pool/squid
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

merge into: pool:devel
Branches Tags
pool:factory
pool:devel
...
pull from: pool:factory
Branches Tags
pool:factory
pool:devel

292 Commits
devel ... factory

Author SHA256 Message Date
Ana Guerrero
be00812e5d Accepting request 1229399 from server:proxy 
- Update to 6.12
  - Fix validation of Digest auth header parameters
- changes since squid-6.11:
  - Fix Kerberos detection when cross-compiling
  - Improve robustness of DNS code on reconfigure
  - Prevent slow memory leak in TCP DNS queries
  - Improve errors emitted when invalid ACLs are parsed

- Disble ESI. The code is removed upstream in 7.x (bsc#1232485, CVE-2024-45802)

OBS-URL: https://build.opensuse.org/request/show/1229399
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=123
 2024-12-09 20:12:58 +00:00
Ana Guerrero
5521453c13 Accepting request 1183540 from server:proxy 
- update to 6.10
  - ESI: Disable by default (#1728)
  - Bug 5378: type mismatch in libTrie (#1830) (bsc#1227086, CVE-2024-37894)
  - testCacheManager: use cppunit exception tests (#1811)
  - testRandomUuid: use cppunit exception tests (#1814)
  - Docs: REQUIRED in ident_regex, proxy_auth_regex, ext_user_regex (#1818)
  - Fix build with clang v18 [-Wvla-cxx-extension] (#1813) (#1817)

OBS-URL: https://build.opensuse.org/request/show/1183540
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=122
 2024-06-27 14:04:49 +00:00
Adam Majer
a546da3270 - update to 6.10 
- ESI: Disable by default (#1728)
  - Bug 5378: type mismatch in libTrie (#1830) (bsc#1227086, CVE-2024-37894)
  - testCacheManager: use cppunit exception tests (#1811)
  - testRandomUuid: use cppunit exception tests (#1814)
  - Docs: REQUIRED in ident_regex, proxy_auth_regex, ext_user_regex (#1818)
  - Fix build with clang v18 [-Wvla-cxx-extension] (#1813) (#1817)

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=299
 2024-06-27 07:06:46 +00:00
Ana Guerrero
3f696fa535 Accepting request 1177317 from server:proxy 
- update to 6.9
  - Regression Bug 5349: basic_nis_auth build error: unterminated #ifndef
  - Bug 5069: Keep listening after getsockname() error
  - Bug 5360: FwdState::noteDestinationsEnd() assertion "err"
  - Reduce stale errno usage
  - Plug memory leak in handling cache manager requests
  - Fix error: template-id not allowed for constructor in C++20
  - Improve release packaging automation
- header_fixups.patch: upstreamed, removed
- 9be86d8db5e8f40829374d26334d0bb5272c1afd.patch: upstreamed, removed
- CVE-2024-33427.patch: fixes possible buffer overread leading to
  denial of service (bsc#1225417, CVE-2024-33427)

OBS-URL: https://build.opensuse.org/request/show/1177317
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=121
 2024-05-28 15:30:23 +00:00
Adam Majer
eb70b5ef0f - CVE-2024-33427.patch: fixes possible buffer overread leading to 
denial of service (bsc#1225417, CVE-2024-33427)

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=297
 2024-05-28 08:55:47 +00:00
Adam Majer
83753ab199 - update to 6.9 
- Regression Bug 5349: basic_nis_auth build error: unterminated #ifndef
  - Bug 5069: Keep listening after getsockname() error
  - Bug 5360: FwdState::noteDestinationsEnd() assertion "err"
  - Reduce stale errno usage
  - Plug memory leak in handling cache manager requests
  - Fix error: template-id not allowed for constructor in C++20
  - Improve release packaging automation
- header_fixups.patch: upstreamed, removed
- 9be86d8db5e8f40829374d26334d0bb5272c1afd.patch: upstreamed, removed

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=296
 2024-05-28 08:50:04 +00:00
Dominique Leuenberger
f5630c87ae Accepting request 1155563 from server:proxy 
- update to 6.8
  - Fix marking of problematic cached IP addresses (#1691)
  - Bug 5344: mgr:config segfaults without logformat (#1680)
  - Fix infinite recursion when parsing HTTP chunks (#1553)
    (bsc#1216715, CVE-2024-25111)
- changes in 6.7
  - Bug 5337: workaround for crash on startup if -a option is used
  - Bug 5274: Successful tunnels logged as TCP_TUNNEL/500
  - Fix crash when NTLM and Negotiate helpers are queried with no HTTP request
  - Fix SslBump memory leak when mimicking certificates with Authority Key Identifier
  - Fix memory leak on SslBump certificates with Authority Key Identifier extension
  - Fix a possible integer overflow in FTP Gateway
  - Extend cache_log_message to Bug 5187 and job invalidation BUGs
  - Remove incorrect beta version warning
- squid.keyring: updated
- header_fixups.patch: added
- 9be86d8db5e8f40829374d26334d0bb5272c1afd.patch: don't throw on
  client errors

 - Fix handling of expanding HTTP header values (bsc#1219960, CVE-2024-25617)

OBS-URL: https://build.opensuse.org/request/show/1155563
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=120
 2024-03-06 22:06:03 +00:00
Adam Majer
23219f8b97 - 9be86d8db5e8f40829374d26334d0bb5272c1afd.patch: don't throw on 
client errors

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=294
 2024-03-06 13:17:43 +00:00
Adam Majer
17b414d940 - Fix handling of expanding HTTP header values (bsc#1219960, CVE-2024-25617) 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=293
 2024-03-06 13:03:42 +00:00
Adam Majer
8ef00f7fd9 - header_fixups.patch: added 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=292
 2024-03-06 12:48:17 +00:00
Adam Majer
6cedc775e2 - update to 6.8 
- Fix marking of problematic cached IP addresses (#1691)
  - Bug 5344: mgr:config segfaults without logformat (#1680)
  - Fix infinite recursion when parsing HTTP chunks (#1553)
    (bsc#1216715, CVE-2024-25111)
- changes in 6.7
  - Bug 5337: workaround for crash on startup if -a option is used
  - Bug 5274: Successful tunnels logged as TCP_TUNNEL/500
  - Fix crash when NTLM and Negotiate helpers are queried with no HTTP request
  - Fix SslBump memory leak when mimicking certificates with Authority Key Identifier
  - Fix memory leak on SslBump certificates with Authority Key Identifier extension
  - Fix a possible integer overflow in FTP Gateway
  - Extend cache_log_message to Bug 5187 and job invalidation BUGs
  - Remove incorrect beta version warning

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=291
 2024-03-06 12:28:13 +00:00
Ana Guerrero
b9466b8dea Accepting request 1151607 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/1151607
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=119
 2024-02-26 19:02:40 +00:00
Martin Pluskal
f3ee015a17 Accepting request 1151577 from home:dimstar:rpm4.20:s 
Prepare for RPM 4.20

OBS-URL: https://build.opensuse.org/request/show/1151577
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=289
 2024-02-26 13:40:54 +00:00
Ana Guerrero
3e94cee43c Accepting request 1142310 from server:proxy 
changes only changes, CVEs, bugs, etc.

OBS-URL: https://build.opensuse.org/request/show/1142310
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=118
 2024-01-29 21:33:26 +00:00
Adam Majer
1b2dbe0e67 add missing CVEs 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=287
 2024-01-29 13:38:27 +00:00
Adam Majer
335a196703 add bugzilla entry 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=286
 2024-01-29 11:23:56 +00:00
Dominique Leuenberger
271189ebfc Accepting request 1135832 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/1135832
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=117
 2024-01-03 11:26:37 +00:00
Martin Pluskal
af1d180b1f Accepting request 1135796 from home:dirkmueller:Factory 
drop old, not referenced assets

OBS-URL: https://build.opensuse.org/request/show/1135796
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=284
 2023-12-31 07:22:40 +00:00
Martin Pluskal
311bd1e5b3 Accepting request 1135553 from home:seanlew:branches:server:proxy 
Updated squid to 6.6

OBS-URL: https://build.opensuse.org/request/show/1135553
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=283
 2023-12-29 09:02:20 +00:00
Ana Guerrero
f4934e733f Accepting request 1122203 from server:proxy 
- update to 6.4:
  * security fixes:
    + Request/Response smuggling in HTTP/1.1 and ICAP (bsc#1216500, CVE-2023-46846)
    + Multiple issues in HTTP response caching (bsc#1216496, CVE-2023-5824)
    + Denial of Service in HTTP Digest Authentication (bsc#1216495, CVE-2023-46847)
    + Denial of Service in FTP (bsc#1216498, CVE-2023-46848)
    + Fix validation of certificates (bsc#1216803, CVE-2023-46724)
  * Bug 5294: ERR_CANNOT_FORWARD returned instead of ERR_DNS_FAIL
  * Bug 4981: Work around in-call job invalidation bugs
  * basic_smb_lm_auth: fix 'no previous declaration' warnings
  * CacheManager: require /squid-internal-mgr/ URL path prefix
  * ESI: Fix build [-Wsingle-bit-bitfield-constant-conversion]
  * documentation changes

OBS-URL: https://build.opensuse.org/request/show/1122203
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=116
 2023-11-02 19:22:22 +00:00
Adam Majer
62ba66243a - update to 6.4: 
* security fixes:
    + Request/Response smuggling in HTTP/1.1 and ICAP (bsc#1216500, CVE-2023-46846)
    + Multiple issues in HTTP response caching (bsc#1216496, CVE-2023-5824)
    + Denial of Service in HTTP Digest Authentication (bsc#1216495, CVE-2023-46847)
    + Denial of Service in FTP (bsc#1216498, CVE-2023-46848)
    + Fix validation of certificates (bsc#1216803, CVE-2023-46724)
  * Bug 5294: ERR_CANNOT_FORWARD returned instead of ERR_DNS_FAIL
  * Bug 4981: Work around in-call job invalidation bugs
  * basic_smb_lm_auth: fix 'no previous declaration' warnings
  * CacheManager: require /squid-internal-mgr/ URL path prefix
  * ESI: Fix build [-Wsingle-bit-bitfield-constant-conversion]
  * documentation changes

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=281
 2023-11-02 08:45:54 +00:00
Dominique Leuenberger
06806c2bd9 Accepting request 1112346 from server:proxy 
- update to 6.3:
  - Bug 5294: ERR_CANNOT_FORWARD returned instead of ERR_DNS_FAIL
  - Bug 4981: Work around in-call job invalidation bugs
  - basic_smb_lm_auth: fix 'no previous declaration' warnings
  - CacheManager: require /squid-internal-mgr/ URL path prefix
  - ESI: Fix build [-Wsingle-bit-bitfield-constant-conversion]

OBS-URL: https://build.opensuse.org/request/show/1112346
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=115
 2023-09-20 11:30:36 +00:00
Adam Majer
452d72b5c9 - update to 6.3: 
- Bug 5294: ERR_CANNOT_FORWARD returned instead of ERR_DNS_FAIL
  - Bug 4981: Work around in-call job invalidation bugs
  - basic_smb_lm_auth: fix 'no previous declaration' warnings
  - CacheManager: require /squid-internal-mgr/ URL path prefix
  - ESI: Fix build [-Wsingle-bit-bitfield-constant-conversion]

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=279
 2023-09-19 16:22:38 +00:00
Dominique Leuenberger
33fd7e9371 Accepting request 1103106 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/1103106
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=114
 2023-08-09 15:26:17 +00:00
Adam Majer
fcd32b7814 Accepting request 1103093 from home:polslinux:branches:server:proxy 
- update to 6.2:
  * Major UI changes:
    - Remove 8K limit for single access.log line
    - Add tls_key_log to report TLS communication secrets
  * Minor UI changes:
    - Add %transport::>connection_id logformat code
    - Add paranoid_hit_validation directive
    - Report SMP store queues state (mgr:store_queues)
    - Addcache_log_message directive
  * Developer Interest changes:
    - Replaced X-Cache and X-Cache-Lookup headers with Cache-Status
    - Reject HTTP/1.0 requests with unusual framing
    - codespell check added to source maintenance enforcement
    - Streamlined ./configure handling of optional libraries
    - Add –progress option to test-builds.sh
    - Remove layer-00-bootstrap from test script
    - Convert LRU map into a CLP map
    - Remove legacy context-based debugging in favor of CodeContext
  * Removed features:
    - Remove unused cache_diff binary
    - Remove obsolete membanger test
    - Remove deprecated leakfinder (–enable-leakfinder)

OBS-URL: https://build.opensuse.org/request/show/1103093
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=277
 2023-08-09 09:34:23 +00:00
Dominique Leuenberger
9ce8aee8b8 Accepting request 1085760 from server:proxy 
- update to 5.9:
  * Improve reply_body_max_size matching accuracy
  * fix gcc13 warning

OBS-URL: https://build.opensuse.org/request/show/1085760
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=113
 2023-05-10 14:17:59 +00:00
Adam Majer
3be8318923 - update to 5.9: 
* Improve reply_body_max_size matching accuracy
  * fix gcc13 warning

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=275
 2023-05-09 14:34:55 +00:00
Dominique Leuenberger
2dda8e08c9 Accepting request 1084087 from server:proxy 
- partial revert of earlier "fix PIDFile"
  - move pidfile back to /run/squid.pid and not in the directory
    owned by squid. The purpose of /run/squid/ is to facilitate
    SMP worker's IPC and not for the PID file. The PID file can
    live just fine in /run since it's written by root. (bsc#1210960)

OBS-URL: https://build.opensuse.org/request/show/1084087
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=112
 2023-05-03 10:56:54 +00:00
Adam Majer
07fb1be74a - partial revert of earlier "fix PIDFile" 
- move pidfile back to /run/squid.pid and not in the directory
    owned by squid. The purpose of /run/squid/ is to facilitate
    SMP worker's IPC and not for the PID file. The PID file can
    live just fine in /run since it's written by root. (bsc#1210960)

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=273
 2023-05-02 15:18:21 +00:00
Dominique Leuenberger
9497358eb1 Accepting request 1079395 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/1079395
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=111
 2023-04-14 11:14:09 +00:00
Martin Pluskal
9f9d69b591 Accepting request 1079299 from home:dirkmueller:Factory 
- update to 5.8:
  * Bug 5162: mgr:index URL do not produce MGR_INDEX template
  * Bug 5241: Block all non-localhost requests by default
  * Bug 5241: Block to-localhost, to-link-local requests by
    default
  * ext_kerberos_ldap_group_acl: Support -b with -D
  * Fix ACL type typo in req_header, rep_header key-changing
    ERRORs
  * ... and several compile fixes
  * ... and some code cleanup and polishing

OBS-URL: https://build.opensuse.org/request/show/1079299
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=271
 2023-04-14 07:58:30 +00:00
Dominique Leuenberger
c76636d04d Accepting request 1073989 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/1073989
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=110
 2023-03-24 14:21:18 +00:00
Adam Majer
8ec6e276c4 Accepting request 1073988 from home:marxin:branches:server:proxy 
- Enable LTO again as it survives tests now.

OBS-URL: https://build.opensuse.org/request/show/1073988
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=269
 2023-03-23 14:58:09 +00:00
Dominique Leuenberger
374407c07e Accepting request 1060834 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/1060834
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=109
 2023-01-25 16:44:05 +00:00
Adam Majer
85015dd9ad Accepting request 1060819 from home:kukuk:branches:server:proxy 
- Disable NIS auth module (NIS is deprecated and get's currently
  removed)

OBS-URL: https://build.opensuse.org/request/show/1060819
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=267
 2023-01-25 10:29:53 +00:00
Dominique Leuenberger
6cca7078d5 Accepting request 1055875 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/1055875
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=108
 2023-01-04 16:53:50 +00:00
Martin Pluskal
04b3f78d48 Accepting request 1046445 from home:schubi2:pam_usr_etc 
- Migration of PAM settings to /usr/lib/pam.d.

OBS-URL: https://build.opensuse.org/request/show/1046445
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=265
 2023-01-04 14:36:50 +00:00
Dominique Leuenberger
2835498b26 Accepting request 1006088 from server:proxy 
- Migration to /usr/etc: Saving user changed configuration files
  in /etc and restoring them while an RPM update.

and CVE references,
  - Regression Fix: Typo in manager ACL (bsc#1203677, CVE-2022-41317)
    (bsc#1203680, CVE-2022-41318)

OBS-URL: https://build.opensuse.org/request/show/1006088
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=107
 2022-09-26 16:48:40 +00:00
Adam Majer
0c32424ab7 Accepting request 1003832 from home:schubi2:logrotate 
- Migration to /usr/etc: Saving user changed configuration files
  in /etc and restoring them while an RPM update.

OBS-URL: https://build.opensuse.org/request/show/1003832
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=263
 2022-09-26 10:29:20 +00:00
Adam Majer
7c543ee7fd Add CVE references 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=262
 2022-09-26 10:23:09 +00:00
Dominique Leuenberger
384314cf9f Accepting request 1003011 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/1003011
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=106
 2022-09-12 17:09:05 +00:00
Adam Majer
221d387569 Accepting request 1002491 from home:dirkmueller:Factory 
- update to 5.7:
  - Regression Fix: Typo in manager ACL
  - Bug 5186: noteDestinationsEnd check failed: transportWait
  - Bug 5160: Test suite fails with -flto=auto
  - Bug 3193 pt2: NTLM decoder truncating strings
  - Bug 5133: OpenSSL 3.0 support
  - ext_session_acl: fix TDB key lookup
  - forward_max_tries: Do not count discarded connections
  - ... and many compile and debugging fixes

OBS-URL: https://build.opensuse.org/request/show/1002491
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=260
 2022-09-12 15:32:36 +00:00
Dominique Leuenberger
e089dbe488 Accepting request 999925 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/999925
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=105
 2022-08-30 12:49:06 +00:00
Adam Majer
e83ebc1600 Accepting request 999891 from home:computersalat:devel:proxy 
fix PIDFile

OBS-URL: https://build.opensuse.org/request/show/999891
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=258
 2022-08-29 11:10:51 +00:00
Dominique Leuenberger
7ab08601a3 Accepting request 985925 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/985925
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=104
 2022-06-30 11:18:25 +00:00
Lars Vogdt
3d5852fb75 Accepting request 985780 from home:schubi2 
- Moved logrotate files from user specific directory /etc/logrotate.d
  to vendor specific directory /usr/etc/logrotate.d.

OBS-URL: https://build.opensuse.org/request/show/985780
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=256
 2022-06-29 17:56:59 +00:00
Dominique Leuenberger
828dd3c8c8 Accepting request 984871 from server:proxy 
- Update to 5.6:
  * Improve handling of Gopher responses (bsc#1200907, CVE-2021-46784)
- Changes in 5.5:
  * fixes regression Bug 5192: esi_parser default is incorrect
  * Bug 5177: clientca certificates sent to https_port clients
  * Bug 5090: Must(!request->pinnedConnection()) violation
  * Kid restart leads to persistent queue overflows, delays/timeouts

OBS-URL: https://build.opensuse.org/request/show/984871
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=103
 2022-06-25 08:24:14 +00:00
Adam Majer
3db5ecbad9 - Update to 5.6: 
* Improve handling of Gopher responses (bsc#1200907, CVE-2021-46784)
- Changes in 5.5:
  * fixes regression Bug 5192: esi_parser default is incorrect
  * Bug 5177: clientca certificates sent to https_port clients
  * Bug 5090: Must(!request->pinnedConnection()) violation
  * Kid restart leads to persistent queue overflows, delays/timeouts

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=254
 2022-06-24 09:29:25 +00:00
Dominique Leuenberger
24f7dcfe4b Accepting request 966241 from server:proxy 
- Do not try to set special permissions for basic_pam_auth (bsc#1197649)

OBS-URL: https://build.opensuse.org/request/show/966241
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=102
 2022-04-01 19:35:36 +00:00
Adam Majer
12b4ed7ebc - Do not try to set special permissions for basic_pam_auth (bsc#1197649) 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=252
 2022-03-31 14:26:52 +00:00
Dominique Leuenberger
d6ca2748d9 Accepting request 965649 from server:proxy 
- Fix upgrade path from squid 4.x where we replaced some symlinks
  with directories in pretrans section (bsc#1197333)
- old_nettle_compat.patch: refresh patch

OBS-URL: https://build.opensuse.org/request/show/965649
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=101
 2022-03-29 16:16:15 +00:00
Adam Majer
eae485a694 with directories in pretrans section (bsc#1197333) 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=250
 2022-03-29 12:32:38 +00:00
Adam Majer
7a4d40ca76 - Fix upgrade path from squid 4.x where we replaced some symlinks 
with directories (bsc#1197333)
- old_nettle_compat.patch: refresh patch

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=249
 2022-03-29 12:30:01 +00:00
Dominique Leuenberger
e84e29bcf2 Accepting request 961868 from server:proxy 
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/961868
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=100
 2022-03-15 18:03:52 +00:00
Adam Majer
3a4ba9cfbe Add CVE reference only 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=247
 2022-03-08 11:45:31 +00:00
Dominique Leuenberger
8c3c7904b6 Accepting request 958214 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/958214
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=99
 2022-03-01 16:03:38 +00:00
Martin Pluskal
487cb8560d Accepting request 957749 from home:AndreasStieger:branches:server:proxy 
squid 5.4.1

OBS-URL: https://build.opensuse.org/request/show/957749
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=246
 2022-03-01 08:14:36 +00:00
Dominique Leuenberger
7fcf28aa05 Accepting request 952695 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/952695
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=98
 2022-02-09 19:39:20 +00:00
Martin Pluskal
2540ef9507 Accepting request 952643 from home:polslinux:branches:server:proxy 
- Update to 5.4:
  * Bug 5190: Preserve configured order of intermediate CA certificate chain
  * Bug 5188: Fix reconfiguration leaking tls-cert=... memory
  * Bug 5187: Properly track (and mark) truncated store entries
  * Bug 5134: assertion failed: Transients.cc:221: "old == e"
  * Bug 5132: Close the tunnel if to-server conn closes after client

OBS-URL: https://build.opensuse.org/request/show/952643
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=245
 2022-02-08 13:46:41 +00:00
Dominique Leuenberger
389d50ec6e Accepting request 942126 from server:proxy 
- Adjust harden_squid.service.patch to resolve boo#1193938

OBS-URL: https://build.opensuse.org/request/show/942126
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=97
 2021-12-22 19:18:17 +00:00
Martin Pluskal
c791b32bc9 - Adjust harden_squid.service.patch to resolve boo#1193938 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=244
 2021-12-22 14:26:08 +00:00
Dominique Leuenberger
11313c1e8a Accepting request 941860 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/941860
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=96
 2021-12-21 17:40:50 +00:00
Martin Pluskal
da562559a5 Accepting request 939558 from home:dirkmueller:Factory 
- update to 5.3:
  * Bug 5169: StoreMap.cc:517 "!s.reading()" assertion
  * Bug 5158: AnyP::Uri::host() mishandles [escaped] IPv6 addresses
  * Bug 5060: Parallel builds are not reliable
  * Documentation updates for logformat directive

OBS-URL: https://build.opensuse.org/request/show/939558
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=243
 2021-12-21 14:30:33 +00:00
Dominique Leuenberger
38338573ad Accepting request 936249 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/936249
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=95
 2021-12-07 23:00:02 +00:00
Martin Pluskal
1ba7c0f00b Accepting request 933486 from home:jsegitz:branches:systemdhardening:server:proxy 
Automatic systemd hardening effort by the security team. This has not been tested. For details please see https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort

OBS-URL: https://build.opensuse.org/request/show/933486
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=242
 2021-12-07 12:01:22 +00:00
Dominique Leuenberger
b367df9e33 Accepting request 923558 from server:proxy 
- transition to squid 5.x. This is a major release and for changes
  and how to transition from 4.x, see the release notes,
  http://www.squid-cache.org/Versions/v5/RELEASENOTES.html
- update to 5.2
  * fixes issues with WCCP protocol that may lead to information
    disclosure (bsc#1189403, CVE-2021-28116)
- drop unused BR: db-devel, ed, opensp-devel, pkgconfig(kdb)
- new BR: pkgconfig(tdb)

OBS-URL: https://build.opensuse.org/request/show/923558
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=94
 2021-10-07 22:05:48 +00:00
Adam Majer
7540de6b79 Fix Source URLs 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=241
 2021-10-06 17:10:48 +00:00
Martin Pluskal
91cd7d9ece Accepting request 923273 from home:adamm:branches:server:proxy 
- transition to squid 5.x. This is a major release and for changes
  and how to transition from 4.x, see the release notes,
  http://www.squid-cache.org/Versions/v5/RELEASENOTES.html
- update to 5.2
  * fixes issues with WCCP protocol that may lead to information
    disclosure (bsc#1189403, CVE-2021-28116)
- drop unused BR: db-devel, ed, opensp-devel, pkgconfig(kdb)
- new BR: pkgconfig(tdb)

OBS-URL: https://build.opensuse.org/request/show/923273
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=240
 2021-10-06 08:28:26 +00:00
Dominique Leuenberger
c66d86bb71 Accepting request 909881 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/909881
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=93
 2021-08-03 20:48:45 +00:00
Martin Pluskal
f4a3ff6528 Accepting request 909588 from home:dirkmueller:Factory 
- update to 4.16:
  - Regression Fix: --with-valgrind-debug build broken since 4.15
  - Bug 5129 pt1: remove Lock use from HttpRequestMethod
  - Bug 5128: Translation: Fix '% i' typo in es/ERR_FORWARDING_DENIED
  - Bug 4528: ICAP transactions quit on async DNS lookups

OBS-URL: https://build.opensuse.org/request/show/909588
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=239
 2021-08-03 07:22:15 +00:00
Dominique Leuenberger
b62fb0f8f4 Accepting request 895417 from server:proxy 
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/895417
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=92
 2021-06-01 08:36:47 +00:00
Adam Majer
9d9e9e1d0b Add missing bug reference 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=237
 2021-05-18 18:11:24 +00:00
Dominique Leuenberger
6804707c59 Accepting request 893984 from server:proxy 
Adding bug and CVE references only

OBS-URL: https://build.opensuse.org/request/show/893984
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=91
 2021-05-18 16:26:46 +00:00
Adam Majer
3761d61a9d - fix building with SLE12 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=235
 2021-05-18 12:44:03 +00:00
Adam Majer
abcd5831a0 - Bug 5106: Broken cache manager URL parsing (bsc#1185918, CVE-2021-28652) 
(bsc#1185921, CVE-2021-28651)
    (bsc#1185919, CVE-2021-28662)
  - Handle more Range requests (bsc#1185916, CVE-2021-31806)
  - Handle more partial responses (bsc#1185923)

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=234
 2021-05-18 08:58:40 +00:00
Dominique Leuenberger
0cfadfd43c Accepting request 892494 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/892494
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=90
 2021-05-12 17:32:42 +00:00
Martin Pluskal
b8860150b2 Accepting request 892304 from home:dirkmueller:Factory 
- update to 4.15:
  - Bug 5112: Excessively loud chunked reply parsing error reporting
  - Bug 5106: Broken cache manager URL parsing
  - Bug 5104: Memory leak in RFC 2169 response parsing
  - Bug 3556: "FD ... is not an open socket" for accept() problems
  - Profiling: CPU timing implemented for MAC non-x86
  - Fix HttpHeaderStats definition to include hoErrorDetail
  - Fix Squid-to-client write_timeout triggers client_lifetime timeout
  - Limit HeaderLookupTable_t::lookup() to BadHdr and specific IDs
  - Handle more Range requests
  - Handle more partial responses
  - Stop processing a response if the Store entry is gone
  - ... and some portability fixes
  - ... and some documentation updates

OBS-URL: https://build.opensuse.org/request/show/892304
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=232
 2021-05-12 12:31:04 +00:00
Dominique Leuenberger
3bf85069ce Accepting request 870771 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/870771
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=89
 2021-02-10 20:31:00 +00:00
Martin Pluskal
0e6d2ed89f Accepting request 870712 from home:dirkmueller:branches:server:proxy 
- update to 4.14:
  - Regression Fix: support for non-lowercase Transfer-Encoding value
  - Regression Fix: cachemgr.cgi wrong 403 response to authenticated menu URIs
  - Bug 5076: WCCP Security Info incorrect
  - Bug 5073: Compile error: index was not declared in this scope
  - Bug 5065: url_rewrite_program documentation update
  - Bug 3074 pt2: improved handling of URI paths implicit '/'
  - Fix transactions exceeding client_lifetime logged as _ABORTED

OBS-URL: https://build.opensuse.org/request/show/870712
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=230
 2021-02-10 06:37:01 +00:00
Dominique Leuenberger
035ce7c4e7 Accepting request 846311 from server:proxy 
- re-add older SLES12 requirements so we can use one devel project
  for all codestreams

- fix previous change to reinstante permissions macros, because the wrong path
  has been used (bsc#1171569).
- use libexecdir instead of libdir to conform to recent changes in Factory
  (bsc#1171164).

OBS-URL: https://build.opensuse.org/request/show/846311
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=88
 2020-11-05 20:56:20 +00:00
Adam Majer
8d1748fdfd Accepting request 846223 from home:adamm:branches:server:proxy 
- re-add older SLES12 requirements so we can use one devel project
  for all codestreams

- fix previous change to reinstante permissions macros, because the wrong path
  has been used (bsc#1171569).
- use libexecdir instead of libdir to conform to recent changes in Factory
  (bsc#1171164).

OBS-URL: https://build.opensuse.org/request/show/846223
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=228
 2020-11-05 16:30:46 +00:00
Dominique Leuenberger
04ac4278eb Accepting request 840300 from server:proxy 
- Reinstate permissions macros for pinger binary, because the permissions
  package is also responsible for setting up the cap_net_raw capability,
  currently a fresh squid install doesn't get a capability bit at all
  (bsc#1171569).

OBS-URL: https://build.opensuse.org/request/show/840300
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=87
 2020-10-09 22:29:08 +00:00
Adam Majer
9446ddfb48 Unescape macros 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=226
 2020-10-08 14:14:03 +00:00
Adam Majer
f80a1dd80c Accepting request 840239 from home:mgerstner:branches:server:proxy 
- Reinstate permissions macros for pinger binary, because the permissions
  package is also responsible for setting up the cap_net_raw capability,
  currently a fresh squid install doesn't get a capability bit at all
  (bsc#1171569).

OBS-URL: https://build.opensuse.org/request/show/840239
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=225
 2020-10-08 14:13:00 +00:00
Dominique Leuenberger
c9bc4ae547 Accepting request 831407 from server:proxy 
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/831407
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=86
 2020-09-02 23:13:55 +00:00
Adam Majer
b0e79047c9 Added CVE number only 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=223
 2020-08-26 08:32:58 +00:00
Dominique Leuenberger
31a6238417 Accepting request 828922 from server:proxy 
- squid 4.13:
  * Enforce token characters for field-name (#700)
  * Fix livelocking in peerDigestHandleReply (#698) (bsc#1175671)
  * Improve Transfer-Encoding handling (#702)
    (bsc#1175665, CVE-2020-15811)
  * Forbid obs-fold and bare CR whitespace in framing header fields (#701)
  * Source Format Enforcement
  * Enforce token characters for field-name (#700)
    (bsc#1175664, CVE-2020-15810)
  * Do not stall while debugging a scan of an empty store_table (#699)
  * Fix livelocking in peerDigestHandleReply (#698)
  * Honor on_unsupported_protocol for intercepted https_port (#689)
  * Bug #5051: Some collapsed revalidation responses never expire (#683)
  * SslBump: Support parsing GREASEd (and future) TLS handshakes (#663)

OBS-URL: https://build.opensuse.org/request/show/828922
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=85
 2020-08-25 07:33:38 +00:00
Adam Majer
9f88e6bab0 - squid 4.13: 
* Enforce token characters for field-name (#700)
  * Fix livelocking in peerDigestHandleReply (#698) (bsc#1175671)
  * Improve Transfer-Encoding handling (#702)
    (bsc#1175665, CVE-2020-15811)
  * Forbid obs-fold and bare CR whitespace in framing header fields (#701)
  * Source Format Enforcement
  * Enforce token characters for field-name (#700)
    (bsc#1175664, CVE-2020-15810)
  * Do not stall while debugging a scan of an empty store_table (#699)
  * Fix livelocking in peerDigestHandleReply (#698)
  * Honor on_unsupported_protocol for intercepted https_port (#689)
  * Bug #5051: Some collapsed revalidation responses never expire (#683)
  * SslBump: Support parsing GREASEd (and future) TLS handshakes (#663)

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=221
 2020-08-24 11:53:55 +00:00
Dominique Leuenberger
e3b6e0221f Accepting request 825214 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/825214
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=84
 2020-08-10 13:01:05 +00:00
Martin Pluskal
f6f553d246 Accepting request 822709 from home:adamm:branches:server:proxy 
- Change pinger and basic_pam_auth helper to use standard permissions.
  pinger uses cap_net_raw=ep instead (bsc#1171569)
- Move squid helpers under /usr/lib{,64}/squid for Tumbleweed and SLE16
  Please adjust your config paths accordingly

OBS-URL: https://build.opensuse.org/request/show/822709
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=219
 2020-08-10 06:02:07 +00:00
Dominique Leuenberger
8645cb2c21 Accepting request 817633 from server:proxy 
Only add missing CVE and bugnumber

  * HTTP: validate Content-Length value prefix (CVE-2020-15049, bsc#1173455)

OBS-URL: https://build.opensuse.org/request/show/817633
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=83
 2020-06-29 19:17:13 +00:00
Adam Majer
f54ff4bf28 Add missing CVE number 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=217
 2020-06-29 08:00:27 +00:00
Adam Majer
cf1ad20812 * HTTP: validate Content-Length value prefix (CVE-CVE-2020-15049, bsc#1173455) 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=216
 2020-06-29 07:59:39 +00:00
Dominique Leuenberger
4afdd113d1 Accepting request 816822 from server:proxy 
Add bug references only  

* Fixes a potential Denial of Service when processing TLS certificates
    during HTTPS or SSL-Bump connections (CVE-2020-14059, bsc#1173304)

OBS-URL: https://build.opensuse.org/request/show/816822
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=82
 2020-06-24 13:50:24 +00:00
Adam Majer
cccd5fcd50 * Fixes a potential Denial of Service when processing TLS certificates 
during HTTPS or SSL-Bump connections (CVE-2020-14059, bsc#1173304)

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=214
 2020-06-24 11:46:29 +00:00
Dominique Leuenberger
3b3d2c2e9a Accepting request 816284 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/816284
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=81
 2020-06-22 15:46:11 +00:00
Martin Pluskal
90caa15be3 Accepting request 816219 from home:AndreasStieger:branches:server:proxy 
squid 4.12

OBS-URL: https://build.opensuse.org/request/show/816219
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=212
 2020-06-22 08:43:44 +00:00
Dominique Leuenberger
a8c49f5f4f Accepting request 796564 from server:proxy 
- Update to squid 4.11:
  * Fix incorrect buffer handling that can result in cache
    poisoning, remote execution, and denial of service attacks when
    processing ESI responses
    (CVE-2019-12519, CVE-2019-12521, bsc#1169659)
  * Fixes possible information disclosure when translating
    FTP server listings into HTTP responses.
    (CVE-2019-12528, bsc#1162689)
  * Fixes possible denial of service caused by incorrect buffer
    management ext_lm_group_acl when processing NTLM Authentication
    credentials. (CVE-2020-8517, bsc#1162691)
  * Fixes a potential remote execution vulnerability when using
    HTTP Digest Authentication (CVE-2020-11945, bsc#1170313)
  * Fixes problem when reconfigure killed Coordinator in
    SMP+ufs configurations (#556)

OBS-URL: https://build.opensuse.org/request/show/796564
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=80
 2020-04-23 16:40:20 +00:00
Adam Majer
8b38ddcc65 - Update to squid 4.11: 
* Fix incorrect buffer handling that can result in cache
    poisoning, remote execution, and denial of service attacks when
    processing ESI responses
    (CVE-2019-12519, CVE-2019-12521, bsc#1169659)
  * Fixes possible information disclosure when translating
    FTP server listings into HTTP responses.
    (CVE-2019-12528, bsc#1162689)
  * Fixes possible denial of service caused by incorrect buffer
    management ext_lm_group_acl when processing NTLM Authentication
    credentials. (CVE-2020-8517, bsc#1162691)
  * Fixes a potential remote execution vulnerability when using
    HTTP Digest Authentication (CVE-2020-11945, bsc#1170313)
  * Fixes problem when reconfigure killed Coordinator in
    SMP+ufs configurations (#556)

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=210
 2020-04-23 13:47:01 +00:00
Dominique Leuenberger
9f839c09d5 Accepting request 795800 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/795800
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=79
 2020-04-21 11:11:43 +00:00
Adam Majer
1a19c2cdda Accepting request 795761 from home:kukuk:branches:server:proxy 
- Make logrotate recommended, it's not strictly required and 
  doesn't make any sense in containers

OBS-URL: https://build.opensuse.org/request/show/795761
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=208
 2020-04-20 11:30:46 +00:00
Dominique Leuenberger
1a693817c3 Accepting request 792007 from server:proxy 
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/792007
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=78
 2020-04-08 17:57:10 +00:00
Adam Majer
7c91a28b19 Add missing CVE number to upstream release 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=206
 2020-03-31 14:28:53 +00:00
Dominique Leuenberger
e641f7a8bc Accepting request 776229 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/776229
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=77
 2020-02-19 11:43:04 +00:00
Martin Pluskal
53be975248 Accepting request 776203 from home:kukuk:container 
- Use sysusers instead of shadow to create squid user and groups
- Don't hard require systemd

OBS-URL: https://build.opensuse.org/request/show/776203
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=204
 2020-02-19 08:58:35 +00:00
Dominique Leuenberger
9b1651858a Accepting request 770216 from server:proxy 
- Update to squid 4.10:
  * fixes a security issue allowing a remote client ability to cause
    use a buffer overflow when squid is acting as reverse-proxy.
    (CVE-2020-8449, CVE-2020-8450, bsc#1162687)
  * fixes a security issue allowing for information disclosure in
    FTP gateway (CVE-2019-12528, bsc#1162689)
  * fixes a security issue in ext_lm_group_acl when processing
    NTLM Authentication credentials. (CVE-2020-8517, bsc#1162691)
  * improve cache handling with chunked responses

OBS-URL: https://build.opensuse.org/request/show/770216
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=76
 2020-02-05 18:44:27 +00:00
Adam Majer
4575171bf0 - Update to squid 4.10: 
* fixes a security issue allowing a remote client ability to cause
    use a buffer overflow when squid is acting as reverse-proxy.
    (CVE-2020-8449, CVE-2020-8450, bsc#1162687)
  * fixes a security issue allowing for information disclosure in
    FTP gateway (CVE-2019-12528, bsc#1162689)
  * fixes a security issue in ext_lm_group_acl when processing
    NTLM Authentication credentials. (CVE-2020-8517, bsc#1162691)
  * improve cache handling with chunked responses

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=202
 2020-02-05 10:09:46 +00:00
Dominique Leuenberger
5dc6931f93 Accepting request 746661 from server:proxy 
- Update to squid 4.9:
  * fixes multiple Cross-Site Scripting issues in cachemgr.cgi
    (CVE-2019-13345, bsc#1140738)
  * fixes heap overflow in URN processing
    (CVE-2019-12526, bsc#1156326)
  * fixes multiple issues in URI processing
    (CVE-2019-12523, CVE-2019-18676, bsc#1156329)
  * fixes Cross-Site Request Forgery in HTTP Request processing
    (CVE-2019-18677, bsc#1156328)
  * fixes HTTP Request Splitting in HTTP message processing
    (CVE-2019-18678, bsc#1156323)
  * fixes information disclosure in HTTP Digest Authentication
    (CVE-2019-18679, bsc#1156324)
  * lower cache_peer hostname - this showed up as DNS failures
    if peer name was configured with any upper case characters
  * TLS: Multiple SSL-Bump fixes
  * TLS: Fix expiration of self-signed generated certs to be 3 years
  * TLS: Fix on_unsupported_protocol tunnel action
  * Fix several rock cache_dir corruption issues
- fix_configuration_error.patch: upstreamed
- old_nettle_compat.patch: refreshed

OBS-URL: https://build.opensuse.org/request/show/746661
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=75
 2019-11-09 22:40:27 +00:00
Adam Majer
b862c898ec - Update to squid 4.9: 
* fixes multiple Cross-Site Scripting issues in cachemgr.cgi
    (CVE-2019-13345, bsc#1140738)
  * fixes heap overflow in URN processing
    (CVE-2019-12526, bsc#1156326)
  * fixes multiple issues in URI processing
    (CVE-2019-12523, CVE-2019-18676, bsc#1156329)
  * fixes Cross-Site Request Forgery in HTTP Request processing
    (CVE-2019-18677, bsc#1156328)
  * fixes HTTP Request Splitting in HTTP message processing
    (CVE-2019-18678, bsc#1156323)
  * fixes information disclosure in HTTP Digest Authentication
    (CVE-2019-18679, bsc#1156324)
  * lower cache_peer hostname - this showed up as DNS failures
    if peer name was configured with any upper case characters
  * TLS: Multiple SSL-Bump fixes
  * TLS: Fix expiration of self-signed generated certs to be 3 years
  * TLS: Fix on_unsupported_protocol tunnel action
  * Fix several rock cache_dir corruption issues
- fix_configuration_error.patch: upstreamed
- old_nettle_compat.patch: refreshed

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=200
 2019-11-08 16:23:28 +00:00
Dominique Leuenberger
ad1d02283e Accepting request 721533 from server:proxy 
- fix_configuration_error.patch: Fix compilation with -Wreturn-type
- old_nettle_compat.patch: Update to actually use older version

OBS-URL: https://build.opensuse.org/request/show/721533
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=74
 2019-08-08 12:23:33 +00:00
Adam Majer
5bf83e3a20 Fix compilation with old nettle 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=198
 2019-08-07 08:32:10 +00:00
Adam Majer
cfbd7154aa OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=197 2019-08-06 13:31:27 +00:00
Adam Majer
51b5f199a0 - fix_configuration_error.patch: Fix compilation with -Wreturn-type 
- old_nettle_compat.patch: Update to actually use older version

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=196
 2019-08-06 13:19:25 +00:00
Dominique Leuenberger
a7a57d9637 Accepting request 718583 from server:proxy 
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/718583
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=73
 2019-07-26 10:42:20 +00:00
Adam Majer
e1d5654187 Fix patch for current patch 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=194
 2019-07-18 14:27:06 +00:00
Adam Majer
cccd13179c - - old_nettle_compat.patch: Fix compatibility with nettle in SLE-12 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=193
 2019-07-18 14:14:00 +00:00
Dominique Leuenberger
a8a96222c4 Accepting request 715745 from server:proxy 
- Update to squid 4.8:
  + Ignore ECONNABORTED in accept(2)
  + RFC 7230 forbids generation of userinfo subcomponent of https URL
  + cachemgr.cgi: unallocated memory access resulting in a potential
    denial of service. (bsc#1141442, CVE-2019-12854)
  + terminating c-strings beyond BASE64_DECODE_LENGTH
  + Replace uudecode with libnettle base64 decoder fixing a denial
    of service vulnerability (bsc#1141329, CVE-2019-12529)
  + fix to_localhost does not include ::
  + Fix GCC-9 build issues
  + Fix Digest auth parameter parsing preventing a potential
    denial of service (bsc#1141332, CVE-2019-12525)
  + Update HttpHeader::getAuth to SBuf which prevents a potential
    heap overflowing allowing a possible remote code execution
    attack when processing HTTP Authentication credentials
    (bsc#1141330, CVE-2019-12527)
  + Add the NO_TLSv1_3 option to available tls-options values
  + Fix handling of tiny invalid responses
  + Fix Memory leak when http_reply_access uses external_acl
  + Fix Multiple XSS issues in cachemgr.cgi
    (bsc#1140738, CVE-2019-13345)
- use unbundled version of libnettle
- disable LTO as a workaround to tests failing

OBS-URL: https://build.opensuse.org/request/show/715745
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=72
 2019-07-18 13:20:23 +00:00
Adam Majer
1b4a15b127 - use unbundled version of libnettle 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=191
 2019-07-16 15:33:12 +00:00
Adam Majer
fef008683e OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=190 2019-07-16 07:58:08 +00:00
Adam Majer
49783ccec7 - disable LTO to as a workaround to tests failing 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=189
 2019-07-16 07:57:43 +00:00
Adam Majer
1f7d2548ca - Update to squid 4.8: 
+ Ignore ECONNABORTED in accept(2)
  + RFC 7230 forbids generation of userinfo subcomponent of https URL
  + cachemgr.cgi: unallocated memory access resulting in a potential
    denial of service. (bsc#1141442, CVE-2019-12854)
  + terminating c-strings beyond BASE64_DECODE_LENGTH
  + Replace uudecode with libnettle base64 decoder fixing a denial
    of service vulnerability (bsc#1141329, CVE-2019-12529)
  + fix to_localhost does not include ::
  + Fix GCC-9 build issues
  + Fix Digest auth parameter parsing preventing a potential
    denial of service (bsc#1141332, CVE-2019-12525)
  + Update HttpHeader::getAuth to SBuf which prevents a potential
    heap overflowing allowing a possible remote code execution
    attack when processing HTTP Authentication credentials
    (bsc#1141330, CVE-2019-12527)
  + Add the NO_TLSv1_3 option to available tls-options values
  + Fix handling of tiny invalid responses
  + Fix Memory leak when http_reply_access uses external_acl
  + Fix Multiple XSS issues in cachemgr.cgi
    (bsc#1140738, CVE-2019-13345)

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=188
 2019-07-15 15:22:32 +00:00
Dominique Leuenberger
0b6b75ecb3 Accepting request 702817 from server:proxy 
Adding few more bug numbers that were missing
from the squid 3.x changelog

OBS-URL: https://build.opensuse.org/request/show/702817
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=71
 2019-05-15 10:33:54 +00:00
Adam Majer
777c5c3d20 Few more missing bug numbers from 3.x line 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=186
 2019-05-14 11:29:55 +00:00
Dominique Leuenberger
a7bfb7108b Accepting request 701549 from server:proxy 
- Update to squid 4.7: (jsc#SLE-5648)
  + Fix stack-based buffer-overflow when parsing SNMP messages
  + Fixed squidclient authentication
  + Add support for buffer-size= to UDP logging
  + Trust intermediate CAs from trusted stores
  + Bug #4928: Cannot convert non-IPv4 to IPv4
  + Bug #4796: comm.cc !isOpen(conn->fd) assertion when rotating logs
  + Bug #4823: assertion failed: "lowestOffset () <= target_offset"
    (bsc#1133089)
  + Bug #4942: --with-filedescriptors does not do anything

- Syncronize bug and CVE references between 3.x and 4.x squid changelog
  versions. These bugs were fixed here either without properly referencing
  them during the fix or 4.x branch was never affected by them.
  (bsc#1090089, CVE-2018-1172, bsc#979008, CVE-2016-4556,
   bsc#938715, CVE-2015-5400, bsc#949942, CVE-2014-9749,
   bsc#1016169, CVE-2016-10003, bsc#1016168, CVE-2016-10002,
   bsc#979011, CVE-2016-4555, bsc#979010, CVE-2016-4554,
   bsc#979009, CVE-2016-4553, bsc#976556, CVE-2016-4054,
   bsc#976553, CVE-2016-4051, bsc#973783, CVE-2016-3948,
   bsc#973782, CVE-2016-3947, bsc#968395, CVE-2016-2572,
   bsc#968394, CVE-2016-2571, bsc#968393, CVE-2016-2570,
   bsc#968392, CVE-2016-2569, bsc#967011, CVE-2016-2390,
   bsc#959290, CVE-2016-4052, CVE-2016-4053)

  + Fix memory leak when parsing SNMP packet
    (bsc#1113669, CVE-2018-19132)
    before displaying them (bsc#1113668, CVE-2018-19131)

OBS-URL: https://build.opensuse.org/request/show/701549
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=70
 2019-05-08 13:17:46 +00:00
Adam Majer
f7bbf15a1d - Update to squid 4.7: (jsc#SLE-5648) 
+ Fix stack-based buffer-overflow when parsing SNMP messages
  + Fixed squidclient authentication
  + Add support for buffer-size= to UDP logging
  + Trust intermediate CAs from trusted stores
  + Bug #4928: Cannot convert non-IPv4 to IPv4
  + Bug #4796: comm.cc !isOpen(conn->fd) assertion when rotating logs
  + Bug #4823: assertion failed: "lowestOffset () <= target_offset"
    (bsc#1133089)
  + Bug #4942: --with-filedescriptors does not do anything

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=184
 2019-05-08 10:45:58 +00:00
Adam Majer
d65c3be188 - Syncronize bug and CVE references between 3.x and 4.x squid changelog 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=183
 2019-02-26 16:24:46 +00:00
Stephan Kulow
4bc6b0168e Accepting request 678651 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/678651
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=69
 2019-02-25 16:57:01 +00:00
Martin Pluskal
41a28e8b22 Accepting request 678364 from home:seanlew:branches:server:proxy 
Update squid to 4.6

OBS-URL: https://build.opensuse.org/request/show/678364
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=181
 2019-02-25 07:58:31 +00:00
Yuchen Lin
142b1d34e9 Accepting request 677001 from server:proxy 
- Revert whitespace deletions of .changes as it makes diffs a pain.

- Do not hide errors from useradd. Make scriptlets
  plain sh compatible.

OBS-URL: https://build.opensuse.org/request/show/677001
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=68
 2019-02-19 11:00:50 +00:00
Adam Majer
0dc8c8b0d5 - Revert whitespace deletions of .changes as it makes diffs a pain. 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=179
 2019-02-18 10:04:44 +00:00
Martin Pluskal
8ed27ce66b Accepting request 676612 from home:jengelh:branches:server:proxy 
- Do not hide errors from useradd. Make scriptlets
  plain sh compatible.

OBS-URL: https://build.opensuse.org/request/show/676612
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=178
 2019-02-18 07:45:40 +00:00
Dominique Leuenberger
5f3fd69e41 Accepting request 662383 from server:proxy 
- Update to squid 4.5: 
  + Squid crashes when ICAPS and a sslcrtvalidator used together (#328)
  + ssl_bump prevents from accessing some web contents (#304) 
  + Docs: improved lexgrog compatibility (#340)
  + Redesign forward_max_tries count TCP connection attempts
  + Fix client_connection_mark ACL handling of clientless transactions
  + Fix netdb exchange with a TLS cache peer
  + Update netdb when tunneling requests
  + Use pkg-config for detecting libxml2
  + Misc doc updates
  + Misc code compile fixes

OBS-URL: https://build.opensuse.org/request/show/662383
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=67
 2019-01-03 17:08:06 +00:00
Martin Pluskal
b292dfd12d OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=176 2019-01-02 08:44:24 +00:00
Martin Pluskal
f3e0551c1d Accepting request 662363 from home:seanlew:branches:server:proxy 
Updat squid

OBS-URL: https://build.opensuse.org/request/show/662363
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=175
 2019-01-02 08:30:55 +00:00
Dominique Leuenberger
2386973e81 Accepting request 653729 from server:proxy 
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/653729
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=66
 2018-12-04 19:57:39 +00:00
Adam Majer
a2705b2937 - Fix permissions of installed file to tmpfilesdir 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=173
 2018-11-09 13:15:01 +00:00
Dominique Leuenberger
8da3d2bbef Accepting request 645296 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/645296
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=65
 2018-10-31 12:14:28 +00:00
Adam Majer
172a09005a Accepting request 645255 from home:adamm:branches:server:proxy 
- New upstream stable version 4.4:
  + Fix memory leak when parsing SNMP packet (bsc#1113669)
  + Fixed display of error page by quoting certificate fields
    before displaying them (bsc#1113668)
  + Malformed %>ru URIs for CONNECT requests

OBS-URL: https://build.opensuse.org/request/show/645255
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=171
 2018-10-29 14:48:28 +00:00
Dominique Leuenberger
c2bb72d901 Accepting request 643975 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/643975
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=64
 2018-10-23 18:42:13 +00:00
Martin Pluskal
b13fb97e7d Accepting request 643973 from home:adamm:branches:server:proxy 
- Create runtime directories needed when SMP mode is enabled.
  (bsc#1112695, bsc#1112066)
- Make changelog entries format consistent

OBS-URL: https://build.opensuse.org/request/show/643973
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=169
 2018-10-23 13:55:38 +00:00
Dominique Leuenberger
9e74ac36eb Accepting request 639903 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/639903
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=63
 2018-10-04 17:02:24 +00:00
Martin Pluskal
5f431c6df6 Accepting request 639902 from home:pluskalm:branches:server:proxy 
- Enable tests

OBS-URL: https://build.opensuse.org/request/show/639902
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=167
 2018-10-04 08:40:01 +00:00
Martin Pluskal
71b88f256b - Correct changelog 
* Bug 4885: Excessive memory usage when running out of descriptors
	* Bug 4877: Add missing text about external_acl_type %DATA changes
	* Bug 4875 pt1: GCC-8 compile errors with -O3 optimization
	* Bug 4716: Blank lines in cachemgr.conf are not skipped
	* Bug 4691: balance_on_multiple_ip config option docs
	* basic_pop3_auth: fix startup errors
	* langpack: Add missing dialect aliases
	* Fix range_offset_limit debugging
	* Fix icc build errors
	* Update systemd dependencies in squid.service

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=166
 2018-10-04 07:37:10 +00:00
Ondřej Súkup
c2c03bd33a Accepting request 639660 from home:seanlew:branches:server:proxy 
Updated squid to 4.3

OBS-URL: https://build.opensuse.org/request/show/639660
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=165
 2018-10-03 08:12:03 +00:00
Dominique Leuenberger
bf6256c979 Accepting request 628977 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/628977
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=62
 2018-08-15 08:36:34 +00:00
Martin Pluskal
c8ee9aaee4 Accepting request 628925 from home:adamm:branches:server:proxy 
- New upstream stable version 4.2:
  + fix HTTPMSGLOCK missing pointer safety
  + gcc-8 fixes
  + fix milliseconds logformats prepend 0s instead of spaces
  + fix %>ru logging of huge URLs

OBS-URL: https://build.opensuse.org/request/show/628925
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=163
 2018-08-13 12:44:10 +00:00
Dominique Leuenberger
c3b1f14fe8 Accepting request 621672 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/621672
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=61
 2018-07-09 11:30:52 +00:00
Martin Pluskal
4552ea2332 Accepting request 621175 from home:adamm:branches:server:proxy 
- New upstream stable version 4.1:
  + Fix --with-netfilter-conntrack error message
  + Supply ALE for force_request_body_continuation ACL

OBS-URL: https://build.opensuse.org/request/show/621175
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=161
 2018-07-09 07:44:50 +00:00
Yuchen Lin
5f7a4469f4 Accepting request 617654 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/617654
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=60
 2018-06-20 13:31:31 +00:00
Martin Pluskal
d53179c2b0 Accepting request 617514 from home:adamm:branches:server:proxy 
- New upstream version 4.0.25:
  + Fixed regression: querying private entries for HTCP/ICP
  + Fixed regression: deny_info %R macro not being expanded
  + Fixed regression: proxy_auth ACL -i/+i flags not working
  + Fixed regression: filter chain certificates for validity
    when loading
  + Fixed regression: Transient reader locking broken in 4.0.24
  + Fixed NegotiateSsl crash on aborting transaction
  + Fixed IPC shared memory leaks when disker queue overflows
  + Update negotiate_kerberos_auth helper protocol to v3.4
  + Fixed: purge tool does not obey --sysconfdir= build option
  + Add timestamps to (most) FATAL messages
- a3f6783.patch: upstreamed, obsolete.

OBS-URL: https://build.opensuse.org/request/show/617514
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=159
 2018-06-19 07:13:53 +00:00
Dominique Leuenberger
516c6588b1 Accepting request 614573 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/614573
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=59
 2018-06-08 21:16:44 +00:00
Martin Pluskal
987a0ab896 Accepting request 614571 from home:adamm:branches:server:proxy 
- a3f6783.patch: Fixes certificate handling with intermediates
  chains

OBS-URL: https://build.opensuse.org/request/show/614571
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=157
 2018-06-06 13:59:50 +00:00
Dominique Leuenberger
47b9dac142 Accepting request 607436 from server:proxy 
- Fix package configure, allowing it to build in factory
- correct version in changelog

OBS-URL: https://build.opensuse.org/request/show/607436
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=58
 2018-05-16 09:41:52 +00:00
Adam Majer
93c15019b4 - Fix package configure 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=155
 2018-05-15 08:19:04 +00:00
Adam Majer
bbb5cead36 fix changelog version 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=154
 2018-05-11 11:09:01 +00:00
Dominique Leuenberger
dd3acf6d91 Accepting request 592192 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/592192
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=57
 2018-03-30 10:07:45 +00:00
Ondřej Súkup
987a0f16ab Accepting request 591872 from home:adamm:branches:server:proxy 
- New upstream version 4.2.24
  + Bug 4505: SMP caches sometimes do not purge entries
  + TPROXY: Fix clientside_mark and client port logging
  + Native FTP: Fix "Cannot assign requested address" with TPROXY
  + SSL-Bump: Fix authentication with types other than Basic
  + ... and some documentation fixes
- install license correctly (bsc#1082318) and transition to SPDXv3

OBS-URL: https://build.opensuse.org/request/show/591872
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=152
 2018-03-29 08:40:02 +00:00
Dominique Leuenberger
e97c29e0ed Accepting request 578257 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/578257
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=56
 2018-02-20 16:56:11 +00:00
Martin Pluskal
901a4dfe17 Accepting request 578251 from home:adamm:branches:server:proxy 
- Spec file cleanup:
  + Drop unused fillup template - it's not used by systemd script
  + Drop %pretrans section which is only used to upgrade from
    version 3.4 of squid - no supported codestream has that version.
  + Drop explicit BR: on systemd-rpm-macros
- Update squid.service systemd file
  + Don't need to use squid to manage squid anymore
  + Drop references to default config file, since it's default
- Drop reference to nonexistent EnvironmentFile in the service file

OBS-URL: https://build.opensuse.org/request/show/578251
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=150
 2018-02-20 07:30:53 +00:00
Dominique Leuenberger
16d2f0b0b0 Accepting request 572519 from server:proxy 
- Change default error pages symlink from German to English.

  (bnc#1077003, CVE-2018-1000024)
  (bnc#1077006, CVE-2018-1000027)

OBS-URL: https://build.opensuse.org/request/show/572519
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=55
 2018-02-06 15:47:37 +00:00
Adam Majer
1fb71188d2 - Change default error pages symlink from German to English. 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=148
 2018-01-29 10:37:51 +00:00
Adam Majer
266e3a395d Adding CVE numbers to the changes file. 
(bnc#1077003, CVE-2018-1000024)
  (bnc#1077006, CVE-2018-1000027)

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=147
 2018-01-29 10:06:52 +00:00
Dominique Leuenberger
a98df575bf Accepting request 568822 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/568822
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=54
 2018-01-24 14:32:17 +00:00
Adam Majer
f585458732 Accepting request 568548 from home:adamm:branches:server:proxy 
- Update Squid to 4.0.23
  * fixes DoS caused by incorrect pointer handling when processing
  ESI responses. This affects the default custom esi_parser
  (libxml2 and expat esi_parsers are unaffected)
  (bnc#1077003)
  * fixes DoS caused by incorrect pointer handing whien processing
  ESI responses or downloading intermediate CA certificates
  (bnc#1077006)
  * fixes "User names not sent to url_rewrite_program"
  * fixes %<Hs, %<pt, %<tt, %<bs calculation bugs for error responses

OBS-URL: https://build.opensuse.org/request/show/568548
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=145
 2018-01-24 07:50:38 +00:00
Dominique Leuenberger
18f0e9c50d Accepting request 563122 from server:proxy 
- Update download url

- Update Squid to 4.0.22 (fate#324583, bnc#1073089)
  * re-enable building with default openssl-devel
  * Helper changes since 3.5.27:
    + basic_msnt_multi_domain_auth removed - basic_smb_lm_auth
      helper performs the same functionality
    + cert_valid.pl testing helper renamed to
      security_fake_certverify
    + ssl_crtd renamed to security_file_certgen
  For complete set of release notes and changes since squid 3.5 see
  http://www.squid-cache.org/Versions/v4/squid-4.0.22-RELEASENOTES.html
- Updated squid.keyring using current keyring file from upstream
- missing_installs.patch: install manpages for installed helpers

OBS-URL: https://build.opensuse.org/request/show/563122
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=53
 2018-01-10 22:36:55 +00:00
Adam Majer
ecb9797e2d Fix typo 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=143
 2018-01-09 17:52:36 +00:00
Martin Pluskal
30a7a6fb20 - Update download url 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=142
 2018-01-09 17:04:34 +00:00
Martin Pluskal
5dbc38c7fd Accepting request 562903 from home:adamm:branches:server:proxy 
- Update Squid to 4.0.22 (fate#324583, bnc#1073089)
  * re-enable building with default openssl-devel
  * Helper changes since 3.5.27:
    + basic_msnt_multi_domain_auth removed - basic_smb_lm_auth
      helper performs the same functionality
    + cert_valid.pl testing helper renamed to
      security_fake_certverify
    + ssl_crtd renamed to security_file_certgen
  For complete set of release notes and changes since squid 3.5 see
  http://www.squid-cache.org/Versions/v4/squid-4.0.22-RELEASENOTES.html
- Updated squid.keyring using current keyring file from upstream
- missing_installs.patch: install manpages for installed helpers

OBS-URL: https://build.opensuse.org/request/show/562903
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=141
 2018-01-09 16:52:12 +00:00
Dominique Leuenberger
e1b17aabdc Accepting request 548098 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/548098
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=52
 2017-12-05 00:30:32 +00:00
Martin Pluskal
d1c05d1ddf Accepting request 548073 from home:adamm:branches:server:proxy 
- Explicitly BuildRequire libopenssl-1_0_0-devel until
  OpenSSL 1.1.x support can be ported.

OBS-URL: https://build.opensuse.org/request/show/548073
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=139
 2017-12-04 14:13:40 +00:00
Dominique Leuenberger
9195327576 Accepting request 544867 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/544867
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=51
 2017-11-24 09:55:21 +00:00
Martin Pluskal
74171e7f4f Accepting request 544758 from home:RBrownSUSE:branches:server:proxy 
Replace references to /var/adm/fillup-templates with new %_fillupdir macro (boo#1069468)

OBS-URL: https://build.opensuse.org/request/show/544758
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=137
 2017-11-23 15:10:32 +00:00
Dominique Leuenberger
256e85538e Accepting request 532831 from server:proxy 
Fix build on TW (forwarded request 532824 from dimstar)

OBS-URL: https://build.opensuse.org/request/show/532831
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=50
 2017-10-09 17:48:10 +00:00
Dominique Leuenberger
4329bf672a Accepting request 532824 from home:dimstar:Factory 
Fix build on TW

OBS-URL: https://build.opensuse.org/request/show/532824
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=135
 2017-10-09 16:27:17 +00:00
Dominique Leuenberger
1d222870db Accepting request 528110 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/528110
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=49
 2017-09-25 11:58:16 +00:00
Martin Pluskal
361fcf9691 Accepting request 528048 from home:adamm:branches:server:proxy 
- Add missing build dependency on libnsl-devel for Factory.
  libnsl was split from glibc
- Update Squid to 3.5.27
  * bug fix release - for complete list of changes see
    http://www.squid-cache.org/Versions/v3/3.5/changesets/

OBS-URL: https://build.opensuse.org/request/show/528048
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=133
 2017-09-21 15:51:36 +00:00
Dominique Leuenberger
219dcbc166 Accepting request 513028 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/513028
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=48
 2017-07-30 09:27:40 +00:00
Martin Pluskal
f5a50006fc Accepting request 513027 from home:brassh:branches:server:proxy 
add compile option for acl_time_quota helper which is part of upstream squid since 2011, see:
http://squid-dev.squid-cache.narkive.com/cq809wBb/patch-for-external-acl-time-quota-to-limit-squid-access-parental-control

OBS-URL: https://build.opensuse.org/request/show/513027
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=131
 2017-07-29 16:49:58 +00:00
Dominique Leuenberger
13256f2758 Accepting request 508585 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/508585
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=47
 2017-07-07 08:17:48 +00:00
Adam Majer
2822ff9e0f Accepting request 508415 from home:jengelh:branches:server:proxy 
- Update description from webpage.

OBS-URL: https://build.opensuse.org/request/show/508415
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=129
 2017-07-06 14:06:50 +00:00
Dominique Leuenberger
e8fababa76 Accepting request 504589 from server:proxy 
- Packaging cleanup
- Dropped:
  * squid-brokenad.patch
  * squid-config.patch
  * squid.init squid.init.rh
  * squid-old-kerberos.patch
  * squid-rpmlintrc
- Update description and url

- Update Squid to 3.5.26
  * SubjectAlternativeNames missing in some generated certificates
    Previous releases of Squid were not able to generate valid
    mimic certificates from AltName server certificate field only.
  * Fix ignoring http_access deny with client-first bumping mode
  * ssl_crtd: now returns non-zero on failure
  * Fix FTP directory listings display issues
  * OpenSSL support better compliance with license requirements
    This release of Squid will now include the required OpenSSL
    advertisement on builds -v output where features are displayed.

OBS-URL: https://build.opensuse.org/request/show/504589
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=46
 2017-06-21 11:54:33 +00:00
Martin Pluskal
17df54c369 * squid-rpmlintrc 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=127
 2017-06-19 08:30:59 +00:00
Martin Pluskal
acbbe22233 - Packaging cleanup 
- Dropped:
  * squid-brokenad.patch
  * squid-config.patch
  * squid.init squid.init.rh
  * squid-old-kerberos.patch
- Update description and url

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=126
 2017-06-19 08:28:16 +00:00
Martin Pluskal
3357c26b36 OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=125 2017-06-16 19:25:29 +00:00
Martin Pluskal
5ed84a3d8e OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=124 2017-06-16 12:39:53 +00:00
Martin Pluskal
27b8737da6 OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=123 2017-06-16 11:30:20 +00:00
Martin Pluskal
88c8efcddf - Update description 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=122
 2017-06-16 07:07:26 +00:00
Martin Pluskal
333fdcae69 Accepting request 503631 from server:proxy:Test 
1

OBS-URL: https://build.opensuse.org/request/show/503631
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=121
 2017-06-14 09:44:29 +00:00
Yuchen Lin
e49d68f9e9 Accepting request 487028 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/487028
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=45
 2017-04-14 11:40:43 +00:00
Martin Pluskal
5c0620bda3 Accepting request 487025 from server:proxy:Test 
1

OBS-URL: https://build.opensuse.org/request/show/487025
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=119
 2017-04-10 11:26:28 +00:00
Dominique Leuenberger
430345c81c Accepting request 482005 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/482005
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=44
 2017-03-24 01:22:51 +00:00
Martin Pluskal
a86b838f19 Accepting request 482004 from server:proxy:Test 
- initialize_cache_if_needed.sh, squid_dir.sed: Initialize cache
  directory on startup if it is missing. Move scripts out of
  systemd service file and into individual files. (bnc#1030421)

OBS-URL: https://build.opensuse.org/request/show/482004
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=117
 2017-03-22 15:16:54 +00:00
Dominique Leuenberger
eef89b7c14 Accepting request 453450 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/453450
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=43
 2017-01-31 11:48:35 +00:00
Martin Pluskal
266d569041 Accepting request 453447 from server:proxy:Test 
1

OBS-URL: https://build.opensuse.org/request/show/453447
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=115
 2017-01-30 14:42:50 +00:00
Dominique Leuenberger
d8c3835447 Accepting request 452995 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/452995
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=42
 2017-01-29 09:40:52 +00:00
Martin Pluskal
ebbd812ffb Accepting request 452993 from server:proxy:Test 
1

OBS-URL: https://build.opensuse.org/request/show/452993
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=113
 2017-01-27 16:57:51 +00:00
Dominique Leuenberger
239904fb8a Accepting request 434591 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/434591
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=41
 2016-10-13 09:32:42 +00:00
Martin Pluskal
a6013d0b81 Accepting request 434590 from server:proxy:Test 
1

OBS-URL: https://build.opensuse.org/request/show/434590
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=111
 2016-10-12 16:42:21 +00:00
Dominique Leuenberger
44f1a29e41 Accepting request 415075 from server:proxy 
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/415075
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=40
 2016-08-03 09:42:56 +00:00
Martin Pluskal
277c09d8bb Accepting request 411714 from server:proxy:Test 
1

OBS-URL: https://build.opensuse.org/request/show/411714
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=109
 2016-07-18 11:23:30 +00:00
Dominique Leuenberger
c5fe45d208 Accepting request 407564 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/407564
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=39
 2016-07-14 07:47:33 +00:00
Martin Pluskal
ce326f1622 Accepting request 407563 from server:proxy:Test 
- Update to version 3.5.20:

OBS-URL: https://build.opensuse.org/request/show/407563
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=107
 2016-07-10 08:08:31 +00:00
Dominique Leuenberger
f61890da5b Accepting request 394490 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/394490
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=38
 2016-05-11 14:37:34 +00:00
Martin Pluskal
58533321f1 Accepting request 394489 from server:proxy:Test 
OBS-URL: https://build.opensuse.org/request/show/394489
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=105
 2016-05-09 14:36:52 +00:00
Martin Pluskal
3acf44688e Accepting request 394480 from server:proxy:Test 
OBS-URL: https://build.opensuse.org/request/show/394480
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=104
 2016-05-09 14:33:23 +00:00
Dominique Leuenberger
3ab0ada9aa Accepting request 383787 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/383787
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=37
 2016-04-06 09:52:21 +00:00
Martin Pluskal
0f9e5926ef Accepting request 383784 from server:proxy:Test 
- Update to 3.5.16 (boo#973771)

OBS-URL: https://build.opensuse.org/request/show/383784
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=102
 2016-04-04 08:58:26 +00:00
Dominique Leuenberger
f46f4811b3 Accepting request 367812 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/367812
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=36
 2016-03-09 14:17:30 +00:00
Martin Pluskal
d6296f8a82 Accepting request 367803 from server:proxy:Test 
Update to 3.5.15 (forwarded request 367800 from computersalat)

OBS-URL: https://build.opensuse.org/request/show/367803
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=100
 2016-03-07 19:53:51 +00:00
Dominique Leuenberger
4f273bdb9b Accepting request 355748 from server:proxy 
squid 4 is Beta, revert to 3.5.x, update to 3.5.13, fix ChangeLog (forwarded request 355747 from computersalat)

OBS-URL: https://build.opensuse.org/request/show/355748
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=35
 2016-01-28 16:23:14 +00:00
Christian Wittmer
672f1d1019 Accepting request 355747 from server:proxy:Test 
squid 4 is Beta, revert to 3.5.x, update to 3.5.13, fix ChangeLog

OBS-URL: https://build.opensuse.org/request/show/355747
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=98
 2016-01-25 13:29:48 +00:00
Christian Wittmer
e1b4411a42 Accepting request 355597 from server:proxy:Test 
squid 4 is Beta, revert to 3.5.x, update to 3.5.13

OBS-URL: https://build.opensuse.org/request/show/355597
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=97
 2016-01-24 21:09:22 +00:00
Dominique Leuenberger
eeb0730efe Accepting request 348054 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/348054
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=34
 2015-12-09 18:54:37 +00:00
Martin Pluskal
921e22a00d Accepting request 348053 from server:proxy:Test 
- Update to 4.0.3

OBS-URL: https://build.opensuse.org/request/show/348053
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=95
 2015-12-09 10:49:54 +00:00
Martin Pluskal
8920b43a0b Accepting request 348038 from server:proxy:Test 
OBS-URL: https://build.opensuse.org/request/show/348038
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=94
 2015-12-09 10:01:10 +00:00
Dominique Leuenberger
f80fe2e0f3 Accepting request 339261 from server:proxy 
- Fix rpmlint errors / warnings
  * systemd-service-without-service_add_pre
    moved service_add_pre to %pre
  * non-etc-or-var-file-marked-as-conffile
    moved mib.txt to /usr/share/snmp/mibs/SQUID-MIB.txt
    idea taken from Fedora package

OBS-URL: https://build.opensuse.org/request/show/339261
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=33
 2015-10-19 20:52:04 +00:00
Jochen Keil
f2a6677342 - Fix rpmlint errors / warnings 
* systemd-service-without-service_add_pre
    moved service_add_pre to %pre
  * non-etc-or-var-file-marked-as-conffile
    moved mib.txt to /usr/share/snmp/mibs/SQUID-MIB.txt
    idea taken from Fedora package
  * macro-in-comment
    removed comment

Other issues are:

- permissions-dir-without-slash
  => opened security audit bug: bsc#950557

- missing-call-to-setgroups-before-setuid
  * should be an upstream bug

- binary-or-shlib-calls-gethostbyname
  * should be an upstream bug

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=92
 2015-10-15 15:08:57 +00:00
Stephan Kulow
c6c50dfbd7 Accepting request 337274 from server:proxy 
- Changes to squid-3.5.10 (01 Oct 2015):
  * Regression Fix cache_peer login=PASS(THRU) after CVE-2015-5400
  * Regression Bug 4326: base64 binary encoder rejects data beginning with nil byte
  * Bug 4323: Netfilter broken cross-includes with Linux 4.2
  * Bug 4328: %un format code does not work for external ACLs in credentials-fetching rules
  * Bug 4208: more than one port in wccp2_service_info line causes error
  * Bug 4304: PeerConnector.cc:743 "!callback" assertion.
  * Bug 4330: Do not use SSL_METHOD::put_cipher_by_char to determine size of SSL hello ciphers
  * Relicense ntlm_fake_auth.pl to GPLv2+
  * Relicense smb_lm auth helper to GPLv2+
  * Relicense SSPI helper to GPLv2+
  * ... and several minor performance optimizations

OBS-URL: https://build.opensuse.org/request/show/337274
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=32
 2015-10-12 08:02:23 +00:00
Jochen Keil
0c05a3b834 - Changes to squid-3.5.10 (01 Oct 2015): 
* Regression Fix cache_peer login=PASS(THRU) after CVE-2015-5400
  * Regression Bug 4326: base64 binary encoder rejects data beginning with nil byte
  * Bug 4323: Netfilter broken cross-includes with Linux 4.2
  * Bug 4328: %un format code does not work for external ACLs in credentials-fetching rules
  * Bug 4208: more than one port in wccp2_service_info line causes error
  * Bug 4304: PeerConnector.cc:743 "!callback" assertion.
  * Bug 4330: Do not use SSL_METHOD::put_cipher_by_char to determine size of SSL hello ciphers
  * Relicense ntlm_fake_auth.pl to GPLv2+
  * Relicense smb_lm auth helper to GPLv2+
  * Relicense SSPI helper to GPLv2+
  * ... and several minor performance optimizations

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=90
 2015-10-08 14:49:06 +00:00
Dominique Leuenberger
7ff1d84074 Accepting request 331084 from server:proxy 
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/331084
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=31
 2015-09-17 07:21:24 +00:00
Dominique Leuenberger
4bec3526bb Accepting request 328804 from server:proxy 
- Changes to squid-3.5.8 (02 Sep 2015):
  * Regression Bug 4306: build portability fix in Kerberos helpers
  * Bug 4302: IPFilter v5 transparent interception
  * Bug 4301: compile errors with IPFilter interception
  * Bug 4285 partial: %us is not supported in access.log
  * Bug 4278: Docs: typo in the refresh_pattern freshness algorithm
  * Bug 4242: compile errors with eCAP using clang-3.6
  * Bug 3696: crash when client delay pools are activated
  * Bug 3553: cache_swap_high ignored and maxCapacity used instead
  * Regression Fix: FtpServer.cc:1024: "reply != NULL" assertion
  * Fix ignore of impossible SSL bumping actions, as intended and documented
  * Fix memory leak in Surrogate-Capability header detection
  * Fix truncated body length when RESPMOD service aborts
  * Reject non-chunked HTTP messages with conflicting Content-Length values
  * Support splice for SSLv3 and TLSv1 sessions that start with an SSLv2 Hello
  * ... and several portability and compile fixes
  * ... and several documentation updates

OBS-URL: https://build.opensuse.org/request/show/328804
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=30
 2015-09-08 15:39:18 +00:00
Christian Wittmer
07031411bd rebase squid-config.patch 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=87
 2015-09-04 15:19:22 +00:00
Jochen Keil
30b301923f - Changes to squid-3.5.8 (02 Sep 2015): 
* Regression Bug 4306: build portability fix in Kerberos helpers
  * Bug 4302: IPFilter v5 transparent interception
  * Bug 4301: compile errors with IPFilter interception
  * Bug 4285 partial: %us is not supported in access.log
  * Bug 4278: Docs: typo in the refresh_pattern freshness algorithm
  * Bug 4242: compile errors with eCAP using clang-3.6
  * Bug 3696: crash when client delay pools are activated
  * Bug 3553: cache_swap_high ignored and maxCapacity used instead
  * Regression Fix: FtpServer.cc:1024: "reply != NULL" assertion
  * Fix ignore of impossible SSL bumping actions, as intended and documented
  * Fix memory leak in Surrogate-Capability header detection
  * Fix truncated body length when RESPMOD service aborts
  * Reject non-chunked HTTP messages with conflicting Content-Length values
  * Support splice for SSLv3 and TLSv1 sessions that start with an SSLv2 Hello
  * ... and several portability and compile fixes
  * ... and several documentation updates

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=86
 2015-09-03 13:02:05 +00:00
Dominique Leuenberger
49f355e9a3 Accepting request 321598 from server:proxy 
- Move update logic to proper scriptlet
  * Replace 'etc' with %{_sysconfdir} macro

OBS-URL: https://build.opensuse.org/request/show/321598
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=29
 2015-08-11 06:26:59 +00:00
Jochen Keil
8507b0836c - Move update logic to proper scriptlet 
* Replace 'etc' with %{_sysconfdir} macro

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=84
 2015-08-10 12:29:31 +00:00
Dominique Leuenberger
b90b709d01 Accepting request 320788 from server:proxy 
update to 3.5.7 (forwarded request 320787 from computersalat)

OBS-URL: https://build.opensuse.org/request/show/320788
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=28
 2015-08-06 22:24:30 +00:00
Christian Wittmer
1bb7ead10c Accepting request 320787 from server:proxy:Test 
update to 3.5.7

OBS-URL: https://build.opensuse.org/request/show/320787
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=82
 2015-08-05 21:25:35 +00:00
Stephan Kulow
5c51c5d502 Accepting request 317787 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/317787
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=27
 2015-07-22 07:19:52 +00:00
Martin Pluskal
a8325841ad Accepting request 317732 from server:proxy:Test 
- Update to 3.5.6
  * Bug 4274: ssl_crtd.8 not being installed
  * Bug 4193: memory leak on FTP listings
  * Bug 4183: segfault when freeing https_port clientca on 
    reconfigure or exit
  * Bug 3875: bad mimeLoadIconFile error handling
  * Bug 3483: assertion failed store.cc:1866: 'isEmpty()'
  * Bug 3329: pinned server connection is not closed properly
  * TLS: Disable client-initiated renegotiation
  * ext_edirectory_userip_acl: fix uninitialized variable
  * Support custom OIDs in *_cert ACLs
  * Fix CONNECT failover to IPv4 after trying broken IPv6 servers
  * Use relative-URL in errorpage.css for SN.png
  * Do not blindly forward cache peer CONNECT responses
  * Fix assertion String.cc:221: "str"
  * Fix assertion comm.cc:759: "Comm::IsConnOpen(conn)" in
    ConnStateData::getSslContextDone
  * Translations: add Spanish US dialect alias
- Drop no longer needed squid-nobuilddates.patch

OBS-URL: https://build.opensuse.org/request/show/317732
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=80
 2015-07-21 11:48:51 +00:00
Dominique Leuenberger
bf4a0a65c5 Accepting request 310390 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/310390
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=26
 2015-06-06 07:54:03 +00:00
Martin Pluskal
631c738b0a Accepting request 310389 from server:proxy:Test 
1

OBS-URL: https://build.opensuse.org/request/show/310389
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=78
 2015-06-04 22:51:06 +00:00
Dominique Leuenberger
57817d3185 Accepting request 308403 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/308403
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=25
 2015-05-23 11:07:58 +00:00
Martin Pluskal
252937dc51 Accepting request 308402 from server:proxy:Test 
- Update to 3.5.4
- Refresh patches

OBS-URL: https://build.opensuse.org/request/show/308402
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=76
 2015-05-22 18:22:37 +00:00
Dominique Leuenberger
014d22e399 Accepting request 305549 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/305549
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=24
 2015-05-06 10:10:47 +00:00
Martin Pluskal
908318e727 Accepting request 305548 from server:proxy:Test 
1

OBS-URL: https://build.opensuse.org/request/show/305548
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=74
 2015-05-06 08:55:14 +00:00
Stephan Kulow
bc2fad90df Accepting request 304326 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/304326
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=23
 2015-04-28 09:47:10 +00:00
Martin Pluskal
77be9e00d4 Accepting request 304324 from server:proxy:Test 
- Fix update from 3.4 to 3.5

- Fix SLE 11 build with older kerberos libraries

OBS-URL: https://build.opensuse.org/request/show/304324
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=72
 2015-04-28 09:27:43 +00:00
Dominique Leuenberger
610ddbc7b4 Accepting request 304039 from server:proxy 
1

OBS-URL: https://build.opensuse.org/request/show/304039
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=22
 2015-04-27 11:05:12 +00:00
Martin Pluskal
65168e03c3 Accepting request 304037 from server:proxy:Test 
OBS-URL: https://build.opensuse.org/request/show/304037
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=70
 2015-04-26 11:28:54 +00:00
Martin Pluskal
38587fb5fc Accepting request 304031 from server:proxy:Test 
1

OBS-URL: https://build.opensuse.org/request/show/304031
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=69
 2015-04-26 11:20:33 +00:00
Dominique Leuenberger
8b0932b77d Accepting request 286699 from server:proxy 
remove obsolete RELEASENOTES (forwarded request 286698 from computersalat)

OBS-URL: https://build.opensuse.org/request/show/286699
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=21
 2015-03-11 08:56:44 +00:00
Christian Wittmer
7fcad09b21 Accepting request 286698 from server:proxy:Test 
remove obsolete RELEASENOTES

OBS-URL: https://build.opensuse.org/request/show/286698
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=67
 2015-02-18 23:30:16 +00:00
Christian Wittmer
9412243d2f Accepting request 285729 from home:pluskalm:branches:server:proxy 
- Update to 3.4.11:
  * cachemgr.cgi: memory leak in request parser
  * Fix typo on commStartSslClose
  * Fix SQUID_CC_REQUIRE_ARGUMENT autoconf macro
  * Bug #3760: squidclient ignores --disable-ipv6
  * Bug #3664: ssl_crtd fails to build on OpenSolaris/OpenIndiana/Solaris 11
  * Bug #3754: configure doesnt detect IPFilter 5.1.2 system headers
  * Bug #4164: SEGFAULT when %W formating code used in errorpages
  * Deleting first fs left psstate->servers pointing to uninitialized memory
  * Maintenance: check release notes on packaging
  * Bug #4057: Avoid on-exit crashes when adaptation is enabled.

OBS-URL: https://build.opensuse.org/request/show/285729
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=66
 2015-02-18 23:18:29 +00:00
Christian Wittmer
69403394b4 Accepting request 286695 from server:proxy:Test 
recover old spec, fix permissions for SLE11

OBS-URL: https://build.opensuse.org/request/show/286695
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=65
 2015-02-18 23:15:24 +00:00
Dominique Leuenberger
8510e6c251 Accepting request 280566 from server:proxy 
OBS-URL: https://build.opensuse.org/request/show/280566
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=20
 2015-01-09 19:50:52 +00:00
Tomáš Chvátal
3ca11bdc56 Accepting request 280563 from server:proxy:Test 
- Cleanup with spec-cleaner
- Version bump to 3.4.10:
  * Fix bootstrap.sh dependency on SPONSORS.list
  * HTTP/2: Support 421 (Misdirected Request) status code
  * Alternate-Protocol is a hop-by-hop header
  * Bug #4148: external_acl_type header format does not accept the new libformat syntax
  * Bug #4033: Rebuild corrupted ssl_db/size file
  * Bug #3902: Docs: external_acl_type cache hash key
  * Bug #4145: squid_endian.h compile errors with OpenBSD 5.6
  * Fix segmentation fault in ACLUrlPathStrategy::match
- Remove support for other distros as we build for opensuse anyway

- remove permissions.easy and permissions.paranoid files from package
  as they are not used any more

OBS-URL: https://build.opensuse.org/request/show/280563
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=64
 2015-01-09 10:36:46 +00:00
Christian Wittmer
a26a7b04bb Accepting request 266863 from server:proxy:Test 
factory fixes

OBS-URL: https://build.opensuse.org/request/show/266863
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=63
 2015-01-02 15:04:06 +00:00
Tomáš Chvátal
08d4caed07 Accepting request 264508 from home:dimstar:branches:server:proxy 
Use URLs to paths that the source validator actually understands
  and make this acceptable for Tumbleweed.

The source validatory uses
  perl -I/usr/lib/build -MBuild -e Build::show /usr/lib/build/configs/sl13.2.conf squid.spec sources
to find the sources; and this seems to not like the %() parts to expand.

Would be nice to have this fixed in Tumbleweed - after failing for 19 days

OBS-URL: https://build.opensuse.org/request/show/264508
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=62
 2014-12-24 16:18:44 +00:00
Christian Wittmer
c3f10526dc Accepting request 263262 from server:proxy:Test 
update to 3.4.9, fix for bnc#891268 (CVE-2014-7141, CVE-2014-7142)

OBS-URL: https://build.opensuse.org/request/show/263262
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=61
 2014-11-27 20:53:15 +00:00
Christian Wittmer
c1113da01b Accepting request 247589 from server:proxy:Test 
fix for bnc#894840

OBS-URL: https://build.opensuse.org/request/show/247589
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=60
 2014-09-04 21:20:40 +00:00
Christian Wittmer
5a2a646e40 Accepting request 244146 from server:proxy:Test 
some permission and redhat stuff

OBS-URL: https://build.opensuse.org/request/show/244146
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=59
 2014-08-10 17:56:45 +00:00
Lars Vogdt
f645c10624 Accepting request 243193 from home:dimstar:rpmlintrc 
Rename rpmlintrc as per pkg guideline to %{name}-rpmlintrc

OBS-URL: https://build.opensuse.org/request/show/243193
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=58
 2014-08-10 14:48:24 +00:00
Stephan Kulow
82ec796f4b Accepting request 229070 from server:proxy 
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/229070
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=18
 2014-04-05 14:48:23 +00:00
Christian Wittmer
14dee11119 fix pidfiledir 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=56
 2014-03-28 18:49:46 +00:00
Stephan Kulow
3784cd6b45 Accepting request 226329 from server:proxy 
update to 3.4.4

OBS-URL: https://build.opensuse.org/request/show/226329
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=17
 2014-03-18 13:07:03 +00:00
Christian Wittmer
9a499fc5bf fix changes file 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=54
 2014-03-16 23:52:40 +00:00
Christian Wittmer
e331af6a50 Accepting request 226292 from home:bmanojlovic:branches:server:proxy 
- added patch to force kerberos principalname handling
  ( http://bugs.squid-cache.org/show_bug.cgi?id=4042 )

OBS-URL: https://build.opensuse.org/request/show/226292
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=53
 2014-03-16 13:39:08 +00:00
Christian Wittmer
b16b6d18da Accepting request 226276 from server:proxy:Test 
fix for bnc#743563, update to 3.4.4

OBS-URL: https://build.opensuse.org/request/show/226276
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=52
 2014-03-15 21:47:02 +00:00
Christian Wittmer
1bd7a002f9 Accepting request 225977 from home:bmanojlovic:branches:server:proxy 
- add ssl bump to build config

OBS-URL: https://build.opensuse.org/request/show/225977
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=51
 2014-03-14 18:23:19 +00:00
Stephan Kulow
d7aa5e4f6d Accepting request 214647 from server:proxy 
update to 3.4.2 (forwarded request 214646 from computersalat)

OBS-URL: https://build.opensuse.org/request/show/214647
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=16
 2014-01-22 13:00:42 +00:00
Christian Wittmer
72ca3a8613 Accepting request 214646 from server:proxy:Test 
update to 3.4.2

OBS-URL: https://build.opensuse.org/request/show/214646
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=49
 2014-01-21 23:20:48 +00:00
Stephan Kulow
28c1fb79cd Accepting request 212269 from server:proxy 
update to 3.3.11 (forwarded request 212267 from computersalat)

OBS-URL: https://build.opensuse.org/request/show/212269
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=15
 2013-12-30 09:44:18 +00:00
Christian Wittmer
dbcfdd68ea Accepting request 212267 from home:computersalat:devel:proxy 
update to 3.3.11

OBS-URL: https://build.opensuse.org/request/show/212267
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=47
 2013-12-25 21:46:51 +00:00
Stephan Kulow
1d799156d2 Accepting request 201325 from server:proxy 
update to 3.3.9 (forwarded request 201324 from computersalat)

OBS-URL: https://build.opensuse.org/request/show/201325
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=14
 2013-09-29 15:53:18 +00:00
Christian Wittmer
c5644019a7 Accepting request 201324 from home:computersalat:devel:proxy 
update to 3.3.9

OBS-URL: https://build.opensuse.org/request/show/201324
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=45
 2013-09-28 18:16:44 +00:00
Stephan Kulow
c118a02536 Accepting request 197903 from server:proxy 
update to 3.3.8 (forwarded request 197900 from computersalat)

OBS-URL: https://build.opensuse.org/request/show/197903
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=12
 2013-09-09 17:52:06 +00:00
Christian Wittmer
a266946ee5 Accepting request 197900 from server:proxy:Test 
update to 3.3.8

OBS-URL: https://build.opensuse.org/request/show/197900
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=43
 2013-09-08 12:03:13 +00:00
Stephan Kulow
21e50dfb5f Accepting request 184553 from server:proxy 
Upgrade to last bugfix upstream release, Make version and date vars in description, Refreshed REALEASENOTE.html file (forwarded request 184541 from bruno_friedmann)

OBS-URL: https://build.opensuse.org/request/show/184553
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=11
 2013-07-30 14:48:24 +00:00
Christian Wittmer
80fe4147a0 Accepting request 184541 from home:bruno_friedmann:branches:server:proxy 
Upgrade to last bugfix upstream release, Make version and date vars in description, Refreshed REALEASENOTE.html file

OBS-URL: https://build.opensuse.org/request/show/184541
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=41
 2013-07-28 20:27:43 +00:00
Stephan Kulow
f682013823 Accepting request 184303 from server:proxy 
- Add patch squid-fix-pod2man-check.patch solving building with
  new perl.

OBS-URL: https://build.opensuse.org/request/show/184303
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=10
 2013-07-25 12:46:49 +00:00
Tomáš Chvátal
e5e777489b - Add patch squid-fix-pod2man-check.patch solving building with 
new perl.

OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=39
 2013-07-25 10:19:30 +00:00
Stephan Kulow
306aebf5df Accepting request 174905 from server:proxy 
- Changes for squid 3.2.11 release (29 April 2013)
	- Fix enter_suid/leave_suid build errors in ip/Intercept.cc
	- GNU Hurd: define MAP_NORESERVE as no-op when missing
	- Bug #3833: Option '-k' is not present in squidclient man page
	- Bug #3817: Memory leak in SSL cert validate for alt_name peer certs
	- Bug #3822: Locate LDAP and SASL headers in /usr/local/include for BSD support
	- Bug #3825: basic_ncsa_auth segfaulting with glibc-2.17
	- Bug #3774: -k reconfigure drops rock
	- Bug #3565: Resuming postponed accept kills Squid
	- HTTP/1.1: partial support for no-cache and private controls with parameters
	- ssl_crtd: helpers dying during startup on ARM
	- Updated copyright for icons/SN.png
	- Revert r11810 - tools.h does not exist in 3.2 (forwarded request 173973 from bruno_friedmann)

OBS-URL: https://build.opensuse.org/request/show/174905
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=9
 2013-05-13 13:37:18 +00:00
Michal Hrusecky (old before rename to _miska_)
fcb517a68c Accepting request 173973 from home:bruno_friedmann:branches:server:proxy 
- Changes for squid 3.2.11 release (29 April 2013)
	- Fix enter_suid/leave_suid build errors in ip/Intercept.cc
	- GNU Hurd: define MAP_NORESERVE as no-op when missing
	- Bug #3833: Option '-k' is not present in squidclient man page
	- Bug #3817: Memory leak in SSL cert validate for alt_name peer certs
	- Bug #3822: Locate LDAP and SASL headers in /usr/local/include for BSD support
	- Bug #3825: basic_ncsa_auth segfaulting with glibc-2.17
	- Bug #3774: -k reconfigure drops rock
	- Bug #3565: Resuming postponed accept kills Squid
	- HTTP/1.1: partial support for no-cache and private controls with parameters
	- ssl_crtd: helpers dying during startup on ARM
	- Updated copyright for icons/SN.png
	- Revert r11810 - tools.h does not exist in 3.2

OBS-URL: https://build.opensuse.org/request/show/173973
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=37
 2013-05-09 14:10:10 +00:00
Stephan Kulow
16b038a59d Accepting request 160840 from server:proxy 
Fixed squid.service file (sorry for the previous mess), Commented patch line removed. Ready for factory, and have patchinfo for 12.3 (forwarded request 160810 from bruno_friedmann)

OBS-URL: https://build.opensuse.org/request/show/160840
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=8
 2013-03-25 19:45:38 +00:00
Christian Wittmer
634248591d Accepting request 160810 from home:bruno_friedmann:branches:server:proxy 
Fixed squid.service file (sorry for the previous mess), Commented patch line removed. Ready for factory, and have patchinfo for 12.3

OBS-URL: https://build.opensuse.org/request/show/160810
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=35
 2013-03-24 21:22:31 +00:00
Christian Wittmer
42c155b8fa Accepting request 159652 from home:bruno_friedmann:branches:server:proxy 
Rework the systemd squid.service to make it able to intialize cache directory (squid -z) fixing bnc#802635
Removing the unneeded bash wrapper
Upgrade to bugfixes upstream release 3.2.9

- New revision for squid.service (using only sed)
  handle multiple cache_dir line
  Added sed as require 
- Packaging : fixed systemd squid.service 
	- Rework on squid.service ExecStartPre line 
	  remove dependency on unfunctionnal wrapper 
	- Fix bnc#802635 (creating cache struture fail on first call)
	- Fixed Type=forking and remove the use off -N (non daemon flag)
	- Fixed missing pid file
	- Structural : add all -k to end of Exec/Stop line
	- Ulimit : Added LimitNOFile=4096 ( same value as in /etc/sysconfig)
		but there's no way to decode dynamically /etc/sysconfig
	- Remove syslog.target ( no need anymore : advise from fcrozat )
	- Clean up squid_cache_build.sh 
- Changes to squid-3.2.9 (12 Mar 2013):
	- Regression fix: Accept-Language header parse
	- Bug 3673: Silence 'Failed to select source' messages
	- Fix authentication headers sent on peer digest requests
	- Fix build error on Solaris, OpenIndiana, Omnios
- Changes to squid-3.2.8 (02 Mar 2013):
	- Bug 3767: tcp_outgoing_tos/mark ACLs do not obey acl_uses_indirect_client
	- Bug 3763: diskd Error: no filename in shm buffer
	- Bug 3752: objects that cannot be cached in memory are not cached on disk
	- Bug 3753: Removes the domain from the cache_peer server pconn key
	- Bug 3749: IDENT lookup using wrong ports to identify the user
	- Bug 3723: tcp_outgoing_tos/mark broken for CONNECT requests
	- Bug 3686: cache_dir max-size default fails
	- Bug 3515: crash in FtpStateData::ftpTimeout
	- Bug 3329: Quieten orphan Comm::Connection messages
	- Make squid -z for cache_dir rock preserve the rock DB

OBS-URL: https://build.opensuse.org/request/show/159652
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=34
 2013-03-24 13:45:57 +00:00
Stephan Kulow
a4ffa9aec7 Accepting request 156005 from server:proxy 
- Updated to squid-3.2.7 (01 Feb 2013) (forwarded request 155939 from edssvirt)

OBS-URL: https://build.opensuse.org/request/show/156005
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=7
 2013-02-22 16:02:45 +00:00
Christian Wittmer
3870c6c7be Accepting request 155939 from home:edssvirt:branches:server:proxy 
- Updated to squid-3.2.7 (01 Feb 2013)

OBS-URL: https://build.opensuse.org/request/show/155939
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=32
 2013-02-21 18:38:30 +00:00
Stephan Kulow
86e3bf3080 Accepting request 148381 from server:proxy 
fix changes file

OBS-URL: https://build.opensuse.org/request/show/148381
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=5
 2013-01-14 11:03:41 +00:00
OBS User buildservice-autocommit
7c9fe625f7 Accepting request 148341 from server:proxy 
baserev update by copy to link target

OBS-URL: https://build.opensuse.org/request/show/148341
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=30
 2013-01-14 08:49:46 +00:00
Stephan Kulow
3be724147d Accepting request 148341 from server:proxy 
update to 3.2.6, fix for CVE-2012-5643 (forwarded request 148340 from computersalat)

OBS-URL: https://build.opensuse.org/request/show/148341
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=4
 2013-01-14 08:49:45 +00:00
OBS User buildservice-autocommit
cf46fbd150 Updating link to change in openSUSE:Factory/squid revision 4.0 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=6d776b33925e2876138e17c105fa1451
 2013-01-14 08:49:45 +00:00
Christian Wittmer
77a88b553d Accepting request 148369 from home:computersalat:devel:proxy 
update to 3.2.6, fix for bnc#794954, fix for CVE-2012-5643

OBS-URL: https://build.opensuse.org/request/show/148369
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=29
 2013-01-14 08:46:22 +00:00
Christian Wittmer
c0c0b25067 Accepting request 148340 from home:computersalat:devel:proxy 
update to 3.2.6, fix for CVE-2012-5643

OBS-URL: https://build.opensuse.org/request/show/148340
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=28
 2013-01-13 20:38:48 +00:00
Andreas Jaeger
831a772962 Accepting request 146699 from server:proxy 
update to 3.2.5 (forwarded request 146698 from computersalat)

OBS-URL: https://build.opensuse.org/request/show/146699
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=3
 2013-01-03 07:44:06 +00:00
Christian Wittmer
fba5a0ced5 Accepting request 146698 from home:computersalat:devel:proxy 
update to 3.2.5

OBS-URL: https://build.opensuse.org/request/show/146698
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=26
 2012-12-30 19:35:16 +00:00
Christian Wittmer
71075c2f96 Accepting request 143935 from home:sbrabec:gpg-offline-verify 
Verify GPG signature: Perform build-time offline GPG verification.
Please verify that included keyring matches your needs.
For manipulation with the offline keyring, please use gpg-offline tool from openSUSE:Factory, devel-tools-building or Base:System.
See the man page and/or /usr/share/doc/packages/gpg-offline/PACKAGING.HOWTO.

If you need to build your package for older products and don't want to mess spec file with ifs, please follow PACKAGING.HOWTO:
you can link or aggregate gpg-offline from
devel:tools:building or use following trick with "osc meta prjconf":

--- Cut here ----
%if 0%{?suse_version} <= 1220
Substitute: gpg-offline
%endif

Macros:
%gpg_verify(dnf) \
%if 0%{?suse_version} > 1220\
echo "WARNING: Using %%gpg_verify macro from prjconf, not from gpg-offline package."\
gpg-offline --directory="%{-d:%{-d*}}%{!-d:%{_sourcedir}}" --package="%{-n:%{-n*}}%{!-n:%{name}}""%{-f: %{-f*}}" --verify %{**}\
%else\
echo "WARNING: Dummy prjconf macro. gpg-offline is not available, skipping %{**} GPG signature verification!"\
%endif\
%nil
-----------------

OBS-URL: https://build.opensuse.org/request/show/143935
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=25
 2012-12-30 15:34:43 +00:00
Ismail Dönmez
cb730cec77 Accepting request 141620 from server:proxy 
Fix build with glibc 2.17 (forwarded request 141616 from a_jaeger)

OBS-URL: https://build.opensuse.org/request/show/141620
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=2
 2012-11-18 19:27:02 +00:00
Christian Wittmer
02444175b7 Accepting request 141616 from home:a_jaeger:FactoryFix 
Fix build with glibc 2.17

OBS-URL: https://build.opensuse.org/request/show/141616
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=23
 2012-11-17 10:31:45 +00:00
Stephan Kulow
4630092151 Accepting request 139037 from server:proxy 
package rename squid3 -> squid, update to 3.2.3, squid3 can now be deleted.

OBS-URL: https://build.opensuse.org/request/show/139037
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=1
 2012-10-24 05:15:04 +00:00
Christian Wittmer
029b151f6d Accepting request 139036 from home:computersalat:devel:proxy 
update to 3.2.3

OBS-URL: https://build.opensuse.org/request/show/139036
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=21
 2012-10-22 19:27:49 +00:00
Christian Wittmer
45833fae16 unlink from Factory 
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=20
 2012-10-22 19:07:11 +00:00
2 changed files with 0 additions and 20 deletions
Show Stats Expand all files Collapse all files

3
squid-6.10.tar.xz
View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:0b07b187e723f04770dd25beb89aec12030a158696aa8892d87c8b26853408a7
size 2558208

17
squid-6.10.tar.xz.asc
View File

@ -1,17 +0,0 @@
File: squid-6.10.tar.xz
Date: Sat Jun 8 02:53:29 PM UTC 2024
Size: 2558208
MD5 : 86deefa7282c4388be95260aa4d4cf6a
SHA1: 70e90865df0e4e9ba7765b622da40bda9bb8fc5d
Key : 29B4B1F7CE03D1B1DED22F3028F85029FEF6E865 <kinkie@squid-cache.org>
29B4 B1F7 CE03 D1B1 DED2 2F30 28F8 5029 FEF6 E865
sub cv25519 2021-05-15 [E]
keyring = http://www.squid-cache.org/pgp.asc
keyserver = pool.sks-keyservers.net
-----BEGIN PGP SIGNATURE-----
iHUEABYKAB0WIQQptLH3zgPRsd7SLzAo+FAp/vboZQUCZmRwewAKCRAo+FAp/vbo
ZZV0AP0WDdXJFarEEYCSXSv/zT1l0FrI8jLQCT3Rsp6nTbWxfwD/VYmUMDetPLPJ
GYHJNrRm7OceMQcsqhQIz6X71SR9AQs=
=4HPC
-----END PGP SIGNATURE-----