head 1.11; access; symbols pkgsrc-2013Q2:1.11.0.16 pkgsrc-2013Q2-base:1.11 pkgsrc-2012Q4:1.11.0.14 pkgsrc-2012Q4-base:1.11 pkgsrc-2011Q4:1.11.0.12 pkgsrc-2011Q4-base:1.11 pkgsrc-2011Q2:1.11.0.10 pkgsrc-2011Q2-base:1.11 pkgsrc-2009Q4:1.11.0.8 pkgsrc-2009Q4-base:1.11 pkgsrc-2008Q4:1.11.0.6 pkgsrc-2008Q4-base:1.11 pkgsrc-2008Q3:1.11.0.4 pkgsrc-2008Q3-base:1.11 cube-native-xorg:1.11.0.2 cube-native-xorg-base:1.11 pkgsrc-2008Q2:1.10.0.18 pkgsrc-2008Q2-base:1.10 cwrapper:1.10.0.16 pkgsrc-2008Q1:1.10.0.14 pkgsrc-2008Q1-base:1.10 pkgsrc-2007Q4:1.10.0.12 pkgsrc-2007Q4-base:1.10 pkgsrc-2007Q3:1.10.0.10 pkgsrc-2007Q3-base:1.10 pkgsrc-2007Q2:1.10.0.8 pkgsrc-2007Q2-base:1.10 pkgsrc-2007Q1:1.10.0.6 pkgsrc-2007Q1-base:1.10 pkgsrc-2006Q4:1.10.0.4 pkgsrc-2006Q4-base:1.10 pkgsrc-2006Q3:1.10.0.2 pkgsrc-2006Q3-base:1.10 pkgsrc-2006Q2:1.9.0.4 pkgsrc-2006Q2-base:1.9 pkgsrc-2006Q1:1.9.0.2 pkgsrc-2006Q1-base:1.9 pkgsrc-2005Q4:1.8.0.4 pkgsrc-2005Q4-base:1.8 pkgsrc-2005Q3:1.8.0.2 pkgsrc-2005Q3-base:1.8 pkgsrc-2005Q2:1.6.0.2 pkgsrc-2005Q2-base:1.6 pkgsrc-2005Q1:1.5.0.4 pkgsrc-2005Q1-base:1.5 pkgsrc-2004Q4:1.5.0.2 pkgsrc-2004Q4-base:1.5 pkgsrc-2004Q3:1.4.0.2 pkgsrc-2004Q3-base:1.4 pkgsrc-2004Q2:1.3.0.2 pkgsrc-2004Q2-base:1.3 pkgsrc-2004Q1:1.2.0.6 pkgsrc-2004Q1-base:1.2 pkgsrc-2003Q4:1.2.0.4 pkgsrc-2003Q4-base:1.2 netbsd-1-6-1:1.2.0.2 netbsd-1-6-1-base:1.2 netbsd-1-6:1.1.0.8 netbsd-1-6-RELEASE-base:1.1 pkgviews:1.1.0.4 pkgviews-base:1.1 buildlink2:1.1.0.2 buildlink2-base:1.1 netbsd-1-5-PATCH003:1.1; locks; strict; comment @# @; 1.11 date 2008.09.12.14.59.52; author taca; state dead; branches; next 1.10; 1.10 date 2006.09.13.14.41.58; author taca; state Exp; branches; next 1.9; 1.9 date 2006.03.12.12.12.19; author taca; state Exp; branches; next 1.8; 1.8 date 2005.09.15.15.40.47; author taca; state Exp; branches; next 1.7; 1.7 date 2005.09.04.05.07.05; author taca; state Exp; branches; next 1.6; 1.6 date 2005.06.07.14.19.10; author taca; state Exp; branches 1.6.2.1; next 1.5; 1.5 date 2004.10.13.15.35.55; author taca; state Exp; branches; next 1.4; 1.4 date 2004.08.22.15.11.09; author taca; state Exp; branches 1.4.2.1; next 1.3; 1.3 date 2004.06.06.16.01.03; author taca; state Exp; branches; next 1.2; 1.2 date 2002.10.13.16.43.22; author taca; state Exp; branches; next 1.1; 1.1 date 2002.03.03.15.44.48; author taca; state Exp; branches; next ; 1.6.2.1 date 2005.09.10.11.16.41; author salo; state Exp; branches; next 1.6.2.2; 1.6.2.2 date 2005.09.15.16.35.33; author salo; state Exp; branches; next ; 1.4.2.1 date 2004.10.20.16.33.44; author agc; state Exp; branches; next ; desc @@ 1.11 log @Restructuring Squid package: * Now www/squid directory is common directory for squid packages. * package options clean up and all options are described. * LDAP helper support. (PR pkg/39386) * DESTDIR support. * Move some MESSAGE to documation directory. Next, I'll import squid26, squid27 and squid30 packages. @ text @$NetBSD: patch-bb,v 1.10 2006/09/13 14:41:58 taca Exp $ --- include/autoconf.h.in.orig 2006-07-13 00:00:31.000000000 +0900 +++ include/autoconf.h.in @@@@ -231,6 +231,9 @@@@ /* Define to 1 if you have the `lrand48' function. */ #undef HAVE_LRAND48 +/* Define if you have the header file. */ +#undef HAVE_MACHINE_BYTE_SWAP_H + /* Define to 1 if you have the `mallinfo' function. */ #undef HAVE_MALLINFO @ 1.10 log @Update www/squid pacakge to 2.6.3 (squid 2.6.STABLE3). Too may changes to mention here. Please refer ${PREFIX}/share/doc/squid/RELEASENOTES.html. @ text @d1 1 a1 1 $NetBSD: patch-bb,v 1.9 2006/03/12 12:12:19 taca Exp $ @ 1.9 log @Update squid package to 2.5.13 (2.5.STABLE13). Most of changes are already in our previous package. Here is changes from 2.5.12 (2.5.STABLE12): Changes to squid-2.5.STABLE12 (12 Mar 2006) - [Minor] Fails to compile on Solaris and some other platforms with undefined reference to setenv (Bug #1435) - [Cosmetic] Added WebDAV REPORT method to know HTTP methods list - [Minor] Squid ntlm_auth (not the Samba provided one) giving odd results if --enable-ntlm-fail-open is used (Bug #1022) - [Minor] wbinfo_group.pl doesn't work with Samba 3.0.21 and later (Bug #1472) - [Minor] Squid crash when asyncio function counters url accessed from Cachemgr CGI (Bug #1464) - [Cosmetic] Linix compile warning about prctl called with too few arguments (Bug #1483) - [Minor] Wrong timezone declaration for 64 bit Irix (Bug #1479) - [Minor] Some 206 responses logged incorrectly (Bug #1511) - [Minor] Issues in processing ranges on objects >2GB (Bug #437) - [Cosmetic] Segmentation fault on empty proxy_auth ACLs (Bug #1414) - [Minor] Ident access lists don't work in delay_access statements (Bug #1428) - [Minor] Some clients support NTLM even if not initially negotiating persistent connections (Bug #1447) - [Medium] 504 Gateway Time-out on FTP uploads (Bug #1459) - [Medium] delay pools given too much bandwidht after "-k reconfigure" (Bug #1481) - [Cosmetic] New persistent_connection_after_error configuration directive (Bug #1482) - [Cosmetic] Hangs at 100% CPU if /dev/null is not accessible (Bug #1484) - [Minor] Fails to compile on Fedora Core 5 test 2 x86_64 (Bug #1492) - [Cosmetic] Typo in ftp.c (Bug #1507) - [Cosmetic] Error in FTP listings of files with -> in their name (Bug #1508) - [Cosmetic] With Squid-2.5 there is no more the DUPLICATE IP logging in cache.log (Bug #779) - [Minor] Fails to process long host names (Bug #1434) - [Cosmetic] Azerbaijani errors translation (Bug #1454) - [Cosmetic] misleading error message message for bad/unresolveable cache_peer name (Bug #1504) - [Cosmetic] confusing statistics on stateful helpers (NTLM auth) (Bug #1506) - [Major] connstate memory leak (Bug #1522) @ text @d1 1 a1 1 $NetBSD: patch-bb,v 1.8 2005/09/15 15:40:47 taca Exp $ d3 1 a3 1 --- include/autoconf.h.in.orig 2005-09-13 09:12:34.000000000 +0900 d5 3 a7 3 @@@@ -671,6 +671,9 @@@@ /* Define if you have the header file. */ #undef HAVE_LINUX_NETFILTER_IPV4_H d12 2 a13 2 /* Define if you have the header file. */ #undef HAVE_MALLOC_H @ 1.8 log @Update squid package to 2.5.10nb3. - pkgsrc update: o s/SQUID_BACKEND/SQUID_BACKENDS/ as suggested by pkglint. o Fix leaving ${PREFIX}/etc/squid/msntauth.conf.default out of PLIST. o IP Filter related patches are incorporated to squid. - Add/update official patches: o 2005-09-15 11:15 (Major) FATAL: Incorrect scheme in auth header o 2005-09-15 09:56 (Medium) Odd results on pipelined CONNECT requests o 2005-09-13 23:59 (Minor) Transparent proxy problem with IP Filter o 2005-09-11 01:53 (Medium) Clients bypassing delay pools by faking a cache hit o 2005-09-11 01:42 (Cosmetic) Allow leaving core dumps on Linux o 2005-09-11 01:21 (Cosmetic) enums can not be assumed to be signed ints o 2005-09-11 01:21 (Cosmetic) Incorrect store dir selection debug message on objects >2G o 2005-09-11 00:57 (Minor) LDAP helpers does not work with TLS (-Z option) @ text @d1 1 a1 1 $NetBSD: patch-bb,v 1.7 2005/09/04 05:07:05 taca Exp $ d3 1 a3 1 --- include/autoconf.h.in.orig 2005-04-23 10:32:27.000000000 +0900 d5 1 a5 1 @@@@ -665,6 +668,9 @@@@ @ 1.7 log @Update squid package to 2.5.10nb2. - pkgsrc changes: check IP filter's header file as well as . - Apply recent official patches including a security fix for DoS noted by http://secunia.com/advisories/16674/ * 2005-09-03 09:41 (Minor) E-mail sent when cache dies is blocked from many antispam rules * 2005-09-03 09:41 (Minor) Solaris 10 SPARC transparent proxy build problem with ipfilter * 2005-09-01 22:57 (Minor) snmo cacheClientTable fails on "long" IP addresses * 2005-09-01 22:49 (Minor) squid_ldap_auth -U does not work * 2005-09-01 22:44 (Major) assertion failed: store.c:523: "e->store_status == STORE_PENDING" * 2005-09-01 22:39 (Cosmetic) Greek translation of error messages * 2005-09-01 22:31 (Minor) Some odd FTP servers respond with 250 where 226 is expected * 2005-09-01 22:26 (Cosmetic) Fails to compile with glibc -D_FORTIFY_SOURCE=2 * 2005-09-01 22:18 (Cosmetic) Odd URLs when failing to forward request via parent and several error messages inconsistent in reported request details * 2005-09-01 22:09 (Minor) More chroot_dir and squid -k reconfigure issues * 2005-09-01 21:56 (Medium) assertion failed: StatHist.c:93: ((int) floor (0.99L + statHistVal(H, 0) - min)) == 0 * 2005-09-01 20:27 (Major) Segmentation fault in sslConnectTimeout * 2005-08-19 09:31 (Minor) sync redeclarations when support for ARP acls * 2005-08-14 17:05 (Cosmetic) New 'mail_program' configuration option in squid.conf @ text @d1 1 a1 1 $NetBSD: patch-bb,v 1.6 2005/06/07 14:19:10 taca Exp $ a4 10 @@@@ -656,6 +656,9 @@@@ /* Define if you have the header file. */ #undef HAVE_IP_NAT_H +/* Define if you have the header file. */ +#undef HAVE_IPL_H + /* Define if you have the header file. */ #undef HAVE_LIBC_H a14 10 @@@@ -707,6 +713,9 @@@@ /* Define if you have the header file. */ #undef HAVE_NETINET_IP_NAT_H +/* Define if you have the header file. */ +#undef HAVE_NETINET_IPL_H + /* Define if you have the header file. */ #undef HAVE_NETINET_TCP_H @ 1.6 log @- Fix build problem with IP Filter prior to 4.0; NetBSD 1.6.2. - Avoid use of ":ts" modifier of make(1) since NetBSD 1.6.2's make(1) dosen't support it. It might be fix "diskd" PKG_OPTION problem, too. - Remove extra "--enable-async-io" configure option. No PKGREVISION change. @ text @d1 1 a1 1 $NetBSD: patch-bb,v 1.5 2004/10/13 15:35:55 taca Exp $ d5 11 a15 1 @@@@ -665,6 +665,9 @@@@ d25 1 a25 1 @@@@ -707,6 +710,9 @@@@ @ 1.6.2.1 log @Pullup ticket 738 - requested by Takahiro Kambe security fix for squid Revisions pulled up: - pkgsrc/www/squid/Makefile 1.155, 1.157 - pkgsrc/www/squid/PLIST 1.19 - pkgsrc/www/squid/distinfo 1.100, 1.101 - pkgsrc/www/squid/patches/patch-aa 1.17 - pkgsrc/www/squid/patches/patch-ag 1.20 - pkgsrc/www/squid/patches/patch-an 1.8 - pkgsrc/www/squid/patches/patch-ap 1.1 - pkgsrc/www/squid/patches/patch-bb 1.7 - pkgsrc/www/squid/patches/patch-cd 1.10, 1.11 Module Name: pkgsrc Committed By: taca Date: Tue Aug 9 15:48:30 UTC 2005 Modified Files: pkgsrc/www/squid: Makefile PLIST distinfo pkgsrc/www/squid/patches: patch-aa patch-cd Added Files: pkgsrc/www/squid/patches: patch-ap Log Message: - Add missing optional installed files. - Slightly simplify installation of example configurations. - Add official patches. * 2005-07-11 00:46 (Cosmetic) The new --with-build-environment=... option doesn't work * 2005-07-09 08:58 (Cosmetic) Allow wb_ntlm_auth to run more silent * 2005-07-03 08:24 (Cosmetic) "make all" gives many warnings * 2005-06-29 20:36 (Minor) wbinfo_group.pl only looks into the first group specified * 2005-06-21 22:28 (Minor) FTP listings uses "BASE HREF" much more than it needs to, * 2005-06-22 10:46 (Cosmetic) Title in FTP listings somewhat messed up * 2005-06-19 21:03 (Minor) SNMP GETNEXT fails if the given OID is outside the Squid MIB * 2005-06-19 09:39 (Minor) squid -k reconfigure internal corruption if the type of a cache_dir is changed * 2005-06-13 22:55 (Minor) httpd_accel_signle_host incompatible with redireection * 2005-06-30 08:49 (Minor) Core dump with --enable-ipf-transparent if access to NAT device not granted * 2005-06-27 21:24 (Minor) squid -k fails in combination with chroot after patch for bug 1157 * 2005-06-09 08:01 (Minor) Squid internal icons served up with slightly CVSincorrect HTTP headers * 2005-06-06 21:38 (Cosmetic) Updated Spanish error messages Bump PKGREVISION. --- Module Name: pkgsrc Committed By: taca Date: Sun Sep 4 05:07:05 UTC 2005 Modified Files: pkgsrc/www/squid: Makefile distinfo pkgsrc/www/squid/patches: patch-ag patch-an patch-bb patch-cd Log Message: Update squid package to 2.5.10nb2. - pkgsrc changes: check IP filter's header file as well as . - Apply recent official patches including a security fix for DoS noted by http://secunia.com/advisories/16674/ * 2005-09-03 09:41 (Minor) E-mail sent when cache dies is blocked from many antispam rules * 2005-09-03 09:41 (Minor) Solaris 10 SPARC transparent proxy build problem with ipfilter * 2005-09-01 22:57 (Minor) snmo cacheClientTable fails on "long" IP addresses * 2005-09-01 22:49 (Minor) squid_ldap_auth -U does not work * 2005-09-01 22:44 (Major) assertion failed: store.c:523: "e->store_status == STORE_PENDING" * 2005-09-01 22:39 (Cosmetic) Greek translation of error messages * 2005-09-01 22:31 (Minor) Some odd FTP servers respond with 250 where 226 is expected * 2005-09-01 22:26 (Cosmetic) Fails to compile with glibc -D_FORTIFY_SOURCE=2 * 2005-09-01 22:18 (Cosmetic) Odd URLs when failing to forward request via parent and several error messages inconsistent in reported request details * 2005-09-01 22:09 (Minor) More chroot_dir and squid -k reconfigure issues * 2005-09-01 21:56 (Medium) assertion failed: StatHist.c:93: ((int) floor (0.99L + statHistVal(H, 0) - min)) == 0 * 2005-09-01 20:27 (Major) Segmentation fault in sslConnectTimeout * 2005-08-19 09:31 (Minor) sync redeclarations when support for ARP acls * 2005-08-14 17:05 (Cosmetic) New 'mail_program' configuration option in squid.conf @ text @d1 1 a1 1 $NetBSD: patch-bb,v 1.7 2005/09/04 05:07:05 taca Exp $ d5 1 a5 11 @@@@ -656,6 +656,9 @@@@ /* Define if you have the header file. */ #undef HAVE_IP_NAT_H +/* Define if you have the header file. */ +#undef HAVE_IPL_H + /* Define if you have the header file. */ #undef HAVE_LIBC_H @@@@ -665,6 +668,9 @@@@ d15 1 a15 1 @@@@ -707,6 +713,9 @@@@ @ 1.6.2.2 log @Pullup ticket 756 - requested by Takahiro Kambe bugfix update for squid Revisions pulled up: - pkgsrc/www/squid/Makefile 1.158 - pkgsrc/www/squid/distinfo 1.102 - pkgsrc/www/squid/options.mk 1.4 - pkgsrc/www/squid/patches/patch-ag 1.21 - pkgsrc/www/squid/patches/patch-an 1.9 - pkgsrc/www/squid/patches/patch-ap 1.2 - pkgsrc/www/squid/patches/patch-bb 1.8 - pkgsrc/www/squid/patches/patch-cd removed Module Name: pkgsrc Committed By: taca Date: Thu Sep 15 15:40:47 UTC 2005 Modified Files: pkgsrc/www/squid: Makefile distinfo options.mk pkgsrc/www/squid/patches: patch-ag patch-an patch-ap patch-bb Removed Files: pkgsrc/www/squid/patches: patch-cd Log Message: Update squid package to 2.5.10nb3. - pkgsrc update: o s/SQUID_BACKEND/SQUID_BACKENDS/ as suggested by pkglint. o Fix leaving ${PREFIX}/etc/squid/msntauth.conf.default out of PLIST. o IP Filter related patches are incorporated to squid. - Add/update official patches: o 2005-09-15 11:15 (Major) FATAL: Incorrect scheme in auth header o 2005-09-15 09:56 (Medium) Odd results on pipelined CONNECT requests o 2005-09-13 23:59 (Minor) Transparent proxy problem with IP Filter o 2005-09-11 01:53 (Medium) Clients bypassing delay pools by faking a cache hit o 2005-09-11 01:42 (Cosmetic) Allow leaving core dumps on Linux o 2005-09-11 01:21 (Cosmetic) enums can not be assumed to be signed ints o 2005-09-11 01:21 (Cosmetic) Incorrect store dir selection debug message on objects >2G o 2005-09-11 00:57 (Minor) LDAP helpers does not work with TLS (-Z option) @ text @d1 1 a1 1 $NetBSD: patch-bb,v 1.8 2005/09/15 15:40:47 taca Exp $ d5 10 d25 10 @ 1.5 log @Update squid package to 2.5.7. This includes security problem with SNMP support which enabled by default. * pkgsrc changes: - Don't use PKGNAME within DIST_SUBDIR. Instead, date based DIST_STAMP. This change prevent extra DIST_SUBDIR change asked by kim@@. - Remove setproctitle(3) hack for dnsserver helper program since use of dnsserver itself is problematic with huge size of squid process. * Changes to squid-2.5.STABLE7 (11 Oct 2004) - [Medium] No objects cached in ufs cache_dir type in some configurations. Issue introduced in 2.5.STABLE6 by the patch for Bug #676. (Bug #1011) - [Minor] LDAP helpers update to correct LDAP connection management and add support for literal password compare instead of binding - [Minor] A large number of queued DNS lookups for the same domain (Bug #852) - [Cosmetic] request_header_max_size configuration partly ignored (Bug #899) - [Minor] Partial hit results in TCP_HIT, not TCP_MISS. (Bug #1001) - Bug #1012: [Cosmetic] HEAD requests may return stale information (Bug #1012) - [Cosmetic] Warn if cache_dir ufs can not create files. (Bug #918) - [Minor] case insensitive authentication (Bug #431) - [Cosmetic] Add delay pools information to active_requests. (Bug #882) - [Minor] Apparent memory leak in client_db (Bug #833) - [Minor] NTLM authentication truncated causing failures. (Bug #1016) - [Cosmetic] Grammatical corrections in squid.conf.default - [Cosmetic] Unknown %X errorpage codes incorrectly quoted. (Bug #1030) - [Medium] Segfaults and other strange crashes when using heap policies. (Bug #1009) - [Minor] Supplementary group memberships not set (Bug #1021) - [Cosmetic] ERR_TOO_BIG Portugese translation - [Minor] external_acl does not handle newlines (Bug #1038) - [Major] NTLM authentication denial of service when using msnt_auth or fake_auth (Bug #1045) - [Medium] Memory leaks when using NTLM authentication without challenge reuse. (Bug #994) - [Minor] Temporary NTLM memory leak with challenge reuse enabled (Bug #910) - [Minor] assertion failed: "n_ufs_dirs <= Config.cacheSwap.n_configured". (Bug #1053) - [Minor] Segfault in authenticateDigestHandleReply. (Bug #1031) - [Minor] acl time fails to parse multiple time specifications (Bug #1060) - [Minor] cachemgr config dumps mixed up Range and Request-Range headers in http_header_access & replace directives. (Bug #1056) - [Minor] Content-Disposition added as a well known header (Bug #961) - [Cosmetic] Don't warn about arp acls not being supported on FreeBSD (Bug #1074) - [Cosmetic] Limit internal send/receive buffer sizes (Bug #1075) - [Medium] New acl types to match arbitrary HTTP headers. In addition the http_header_access & replace directivess now support arbitrary headers and not only the well known ones. (Bug #961) - [Cosmetic] ncsa_auth now accepts Window formatted password files (Bug #1078) - [Cosmetic] Support the --program-prefix/suffix options or other configure program name transforms (Bug #1019) - [Minor] Fix race condition in CONNECT and also handle aborts of CONNECT requests in a more graceful manner. (Bug #859) - [Minor] New balance_on_multiple_ip directive to work around certain broken load balancers and optimized ipcache on reload requests (Bug #1058) - [Medium] New reply_header_max_size directive (Bug #874) - [Minor] Suspected instability on aborted PUT/POST requests (Bug #1089) - [Security] SNMP Denial of Service fix (CAN-2004-0918) @ text @d1 1 a1 1 $NetBSD: patch-bb,v 1.4 2004/08/22 15:11:09 taca Exp $ d3 1 a3 1 --- include/autoconf.h.in.orig 2004-08-09 22:55:49.000000000 +0900 d5 1 a5 1 @@@@ -659,6 +659,9 @@@@ d15 10 @ 1.4 log @Update squid package to 2.5.6 (squid 2.5.STALBE6 + official patches). Squid 2.5.STABLE5 to 2.5.STABLE6: * Several "Assertion error" bugs fixed * Several "Segmentation fault" bugs fixes * Corrects a security issue in the old ntlm_auth NTLM helper used in transparent NTLM authentication to a NT domain without using samba. * Processing of Vary: * and Vary on error messages corrected * a large number of minor and cosmetic bugfixes. See the list of squid-2.5.STABLE5 patches and the ChangeLog file for details. 2.5.STABLE56 official patches: * 2004-08-20 08:18 (Major) NTLM authentication denial of service * 2004-08-14 21:07 (Minor) external_acl does not handle newlines * 2004-08-09 14:03 (Minor) Supplementary group memberships not set * 2004-08-05 20:33 (Medium) Segfaults and other strange crashes when using heap policies * 2004-08-06 11:05 (Cosmetic) Unknown %X errorpage codes incorrectly quoted * 2004-08-17 12:22 (Cosmetic) Grammatical corrections in squid.conf.default * 2004-07-27 21:52 (Minor) NTLM authentication truncated * 2004-07-17 22:43 (Minor) Memory leak in client_db * 2004-07-17 20:11 (Cosmetic) Add delay pools information to active_requests * 2004-07-17 19:57 (Minor) case insensitive authentication * 2004-07-17 19:48 (Cosmetic) Warn if cache_dir ufs can not create files * 2004-07-17 16:33 (Cosmetic) HEAD requests may return stale information * 2004-07-17 16:33 (Minor) Partial hit results in TCP_HIT, not TCP_MISS * 2004-07-17 16:33 (Cosmetic) request_header_max_size configuration option doesn't work correctly * 2004-07-29 13:29 (Minor) A large number of queued DNS lookups for the same domain * 2004-08-10 09:40 (Minor) LDAP helpers update * 2004-07-14 16:29 (Medium) storeCreate: no valid swapdirs for this object @ text @d1 1 a1 1 $NetBSD: patch-bb,v 1.3 2004/06/06 16:01:03 taca Exp $ d3 1 a3 1 --- include/autoconf.h.in.orig 2004-08-20 18:35:25.000000000 +0900 d5 1 a5 11 @@@@ -551,6 +551,9 @@@@ /* Define if you have the setpgrp function. */ #undef HAVE_SETPGRP +/* Define if you have the setpgrp function. */ +#undef HAVE_SETPROCTITLE + /* Define if you have the setrlimit function. */ #undef HAVE_SETRLIMIT @@@@ -659,6 +662,9 @@@@ a14 10 @@@@ -833,6 +839,9 @@@@ /* Define if you have the header file. */ #undef HAVE_UNISTD_H +/* Define if you have the header file. */ +#undef HAVE_UTIL_H + /* Define if you have the header file. */ #undef HAVE_UTIME_H @ 1.4.2.1 log @Pullup (via patch) ticket 123 - requested by Takahiro Kambe security fix for squid Modified Files: pkgsrc/www/squid: Makefile distinfo pkgsrc/www/squid/patches: patch-ag patch-an patch-bb Removed Files: pkgsrc/www/squid/patches: patch-ba Log Message: Update squid package to 2.5.7. This includes security problem with SNMP support which enabled by default. * pkgsrc changes: - Don't use PKGNAME within DIST_SUBDIR. Instead, date based DIST_STAMP. This change prevent extra DIST_SUBDIR change asked by kim@@. - Remove setproctitle(3) hack for dnsserver helper program since use of dnsserver itself is problematic with huge size of squid process. * Changes to squid-2.5.STABLE7 (11 Oct 2004) - [Medium] No objects cached in ufs cache_dir type in some configurations. Issue introduced in 2.5.STABLE6 by the patch for Bug #676. (Bug #1011) - [Minor] LDAP helpers update to correct LDAP connection management and add support for literal password compare instead of binding - [Minor] A large number of queued DNS lookups for the same domain (Bug #852) - [Cosmetic] request_header_max_size configuration partly ignored (Bug #899) - [Minor] Partial hit results in TCP_HIT, not TCP_MISS. (Bug #1001) - Bug #1012: [Cosmetic] HEAD requests may return stale information (Bug #1012) - [Cosmetic] Warn if cache_dir ufs can not create files. (Bug #918) - [Minor] case insensitive authentication (Bug #431) - [Cosmetic] Add delay pools information to active_requests. (Bug #882) - [Minor] Apparent memory leak in client_db (Bug #833) - [Minor] NTLM authentication truncated causing failures. (Bug #1016) - [Cosmetic] Grammatical corrections in squid.conf.default - [Cosmetic] Unknown %X errorpage codes incorrectly quoted. (Bug #1030) - [Medium] Segfaults and other strange crashes when using heap policies. (Bug #1009) - [Minor] Supplementary group memberships not set (Bug #1021) - [Cosmetic] ERR_TOO_BIG Portugese translation - [Minor] external_acl does not handle newlines (Bug #1038) - [Major] NTLM authentication denial of service when using msnt_auth or fake_auth (Bug #1045) - [Medium] Memory leaks when using NTLM authentication without challenge reuse. (Bug #994) - [Minor] Temporary NTLM memory leak with challenge reuse enabled (Bug #910) - [Minor] assertion failed: "n_ufs_dirs <= Config.cacheSwap.n_configured". (Bug #1053) - [Minor] Segfault in authenticateDigestHandleReply. (Bug #1031) - [Minor] acl time fails to parse multiple time specifications (Bug #1060) - [Minor] cachemgr config dumps mixed up Range and Request-Range headers in http_header_access & replace directives. (Bug #1056) - [Minor] Content-Disposition added as a well known header (Bug #961) - [Cosmetic] Don't warn about arp acls not being supported on FreeBSD (Bug #1074) - [Cosmetic] Limit internal send/receive buffer sizes (Bug #1075) - [Medium] New acl types to match arbitrary HTTP headers. In addition the http_header_access & replace directivess now support arbitrary headers and not only the well known ones. (Bug #961) - [Cosmetic] ncsa_auth now accepts Window formatted password files (Bug #1078) - [Cosmetic] Support the --program-prefix/suffix options or other configure program name transforms (Bug #1019) - [Minor] Fix race condition in CONNECT and also handle aborts of CONNECT requests in a more graceful manner. (Bug #859) - [Minor] New balance_on_multiple_ip directive to work around certain broken load balancers and optimized ipcache on reload requests (Bug #1058) - [Medium] New reply_header_max_size directive (Bug #874) - [Minor] Suspected instability on aborted PUT/POST requests (Bug #1089) - [Security] SNMP Denial of Service fix (CAN-2004-0918) @ text @d1 1 a1 1 $NetBSD: patch-bb,v 1.4 2004/08/22 15:11:09 taca Exp $ d3 1 a3 1 --- include/autoconf.h.in.orig 2004-08-09 22:55:49.000000000 +0900 d5 11 a15 1 @@@@ -659,6 +659,9 @@@@ d25 10 @ 1.3 log @latest offcial patch has updated: Bug #753: va_copy required Bug #995: segfault on long URLs (bug in previous patch to Bug #753) And reduce offset from pkgsrc's patches. Bump package revision. @ text @d1 1 a1 1 $NetBSD: patch-bb,v 1.2 2002/10/13 16:43:22 taca Exp $ d3 1 a3 1 --- include/autoconf.h.in.orig 2004-06-07 00:54:39.000000000 +0900 d5 1 a5 1 @@@@ -548,6 +548,9 @@@@ d15 1 a15 1 @@@@ -656,6 +659,9 @@@@ d25 1 a25 1 @@@@ -824,6 +830,9 @@@@ @ 1.2 log @Update squid to 2.5.1 with several patches from http://www.squid-cache.org/Versions/v2/2.5/bugs/. Now try to install more authentication modules, but those modules should be handled by proper frame work (Curretly, SASL modules aren't handled). Changes to squid-2.5 (): - Major rewrite of proxy authentication to support other schemes than basic. First in the line is NTLM support but others can easily be added (minimal digest is present). See Programmers Guide. (Robert Collins & Francesco Chemolli) - Reworked how request bodies are passed down to the protocols. Now all client side processing is inside client_side.c, and the pass and pump modules is no longer used. - Optimized searching in proxy_auth and ident ACL types. Squid should now handle large access lists a lot more efficiently. (Francesco Chemolli) - Fixed forwarding/peer loop detection code (Brian Degenhardt) - now a peer is ignored if it turns out to be us, rather than committing suicide - Changed the internal URL code to obey appendDomain for internal objects if it needs appending. This fixes weirdnesses where a machine can think it is "foo.bar.com", and "foo" is requested. (Brian Degenhardt) - Added the use of Automake to create the Makefile.in's in the squid source tree. This will allow libtool in the future, and immediately allows better dependency tracking - with or without gcc - as well as the dist-all and distcheck targets for developers which respectively build a tar.gz and a tar.bz2 distribution, and check that what will be distributed builds. - Added TOS and source address selection based on ACLs, written by Roger Venning. This allows administrators to set the TOS precedence bits and/or the source IP from a set of available IPs based upon some ACLs, generally to map different users to different outgoing links and traffic profiles. - Added 'max-conn' option to 'cache_peer' - Added SSL gatewaying support, allowing Squid to act as a SSL server in accelerator setups. - SASL authentication helper by Ian Castle - msntauth updated to v2.0.3 - no_cache now applies to cache hits as well as cache misses - the Gopher client in Squid has been significantly improved - Squid now sanity checks FTP data connections to ensure the connection is from the requested server. Can be disabled if needed by turning off the ftp_sanitycheck option. - external acl support. A mechanism where flexible ACL checks can be driven by external helpers. See the external_acl_type and acl external directives. - Countless other small things and fixes - HTML pages generated by Squid or CacheMgr as well as the ERR documents now contain a doctype declaration so that browsers know which HTML specification the document uses. In addition to that they have a new look (background-color, font) and are valid according to the HTML standards at www.w3.org. (Clemens Löser) - Login and password send to Basic auth helpers is now URL escaped to allow for spaces and other "odd" characters in logins and passwords - Proxy Authentication is no longer blindly forwarded to peer caches if not used locally. If forwarding of proxy authentication is desired then it must now be configured with the login=PASS cache_peer option. - Responses with Vary: in the header are now cached by squid. (Henrik Nordstrom). - Removed unused 'siteselect_timeout' directive. @ text @d1 1 a1 1 $NetBSD: patch-bb,v 1.1 2002/03/03 15:44:48 taca Exp $ d3 1 a3 1 --- include/autoconf.h.in.orig Tue Jul 16 06:29:47 2002 d5 1 a5 1 @@@@ -537,6 +537,9 @@@@ d15 1 a15 1 @@@@ -645,6 +648,9 @@@@ d25 1 a25 2 @@@@ -812,6 +818,9 @@@@ d28 1 a28 1 + d31 1 a31 1 d34 1 @ 1.1 log @Include HAVE_SETPROCTITLE in autoconf.h.in. Thought setproctitle() is already checked in configure script, but it is need to define/undef in a generated header file. Bump to squid 2.4.4nb1. @ text @d1 1 a1 1 $NetBSD$ d3 1 a3 1 --- include/autoconf.h.in.orig Tue Jan 2 07:37:02 2001 d5 1 a5 1 @@@@ -415,6 +415,9 @@@@ d15 20 @