diff --git a/squid.changes b/squid.changes index b790a6e..a4a6f1f 100644 --- a/squid.changes +++ b/squid.changes @@ -1,3 +1,8 @@ +------------------------------------------------------------------- +Mon Feb 18 10:03:23 UTC 2019 - adam.majer@suse.de + +- Revert whitespace deletions of .changes as it makes diffs a pain. + ------------------------------------------------------------------- Sat Feb 16 00:19:25 UTC 2019 - Jan Engelhardt @@ -7,9 +12,9 @@ Sat Feb 16 00:19:25 UTC 2019 - Jan Engelhardt ------------------------------------------------------------------- Wed Jan 02 05:45:03 UTC 2019 - sean@suspend.net -- Update to squid 4.5: +- Update to squid 4.5: + Squid crashes when ICAPS and a sslcrtvalidator used together (#328) - + ssl_bump prevents from accessing some web contents (#304) + + ssl_bump prevents from accessing some web contents (#304) + Docs: improved lexgrog compatibility (#340) + Redesign forward_max_tries count TCP connection attempts + Fix client_connection_mark ACL handling of clientless transactions @@ -18,7 +23,7 @@ Wed Jan 02 05:45:03 UTC 2019 - sean@suspend.net + Use pkg-config for detecting libxml2 + Misc doc updates + Misc code compile fixes - + ------------------------------------------------------------------- Fri Nov 9 13:13:37 UTC 2018 - adam.majer@suse.de @@ -179,7 +184,7 @@ Mon Dec 4 12:31:44 UTC 2017 - adam.majer@suse.de ------------------------------------------------------------------- Thu Nov 23 13:47:31 UTC 2017 - rbrown@suse.com -- Replace references to /var/adm/fillup-templates with new +- Replace references to /var/adm/fillup-templates with new %_fillupdir macro (boo#1069468) ------------------------------------------------------------------- @@ -352,7 +357,7 @@ Mon Sep 12 09:57:30 UTC 2016 - adam.majer@suse.de Mon Jul 18 08:05:42 UTC 2016 - adam.majer@suse.de - Remove no-op option from configure - --enable-ntlm-fail-open has been removed more than 4 years ago in + --enable-ntlm-fail-open has been removed more than 4 years ago in squid 3.3.0.1 and apparently it wasn't useful for 10 years prior to that already http://www.squid-cache.org/mail-archive/squid-dev/201207/0072.html @@ -368,9 +373,9 @@ Sun Jul 10 07:49:53 UTC 2016 - mpluskal@suse.com * Fixed ConnStateData::In::maybeMakeSpaceAvailable() logic. * Bug #3579: assertion failed 'MemPools[type]' from dst_as ACL * SourceFormat Enforcement - * Do not allow low-level debugging to hide important/critical + * Do not allow low-level debugging to hide important/critical messages. - * Bug #4485: off-by-one out-of-bounds Parser::Tokenizer::int64() + * Bug #4485: off-by-one out-of-bounds Parser::Tokenizer::int64() read errors * Increase debug level in a peek-and-splice related debug message * Fix icons loading speed. @@ -385,13 +390,13 @@ Mon May 9 08:50:11 UTC 2016 - hpj@urpla.net - Update to 3.5.19 * Regression Bug 4515: interception proxy hangs - Update to 3.5.18 - * Bug 4510: stale comment about 32KB limit on shared memory cache + * Bug 4510: stale comment about 32KB limit on shared memory cache entries * Bug 4509: EUI compile error on NetBSD * Bug 4501: HTTP/1.1: normalize Host header * Bug 4498: URL-unescape the login-info after extraction from URI * Bug 4455: SegFault from ESIInclude::Start - * Prevent Squid forcing -b 2048 into the arguments for + * Prevent Squid forcing -b 2048 into the arguments for sslcrtd_program * Fix TLS/SSL server handshake alert handling @@ -400,23 +405,23 @@ Thu May 5 10:56:34 UTC 2016 - hpj@urpla.net - Update to 3.5.17 * Regression Bug 4480: logformat [.width_max] - * Regression Bug 4481: varyEvaluateMatch: Oops. Not a Vary match + * Regression Bug 4481: varyEvaluateMatch: Oops. Not a Vary match on second attempt * Bug 4495: Unknown SSL option SSL_OP_NO_TICKET - * Bug 4493: theObject->sharedMemorySize() == theSegment.size() + * Bug 4493: theObject->sharedMemorySize() == theSegment.size() exception * Bug 4483: ./configure garbles -Og option in CFLAGS * Bug 4482: Solaris GCC 5.2 warning in src/ip/Intercept.cc - * Bug 4468: NotNode (!acl) naming: Terminate the name before + * Bug 4468: NotNode (!acl) naming: Terminate the name before strncat(name). * Bug 4465: Header forgery detection leads to crash - * Bug 2460 partial: workaround deferred reads on shutdown and + * Bug 2460 partial: workaround deferred reads on shutdown and restart - * cachemgr.cgi: use dynamic MemBuf for internal content + * cachemgr.cgi: use dynamic MemBuf for internal content generation * ESI: Fix several element construction issues * TLS: Fix Handshake Error: ccs received early - * TLS: Add chained and signing cert to peek-then-bumped + * TLS: Add chained and signing cert to peek-then-bumped connections * Fix some startup/shutdown crashes @@ -427,16 +432,16 @@ Mon Apr 4 07:19:58 UTC 2016 - mpluskal@suse.com * Bug 4476: Removed duplicated #include lines * Bug 4452: squid -z segfaults with ufs * Bug 4447:FwdState.cc:447 "serverConnection() == conn" assertion - * Bug 4423: adding stdio: prefix to cache_log directive produces + * Bug 4423: adding stdio: prefix to cache_log directive produces FATAL error - * Bug 4409: compile error when two Heimdal libraries are + * Bug 4409: compile error when two Heimdal libraries are installed * Bug 2831: Cache-control: max-age not sent on TCP_IMS_HIT/304 * pinger: Fix buffer overflow in Icmp6::Recv * pinger: Fix select(2) to actually use max_fd * pinger: drop capabilities on Linux * Fix memory leak of HttpRequest objects - * Fix memory leak when the cache of sslcrtvalidator_program is + * Fix memory leak when the cache of sslcrtvalidator_program is disabled via ttl=0 * Fix assertion failed: Write.cc:41: "!ccb->active()" * Fix crash on shutdown while cleaning up idle ICAP connections @@ -593,7 +598,7 @@ Wed Aug 5 21:20:28 UTC 2015 - chris@computersalat.de * Make pod2man an optional dependency * ... and polishing for several cache.log notification messages * Do not blindly forward cache peer CONNECT responses (CVE-2015-5400) -- rebase patch +- rebase patch * squid-config.patch ------------------------------------------------------------------- @@ -602,7 +607,7 @@ Tue Jul 21 06:44:15 UTC 2015 - mpluskal@suse.com - Update to 3.5.6 * Bug 4274: ssl_crtd.8 not being installed * Bug 4193: memory leak on FTP listings - * Bug 4183: segfault when freeing https_port clientca on + * Bug 4183: segfault when freeing https_port clientca on reconfigure or exit * Bug 3875: bad mimeLoadIconFile error handling * Bug 3483: assertion failed store.cc:1866: 'isEmpty()' @@ -623,19 +628,19 @@ Tue Jul 21 06:44:15 UTC 2015 - mpluskal@suse.com Thu Jun 4 22:31:30 UTC 2015 - mpluskal@suse.com - Update to 3.5.5 - * Regression Bug 4132: short_icon_urls with + * Regression Bug 4132: short_icon_urls with global_internal_static on * Bug 4238: assertion Read.cc:205: "params.data == data" * Bug 4236: SSL negotiation error of 'success' * Bug 3930: assertion 'connIsUsable(http->getConn())' - * Fix assertion MemBuf.cc:380: "new_cap > (size_t) capacity" in + * Fix assertion MemBuf.cc:380: "new_cap > (size_t) capacity" in SSL I/O buffer * Fix assertion errorpage.cc:600: "entry->isEmpty()" * Fix comm_connect_addr on failures returns Comm:OK * Fix missing external ACL helper notes - * Fix "Not enough space to hold server hello message" error + * Fix "Not enough space to hold server hello message" error message - * Fix segmentation fault inside + * Fix segmentation fault inside Adaptation::Icap::Xaction::swanSong * Prevent unused ssl_crtd helpers being run - Update permission in logrotate config @@ -698,12 +703,12 @@ Sat Mar 21 13:16:42 UTC 2015 - mpluskal@suse.com - Use xz compressed source - Update to 3.5.2 * Regression Bug 4176: Digest auth too many helper lookups - * Regression Bug 4180: not-fully-initialized data member in + * Regression Bug 4180: not-fully-initialized data member in ACLUserData * Bug 4172: Solaris broken krb5-config * Bug 4073: Cygwin compile errors * Bug 3919: remove several never-true / never-false comparisons - * HTTPS: Add missing root CAs when validating chains that passed + * HTTPS: Add missing root CAs when validating chains that passed internal checks * Fix some cbdataFree related memory leaks * Quieten CBDATA 'leak' messages @@ -713,7 +718,7 @@ Sat Mar 21 13:16:42 UTC 2015 - mpluskal@suse.com * Fix sslproxy_options in peek-and-splice mode * ... and fix several portability and build issues * ... and some documentation updates - * ... and all fixes from squid 3.4.11 + * ... and all fixes from squid 3.4.11 ------------------------------------------------------------------- Thu Feb 19 01:09:38 UTC 2015 - chris@computersalat.de @@ -787,13 +792,13 @@ Fri Jan 9 10:19:10 UTC 2015 - tchvatal@suse.com Fri Jan 2 16:07:38 UTC 2015 - boris@steki.net - remove permissions.easy and permissions.paranoid files from package - as they are not used any more + as they are not used any more ------------------------------------------------------------------- Tue Dec 9 12:42:48 UTC 2014 - boris@steki.net - remove setBadness in rpmlintrc as it should be already in Factory - permissions package handled + permissions package handled ------------------------------------------------------------------- Mon Dec 8 15:28:42 UTC 2014 - meissner@suse.com @@ -853,7 +858,7 @@ Tue Sep 16 09:31:35 UTC 2014 - boris@steki.net ------------------------------------------------------------------- Tue Sep 16 08:35:11 UTC 2014 - boris@steki.net -- fix for icmp pinger DOS bnc#891268 +- fix for icmp pinger DOS bnc#891268 ------------------------------------------------------------------- Mon Sep 15 11:36:51 UTC 2014 - chris@computersalat.de @@ -902,7 +907,7 @@ Thu Sep 4 16:02:45 UTC 2014 - chris@computersalat.de Sun Aug 31 09:32:01 UTC 2014 - boris@steki.net - add --disable-arch-native configure param as vmware does not - emulate all instruction set and squid fails with + emulate all instruction set and squid fails with "Illegal instruction" more info at http://wiki.squid-cache.org/KnowledgeBase/IllegalInstructionError @@ -950,7 +955,7 @@ Thu Apr 24 20:47:05 UTC 2014 - boris@steki.net ------------------------------------------------------------------- Wed Apr 9 15:42:06 UTC 2014 - boris@steki.net -- setuid handling for opensuse using permissions updated +- setuid handling for opensuse using permissions updated ------------------------------------------------------------------- Mon Apr 7 12:06:41 UTC 2014 - boris@steki.net @@ -976,7 +981,7 @@ Fri Mar 28 18:46:44 UTC 2014 - chris@computersalat.de Sun Mar 16 08:54:50 UTC 2014 - boris@steki.net - added patch to force kerberos principalname handling - ( http://bugs.squid-cache.org/show_bug.cgi?id=4042 ) + ( http://bugs.squid-cache.org/show_bug.cgi?id=4042 ) * squid-brokenad.patch ------------------------------------------------------------------- @@ -1286,12 +1291,12 @@ Tue Apr 30 11:42:06 UTC 2013 - bruno@ioda-net.ch * HTTP/1.1: partial support for no-cache and private controls with parameters * ssl_crtd: helpers dying during startup on ARM * Updated copyright for icons/SN.png squid-3.2-11813.patch - * Revert r11810 - tools.h does not exist in 3.2 squid-3.2-11812.patch + * Revert r11810 - tools.h does not exist in 3.2 squid-3.2-11812.patch ------------------------------------------------------------------- Sun Mar 24 18:57:26 UTC 2013 - bruno@ioda-net.ch -- Fixed squid.service +- Fixed squid.service - Removed commented patch lines ------------------------------------------------------------------- @@ -1299,10 +1304,10 @@ Fri Mar 15 10:31:02 UTC 2013 - bruno@ioda-net.ch - New revision for squid.service (using only sed) handle multiple cache_dir line - Added sed as require -- Packaging : fixed systemd squid.service - * Rework on squid.service ExecStartPre line - remove dependency on unfunctionnal wrapper + Added sed as require +- Packaging : fixed systemd squid.service + * Rework on squid.service ExecStartPre line + remove dependency on unfunctionnal wrapper * Fix bnc#802635 (creating cache struture fail on first call) * Fixed Type=forking and remove the use off -N (non daemon flag) * Fixed missing pid file @@ -1310,7 +1315,7 @@ Fri Mar 15 10:31:02 UTC 2013 - bruno@ioda-net.ch * Ulimit : Added LimitNOFile=4096 ( same value as in /etc/sysconfig) but there's no way to decode dynamically /etc/sysconfig * Remove syslog.target ( no need anymore : advise from fcrozat ) - * Clean up squid_cache_build.sh + * Clean up squid_cache_build.sh - Changes to squid-3.2.9 (12 Mar 2013): * Regression fix: Accept-Language header parse * Bug 3673: Silence 'Failed to select source' messages @@ -1609,17 +1614,17 @@ Mon Dec 5 09:21:26 UTC 2011 - chris@computersalat.de ------------------------------------------------------------------- Wed Nov 30 18:58:11 UTC 2011 - crrodriguez@opensuse.org -- make coolo's bot reviewer happy +- make coolo's bot reviewer happy ------------------------------------------------------------------- Wed Nov 30 18:11:27 UTC 2011 - crrodriguez@opensuse.org -- Use service type "simple" +- Use service type "simple" ------------------------------------------------------------------- Mon Nov 28 20:18:40 UTC 2011 - crrodriguez@opensuse.org -- Support systemd +- Support systemd ------------------------------------------------------------------- Sun Nov 27 06:56:29 UTC 2011 - coolo@suse.com @@ -1636,7 +1641,7 @@ Sat Oct 15 14:00:35 UTC 2011 - chris@computersalat.de - Bug 3320: miss_access description confusing - Bug 3241: squid_kerb_auth cross compilation fix - Bug 3237: seq fault in free() from rfc1035RRDestroy - - Bug 3190: Large HTTP POST stuck after early ICAP 400 error response + - Bug 3190: Large HTTP POST stuck after early ICAP 400 error response - db_auth: display available DSN drivers on connect error - Updated OpenSSL 1.0.0 version checks - ... and several documentation fixes @@ -1654,9 +1659,9 @@ Tue Aug 30 15:44:50 UTC 2011 - chris@computersalat.de - Regression Bug 3295: broken escaping in rfc1738_do_escape - Bug #3232: fails to compile with OpenSSL v1.0.0 - Bug #3222: cache_peer name is not logging on CONNECT - - Bug #3131: fd_table[fd].closing() assert + - Bug #3131: fd_table[fd].closing() assert from ConnStateData::noteMoreBodySpaceAvailable() - - Bug #3217: "!fd_table[fd].closing()" + - Bug #3217: "!fd_table[fd].closing()" from ServerStateData::noteMoreBodySpaceAvailable - Bug #3213: https sites (CONNECT) not open when using NTLM - Bug #3114: Memory leak in SSL certificate verify code @@ -1689,7 +1694,7 @@ Wed Jul 20 04:29:08 UTC 2011 - crrodriguez@opensuse.org - This is a long running network daemon, build with full RELRO -- remove -fno-strict-aliasing, no longer needed. +- remove -fno-strict-aliasing, no longer needed. ------------------------------------------------------------------- Mon Jul 4 22:05:17 UTC 2011 - chris@computersalat.de @@ -1743,7 +1748,7 @@ Thu Jun 2 14:33:36 UTC 2011 - chris@computersalat.de - Bug 2965 (partial): Compile errors on MinGW - Fix to only ssl-bump CONNECT requests if they are about to be tunneled - Fix cache manager display of -i/+i in regex ACL config display - - Fix cache manager display of cache_peer options userhash and sourcehash + - Fix cache manager display of cache_peer options userhash and sourcehash - Fix URL re-writer loosing many transaction details - Fix always-true comparison in ICAP for some 32-bit platforms - Support for 'slow' group ACLs in ssl_bump access control @@ -1780,8 +1785,8 @@ Tue May 3 17:57:56 UTC 2011 - chris@computersalat.de ------------------------------------------------------------------- Fri Apr 29 11:10:06 UTC 2011 - idoenmez@novell.com -- Add squid-3.1.11-unused.patch: remove write only variables to - fix compilation with gcc 4.6 +- Add squid-3.1.11-unused.patch: remove write only variables to + fix compilation with gcc 4.6 ------------------------------------------------------------------- Thu Apr 21 16:05:07 UTC 2011 - chris@computersalat.de @@ -2045,7 +2050,7 @@ Tue Mar 16 22:18:08 UTC 2010 - chris@computersalat.de - Bug 2787: unknown/unexpected status code messages - Bug 2507: squid_ldap_group: Strip Domain name separated by + - Bug 2367: stale=true on digest requests with unknown nonce - - ... and several other minor corrections + - ... and several other minor corrections ------------------------------------------------------------------- Tue Feb 16 09:33:33 UTC 2010 - chris@computersalat.de @@ -2193,7 +2198,7 @@ Tue Aug 11 11:10:13 UTC 2009 - chris@computersalat.de http://www.squid-cache.org/Versions/v3/3.0/squid-3.0.STABLE18-RELEASENOTES.html - removed squid-3.0.STABLE16-gcc_warn_kerb_auth.patch - removed changed, deprectated configure options - o deprecated: + o deprecated: --enable-poll o changed to default: --enable-htcp @@ -2267,7 +2272,7 @@ Thu Jul 23 18:22:09 CEST 2009 - chris@computersalat.de ------------------------------------------------------------------- Wed Jun 10 16:54:49 CEST 2009 - ro@suse.de -- strchr returns a const char* now, work around +- strchr returns a const char* now, work around ------------------------------------------------------------------- Sun May 3 15:34:27 CEST 2009 - chris@computersalat.de @@ -2794,3 +2799,4 @@ Tue Nov 13 11:42:02 CET 2007 - kssingvo@suse.de Thu Nov 8 10:00:27 CET 2007 - kssingvo@suse.de - initial try with RC1, based on squid-beta +