by forged packets (Bug #1225) - [Minor] Password management in ftp:// gatewaying improved (Bug #1226 - [Major] HTTP reply data corruption in certain situations involving reply headers split over multiple packets (Bug #1233) @ text @d1 1 a1 1 $NetBSD: patch-al,v 1.6 2005/02/11 14:47:18 taca Exp $ d3 1 a3 1 --- src/structs.h.orig 2005-02-04 09:30:01.000000000 +0900 d5 1 a5 1 @@@@ -537,6 +537,7 @@@@ struct _SquidConfig { @ 1.4 log @Update squid to 2.5.1 with several patches from http://www.squid-cache.org/Versions/v2/2.5/bugs/. Now try to install more authentication modules, but those modules should be handled by proper frame work (Curretly, SASL modules aren't handled). Changes to squid-2.5 (): - Major rewrite of proxy authentication to support other schemes than basic. First in the line is NTLM support but others can easily be added (minimal digest is present). See Programmers Guide. (Robert Collins & Francesco Chemolli) - Reworked how request bodies are passed down to the protocols. Now all client side processing is inside client_side.c, and the pass and pump modules is no longer used. - Optimized searching in proxy_auth and ident ACL types. Squid should now handle large access lists a lot more efficiently. (Francesco Chemolli) - Fixed forwarding/peer loop detection code (Brian Degenhardt) - now a peer is ignored if it turns out to be us, rather than committing suicide - Changed the internal URL code to obey appendDomain for internal objects if it needs appending. This fixes weirdnesses where a machine can think it is "foo.bar.com", and "foo" is requested. (Brian Degenhardt) - Added the use of Automake to create the Makefile.in's in the squid source tree. This will allow libtool in the future, and immediately allows better dependency tracking - with or without gcc - as well as the dist-all and distcheck targets for developers which respectively build a tar.gz and a tar.bz2 distribution, and check that what will be distributed builds. - Added TOS and source address selection based on ACLs, written by Roger Venning. This allows administrators to set the TOS precedence bits and/or the source IP from a set of available IPs based upon some ACLs, generally to map different users to different outgoing links and traffic profiles. - Added 'max-conn' option to 'cache_peer' - Added SSL gatewaying support, allowing Squid to act as a SSL server in accelerator setups. - SASL authentication helper by Ian Castle - msntauth updated to v2.0.3 - no_cache now applies to cache hits as well as cache misses - the Gopher client in Squid has been significantly improved - Squid now sanity checks FTP data connections to ensure the connection is from the requested server. Can be disabled if needed by turning off the ftp_sanitycheck option. - external acl support. A mechanism where flexible ACL checks can be driven by external helpers. See the external_acl_type and acl external directives. - Countless other small things and fixes - HTML pages generated by Squid or CacheMgr as well as the ERR documents now contain a doctype declaration so that browsers know which HTML specification the document uses. In addition to that they have a new look (background-color, font) and are valid according to the HTML standards at www.w3.org. (Clemens Löser) - Login and password send to Basic auth helpers is now URL escaped to allow for spaces and other "odd" characters in logins and passwords - Proxy Authentication is no longer blindly forwarded to peer caches if not used locally. If forwarding of proxy authentication is desired then it must now be configured with the login=PASS cache_peer option. - Responses with Vary: in the header are now cached by squid. (Henrik Nordstrom). - Removed unused 'siteselect_timeout' directive. @ text @d1 1 a1 1 $NetBSD: patch-al,v 1.3 2001/12/12 17:06:20 taca Exp $ d3 1 a3 1 --- src/structs.h.orig Sat Oct 12 23:14:04 2002 d5 1 a5 1 @@@@ -525,6 +525,7 @@@@ struct _SquidConfig { @ 1.3 log @Update squid to 2.4.3 (squid-2.4.STABLE3), referring to tech-pkg's mail from "Ciarcinski, Adam \(ISS Brussels\)" . From ChangeLog: Changes to Squid-2.4.STABLE3 (Nov 28, 2001): - Fixed bug #255: core dump on SSL/CONNECT if access denied by miss_access - Fixed bug #246: corrupt on-disk meta information preventing rebuilds of lost swap.state files - Fixed bug #243: squid_ldap_auth now supports spaces in passwords - Fixed a coredump when creating FTP directories - Fixed a compile time problem with statHistDump prototype mistmatch, reported by some compilers - Fixed a potential coredump situation on snmpwalk in certain configurations - Fixed bug #229: filedescriptor leakage in the "aufs" cache_dir store implementation - Serbian error message translations I added following changes, too. o honor PKG_SYSCONFDIR keep SQUID_SYSCONFDIR effective. o Add --disable-internal-dns. This made external dnsserver available. External dnsserver could be disabled with configuration file. o Enable optimization with "-O". o Fix a problem to access nat device when transparent proxy enabled. This fix will be contained in squid 2.5 release. o setproctitle() hack for external dnsserver from daemonnews's article. @ text @d1 1 a1 1 $NetBSD: patch-al,v 1.2 2000/11/02 10:41:45 jdolecek Exp $ d3 1 a3 1 --- src/structs.h.orig Tue Oct 9 00:22:03 2001 d5 1 a5 1 @@@@ -368,6 +368,7 @@@@ @ 1.2 log @fix path to patched files @ text @d1 1 a1 1 $NetBSD: patch-al,v 1.1 2000/11/02 10:31:39 jdolecek Exp $ d3 3 a5 3 --- src/structs.h.orig Thu Nov 2 09:51:20 2000 +++ src/structs.h Thu Nov 2 09:52:03 2000 @@@@ -359,6 +359,7 @@@@ struct _SquidConfig { @ 1.1 log @add log_mime_hdrs_list directive - this directive specifies list of headers to log into access log when log_mime_hdrs is on the change will be sent to Squid maintainers for possible future inclusion shortly @ text @d1 1 a1 1 $NetBSD$ d3 2 a4 2 --- structs.h.orig Thu Nov 2 09:51:20 2000 +++ structs.h Thu Nov 2 09:52:03 2000 @