------------------------------------------------------------------- Fri Jan 3 10:57:19 UTC 2014 - danimo@owncloud.com - Updated to 3.0.5, contains fix for CVE-2013-4484 * A bad interaction between -b, -c and -m in the varnishlog tool has been fixed. * A malformed request could in some configurations lead to Varnish crashing has been corrected. (CVE-2013-4484) * Duplicate Content-Length headers were in some cases sent to clients when streaming is enabled, this has been fixed. * ESI parse errors are no longer printed to standard output. * Stop segfaulting if the first part of a synthetic page is NULL. - Remove 0001-Make-up-our-mind-Any-req.-we-receive-from-the-client.patch (merged upstream) ------------------------------------------------------------------- Fri Nov 1 18:52:49 UTC 2013 - jengelh@inai.de - Add 0001-Make-up-our-mind-Any-req.-we-receive-from-the-client.patch (CVE-2013-4484, bnc#48451) ------------------------------------------------------------------- Fri Oct 4 21:48:01 UTC 2013 - jengelh@inai.de - Deactivate libpcre JIT (bnc#839358), add varnish-disable-pcrejit.diff ------------------------------------------------------------------- Sun Sep 23 21:30:35 UTC 2012 - nmo.marques@gmail.com - Update to version 3.0.3 * Fixed excessive session workspace allocations. * Fixed some crashes in the case of out of memory * Fixed an infinite loop in the regex parser. * DNS director now uses port 80 by default if not specified. * Introduce idle_send_timeout and increase default value for send_timeout to 600s. This allows a long send timeout for slow clients while still being able to disconnect idle clients. * Fixed a crash when passing with streaming on. * Fixed a crash in the idle session timeout code. * Fixed an issue where the poll waiter did not timeout clients if all clients were idle. * Log regex errors instead of crashing. * Introduce pcre_match_limit, and pcre_match_limit_recursion parameters. * Add CLI commands to manually control health state of a backend. ------------------------------------------------------------------- Wed Feb 8 23:26:10 UTC 2012 - jengelh@medozas.de - Update to new upstream release 3.0.2 * Add support for ESI and gzip * Handle objects larger than 2G * HTTP Range support is now enabled by default * "307 Temporary redirect" is now considered cacheable * see ChangeLog (packaged) or http://varnish-cache.org/trac/browser/doc/changes.rst for details - Note that the -s file,/var/cache/varnish,524288 argument (check /etc/sysconfig/varnish) needs at least "1M" instead of 524288 or the daemon will not start anymore. - Add systemd unit files ------------------------------------------------------------------- Thu Dec 8 13:51:14 UTC 2011 - coolo@suse.com - fix license to be in spdx.org format ------------------------------------------------------------------- Tue May 10 14:01:13 UTC 2011 - crrodriguez@opensuse.org - Varnish Requires a C compiler, the vcl scripts are compiled and loaded as DSO. ------------------------------------------------------------------- Sat Apr 16 17:26:10 UTC 2011 - crrodriguez@opensuse.org - remove configure option --enable-debugging-symbols it overrides buildsystem optimization levels. ------------------------------------------------------------------- Sat Apr 16 17:12:11 UTC 2011 - crrodriguez@opensuse.org - Update to version 2.1.5 * Two bugs relating to Content-Length and possible duplication of Content-Length headers have been resolved. * Fixed an issue with re-using connections after Chunked-Encoding. * Use the time of cache-insertion for "If-Modified-Since" requests if a "Last-Modified" header isn't provided by the backend. * Merge multi-line Vary and Cache-Control headers from clients, which Google Chromium seem to split up. ------------------------------------------------------------------- Fri Apr 15 22:36:02 UTC 2011 - mrueckert@suse.de - use pkgconfig instead of pkg-config on SLES 9 ------------------------------------------------------------------- Sun Apr 3 23:38:24 UTC 2011 - jengelh@medozas.de - Fix security-problematic ownership of /etc/varnish files (bnc#678811) - Run spec-beautifier over it - Replace default shipped vcl.conf by something working - Run as varnish user - Start varnishlog together with varnishd - Properly use PID files in init script ------------------------------------------------------------------- Sat Oct 9 04:31:06 UTC 2010 - jengelh@medozas.de - Create and package /var/log/varnish ------------------------------------------------------------------- Thu Aug 5 22:11:24 UTC 2010 - jengelh@medozas.de - Update to new upstream release: 2.1.3 * fixed an off-by-one error in the ESI handling causing includes to fail a large part of the time. * Avoid triggering an assert if the other end closes the connection while we are lingering and waiting for another request from them. * Make it possible to specify the per-thread stack size. This might be useful on 32 bit systems with their limited address space. * Persistent storage is now experimentally supported using the persistent stevedore. It has the same command line arguments as the file stevedore. * The regular expression engine is now PCRE instead of POSIX regular expressions. * Add a new hashing method called critbit. This autoscales and should work better on large object workloads than the classic hash. Critbit has been made the default hash algorithm. * Add support for authenticating CLI connections. * Add hash director that chooses which backend to use depending on req.hash. * Add client director that chooses which backend to use depending on the client's IP address. Note that this ignores the X-Forwarded-For header. * Add a timestamp to bans, so you can know how old they are. * Varnish can now connect its CLI to a remote instance when starting up, rather than just being connected to. * It is no longer needed to specify the maximum number of HTTP headers to allow from backends. This is now a run-time parameter. * HEAD requests would be converted to GET requests too early, which affected pass and pipe. This has been fixed. * Add experimental support for the Range header. This has to be enabled using the parameter http_range_support. - Add PreReqs for %post - Run %setup quietly - Remove unneeded .la files from installation - libraries are in a standard directory already - Avoid use of bash-specific &>/dev/null during %post - Refine file lists - Remove old changelog from .spec - changelog is in .changes ------------------------------------------------------------------- Tue Dec 15 15:03.01 CEST 2009 - jg@internetx.de - update 2.0.5 ------------------------------------------------------------------- Fri Apr 3 13:48:01 CEST 2009 - mrueckert@suse.de - update to 2.0.4 ------------------------------------------------------------------- Tue Mar 10 17:47:23 CET 2009 - mrueckert@suse.de - update to 2.0.3 ------------------------------------------------------------------- Wed Jul 25 22:16:29 CEST 2007 - mrueckert@suse.de - updated to 1.1 ------------------------------------------------------------------- Tue Feb 20 18:28:29 CET 2007 - mrueckert@suse.de - update to version 1.0.3 Consistency issues with statistics and backend parameters were fixed. Parsing of -w command-line options was fixed. A short-lived DNS cache was added to avoid thrashing DNS servers when the backend fails. ------------------------------------------------------------------- Sat Dec 2 17:14:16 CET 2006 - mrueckert@suse.de - fixing build on sles9 - added files from the official rh4 rpm: o init scripts for non suse distros o the default configs for all distros - added init/sysconfig script for suse. - we create a user now. Remaining TODO item: how to run varnish as non root user on port 80? ------------------------------------------------------------------- Sun Nov 19 03:37:50 CET 2006 - mrueckert@suse.de - update to 1.0.2