commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2020-11-05 21:56:20
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new.11331 (New)
Package is "squid"
Thu Nov 5 21:56:20 2020 rev:88 rq:846311 version:4.13
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-10-10
00:29:11.453148242 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new.11331/squid.changes 2020-11-05
21:56:43.067941646 +0100
@@ -1,0 +2,14 @@
+Mon Nov 2 10:34:59 UTC 2020 - Adam Majer
+
+- re-add older SLES12 requirements so we can use one devel project
+ for all codestreams
+
+---
+Fri Oct 30 11:52:08 UTC 2020 - Matthias Gerstner
+
+- fix previous change to reinstante permissions macros, because the wrong path
+ has been used (bsc#1171569).
+- use libexecdir instead of libdir to conform to recent changes in Factory
+ (bsc#1171164).
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.Luy9O0/_old 2020-11-05 21:56:43.807939982 +0100
+++ /var/tmp/diff_new_pack.Luy9O0/_new 2020-11-05 21:56:43.811939973 +0100
@@ -16,11 +16,11 @@
#
-%define squidlibdir %{_libdir}/squid
+%define squidlibexecdir %{_libexecdir}/squid
%define squidconfdir %{_sysconfdir}/squid
-%if 0%{?suse_version} >= 1550
-%define squidhelperdir %{squidlibdir}
+%if 0%{?suse_version} > 1500 || 0%{?sle_version} >= 150300
+%define squidhelperdir %{squidlibexecdir}
%else
%define squidhelperdir %{_sbindir}
%endif
@@ -63,8 +63,13 @@
BuildRequires: pkgconfig
BuildRequires: samba-winbind
BuildRequires: sharutils
+%if 0%{?suse_version} >= 1500
BuildRequires: sysuser-shadow
BuildRequires: sysuser-tools
+%sysusers_requires
+%else
+Requires(pre): shadow
+%endif
BuildRequires: pkgconfig(expat)
BuildRequires: pkgconfig(gssrpc)
BuildRequires: pkgconfig(kdb)
@@ -80,7 +85,6 @@
Provides: %{name}3 = %{version}
Obsoletes: %{name}3 < %{version}
%{?systemd_ordering}
-%sysusers_requires
%if 0%{?suse_version} >= 1330
BuildRequires: libnsl-devel
%endif
@@ -151,8 +155,10 @@
--disable-arch-native \
--enable-security-cert-generators \
--enable-security-cert-validators
-%make_build SAMBAPREFIX=%{_prefix}
+make %{?_smp_mflags} -O SAMBAPREFIX=%{_prefix}
+%if 0%{?suse_version} >= 1500
%sysusers_generate_pre %{SOURCE12} squid
+%endif
%install
install -d -m 750 %{buildroot}%{_localstatedir}/{cache,log}/%{name}
@@ -171,10 +177,14 @@
install -d -m 755 doc/scripts
install scripts/*.pl doc/scripts
cat > doc/scripts/cachemgr.readme <<-EOT
+%if 0%{?suse_version} > 1500 || 0%{?sle_version} >= 150300
+ cachemgr.cgi will now be found in %{squidhelperdir}
+%else
cachemgr.cgi will now be found in %{_libdir}/%{name}
+%endif
EOT
-%if 0%{?suse_version} <= 1500
+%if 0%{?suse_version} <= 1500 && 0%{?sle_version} < 150300
install -dpm 755 %{buildroot}/%{_libdir}/%{name}
mv %{buildroot}%{_sbindir}/cachemgr.cgi %{buildroot}/%{_libdir}/%{name}
%endif
@@ -197,9 +207,9 @@
# systemd
install -D -m 644 %{SOURCE11} %{buildroot}%{_unitdir}/%{name}.service
-install -D -m 755 %{SOURCE15} %{buildroot}%{squidlibdir}/cache_dir.sed
-install -D -m 755 %{SOURCE16}
%{buildroot}%{squidlibdir}/initialize_cache_if_needed.sh
-sed -i -e 's!%%{_libdir}!%{_libdir}!' %{buildroot}%{_unitdir}/%{name}.service
+install -D -m 755 %{SOURCE15} %{buildroot}%{squidlibexecdir}/cache_dir.sed
+install -D -m 755 %{SOURCE16}
%{buildroot}%{squidlibexecdir}/initialize_cache_if_needed.sh
+sed -i -e 's!%%{_libexecdir}!%{_libexecdir}!'
%{buildroot}%{_unitdir}/%{name}.service
ln -sf %{_sbindir}/service %{buildroot}%{_sbindir}/rc%{name}
# needed for smp support (bsc#1112695, bsc#1112066)
@@ -217,9 +227,30 @@
%check
# Fails in chroot environment
-%make_build check
+make check
+%if 0%{?suse_version} >= 1500
%pre -f squid.pre
+%else
+%pre
+# we need this group for /usr/sbin/pinger
+getent group %{name} >/dev/null || %{_sbindir}/groupadd -g 31 -r %{name}
+# we need this group for squid (ntlmauth)
+# read access to /var/lib/samba/winbindd_privileged
+getent group winbind >/dev/null || %{_sbindir}/groupadd -r winbind
+getent passwd squid >/dev/null || \
+ %{_sbindir}/useradd -c "WWW-proxy squid" -d %{_localstatedir}/cache/%{name} \
+-G winbind -g %{name} -o -u 31 -r -s /bin/false \
+%{name}
+# if default group is not squid, change it
+if [ "$(%{_bindir}/id -ng %{name} 2>/dev/null)" != "%{name}" ]; then
+ %{_sbindir}/usermod -g %{name} %{name}
+fi
+# if squid is not member of winbind, add him
+if [
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2020-10-10 00:29:08
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new.4249 (New)
Package is "squid"
Sat Oct 10 00:29:08 2020 rev:87 rq:840300 version:4.13
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-09-03
01:14:53.116486685 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new.4249/squid.changes2020-10-10
00:29:11.453148242 +0200
@@ -1,0 +2,8 @@
+Thu Oct 8 11:01:44 UTC 2020 - Matthias Gerstner
+
+- Reinstate permissions macros for pinger binary, because the permissions
+ package is also responsible for setting up the cap_net_raw capability,
+ currently a fresh squid install doesn't get a capability bit at all
+ (bsc#1171569).
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.fMxRGC/_old 2020-10-10 00:29:12.413148718 +0200
+++ /var/tmp/diff_new_pack.fMxRGC/_new 2020-10-10 00:29:12.417148720 +0200
@@ -231,8 +231,7 @@
fi
%post
-# %%set_permissions %%{_sbindir}/basic_pam_auth
-# %%set_permissions %%{_sbindir}/pinger
+%set_permissions %{_sbindir}/pinger
%set_permissions %{_localstatedir}/cache/squid/
%set_permissions %{_localstatedir}/log/squid/
%tmpfiles_create %{_tmpfilesdir}/squid.conf
@@ -242,8 +241,7 @@
%service_del_preun squid.service
%verifyscript
-# %%verify_permissions -e %%{_sbindir}/basic_pam_auth
-# %%verify_permissions -e %%{_sbindir}/pinger
+%verify_permissions -e %{_sbindir}/pinger
%verify_permissions -e %{_localstatedir}/cache/squid/
%verify_permissions -e %{_localstatedir}/log/squid/
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-09-03 01:13:55 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.3399 (New) Package is "squid" Thu Sep 3 01:13:55 2020 rev:86 rq:831407 version:4.13 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-08-25 09:35:39.572102340 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.3399/squid.changes2020-09-03 01:14:53.116486685 +0200 @@ -6 +6,2 @@ - * Fix livelocking in peerDigestHandleReply (#698) (bsc#1175671) + * Fix livelocking in peerDigestHandleReply (#698) +(bsc#1175671, CVE-2020-24606) Other differences: --
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-08-25 09:33:38 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.3399 (New) Package is "squid" Tue Aug 25 09:33:38 2020 rev:85 rq:828922 version:4.13 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-08-10 15:02:19.108137348 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.3399/squid.changes2020-08-25 09:35:39.572102340 +0200 @@ -1,0 +2,18 @@ +Mon Aug 24 11:38:09 UTC 2020 - Adam Majer + +- squid 4.13: + * Enforce token characters for field-name (#700) + * Fix livelocking in peerDigestHandleReply (#698) (bsc#1175671) + * Improve Transfer-Encoding handling (#702) +(bsc#1175665, CVE-2020-15811) + * Forbid obs-fold and bare CR whitespace in framing header fields (#701) + * Source Format Enforcement + * Enforce token characters for field-name (#700) +(bsc#1175664, CVE-2020-15810) + * Do not stall while debugging a scan of an empty store_table (#699) + * Fix livelocking in peerDigestHandleReply (#698) + * Honor on_unsupported_protocol for intercepted https_port (#689) + * Bug #5051: Some collapsed revalidation responses never expire (#683) + * SslBump: Support parsing GREASEd (and future) TLS handshakes (#663) + +--- Old: squid-4.12.tar.xz squid-4.12.tar.xz.asc New: squid-4.13.tar.xz squid-4.13.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.jVEQ8d/_old 2020-08-25 09:35:42.000103757 +0200 +++ /var/tmp/diff_new_pack.jVEQ8d/_new 2020-08-25 09:35:42.004103760 +0200 @@ -26,7 +26,7 @@ %endif Name: squid -Version:4.12 +Version:4.13 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0-or-later ++ squid-4.12.tar.xz -> squid-4.13.tar.xz ++ 22096 lines of diff (skipped) ++ squid-4.12.tar.xz.asc -> squid-4.13.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-4.12.tar.xz.asc 2020-06-22 17:46:18.333922233 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.3399/squid-4.13.tar.xz.asc 2020-08-25 09:35:38.032101442 +0200 @@ -1,25 +1,25 @@ -File: squid-4.12.tar.xz -Date: Tue Jun 9 07:34:59 UTC 2020 -Size: 2450564 -MD5 : ad7a4a8a0031cae3435717a759173829 -SHA1: 316b8a343aa542b5e7469d33b9d726bee00679c6 +File: squid-4.13.tar.xz +Date: Sat 22 Aug 2020 19:33:59 UTC +Size: 2452752 +MD5 : 492e54afc15821141ff1d1d9903854d6 +SHA1: cac95c18789e9ecd6620c2f278fc3900498c065b Key : CD6DBF8EF3B17D3E B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E keyring = http://www.squid-cache.org/pgp.asc keyserver = pool.sks-keyservers.net -BEGIN PGP SIGNATURE- -iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAl7fO6wACgkQzW2/jvOx -fT5dchAAvAB2fh/QBkumskN/K5c061NFA+/ZbHD8gqmvaUUIjXNoEqBhBAzTpCpm -03XcFZdIBFKqkHxiJrlWzdRylSqv5nkw1qZBN6S6NzygYVs3UYHkpNSM8AZLBW4c -XDZEnmYbr2HlWHJ9fISsWhwApQ2HXwzUdMAFeN3ADDtT2nbCSjpO89sFj6zHrUVo -sWsf+pKuPd6C/30MymsF5ZQVkmAeb1TRDRpnWvg0Ec//m2Sw0p6nKlr0uPBLMALW -nIQivuf6MRTaa0iFibWtIyA4m88mUZLifWM9F3DOJcJYjXlKjWpQ0GQY/ylpDpeL -DzMbIV/Ycv4R/w6Hk6f4MDva7FRkamlsUhCUrrL09B0CaAjnW3b0wIbFnoiCP2cL -48TST3NjKy2CG8yrHKL2G5mER2T/KyGv3m2TvVNl+sihH35Urtq9ecBCn2UwiRFL -mNsEXllhMVzYmRwlN3+1Y+P612jdpdSLzIQH++ih3FYhpiZRrUPKYWNSYnesUQo+ -AJiOoDzdqzHlg2P5ZVQlhaTf7qEMLf55w6TzPJ4lo6DuDdIyGVBJBJFiuBMp6JHr -jElIYnwgCJ2j+Lmr2pmN0njlhSkio6084Wava37P3c61wqFF47NErO8bwaUZNPT/ -66A23tcqM1ADeBB9Ll4vmxjvn/CHrWmX0RzoOp2VCG8s7i1CT1E= -=c3VT +iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAl9BczQACgkQzW2/jvOx +fT54vQ//S7KNcv8wiO9GFYmRW0At2aJqE7j3alni5PBNzHvZKHwNyBfGFaCPGm0+ ++lM2VoYwVrELBqg9gFUpKvFscUtqBQyFAd+84JjJ2x6IJp2+eajxO+1grbwa+4aw +pcFu73MzzSgZ8n0IJB95zJoD5Tc/AHt6MXn84BABo3bFXNBSw1y6yFTuz8MtfLBQ +ACFWVTPmoei0DyD0gdF+qGHydlLJG+8GDpzXM6gMDjAxbFXkPqWey0V8+vQ8SFrC +8t4XMBCC7VyhzM9kOP5hgStRHzhuGNBedfqd0VrY0xOlYjCQrY7ihelak7NfvlHx +wIMM/tuiSV+DgMNVLG4aCmtPWtyrvw1N0jz7+dr243sf8iuSEulIa98IM5YGPeq7 +alHPkmoyLfjhKHW33xzS+oM8jBvOH3A4gIgTna8t/5tWwgttRA1T4xqbBDfNAGy8 +qxJeLlqKaFO9tyvkGqMT+CEcthULrKGOBqFu/DfkAoID/x7a3gyLVaYhHtOtUv8y +EIISadVos3XGTZfnn8OFWsJ0etWrfveYR36P+ImhQku5uwK1hr6YE6khY5UWYJL/ +pdaT6jzLzwB6DtUdSfwiE44aaftxOEGH4ZdlLo6dgGlEVh12ni91Jn99v9sg9X4D +bFXMWa7u7bMgAvEPyjEd2fSNk7UFUL2+gAxOtBN79RxMwg520zc= +=/0kc -END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2020-08-10 15:01:05
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new.3399 (New)
Package is "squid"
Mon Aug 10 15:01:05 2020 rev:84 rq:825214 version:4.12
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-06-29
21:17:59.413714358 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new.3399/squid.changes2020-08-10
15:02:19.108137348 +0200
@@ -1,0 +2,8 @@
+Fri Jul 24 15:03:53 UTC 2020 - Adam Majer
+
+- Change pinger and basic_pam_auth helper to use standard permissions.
+ pinger uses cap_net_raw=ep instead (bsc#1171569)
+- Move squid helpers under /usr/lib{,64}/squid for Tumbleweed and SLE16
+ Please adjust your config paths accordingly
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.Ezoyjq/_old 2020-08-10 15:02:20.200137924 +0200
+++ /var/tmp/diff_new_pack.Ezoyjq/_new 2020-08-10 15:02:20.204137926 +0200
@@ -18,6 +18,13 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
+
+%if 0%{?suse_version} >= 1550
+%define squidhelperdir %{squidlibdir}
+%else
+%define squidhelperdir %{_sbindir}
+%endif
+
Name: squid
Version:4.12
Release:0
@@ -106,7 +113,7 @@
%configure \
--disable-strict-error-checking \
--sysconfdir=%{squidconfdir} \
- --libexecdir=%{_sbindir} \
+ --libexecdir=%{squidhelperdir} \
--datadir=%{_datadir}/squid \
--sharedstatedir=%{_localstatedir}/squid \
--with-logdir=%{_localstatedir}/log/squid \
@@ -166,8 +173,11 @@
cat > doc/scripts/cachemgr.readme <<-EOT
cachemgr.cgi will now be found in %{_libdir}/%{name}
EOT
+
+%if 0%{?suse_version} <= 1500
install -dpm 755 %{buildroot}/%{_libdir}/%{name}
mv %{buildroot}%{_sbindir}/cachemgr.cgi %{buildroot}/%{_libdir}/%{name}
+%endif
install -dpm 755 doc/contrib
install %{SOURCE6} doc/contrib
@@ -221,8 +231,8 @@
fi
%post
-%set_permissions %{_sbindir}/basic_pam_auth
-%set_permissions %{_sbindir}/pinger
+# %%set_permissions %%{_sbindir}/basic_pam_auth
+# %%set_permissions %%{_sbindir}/pinger
%set_permissions %{_localstatedir}/cache/squid/
%set_permissions %{_localstatedir}/log/squid/
%tmpfiles_create %{_tmpfilesdir}/squid.conf
@@ -232,8 +242,8 @@
%service_del_preun squid.service
%verifyscript
-%verify_permissions -e %{_sbindir}/basic_pam_auth
-%verify_permissions -e %{_sbindir}/pinger
+# %%verify_permissions -e %%{_sbindir}/basic_pam_auth
+# %%verify_permissions -e %%{_sbindir}/pinger
%verify_permissions -e %{_localstatedir}/cache/squid/
%verify_permissions -e %{_localstatedir}/log/squid/
@@ -271,6 +281,7 @@
%dir %{_datadir}/%{name}
%dir %{_datadir}/snmp
%dir %{_datadir}/snmp/mibs
+%dir %{_libdir}/%{name}
%{_datadir}/%{name}/errors
%{_datadir}/%{name}/icons
%{_datadir}/%{name}/mime.conf
@@ -278,50 +289,50 @@
%{_datadir}/snmp/mibs/SQUID-MIB.txt
%{_bindir}/purge
%{_bindir}/squidclient
-%{_sbindir}/basic_db_auth
-%{_sbindir}/basic_fake_auth
-%{_sbindir}/basic_getpwnam_auth
-%{_sbindir}/basic_ldap_auth
-%{_sbindir}/digest_edirectory_auth
-%{_sbindir}/basic_ncsa_auth
-%{_sbindir}/basic_nis_auth
-%verify(not mode) %attr(2750,root,shadow) %{_sbindir}/basic_pam_auth
-%{_sbindir}/basic_pop3_auth
-%{_sbindir}/basic_radius_auth
-%{_sbindir}/basic_sasl_auth
-%{_sbindir}/basic_smb_auth
-%{_sbindir}/basic_smb_auth.sh
-%{_sbindir}/basic_smb_lm_auth
-%{_sbindir}/cert_tool
-%{_sbindir}/digest_file_auth
-%{_sbindir}/digest_ldap_auth
-%{_sbindir}/diskd
-%{_sbindir}/ext_edirectory_userip_acl
-%{_sbindir}/ext_file_userip_acl
-%{_sbindir}/ext_kerberos_ldap_group_acl
-%{_sbindir}/ext_ldap_group_acl
-%{_sbindir}/ext_session_acl
-%{_sbindir}/ext_unix_group_acl
-%{_sbindir}/ext_wbinfo_group_acl
-%{_sbindir}/helper-mux
-%{_sbindir}/log_db_daemon
-%{_sbindir}/log_file_daemon
-%{_sbindir}/negotiate_kerberos_auth
-%{_sbindir}/negotiate_kerberos_auth_test
-%{_sbindir}/negotiate_wrapper_auth
-%{_sbindir}/ntlm_fake_auth
-%{_sbindir}/ntlm_smb_lm_auth
-%verify(not user group mode caps) %attr(0750,root,squid) %{_sbindir}/pinger
-%{_sbindir}/security_fake_certverify
-%{_sbindir}/security_file_certgen
-%{_sbindir}/%{name}
-%{_sbindir}/storeid_file_rewrite
-%{_sbindir}/unlinkd
-%{_sbindir}/url_fake_rewrite
-%{_sbindir}/url_fake_rewrite.sh
-%{_sbindir}/url_lfs_rewrite
-%{_sbindir}/ext_time_quota_acl
-%{_sbindir}/rc%{name}
+%{squidhelperdir}/basic_db_auth
+%{squidhelperdir}/basic_fake_auth
+%{squidhelperdir}/basic_getpwnam_auth
+%{squidhelperdir}/basic_ldap_auth
+%{squidhelperdir}/digest_edirectory_auth
+%{squidhe
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-06-29 21:17:13 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.3060 (New) Package is "squid" Mon Jun 29 21:17:13 2020 rev:83 rq:817633 version:4.12 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-06-24 15:50:50.404881216 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.3060/squid.changes2020-06-29 21:17:59.413714358 +0200 @@ -9 +9 @@ - * HTTP: validate Content-Length value prefix + * HTTP: validate Content-Length value prefix (CVE-2020-15049, bsc#1173455) Other differences: --
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-06-24 15:50:24 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.2956 (New) Package is "squid" Wed Jun 24 15:50:24 2020 rev:82 rq:816822 version:4.12 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-06-22 17:46:18.685923337 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.2956/squid.changes2020-06-24 15:50:50.404881216 +0200 @@ -4,0 +5,2 @@ + * Fixes a potential Denial of Service when processing TLS certificates +during HTTPS or SSL-Bump connections (CVE-2020-14059, bsc#1173304) Other differences: --
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2020-06-22 17:46:11
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new.2956 (New)
Package is "squid"
Mon Jun 22 17:46:11 2020 rev:81 rq:816284 version:4.12
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-04-23
18:40:25.65723 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new.2956/squid.changes2020-06-22
17:46:18.685923337 +0200
@@ -1,0 +2,11 @@
+Sun Jun 21 05:28:33 UTC 2020 - Andreas Stieger
+
+- squid 4.12:
+ * Regression Fix: Revert to slow search for new SMP shm pages
+ * Fix Negative responses are never cached
+ * HTTP: validate Content-Length value prefix
+ * HTTP: add flexible RFC 3986 URI encoder
+ * Fix stall if transaction overwrites a recently active cache
+entry
+
+---
Old:
squid-4.11.tar.xz
squid-4.11.tar.xz.asc
New:
squid-4.12.tar.xz
squid-4.12.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.MZ7bu9/_old 2020-06-22 17:46:19.361925458 +0200
+++ /var/tmp/diff_new_pack.MZ7bu9/_new 2020-06-22 17:46:19.361925458 +0200
@@ -19,7 +19,7 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:4.11
+Version:4.12
Release:0
Summary:Caching and forwarding HTTP web proxy
License:GPL-2.0-or-later
@@ -65,18 +65,18 @@
BuildRequires: pkgconfig(libsasl2)
BuildRequires: pkgconfig(libxml-2.0)
BuildRequires: pkgconfig(nettle)
-Recommends: logrotate
Requires(pre): permissions
+Recommends: logrotate
Provides: http_proxy
# due to package rename
# Wed Aug 15 17:40:30 UTC 2012
Provides: %{name}3 = %{version}
Obsoletes: %{name}3 < %{version}
%{?systemd_ordering}
+%sysusers_requires
%if 0%{?suse_version} >= 1330
BuildRequires: libnsl-devel
%endif
-%sysusers_requires
%description
Squid is a caching proxy for the Web supporting HTTP(S), FTP, and
@@ -92,7 +92,7 @@
# upstream patches after RELEASE
perl -p -i -e 's|%{_prefix}/local/bin/perl|%{_bindir}/perl|' `find -name
"*.pl"`
%patch1 -p1
-%if %{suse_version} < 1500
+%if 0%{?suse_version} < 1500
%patch2 -p1
%endif
@@ -144,7 +144,7 @@
--disable-arch-native \
--enable-security-cert-generators \
--enable-security-cert-validators
-make SAMBAPREFIX=%{_prefix} %{?_smp_mflags}
+%make_build SAMBAPREFIX=%{_prefix}
%sysusers_generate_pre %{SOURCE12} squid
%install
@@ -207,7 +207,7 @@
%check
# Fails in chroot environment
-make %{?_smp_mflags} check
+%make_build check
%pre -f squid.pre
%service_add_pre %{name}.service
++ squid-4.11.tar.xz -> squid-4.12.tar.xz ++
2403 lines of diff (skipped)
++ squid-4.11.tar.xz.asc -> squid-4.12.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-4.11.tar.xz.asc 2020-04-23
18:40:24.593232409 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new.2956/squid-4.12.tar.xz.asc
2020-06-22 17:46:18.333922233 +0200
@@ -1,25 +1,25 @@
-File: squid-4.11.tar.xz
-Date: Sun Apr 19 12:56:37 UTC 2020
-Size: 2447700
-MD5 : 10f34e852153a9996aa4614670e2bda1
-SHA1: 053277bf5497163ffc9261b9807abda5959bb6fc
+File: squid-4.12.tar.xz
+Date: Tue Jun 9 07:34:59 UTC 2020
+Size: 2450564
+MD5 : ad7a4a8a0031cae3435717a759173829
+SHA1: 316b8a343aa542b5e7469d33b9d726bee00679c6
Key : CD6DBF8EF3B17D3E
B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E
keyring = http://www.squid-cache.org/pgp.asc
keyserver = pool.sks-keyservers.net
-BEGIN PGP SIGNATURE-
-iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAl6cSpEACgkQzW2/jvOx
-fT6YbA/6A+IbIbNBJUW45oj23Io9Tw/CzAcTeLHR+McKwV77qMbR+L+kQ+fUdM5F
-rHAmd8bVVlyHc4WanVfWItEmzBzHA/ifTNvVpefSGGEbDb80RF66k7ACiZUokg1b
-kkPwc/SjDhe2wvketIaBiVVd7pylrlCdVvazcF8gE9MWDOIlJND5mnHXidXvwkbJ
-T2//8JZVEmcmN9pdFGNAUVckFm+AnwWXcRM1SQPYDGSVUtjVlqido8snLTA1mZwl
-rIpjppujMV54OOWlj+Gqa3MZkpNzIaMCAfphzUFlsQY+/sRUYAOv1wmxw2WclxlK
-WlWM+fw8OsYNDMwkOScKZZWceoAkq6UsUHzCAdJIdLqV/R6mZ9nfuZ6BHIr0+2dP
-bDf9MU4KXbwEuXiRD/KPziUxxOZwSPivbm3wy9DqTTZfO9V+Iq6FVHX+ahxJ0XbM
-JWRYA3GW+DRLjorfsWxU5r4UJsrnBfhItPUAfGPjPjEGZ/pn8r9G6MGenNGPLMKy
-wP1rMlOhrZPwerzokzAvKx8G0WWkfN+IPv2JK3rDot6RiJIOuvnZZd4RIuVNTGbh
-liO7M24JlWX3WD2wHBzxQag46+plb3VvrrVChwIQnZ2Qzpf50w0Bife/wtNBGpK0
-k/Xi/nocO796YS8GZBnmhS1lEGEwp/YpJBFWmIjTWMUMEOcswVA=
-=PKl0
+iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAl7fO6wACgkQzW2/jvOx
+fT5dchAAvAB2fh/QBkumskN/K5c061NFA+/ZbHD8gqmvaUUIjXNoEqBhBAzTpCpm
+03XcFZdIBFKqkHxiJrlWzdRylSqv5nkw1qZBN6S6NzygYVs3UYHkpNSM8AZLBW4c
+XDZEnmYbr2HlWHJ9fISsWhwApQ2HXwzUdMAFeN3ADDtT2
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2020-04-23 18:40:20
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new.2738 (New)
Package is "squid"
Thu Apr 23 18:40:20 2020 rev:80 rq:796564 version:4.11
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-04-21
13:11:44.144940145 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new.2738/squid.changes2020-04-23
18:40:25.65723 +0200
@@ -1,0 +2,19 @@
+Thu Apr 23 13:02:37 UTC 2020 - Adam Majer
+
+- Update to squid 4.11:
+ * Fix incorrect buffer handling that can result in cache
+poisoning, remote execution, and denial of service attacks when
+processing ESI responses
+(CVE-2019-12519, CVE-2019-12521, bsc#1169659)
+ * Fixes possible information disclosure when translating
+FTP server listings into HTTP responses.
+(CVE-2019-12528, bsc#1162689)
+ * Fixes possible denial of service caused by incorrect buffer
+management ext_lm_group_acl when processing NTLM Authentication
+credentials. (CVE-2020-8517, bsc#1162691)
+ * Fixes a potential remote execution vulnerability when using
+HTTP Digest Authentication (CVE-2020-11945, bsc#1170313)
+ * Fixes problem when reconfigure killed Coordinator in
+SMP+ufs configurations (#556)
+
+---
Old:
squid-4.10.tar.xz
squid-4.10.tar.xz.asc
New:
squid-4.11.tar.xz
squid-4.11.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.gwIUJ3/_old 2020-04-23 18:40:27.513237995 +0200
+++ /var/tmp/diff_new_pack.gwIUJ3/_new 2020-04-23 18:40:27.517238003 +0200
@@ -19,7 +19,7 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:4.10
+Version:4.11
Release:0
Summary:Caching and forwarding HTTP web proxy
License:GPL-2.0-or-later
++ squid-4.10.tar.xz -> squid-4.11.tar.xz ++
4743 lines of diff (skipped)
retrying with extended exclude list
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude
config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4
--exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh
old/squid-4.10/ChangeLog new/squid-4.11/ChangeLog
--- old/squid-4.10/ChangeLog2020-01-20 03:51:40.0 +0100
+++ new/squid-4.11/ChangeLog2020-04-19 14:38:51.0 +0200
@@ -1,3 +1,15 @@
+Changes to squid-4.11 (18 Apr 2020):
+
+ - Bug 5036: capital 'L's in logs when daemon queue overflows
+ - Bug 5022: Reconfigure kills Coordinator in SMP+ufs configurations
+ - Bug 5016: systemd thinks Squid is ready before Squid listens
+ - kerberos_ldap_group: fix encryption type for cross realm check
+ - HTTP: Ignore malformed Host header in intercept and reverse proxy mode
+ - Fix Digest authentication nonce handling
+ - Supply ALE to request_header_add/reply_header_add
+ - ... and some documentation updates
+ - ... and some compile fixes
+
Changes to squid-4.10 (14 Jan 2020):
- Bug 5009: Build failure with older clang libc++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude
config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4
--exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh
old/squid-4.10/RELEASENOTES.html new/squid-4.11/RELEASENOTES.html
--- old/squid-4.10/RELEASENOTES.html2020-01-20 04:07:14.0 +0100
+++ new/squid-4.11/RELEASENOTES.html2020-04-19 14:50:33.0 +0200
@@ -1,11 +1,12 @@
-
- Squid 4.10 release notes
+
+
+ Squid 4.11 release notes
-Squid 4.10 release notes
+Squid 4.11 release notes
Squid Developers
@@ -63,7 +64,7 @@
1. Notice
-The Squid Team are pleased to announce the release of Squid-4.10.
+The Squid Team are pleased to announce the release of Squid-4.11.
This new release is available for download from
http://www.squid-cache.org/Versions/v4/";>http://www.squid-cache.org/Versions/v4/
or the
http://www.squid-cache.org/Download/http-mirrors.html";>mirrors.
@@ -637,6 +638,10 @@
The cppunit testing framework is auto-detected and used when available.
This option can be used to disable it explicitly.
+--without-systemd
+SystemD init environment features are auto-detected and used when available.
+This option can be used to disable systemd features explicitly.
+
diff -urN '--exclu
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-04-21 13:11:43 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.2738 (New) Package is "squid" Tue Apr 21 13:11:43 2020 rev:79 rq:795800 version:4.10 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-04-08 19:57:31.905160567 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.2738/squid.changes2020-04-21 13:11:44.144940145 +0200 @@ -1,0 +2,6 @@ +Mon Apr 20 10:24:46 UTC 2020 - Thorsten Kukuk + +- Make logrotate recommended, it's not strictly required and + doesn't make any sense in containers + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.0X4DYZ/_old 2020-04-21 13:11:45.036941923 +0200 +++ /var/tmp/diff_new_pack.0X4DYZ/_new 2020-04-21 13:11:45.036941923 +0200 @@ -65,7 +65,7 @@ BuildRequires: pkgconfig(libsasl2) BuildRequires: pkgconfig(libxml-2.0) BuildRequires: pkgconfig(nettle) -Requires: logrotate +Recommends: logrotate Requires(pre): permissions Provides: http_proxy # due to package rename
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-04-08 19:57:10 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.3248 (New) Package is "squid" Wed Apr 8 19:57:10 2020 rev:78 rq:792007 version:4.10 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-02-19 12:43:13.455934661 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new.3248/squid.changes2020-04-08 19:57:31.905160567 +0200 @@ -41,0 +42,2 @@ + * fixes handling of invalid domain names in cachemgr.cgi +(CVE-2019-18860, bsc#1167373) Other differences: --
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2020-02-19 12:43:04
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new.26092 (New)
Package is "squid"
Wed Feb 19 12:43:04 2020 rev:77 rq:776229 version:4.10
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-02-05
19:44:59.083361494 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new.26092/squid.changes 2020-02-19
12:43:13.455934661 +0100
@@ -1,0 +2,6 @@
+Tue Feb 18 15:46:02 CET 2020 - ku...@suse.de
+
+- Use sysusers instead of shadow to create squid user and groups
+- Don't hard require systemd
+
+---
New:
squid-user.conf
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.J3lJxd/_old 2020-02-19 12:43:15.259938134 +0100
+++ /var/tmp/diff_new_pack.J3lJxd/_new 2020-02-19 12:43:15.263938142 +0100
@@ -33,6 +33,7 @@
Source9:%{name}.permissions
Source10: README.kerberos
Source11: %{name}.service
+Source12: %{name}-user.conf
#
http://lists.squid-cache.org/pipermail/squid-announce/2016-October/64.html
Source13: http://www.squid-cache.org/pgp.asc#/squid.keyring
Source15: cache_dir.sed
@@ -55,6 +56,8 @@
BuildRequires: pkgconfig
BuildRequires: samba-winbind
BuildRequires: sharutils
+BuildRequires: sysuser-shadow
+BuildRequires: sysuser-tools
BuildRequires: pkgconfig(expat)
BuildRequires: pkgconfig(gssrpc)
BuildRequires: pkgconfig(kdb)
@@ -64,16 +67,16 @@
BuildRequires: pkgconfig(nettle)
Requires: logrotate
Requires(pre): permissions
-Requires(pre): shadow
Provides: http_proxy
# due to package rename
# Wed Aug 15 17:40:30 UTC 2012
Provides: %{name}3 = %{version}
Obsoletes: %{name}3 < %{version}
-%{?systemd_requires}
+%{?systemd_ordering}
%if 0%{?suse_version} >= 1330
BuildRequires: libnsl-devel
%endif
+%sysusers_requires
%description
Squid is a caching proxy for the Web supporting HTTP(S), FTP, and
@@ -142,6 +145,7 @@
--enable-security-cert-generators \
--enable-security-cert-validators
make SAMBAPREFIX=%{_prefix} %{?_smp_mflags}
+%sysusers_generate_pre %{SOURCE12} squid
%install
install -d -m 750 %{buildroot}%{_localstatedir}/{cache,log}/%{name}
@@ -197,28 +201,15 @@
mv %{buildroot}%{_datadir}/squid/mib.txt \
%{buildroot}%{_datadir}/snmp/mibs/SQUID-MIB.txt
+# Install sysusers file.
+mkdir -p %{buildroot}%{_sysusersdir}
+install -m 644 %{SOURCE12} %{buildroot}%{_sysusersdir}/
+
%check
# Fails in chroot environment
make %{?_smp_mflags} check
-%pre
-# we need this group for /usr/sbin/pinger
-getent group %{name} >/dev/null || %{_sbindir}/groupadd -g 31 -r %{name}
-# we need this group for squid (ntlmauth)
-# read access to /var/lib/samba/winbindd_privileged
-getent group winbind >/dev/null || %{_sbindir}/groupadd -r winbind
-getent passwd squid >/dev/null || \
- %{_sbindir}/useradd -c "WWW-proxy squid" -d %{_localstatedir}/cache/%{name} \
--G winbind -g %{name} -o -u 31 -r -s /bin/false \
-%{name}
-# if default group is not squid, change it
-if [ "$(%{_bindir}/id -ng %{name} 2>/dev/null)" != "%{name}" ]; then
- %{_sbindir}/usermod -g %{name} %{name}
-fi
-# if squid is not member of winbind, add him
-if [ $(%{_bindir}/id -nG %{name} 2>/dev/null | grep -q winbind; echo $?) -ne 0
]; then
- %{_sbindir}/usermod -G winbind %{name}
-fi
+%pre -f squid.pre
%service_add_pre %{name}.service
# update mode?
@@ -265,6 +256,7 @@
%dir %{squidconfdir}
%dir %{_tmpfilesdir}
%{_tmpfilesdir}/squid.conf
+%{_sysusersdir}/squid-user.conf
%config(noreplace) %{squidconfdir}/cachemgr.conf
%config(noreplace) %{squidconfdir}/errorpage.css
%config(noreplace) %{squidconfdir}/errors
++ squid-user.conf ++
# Type Name ID GECOS [HOME]
u squid - "WWW-proxy squid" /var/cache/squid
g winbind - -
m squid winbind
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2020-02-05 19:44:27
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new.26092 (New)
Package is "squid"
Wed Feb 5 19:44:27 2020 rev:76 rq:770216 version:4.10
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-11-09
23:40:32.537311122 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new.26092/squid.changes 2020-02-05
19:44:59.083361494 +0100
@@ -1,0 +2,13 @@
+Wed Feb 5 09:57:59 UTC 2020 - Adam Majer
+
+- Update to squid 4.10:
+ * fixes a security issue allowing a remote client ability to cause
+use a buffer overflow when squid is acting as reverse-proxy.
+(CVE-2020-8449, CVE-2020-8450, bsc#1162687)
+ * fixes a security issue allowing for information disclosure in
+FTP gateway (CVE-2019-12528, bsc#1162689)
+ * fixes a security issue in ext_lm_group_acl when processing
+NTLM Authentication credentials. (CVE-2020-8517, bsc#1162691)
+ * improve cache handling with chunked responses
+
+---
Old:
squid-4.9.tar.xz
squid-4.9.tar.xz.asc
New:
squid-4.10.tar.xz
squid-4.10.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.aHGPma/_old 2020-02-05 19:45:00.003361932 +0100
+++ /var/tmp/diff_new_pack.aHGPma/_new 2020-02-05 19:45:00.003361932 +0100
@@ -1,7 +1,7 @@
#
# spec file for package squid
#
-# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2020 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -19,7 +19,7 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:4.9
+Version:4.10
Release:0
Summary:Caching and forwarding HTTP web proxy
License:GPL-2.0-or-later
++ squid-4.9.tar.xz -> squid-4.10.tar.xz ++
41593 lines of diff (skipped)
++ squid-4.9.tar.xz.asc -> squid-4.10.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-4.9.tar.xz.asc 2019-11-09
23:40:32.501311066 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new.26092/squid-4.10.tar.xz.asc
2020-02-05 19:44:58.979361445 +0100
@@ -1,25 +1,25 @@
-File: squid-4.9.tar.xz
-Date: Wed Nov 6 04:57:57 UTC 2019
-Size: 2444664
-MD5 : 5c2e335dd1e8ced9dda6e0e11894b344
-SHA1: 43c90a1a2eb4d1613f1bfc603ad08e8a835be319
+File: squid-4.10.tar.xz
+Date: Mon Jan 20 04:10:45 UTC 2020
+Size: 2445848
+MD5 : af7ac6e70f9bd03ae4fcec0c9b99c38a
+SHA1: b8b267771550bb8c7f2b2968b305118090e7217a
Key : CD6DBF8EF3B17D3E
B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E
keyring = http://www.squid-cache.org/pgp.asc
keyserver = pool.sks-keyservers.net
-BEGIN PGP SIGNATURE-
-iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAl3CUt8ACgkQzW2/jvOx
-fT4Wnw/+Osf9VTnDFj5g/eXgb6vhzDaSLVfPNKLI6mF46a6twTvlMcM1+sX+b2Of
-KXznDkUHvhIHijXGVbscSWx6Rn2tuPGDRRtDucqK98bYUo7mhEpdGtkVE7t8U3iz
-wIKm7Hbr8qar4nJDLoZiZSCswI+UTcYncUuAqZ0O8LGIK0m6aYYDSS4bRq04yiS2
-1JD0UEWW35X35hoVuhGlRRgvLzKn8F4KFeDde0gg+cqvkM0LR2+xkUqz6DcyE34m
-8uK6hlABu32Zj+9oRBvNNcDOr2bfNYsbS4tAy635thFTyGUF7jjrOEXhl2SYrDY5
-gVRzXHq/WBQ5rjTdmwvfn3wcwA1BQK/Oru6OaTFGaSrRlmJJM3JUFQWSsYWm8ARV
-BJEGy8iQ9R41Yom2Ct8SOhwg7f3fBlFnK+BB8En+8s+fEa8z5rVmmjh1Es8qm6Tj
-C/xGTZ23C4lUveKznDhc8MR2M4jjsH77Y7K/PvJUjZ/yYNpwsOwhv7fs51v70S5Q
-4wC+ykpsmwckmOajrkOnupUN9Un2FzfyOctTt6PQkmwlq++09Jwxwg36O+KLDX08
-f48F/qCCJ4bubuhFjM/A+cwVev0nAp0haSV0jpbemAHwzog21O51l70B8qUe18jp
-XKYpbp3zCJ5cNmrAummsEVaj2ZCsH5ZHxTUIwvJDIS5b0OFn/lo=
-=LNc9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+=vpEO
-END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2019-11-09 23:40:27
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new.2990 (New)
Package is "squid"
Sat Nov 9 23:40:27 2019 rev:75 rq:746661 version:4.9
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-08-08
14:23:35.484347350 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new.2990/squid.changes2019-11-09
23:40:32.537311122 +0100
@@ -1,0 +2,26 @@
+Fri Nov 8 15:24:15 UTC 2019 - Adam Majer
+
+- Update to squid 4.9:
+ * fixes multiple Cross-Site Scripting issues in cachemgr.cgi
+(CVE-2019-13345, bsc#1140738)
+ * fixes heap overflow in URN processing
+(CVE-2019-12526, bsc#1156326)
+ * fixes multiple issues in URI processing
+(CVE-2019-12523, CVE-2019-18676, bsc#1156329)
+ * fixes Cross-Site Request Forgery in HTTP Request processing
+(CVE-2019-18677, bsc#1156328)
+ * fixes HTTP Request Splitting in HTTP message processing
+(CVE-2019-18678, bsc#1156323)
+ * fixes information disclosure in HTTP Digest Authentication
+(CVE-2019-18679, bsc#1156324)
+ * lower cache_peer hostname - this showed up as DNS failures
+if peer name was configured with any upper case characters
+ * TLS: Multiple SSL-Bump fixes
+ * TLS: Fix expiration of self-signed generated certs to be 3 years
+ * TLS: Fix on_unsupported_protocol tunnel action
+ * Fix several rock cache_dir corruption issues
+
+- fix_configuration_error.patch: upstreamed
+- old_nettle_compat.patch: refreshed
+
+---
Old:
fix_configuration_error.patch
squid-4.8.tar.xz
squid-4.8.tar.xz.asc
New:
squid-4.9.tar.xz
squid-4.9.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.w876Mh/_old 2019-11-09 23:40:33.417312475 +0100
+++ /var/tmp/diff_new_pack.w876Mh/_new 2019-11-09 23:40:33.437312506 +0100
@@ -19,7 +19,7 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:4.8
+Version:4.9
Release:0
Summary:Caching and forwarding HTTP web proxy
License:GPL-2.0-or-later
@@ -40,7 +40,6 @@
Source17: tmpfilesdir.squid.conf
Patch1: missing_installs.patch
Patch2: old_nettle_compat.patch
-Patch3: fix_configuration_error.patch
BuildRequires: cppunit-devel
BuildRequires: db-devel
BuildRequires: ed
@@ -93,7 +92,6 @@
%if %{suse_version} < 1500
%patch2 -p1
%endif
-%patch3 -p1
%build
%define _lto_cflags %{nil}
++ old_nettle_compat.patch ++
--- /var/tmp/diff_new_pack.w876Mh/_old 2019-11-09 23:40:33.649312832 +0100
+++ /var/tmp/diff_new_pack.w876Mh/_new 2019-11-09 23:40:33.653312838 +0100
@@ -15,11 +15,11 @@
Base64 and base16 decoding: Use *dst_length as output only.
-Index: squid-4.8/src/HttpHeader.cc
+Index: squid-4.9/src/HttpHeader.cc
===
squid-4.8.orig/src/HttpHeader.cc
-+++ squid-4.8/src/HttpHeader.cc
-@@ -1301,8 +1301,8 @@ HttpHeader::getAuthToken(Http::HdrType i
+--- squid-4.9.orig/src/HttpHeader.cc
squid-4.9/src/HttpHeader.cc
+@@ -1298,8 +1298,8 @@ HttpHeader::getAuthToken(Http::HdrType i
char *decodedAuthToken =
result.rawAppendStart(BASE64_DECODE_LENGTH(fieldLen));
struct base64_decode_ctx ctx;
base64_decode_init(&ctx);
@@ -30,10 +30,10 @@
!base64_decode_final(&ctx)) {
return nil;
}
-Index: squid-4.8/src/auth/basic/Config.cc
+Index: squid-4.9/src/auth/basic/Config.cc
===
squid-4.8.orig/src/auth/basic/Config.cc
-+++ squid-4.8/src/auth/basic/Config.cc
+--- squid-4.9.orig/src/auth/basic/Config.cc
squid-4.9/src/auth/basic/Config.cc
@@ -176,8 +176,8 @@ Auth::Basic::Config::decodeCleartext(con
struct base64_decode_ctx ctx;
base64_decode_init(&ctx);
@@ -45,10 +45,10 @@
cleartext[dstLen] = '\0';
/*
-Index: squid-4.8/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc
+Index: squid-4.9/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc
===
squid-4.8.orig/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc
-+++ squid-4.8/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc
+--- squid-4.9.orig/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc
squid-4.9/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc
@@ -131,6 +131,7 @@ token_decode(size_t *decodedLen, uint8_t
{
struct base64_decode_ctx ctx;
@@ -57,10 +57,10 @@
if (!base64_decode_update(&ctx, decodedL
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2019-08-08 14:23:33
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new.9556 (New)
Package is "squid"
Thu Aug 8 14:23:33 2019 rev:74 rq:721533 version:4.8
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-07-26
12:42:21.813855718 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new.9556/squid.changes2019-08-08
14:23:35.484347350 +0200
@@ -1,0 +2,6 @@
+Tue Aug 6 13:05:58 UTC 2019 - Adam Majer
+
+- fix_configuration_error.patch: Fix compilation with -Wreturn-type
+- old_nettle_compat.patch: Update to actually use older version
+
+---
New:
fix_configuration_error.patch
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.G3Iezs/_old 2019-08-08 14:23:36.224347237 +0200
+++ /var/tmp/diff_new_pack.G3Iezs/_new 2019-08-08 14:23:36.224347237 +0200
@@ -40,6 +40,7 @@
Source17: tmpfilesdir.squid.conf
Patch1: missing_installs.patch
Patch2: old_nettle_compat.patch
+Patch3: fix_configuration_error.patch
BuildRequires: cppunit-devel
BuildRequires: db-devel
BuildRequires: ed
@@ -92,6 +93,7 @@
%if %{suse_version} < 1500
%patch2 -p1
%endif
+%patch3 -p1
%build
%define _lto_cflags %{nil}
++ fix_configuration_error.patch ++
Fix warnings that result in build failures with -Wreturn-type errors
error: no return statement in function returning non-void
warning: 'conv' defined but not used
202 | static struct pam_conv conv = { &password_conversation, 0 };
|^~~~
cc1plus: some warnings being treated as errors
Index: squid-4.8/acinclude/pam.m4
===
--- squid-4.8.orig/acinclude/pam.m4
+++ squid-4.8/acinclude/pam.m4
@@ -21,7 +21,7 @@ AC_DEFUN([CHECK_STRUCT_PAM_CONV], [
AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[
#include
static int
-password_conversation(int num_msg, const struct pam_message **msg, struct
pam_response **resp, void *appdata_ptr) {}
+password_conversation(int num_msg, const struct pam_message **msg, struct
pam_response **resp, void *appdata_ptr) { return 0; }
static struct pam_conv conv = { &password_conversation, 0 };
]])], [
squid_cv_pam_conv_signature=linux
@@ -29,7 +29,7 @@ static struct pam_conv conv = { &passwor
AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[
#include
static int
-password_conversation(int num_msg, struct pam_message **msg, struct
pam_response **resp, void *appdata_ptr) {}
+password_conversation(int num_msg, struct pam_message **msg, struct
pam_response **resp, void *appdata_ptr) { return 0; }
static struct pam_conv conv = { &password_conversation, 0 };
]])], [
squid_cv_pam_conv_signature=solaris
++ old_nettle_compat.patch ++
--- /var/tmp/diff_new_pack.G3Iezs/_old 2019-08-08 14:23:36.284347227 +0200
+++ /var/tmp/diff_new_pack.G3Iezs/_new 2019-08-08 14:23:36.284347227 +0200
@@ -19,28 +19,32 @@
===
--- squid-4.8.orig/src/HttpHeader.cc
+++ squid-4.8/src/HttpHeader.cc
-@@ -1301,7 +1301,7 @@ HttpHeader::getAuthToken(Http::HdrType i
+@@ -1301,8 +1301,8 @@ HttpHeader::getAuthToken(Http::HdrType i
char *decodedAuthToken =
result.rawAppendStart(BASE64_DECODE_LENGTH(fieldLen));
struct base64_decode_ctx ctx;
base64_decode_init(&ctx);
-size_t decodedLen = 0;
-+size_t decodedLen = BASE64_DECODE_LENGTH(fieldLen);
- if (!base64_decode_update(&ctx, &decodedLen,
reinterpret_cast(decodedAuthToken), fieldLen, field) ||
+-if (!base64_decode_update(&ctx, &decodedLen,
reinterpret_cast(decodedAuthToken), fieldLen, field) ||
++unsigned decodedLen = BASE64_DECODE_LENGTH(fieldLen);
++if (!base64_decode_update(&ctx, &decodedLen,
reinterpret_cast(decodedAuthToken), fieldLen, (uint8_t*)field) ||
!base64_decode_final(&ctx)) {
return nil;
+ }
Index: squid-4.8/src/auth/basic/Config.cc
===
--- squid-4.8.orig/src/auth/basic/Config.cc
+++ squid-4.8/src/auth/basic/Config.cc
-@@ -176,7 +176,7 @@ Auth::Basic::Config::decodeCleartext(con
+@@ -176,8 +176,8 @@ Auth::Basic::Config::decodeCleartext(con
struct base64_decode_ctx ctx;
base64_decode_init(&ctx);
-size_t dstLen = 0;
-+size_t dstLen = BASE64_DECODE_LENGTH(srcLen)+1;
- if (base64_decode_update(&ctx, &dstLen,
reinterpret_cast(cleartext), srcLen, eek) &&
base64_decode_final(&ctx)) {
+-if (base64_decode_update(&ctx, &dstLen,
reinterpret_cast(cleartext), srcLen, eek
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2019-07-26 12:42:20
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new.4126 (New)
Package is "squid"
Fri Jul 26 12:42:20 2019 rev:73 rq:718583 version:4.8
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-07-18
15:20:24.944144110 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new.4126/squid.changes2019-07-26
12:42:21.813855718 +0200
@@ -1,0 +2,5 @@
+Thu Jul 18 14:11:28 UTC 2019 - Adam Majer
+
+- old_nettle_compat.patch: Fix compatibility with nettle in SLE-12
+
+---
New:
old_nettle_compat.patch
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.tvth4C/_old 2019-07-26 12:42:23.101855178 +0200
+++ /var/tmp/diff_new_pack.tvth4C/_new 2019-07-26 12:42:23.105855176 +0200
@@ -39,6 +39,7 @@
Source16: initialize_cache_if_needed.sh
Source17: tmpfilesdir.squid.conf
Patch1: missing_installs.patch
+Patch2: old_nettle_compat.patch
BuildRequires: cppunit-devel
BuildRequires: db-devel
BuildRequires: ed
@@ -88,6 +89,9 @@
# upstream patches after RELEASE
perl -p -i -e 's|%{_prefix}/local/bin/perl|%{_bindir}/perl|' `find -name
"*.pl"`
%patch1 -p1
+%if %{suse_version} < 1500
+%patch2 -p1
+%endif
%build
%define _lto_cflags %{nil}
++ old_nettle_compat.patch ++
Author: Adam Majer
Date: Thu Jul 18 13:57:22 CEST 2019
nettle from SLE-12 is missing the change from later
versions that ignores the destLen parameter size to
base64_decode_update function. This is only used in
the assert() but we need to pass real size of the buffer
as otherwise all we get is a crash.
The missing commit in nettle is,
commit 07cb0b62a5fab216ed647f5a87e0f17ab3c9a615
Author: Niels Möller
Date: Fri Feb 7 09:11:20 2014 +0100
Base64 and base16 decoding: Use *dst_length as output only.
Index: squid-4.8/src/HttpHeader.cc
===
--- squid-4.8.orig/src/HttpHeader.cc
+++ squid-4.8/src/HttpHeader.cc
@@ -1301,7 +1301,7 @@ HttpHeader::getAuthToken(Http::HdrType i
char *decodedAuthToken =
result.rawAppendStart(BASE64_DECODE_LENGTH(fieldLen));
struct base64_decode_ctx ctx;
base64_decode_init(&ctx);
-size_t decodedLen = 0;
+size_t decodedLen = BASE64_DECODE_LENGTH(fieldLen);
if (!base64_decode_update(&ctx, &decodedLen,
reinterpret_cast(decodedAuthToken), fieldLen, field) ||
!base64_decode_final(&ctx)) {
return nil;
Index: squid-4.8/src/auth/basic/Config.cc
===
--- squid-4.8.orig/src/auth/basic/Config.cc
+++ squid-4.8/src/auth/basic/Config.cc
@@ -176,7 +176,7 @@ Auth::Basic::Config::decodeCleartext(con
struct base64_decode_ctx ctx;
base64_decode_init(&ctx);
-size_t dstLen = 0;
+size_t dstLen = BASE64_DECODE_LENGTH(srcLen)+1;
if (base64_decode_update(&ctx, &dstLen,
reinterpret_cast(cleartext), srcLen, eek) &&
base64_decode_final(&ctx)) {
cleartext[dstLen] = '\0';
Index: squid-4.8/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc
===
--- squid-4.8.orig/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc
+++ squid-4.8/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc
@@ -131,6 +131,7 @@ token_decode(size_t *decodedLen, uint8_t
{
struct base64_decode_ctx ctx;
base64_decode_init(&ctx);
+*decodedLen = BASE64_DECODE_LENGTH(strlen(srcLen));
if (!base64_decode_update(&ctx, decodedLen, decoded, strlen(buf),
reinterpret_cast(buf)) ||
!base64_decode_final(&ctx)) {
SEND("BH base64 decode failed");
Index: squid-4.8/src/auth/negotiate/kerberos/negotiate_kerberos_auth.cc
===
--- squid-4.8.orig/src/auth/negotiate/kerberos/negotiate_kerberos_auth.cc
+++ squid-4.8/src/auth/negotiate/kerberos/negotiate_kerberos_auth.cc
@@ -681,7 +681,7 @@ main(int argc, char *const argv[])
struct base64_decode_ctx ctx;
base64_decode_init(&ctx);
-size_t dstLen = 0;
+size_t dstLen = BASE64_DECODE_LENGTH(srcLen);
if (!base64_decode_update(&ctx, &dstLen,
static_cast(input_token.value), srcLen, b64Token) ||
!base64_decode_final(&ctx)) {
debug((char *) "%s| %s: ERROR: Invalid base64 token [%s]\n",
LogTime(), PROGRAM, b64Token);
Index: squid-4.8/src/auth/negotiate/wrapper/negotiate_wrapper.cc
===
--- squid-4.8.orig/src/auth/negotiate/
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2019-05-15 12:33:54 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.5148 (New) Package is "squid" Wed May 15 12:33:54 2019 rev:71 rq:702817 version:4.7 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-05-08 15:17:48.449167800 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.5148/squid.changes2019-05-15 12:33:55.244615679 +0200 @@ -30 +30,2 @@ - bsc#959290, CVE-2016-4052, CVE-2016-4053) + bsc#959290, CVE-2016-4052, CVE-2016-4053, + bsc#1029157, bsc#1024020, bsc#998595, fate#319674) Other differences: --
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2019-05-08 15:17:46
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new.5148 (New)
Package is "squid"
Wed May 8 15:17:46 2019 rev:70 rq:701549 version:4.7
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-02-25
17:57:04.642304406 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new.5148/squid.changes2019-05-08
15:17:48.449167800 +0200
@@ -1,0 +2,31 @@
+Wed May 8 10:41:22 UTC 2019 - Adam Majer
+
+- Update to squid 4.7: (jsc#SLE-5648)
+ + Fix stack-based buffer-overflow when parsing SNMP messages
+ + Fixed squidclient authentication
+ + Add support for buffer-size= to UDP logging
+ + Trust intermediate CAs from trusted stores
+ + Bug #4928: Cannot convert non-IPv4 to IPv4
+ + Bug #4796: comm.cc !isOpen(conn->fd) assertion when rotating logs
+ + Bug #4823: assertion failed: "lowestOffset () <= target_offset"
+(bsc#1133089)
+ + Bug #4942: --with-filedescriptors does not do anything
+
+---
+Tue Feb 26 15:53:50 UTC 2019 - adam.ma...@suse.de
+
+- Syncronize bug and CVE references between 3.x and 4.x squid changelog
+ versions. These bugs were fixed here either without properly referencing
+ them during the fix or 4.x branch was never affected by them.
+ (bsc#1090089, CVE-2018-1172, bsc#979008, CVE-2016-4556,
+ bsc#938715, CVE-2015-5400, bsc#949942, CVE-2014-9749,
+ bsc#1016169, CVE-2016-10003, bsc#1016168, CVE-2016-10002,
+ bsc#979011, CVE-2016-4555, bsc#979010, CVE-2016-4554,
+ bsc#979009, CVE-2016-4553, bsc#976556, CVE-2016-4054,
+ bsc#976553, CVE-2016-4051, bsc#973783, CVE-2016-3948,
+ bsc#973782, CVE-2016-3947, bsc#968395, CVE-2016-2572,
+ bsc#968394, CVE-2016-2571, bsc#968393, CVE-2016-2570,
+ bsc#968392, CVE-2016-2569, bsc#967011, CVE-2016-2390,
+ bsc#959290, CVE-2016-4052, CVE-2016-4053)
+
+---
@@ -54 +85,2 @@
- + Fix memory leak when parsing SNMP packet (bsc#1113669)
+ + Fix memory leak when parsing SNMP packet
+(bsc#1113669, CVE-2018-19132)
@@ -56 +88 @@
-before displaying them (bsc#1113668)
+before displaying them (bsc#1113668, CVE-2018-19131)
Old:
squid-4.6.tar.xz
squid-4.6.tar.xz.asc
New:
squid-4.7.tar.xz
squid-4.7.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.AQweX1/_old 2019-05-08 15:17:50.645172640 +0200
+++ /var/tmp/diff_new_pack.AQweX1/_new 2019-05-08 15:17:50.669172692 +0200
@@ -19,7 +19,7 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:4.6
+Version:4.7
Release:0
Summary:Caching and forwarding HTTP web proxy
License:GPL-2.0-or-later
++ squid-4.6.tar.xz -> squid-4.7.tar.xz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-4.6/ChangeLog new/squid-4.7/ChangeLog
--- old/squid-4.6/ChangeLog 2019-02-19 03:46:22.0 +0100
+++ new/squid-4.7/ChangeLog 2019-05-06 15:53:49.0 +0200
@@ -1,3 +1,14 @@
+Changes to squid-4.7 (06 May 2019):
+
+ - Bug 4942: --with-filedescriptors does not do anything
+ - Bug 4928: Cannot convert non-IPv4 to IPv4
+ - Bug 4823: assertion failed: "lowestOffset () <= target_offset"
+ - Bug 4796: comm.cc !isOpen(conn->fd) assertion when rotating logs
+ - Fix squidclient authentication to origin servers
+ - Fix stack-based buffer-overflow when parsing SNMP messages
+ - Add support for buffer-size= to UDP logging
+ - TLS: When using OpenSSL, trust intermediate CAs from trusted store
+
Changes to squid-4.6 (19 Feb 2019):
- Bug 4915: Detect IPv6 loopback binding errors
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-4.6/RELEASENOTES.html
new/squid-4.7/RELEASENOTES.html
--- old/squid-4.6/RELEASENOTES.html 2019-02-19 04:13:57.0 +0100
+++ new/squid-4.7/RELEASENOTES.html 2019-05-06 16:07:31.0 +0200
@@ -2,10 +2,10 @@
- Squid 4.6 release notes
+ Squid 4.7 release notes
-Squid 4.6 release notes
+Squid 4.7 release notes
Squid Developers
@@ -63,7 +63,7 @@
1. Notice
-The Squid Team are pleased to announce the release of Squid-4.6 for
testing.
+The Squid Team are pleased to announce the release of Squid-4.7 for
testing.
This new release is available for download from
http://www.squid-cache.org/Versions/v4/";>http://www.squid-cache.org/Versions/v4/
or the
http://www.squid-cache.org/Downloa
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2019-02-25 17:57:01
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new.28833 (New)
Package is "squid"
Mon Feb 25 17:57:01 2019 rev:69 rq:678651 version:4.6
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-02-19
12:02:04.701085979 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new.28833/squid.changes 2019-02-25
17:57:04.642304406 +0100
@@ -1,0 +2,18 @@
+Sat Feb 23 06:37:31 UTC 2019 - sean...@opensuse.org
+
+- Update to squid 4.6:
+ + master commit b599471 leaks memory (#4919)
+ + SourceFormat Enforcement (#367)
+ + Detect IPv6 loopack binding errors (#355)
+ + Do not call setsid() in --foreground mode (#354)
+ + Fail Rock swapout if the disk dropped write reqs (#352)
+ + Initialize StoreMapSlice when reserving a new cache slot (#350)
+ + Fixed disker-to-worker queue overflows (#353)
+ + Fix OpenSSL builds that define OPENSSL_NO_ENGINE (#349)
+ + Fix BodyPipe/Sink memory leaks associated with auto-consumption
+ + Exit when GoIntoBackground() fork() call fails (#344)
+ + GCC-8 compile errors with -O3 optimization (#4875)
+ + Initial translations to ka/georgian language (#345)
+ + basic_ldap_auth: Return BH on internal errors (#347)
+
+---
Old:
squid-4.5.tar.xz
squid-4.5.tar.xz.asc
New:
squid-4.6.tar.xz
squid-4.6.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.b4hcqU/_old 2019-02-25 17:57:05.334303818 +0100
+++ /var/tmp/diff_new_pack.b4hcqU/_new 2019-02-25 17:57:05.338303813 +0100
@@ -19,7 +19,7 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:4.5
+Version:4.6
Release:0
Summary:Caching and forwarding HTTP web proxy
License:GPL-2.0-or-later
++ squid-4.5.tar.xz -> squid-4.6.tar.xz ++
43262 lines of diff (skipped)
++ squid-4.5.tar.xz.asc -> squid-4.6.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-4.5.tar.xz.asc 2019-01-03
18:08:11.204057276 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new.28833/squid-4.6.tar.xz.asc
2019-02-25 17:57:04.510304518 +0100
@@ -1,25 +1,25 @@
-File: squid-4.5.tar.xz
-Date: Tue Jan 1 05:12:50 UTC 2019
-Size: 2437936
-MD5 : 8275da5846f9f2243ad2625e5aef2ee0
-SHA1: 1249cf60f1ea2a0cd145f66a790d1e9e48333c51
+File: squid-4.6.tar.xz
+Date: Tue Feb 19 03:25:07 UTC 2019
+Size: 2439792
+MD5 : e25e7cc37754ad14d8aa368c0c210e54
+SHA1: 0396fe8077049000407d13aca8efdd9228e69d98
Key : CD6DBF8EF3B17D3E
B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E
keyring = http://www.squid-cache.org/pgp.asc
keyserver = pool.sks-keyservers.net
-BEGIN PGP SIGNATURE-
-iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAlwq9vIACgkQzW2/jvOx
-fT5u8hAAnXV/L+XDTZXjxIYimN/4zKPVwG0lEbAg6uXQ0z/7+tH3G8kQ+DAXtxlz
-my5MnJ0GvI98RhuIIR34wces/KLMYtcH8wTj5YzNRxLZu929eIm5IyV02Ve83FNd
-uuU4Tea0H2qCPUKZrsdQX7fn9ZlVeSvu7/pRNmM1/V+Txnn0Jut+Xk1KxkTHtwr5
-5UjGm+sP9/ISpttosY5FcYEdIrOB9PlqLI6umt9L+mdAOnnhIN2YgXX167PzSZqv
-O+3VRUKGEFXi31krvWE+gL46tnHpV75A9Ccy52yNKCkdfVbRelJijnk7WYj/32GC
-jWOzkjJh235CoIwiVt0xQshnrVs3EbiEWgu2XLBbGmWAyc4eJerPxwR8MQR6hnWf
-tGB+RyzQ+7rGBTCupKuk1k75tHOqPxcPN6N2Pw+l+A34yAyu721Bnt76AqQVYPQH
-wKwK5BGQF5t1llW8I5C7CAO5Kn/mtF5ZbkhjTsqy+BvqVPAeMVbCCgGro694vWKG
-YOX2MqXwVaA/LE+Y8cWRYIVfyl3ABpP98JZU9HAzC9D+AIwLFUI6EaVrwcKfDU1j
-GRSBJsG6N0Z/MvdQdlU3xqAWvyKI+HRLKxRP+9DK2DkRX8RVsODhZ2txsjpCxh3t
-mYICqcuahPuPSUvR6m+wfLDsniQ93Fdzzv6YC34f/9LPdnj4DrM=
-=aK8J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+=F/If
-END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2019-02-19 12:00:50
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new.28833 (New)
Package is "squid"
Tue Feb 19 12:00:50 2019 rev:68 rq:677001 version:4.5
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-01-03
18:08:11.476057035 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new.28833/squid.changes 2019-02-19
12:02:04.701085979 +0100
@@ -1,0 +2,11 @@
+Mon Feb 18 10:03:23 UTC 2019 - adam.ma...@suse.de
+
+- Revert whitespace deletions of .changes as it makes diffs a pain.
+
+---
+Sat Feb 16 00:19:25 UTC 2019 - Jan Engelhardt
+
+- Do not hide errors from useradd. Make scriptlets
+ plain sh compatible.
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.4TrEnj/_old 2019-02-19 12:02:06.505085047 +0100
+++ /var/tmp/diff_new_pack.4TrEnj/_new 2019-02-19 12:02:06.509085045 +0100
@@ -197,26 +197,21 @@
%pre
# we need this group for /usr/sbin/pinger
-if [[ -z $(%{_bindir}/getent group %{name} 2>/dev/null) ]]; then
- %{_sbindir}/groupadd -g 31 -r %{name} 2>/dev/null
-fi
+getent group %{name} >/dev/null || %{_sbindir}/groupadd -g 31 -r %{name}
# we need this group for squid (ntlmauth)
# read access to /var/lib/samba/winbindd_privileged
-if [[ -z $(%{_bindir}/getent group winbind 2>/dev/null) ]]; then
- %{_sbindir}/groupadd -r winbind 2>/dev/null
-fi
-if [[ -z $(%{_bindir}/getent passwd squid 2>/dev/null) ]]; then
+getent group winbind >/dev/null || %{_sbindir}/groupadd -r winbind
+getent passwd squid >/dev/null || \
%{_sbindir}/useradd -c "WWW-proxy squid" -d %{_localstatedir}/cache/%{name} \
-G winbind -g %{name} -o -u 31 -r -s /bin/false \
-%{name} 2>/dev/null
-fi
+%{name}
# if default group is not squid, change it
-if [[ "$(%{_bindir}/id -ng %{name} 2>/dev/null)" != "%{name}" ]]; then
- %{_sbindir}/usermod -g %{name} %{name} 2>/dev/null
+if [ "$(%{_bindir}/id -ng %{name} 2>/dev/null)" != "%{name}" ]; then
+ %{_sbindir}/usermod -g %{name} %{name}
fi
# if squid is not member of winbind, add him
-if [[ $(%{_bindir}/id -nG %{name} 2>/dev/null | grep -q winbind >/dev/null;
echo $?) -ne 0 ]]; then
- %{_sbindir}/usermod -G winbind %{name} 2>/dev/null
+if [ $(%{_bindir}/id -nG %{name} 2>/dev/null | grep -q winbind; echo $?) -ne 0
]; then
+ %{_sbindir}/usermod -G winbind %{name}
fi
%service_add_pre %{name}.service
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2019-01-03 18:08:06
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new.28833 (New)
Package is "squid"
Thu Jan 3 18:08:06 2019 rev:67 rq:662383 version:4.5
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-12-04
20:57:49.032620863 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new.28833/squid.changes 2019-01-03
18:08:11.476057035 +0100
@@ -1,0 +2,15 @@
+Wed Jan 02 05:45:03 UTC 2019 - s...@suspend.net
+
+- Update to squid 4.5:
+ + Squid crashes when ICAPS and a sslcrtvalidator used together (#328)
+ + ssl_bump prevents from accessing some web contents (#304)
+ + Docs: improved lexgrog compatibility (#340)
+ + Redesign forward_max_tries count TCP connection attempts
+ + Fix client_connection_mark ACL handling of clientless transactions
+ + Fix netdb exchange with a TLS cache peer
+ + Update netdb when tunneling requests
+ + Use pkg-config for detecting libxml2
+ + Misc doc updates
+ + Misc code compile fixes
+
+---
Old:
squid-4.4.tar.xz
squid-4.4.tar.xz.asc
New:
squid-4.5.tar.xz
squid-4.5.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.FyaNsr/_old 2019-01-03 18:08:12.040056534 +0100
+++ /var/tmp/diff_new_pack.FyaNsr/_new 2019-01-03 18:08:12.044056530 +0100
@@ -1,7 +1,7 @@
#
# spec file for package squid
#
-# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -12,14 +12,14 @@
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.
-# Please submit bugfixes or comments via http://bugs.opensuse.org/
+# Please submit bugfixes or comments via https://bugs.opensuse.org/
#
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:4.4
+Version:4.5
Release:0
Summary:Caching and forwarding HTTP web proxy
License:GPL-2.0-or-later
++ squid-4.4.tar.xz -> squid-4.5.tar.xz ++
3223 lines of diff (skipped)
retrying with extended exclude list
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude
config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4
--exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh
old/squid-4.4/ChangeLog new/squid-4.5/ChangeLog
--- old/squid-4.4/ChangeLog 2018-10-27 22:44:55.0 +0200
+++ new/squid-4.5/ChangeLog 2019-01-01 01:02:15.0 +0100
@@ -1,12 +1,24 @@
-Changes to squid-4.3 (28 Oct 2018):
+Changes to squid-4.5 (01 Jan 2019):
- - Bug 4893: Malformed %>ru URIs for CONNECT requests
- - Fix %USER_CA_CERT_xx and %USER_CERT_xx crashes
- - SSL: support compilation with minimal OpenSSL
- - SSL: certificate fields injection via %D in ERR_SECURE_CONNECT_FAIL
- - Fix netdb not saving to disk
- - Fix memory leak when parsing SNMP packet
- - ... and some compile issues
+ - Bug 4253: ssl_bump prevents access to some web contents
+ - TLS: add %>handshake logformat code
+ - Redesign forward_max_tries to count TCP connection attempts
+ - Fix client_connection_mark ACL handling of clientless transactions
+ - Fix netdb exchange with a TLS cache_peer
+ - Update netdb when tunneling requests
+ - Use pkg-config for detecting libxml2
+ - ... and some documentation updates
+ - ... and some code compile fixes
+
+Changes to squid-4.4 (28 Oct 2018):
+
+ - Bug 4893: Malformed %>ru URIs for CONNECT requests
+ - Fix %USER_CA_CERT_xx and %USER_CERT_xx crashes
+ - SSL: support compilation with minimal OpenSSL
+ - SSL: certificate fields injection via %D in ERR_SECURE_CONNECT_FAIL
+ - Fix netdb not saving to disk
+ - Fix memory leak when parsing SNMP packet
+ - ... and some compile issues
Changes to squid-4.3 (01 Oct 2018):
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude
config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4
--exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh
old/squid-4.4/RELEASENOTES.html new/squid-4.5/RELEASENO
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2018-12-04 20:57:39
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new.19453 (New)
Package is "squid"
Tue Dec 4 20:57:39 2018 rev:66 rq:653729 version:4.4
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-10-31
13:15:42.211381701 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new.19453/squid.changes 2018-12-04
20:57:49.032620863 +0100
@@ -1,0 +2,5 @@
+Fri Nov 9 13:13:37 UTC 2018 - adam.ma...@suse.de
+
+- Fix permissions of installed file to tmpfilesdir
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.bNJEHt/_old 2018-12-04 20:57:49.536620307 +0100
+++ /var/tmp/diff_new_pack.bNJEHt/_new 2018-12-04 20:57:49.536620307 +0100
@@ -184,7 +184,7 @@
# needed for smp support (bsc#1112695, bsc#1112066)
mkdir -p %{buildroot}%{_tmpfilesdir}
-install -D -m 755 %{SOURCE17} %{buildroot}%{_tmpfilesdir}/squid.conf
+install -D -m 644 %{SOURCE17} %{buildroot}%{_tmpfilesdir}/squid.conf
# Move the MIB definition to the proper place (and name)
mkdir -p %{buildroot}%{_datadir}/snmp/mibs
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2018-10-31 13:14:28
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Wed Oct 31 13:14:28 2018 rev:65 rq:645296 version:4.4
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-10-23
20:42:45.872374128 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-10-31
13:15:42.211381701 +0100
@@ -1,0 +2,9 @@
+Mon Oct 29 10:26:08 UTC 2018 - adam.ma...@suse.de
+
+- New upstream stable version 4.4:
+ + Fix memory leak when parsing SNMP packet (bsc#1113669)
+ + Fixed display of error page by quoting certificate fields
+before displaying them (bsc#1113668)
+ + Malformed %>ru URIs for CONNECT requests
+
+---
Old:
squid-4.3.tar.xz
squid-4.3.tar.xz.asc
New:
squid-4.4.tar.xz
squid-4.4.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.obet8E/_old 2018-10-31 13:15:45.615378456 +0100
+++ /var/tmp/diff_new_pack.obet8E/_new 2018-10-31 13:15:45.639378433 +0100
@@ -19,7 +19,7 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:4.3
+Version:4.4
Release:0
Summary:Caching and forwarding HTTP web proxy
License:GPL-2.0-or-later
++ squid-4.3.tar.xz -> squid-4.4.tar.xz ++
2925 lines of diff (skipped)
++ squid-4.3.tar.xz.asc -> squid-4.4.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-4.3.tar.xz.asc 2018-10-04
19:02:33.223136560 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid-4.4.tar.xz.asc 2018-10-31
13:15:40.687383154 +0100
@@ -1,25 +1,25 @@
-File: squid-4.3.tar.xz
-Date: Sun Sep 30 19:40:57 UTC 2018
-Size: 2435880
-MD5 : ebb67abaec4db9d298c0edd8e1ffaca4
-SHA1: 690540e7d0904e3959557f8beca45dbac1c94578
+File: squid-4.4.tar.xz
+Date: Sat Oct 27 21:20:24 UTC 2018
+Size: 2436468
+MD5 : 892504ca9700e1f139a53f84098613bd
+SHA1: 0ab6b133f65866d825bf72cbbe8cef209768b2fa
Key : CD6DBF8EF3B17D3E
B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E
keyring = http://www.squid-cache.org/pgp.asc
keyserver = pool.sks-keyservers.net
-BEGIN PGP SIGNATURE-
-iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAluxJtUACgkQzW2/jvOx
-fT50ZxAAnvDo6WNO/ZJTbNvgiH78/U8aO/PFseR/ZXSwhFU+OmGsouhIxFCtEi+X
-c3Zk8yxl48nGQA72gR44n46V6uADQXXv7lxZb1aHjulbgMBCK4o03jpzAalgREAy
-UkJnxWp+5VE43eML1iep27TpZlnWo7cUfXAJtv1NugdgUw8sOuWVIvI/9h5mtgcw
-UVBXI8UWsA3p1RmllF8fBPXwcJKJdGPKxu598pC/ctjxJXZtaFnqj50j7QqL7+cE
-Xh3w9ozdW2e624keY/iaXPJXTEHPyGPGDkfxLn2bVpbYfc+avgdtI8MsshFBVHzD
-vOSO8bxWrFaA2VSihCKEMtvXEYXZhI0EQZOVJGEP7IOxz6sLTYg1c24yG5PDMUTD
-l9bSZmpvcqmeiUrMbczwOYCP8lG+Sqj+cc8AroTxG1+wRKgTtZmgYBakEoYcZm6G
-VFS08hV5YzTB6yAh7nUAd1kQDT6rKKKcDbWOBmc9xEut1eGZVDd4hkUQif+kKIWi
-WVPuUKhyk454xI2J9F5L1isnR1XLzPiOFsnjlDH63/KhcJoRyPElWCBl229xLvAE
-1FGxIa0GYXY8J2tXoaPXRhd6AW/ThsIQnQqgjbwSp/uqtXL8E6LioKMtxAdgXDzH
-1yK8nNPCSjaqcfrAADgl6kfbvSALPhg5lGDN0aRaCz0cf53TZ30=
-=HvFs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+=1eSQ
-END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2018-10-23 20:42:13
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Tue Oct 23 20:42:13 2018 rev:64 rq:643975 version:4.3
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-10-04
19:02:33.263136518 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-10-23
20:42:45.872374128 +0200
@@ -1,0 +2,7 @@
+Tue Oct 23 09:20:12 UTC 2018 - adam.ma...@suse.de
+
+- Create runtime directories needed when SMP mode is enabled.
+ (bsc#1112695, bsc#1112066)
+- Make changelog entries format consistent
+
+---
@@ -11,10 +18,10 @@
- * Bug 4885: Excessive memory usage when running out of descriptors
- * Bug 4877: Add missing text about external_acl_type %DATA changes
- * Bug 4875 pt1: GCC-8 compile errors with -O3 optimization
- * Bug 4716: Blank lines in cachemgr.conf are not skipped
- * Bug 4691: balance_on_multiple_ip config option docs
- * basic_pop3_auth: fix startup errors
- * langpack: Add missing dialect aliases
- * Fix range_offset_limit debugging
- * Fix icc build errors
- * Update systemd dependencies in squid.service
+ + Bug 4885: Excessive memory usage when running out of descriptors
+ + Bug 4877: Add missing text about external_acl_type %DATA changes
+ + Bug 4875 pt1: GCC-8 compile errors with -O3 optimization
+ + Bug 4716: Blank lines in cachemgr.conf are not skipped
+ + Bug 4691: balance_on_multiple_ip config option docs
+ + basic_pop3_auth: fix startup errors
+ + langpack: Add missing dialect aliases
+ + Fix range_offset_limit debugging
+ + Fix icc build errors
+ + Update systemd dependencies in squid.service
New:
tmpfilesdir.squid.conf
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.83FeNV/_old 2018-10-23 20:42:46.460373425 +0200
+++ /var/tmp/diff_new_pack.83FeNV/_new 2018-10-23 20:42:46.464373420 +0200
@@ -12,7 +12,7 @@
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.
-# Please submit bugfixes or comments via https://bugs.opensuse.org/
+# Please submit bugfixes or comments via http://bugs.opensuse.org/
#
@@ -37,6 +37,7 @@
Source13: http://www.squid-cache.org/pgp.asc#/squid.keyring
Source15: cache_dir.sed
Source16: initialize_cache_if_needed.sh
+Source17: tmpfilesdir.squid.conf
Patch1: missing_installs.patch
BuildRequires: cppunit-devel
BuildRequires: db-devel
@@ -181,6 +182,10 @@
sed -i -e 's!%%{_libdir}!%{_libdir}!' %{buildroot}%{_unitdir}/%{name}.service
ln -sf %{_sbindir}/service %{buildroot}%{_sbindir}/rc%{name}
+# needed for smp support (bsc#1112695, bsc#1112066)
+mkdir -p %{buildroot}%{_tmpfilesdir}
+install -D -m 755 %{SOURCE17} %{buildroot}%{_tmpfilesdir}/squid.conf
+
# Move the MIB definition to the proper place (and name)
mkdir -p %{buildroot}%{_datadir}/snmp/mibs
mv %{buildroot}%{_datadir}/squid/mib.txt \
@@ -228,7 +233,7 @@
%set_permissions %{_sbindir}/pinger
%set_permissions %{_localstatedir}/cache/squid/
%set_permissions %{_localstatedir}/log/squid/
-
+%tmpfiles_create %{_tmpfilesdir}/squid.conf
%service_add_post squid.service
%preun
@@ -257,6 +262,8 @@
%verify(not user group mode) %attr(750,%{name},root) %dir
%{_localstatedir}/cache/%{name}/
%verify(not user group mode) %attr(750,%{name},root) %dir
%{_localstatedir}/log/%{name}/
%dir %{squidconfdir}
+%dir %{_tmpfilesdir}
+%{_tmpfilesdir}/squid.conf
%config(noreplace) %{squidconfdir}/cachemgr.conf
%config(noreplace) %{squidconfdir}/errorpage.css
%config(noreplace) %{squidconfdir}/errors
++ tmpfilesdir.squid.conf ++
# See tmpfiles.d(5) for details
d /run/squid 0700 squid root -
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2018-10-04 19:02:24
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Thu Oct 4 19:02:24 2018 rev:63 rq:639903 version:4.3
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-08-15
10:36:36.812096855 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-10-04
19:02:33.263136518 +0200
@@ -1,0 +2,21 @@
+Thu Oct 4 07:36:49 UTC 2018 - Martin Pluskal
+
+- Correct changelog
+- Enable tests
+
+---
+Tue Oct 02 10:16:22 UTC 2018 - s...@suspend.net
+
+- New upstream stable version 4.3:
+ * Bug 4885: Excessive memory usage when running out of descriptors
+ * Bug 4877: Add missing text about external_acl_type %DATA changes
+ * Bug 4875 pt1: GCC-8 compile errors with -O3 optimization
+ * Bug 4716: Blank lines in cachemgr.conf are not skipped
+ * Bug 4691: balance_on_multiple_ip config option docs
+ * basic_pop3_auth: fix startup errors
+ * langpack: Add missing dialect aliases
+ * Fix range_offset_limit debugging
+ * Fix icc build errors
+ * Update systemd dependencies in squid.service
+
+---
Old:
squid-4.2.tar.xz
squid-4.2.tar.xz.asc
New:
squid-4.3.tar.xz
squid-4.3.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.dCSP6m/_old 2018-10-04 19:02:33.791135962 +0200
+++ /var/tmp/diff_new_pack.dCSP6m/_new 2018-10-04 19:02:33.791135962 +0200
@@ -12,19 +12,19 @@
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.
-# Please submit bugfixes or comments via http://bugs.opensuse.org/
+# Please submit bugfixes or comments via https://bugs.opensuse.org/
#
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:4.2
+Version:4.3
Release:0
Summary:Caching and forwarding HTTP web proxy
License:GPL-2.0-or-later
Group: Productivity/Networking/Web/Proxy
-Url:http://www.squid-cache.org
+URL:http://www.squid-cache.org
Source0:http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz
Source1:
http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz.asc
Source5:pam.squid
@@ -186,6 +186,10 @@
mv %{buildroot}%{_datadir}/squid/mib.txt \
%{buildroot}%{_datadir}/snmp/mibs/SQUID-MIB.txt
+%check
+# Fails in chroot environment
+make %{?_smp_mflags} check
+
%pre
# we need this group for /usr/sbin/pinger
if [[ -z $(%{_bindir}/getent group %{name} 2>/dev/null) ]]; then
@@ -240,7 +244,6 @@
%service_del_postun squid.service
%files
-%defattr(-,root,root)
%license COPYING
%doc ChangeLog CONTRIBUTORS CREDITS
%doc QUICKSTART README RELEASENOTES.html SPONSORS*
++ squid-4.2.tar.xz -> squid-4.3.tar.xz ++
19314 lines of diff (skipped)
retrying with extended exclude list
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude
config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4
--exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh
old/squid-4.2/ChangeLog new/squid-4.3/ChangeLog
--- old/squid-4.2/ChangeLog 2018-08-05 16:13:41.0 +0200
+++ new/squid-4.3/ChangeLog 2018-09-30 20:57:54.0 +0200
@@ -1,3 +1,16 @@
+Changes to squid-4.3 (01 Oct 2018):
+
+ - Bug 4885: Excessive memory usage when running out of descriptors
+ - Bug 4877: Add missing text about external_acl_type %DATA changes
+ - Bug 4875 pt1: GCC-8 compile errors with -O3 optimization
+ - Bug 4716: Blank lines in cachemgr.conf are not skipped
+ - Bug 4691: balance_on_multiple_ip config option docs
+ - basic_pop3_auth: fix startup errors
+ - langpack: Add missing dialect aliases
+ - Fix range_offset_limit debugging
+ - Fix icc build errors
+ - Update systemd dependencies in squid.service
+
Changes to squid-4.2 (04 Aug 2018):
- Regression fix: support for https_port clientca= option
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude
config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4
--exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh
old/squid-4.2/RELEASENOTES.
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2018-08-15 10:36:34
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Wed Aug 15 10:36:34 2018 rev:62 rq:628977 version:4.2
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-07-09
13:31:38.442454386 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-08-15
10:36:36.812096855 +0200
@@ -1,0 +2,9 @@
+Mon Aug 13 07:30:05 UTC 2018 - adam.ma...@suse.de
+
+- New upstream stable version 4.2:
+ + fix HTTPMSGLOCK missing pointer safety
+ + gcc-8 fixes
+ + fix milliseconds logformats prepend 0s instead of spaces
+ + fix %>ru logging of huge URLs
+
+---
Old:
squid-4.1.tar.xz
squid-4.1.tar.xz.asc
New:
squid-4.2.tar.xz
squid-4.2.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.Za9Ibq/_old 2018-08-15 10:36:37.476098066 +0200
+++ /var/tmp/diff_new_pack.Za9Ibq/_new 2018-08-15 10:36:37.476098066 +0200
@@ -19,7 +19,7 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:4.1
+Version:4.2
Release:0
Summary:Caching and forwarding HTTP web proxy
License:GPL-2.0-or-later
++ squid-4.1.tar.xz -> squid-4.2.tar.xz ++
7881 lines of diff (skipped)
++ squid-4.1.tar.xz.asc -> squid-4.2.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-4.1.tar.xz.asc 2018-07-09
13:31:38.430454411 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid-4.2.tar.xz.asc 2018-08-15
10:36:36.792096819 +0200
@@ -1,25 +1,25 @@
-File: squid-4.1.tar.xz
-Date: Mon Jul 2 03:56:22 UTC 2018
-Size: 2425892
-MD5 : 9c6356352f25cac9fd0586344f349fbf
-SHA1: 591828f9524a6250b3d3926eb589ea598bc43d98
+File: squid-4.2.tar.xz
+Date: Sun Aug 5 15:04:50 UTC 2018
+Size: 2426856
+MD5 : 2cf3f5f183d04322d798f98ea5ead43f
+SHA1: 77fd6f06e6028780faf85ba7e7e9aef0922e9dc0
Key : CD6DBF8EF3B17D3E
B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E
keyring = http://www.squid-cache.org/pgp.asc
keyserver = pool.sks-keyservers.net
-BEGIN PGP SIGNATURE-
-iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAls5om0ACgkQzW2/jvOx
-fT5kFA//fwkwm4I2FkEnyY5klJEdyofYHIFTA9t4XG146VRksGXd8DRgRj2u+QTg
-87v7pyaqurI41flHLtH+pnaCy2WdFU+fBwILSX6SPqpOAQULrNPbrjNLExVliYE0
-Y7XqnEDvJnngo07SYYC3er53bur/EL5yI5Tf4btlDGbWQTcHQqFP6q/IzGOK/xQ4
-pDD6vv2V5Olr+w3k4relDMtBrY43tVDF3J4pdl9zXHV8if2Pzni5UFXtMXMlHOqN
-z96iaerHcPxLO4BmGiHngXXREGWCin8gKiAhPXaaTkdir2P09KX+h02LyB5JbNz8
-nuwvapmQcCJ4l4nti+e3i23zEm7p0Oc8eIDiz64O9zmafBmVs/omYrOFfOj7HoLP
-Oe8Lxg4lrhmAUml3H5RHsJyBmmtMqNQxJqFI1rUXLCBYfxFyaW6c8xTRtaixTXip
-HfFsDbUOYQ/uKzMXMgUKU4+BixV5fJEDM3ZwSTsTkCLfzvG5/OwJ04fechhciGJL
-A2HDn3Aj+8m3JkKwT0n1GO95Q+rxuWm6gX2Fx9/uve8RhSu4Yq4sLQ+IsUna9RuJ
-fV9aCYY0ge27VpxXPcPIMKx/n9MbVaEcHyFvhNmGUsYTb3T7taXJ54dDQ97wVn3N
-uue0MKEqLy+WibwpKXaMXVM4qX/bO3ZYEauNxk8CELXD6yonu5Y=
-=WX3y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+=I3Em
-END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2018-07-09 13:30:52
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Mon Jul 9 13:30:52 2018 rev:61 rq:621672 version:4.1
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-06-20
15:32:48.630911901 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-07-09
13:31:38.442454386 +0200
@@ -1,0 +2,7 @@
+Thu Jul 5 15:30:07 UTC 2018 - adam.ma...@suse.de
+
+- New upstream stable version 4.1:
+ + Fix --with-netfilter-conntrack error message
+ + Supply ALE for force_request_body_continuation ACL
+
+---
Old:
squid-4.0.25.tar.xz
squid-4.0.25.tar.xz.asc
New:
squid-4.1.tar.xz
squid-4.1.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.JxEFja/_old 2018-07-09 13:31:39.026453211 +0200
+++ /var/tmp/diff_new_pack.JxEFja/_new 2018-07-09 13:31:39.026453211 +0200
@@ -19,7 +19,7 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:4.0.25
+Version:4.1
Release:0
Summary:Caching and forwarding HTTP web proxy
License:GPL-2.0-or-later
++ squid-4.0.25.tar.xz -> squid-4.1.tar.xz ++
4783 lines of diff (skipped)
++ squid-4.0.25.tar.xz.asc -> squid-4.1.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-4.0.25.tar.xz.asc2018-06-20
15:32:46.043005799 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid-4.1.tar.xz.asc 2018-07-09
13:31:38.430454411 +0200
@@ -1,25 +1,25 @@
-File: squid-4.0.25.tar.xz
-Date: Mon Jun 11 17:15:25 UTC 2018
-Size: 2424644
-MD5 : a0b5f7bd39216aa7d8fce332441bbff7
-SHA1: 306117ebc37dc475cad5d8dc29a3fdf89a75e5c3
+File: squid-4.1.tar.xz
+Date: Mon Jul 2 03:56:22 UTC 2018
+Size: 2425892
+MD5 : 9c6356352f25cac9fd0586344f349fbf
+SHA1: 591828f9524a6250b3d3926eb589ea598bc43d98
Key : CD6DBF8EF3B17D3E
B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E
keyring = http://www.squid-cache.org/pgp.asc
keyserver = pool.sks-keyservers.net
-BEGIN PGP SIGNATURE-
-iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAlserjcACgkQzW2/jvOx
-fT7aGQ//Sez7N4o7uzBlmrd3h3O0/plPhxNcbvWgMjz8RNGZDPIhNwYt8QUpeyTG
-47Uw01ukmIKJstekYvjHYlu8LGY1Sgc0OGv7VxdreOOKN2pewnoJ0c3JFHSl/Lu+
-pH8ePWPVSWWWAWIOsjCkbiEHzUtp3F1U/xUlpUuSDPepEE+RPe/6n11ugAMlKQUW
-TfVJ4+9BBb1hbGcrMjdyn6OohsiXZtH3+kk9rV4KkKfoyAUCBgDgb9mW30yRcHip
-B2CEOxzwRyCPZaT3uc7kPg9mThtLKAkvsLlamYw35nGzzwt1Kr/e49Q8TJBMdXkK
-AWP6N9tfr3Hsi4akcV12ZyiMZzPJGIS/E/KDGlh5049lzCoHcMEwuc9C37N+oZCg
-esBraPiXEF8y0wEIHQ1DOEBx2qAETlVsqj+D8LV3LiRJcKzqqQRPmJ3963lKxo83
-LYRgA1OFL4O39TI7SdgctMkOfpWDosTqX6nqzVAvmmXLxspE+L2VS7ydZGZH3tG2
-inGyf4i0nWCDoqkkcGEfZaq3zysceiL3KdsyqMra9I+QW/S4TRYiTO0pqbJXHgq7
-/8YdUdbCRH2UR9OYHO7Oq1KtzRQNMNR0H/fMgQ6yGWnvqmXLhPnGkZoUq0RIHqwV
-p3QX0TOtD90zg5Zi6ppysZIk6GdhmVxl0w80BT/hZ8En3yQaI1Q=
-=EpT6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+=WX3y
-END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2018-06-20 15:31:31
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Wed Jun 20 15:31:31 2018 rev:60 rq:617654 version:4.0.25
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-06-08
23:16:46.869212942 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-06-20
15:32:48.630911901 +0200
@@ -1,0 +2,17 @@
+Mon Jun 18 13:04:17 UTC 2018 - adam.ma...@suse.de
+
+- New upstream version 4.0.25:
+ + Fixed regression: querying private entries for HTCP/ICP
+ + Fixed regression: deny_info %R macro not being expanded
+ + Fixed regression: proxy_auth ACL -i/+i flags not working
+ + Fixed regression: filter chain certificates for validity
+when loading
+ + Fixed regression: Transient reader locking broken in 4.0.24
+ + Fixed NegotiateSsl crash on aborting transaction
+ + Fixed IPC shared memory leaks when disker queue overflows
+ + Update negotiate_kerberos_auth helper protocol to v3.4
+ + Fixed: purge tool does not obey --sysconfdir= build option
+ + Add timestamps to (most) FATAL messages
+- a3f6783.patch: upstreamed, obsolete.
+
+---
Old:
a3f6783.patch
squid-4.0.24.tar.xz
squid-4.0.24.tar.xz.asc
New:
squid-4.0.25.tar.xz
squid-4.0.25.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.5hNlp1/_old 2018-06-20 15:32:50.578841222 +0200
+++ /var/tmp/diff_new_pack.5hNlp1/_new 2018-06-20 15:32:50.582841077 +0200
@@ -19,7 +19,7 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:4.0.24
+Version:4.0.25
Release:0
Summary:Caching and forwarding HTTP web proxy
License:GPL-2.0-or-later
@@ -38,7 +38,6 @@
Source15: cache_dir.sed
Source16: initialize_cache_if_needed.sh
Patch1: missing_installs.patch
-Patch2: a3f6783.patch
BuildRequires: cppunit-devel
BuildRequires: db-devel
BuildRequires: ed
@@ -87,7 +86,6 @@
# upstream patches after RELEASE
perl -p -i -e 's|%{_prefix}/local/bin/perl|%{_bindir}/perl|' `find -name
"*.pl"`
%patch1 -p1
-%patch2 -p1
%build
autoreconf -fi
++ squid-4.0.24.tar.xz -> squid-4.0.25.tar.xz ++
8281 lines of diff (skipped)
++ squid-4.0.24.tar.xz.asc -> squid-4.0.25.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-4.0.24.tar.xz.asc2018-03-30
12:07:49.324867687 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid-4.0.25.tar.xz.asc
2018-06-20 15:32:46.043005799 +0200
@@ -1,25 +1,25 @@
-File: squid-4.0.24.tar.xz
-Date: Wed Mar 7 15:09:08 UTC 2018
-Size: 2420076
-MD5 : dcb167d7677ff469c1c59b0baad8a5be
-SHA1: 8c9bbe539af5f1060d93d30d7e099a6badc1f3e1
+File: squid-4.0.25.tar.xz
+Date: Mon Jun 11 17:15:25 UTC 2018
+Size: 2424644
+MD5 : a0b5f7bd39216aa7d8fce332441bbff7
+SHA1: 306117ebc37dc475cad5d8dc29a3fdf89a75e5c3
Key : CD6DBF8EF3B17D3E
B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E
keyring = http://www.squid-cache.org/pgp.asc
keyserver = pool.sks-keyservers.net
-BEGIN PGP SIGNATURE-
-iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAlqgAJwACgkQzW2/jvOx
-fT7HgBAAnyzIsJ95aFGQGKsXxxzXMQkjrWu2XQS6Fg9oJ/jFtS99msvoRZXLzpTs
-m5/n0QIk9h9xXPs8iOsfJLUymslw8LLOMIfljFVfxBId8pb4wcKf+OTGRjnmrqFy
-5btu1xr5kZuKSbNzP5KXet6KOitkkC+siuCfaZ5a8Zuf+aJRQBoc9v9ETbfnXesg
-kJWUd7G7BgvxCYC8x/dstabi3iA8qWk1zE01fZ2V9Xa5Cx4zYe7G6XFqG79VoMyd
-uaLBWhC055Xf8Pt87KSBDrSgQMrFTlnwi/ybAROIXbF3B0FEVtBbRmjI9YvOAhIM
-dMassujNGwFFcIFq2ghh6EHgChreV+zRqLOghGRy5+A0d9lUNKRGTOFHhJAMauKs
-ipMFJuc6oKL22TGaFyRJmQjY+F/Fkow99k7M3XMtMp8Ybl0APgCU35ac0F9UkeSh
-lU68Y4ZzBn2//z+vRDF4AtJuwCAec1uHWFp8LsXjVMJHa3xKONy766LYIZJnYU4p
-Pco0UGDT0bKl5xSA0a3Awx2FYsQn7Ng9TSmgk2G+GJrWNfqEPqdZ9xaCuW78GwvG
-41QYQTALAsfWjzVYVvPxSkELPNdZp7tn8PKrJZhEoLDkxO3cC1p1WrOUrLFzsTi+
-+iDtv9RNtvHpGuzQ8MDl5Ek7pYOlNhP/ecDAJQ1/gXljspYZoIo=
-=3OwY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commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2018-06-08 23:16:44
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Fri Jun 8 23:16:44 2018 rev:59 rq:614573 version:4.0.24
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-05-16
11:43:47.939482730 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-06-08
23:16:46.869212942 +0200
@@ -1,0 +2,6 @@
+Wed Jun 6 13:52:01 UTC 2018 - adam.ma...@suse.de
+
+- a3f6783.patch: Fixes certificate handling with intermediates
+ chains
+
+---
New:
a3f6783.patch
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.vDarvR/_old 2018-06-08 23:16:48.389158043 +0200
+++ /var/tmp/diff_new_pack.vDarvR/_new 2018-06-08 23:16:48.393157899 +0200
@@ -38,6 +38,7 @@
Source15: cache_dir.sed
Source16: initialize_cache_if_needed.sh
Patch1: missing_installs.patch
+Patch2: a3f6783.patch
BuildRequires: cppunit-devel
BuildRequires: db-devel
BuildRequires: ed
@@ -86,6 +87,7 @@
# upstream patches after RELEASE
perl -p -i -e 's|%{_prefix}/local/bin/perl|%{_bindir}/perl|' `find -name
"*.pl"`
%patch1 -p1
+%patch2 -p1
%build
autoreconf -fi
++ a3f6783.patch ++
commit a3f6783b1cfe4b8067312fa65828fcd925757c38
Author: Amos Jeffries
Date: Tue Jun 5 06:11:29 2018 +
Bug 4831: filter chain certificates for validity when loading (#187)
51e09c08a5e6c582e7d93af99a8f2cfcb14ea9e6 adding
GnuTLS support required splitting the way
certificate chains were loaded. This resulted in the
leaf certificate being added twice at the prefix of a
chain in the serverHello.
It turns out that some recipients validate strictly that the
chain delivered by a serverHello does not contain extra
certificates and reject the handshake if they do.
This patch implements the XXX about filtering certificates
for chain sequence order and self-sign properties, added
in the initial PR. Resolving the bug 4831 regression and also
reporting failures at startup/reconfigure for admins.
Also, add debug display of certificate names for simpler
detection and administrative fix when loaded files fail
these tests.
diff --git a/src/security/KeyData.cc b/src/security/KeyData.cc
index 23d123954..052c64ffd 100644
--- a/src/security/KeyData.cc
+++ b/src/security/KeyData.cc
@@ -86,8 +86,6 @@ void
Security::KeyData::loadX509ChainFromFile()
{
#if USE_OPENSSL
-// XXX: This BIO loads the public cert as first chain cert,
-// so the code appending chains sends it twice in handshakes.
const char *certFilename = certFile.c_str();
Ssl::BIO_Pointer bio(BIO_new(BIO_s_file()));
if (!bio || !BIO_read_filename(bio.get(), certFilename)) {
@@ -96,14 +94,41 @@ Security::KeyData::loadX509ChainFromFile()
return;
}
-if (X509_check_issued(cert.get(), cert.get()) == X509_V_OK)
-debugs(83, 5, "Certificate is self-signed, will not be chained");
-else {
+#if TLS_CHAIN_NO_SELFSIGNED // ignore self-signed certs in the chain
+if (X509_check_issued(cert.get(), cert.get()) == X509_V_OK) {
+char *nameStr = X509_NAME_oneline(X509_get_subject_name(cert.get()),
nullptr, 0);
+debugs(83, DBG_PARSE_NOTE(2), "Certificate is self-signed, will not be
chained: " << nameStr);
+OPENSSL_free(nameStr);
+} else
+#endif
+{
+debugs(83, DBG_PARSE_NOTE(3), "Using certificate chain in " <<
certFile);
// and add to the chain any other certificate exist in the file
-while (X509 *ca = PEM_read_bio_X509(bio.get(), nullptr, nullptr,
nullptr)) {
-// XXX: self-signed check should be applied to all certs loaded.
-// XXX: missing checks that the chained certs are actually part of
a chain for validating cert.
-chain.emplace_front(Security::CertPointer(ca));
+CertPointer latestCert = cert;
+
+while (auto ca = PEM_read_bio_X509(bio.get(), nullptr, nullptr,
nullptr)) {
+// get Issuer name of the cert for debug display
+char *nameStr = X509_NAME_oneline(X509_get_subject_name(ca),
nullptr, 0);
+
+#if TLS_CHAIN_NO_SELFSIGNED // ignore self-signed certs in the chain
+// self-signed certificates are not valid in a sent chain
+if (X509_check_issued(ca, ca) == X509_V_OK) {
+debugs(83, DBG_PARSE_NOTE(2), "CA " << nameStr << " is
self-signed, will not be chained: " << nameStr);
+OPENSSL_free(nameStr);
+continue;
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2018-05-16 11:41:52
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Wed May 16 11:41:52 2018 rev:58 rq:607436 version:4.0.24
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-03-30
12:07:50.152837751 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-05-16
11:43:47.939482730 +0200
@@ -1,0 +2,5 @@
+Tue May 15 07:43:44 UTC 2018 - adam.ma...@suse.de
+
+- Fix package configure
+
+---
@@ -4 +9 @@
-- New upstream version 4.2.24
+- New upstream version 4.0.24
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.rqglFH/_old 2018-05-16 11:43:48.823450553 +0200
+++ /var/tmp/diff_new_pack.rqglFH/_new 2018-05-16 11:43:48.827450408 +0200
@@ -89,6 +89,7 @@
%build
autoreconf -fi
+cd libltdl; autoreconf -fi; cd ..
export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF"
export CXXFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF"
export LDFLAGS="-Wl,--as-needed -Wl,--no-undefined -Wl,-z,relro,-z,now -pie"
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2018-03-30 12:07:45
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Fri Mar 30 12:07:45 2018 rev:57 rq:592192 version:4.0.24
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-02-20
17:56:17.275844576 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-03-30
12:07:50.152837751 +0200
@@ -1,0 +2,11 @@
+Wed Mar 28 09:01:14 UTC 2018 - adam.ma...@suse.de
+
+- New upstream version 4.2.24
+ + Bug 4505: SMP caches sometimes do not purge entries
+ + TPROXY: Fix clientside_mark and client port logging
+ + Native FTP: Fix "Cannot assign requested address" with TPROXY
+ + SSL-Bump: Fix authentication with types other than Basic
+ + ... and some documentation fixes
+- install license correctly (bsc#1082318) and transition to SPDXv3
+
+---
Old:
squid-4.0.23.tar.xz
squid-4.0.23.tar.xz.asc
New:
squid-4.0.24.tar.xz
squid-4.0.24.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.L1OWSd/_old 2018-03-30 12:07:51.140802030 +0200
+++ /var/tmp/diff_new_pack.L1OWSd/_new 2018-03-30 12:07:51.144801885 +0200
@@ -19,10 +19,10 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:4.0.23
+Version:4.0.24
Release:0
Summary:Caching and forwarding HTTP web proxy
-License:GPL-2.0+
+License:GPL-2.0-or-later
Group: Productivity/Networking/Web/Proxy
Url:http://www.squid-cache.org
Source0:http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz
@@ -240,7 +240,8 @@
%files
%defattr(-,root,root)
-%doc ChangeLog CONTRIBUTORS COPYING CREDITS
+%license COPYING
+%doc ChangeLog CONTRIBUTORS CREDITS
%doc QUICKSTART README RELEASENOTES.html SPONSORS*
%doc README.kerberos
%doc doc/contrib doc/scripts
++ squid-4.0.23.tar.xz -> squid-4.0.24.tar.xz ++
9136 lines of diff (skipped)
++ squid-4.0.23.tar.xz.asc -> squid-4.0.24.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-4.0.23.tar.xz.asc2018-01-24
15:32:23.209079848 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid-4.0.24.tar.xz.asc
2018-03-30 12:07:49.324867687 +0200
@@ -1,25 +1,25 @@
-File: squid-4.0.23.tar.xz
-Date: Fri Jan 19 13:39:51 UTC 2018
-Size: 2415132
-MD5 : 04eb448f1dc31b4b2d73fee6a91c240c
-SHA1: 0bd4248b412e88087ba37686bc27b08480995a9d
+File: squid-4.0.24.tar.xz
+Date: Wed Mar 7 15:09:08 UTC 2018
+Size: 2420076
+MD5 : dcb167d7677ff469c1c59b0baad8a5be
+SHA1: 8c9bbe539af5f1060d93d30d7e099a6badc1f3e1
Key : CD6DBF8EF3B17D3E
B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E
keyring = http://www.squid-cache.org/pgp.asc
keyserver = pool.sks-keyservers.net
-BEGIN PGP SIGNATURE-
-iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAlph9S8ACgkQzW2/jvOx
-fT4Acg/+JmF+1Y+pwI/cFwFJNbgY3+9Lo2jWtV929Faip/h7MoRdm4eGUB6DW4ts
-3xn0prfIlOHSzg+GO7wda+/AWUe2V2VY3UKfd7HrxJ9PIr9RCUYOTFucIvW+7Jpd
-MqxHhohURQKKUfOHHPzenGPoZdnI+pyf6sK7xL11rnDNyPd7P8MqZc6QCa4WrfI9
-Z9fmTwuXH7r4kP4uPhqi1pEa5awM1UEJPPF+ovl5s8JcfsYPtN/c6FKAZf0wzz+s
-SxuJIx/6JB4wIepOVMNEMObOzfhLqM96w3CAFGaDLi1w4dVfBqMknVEikArlbEKV
-zvtkKevYsnkbmOYbFdsyqyr4+8VnzAor+RBauXc3H5DT5yUFryBLXzQxIc7EgBOn
-b69pr3VhLctjtsHpdWRGFzxRh//EDNEYSHspoOqURivUTtR1U/qIV/pJ5P38hBfr
-udXy7gFTrrny3nA3fGvK7Lr+yDW72V2z2oMqR0TKPKAJkrmDAyX11svdEBBNJjpt
-yzQUWHoWvlzZ8YJlBbTh1gGjXT1SEhSVQBbYcgZJb7fy/WVJg2TS5uf965Xckvig
-uFGdHnjkWeJHLFZUciHabxwdXroIj/rRymR+vRb/sqmuVroT4pMaS1sx96SUHfyD
-OoGK/KeCHeP9xYywlAFb/mzd+bRkL9O2+sb0yjLtgSEMB9A5HQs=
-=z1t9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+=3OwY
-END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2018-02-20 17:56:11
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Tue Feb 20 17:56:11 2018 rev:56 rq:578257 version:4.0.23
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-02-06
16:47:38.636308336 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-02-20
17:56:17.275844576 +0100
@@ -1,0 +2,13 @@
+Mon Feb 19 08:08:14 UTC 2018 - adam.ma...@suse.de
+
+- Spec file cleanup:
+ + Drop unused fillup template - it's not used by systemd script
+ + Drop %pretrans section which is only used to upgrade from
+version 3.4 of squid - no supported codestream has that version.
+ + Drop explicit BR: on systemd-rpm-macros
+- Update squid.service systemd file
+ + Don't need to use squid to manage squid anymore
+ + Drop references to default config file, since it's default
+- Drop reference to nonexistent EnvironmentFile in the service file
+
+---
Old:
squid.sysconfig
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.AOc9uX/_old 2018-02-20 17:56:18.903785959 +0100
+++ /var/tmp/diff_new_pack.AOc9uX/_new 2018-02-20 17:56:18.907785815 +0100
@@ -18,10 +18,6 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
-#Compat macro for new _fillupdir macro introduced in Nov 2017
-%if ! %{defined _fillupdir}
- %define _fillupdir %{_localstatedir}/adm/fillup-templates
-%endif
Name: squid
Version:4.0.23
Release:0
@@ -31,7 +27,6 @@
Url:http://www.squid-cache.org
Source0:http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz
Source1:
http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz.asc
-Source4:squid.sysconfig
Source5:pam.squid
Source6:unsquid.pl
Source7:%{name}.logrotate
@@ -58,7 +53,6 @@
BuildRequires: pkgconfig
BuildRequires: samba-winbind
BuildRequires: sharutils
-BuildRequires: systemd-rpm-macros
BuildRequires: pkgconfig(expat)
BuildRequires: pkgconfig(gssrpc)
BuildRequires: pkgconfig(kdb)
@@ -66,7 +60,6 @@
BuildRequires: pkgconfig(libsasl2)
BuildRequires: pkgconfig(libxml-2.0)
Requires: logrotate
-Requires(post): %fillup_prereq
Requires(pre): permissions
Requires(pre): shadow
Provides: http_proxy
@@ -186,7 +179,6 @@
install -D -m 755 %{SOURCE16}
%{buildroot}%{squidlibdir}/initialize_cache_if_needed.sh
sed -i -e 's!%%{_libdir}!%{_libdir}!' %{buildroot}%{_unitdir}/%{name}.service
ln -sf %{_sbindir}/service %{buildroot}%{_sbindir}/rc%{name}
-install -Dpm 644 %{SOURCE4} %{buildroot}%{_fillupdir}/sysconfig.%{name}
# Move the MIB definition to the proper place (and name)
mkdir -p %{buildroot}%{_datadir}/snmp/mibs
@@ -226,21 +218,6 @@
fi
fi
-%pretrans -p
--- Directory to symlink is not working in RPM so workaround it
--- Occurs when updating from 3.4 to 3.5
-error_dir="%{_datadir}/%{name}/errors/"
-bad_ones={"zh-cn","zh-tw"}
-print("cleaning up old directories")
-for i,f in pairs(bad_ones) do
- pstat = posix.stat(error_dir..f)
- if pstat and pstat.type == "directory" then
- print ("moving away "..error_dir..f.." to "..error_dir..f .. ".rpmmoved")
- --posix.rmdir(error_dir..f)
- os.rename(error_dir..f, error_dir..f .. ".rpmmoved")
- end
-end
-
%post
%set_permissions %{_sbindir}/basic_pam_auth
%set_permissions %{_sbindir}/pinger
@@ -340,7 +317,6 @@
%{_sbindir}/url_lfs_rewrite
%{_sbindir}/ext_time_quota_acl
%{_sbindir}/rc%{name}
-%{_fillupdir}/sysconfig.%{name}
%dir %{_libdir}/%{name}
%{_libdir}/%{name}/cachemgr.cgi
++ initialize_cache_if_needed.sh ++
--- /var/tmp/diff_new_pack.AOc9uX/_old 2018-02-20 17:56:18.963783799 +0100
+++ /var/tmp/diff_new_pack.AOc9uX/_new 2018-02-20 17:56:18.963783799 +0100
@@ -8,6 +8,6 @@
if ! test -d $CACHE_DIR; then
echo "Initializing cache directories..."
-exec /usr/sbin/squid -z -F --foreground -S -f /etc/squid/squid.conf
+exec /usr/sbin/squid -z -F --foreground -S
fi
++ squid.service ++
--- /var/tmp/diff_new_pack.AOc9uX/_old 2018-02-20 17:56:19.055780487 +0100
+++ /var/tmp/diff_new_pack.AOc9uX/_new 2018-02-20 17:56:19.055780487 +0100
@@ -1,14 +1,13 @@
[Unit]
Description=Squid caching proxy
+Documentation=man:squid(8)
After=network.target named.service nss-lookup.service
[Service]
Type=forking
-EnvironmentFile=-/etc/sysconfig/squid
ExecStartPre=%{_libdir}/squid/initialize_cache_if_needed.sh
-ExecStart=/usr/sbin/squid -F $SQUID_START_OPTIONS -f /etc/squid/squid.conf
-Exe
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2018-02-06 16:47:37
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Tue Feb 6 16:47:37 2018 rev:55 rq:572519 version:4.0.23
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-01-24
15:32:23.333074049 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-02-06
16:47:38.636308336 +0100
@@ -1,0 +2,5 @@
+Mon Jan 29 10:36:36 UTC 2018 - adam.ma...@suse.de
+
+- Change default error pages symlink from German to English.
+
+---
@@ -8 +13 @@
- (bnc#1077003)
+ (bnc#1077003, CVE-2018-124)
@@ -11 +16 @@
- (bnc#1077006)
+ (bnc#1077006, CVE-2018-127)
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.0XSocO/_old 2018-02-06 16:47:39.592263604 +0100
+++ /var/tmp/diff_new_pack.0XSocO/_new 2018-02-06 16:47:39.592263604 +0100
@@ -175,7 +175,7 @@
install -m 644 $i/* %{buildroot}%{_datadir}/%{name}/$i
fi
done
-ln -sf %{_datadir}/%{name}/errors/de %{buildroot}%{squidconfdir}/errors
+ln -sf %{_datadir}/%{name}/errors/en %{buildroot}%{squidconfdir}/errors
# fix file duplicates
%fdupes -s %{buildroot}%{_prefix}
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2018-01-24 15:32:17
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Wed Jan 24 15:32:17 2018 rev:54 rq:568822 version:4.0.23
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-01-10
23:36:55.811062521 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-01-24
15:32:23.333074049 +0100
@@ -1,0 +2,14 @@
+Mon Jan 22 12:48:24 UTC 2018 - adam.ma...@suse.de
+
+- Update Squid to 4.0.23
+ * fixes DoS caused by incorrect pointer handling when processing
+ ESI responses. This affects the default custom esi_parser
+ (libxml2 and expat esi_parsers are unaffected)
+ (bnc#1077003)
+ * fixes DoS caused by incorrect pointer handing whien processing
+ ESI responses or downloading intermediate CA certificates
+ (bnc#1077006)
+ * fixes "User names not sent to url_rewrite_program"
+ * fixes %http://www.squid-cache.org
+Url:http://www.squid-cache.org
Source0:http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz
Source1:
http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz.asc
Source4:squid.sysconfig
++ squid-4.0.22.tar.xz -> squid-4.0.23.tar.xz ++
47274 lines of diff (skipped)
++ squid-4.0.22.tar.xz.asc -> squid-4.0.23.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-4.0.22.tar.xz.asc2018-01-10
23:36:55.795063271 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid-4.0.23.tar.xz.asc
2018-01-24 15:32:23.209079848 +0100
@@ -1,25 +1,25 @@
-File: squid-4.0.22.tar.xz
-Date: Thu Dec 7 18:03:01 UTC 2017
-Size: 2411692
-MD5 : c09dab527ac8ea86833286597d2d633d
-SHA1: b3e1cfe1cc1074506a46652946efe175eb69bf8a
+File: squid-4.0.23.tar.xz
+Date: Fri Jan 19 13:39:51 UTC 2018
+Size: 2415132
+MD5 : 04eb448f1dc31b4b2d73fee6a91c240c
+SHA1: 0bd4248b412e88087ba37686bc27b08480995a9d
Key : CD6DBF8EF3B17D3E
B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E
keyring = http://www.squid-cache.org/pgp.asc
keyserver = pool.sks-keyservers.net
-BEGIN PGP SIGNATURE-
-iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAlopgl8ACgkQzW2/jvOx
-fT55dw/+JlwxV8qTWxITUZ/8IFB5TO6T2Rzy8g4hFulTDoPN8/z4RZz/FNeQT/44
-/csodC7kja1ZxVlzNz07gaIoPz8Ft4ITQRL3kUMJ3+azYSevXlaiTtAy2O3oo2PC
-oGw8X5M8USZ578BwaEIsnG/FHJY8qogr6WfX2lPfT9fgnYzXl+hRLqc4oD/605pY
-k+D3C6j4cuTjoo30qD867BY/0sf6AdFYnfsLtc/cT4K4B/VHB2pDDk+cDXyjLzT2
-8AZkvG8XHwLFlXO7lHssHGM7uqxM2Sj+w9QJNJrFEh2tfdRAS6eXn3aSy6WeRHty
-vOWXFc9U9D+PWPcHV3vE3FpLOBBkfhJnCiSMnz4GabjkXqjpD/7P1MQsTM2sKS4M
-g/CpNdfhUshgxeNCmY0tJFu6cl/LFi7qbLBPNXQk0NDKZciiijARh9fFSsvvUHTA
-g63LOZw+AyldeO5NMEalDaDsWViKd99CDXX93Y5qWxxuM4WhbStzUBUOXVl9CZ6m
-P0B/uC+1IR56NETveklSRth7JrrlG7GkbV8uTkHJzTEHw3t+jAGFi80zV+V/gaAH
-mMaXuv74UYosp2Zjdr5Ee5QLlo61kAWjKro9pd2uOyCUyGjijCcuyKa6zaNs1klp
-9ehX0hnN1nX9blp/5Qx/fYLcds8vSr9QIpG6GEx5gJ5PCryckys=
-=omrg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+=z1t9
-END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2018-01-10 23:36:55
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Wed Jan 10 23:36:55 2018 rev:53 rq:563122 version:4.0.22
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-12-05
01:30:34.164576389 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-01-10
23:36:55.811062521 +0100
@@ -1,0 +2,22 @@
+Tue Jan 9 17:06:14 UTC 2018 - mplus...@suse.com
+
+- Update download url
+
+---
+Mon Jan 8 12:21:51 UTC 2018 - adam.ma...@suse.de
+
+- Update Squid to 4.0.22 (fate#324583, bnc#1073089)
+ * re-enable building with default openssl-devel
+ * Helper changes since 3.5.27:
++ basic_msnt_multi_domain_auth removed - basic_smb_lm_auth
+ helper performs the same functionality
++ cert_valid.pl testing helper renamed to
+ security_fake_certverify
++ ssl_crtd renamed to security_file_certgen
+ For complete set of release notes and changes since squid 3.5 see
+ http://www.squid-cache.org/Versions/v4/squid-4.0.22-RELEASENOTES.html
+
+- Updated squid.keyring using current keyring file from upstream
+- missing_installs.patch: install manpages for installed helpers
+
+---
Old:
squid-3.5.27.tar.xz
squid-3.5.27.tar.xz.asc
New:
missing_installs.patch
squid-4.0.22.tar.xz
squid-4.0.22.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.I4MgMA/_old 2018-01-10 23:36:56.555027616 +0100
+++ /var/tmp/diff_new_pack.I4MgMA/_new 2018-01-10 23:36:56.559027428 +0100
@@ -1,7 +1,7 @@
#
# spec file for package squid
#
-# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -16,22 +16,21 @@
#
+%define squidlibdir %{_libdir}/squid
+%define squidconfdir %{_sysconfdir}/squid
#Compat macro for new _fillupdir macro introduced in Nov 2017
%if ! %{defined _fillupdir}
- %define _fillupdir /var/adm/fillup-templates
+ %define _fillupdir %{_localstatedir}/adm/fillup-templates
%endif
-
-%define squidlibdir %{_libdir}/squid
-%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.5.27
+Version:4.0.22
Release:0
Summary:Caching and forwarding HTTP web proxy
License:GPL-2.0+
Group: Productivity/Networking/Web/Proxy
-Url:http://www.squid-cache.org
-Source0:
http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz
-Source1:
http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz.asc
+URL:http://www.squid-cache.org
+Source0:http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz
+Source1:
http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz.asc
Source4:squid.sysconfig
Source5:pam.squid
Source6:unsquid.pl
@@ -39,9 +38,11 @@
Source9:%{name}.permissions
Source10: README.kerberos
Source11: %{name}.service
-Source13: %{name}.keyring
+#
http://lists.squid-cache.org/pipermail/squid-announce/2016-October/64.html
+Source13: http://www.squid-cache.org/pgp.asc#/squid.keyring
Source15: cache_dir.sed
Source16: initialize_cache_if_needed.sh
+Patch1: missing_installs.patch
BuildRequires: cppunit-devel
BuildRequires: db-devel
BuildRequires: ed
@@ -50,16 +51,9 @@
BuildRequires: gcc-c++
BuildRequires: libcap-devel
BuildRequires: libtool
-%if 0%{?suse_version} >= 1330
-BuildRequires: libnsl-devel
-%endif
BuildRequires: openldap2-devel
BuildRequires: opensp-devel
-%if 0%{suse_version} >= 1330
-BuildRequires: libopenssl-1_0_0-devel
-%else
BuildRequires: openssl-devel
-%endif
BuildRequires: pam-devel
BuildRequires: pkgconfig
BuildRequires: samba-winbind
@@ -81,6 +75,9 @@
Provides: %{name}3 = %{version}
Obsoletes: %{name}3 < %{version}
%{?systemd_requires}
+%if 0%{?suse_version} >= 1330
+BuildRequires: libnsl-devel
+%endif
%description
Squid is a caching proxy for the Web supporting HTTP(S), FTP, and
@@ -92,12 +89,13 @@
%prep
%setup -q
cp %{SOURCE10} .
-# upstream patches after RELEASE
+# upstream patches after RELEASE
perl -p -i -e 's|%{_prefix}/local/bin/perl|%{_bindir}/perl|' `find -name
"*.pl"`
-chmod a-x CREDITS
+%patch1 -p1
%build
+autoreconf -fi
expor
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2017-12-05 01:30:32
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Tue Dec 5 01:30:32 2017 rev:52 rq:548098 version:3.5.27
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-11-24
10:55:23.662260479 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-12-05
01:30:34.164576389 +0100
@@ -1,0 +2,6 @@
+Mon Dec 4 12:31:44 UTC 2017 - adam.ma...@suse.de
+
+- Explicitly BuildRequire libopenssl-1_0_0-devel until
+ OpenSSL 1.1.x support can be ported.
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.xzM1Q8/_old 2017-12-05 01:30:35.004545874 +0100
+++ /var/tmp/diff_new_pack.xzM1Q8/_new 2017-12-05 01:30:35.004545874 +0100
@@ -55,7 +55,11 @@
%endif
BuildRequires: openldap2-devel
BuildRequires: opensp-devel
+%if 0%{suse_version} >= 1330
+BuildRequires: libopenssl-1_0_0-devel
+%else
BuildRequires: openssl-devel
+%endif
BuildRequires: pam-devel
BuildRequires: pkgconfig
BuildRequires: samba-winbind
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2017-11-24 10:55:21
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Fri Nov 24 10:55:21 2017 rev:51 rq:544867 version:3.5.27
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-10-09
19:49:04.393336974 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-11-24
10:55:23.662260479 +0100
@@ -1,0 +2,6 @@
+Thu Nov 23 13:47:31 UTC 2017 - rbr...@suse.com
+
+- Replace references to /var/adm/fillup-templates with new
+ %_fillupdir macro (boo#1069468)
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.IjymQc/_old 2017-11-24 10:55:25.014211100 +0100
+++ /var/tmp/diff_new_pack.IjymQc/_new 2017-11-24 10:55:25.018210954 +0100
@@ -16,6 +16,11 @@
#
+#Compat macro for new _fillupdir macro introduced in Nov 2017
+%if ! %{defined _fillupdir}
+ %define _fillupdir /var/adm/fillup-templates
+%endif
+
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
Name: squid
@@ -178,7 +183,7 @@
install -D -m 755 %{SOURCE16}
%{buildroot}%{squidlibdir}/initialize_cache_if_needed.sh
sed -i -e 's!%%{_libdir}!%{_libdir}!' %{buildroot}%{_unitdir}/%{name}.service
ln -sf %{_sbindir}/service %{buildroot}%{_sbindir}/rc%{name}
-install -Dpm 644 %{SOURCE4}
%{buildroot}%{_localstatedir}/adm/fillup-templates/sysconfig.%{name}
+install -Dpm 644 %{SOURCE4} %{buildroot}%{_fillupdir}/sysconfig.%{name}
# Move the MIB definition to the proper place (and name)
mkdir -p %{buildroot}%{_datadir}/snmp/mibs
@@ -332,7 +337,7 @@
%{_sbindir}/url_fake_rewrite.sh
%{_sbindir}/ext_time_quota_acl
%{_sbindir}/rc%{name}
-%{_localstatedir}/adm/fillup-templates/sysconfig.%{name}
+%{_fillupdir}/sysconfig.%{name}
%dir %{_libdir}/%{name}
%{_libdir}/%{name}/cachemgr.cgi
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2017-10-09 19:48:10
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Mon Oct 9 19:48:10 2017 rev:50 rq:532831 version:3.5.27
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-09-25
13:58:17.896273946 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-10-09
19:49:04.393336974 +0200
@@ -1,0 +2,6 @@
+Mon Oct 9 15:57:54 UTC 2017 - dims...@opensuse.org
+
+- libnsl-devel is required from suse_version 1330 on (not only
+ 1500+).
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.Ii5Vnh/_old 2017-10-09 19:49:05.293297420 +0200
+++ /var/tmp/diff_new_pack.Ii5Vnh/_new 2017-10-09 19:49:05.297297244 +0200
@@ -45,7 +45,7 @@
BuildRequires: gcc-c++
BuildRequires: libcap-devel
BuildRequires: libtool
-%if 0%{?suse_version} >= 1500
+%if 0%{?suse_version} >= 1330
BuildRequires: libnsl-devel
%endif
BuildRequires: openldap2-devel
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2017-09-25 13:58:16
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Mon Sep 25 13:58:16 2017 rev:49 rq:528110 version:3.5.27
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-07-30
11:27:48.273800464 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-09-25
13:58:17.896273946 +0200
@@ -1,0 +2,9 @@
+Thu Sep 21 12:01:50 UTC 2017 - adam.ma...@suse.de
+
+- Add missing build dependency on libnsl-devel for Factory.
+ libnsl was split from glibc
+- Update Squid to 3.5.27
+ * bug fix release - for complete list of changes see
+http://www.squid-cache.org/Versions/v3/3.5/changesets/
+
+---
Old:
squid-3.5.26.tar.xz
squid-3.5.26.tar.xz.asc
New:
squid-3.5.27.tar.xz
squid-3.5.27.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.pRLQKb/_old 2017-09-25 13:58:18.696161404 +0200
+++ /var/tmp/diff_new_pack.pRLQKb/_new 2017-09-25 13:58:18.700160841 +0200
@@ -19,7 +19,7 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.5.26
+Version:3.5.27
Release:0
Summary:Caching and forwarding HTTP web proxy
License:GPL-2.0+
@@ -45,6 +45,9 @@
BuildRequires: gcc-c++
BuildRequires: libcap-devel
BuildRequires: libtool
+%if 0%{?suse_version} >= 1500
+BuildRequires: libnsl-devel
+%endif
BuildRequires: openldap2-devel
BuildRequires: opensp-devel
BuildRequires: openssl-devel
++ squid-3.5.26.tar.xz -> squid-3.5.27.tar.xz ++
4031 lines of diff (skipped)
++ squid-3.5.26.tar.xz.asc -> squid-3.5.27.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-3.5.26.tar.xz.asc2017-06-21
13:54:42.360407409 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.27.tar.xz.asc
2017-09-25 13:58:17.768291952 +0200
@@ -1,20 +1,20 @@
-File: squid-3.5.26.tar.xz
-Date: Fri Jun 2 00:43:54 UTC 2017
-Size: 2328352
-MD5 : 510e2c84773879c00d0e7ced997864d9
-SHA1: 51a664217957b35de8b7fae180b9f93a759a4204
+File: squid-3.5.27.tar.xz
+Date: Sat Aug 19 20:16:51 UTC 2017
+Size: 2303468
+MD5 : 39ef8199675d48a314b540f92c00c545
+SHA1: 1e69c96d13cd49844da3bcf33a0b428fbe7b6f77
Key : 0xFF5CF463
EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463
keyring = http://www.squid-cache.org/pgp.asc
keyserver = subkeys.pgp.net
-BEGIN PGP SIGNATURE-
-iQEzBAABCAAdFiEE6jHMXpSI5RaNLcxesmjnBv9c9GMFAlkwtTYACgkQsmjnBv9c
-9GPpRAf7B+2gZgh1GGwjDheRvX43odQhVg9KkXB+raufqDBSRs7cyj5E/cC9XBPC
-bmhyF2sk03p0a8wgmSbIH7gBFZ01TbQ5np2dUGh0b9sZPI8DJcSDPS8g9I2IT99v
-axAttf8IbSzeNTgOk4l/veNMA1RU5fgyY19FnD+G22rVhcmWZFMfD/GBTyw3oc1i
-7Hs/ulyCmdOHmzzTinMBEaU787mxwng2K7j2SV0O4W6wnuakAMWLdSCGsrUNBwik
-teu5nd/AuAo1Y1KhM8adjHcANwa12s02yPUgkxyIDkVKBgYmbJAGvfSwFpOqRK4q
-2uvHSqEAJr47u+n+Y2QampwAXCOEDQ==
-=XyzG
+iQEzBAABCAAdFiEE6jHMXpSI5RaNLcxesmjnBv9c9GMFAlmYnLsACgkQsmjnBv9c
+9GM1uAf+PeYKQI/hwJZXul020S5+pyxBem8txVVqTba1YZA/khk0vRqj54lBBxrX
+C5AsnNbY6yGfsH6S0tQCFn3IkftXgUVMWij5x10yUYhZiXjV0EFe9rBiAOkd4zuT
+j/4HOsHaG0I1qNqh1NZmvyV/a40Eq65lphOySt6N2okXeZS0Daoc23HHUXtZrO49
+QqY2LEhKYg9mtxE3k7lnZ7AxWtzZPQrdqNOZLs7pyJikGn7Usv2hzdIjyyaBRV9g
+jwUPzEOiCLYleExCeqE/9k5M7JLRIJE7ofnkbkVs9+V57csYkQ5Cqr5vMWhvL1RN
+4GGMjSMMS2m7vhiLPTgMn5ebHn6bJw==
+=eHYj
-END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2017-07-30 11:27:40
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Sun Jul 30 11:27:40 2017 rev:48 rq:513028 version:3.5.26
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-07-07
10:17:51.966949184 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-07-30
11:27:48.273800464 +0200
@@ -1,0 +2,5 @@
+Thu Jul 27 06:54:01 UTC 2017 - bra...@web.de
+
+- Enable compiling of time_quota extension
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.Ootyy4/_old 2017-07-30 11:27:49.137678566 +0200
+++ /var/tmp/diff_new_pack.Ootyy4/_new 2017-07-30 11:27:49.145677438 +0200
@@ -121,7 +121,7 @@
--enable-auth-ntlm \
--enable-auth-negotiate \
--enable-auth-digest \
-
--enable-external-acl-helpers=LDAP_group,eDirectory_userip,file_userip,kerberos_ldap_group,session,unix_group,wbinfo_group
\
+
--enable-external-acl-helpers=LDAP_group,eDirectory_userip,file_userip,kerberos_ldap_group,session,unix_group,wbinfo_group,time_quota
\
--enable-stacktraces \
--enable-x-accelerator-vary \
--with-default-user=%{name} \
@@ -327,6 +327,7 @@
%{_sbindir}/unlinkd
%{_sbindir}/url_fake_rewrite
%{_sbindir}/url_fake_rewrite.sh
+%{_sbindir}/ext_time_quota_acl
%{_sbindir}/rc%{name}
%{_localstatedir}/adm/fillup-templates/sysconfig.%{name}
%dir %{_libdir}/%{name}
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2017-07-07 10:17:48
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Fri Jul 7 10:17:48 2017 rev:47 rq:508585 version:3.5.26
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-06-21
13:54:42.868335760 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-07-07
10:17:51.966949184 +0200
@@ -1,0 +2,5 @@
+Wed Jul 5 20:00:49 UTC 2017 - jeng...@inai.de
+
+- Update description from webpage.
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.fARavu/_old 2017-07-07 10:17:52.822828083 +0200
+++ /var/tmp/diff_new_pack.fARavu/_new 2017-07-07 10:17:52.826827517 +0200
@@ -21,7 +21,7 @@
Name: squid
Version:3.5.26
Release:0
-Summary:A fully featured HTTP/1.0 proxy
+Summary:Caching and forwarding HTTP web proxy
License:GPL-2.0+
Group: Productivity/Networking/Web/Proxy
Url:http://www.squid-cache.org
@@ -71,12 +71,11 @@
%{?systemd_requires}
%description
-Squid is a fully-featured HTTP/1.0 proxy which is almost (but not quite -
-we're getting there!) a fully-featured HTTP/1.1 proxy. Squid offers a rich
-access control, authorization and logging environment to develop web proxy
-and content serving applications. Squid offers a rich set of traffic
-optimization options, most of which are enabled by default for simpler
-installation and high performance.
+Squid is a caching proxy for the Web supporting HTTP(S), FTP, and
+some others. It reduces bandwidth and improves response times by
+caching and reusing frequently-requested web pages. Squid has
+extensive access controls and can also be used as a server
+accelerator.
%prep
%setup -q
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2017-06-21 13:54:33
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Wed Jun 21 13:54:33 2017 rev:46 rq:504589 version:3.5.26
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-04-14
13:40:46.409507215 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-06-21
13:54:42.868335760 +0200
@@ -1,0 +2,26 @@
+Mon Jun 19 08:20:52 UTC 2017 - mplus...@suse.com
+
+- Packaging cleanup
+- Dropped:
+ * squid-brokenad.patch
+ * squid-config.patch
+ * squid.init squid.init.rh
+ * squid-old-kerberos.patch
+ * squid-rpmlintrc
+- Update description and url
+
+---
+Wed Jun 14 08:54:53 UTC 2017 - adam.ma...@suse.de
+
+- Update Squid to 3.5.26
+ * SubjectAlternativeNames missing in some generated certificates
+Previous releases of Squid were not able to generate valid
+mimic certificates from AltName server certificate field only.
+ * Fix ignoring http_access deny with client-first bumping mode
+ * ssl_crtd: now returns non-zero on failure
+ * Fix FTP directory listings display issues
+ * OpenSSL support better compliance with license requirements
+This release of Squid will now include the required OpenSSL
+advertisement on builds -v output where features are displayed.
+
+---
Old:
squid-3.5.25.tar.xz
squid-3.5.25.tar.xz.asc
squid-brokenad.patch
squid-config.patch
squid-old-kerberos.patch
squid-rpmlintrc
squid.init
squid.init.rh
New:
squid-3.5.26.tar.xz
squid-3.5.26.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.p1Ea59/_old 2017-06-21 13:54:44.140156358 +0200
+++ /var/tmp/diff_new_pack.p1Ea59/_new 2017-06-21 13:54:44.144155794 +0200
@@ -18,17 +18,15 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
-
Name: squid
-Version:3.5.25
+Version:3.5.26
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
Group: Productivity/Networking/Web/Proxy
-Url:http://www.squid-cache.org/Versions/v3/3.5
+Url:http://www.squid-cache.org
Source0:
http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz
Source1:
http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz.asc
-Source3:squid.init
Source4:squid.sysconfig
Source5:pam.squid
Source6:unsquid.pl
@@ -37,115 +35,58 @@
Source10: README.kerberos
Source11: %{name}.service
Source13: %{name}.keyring
-Source14: squid.init.rh
Source15: cache_dir.sed
Source16: initialize_cache_if_needed.sh
-
-# do not show some rpmlint warnings
-Source99: squid-rpmlintrc
-# some useful defaults for squid
-Patch100: %{name}-config.patch
-# patch fixes kerberos principalname handling
(http://bugs.squid-cache.org/show_bug.cgi?id=4042)
-Patch103: squid-brokenad.patch
-#patch fix SLE 11 target... BAD PATCH
-Patch104: squid-old-kerberos.patch
-
-BuildRoot: %{_tmppath}/%{name}-%{version}-build
-# BuildRequires: autoconf
-# BuildRequires: automake
-# If you want to run unit tests, these also need mounted /dev/shm and /proc
-# BuildRequires: cppunit-devel
+BuildRequires: cppunit-devel
BuildRequires: db-devel
-# needed by bootstrap.sh
-BuildRequires: cyrus-sasl-devel
BuildRequires: ed
BuildRequires: expat
-#
BuildRequires: fdupes
BuildRequires: gcc-c++
-BuildRequires: krb5-devel
BuildRequires: libcap-devel
-BuildRequires: libexpat-devel
-%if 0%{?suse_version} <= 1140
BuildRequires: libtool
-%else
-BuildRequires: libtool >= 2.4
-%endif
-%if 0%{?suse_version} < 1220
-BuildRequires: libxml2-devel
-BuildRequires: xz
-%else
-BuildRequires: pkgconfig(libxml-2.0)
-%endif
BuildRequires: openldap2-devel
BuildRequires: opensp-devel
BuildRequires: openssl-devel
BuildRequires: pam-devel
BuildRequires: pkgconfig
+BuildRequires: samba-winbind
BuildRequires: sharutils
-
-%if 0%{?suse_version}
+BuildRequires: systemd-rpm-macros
+BuildRequires: pkgconfig(expat)
+BuildRequires: pkgconfig(gssrpc)
+BuildRequires: pkgconfig(kdb)
+BuildRequires: pkgconfig(krb5)
+BuildRequires: pkgconfig(libsasl2)
+BuildRequires: pkgconfig(libxml-2.0)
+Requires: logrotate
Requires(post): %fillup_prereq
-Requires(pre): %{_bindir}/getent
-%if 0%{?suse_version} < 1140
Requires(pre): permissions
-%else
-Requires(pre): permissions >= 2014.11
-%endif
-R
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2017-04-14 13:40:43
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Fri Apr 14 13:40:43 2017 rev:45 rq:487028 version:3.5.25
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-03-24
02:22:51.737811399 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-04-14
13:40:46.409507215 +0200
@@ -1,0 +2,11 @@
+Mon Apr 10 09:50:21 UTC 2017 - adam.ma...@suse.de
+
+- Update Squid to 3.5.25
+ * Fix host forgery stalls intercepted being-spliced connections
+ * Native FTP relay fixes, now able to cope with active-mode
+FTP DATA connections when intercepting FTP traffic.
+ * SSL Bump client fixes. Error responses for issues encountered
+early in the TLS/SSL handling being sent to clients unencrypted
+when Squid should have bumped and delivered them encrypted.
+
+---
Old:
squid-3.5.24.tar.xz
squid-3.5.24.tar.xz.asc
New:
squid-3.5.25.tar.xz
squid-3.5.25.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.cu8JpU/_old 2017-04-14 13:40:47.533348380 +0200
+++ /var/tmp/diff_new_pack.cu8JpU/_new 2017-04-14 13:40:47.537347815 +0200
@@ -20,7 +20,7 @@
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.5.24
+Version:3.5.25
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
++ squid-3.5.24.tar.xz -> squid-3.5.25.tar.xz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.5.24/ChangeLog new/squid-3.5.25/ChangeLog
--- old/squid-3.5.24/ChangeLog 2017-01-28 04:54:46.0 +0100
+++ new/squid-3.5.25/ChangeLog 2017-04-02 15:04:18.0 +0200
@@ -1,3 +1,15 @@
+Changes to squid-3.5.25 (02 Apr 2017):
+
+ - Bug 4688: various typo error(s) in man page(s)
+ - Bug 4508: Host forgery stalls intercepted being-spliced connections
+ - Native FTP relay: NAT and TPROXY interception fixes
+ - Fix missing CRLF on FTP timeout ABORT commands
+ - TLS: Bump client on errors encountered before ssl_bump evaluation
+ - ext_kerberos_ldap_group_acl: fix unused value warnings
+ - Fix crash when configuring with invalid delay_parameters restore
value.
+ - Check that -k argument is provided before trying to use it.
+ - ... and some build fixes
+
Changes to squid-3.5.24 (28 Jan 2017):
- Regression Bug 3940: Make 'cache deny' do what is documented
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.5.24/RELEASENOTES.html
new/squid-3.5.25/RELEASENOTES.html
--- old/squid-3.5.24/RELEASENOTES.html 2017-01-28 09:09:58.0 +0100
+++ new/squid-3.5.25/RELEASENOTES.html 2017-04-02 19:10:43.0 +0200
@@ -2,10 +2,10 @@
- Squid 3.5.24 release notes
+ Squid 3.5.25 release notes
-Squid 3.5.24 release notes
+Squid 3.5.25 release notes
Squid Developers
@@ -64,7 +64,7 @@
1. Notice
-The Squid Team are pleased to announce the release of Squid-3.5.24.
+The Squid Team are pleased to announce the release of Squid-3.5.25.
This new release is available for download from
http://www.squid-cache.org/Versions/v3/3.5/";>http://www.squid-cache.org/Versions/v3/3.5/
or the
http://www.squid-cache.org/Download/http-mirrors.html";>mirrors.
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.5.24/compat/compat.h
new/squid-3.5.25/compat/compat.h
--- old/squid-3.5.24/compat/compat.h2017-01-28 04:54:46.0 +0100
+++ new/squid-3.5.25/compat/compat.h2017-04-02 15:04:18.0 +0200
@@ -11,7 +11,7 @@
/*
* From discussions it was chosen to push compat code as far down as possible.
- * That means we can have a seperate compat for most
+ * That means we can have a separate compat for most
* compatability and portability hacks and resolutions.
*
* This file is meant to collate all those hacks files together and
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.5.24/configure new/squid-3.5.25/configure
--- old/squid-3.5.24/configure 2017-01-28 04:57:15.0 +0100
+++ new/squid-3.5.25/configure 2017-04-02 15:07:29.0 +0200
@@ -1,7 +1,7 @@
#! /bin/sh
# From configure.ac Revision.
# Guess values for system-dependent variables and create Makefiles.
-# Generated by GNU Autoconf 2.69 for Squid Web Proxy 3.5.24.
+# Generated by GNU Autoconf 2.69 for Squid Web Proxy 3.5.25.
#
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2017-03-24 02:22:51
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Fri Mar 24 02:22:51 2017 rev:44 rq:482005 version:3.5.24
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-02-03
20:02:19.965794852 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-03-24
02:22:51.737811399 +0100
@@ -1,0 +2,7 @@
+Wed Mar 22 14:28:05 UTC 2017 - adam.ma...@suse.de
+
+- initialize_cache_if_needed.sh, squid_dir.sed: Initialize cache
+ directory on startup if it is missing. Move scripts out of
+ systemd service file and into individual files. (bnc#1030421)
+
+---
New:
cache_dir.sed
initialize_cache_if_needed.sh
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.LsdZjx/_old 2017-03-24 02:22:52.649682376 +0100
+++ /var/tmp/diff_new_pack.LsdZjx/_new 2017-03-24 02:22:52.653681809 +0100
@@ -38,6 +38,8 @@
Source11: %{name}.service
Source13: %{name}.keyring
Source14: squid.init.rh
+Source15: cache_dir.sed
+Source16: initialize_cache_if_needed.sh
# do not show some rpmlint warnings
Source99: squid-rpmlintrc
@@ -259,6 +261,9 @@
# systemd vs SysVinit
%if 0%{?has_systemd}
install -D -m 644 %{SOURCE11} %{buildroot}%{_unitdir}/%{name}.service
+ install -D -m 755 %{SOURCE15} %{buildroot}%{squidlibdir}/cache_dir.sed
+ install -D -m 755 %{SOURCE16}
%{buildroot}%{squidlibdir}/initialize_cache_if_needed.sh
+ sed -i -e 's!%%{_libdir}!%{_libdir}!' %{buildroot}%{_unitdir}/%{name}.service
ln -sf %{_sbindir}/service %{buildroot}%{_sbindir}/rc%{name}
%else # SysVinit
# fix postrotate script for SysVinit
@@ -406,6 +411,8 @@
%doc %{_mandir}/man?/*
%if 0%{?has_systemd}
%{_unitdir}/%{name}.service
+%{squidlibdir}/initialize_cache_if_needed.sh
+%{squidlibdir}/cache_dir.sed
%else
%{_sysconfdir}/init.d/%{name}
%endif
++ cache_dir.sed ++
#!/usr/bin/sed -nf
/^\s*cache_dir\s\+[[:alnum:]]\+\s\+\([[:graph:]\/]\+\)\s.*/ {
s//\1\/00/p
q
}
++ initialize_cache_if_needed.sh ++
#!/bin/sh
DIR=$(dirname $0)
CACHE_DIR=$($DIR/cache_dir.sed < /etc/squid/squid.conf)
if [ 'x'$CACHE_DIR = 'x' ]; then
exit 0
fi
if ! test -d $CACHE_DIR; then
echo "Initializing cache directories..."
exec /usr/sbin/squid -z -F -N -S -f /etc/squid/squid.conf
fi
++ squid.service ++
--- /var/tmp/diff_new_pack.LsdZjx/_old 2017-03-24 02:22:52.829656911 +0100
+++ /var/tmp/diff_new_pack.LsdZjx/_new 2017-03-24 02:22:52.833656345 +0100
@@ -5,7 +5,7 @@
[Service]
Type=forking
EnvironmentFile=-/etc/sysconfig/squid
-ExecStartPre=/bin/sh -c "test -d \"`sed -n
's/^cache_dir\s\+[[:alnum:]]\+\s\+\([[:graph:]\/]\+\)\s.*/\1/p'
/etc/squid/squid.conf | sed '1 q'`/00\" || /usr/sbin/squid -z -F -N -S -f
/etc/squid/squid.conf"
+ExecStartPre=%{_libdir}/squid/initialize_cache_if_needed.sh
ExecStart=/usr/sbin/squid -F $SQUID_START_OPTIONS -f /etc/squid/squid.conf
ExecReload=/usr/sbin/squid -F $SQUID_START_OPTIONS -f /etc/squid/squid.conf -k
reconfigure
ExecStop=/usr/sbin/squid -F -f /etc/squid/squid.conf -k shutdown
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2017-01-31 12:48:35
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2016-10-13
11:32:43.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-02-03
20:02:19.965794852 +0100
@@ -1,0 +2,30 @@
+Mon Jan 30 09:33:08 UTC 2017 - adam.ma...@suse.de
+
+- Update Squid to 3.5.24
+ * Mitigate DoS attacks that use client-initiated SSL/TLS
+renegotiation. Rate limit TLS renegotiation.
+ * SSLv2 records force SslBump bumping despite a matching step2
+peek rule.
+ * Update External ACL helpers error handling and caching
+ * Fix regression in 3.5.23 where `cache deny` rule was not
+obeyed.
+
+---
+Fri Jan 27 15:15:15 UTC 2017 - adam.ma...@suse.de
+
+- Update Squid to 3.5.23
+ * Do not share private responses with collapsed client(s).
+(CVE-2016-10003)
+ * Fixes incorrect processing of responses to If-None-Modified
+HTTP conditional requests. (CVE-2016-10002)
+ * partially fix hostHeaderVerify failures MISS when they should
+be HIT
+ * HTTP/1.1: Add registered codes entry for new 103 (Early Hints)
+status code
+ * Hang on DNS query with dead-end CNAME
+ * partial: Fix segfault via Ftp::Client::readControlReply
+ * Fix ssl::server_name ACL - was badly broken since inception.
+ * HTTP/1.1: make Vary:* objects cacheable
+ * fix Strange IPv6 shown in access.log
+
+---
Old:
squid-3.5.22.tar.xz
squid-3.5.22.tar.xz.asc
New:
squid-3.5.24.tar.xz
squid-3.5.24.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.2RgrY7/_old 2017-02-03 20:02:21.093636103 +0100
+++ /var/tmp/diff_new_pack.2RgrY7/_new 2017-02-03 20:02:21.097635540 +0100
@@ -1,7 +1,7 @@
#
# spec file for package squid
#
-# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -20,7 +20,7 @@
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.5.22
+Version:3.5.24
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
++ squid-3.5.22.tar.xz -> squid-3.5.24.tar.xz ++
41830 lines of diff (skipped)
++ squid-3.5.22.tar.xz.asc -> squid-3.5.24.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-3.5.22.tar.xz.asc2016-10-13
11:32:43.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.24.tar.xz.asc
2017-02-03 20:02:19.925800481 +0100
@@ -1,19 +1,20 @@
-File: squid-3.5.22.tar.xz
-Date: Sun Oct 9 23:43:33 UTC 2016
-Size: 2324164
-MD5 : afb82d2748c06c95815c171463b4aa14
-SHA1: 73e9199dd9d2a7f107f78d03454830713a4a571d
+File: squid-3.5.24.tar.xz
+Date: Sat Jan 28 08:22:04 UTC 2017
+Size: 2326424
+MD5 : 3fae511e16b6379b61c011914673973d
+SHA1: f203637783301a4b86e554b6dd226de721762ae5
Key : 0xFF5CF463
-
+EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463
keyring = http://www.squid-cache.org/pgp.asc
keyserver = subkeys.pgp.net
-BEGIN PGP SIGNATURE-
-iQEcBAABCAAGBQJX+tbSAAoJELJo5wb/XPRjl2gH/ReWuyxU88issJB6RDkqpg1z
-ULCFIGXOZieUB1Ec+kh6gkothXfFSmec4U/3nx42N2e1cFlQby9lRY27e7T47na7
-rA8ZiXc8gXNrE06GCtFXIR9AvRQrySAJMES6wJT4LigkfbS3wZt3PvUw+RUgGCcz
-RC14yLwFgzaAR7d9RVgZWBIOXlz4NUvdlb/ri+kiHc2mfT09ikm9NX+t5wJ64MfI
-S/U2tFJLDeqG0B4Sx/lnl35h7f2mk+c9DPfmTDkZSE1dJScE34GtEpehJQwZcxA9
-EHgPwIP4BFIReywnCwhDMY17JDkC58gXyOBNjSd6v0PzyvXbSQLAYYJu1MKzKi8=
-=JCC/
+iQEzBAABCAAdFiEE6jHMXpSI5RaNLcxesmjnBv9c9GMFAliMVWgACgkQsmjnBv9c
+9GP0QwgAwRR2s/Y3gZu+iI1teUmPx31vuJZsQqtmEaF9aG+/Yv0slTzET2M43W6w
+EPWPhV1MvEGExQNFE1UN+tpCtaS3JnGYihOuaUGIRyrtqxs5ksvzGTCXp2fb8J+b
+hEbbgMvEAf8ijQ7ExaBsE7fUazdzAIZtzRXsuGP/fQy91CQ6C5ZOnBKHHe81uIRz
+5eCHo2ro23Can2KEwQpLG4XsGxnII6SqVK3Vx83790q8jZP/qbTp1KcR6NxEyBNl
++0SNyzjvdqMi2uXPBOzA0H2RXCdEOJdMdQGSQrgHaiPvg2jf1737zqYtMEYaeYgf
++Z7IgU0kdiq/jwGHgVPJLdRZasXi+g==
+=hZv8
-END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2016-10-13 11:32:42
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2016-08-03
11:42:59.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2016-10-13
11:32:43.0 +0200
@@ -1,0 +2,67 @@
+Wed Oct 12 14:51:59 UTC 2016 - adam.ma...@suse.de
+
+- Update Squid to 3.5.22
+ * HTTP: MUST ignore a [revalidation] response with an older Date
+header.
+ * Optimized/simplified buffering: Appending nothing is always
+possible.
+ * Avoid segfaults when debugging section 4 at level 9.
+ * fix #4302 pt2: IPFilter v5 transparent interception
+ * Bug #4471: revalidation doesn't work when expired cached
+object lacks Last-Modified.
+ * Bug #2833: Collapse internal revalidation requests
+(SMP-unaware caches)
+ * Bug #3819: "fd >= 0" assertion in file_write() during
+reconfiguration
+ * Do not leak url_rewrite_extras and store_id_extras on
+reconfigure/shutdown.
+ * Fix potential ICAP null pointer dereference after rev.14082
+ * Fix logged request size (%http::>st) and other size-related
+%codes.
+
+---
+Tue Sep 13 15:32:34 UTC 2016 - adam.ma...@suse.de
+
+- Merge changes from SLE12 SP2 so we have identical packages
+
+---
+Mon Sep 12 09:57:30 UTC 2016 - adam.ma...@suse.de
+
+- Update Squid to 3.5.21
+ * fix assertion failure in xcalloc when using many cache_dir
+Squid is documented as supporting up to 64 cache directories,
+but would crash with a memory allocation error if more than
+a few were actually configured.
+ * fix authentication credentials IP TTL updated incorrectly
+This bug caused error in max_user_ip ACL accounting to allow
+clients to shift IP address more times than configured.
+Fix may have an effect on IPv6 clients using "proviacy adressing"
+to rotate IPs.
+ * fix mal-formed Cache-Control:stale-if-error header
+This bug shows up as incorrect stale-if-error values being
+relayed by Squid breaking the use of this feature in the
+recipients. Squid now relays the header values correctly.
+ * fix Proxy-Authenticate problem using ICAP server
+With this change Squid now treats the ICAP REQMOD adaptation
+point as a part of itself with regards to proxy authentication.
+The Proxy-Authentication header received from the client is
+delivered as part of the HTTP request headers in expectation
+that the ICAP service may authenticate and/or
+produce 407 response itself.
+ * fix HTTP: MUST always revalidate Cache-Control:no-cache responses
+This bug shows up as Squid not revalidating some responses until
+they became stale according to refresh_pattern heuristic rules
+(specifically the minimum caching age). Squid now revalidates
+these objects on every request.
+ * fix HTTP: do not allow Proxy-Connection to override Connection
+ * fix SSL CN wildcard must only match a single domain fragment
+This bug shows up as incorrect matching (or non-matching) of the
+ss::server_name ACL against TLS certificate values. Squid now
+treats the certificate CN fields according to X.509 domain
+matching requirements instead of HTTP domain matching
+requirements.
+- squid-brokenad.patch
+ * propertly capitalize option name
+ * make the conditional if() not a riddle
+
+---
Old:
squid-3.5.20.tar.xz
squid-3.5.20.tar.xz.asc
New:
squid-3.5.22.tar.xz
squid-3.5.22.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.Ex8XcO/_old 2016-10-13 11:32:45.0 +0200
+++ /var/tmp/diff_new_pack.Ex8XcO/_new 2016-10-13 11:32:45.0 +0200
@@ -20,7 +20,7 @@
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.5.20
+Version:3.5.22
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
@@ -28,7 +28,6 @@
Url:http://www.squid-cache.org/Versions/v3/3.5
Source0:
http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz
Source1:
http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz.asc
-
Source3:squid.init
Source4:squid.sysconfig
Source5:pam.squid
@@ -50,6 +49,10 @@
Patch104: squid-old-kerberos.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
+# BuildRequires: autoconf
+# Bui
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2016-08-03 11:42:56
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2016-07-14
09:47:39.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2016-08-03
11:42:59.0 +0200
@@ -1,0 +2,9 @@
+Mon Jul 18 08:05:42 UTC 2016 - adam.ma...@suse.de
+
+- Remove no-op option from configure
+ --enable-ntlm-fail-open has been removed more than 4 years ago in
+ squid 3.3.0.1 and apparently it wasn't useful for 10 years prior
+ to that already
+ http://www.squid-cache.org/mail-archive/squid-dev/201207/0072.html
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.NwCHwy/_old 2016-08-03 11:43:01.0 +0200
+++ /var/tmp/diff_new_pack.NwCHwy/_new 2016-08-03 11:43:01.0 +0200
@@ -183,7 +183,6 @@
--enable-auth-negotiate \
--enable-auth-digest \
--enable-external-acl-helpers=LDAP_group,eDirectory_userip,file_userip,kerberos_ldap_group,session,unix_group,wbinfo_group
\
- --enable-ntlm-fail-open \
--enable-stacktraces \
--enable-x-accelerator-vary \
--with-default-user=%{name} \
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2016-07-14 09:47:33
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2016-05-11
16:37:36.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2016-07-14
09:47:39.0 +0200
@@ -1,0 +2,22 @@
+Sun Jul 10 07:49:53 UTC 2016 - mplus...@suse.com
+
+- Update to version 3.5.20:
+ * Assertion failed: Write.cc:38: "fd_table[conn->fd].flags.open"
+ * Bug #4523: smblib compile fails on NetBSD
+ * Do not make bogus recvmsg(2) calls when closing UDS sockets.
+ * Fix SEGFAULT parsing malformed adaptation service configuration
+ * Fixed ConnStateData::In::maybeMakeSpaceAvailable() logic.
+ * Bug #3579: assertion failed 'MemPools[type]' from dst_as ACL
+ * SourceFormat Enforcement
+ * Do not allow low-level debugging to hide important/critical
+messages.
+ * Bug #4485: off-by-one out-of-bounds Parser::Tokenizer::int64()
+read errors
+ * Increase debug level in a peek-and-splice related debug message
+ * Fix icons loading speed.
+ * Fix OpenSSL detection on FreeBSD
+ * Do not override user defined -std option
+ * SourceFormat Enforcement
+ * Support unified EUI format code in external_acl_type
+
+---
Old:
squid-3.5.19.tar.xz
squid-3.5.19.tar.xz.asc
New:
squid-3.5.20.tar.xz
squid-3.5.20.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.BQWnVA/_old 2016-07-14 09:47:41.0 +0200
+++ /var/tmp/diff_new_pack.BQWnVA/_new 2016-07-14 09:47:41.0 +0200
@@ -20,7 +20,7 @@
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.5.19
+Version:3.5.20
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
@@ -142,7 +142,7 @@
%build
export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF"
export CXXFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF"
-export LDFLAGS='-Wl,-z,relro,-z,now -pie'
+export LDFLAGS="-Wl,--as-needed -Wl,--no-undefined -Wl,-z,relro,-z,now -pie"
%configure \
--disable-strict-error-checking \
--sysconfdir=%{squidconfdir} \
++ squid-3.5.19.tar.xz -> squid-3.5.20.tar.xz ++
1986 lines of diff (skipped)
++ squid-3.5.19.tar.xz.asc -> squid-3.5.20.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-3.5.19.tar.xz.asc2016-05-11
16:37:36.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.20.tar.xz.asc
2016-07-14 09:47:39.0 +0200
@@ -1,8 +1,8 @@
-File: squid-3.5.19.tar.xz
-Date: Sun May 8 14:25:45 UTC 2016
-Size: 2318720
-MD5 : a1d990284c429a63ee85d80ee5b3b8b9
-SHA1: 809133b751df9fb5bca07f181b3e2f7df392f761
+File: squid-3.5.20.tar.xz
+Date: Fri Jul 1 13:49:42 UTC 2016
+Size: 2319780
+MD5 : 48fb18679a30606de98882528beab3a7
+SHA1: 2bb6d3568e7167c9b99fea092a97287d0e430863
Key : 0xFF5CF463
fingerprint = EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463
keyring = http://www.squid-cache.org/pgp.asc
@@ -10,11 +10,11 @@
-BEGIN PGP SIGNATURE-
Version: GnuPG v1
-iQEcBAABAgAGBQJXL0zWAAoJELJo5wb/XPRjTFMH/A09rmkzxYmNOSCNCRDU5OAR
-GaKfWWhmg9zTz9F6KE4XQyEm2SLwjJguZXGipgEeGv3b7z6xhZt9boKvzP+F7izt
-42v6vGY63VAhmHfL6Ub2SKKzryzEjkItzuk/N5qB2bTUk4U7xlIvToLjemSMPuB0
-RsIsL9W54Szz8Bh/ixKBKUX3SSJlE7/aVyW8SPFPSSWmlK33EX/VE5Mkxsi9T/WZ
-l8FlaeQgrUP8LA+5XW86mEYl7m2YNdFJlMPDgkVwBYaeyAv7FkvGbaLnxxBm40MN
-/wD3/2rotdvbxROpCfS7jih8D8oMS/DuBFNnfVMCcKWL7/+fXmqBlqHvXBFu0xg=
-=/l9z
+iQEcBAABAgAGBQJXdnW5AAoJELJo5wb/XPRjqzsH+wXT0yt47aqoGWI8D1YpRaW5
+KPYvJdos0zPfgIPFWXxngH+ZpJcSPD21QuiEPS8BqISxm+/+By+0QIljITnHWFOV
+/wo1nwL/IMissmD+9bksyBede+BsZdz1PSwl9V1MzvuGL4vwOC0UZD9RT9RYvMwj
+Exfw80v/01bAVpV8U3tsBodk4Rz3AWIHhH2Tf9O2EZ/pIAtEHtDbkdLk81rSwNED
+tL6yV/n+BoWgAPg/+YPVGRK/h5nD4tBkTD6YBCnxp5PJmybhvAjLr/J96PtPpHdC
+or7Vx1lVpKvkXwZjn936+v4pqv19lsvKs5zLtGKBG2wMmoSIo2bf/bGhhT5kBDc=
+=znHp
-END PGP SIGNATURE-
++ squid-config.patch ++
--- /var/tmp/diff_new_pack.BQWnVA/_old 2016-07-14 09:47:42.0 +0200
+++ /var/tmp/diff_new_pack.BQWnVA/_new 2016-07-14 09:47:42.0 +0200
@@ -11,7 +11,7 @@
http_access allow localhost
# And finally deny all other access to this proxy
-@@ -3761,6 +3763,10 @@ DOC_START
+@@ -3769,6 +3771,10 @@ DOC_START
Instead, if you want Squid to use the entire disk drive,
subtract 20% and use that value.
@@ -22,7 +22,7 @@
'L1' is the number of first-level subdirectories which
will be created under the 'Directory'. The default i
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2016-05-11 16:37:34
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2016-04-06
11:52:26.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2016-05-11
16:37:36.0 +0200
@@ -1,0 +2,41 @@
+Mon May 9 08:50:11 UTC 2016 - h...@urpla.net
+
+- Update to 3.5.19
+ * Regression Bug 4515: interception proxy hangs
+- Update to 3.5.18
+ * Bug 4510: stale comment about 32KB limit on shared memory cache
+entries
+ * Bug 4509: EUI compile error on NetBSD
+ * Bug 4501: HTTP/1.1: normalize Host header
+ * Bug 4498: URL-unescape the login-info after extraction from URI
+ * Bug 4455: SegFault from ESIInclude::Start
+ * Prevent Squid forcing -b 2048 into the arguments for
+sslcrtd_program
+ * Fix TLS/SSL server handshake alert handling
+
+---
+Thu May 5 10:56:34 UTC 2016 - h...@urpla.net
+
+- Update to 3.5.17
+ * Regression Bug 4480: logformat [.width_max]
+ * Regression Bug 4481: varyEvaluateMatch: Oops. Not a Vary match
+on second attempt
+ * Bug 4495: Unknown SSL option SSL_OP_NO_TICKET
+ * Bug 4493: theObject->sharedMemorySize() == theSegment.size()
+exception
+ * Bug 4483: ./configure garbles -Og option in CFLAGS
+ * Bug 4482: Solaris GCC 5.2 warning in src/ip/Intercept.cc
+ * Bug 4468: NotNode (!acl) naming: Terminate the name before
+strncat(name).
+ * Bug 4465: Header forgery detection leads to crash
+ * Bug 2460 partial: workaround deferred reads on shutdown and
+restart
+ * cachemgr.cgi: use dynamic MemBuf for internal content
+generation
+ * ESI: Fix several element construction issues
+ * TLS: Fix Handshake Error: ccs received early
+ * TLS: Add chained and signing cert to peek-then-bumped
+connections
+ * Fix some startup/shutdown crashes
+
+---
Old:
squid-3.5.16.tar.xz
squid-3.5.16.tar.xz.asc
New:
squid-3.5.19.tar.xz
squid-3.5.19.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.E146LN/_old 2016-05-11 16:37:37.0 +0200
+++ /var/tmp/diff_new_pack.E146LN/_new 2016-05-11 16:37:37.0 +0200
@@ -20,7 +20,7 @@
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.5.16
+Version:3.5.19
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
++ squid-3.5.16.tar.xz -> squid-3.5.19.tar.xz ++
2586 lines of diff (skipped)
++ squid-3.5.16.tar.xz.asc -> squid-3.5.19.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-3.5.16.tar.xz.asc2016-04-06
11:52:26.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.19.tar.xz.asc
2016-05-11 16:37:36.0 +0200
@@ -1,8 +1,8 @@
-File: squid-3.5.16.tar.xz
-Date: Fri Apr 1 23:08:56 UTC 2016
-Size: 2317320
-MD5 : 557b1011a880ec3291797367e2ca4c45
-SHA1: 8268ace3de2971222e4e5b05b0d3caa6475280d4
+File: squid-3.5.19.tar.xz
+Date: Sun May 8 14:25:45 UTC 2016
+Size: 2318720
+MD5 : a1d990284c429a63ee85d80ee5b3b8b9
+SHA1: 809133b751df9fb5bca07f181b3e2f7df392f761
Key : 0xFF5CF463
fingerprint = EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463
keyring = http://www.squid-cache.org/pgp.asc
@@ -10,11 +10,11 @@
-BEGIN PGP SIGNATURE-
Version: GnuPG v1
-iQEcBAABAgAGBQJW/v/wAAoJELJo5wb/XPRjylQH/iVelewJqDRZWIEinCX7DrRd
-oWw7qq7ifYJOfFbXRXDMakSee6xrvUpWLy9SugBMbpEGc8YCvAkUC3tnvawH5+I4
-5gYnedyk87X7Ia4zBJs6RDJavJ+kKeY6HjKuKjxJW9R/QWqP8zIFwngQ5GqR0V6c
-mI8fDy6uoz3wFUAd0f7P7Krc4UDMf8W3nT5LEhuWlzKwz2cRxWNbUwWg8Chgc/B9
-HxwSE2Ypbw0RfH2XkgiEYGDMY45tIedFm9DBMw2UHTGUk3UCnzkI7dd8anCLjgG5
-w7v1MZ+WyTqzeidVbT4D/HQOifIsG9I43nCtCtcSZYGYboGsauNXX+sU06COipc=
-=kkEu
+iQEcBAABAgAGBQJXL0zWAAoJELJo5wb/XPRjTFMH/A09rmkzxYmNOSCNCRDU5OAR
+GaKfWWhmg9zTz9F6KE4XQyEm2SLwjJguZXGipgEeGv3b7z6xhZt9boKvzP+F7izt
+42v6vGY63VAhmHfL6Ub2SKKzryzEjkItzuk/N5qB2bTUk4U7xlIvToLjemSMPuB0
+RsIsL9W54Szz8Bh/ixKBKUX3SSJlE7/aVyW8SPFPSSWmlK33EX/VE5Mkxsi9T/WZ
+l8FlaeQgrUP8LA+5XW86mEYl7m2YNdFJlMPDgkVwBYaeyAv7FkvGbaLnxxBm40MN
+/wD3/2rotdvbxROpCfS7jih8D8oMS/DuBFNnfVMCcKWL7/+fXmqBlqHvXBFu0xg=
+=/l9z
-END PGP SIGNATURE-
++ squid-rpmlintrc ++
--- /var/tmp/diff_new_pack.E146LN/_old 2016-05-11 16:37:39.0 +0200
+++ /var/tmp/diff_new_pack.E146LN/_new 2016-05-11 16:37:39.0 +0200
@@ -3,3 +3,4 @@
addFilter("incorrect-fsf-address")
# Temporary solution untill it is moved into factory
#setBadness('
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2016-04-06 11:52:21
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2016-03-09
16:48:54.0 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2016-04-06
11:52:26.0 +0200
@@ -1,0 +2,24 @@
+Mon Apr 4 07:19:58 UTC 2016 - mplus...@suse.com
+
+- Update to 3.5.16 (boo#973771)
+ * Bug 4476: Removed duplicated #include lines
+ * Bug 4452: squid -z segfaults with ufs
+ * Bug 4447:FwdState.cc:447 "serverConnection() == conn" assertion
+ * Bug 4423: adding stdio: prefix to cache_log directive produces
+FATAL error
+ * Bug 4409: compile error when two Heimdal libraries are
+installed
+ * Bug 2831: Cache-control: max-age not sent on TCP_IMS_HIT/304
+ * pinger: Fix buffer overflow in Icmp6::Recv
+ * pinger: Fix select(2) to actually use max_fd
+ * pinger: drop capabilities on Linux
+ * Fix memory leak of HttpRequest objects
+ * Fix memory leak when the cache of sslcrtvalidator_program is
+disabled via ttl=0
+ * Fix assertion failed: Write.cc:41: "!ccb->active()"
+ * Fix crash on shutdown while cleaning up idle ICAP connections
+ * RFC 7725: Add registry entry for 451 status text
+ * ... and some build issues
+- Refresh all patches
+
+---
Old:
squid-3.5.15.tar.xz
squid-3.5.15.tar.xz.asc
New:
squid-3.5.16.tar.xz
squid-3.5.16.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.TPBxUh/_old 2016-04-06 11:52:28.0 +0200
+++ /var/tmp/diff_new_pack.TPBxUh/_new 2016-04-06 11:52:28.0 +0200
@@ -1,7 +1,7 @@
#
# spec file for package squid
#
-# Copyright (c) 2016 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -20,7 +20,7 @@
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.5.15
+Version:3.5.16
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
++ squid-3.5.15.tar.xz -> squid-3.5.16.tar.xz ++
1647 lines of diff (skipped)
retrying with extended exclude list
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude
config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4
--exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh
old/squid-3.5.15/ChangeLog new/squid-3.5.16/ChangeLog
--- old/squid-3.5.15/ChangeLog 2016-02-23 17:25:46.0 +0100
+++ new/squid-3.5.16/ChangeLog 2016-04-01 23:02:59.0 +0200
@@ -1,3 +1,21 @@
+Changes to squid-3.5.16 (02 Apr 2016):
+
+ - Bug 4476: Removed duplicated #include lines
+ - Bug 4452: squid -z segfaults with ufs
+ - Bug 4447:FwdState.cc:447 "serverConnection() == conn" assertion
+ - Bug 4423: adding stdio: prefix to cache_log directive produces FATAL
error
+ - Bug 4409: compile error when two Heimdal libraries are installed
+ - Bug 2831: Cache-control: max-age not sent on TCP_IMS_HIT/304
+ - pinger: Fix buffer overflow in Icmp6::Recv
+ - pinger: Fix select(2) to actually use max_fd
+ - pinger: drop capabilities on Linux
+ - Fix memory leak of HttpRequest objects
+ - Fix memory leak when the cache of sslcrtvalidator_program is disabled
via ttl=0
+ - Fix assertion failed: Write.cc:41: "!ccb->active()"
+ - Fix crash on shutdown while cleaning up idle ICAP connections
+ - RFC 7725: Add registry entry for 451 status text
+ - ... and some build issues
+
Changes to squid-3.5.15 (23 Feb 2016):
- Bug 3870: assertion failed: String.cc: 'len_ + len <65536' in
ESI::CustomParser
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude
config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4
--exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh
old/squid-3.5.15/RELEASENOTES.html new/squid-3.5.16/RELEASENOTES.html
--- old/squid-3.5.15/RELEASENOTES.html 2016-02-23 18:14:19.0 +0100
+++ new/squid-3.5.16/RELEASENOTES.html 2016-04-02 00:42:35.0 +0200
@@ -2,10 +2,10 @@
- Squid 3.5.15 release notes
+ Squid 3.5.16 release notes
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2016-03-09 15:17:30
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2016-01-28
17:23:58.0 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2016-03-09
16:48:54.0 +0100
@@ -1,0 +2,23 @@
+Mon Mar 7 13:47:55 UTC 2016 - ch...@computersalat.de
+
+- Changes to squid-3.5.15 (23 Feb 2016):
+ * Bug 3870: assertion failed: String.cc: 'len_ + len <65536' in
ESI::CustomParser
+ * Fix multiple assertion on String overflows
+ * Fix unit test errors on MacOS
+ * Better handling of huge response headers. Fewer incorrect "Bug #3279"
messages.
+ * Log noise reduction for eCAP
+- Changes to squid-3.5.14 (16 Feb 2016):
+ * Bug 4437: Fix Segfault on Certain SSL Handshake Errors
+ * Bug 4431: C code is not compiled with CFLAGS
+ * Bug 4418: FlexibleArray compile error with GCC 6
+ * Bug 4378: assertion failed: DestinationIp.cc:60:
+'checklist->conn() && checklist->conn()->clientConnection != NULL'
+ * Fix invalid FTP connection handling on blocked content
+ * Fix handling of shared memory left over by Squid crashes or bugs
+ * Fix mgr:config report 'qos_flows mark' output
+ * Fix compile error in CPU affinity
+ * Fix %un logging external ACL username
+ * Avoid more certificate validation memory leaks
+ * ... and some documentation updates
+
+---
Old:
squid-3.5.13.tar.xz
squid-3.5.13.tar.xz.asc
New:
squid-3.5.15.tar.xz
squid-3.5.15.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.DXKO5X/_old 2016-03-09 16:48:55.0 +0100
+++ /var/tmp/diff_new_pack.DXKO5X/_new 2016-03-09 16:48:55.0 +0100
@@ -20,7 +20,7 @@
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.5.13
+Version:3.5.15
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
++ squid-3.5.13.tar.xz -> squid-3.5.15.tar.xz ++
57706 lines of diff (skipped)
++ squid-3.5.13.tar.xz.asc -> squid-3.5.15.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-3.5.13.tar.xz.asc2016-01-28
17:23:58.0 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.15.tar.xz.asc
2016-03-09 16:48:54.0 +0100
@@ -1,8 +1,8 @@
-File: squid-3.5.13.tar.xz
-Date: Thu Jan 7 04:33:15 UTC 2016
-Size: 2379460
-MD5 : 7a22503cfc99e1f89cb309b5facfbbc3
-SHA1: 3c45f8a8522c67c633c85c65dbfe63ccaf6df0e8
+File: squid-3.5.15.tar.xz
+Date: Tue Feb 23 17:19:35 UTC 2016
+Size: 2315628
+MD5 : 997084b40aaed7d0fa9db11904638ea9
+SHA1: 054fb18a3b0b8228be28e61bf58cfb621c266155
Key : 0xFF5CF463
fingerprint = EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463
keyring = http://www.squid-cache.org/pgp.asc
@@ -10,11 +10,11 @@
-BEGIN PGP SIGNATURE-
Version: GnuPG v1
-iQEcBAABAgAGBQJWkOegAAoJELJo5wb/XPRjWIcIAK0RQqBz4QcEE6bZba5qLK+l
-T/hoKPMNi2QTjpR4WGIWhuw2YoX9HrWUceP8BZ0HsA9HssAG8Te5du0hjjOHNbxy
-3jMdSchM3KVLw7xlotDsp3CWRzFgYp3UE5Czcvy4vakggGNTPJ7NddgX1dda3ChG
-tl4yDlzOw6hkab4wEGbT0V8/WUbNEWtGFtZNCFdhL1hdtfKBXqtLwSo3/vLxqFJT
-85aQNU5C6bOAiz4LBLhIv7uY81vwIK73zFgGsiY3RBXe0ekC7Q9TvAh5wkejLM/b
-mp4xVXk6ZJXFBggbeUzBVR+OGEl4GhqEwI+6MULTc6DXVE4m5PvpF6wcn5yf9yg=
-=U8vk
+iQEcBAABAgAGBQJWzJgNAAoJELJo5wb/XPRjU+gIAKvcDtS/8tS+alSSt23w2Q1N
+qE0XMn+Sz4S4sGPaby29lxopYxxeWQaNv9G+BnVObxLTGIi+pLDHfMYAxM32OQ+A
+VsQFRUBENH+w6HW6BBPBdrj91CSQ5wORwsrjIzqc41A57BAQQMDduLIzUxjJz6RE
+9rxXpwW7n8PflDRAsWOm8qm8bOLJs4zfOO971l9aLrocGztDCgiMn7VT+1/fUHpx
+Z3HhIGISJHM0O7rRmICe7Nw/XRNY+EEj9ibqTzHouRZlKevbtmp1NCKjN9vsXC3T
+3K9Zn7+VaNZGRuCe7hV4SnH9aR/DW0aLmzdikG3kjK+LAchAbTq7gpIaKLPnRuw=
+=DCl6
-END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2016-01-28 17:23:14
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-12-09
22:34:26.0 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2016-01-28
17:23:58.0 +0100
@@ -2 +2 @@
-Wed Dec 9 10:11:36 UTC 2015 - mplus...@suse.com
+Sun Jan 24 18:28:45 UTC 2016 - ch...@computersalat.de
@@ -4,27 +4,37 @@
-- Update to 4.0.3
- * Bug 4372: missing template files
- * Bug 4371: compile errors: no such file or directory:
- DiskIO/*/*DiskIOModule.o
- * Bug 4368: A simpler and more robust HTTP request line parser
- * Fix compile erorr on clang undefined reference to
- '__atomic_load_8'
- * ext_kerberos_ldap_group_acl: Add missing workarounds for
- Heimdal Kerberos
- * ext_ldap_group_acl: Allow unlimited LDAP search filter
- * ext_unix_group_acl: Support -r parameter to strip @REALM from
- usernames
- * ... and much code cleanup and polishing
- * ... and all fixes from squid 3.5.11
-- Changes for squid-4.0.2
- * Regression Bug 4351: compile errors when authentication modules
- disabled
- * Regression fix: HTTP/1.1 Transfer-Encoding:chunked parsing
- * Bug 4359: assertion failure 'Comm::IsConnOpen(conn)' within
- ConnStateData::requestTimeout
- * Bug 4356: segmentation fault using proxy_auth ACL
- * Bug 4352: compile errors in OS X 10.11
- * Bug 4021: ext_user_regex does exact match
- * Bug 3574: avoid crashes, prohibit reconfiguration during
- shutdown
- * Support re-assigning delay pools based on HTTP reply details
- * ... and all fixes from squid 3.5.11
+- Changes to squid-3.5.13 (06 Jan 2016):
+ * Bug 4397: DragonFly BSD, POSIX shared memory is implemented as filepath
+ * Bug 4387: Kerberos build errors on Solaris
+ * TLS: Support Ephemeral Elliptic Curve Diffie-Hellman (EECDH) key exchange
+ * TLS: Complete certificate chains using external intermediate certificates
+ * Avoid memory leaks when an X.509 certificate validator is used with SslBump
+ * Fix connection retry and fallback after failed server TLS connections
+ * Fix GnuTLS detection via pkg-config
+ * Fix startup crash with a misconfigured (too-small) shared memory cache
+ * ... and some documentation updates
+- Changes to squid-3.5.12 (28 Nov 2015):
+ * Bug 4374: refresh_pattern config parser (%)
+ * Bug 4373: assertion 'calloutContext->redirect_state == REDIRECT_NONE'
+ * Bug 4228: links with krb5 libs despite --without options
+ * Fix SSL_get_certificate() problem detection
+ * Fix TLS handshake problem during Renegotiation
+ * Fix cache_peer forceddomain= in CONNECT
+ * Fix status code-based HTTP reason phrase for eCAP-generated messages
+ * Fix build errors in cpuafinity.cc
+ * ... and several documentation updates
+- Changes to squid-3.5.11 (01 Nov 2015):
+ * Bug 3574: crashes on reconfigure and startup
+ * Bug 4347: compile errors with LibreSSL 2.3
+ * Bug 4281: copy-paste typos in src/tools.cc
+ * Bug 4279: No response from proxy for FTP-download of non-existing file
+ * Bug 4188: Bumping intercepted SSL connections does not work on Solaris
+ * Fix incorrect authentication headers on cache digest requests
+ * Fix connection stats, including %= 4.7
-- rebase squid-config.patch
-- rebase and fix squid-brokenad.patch
Old:
squid-4.0.3.tar.xz
squid-4.0.3.tar.xz.asc
New:
squid-3.5.13.tar.xz
squid-3.5.13.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.xkZAQU/_old 2016-01-28 17:23:59.0 +0100
+++ /var/tmp/diff_new_pack.xkZAQU/_new 2016-01-28 17:23:59.0 +0100
@@ -1,7 +1,7 @@
#
# spec file for package squid
#
-# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2016 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -20,14 +20,14 @@
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:4.0.3
+Version:3.5.13
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
Group: Productivity/Networking/Web/Proxy
-Url:http://www.squid-cache.org/Versions/v4
-Source0:
http://www.squid-cache.org/Versions/v4/%{name}-%{version}.tar.xz
-Source1:
http://www.squid-cache.org/Versions/v4/%{name}-%{version}.tar.xz.asc
+Url:http://www.s
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-12-09 19:54:37 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-10-20 00:05:47.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-12-09 22:34:26.0 +0100 @@ -1,0 +2,96 @@ +Wed Dec 9 10:11:36 UTC 2015 - mplus...@suse.com + +- Update to 4.0.3 + * Bug 4372: missing template files + * Bug 4371: compile errors: no such file or directory: + DiskIO/*/*DiskIOModule.o + * Bug 4368: A simpler and more robust HTTP request line parser + * Fix compile erorr on clang undefined reference to + '__atomic_load_8' + * ext_kerberos_ldap_group_acl: Add missing workarounds for + Heimdal Kerberos + * ext_ldap_group_acl: Allow unlimited LDAP search filter + * ext_unix_group_acl: Support -r parameter to strip @REALM from + usernames + * ... and much code cleanup and polishing + * ... and all fixes from squid 3.5.11 +- Changes for squid-4.0.2 + * Regression Bug 4351: compile errors when authentication modules + disabled + * Regression fix: HTTP/1.1 Transfer-Encoding:chunked parsing + * Bug 4359: assertion failure 'Comm::IsConnOpen(conn)' within + ConnStateData::requestTimeout + * Bug 4356: segmentation fault using proxy_auth ACL + * Bug 4352: compile errors in OS X 10.11 + * Bug 4021: ext_user_regex does exact match + * Bug 3574: avoid crashes, prohibit reconfiguration during + shutdown + * Support re-assigning delay pools based on HTTP reply details + * ... and all fixes from squid 3.5.11 + +--- +Sat Dec 5 00:36:04 UTC 2015 - bo...@steki.net + +- fixes for boo#956989 + - updated pretrans scriptlet so it handles only rpm link vs folders issue + - pre scriptlet updated to not change configuration file without real need +for configuration updates + + +--- +Tue Oct 27 17:12:19 UTC 2015 - ch...@computersalat.de + +- update to 4.0.1 + * Bug 4329: GCC 5.2 no known conversion for argument + * Bug 4292: negotiate_wrapper: Unreleased Resources + * Bug 4269: ignore-must-revalidate broken + * Bug 4190: assertion 'hash_remove_link' from Auth::User::cacheCleanup + * Bug 3920: Splay::remove() reference counting inconsistent + * Bug 3069: CONNECT method bytes sent logging + * Bug 2741 partial: libsecurity API for GnuTLS support + * Bug 1961 partial: redesign of URL handling + * Fix crash when parsing invalid squid.conf + * Fix eCAP: Return 'unknown body size' for bodies with unknown body sizes + * Remove unused OS detection: Sun, SysV, Ultrix, BSDi + * Remove cache_peer_domain directive + * RFC 6176 compliance: Remove SSLv2 support + * HTTP/1.1: Remove refresh_pattern ignore-auth and ignore-must-revalidate + * Remove GCC 2.x and 3.x detection and support + * C++11 compiler support is now mandatory + * Enable flexible transport protocol + * Enable long (--foo) command line parameters on squid binary + * Add per-rule refresh_pattern matching statistics + * Replace sslversion=N with tls-min-version=1.N + * Replace sslproxy_* directives with tls_outgoing_options + * Replace GNU atomics and related hacks with C++11 std::atomic + * Replace external_acl_type format %macros with logformat codes + * Support Ephemeral Elliptic Curve Diffie-Hellman (EECDH) key exchange + * Support Secure ICAP services + * Support rotate=N option on access_log + * Support bypass for non-HTTP intercepted traffic (on_unsupported_protocol) + * Support lifetime timeout for persistent connections (pconn_lifetime) + * Support timeout for URL-rewrite helper lookups (url_rewrite_timeout) + * Support logging fast things (nanosecond log resolution) + * Support ICAP/eCAP adaptation for 100-continue responses + * Support configurable helper queue size, with consistent defaults +and better overflow handling. + * Support named service PID file by default (pid_filename) + * url_lfs_rewrite: Add URL-rewriter based on local file existence + * negotiate_kerberos_auth: output group= kv-pair + * helper-mux: add man(8) page + * purge: convert README to man(1) page + * basic_msnt_multi_domain_auth: Superceeded by basic_smb_lm_auth + * basic_sspi_auth: fix MinGW compile errors + * negotiate_sspi_auth: fix various build errors + * Crypto-NG: libnettle Base64 algorithm support + * Parser-NG: HTTP Parser structural redesign + * libltdl: copyright updated to LGPL version 2.1 + * ... and several performance optimizations + * ... and many documentation chan
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2015-10-19 22:52:04
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-10-12
10:02:30.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-10-20
00:05:47.0 +0200
@@ -1,0 +2,10 @@
+Thu Oct 15 14:57:13 UTC 2015 - jk...@suse.de
+
+- Fix rpmlint errors / warnings
+ * systemd-service-without-service_add_pre
+moved service_add_pre to %pre
+ * non-etc-or-var-file-marked-as-conffile
+moved mib.txt to /usr/share/snmp/mibs/SQUID-MIB.txt
+idea taken from Fedora package
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.4tlVl2/_old 2015-10-20 00:05:48.0 +0200
+++ /var/tmp/diff_new_pack.4tlVl2/_new 2015-10-20 00:05:48.0 +0200
@@ -128,7 +128,6 @@
* Basic authentication MSNT helper changes
%prep
-#setup -q -n %{name}-%{version}%{snap}
%setup -q
cp %{SOURCE10} .
# upstream patches after RELEASE
@@ -274,6 +273,11 @@
install -D -m644 %{SOURCE4} %{buildroot}%{_sysconfdir}/sysconfig/%{name}
%endif
+# Move the MIB definition to the proper place (and name)
+mkdir -p $RPM_BUILD_ROOT/usr/share/snmp/mibs
+mv $RPM_BUILD_ROOT/usr/share/squid/mib.txt \
+ $RPM_BUILD_ROOT/usr/share/snmp/mibs/SQUID-MIB.txt
+
%pre
# we need this group for /usr/sbin/pinger
if [[ -z $(%{_bindir}/getent group %{name} 2>/dev/null) ]]; then
@@ -298,6 +302,10 @@
%{_sbindir}/usermod -G winbind %{name} 2>/dev/null
fi
+%if 0%{?has_systemd}
+%service_add_pre %{name}.service
+%endif
+
%pretrans
# Directory to symlink is not working in RPM so workaround it
# Occurs when updating from 3.4 to 3.5
@@ -322,10 +330,6 @@
%{_sbindir}/usermod -g %{name} %{name}
fi
-%if 0%{?has_systemd}
-%service_add_pre %{name}.service
-%endif
-
%post
%if 0%{?suse_version} >= 1140
%if 0%{?set_permissions:1}
@@ -416,11 +420,13 @@
%config %{_sysconfdir}/permissions.d/%{name}
%endif
%dir %{_datadir}/%{name}
+%dir %{_datadir}/snmp
+%dir %{_datadir}/snmp/mibs
%{_datadir}/%{name}/errors
%{_datadir}/%{name}/icons
-%config %{_datadir}/%{name}/mib.txt
%{_datadir}/%{name}/mime.conf
%{_datadir}/%{name}/mime.conf.default
+%{_datadir}/snmp/mibs/SQUID-MIB.txt
%{_bindir}/purge
%{_bindir}/squidclient
%{_sbindir}/basic_db_auth
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2015-10-12 10:02:23
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-09-17
09:21:25.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-10-12
10:02:30.0 +0200
@@ -1,0 +2,16 @@
+Thu Oct 8 14:41:53 UTC 2015 - jk...@suse.de
+
+- Changes to squid-3.5.10 (01 Oct 2015):
+ * Regression Fix cache_peer login=PASS(THRU) after CVE-2015-5400
+ * Regression Bug 4326: base64 binary encoder rejects data beginning with nil
byte
+ * Bug 4323: Netfilter broken cross-includes with Linux 4.2
+ * Bug 4328: %un format code does not work for external ACLs in
credentials-fetching rules
+ * Bug 4208: more than one port in wccp2_service_info line causes error
+ * Bug 4304: PeerConnector.cc:743 "!callback" assertion.
+ * Bug 4330: Do not use SSL_METHOD::put_cipher_by_char to determine size of
SSL hello ciphers
+ * Relicense ntlm_fake_auth.pl to GPLv2+
+ * Relicense smb_lm auth helper to GPLv2+
+ * Relicense SSPI helper to GPLv2+
+ * ... and several minor performance optimizations
+
+---
Old:
squid-3.5.8.tar.xz
squid-3.5.8.tar.xz.asc
New:
squid-3.5.10.tar.xz
squid-3.5.10.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.fvr7vv/_old 2015-10-12 10:02:31.0 +0200
+++ /var/tmp/diff_new_pack.fvr7vv/_new 2015-10-12 10:02:31.0 +0200
@@ -1,7 +1,7 @@
#
# spec file for package squid
#
-# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -20,7 +20,7 @@
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.5.8
+Version:3.5.10
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
++ squid-3.5.8.tar.xz -> squid-3.5.10.tar.xz ++
2339 lines of diff (skipped)
++ squid-3.5.8.tar.xz.asc -> squid-3.5.10.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-3.5.8.tar.xz.asc 2015-09-08
17:42:29.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.10.tar.xz.asc
2015-10-12 10:02:30.0 +0200
@@ -1,8 +1,8 @@
-File: squid-3.5.8.tar.xz
-Date: Tue Sep 1 20:46:18 UTC 2015
-Size: 2295644
-MD5 : 0b4eae643b009215688fcf5f1a7803a7
-SHA1: 4ba4b43cf9abaf7e5015ad4d2d9b628213e55044
+File: squid-3.5.10.tar.xz
+Date: Thu Oct 1 15:37:56 UTC 2015
+Size: 2297452
+MD5 : 5ddc53bd6ff78234691a7ebbcbc6aa38
+SHA1: 804bbf5ef6ccdc277dacde83e086fad30d02da60
Key : 0xFF5CF463
fingerprint = EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463
keyring = http://www.squid-cache.org/pgp.asc
@@ -10,11 +10,11 @@
-BEGIN PGP SIGNATURE-
Version: GnuPG v1
-iQEcBAABAgAGBQJV5iUtAAoJELJo5wb/XPRjAGgIAIRy2AiWg/TdVtnKP0PuvmnX
-8ASl8/XIdmXYHn7GVL97Ut/1IW+ZNF2ur4n6YWuf1pHIaSx5I8/RnLfO0dtAnkgs
-24O8bBUEHQNSaaCrGjO75PA7PTJxfT6uTaBOl+169JiZVry/prI/YlcJVr73SPjM
-S0r326xydBF1McayVCkqTaPti/d88uj496qresWE1zOEWNjjZdXUoWuRSG6ZuDNo
-nrq07c+k+F6wNNvii8bBPLiUrxXtE5NRml63UWfUidDWmdx8jrv1e1T2ZK5Gn0JR
-+YPeljSUTLrfIdZ1kHGugiycb4zArV3awej/hTGhb2IJ2ezZSQY3TVfLFzD4Yic=
-=CE8O
+iQEcBAABAgAGBQJWDVnkAAoJELJo5wb/XPRjC/MIAMUTJEgzajbcbpCJubfxL8+y
+gxV/SjysESmgjjgC7LdtEsz6X156zxPXNYbNC05NKZ0qLrMN0cHy1+LG1uIWie2c
+vFL0KmFllIRY9wiV2m4Y3uoEYvGFEWYviaW8edRJstZAEBe2ntSSvD+982rRwRgw
+mHDnjIUL9MnJGnjqVq+O3jq1M/lxmAYoiiJrDQM/Jkd6yvs73o4spRp5AVg6+Vfq
+sL3qP/Xz2IaLmHTgHmjhwOQsa7y5THAkUhBzv9Q+BSbo2Qb/6orQnvBcDuhCFs7j
+DRnm602Axmqa4zTOQjfkg9ag6WXB+8AIeKFnJuX+Ynw9LVRVTq2DCJqyNVhZbNw=
+=LrXD
-END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-09-17 09:21:24 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-09-08 17:42:29.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-09-17 09:21:25.0 +0200 @@ -1,0 +2,5 @@ +Fri Sep 4 15:18:54 UTC 2015 - ch...@computersalat.de + +- rebase squid-config.patch + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.tTl4Ur/_old 2015-09-17 09:21:26.0 +0200 +++ /var/tmp/diff_new_pack.tTl4Ur/_new 2015-09-17 09:21:26.0 +0200 @@ -1,7 +1,7 @@ # # spec file for package squid # -# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed ++ squid-config.patch ++ --- /var/tmp/diff_new_pack.tTl4Ur/_old 2015-09-17 09:21:26.0 +0200 +++ /var/tmp/diff_new_pack.tTl4Ur/_new 2015-09-17 09:21:26.0 +0200 @@ -2,7 +2,7 @@ === --- src/cf.data.pre.orig +++ src/cf.data.pre -@@ -1458,6 +1458,8 @@ http_access deny manager +@@ -1460,6 +1460,8 @@ http_access deny manager # Adapt localnet in the ACL section to list your (internal) IP networks # from where browsing should be allowed http_access allow localnet @@ -11,7 +11,7 @@ http_access allow localhost # And finally deny all other access to this proxy -@@ -3686,6 +3688,10 @@ DOC_START +@@ -3692,6 +3694,10 @@ DOC_START Instead, if you want Squid to use the entire disk drive, subtract 20% and use that value. @@ -22,7 +22,7 @@ 'L1' is the number of first-level subdirectories which will be created under the 'Directory'. The default is 16. -@@ -3804,7 +3810,7 @@ DOC_START +@@ -3810,7 +3816,7 @@ DOC_START NOCOMMENT_START # Uncomment and adjust the following to add a disk cache directory. @@ -31,7 +31,7 @@ NOCOMMENT_END DOC_END -@@ -4486,7 +4492,7 @@ DOC_END +@@ -4507,7 +4513,7 @@ DOC_END NAME: logfile_rotate TYPE: int
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2015-09-08 17:39:18
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-08-11
08:27:00.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-09-08
17:42:29.0 +0200
@@ -1,0 +2,21 @@
+Thu Sep 3 12:59:31 UTC 2015 - jk...@suse.de
+
+- Changes to squid-3.5.8 (02 Sep 2015):
+ * Regression Bug 4306: build portability fix in Kerberos helpers
+ * Bug 4302: IPFilter v5 transparent interception
+ * Bug 4301: compile errors with IPFilter interception
+ * Bug 4285 partial: %us is not supported in access.log
+ * Bug 4278: Docs: typo in the refresh_pattern freshness algorithm
+ * Bug 4242: compile errors with eCAP using clang-3.6
+ * Bug 3696: crash when client delay pools are activated
+ * Bug 3553: cache_swap_high ignored and maxCapacity used instead
+ * Regression Fix: FtpServer.cc:1024: "reply != NULL" assertion
+ * Fix ignore of impossible SSL bumping actions, as intended and documented
+ * Fix memory leak in Surrogate-Capability header detection
+ * Fix truncated body length when RESPMOD service aborts
+ * Reject non-chunked HTTP messages with conflicting Content-Length values
+ * Support splice for SSLv3 and TLSv1 sessions that start with an SSLv2 Hello
+ * ... and several portability and compile fixes
+ * ... and several documentation updates
+
+---
Old:
squid-3.5.7.tar.xz
squid-3.5.7.tar.xz.asc
New:
squid-3.5.8.tar.xz
squid-3.5.8.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.u8FVQh/_old 2015-09-08 17:42:34.0 +0200
+++ /var/tmp/diff_new_pack.u8FVQh/_new 2015-09-08 17:42:34.0 +0200
@@ -20,7 +20,7 @@
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.5.7
+Version:3.5.8
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
++ squid-3.5.7.tar.xz -> squid-3.5.8.tar.xz ++
12319 lines of diff (skipped)
++ squid-3.5.7.tar.xz.asc -> squid-3.5.8.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-3.5.7.tar.xz.asc 2015-08-07
00:24:31.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.8.tar.xz.asc
2015-09-08 17:42:29.0 +0200
@@ -1,8 +1,8 @@
-File: squid-3.5.7.tar.xz
-Date: Sat Aug 1 06:59:59 UTC 2015
-Size: 2294580
-MD5 : e24943386555ca922130a7e034badba7
-SHA1: e7dcc0cbcee6fd10a8c8bf3e9bff0dc6359ccc48
+File: squid-3.5.8.tar.xz
+Date: Tue Sep 1 20:46:18 UTC 2015
+Size: 2295644
+MD5 : 0b4eae643b009215688fcf5f1a7803a7
+SHA1: 4ba4b43cf9abaf7e5015ad4d2d9b628213e55044
Key : 0xFF5CF463
fingerprint = EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463
keyring = http://www.squid-cache.org/pgp.asc
@@ -10,11 +10,11 @@
-BEGIN PGP SIGNATURE-
Version: GnuPG v1
-iQEcBAABAgAGBQJVvHHfAAoJELJo5wb/XPRjmUUH/3nlvdfeAHWXkbM8PnmJ+/BD
-ZYKciqbxo3MzufJQST/uZBIgtwBBrpzS1WBkPT8Lm5iHXavYZSAp3v/cGF/F9z6e
-/oMU891G/ve1Pp6QIVoGxUkeMYDqM985UilhhXptPP8ZpztRa7fEgsFy2E4rUkt9
-g5MHMY1heK3n+C8+1o1As5tc/5bYQ+Erd3g2TRlbJNJIc5Sz+K6B8AAg+VabR+d+
-dT3yNC5wP4Bmagrh+vdh0H8BXKyXv4OCTGI6k7qlBy7nY36YvLJC6Z0kZB1OMHef
-rb1oTdT7F87UE+8cqu9Zu76HnSVu3PfQYbx1ETaRWE6vjSNIM2BAU9mnpdrS1fs=
-=nB5m
+iQEcBAABAgAGBQJV5iUtAAoJELJo5wb/XPRjAGgIAIRy2AiWg/TdVtnKP0PuvmnX
+8ASl8/XIdmXYHn7GVL97Ut/1IW+ZNF2ur4n6YWuf1pHIaSx5I8/RnLfO0dtAnkgs
+24O8bBUEHQNSaaCrGjO75PA7PTJxfT6uTaBOl+169JiZVry/prI/YlcJVr73SPjM
+S0r326xydBF1McayVCkqTaPti/d88uj496qresWE1zOEWNjjZdXUoWuRSG6ZuDNo
+nrq07c+k+F6wNNvii8bBPLiUrxXtE5NRml63UWfUidDWmdx8jrv1e1T2ZK5Gn0JR
++YPeljSUTLrfIdZ1kHGugiycb4zArV3awej/hTGhb2IJ2ezZSQY3TVfLFzD4Yic=
+=CE8O
-END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2015-08-11 08:26:59
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-08-07
00:24:31.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-08-11
08:27:00.0 +0200
@@ -1,0 +2,6 @@
+Mon Aug 10 12:26:30 UTC 2015 - jk...@suse.de
+
+- Move update logic to proper scriptlet
+ * Replace 'etc' with %{_sysconfdir} macro
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.iSaHMG/_old 2015-08-11 08:27:01.0 +0200
+++ /var/tmp/diff_new_pack.iSaHMG/_new 2015-08-11 08:27:01.0 +0200
@@ -1,7 +1,7 @@
#
# spec file for package squid
#
-# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -312,6 +312,16 @@
sed -i '/emulate_httpd_log/d' /etc/%{name}/%{name}.conf
fi
+# update mode?
+if [ "$1" -gt "1" ]; then
+ if [ -e %{_sysconfdir}/%{name}.conf -a ! -L %{_sysconfdir}/%{name}.conf -a !
-e %{_sysconfdir}/%{name}/%{name}.conf ]; then
+echo "moving %{_sysconfdir}/%{name}.conf to
%{_sysconfdir}/%{name}/%{name}.conf"
+mv /%{_sysconfdir}/%{name}.conf /%{_sysconfdir}/%{name}/%{name}.conf
+ fi
+ # default group changed from nogroup to squid
+ %{_sbindir}/usermod -g %{name} %{name}
+fi
+
%if 0%{?has_systemd}
%service_add_pre %{name}.service
%endif
@@ -327,15 +337,6 @@
%run_permissions
%endif
%endif
-# update mode?
-if [ "$1" -gt "1" ]; then
- if [ -e etc/%{name}.conf -a ! -L etc/%{name}.conf -a ! -e
etc/%{name}/%{name}.conf ]; then
-echo "moving %{_sysconfdir}/%{name}.conf to
%{_sysconfdir}/%{name}/%{name}.conf"
-mv /etc/%{name}.conf /etc/%{name}/%{name}.conf
- fi
- # default group changed from nogroup to squid
- %{_sbindir}/usermod -g %{name} %{name}
-fi
%if 0%{?has_systemd}
%service_add_post squid.service
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2015-08-07 00:24:30
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-07-22
09:19:55.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-08-07
00:24:31.0 +0200
@@ -1,0 +2,22 @@
+Wed Aug 5 21:20:28 UTC 2015 - ch...@computersalat.de
+
+- Changes to squid-3.5.7 (01 Aug 2015):
+ * Bug 4293: wrong SNI sent to server after URL-rewrite
+ * Bug 4251: incorrect instance name for memory segments in /dev/shm
+ * Bug 4227: invalid key in AuthUserHashPointer causing assertation failure
+ * Bug 3345: support %un (any available user name) format code for external
ACLs.
+ * basic_smb_auth: Fix several old issues identified by Debian users
+ * Support ssl-bump splicing to origin cache_peer
+ * Fix SSL errors relayed using invalid certificates
+ * Fix crash in TcpAccepter with profiler enabled
+ * Fix some cases of ssl_crtd SSL certificate DB corruption
+ * Fix performance regression in SBuf::chop operations
+ * Improve handling of client connections on shutdown
+ * Handle exceptions during squid.conf parse
+ * Make pod2man an optional dependency
+ * ... and polishing for several cache.log notification messages
+ * Do not blindly forward cache peer CONNECT responses (CVE-2015-5400)
+- rebase patch
+ * squid-config.patch
+
+---
Old:
squid-3.5.6.tar.xz
squid-3.5.6.tar.xz.asc
New:
squid-3.5.7.tar.xz
squid-3.5.7.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.QoOPls/_old 2015-08-07 00:24:33.0 +0200
+++ /var/tmp/diff_new_pack.QoOPls/_new 2015-08-07 00:24:33.0 +0200
@@ -1,7 +1,7 @@
#
# spec file for package squid
#
-# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -20,7 +20,7 @@
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.5.6
+Version:3.5.7
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
++ squid-3.5.6.tar.xz -> squid-3.5.7.tar.xz ++
12264 lines of diff (skipped)
retrying with extended exclude list
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude
config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4
--exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh
old/squid-3.5.6/ChangeLog new/squid-3.5.7/ChangeLog
--- old/squid-3.5.6/ChangeLog 2015-07-03 11:12:52.0 +0200
+++ new/squid-3.5.7/ChangeLog 2015-08-01 08:08:17.0 +0200
@@ -1,3 +1,21 @@
+Changes to squid-3.5.7 (01 Aug 2015):
+
+ - Bug 4293: wrong SNI sent to server after URL-rewrite
+ - Bug 4251: incorrect instance name for memory segments in /dev/shm
+ - Bug 4227: invalid key in AuthUserHashPointer causing assertation
failure
+ - Bug 3345: support %un (any available user name) format code for
external ACLs.
+ - basic_smb_auth: Fix several old issues identified by Debian users
+ - Support ssl-bump splicing to origin cache_peer
+ - Fix SSL errors relayed using invalid certificates
+ - Fix crash in TcpAccepter with profiler enabled
+ - Fix some cases of ssl_crtd SSL certificate DB corruption
+ - Fix performance regression in SBuf::chop operations
+ - Improve handling of client connections on shutdown
+ - Handle exceptions during squid.conf parse
+ - Make pod2man an optional dependency
+ - ... and polishing for several cache.log notification messages
+ - ... and all fixes from squid 3.4.14
+
Changes to squid-3.5.6 (03 Jul 2015):
- Bug 4274: ssl_crtd.8 not being installed
@@ -182,6 +200,10 @@
- ... and many error page translation updates
- ... and much code cleanup and polishing
+Changes to squid-3.4.14 (01 Aug 2015):
+
+ - Do not blindly forward cache peer CONNECT responses (CVE-2015-5400)
+
Changes to squid-3.4.13 (01 May 2015):
- Bug 4212: ssl_crtd crashes with corrupt database
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude
config.guess --exclude '*.pot' --exclude
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2015-07-22 09:19:52
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-06-06
09:54:13.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-07-22
09:19:55.0 +0200
@@ -1,0 +2,23 @@
+Tue Jul 21 06:44:15 UTC 2015 - mplus...@suse.com
+
+- Update to 3.5.6
+ * Bug 4274: ssl_crtd.8 not being installed
+ * Bug 4193: memory leak on FTP listings
+ * Bug 4183: segfault when freeing https_port clientca on
+reconfigure or exit
+ * Bug 3875: bad mimeLoadIconFile error handling
+ * Bug 3483: assertion failed store.cc:1866: 'isEmpty()'
+ * Bug 3329: pinned server connection is not closed properly
+ * TLS: Disable client-initiated renegotiation
+ * ext_edirectory_userip_acl: fix uninitialized variable
+ * Support custom OIDs in *_cert ACLs
+ * Fix CONNECT failover to IPv4 after trying broken IPv6 servers
+ * Use relative-URL in errorpage.css for SN.png
+ * Do not blindly forward cache peer CONNECT responses
+ * Fix assertion String.cc:221: "str"
+ * Fix assertion comm.cc:759: "Comm::IsConnOpen(conn)" in
+ConnStateData::getSslContextDone
+ * Translations: add Spanish US dialect alias
+- Drop no longer needed squid-nobuilddates.patch
+
+---
Old:
squid-3.5.5.tar.xz
squid-3.5.5.tar.xz.asc
squid-nobuilddates.patch
New:
squid-3.5.6.tar.xz
squid-3.5.6.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.ID0kSP/_old 2015-07-22 09:19:56.0 +0200
+++ /var/tmp/diff_new_pack.ID0kSP/_new 2015-07-22 09:19:56.0 +0200
@@ -20,7 +20,7 @@
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.5.5
+Version:3.5.6
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
@@ -44,8 +44,6 @@
Source99: squid-rpmlintrc
# some useful defaults for squid
Patch100: %{name}-config.patch
-# make build compare happy - remove build dates
-Patch101: %{name}-nobuilddates.patch
# patch fixes kerberos principalname handling
(http://bugs.squid-cache.org/show_bug.cgi?id=4042)
Patch103: squid-brokenad.patch
#patch fix SLE 11 target... BAD PATCH
@@ -139,7 +137,6 @@
%patch100
perl -p -i -e 's|%{_prefix}/local/bin/perl|%{_bindir}/perl|' `find -name
"*.pl"`
chmod a-x CREDITS
-%patch101
%patch103
%patch104
++ squid-3.5.5.tar.xz -> squid-3.5.6.tar.xz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.5.5/ChangeLog new/squid-3.5.6/ChangeLog
--- old/squid-3.5.5/ChangeLog 2015-05-28 13:06:38.0 +0200
+++ new/squid-3.5.6/ChangeLog 2015-07-03 11:12:52.0 +0200
@@ -1,3 +1,21 @@
+Changes to squid-3.5.6 (03 Jul 2015):
+
+ - Bug 4274: ssl_crtd.8 not being installed
+ - Bug 4193: memory leak on FTP listings
+ - Bug 4183: segfault when freeing https_port clientca on reconfigure or
exit
+ - Bug 3875: bad mimeLoadIconFile error handling
+ - Bug 3483: assertion failed store.cc:1866: 'isEmpty()'
+ - Bug 3329: pinned server connection is not closed properly
+ - TLS: Disable client-initiated renegotiation
+ - ext_edirectory_userip_acl: fix uninitialized variable
+ - Support custom OIDs in *_cert ACLs
+ - Fix CONNECT failover to IPv4 after trying broken IPv6 servers
+ - Use relative-URL in errorpage.css for SN.png
+ - Do not blindly forward cache peer CONNECT responses
+ - Fix assertion String.cc:221: "str"
+ - Fix assertion comm.cc:759: "Comm::IsConnOpen(conn)" in
ConnStateData::getSslContextDone
+ - Translations: add Spanish US dialect alias
+
Changes to squid-3.5.5 (28 May 2015):
- Regression Bug 4132: short_icon_urls with global_internal_static on
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.5.5/RELEASENOTES.html
new/squid-3.5.6/RELEASENOTES.html
--- old/squid-3.5.5/RELEASENOTES.html 2015-05-28 13:58:09.0 +0200
+++ new/squid-3.5.6/RELEASENOTES.html 2015-07-03 12:15:40.0 +0200
@@ -2,10 +2,10 @@
- Squid 3.5.5 release notes
+ Squid 3.5.6 release notes
-Squid 3.5.5 release notes
+Squid 3.5.6 release notes
Squid Developers
@@ -63,7 +63,7 @@
1. Notice
-The Squid Team are pleased to announce the release of Squid-3.5.5.
+The Squid Team are pleased to announce the release of Squid-3.5.6.
This new release is available for d
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2015-06-06 09:54:03
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-05-23
13:07:59.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-06-06
09:54:13.0 +0200
@@ -1,0 +2,22 @@
+Thu Jun 4 22:31:30 UTC 2015 - mplus...@suse.com
+
+- Update to 3.5.5
+ * Regression Bug 4132: short_icon_urls with
+global_internal_static on
+ * Bug 4238: assertion Read.cc:205: "params.data == data"
+ * Bug 4236: SSL negotiation error of 'success'
+ * Bug 3930: assertion 'connIsUsable(http->getConn())'
+ * Fix assertion MemBuf.cc:380: "new_cap > (size_t) capacity" in
+SSL I/O buffer
+ * Fix assertion errorpage.cc:600: "entry->isEmpty()"
+ * Fix comm_connect_addr on failures returns Comm:OK
+ * Fix missing external ACL helper notes
+ * Fix "Not enough space to hold server hello message" error
+message
+ * Fix segmentation fault inside
+Adaptation::Icap::Xaction::swanSong
+ * Prevent unused ssl_crtd helpers being run
+- Update permission in logrotate config
+- Refresh squid-config.patch
+
+---
Old:
squid-3.5.4.tar.xz
squid-3.5.4.tar.xz.asc
New:
squid-3.5.5.tar.xz
squid-3.5.5.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.llOzNe/_old 2015-06-06 09:54:14.0 +0200
+++ /var/tmp/diff_new_pack.llOzNe/_new 2015-06-06 09:54:14.0 +0200
@@ -20,7 +20,7 @@
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.5.4
+Version:3.5.5
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
++ squid-3.5.4.tar.xz -> squid-3.5.5.tar.xz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.5.4/ChangeLog new/squid-3.5.5/ChangeLog
--- old/squid-3.5.4/ChangeLog 2015-05-01 13:27:20.0 +0200
+++ new/squid-3.5.5/ChangeLog 2015-05-28 13:06:38.0 +0200
@@ -1,3 +1,19 @@
+Changes to squid-3.5.5 (28 May 2015):
+
+ - Regression Bug 4132: short_icon_urls with global_internal_static on
+ - Bug 4238: assertion Read.cc:205: "params.data == data"
+ - Bug 4236: SSL negotiation error of 'success'
+ - Bug 3930: assertion 'connIsUsable(http->getConn())'
+ - Fix assertion MemBuf.cc:380: "new_cap > (size_t) capacity" in SSL I/O
buffer
+ - Fix assertion errorpage.cc:600: "entry->isEmpty()"
+ - Fix comm_connect_addr on failures returns Comm:OK
+ - Fix missing external ACL helper notes
+ - Fix "Not enough space to hold server hello message" error message
+ - Fix segmentation fault inside Adaptation::Icap::Xaction::swanSong
+ - Prevent unused ssl_crtd helpers being run
+ - ... and some code cleanup and portability updates
+ - ... and several documentation updates
+
Changes to squid-3.5.4 (01 May 2015):
- Bug 4234: comm_connect_addr uses errno incorrectly
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.5.4/RELEASENOTES.html
new/squid-3.5.5/RELEASENOTES.html
--- old/squid-3.5.4/RELEASENOTES.html 2015-05-01 14:25:08.0 +0200
+++ new/squid-3.5.5/RELEASENOTES.html 2015-05-28 13:58:09.0 +0200
@@ -2,10 +2,10 @@
- Squid 3.5.4 release notes
+ Squid 3.5.5 release notes
-Squid 3.5.4 release notes
+Squid 3.5.5 release notes
Squid Developers
@@ -63,7 +63,7 @@
1. Notice
-The Squid Team are pleased to announce the release of Squid-3.5.4.
+The Squid Team are pleased to announce the release of Squid-3.5.5.
This new release is available for download from
http://www.squid-cache.org/Versions/v3/3.5/";>http://www.squid-cache.org/Versions/v3/3.5/
or the
http://www.squid-cache.org/Download/http-mirrors.html";>mirrors.
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.5.4/acinclude/ax_cxx_0x_types.m4
new/squid-3.5.5/acinclude/ax_cxx_0x_types.m4
--- old/squid-3.5.4/acinclude/ax_cxx_0x_types.m42015-05-01
13:27:20.0 +0200
+++ new/squid-3.5.5/acinclude/ax_cxx_0x_types.m42015-05-28
13:06:38.0 +0200
@@ -17,8 +17,8 @@
AC_MSG_RESULT(yes)], [
HAVE_NULLPTR=no
AC_MSG_RESULT(no)])
- if test "x$HAVE_NULLPTR" = xyes; then
-AC_DEFINE(HAVE_NULLPTR, 1, [Define to 1 if nullptr is supported])
+ if test "x$HAVE_NULLPTR" = xno; then
+AC_DEFINE(nullptr, NULL, [Leave undefined if nul
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2015-05-23 13:07:58
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-05-06
12:10:50.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-05-23
13:07:59.0 +0200
@@ -1,0 +2,20 @@
+Fri May 22 17:43:50 UTC 2015 - mplus...@suse.com
+
+- Update to 3.5.4
+ * Bug 4234: comm_connect_addr uses errno incorrectly
+ * Bug 4231: fd_open() not correctly handling UDS socket descriptions
+ * Bug 4226: digest_edirectory_auth: found but cannot be built
+ * Bug 4198: assertion failed: client_side.h:364: "sslServerBump == srvBump"
+ * Bug 3775: Disable HTTP/1.1 pipeline feature for pinned connections
+ * Fix require-proxy-header preventing HTTPS proxying and ssl-bump
+ * Fix Negotiate/Kerberos authentication request size exceeds output buffer
size
+ * Fix SQUID_X509_V_ERR_DOMAIN_MISMATCH errors while accessing sites with
valid certificates
+ * Add server_name ACL matching server name(s) obtained from various sources
+ * Add Kerberos support for MAC OS X 10.x
+ * Support for resuming TLS sessions
+ * ... and some portability and compile fixes
+ * ... and several documentation updates
+ * ... and all fixes from squid 3.4.13
+- Refresh patches
+
+---
Old:
squid-3.5.3.tar.xz
squid-3.5.3.tar.xz.asc
New:
squid-3.5.4.tar.xz
squid-3.5.4.tar.xz.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.qmItrb/_old 2015-05-23 13:08:00.0 +0200
+++ /var/tmp/diff_new_pack.qmItrb/_new 2015-05-23 13:08:00.0 +0200
@@ -20,7 +20,7 @@
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.5.3
+Version:3.5.4
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
@@ -429,6 +429,7 @@
%{_sbindir}/basic_fake_auth
%{_sbindir}/basic_getpwnam_auth
%{_sbindir}/basic_ldap_auth
+%{_sbindir}/digest_edirectory_auth
## will get removed in 3.6 series
# http://www.squid-cache.org/Versions/v3/3.5/RELEASENOTES.html#toc2.8
%{_sbindir}/basic_msnt_multi_domain_auth
++ squid-3.5.3.tar.xz -> squid-3.5.4.tar.xz ++
3932 lines of diff (skipped)
++ squid-3.5.3.tar.xz.asc -> squid-3.5.4.tar.xz.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-3.5.3.tar.xz.asc 2015-04-27
13:05:13.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.4.tar.xz.asc
2015-05-23 13:07:59.0 +0200
@@ -1,8 +1,8 @@
-File: squid-3.5.3.tar.xz
-Date: Sat Mar 28 11:51:30 UTC 2015
-Size: 2283580
-MD5 : 6cd553300a2253c0913f498beb79ee51
-SHA1: 6919305e16f59387197cf543f525e41f510b4727
+File: squid-3.5.4.tar.xz
+Date: Fri May 1 12:25:42 UTC 2015
+Size: 2289772
+MD5 : 5b53d5bb47fa033b76857f7956d0c36b
+SHA1: 71a04a5f7c4c38464a8a08ae1089c47abcea0e49
Key : 0xFF5CF463
fingerprint = EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463
keyring = http://www.squid-cache.org/pgp.asc
@@ -10,11 +10,11 @@
-BEGIN PGP SIGNATURE-
Version: GnuPG v1
-iQEcBAABAgAGBQJVFpsoAAoJELJo5wb/XPRj4KYH/RU/x21yI0nI2sI0ilTUbG4K
-W0mFM1YcbjtaRreXU6zgc7kVLPiypRYeXP+GDvADK3uEmXCvjulyT2pBqCdiftsV
-BC2kBQDH4m1XUICE+vxKC2LmDAAPFxH0yOTiNltH1BEjNrjUcAPAlfuforVUz84u
-VbiVcKMHQ3UShCsdLU3ZfM9qt5AUI6IEKDYIrfOJ+zNg8tEdMXlA3vSno1M2LQ32
-v0wKJJ0WtT8KETOI2HAFAXJJFImJczWh480ffQV76vctT1BAmtue2CRpH0IKpNbZ
-8WBIx2wraxzBSu+YAvjinnabLMblyzPfkwuP4U4j0JBGml9A3Us+P/unIlsEGj0=
-=rz1P
+iQEcBAABAgAGBQJVQ3PPAAoJELJo5wb/XPRjdI8H/3vB73EXjW0nzu9iJr6gN7vs
+PZjle4b6cT/76nbAf0O4R5m/HAeIfuoWLsHoVCysroRMcVqni0su1swqavMj/d27
+ikhSyR/JlXArFFumV0Nj1srZuY11Qz9dohLqVBwX8dzuqzFrqF5jQMvM2bKK1Pm9
+hUF+tFZP4sF/y7NBdHMKkb7pRLLc8Yn75wZtg4FAhLY6HfM58e3Sn5Y3JUJ4Lyt0
+6YqnzDQzNAs6YCrsLnY/AY7TKL8hAXMmvJXP9q1wn31lCmzx5KNz3b9YTq+Ul1aB
+XqyXyP2FptkUrPJ448f0hgAsrDNfs2rpAblq35ueo6fAV4gwgtmlIb81Y5w0eTQ=
+=PwZH
-END PGP SIGNATURE-
++ squid-brokenad.patch ++
--- /var/tmp/diff_new_pack.qmItrb/_old 2015-05-23 13:08:02.0 +0200
+++ /var/tmp/diff_new_pack.qmItrb/_new 2015-05-23 13:08:02.0 +0200
@@ -74,7 +74,7 @@
===
--- helpers/external_acl/kerberos_ldap_group/support.h.orig
+++ helpers/external_acl/kerberos_ldap_group/support.h
-@@ -101,6 +101,7 @@ struct main_args {
+@@ -105,6 +105,7 @@ struct main_args {
int rc_allow;
int AD;
int mdepth;
@@ -82,7 +82,7 @@
char *ddomain;
struct gdstruct *groups;
struct ndstruct *ndoms;
-@@ -160,7 +161,7 @@
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2015-05-06 12:10:47
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-04-28
11:47:11.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-05-06
12:10:50.0 +0200
@@ -1,0 +2,5 @@
+Wed May 6 08:32:28 UTC 2015 - mplus...@suse.com
+
+- Remove emulate_httpd_log from config on update
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.zY66Q3/_old 2015-05-06 12:10:51.0 +0200
+++ /var/tmp/diff_new_pack.zY66Q3/_new 2015-05-06 12:10:51.0 +0200
@@ -310,6 +310,10 @@
rm -rf "$error_dir/$i" || true
fi
done
+# emulate_httpd_log is gone with 3.5
+if [ -e etc/%{name}/%{name}.conf ]; then
+ sed -i '/emulate_httpd_log/d' /etc/%{name}/%{name}.conf
+fi
%if 0%{?has_systemd}
%service_add_pre %{name}.service
@@ -330,7 +334,7 @@
if [ "$1" -gt "1" ]; then
if [ -e etc/%{name}.conf -a ! -L etc/%{name}.conf -a ! -e
etc/%{name}/%{name}.conf ]; then
echo "moving %{_sysconfdir}/%{name}.conf to
%{_sysconfdir}/%{name}/%{name}.conf"
-mv etc/%{name}.conf etc/%{name}/%{name}.conf
+mv /etc/%{name}.conf /etc/%{name}/%{name}.conf
fi
# default group changed from nogroup to squid
%{_sbindir}/usermod -g %{name} %{name}
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2015-04-28 11:47:10
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-04-27
13:05:13.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-04-28
11:47:11.0 +0200
@@ -1,0 +2,5 @@
+Tue Apr 28 08:59:41 UTC 2015 - mplus...@suse.com
+
+- Fix update from 3.4 to 3.5
+
+---
@@ -4 +9 @@
-- fix SLE 11 build with older kerberos libraries
+- Fix SLE 11 build with older kerberos libraries
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.AsgkRD/_old 2015-04-28 11:47:12.0 +0200
+++ /var/tmp/diff_new_pack.AsgkRD/_new 2015-04-28 11:47:12.0 +0200
@@ -301,6 +301,16 @@
%{_sbindir}/usermod -G winbind %{name} 2>/dev/null
fi
+%pretrans
+# Directory to symlink is not working in RPM so workaround it
+# Occurs when updating from 3.4 to 3.5
+error_dir="%{_datadir}/%{name}/errors"
+for i in zh-cn zh-tw; do
+ if [ -d "$error_dir/$i" ]; then
+ rm -rf "$error_dir/$i" || true
+ fi
+done
+
%if 0%{?has_systemd}
%service_add_pre %{name}.service
%endif
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2015-04-27 13:05:12
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-03-11
09:56:45.0 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-04-27
13:05:13.0 +0200
@@ -1,0 +2,63 @@
+Sun Apr 26 11:18:42 UTC 2015 - mplus...@suse.com
+
+- fix SLE 11 build with older kerberos libraries
+ * squid-old-kerberos.patch
+
+---
+Wed Apr 1 06:55:04 UTC 2015 - mplus...@suse.com
+
+- Update to 3.5.3
+ * Regression Bug 4213: negotiate_kerberos_auth: freeing non-dynamic memory
+ * Regression Bug 4206: Incorrect connection close on expect:100-continue
+ * Bug 4204: ./configure does not abort when required helpers cannot be built
+ * Bug 3805: support shared memory on MacOS X in Mem::IPC::Segment
+ * Bug 2907: high CPU usage on CONNECT when using delay pools
+ * basic_getpwnam_auth: fail authentication on crypt() failures
+ * basic_nis_auth: fail authentication on crypt() failures
+ * ext_kerberos_ldap_group_acl: Heimdal support improvements
+ * ext_wbinfo_group_acl: Perl 5.20 support
+ * ... and several compile issues
+
+---
+Sat Mar 21 13:16:42 UTC 2015 - mplus...@suse.com
+
+- Use xz compressed source
+- Update to 3.5.2
+ * Regression Bug 4176: Digest auth too many helper lookups
+ * Regression Bug 4180: not-fully-initialized data member in
+ACLUserData
+ * Bug 4172: Solaris broken krb5-config
+ * Bug 4073: Cygwin compile errors
+ * Bug 3919: remove several never-true / never-false comparisons
+ * HTTPS: Add missing root CAs when validating chains that passed
+internal checks
+ * Fix some cbdataFree related memory leaks
+ * Quieten CBDATA 'leak' messages
+ * Set SNI information in transparent bumping mode
+ * negotiate_kerberos_auth: fix krb5.conf backward compatibility
+ * Fix memory leaks in cachemgr.cgi URL parser
+ * Fix sslproxy_options in peek-and-splice mode
+ * ... and fix several portability and build issues
+ * ... and some documentation updates
+ * ... and all fixes from squid 3.4.11
+
+---
+Thu Feb 19 01:09:38 UTC 2015 - ch...@computersalat.de
+
+- Update to 3.5.1 (13 Jan 2015):
+ * Fix handling of invalid SSL server certificates when splicing connections
+ * basic_smb_lm_auth: Simplified MSNT basic auth helper
+ * squidclient: Fix -A and -P options
+ * ... and several portability fixes
+ * ... and all fixes from squid 3.4.11
+ * ... and a lot of documentation updates
+- removed obsolete patch
+ * squid-compiled_without_RPM_OPT_FLAGS.patch
+- rebased patches
+ * squid-config.patch
+ * squid-nobuilddates.patch
+ * squid-brokenad.patch
+- replace configure option
+ * --enable-ssl > --with-openssl
+
+---
Old:
squid-3.4.11.tar.bz2
squid-3.4.11.tar.bz2.asc
squid-compiled_without_RPM_OPT_FLAGS.patch
New:
squid-3.5.3.tar.xz
squid-3.5.3.tar.xz.asc
squid-old-kerberos.patch
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.6TE7zT/_old 2015-04-27 13:05:14.0 +0200
+++ /var/tmp/diff_new_pack.6TE7zT/_new 2015-04-27 13:05:14.0 +0200
@@ -1,7 +1,7 @@
#
# spec file for package squid
#
-# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -20,14 +20,14 @@
%define squidconfdir %{_sysconfdir}/squid
Name: squid
-Version:3.4.11
+Version:3.5.3
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
Group: Productivity/Networking/Web/Proxy
-Url:http://www.squid-cache.org/Versions/v3/3.4
-Source0:
http://www.squid-cache.org/Versions/v3/3.4/%{name}-%{version}.tar.bz2
-Source1:
http://www.squid-cache.org/Versions/v3/3.4/%{name}-%{version}.tar.bz2.asc
+Url:http://www.squid-cache.org/Versions/v3/3.5
+Source0:
http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz
+Source1:
http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz.asc
Source3:squid.init
Source4:squid.sysconfig
@@ -46,11 +46,10 @@
Patch100: %{name}-config.patch
# make build com
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2015-03-11 09:56:44
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-01-09
20:51:01.0 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-03-11
09:56:45.0 +0100
@@ -1,0 +2,34 @@
+Wed Feb 18 23:28:06 UTC 2015 - ch...@computersalat.de
+
+- remove obsolete RELEASENOTES.html
+ * included in package
+
+---
+Wed Feb 11 22:35:30 UTC 2015 - mplus...@suse.com
+
+- Update to 3.4.11:
+ * cachemgr.cgi: memory leak in request parser
+ * Fix typo on commStartSslClose
+ * Fix SQUID_CC_REQUIRE_ARGUMENT autoconf macro
+ * Bug #3760: squidclient ignores --disable-ipv6
+ * Bug #3664: ssl_crtd fails to build on OpenSolaris/OpenIndiana/Solaris 11
+ * Bug #3754: configure doesnt detect IPFilter 5.1.2 system headers
+ * Bug #4164: SEGFAULT when %W formating code used in errorpages
+ * Deleting first fs left psstate->servers pointing to uninitialized memory
+ * Maintenance: check release notes on packaging
+ * Bug #4057: Avoid on-exit crashes when adaptation is enabled.
+
+---
+Sat Jan 10 01:08:40 UTC 2015 - ch...@computersalat.de
+
+- recover old spec
+ * merge in suggested changes from tchvatal
+- fix permissions for SLE11
+ * revert suid bit for pinger and basic_pam_auth
+add them to permissions file (commented)
+- readd deleted files
+ * RELEASENOTES
+ * permissions (needed for SLE11)
+ * init.rh
+
+---
Old:
squid-3.4.10.tar.bz2
squid-3.4.10.tar.bz2.asc
New:
squid-3.4.11.tar.bz2
squid-3.4.11.tar.bz2.asc
squid.init
squid.init.rh
squid.permissions
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.YvjQs3/_old 2015-03-11 09:56:47.0 +0100
+++ /var/tmp/diff_new_pack.YvjQs3/_new 2015-03-11 09:56:47.0 +0100
@@ -18,8 +18,9 @@
%define squidlibdir %{_libdir}/squid
%define squidconfdir %{_sysconfdir}/squid
+
Name: squid
-Version:3.4.10
+Version:3.4.11
Release:0
Summary:A fully featured HTTP/1.0 proxy
License:GPL-2.0+
@@ -27,13 +28,18 @@
Url:http://www.squid-cache.org/Versions/v3/3.4
Source0:
http://www.squid-cache.org/Versions/v3/3.4/%{name}-%{version}.tar.bz2
Source1:
http://www.squid-cache.org/Versions/v3/3.4/%{name}-%{version}.tar.bz2.asc
+
+Source3:squid.init
Source4:squid.sysconfig
Source5:pam.squid
Source6:unsquid.pl
Source7:%{name}.logrotate
+Source9:%{name}.permissions
Source10: README.kerberos
Source11: %{name}.service
Source13: %{name}.keyring
+Source14: squid.init.rh
+
# do not show some rpmlint warnings
Source99: squid-rpmlintrc
# some useful defaults for squid
@@ -45,47 +51,89 @@
Patch102: %{name}-compiled_without_RPM_OPT_FLAGS.patch
# patch fixes kerberos principalname handling
(http://bugs.squid-cache.org/show_bug.cgi?id=4042)
Patch103: squid-brokenad.patch
-BuildRequires: cyrus-sasl-devel
+
+BuildRoot: %{_tmppath}/%{name}-%{version}-build
BuildRequires: db-devel
+# needed by bootstrap.sh
+BuildRequires: cyrus-sasl-devel
BuildRequires: ed
BuildRequires: expat
+#
BuildRequires: fdupes
BuildRequires: gcc-c++
BuildRequires: krb5-devel
BuildRequires: libcap-devel
BuildRequires: libexpat-devel
+%if 0%{?suse_version} <= 1140
+BuildRequires: libtool
+%else
BuildRequires: libtool >= 2.4
+%endif
+%if 0%{?suse_version} < 1220
+BuildRequires: libxml2-devel
+%else
+BuildRequires: pkgconfig(libxml-2.0)
+%endif
BuildRequires: openldap2-devel
BuildRequires: opensp-devel
BuildRequires: openssl-devel
BuildRequires: pam-devel
BuildRequires: pkgconfig
BuildRequires: sharutils
-BuildRequires: systemd
-BuildRequires: pkgconfig(libxml-2.0)
-Requires: logrotate
-Requires: sed
+
+%if 0%{?suse_version}
Requires(post): %fillup_prereq
-Requires(pre): %insserv_prereq
Requires(pre): %{_bindir}/getent
+%if 0%{?suse_version} < 1140
Requires(pre): permissions
+%else
+Requires(pre): permissions >= 2014.11
+%endif
Requires(pre): pwdutils
-Provides: %{name}3 = %{version}
+%else
+Requires(pre): shadow-utils
+Requires(post): /sbin/chkconfig
+Requires(preun): /sbin/service /sbin/chkconfig
+Requires(postun): /sbin/service
+%endif
+
+%if 0%{?suse_version} > 1210
+BuildRequires: systemd
+%{?systemd
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-01-09 20:50:52 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2014-04-05 16:48:24.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-01-09 20:51:01.0 +0100 @@ -1,0 +2,197 @@ +Fri Jan 9 10:19:10 UTC 2015 - tchva...@suse.com + +- Cleanup with spec-cleaner +- Version bump to 3.4.10: + * Fix bootstrap.sh dependency on SPONSORS.list + * HTTP/2: Support 421 (Misdirected Request) status code + * Alternate-Protocol is a hop-by-hop header + * Bug #4148: external_acl_type header format does not accept the new libformat syntax + * Bug #4033: Rebuild corrupted ssl_db/size file + * Bug #3902: Docs: external_acl_type cache hash key + * Bug #4145: squid_endian.h compile errors with OpenBSD 5.6 + * Fix segmentation fault in ACLUrlPathStrategy::match +- Remove support for other distros as we build for opensuse anyway + +--- +Fri Jan 2 16:07:38 UTC 2015 - bo...@steki.net + +- remove permissions.easy and permissions.paranoid files from package + as they are not used any more + +--- +Tue Dec 9 12:42:48 UTC 2014 - bo...@steki.net + +- remove setBadness in rpmlintrc as it should be already in Factory + permissions package handled + +--- +Mon Dec 8 15:28:42 UTC 2014 - meiss...@suse.com + +- %verifyscript is its own section, move out of the %postun section + +--- +Tue Dec 2 10:27:49 UTC 2014 - dims...@opensuse.org + +- Use URLs to paths that the source validator actually understands + and make this acceptable for Tumbleweed. + +--- +Thu Nov 27 21:18:35 UTC 2014 - ch...@computersalat.de + +- fix for boo#894636 (squid's logrotate snippet runs init script) + * modify squid.logrotate to work on both systemd and SysVinit + +--- +Thu Nov 27 13:16:58 UTC 2014 - lmue...@suse.com + +- Changes to 3.4.9 (31 Oct 2014): + + Regression fix: ext_kerberos_ldap_group_acl typo in 3.4.7 update + + Bug 4102: sslbump cert contains only a dot character in key usage extension + + Bug 4093: source-maintenance.sh errors and warnings due to wrong +tools/options + + Bug 4088: memory leak in external_acl_type helper with cache=0 or ttl=0 + + Bug 4024: Bad host/IP ::1 when using IPv4-only environment + + Bug 3803: ident leaks memory on failure + + kerberos_ldap_group/cert_tool: Remove ksh dependency; +obsoletes squid-cert_tool_use_bash_not_ksh.patch + + ... and some automated code style updates + + ... and some documentation updates +- Changes to 3.4.8 (15 Sep 2014): + + Fix off by one in SNMP subsystem + + pinger: Fix various ICMP handling issues; CVE-2014-7141; CVE-2014-7142; +http://www.squid-cache.org/Advisories/SQUID-2014_4.txt; bnc#891268 +obsoletes squid-icmp-DoS.patch + +--- +Wed Nov 26 21:45:48 UTC 2014 - lmue...@suse.com + +- Remove dependency on gpg-offline as signature checking is implemented in the + source validator. + +--- +Wed Sep 24 11:49:04 UTC 2014 - ch...@computersalat.de + +- fix spec and changes file + +--- +Tue Sep 16 09:31:35 UTC 2014 - bo...@steki.net + +- update logrotate file + * postrotate now defaults to 'systemd' + +--- +Tue Sep 16 08:35:11 UTC 2014 - bo...@steki.net + +- fix for icmp pinger DOS bnc#891268 + +--- +Mon Sep 15 11:36:51 UTC 2014 - ch...@computersalat.de + +- some spec cleanup +- some systemd/SysVinit fixes +- fix sysconfig file for ! suse_version + +--- +Thu Sep 11 15:25:01 UTC 2014 - bo...@steki.net + +- replaced permissions handling using setuid bit with use of + linux capabilities (on supported systems) +- general cleanup of .spec file and systemd handling + +--- +Fri Sep 5 15:04:47 UTC 2014 - ch...@computersalat.de + +- Changes to 3.4.7 (28 Aug 2014): + * Regression Fix: Kerberos LDAP authorizing groups with principle subdomain + * Bug 4080: worker hangs when client identd is not responding + * Bug 3966: Add
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2014-04-05 16:48:23
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2014-03-18
14:07:04.0 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2014-04-05
16:48:24.0 +0200
@@ -1,0 +2,7 @@
+Fri Mar 28 18:46:44 UTC 2014 - ch...@computersalat.de
+
+- fix pidfile dir
+ * systemd -> /run/squid.pid
+ * SysVinit -> /var/run/squid.pid
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.sYd2h0/_old 2014-04-05 16:48:25.0 +0200
+++ /var/tmp/diff_new_pack.sYd2h0/_new 2014-04-05 16:48:25.0 +0200
@@ -92,7 +92,7 @@
BuildRequires: pkgconfig(libxml-2.0)
%endif
-%if 0%{?suse_version} > 1140
+%if 0%{?suse_version} >= 1210
BuildRequires: systemd
%{?systemd_requires}
%define has_systemd 1
@@ -151,7 +151,11 @@
--datadir=/usr/share/squid \
--sharedstatedir=/var/squid \
--with-logdir=/var/log/squid \
+%if 0%{?has_systemd}
--with-pidfile=/run/squid.pid \
+%else
+ --with-pidfile=/var/run/squid.pid \
+%endif
--with-dl \
--enable-disk-io \
--enable-storeio \
++ squid.service ++
--- /var/tmp/diff_new_pack.sYd2h0/_old 2014-04-05 16:48:25.0 +0200
+++ /var/tmp/diff_new_pack.sYd2h0/_new 2014-04-05 16:48:25.0 +0200
@@ -10,7 +10,7 @@
ExecReload=/usr/sbin/squid -F $SQUID_START_OPTIONS -f /etc/squid/squid.conf -k
reconfigure
ExecStop=/usr/sbin/squid -F -f /etc/squid/squid.conf -k shutdown
LimitNOFILE=4096
-PIDFile=/var/run/squid.pid
+PIDFile=/run/squid.pid
[Install]
WantedBy=multi-user.target
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2014-03-18 14:07:03
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2014-01-23
15:56:49.0 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2014-03-18
14:07:04.0 +0100
@@ -1,0 +2,48 @@
+Sun Mar 16 08:54:50 UTC 2014 - bo...@steki.net
+
+- added patch to force kerberos principalname handling
+ ( http://bugs.squid-cache.org/show_bug.cgi?id=4042 )
+ * squid-brokenad.patch
+
+---
+Sat Mar 15 12:11:30 UTC 2014 - ch...@computersalat.de
+
+- Changes to squid-3.4.4 (09 Mar 2014):
+ * Bug 4029: intercepted HTTPS requests bypass caching checks
+ * Bug 4001: remove use of strsep()
+ * Bug 3186 and 3628: Digest authentication always sending stale=false for
nonce
+ * Fix stalled concurrent rock store reads
+ * Fix helper ID number assignment
+ * Fix build failures from CMSG related definitions
+ * Fix build failures from libcompat unsafe.h protections
+ * Copyright: Relicense helpers by Treehouse Networks Ltd.
+ * ... and all bug fixes from 3.3.12
+- fix for bnc#743563
+ * fix spec(post): remove SLE_10 permissions stuff
+- rebased patches:
+ * squid-compiled_without_RPM_OPT_FLAGS.patch
+ * squid-nobuilddates.patch
+
+---
+Fri Mar 14 14:34:27 UTC 2014 - bo...@steki.net
+
+- add ssl bump to build config
+
+---
+Thu Feb 27 13:26:24 UTC 2014 - ch...@computersalat.de
+
+- Changes to squid-3.4.3 (02 Feb 2014):
+ * Bug 4008: HttpHeader warnOnError should be an int not a bool
+ * Bug 4002: clang 3.4 unable to compile
+ * Bug 3996: Malformed DNS reply leads to crash
+ * Bug 3995: compile error on CentOS 5 with GCC 4.1.2
+ * Bug 3975: atomic detection cross-compilation failure
+ * Bug 3971: "cannot aggregate mgr:client_list: cmd->profile != NULL" in SMP
mode
+ * Bug 3954: compile failure in CpuAffinity.cc
+ * Bug 3927: tests/testRock fatal.cc required
+ * Fix memory leak in peer Cache Digest exchange
+ * Fix external_acl_type async loop failures
+ * Fix destination IP address cycling
+ * ... and a few polishing changes
+
+---
Old:
squid-3.4.2.tar.bz2
squid-3.4.2.tar.bz2.asc
New:
squid-3.4.4.tar.bz2
squid-3.4.4.tar.bz2.asc
squid-brokenad.patch
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.PJjK2v/_old 2014-03-18 14:07:05.0 +0100
+++ /var/tmp/diff_new_pack.PJjK2v/_new 2014-03-18 14:07:05.0 +0100
@@ -24,7 +24,7 @@
Summary:Squid Version 3.3 WWW Proxy Server
License:GPL-2.0+
Group: Productivity/Networking/Web/Proxy
-Version:3.4.2
+Version:3.4.4
Release:0
Url:http://www.squid-cache.org/Versions/v3/3.4
#Source0:
http://www.squid-cache.org/Versions/v3/3.3/%{name}-%{version}%{snap}.tar.bz2
@@ -60,6 +60,8 @@
## File is compiled without RPM_OPT_FLAGS
# squid3 no-rpm-opt-flags :./cf_gen.cc
Patch102: %{name}-compiled_without_RPM_OPT_FLAGS.patch
+# patch fixes kerberos principalname handling
(http://bugs.squid-cache.org/show_bug.cgi?id=4042)
+Patch103: squid-brokenad.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
PreReq: %fillup_prereq
PreReq: %insserv_prereq
@@ -136,6 +138,7 @@
chmod a-x CREDITS
%patch101
%patch102
+%patch103
%build
export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF"
@@ -162,6 +165,7 @@
--enable-kill-parent-hack \
--enable-arp-acl \
--enable-ssl \
+ --enable-ssl-crtd \
--enable-forw-via-db \
--enable-cache-digests \
--enable-linux-netfilter \
@@ -218,6 +222,7 @@
install -d -m 755 doc/contrib
install %{SOURCE6} doc/contrib
install -D -m 644 %{SOURCE5} %{buildroot}%{_sysconfdir}/pam.d/%{name}
+install -D -m 644
./helpers/external_acl/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8
%{buildroot}%{_mandir}/man8/ext_kerberos_ldap_group_acl.8
rm -rf %{buildroot}%{squidconfdir}/errors
for i in errors/*; do
@@ -261,9 +266,6 @@
%endif
%post
-%if 0%{?sles_version} == 10
-sed -i -e "s,\(^%{_sbindir}/pam_auth.*\)\(2755\),\14755,"
/etc/permissions.secure
-%endif
%if 0%{?suse_version} >= 1140
%set_permissions %{_localstatedir}/cache/%{name}
%set_permissions %{_localstatedir}/log/%{name}
@@ -375,6 +377,7 @@
%{_sbindir}/pinger
%{_sbindir}/rc%{name}
%{_sbindir}/%{name}
+%{_sbindi
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2014-01-22 14:00:42 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-12-30 10:44:19.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2014-01-23 15:56:49.0 +0100 @@ -1,0 +2,85 @@ +Tue Jan 7 19:45:22 UTC 2014 - ch...@computersalat.de + +- Changes to squid-3.4.2 (30 Dec 2013): + * Regression Bug 3980: FATAL ERROR due to max_user_ip -s option + * Regression Fix: \-unescaping in quoted strings from helpers + * Regression Fix: URL helper API bypassing on URL containing '=' character + * Bug 3985: 60s limit introduced by balance_on_multiple_ip breaks bad IP recovery + * Bug 3806: Caching responses with Vary header + * Bug 3498: FTP PUT assertion + * WCCPv2: Fix assertion 'Cannot convert non-IPv4 to IPv4' on FreeBSD + * Enable concurrency by default for SSL certificate validator + * ... and fix several build errors + +--- +Wed Dec 25 23:10:24 UTC 2013 - ch...@computersalat.de + +- Changes to squid-3.4.1 (09 Dec 2013): + * Bug 3935: Invalid pointer dereference when peeking at origin server certificate + * Bug 3589: intercepted and ICAP modified request using a cache_peer + * ... and several portability fixes + * ... and some documentation updates +- Changes to squid-3.4.0.3 (01 Dec 2013): + * Bug 3941: Release notes error + * Receive annotations from authentication and external ACL helpers + * basic_nis_auth: Improved portability + * ... and several documentation updates + * ... and all bug fixes from 3.3.9, 3.3.10, 3.3.11 +- Changes to squid-3.4.0.2 (03 Oct 2013): + * Regression Bug 3891: squid.conf parser errors in 3.4.0.1 + * Regression Fix: re-disable MinGW C++11 support + * Bug 3914: partial: make squidclient tool build cleanly with -Wconversion + * Fix memory leak in refresh_pattern parsing + * negotiate_kerberos_auth: upgrade to present group= keys + * Handle NTLM helper returning OK without user= value + * Add dns_multicast_local to control mDNS operation + * Add --disable-arch-native build option + * Display Build-Info in cache manager info report + * ... and all changes from squid 3.3.9 + * ... and some code and debug output polishing +- Changes to squid-3.4.0.1 (29 Jul 2013): + * Port from 2.7: StoreURL (renamed Store-ID) support + * Bug 3795: fix several mistakes in the MIB file + * Bug 3793: configure: improved helper detection + * Bug 3722: Invalid markup in Armenian hy ERR_ONLY_IF_CACHED_MISS + * Bug 3676: Support GCC 4.7 with -Wshadow option + * Bug 3643: NTLM helpers stuck in reserved state by Safari + * Bug 3389: Auto-reconnect for tcp access_log + * Bug 2066: squid does not do chdir() after chroot() + * Fix uninitialized fields in IcapLogEntry + * Fix a number of minor issues detected by Coverity Scan + * Fix some potential memory leaks detected by Coverity Scan + * Fix 64-bit support for Intel compiler suite (ICC) and other similar compilers + * Fix ACL matching algorithm to avoid repeating tests + * basic_pam_auth: Add -r option to strip NTLM/Negotiate domain from username + * squidpurge: fix META TLV parsing issues + * squid.conf: enforce all the directive and option names are lower-case + * Support EUI on HTTPS and FTP data connections + * Support OK/ERR/BH response codes from any helper + * Support No-lookup flag (-n) on DNS ACLs + * Support -march=native compiler optimization by default + * Support forwarding intercepted but not bumped connections to cache_peers + * Support IPv6 NAT interception on Linux and some BSD + * Deprecate log_icap and log_access configuration directives + * HTTP/1.1: improved method invalidation and cacheability detection + * HTTP/1.1: support length configuration for pipeline_prefetch queue + * Improved TPROXY support for OpenBSD and FreeBSD + * Add storeid_file_rewrite helper to perform Store-ID rewrites from a rules file + * Add all-of and any-of ACL types for grouping sets of ACL tests + * Add note directive for transaction annotations + * Add %note log format for transaction annotation logging + * Add note ACL type for matching annotated transactions with by annotation name or value + * Add kv-pair support to URL-rewrite/redirector interface + * Add SSL server certificate validator interface, helper and result cache + * Add SSL server certificate fingerprint ACL type + * Add spoof_client_ip access control + * Add pt-bz (Belize Portuguese) dialect to translations + * ... and many Windows portability changes (still incomplete) + * ... and many documentation changes + * ... and much code cleanup and
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2013-12-30 10:44:18
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-09-29
17:53:20.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-12-30
10:44:19.0 +0100
@@ -1,0 +2,41 @@
+Wed Dec 25 21:29:38 UTC 2013 - ch...@computersalat.de
+
+- Changes to squid-3.3.11 (01 Dec 2013):
+ * Regression Bug 3936: error-details.txt parse error with OpenSSL since 3.3.9
+ * Bug 3972: Segfault when getting the deny_info page ID after a reconfigure
+ * Bug 3970: max_filedescriptors disabled due to missing setrlimit
+ * Bug 3967: ipc/Kid.cc compilation failure: 'time' was not declared in this
scope
+ * Bug 3960: DEAD cache_peer are not revived
+ * Bug 3956: xstrndup: tried to dup a NULL pointer
+ * Bug 3906: Filedescriptor leaks in SNMP
+ * Bug 3782: Digest authentication not obeying nonce_max_count
+ * HTTP/1.1: Make header parser obey relaxed_header_parser
+ * HTTP/1.1: Re-compute Range response content offset after an FTP response
was adapted
+ * SMP: Replace blocking sleep(3) and close UDS socket on failures
+ * Windows: fix several compile errors
+- Changes to squid-3.3.10 (03 Nov 2013):
+ * Bug 3929: request_header_add not working for tunnel requests
+ * Bug 3923: cbdata and undefined behavior due to dynamic runtime enumeration
+ * Bug 3918: Self Test Failures on Mac OS X 10.8
+ * Bug 3887: tcp_outgoing_tos not working for IPv6
+ * Bug 3836: Fix issues with automake 1.13+ and make check
+ * Bug 3480: StoreEntry::kickProducer() segfaults in store_client::copy()
+ * Fix pinning hierarchy log information
+ * Fix close idle client connections associated with closed idle pinned
connections.
+ * Fix cbdata 'error: expression result unused' errors
+ * Avoid "hot idle": A series of rapid select() calls with zero timeout.
+ * Append Connection:close to OPTIONS requests when
icap_persistent_connections is off
+ * ntlm_fake_auth: pass DOMAIN data to Squid in original case
+ * kerberos_ldap_group: fix LDAP string duplication
+ * Use IPv6 localhost nameserver on DNS configuration errors
+ * Add cache_miss_revalidate
+ * ... and several portability improvements
+- modified patches:
+ * squid-compiled_without_RPM_OPT_FLAGS.patch
+ * squid-config.patch
+- fix build for SLE (libxml2-devel vs pkgconfig(libxml2))
+- fix changed files
+ * bindir/purge
+ * bindir/squidclient
+
+---
Old:
squid-3.3.9.tar.bz2
squid-3.3.9.tar.bz2.asc
New:
squid-3.3.11.tar.bz2
squid-3.3.11.tar.bz2.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.tZFUQW/_old 2013-12-30 10:44:21.0 +0100
+++ /var/tmp/diff_new_pack.tZFUQW/_new 2013-12-30 10:44:21.0 +0100
@@ -23,7 +23,7 @@
Summary:Squid Version 3.3 WWW Proxy Server
License:GPL-2.0+
Group: Productivity/Networking/Web/Proxy
-Version:3.3.9
+Version:3.3.11
Release:0
Url:http://www.squid-cache.org/Versions/v3/3.3
Source0:
http://www.squid-cache.org/Versions/v3/3.3/%{name}-%{version}.tar.bz2
@@ -71,8 +71,10 @@
BuildRequires: cyrus-sasl-devel
BuildRequires: ed
BuildRequires: expat
+BuildRequires: fdupes
BuildRequires: gcc-c++
BuildRequires: gpg-offline
+BuildRequires: krb5-devel
BuildRequires: libcap-devel
BuildRequires: libexpat-devel
BuildRequires: libtool
@@ -82,21 +84,10 @@
BuildRequires: pam-devel
BuildRequires: pkgconfig
BuildRequires: sharutils
-#
-%if 0%{?sles_version} == 9
-BuildRequires: heimdal-devel
+%if 0%{?suse_version} < 1220
+BuildRequires: libxml2-devel
%else
-BuildRequires: krb5-devel
-%endif
-#
-%if 0%{?suse_version} > 1030 || 0%{?fedora_version} > 8
-BuildRequires: fdupes
-%endif
-#
-%if 0%{?suse_version} >= 1130
BuildRequires: pkgconfig(libxml-2.0)
-%else
-BuildRequires: libxml2-devel
%endif
%if 0%{?suse_version} > 1140
@@ -149,22 +140,14 @@
export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF"
export CXXFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF"
export LDFLAGS='-Wl,-z,relro,-z,now -pie'
-./configure \
-%if 0%{?suse_version} == 1110
+%configure \
--disable-strict-error-checking \
-%endif
- --prefix=/usr \
--sysconfdir=%{squidconfdir} \
- --bindir=/usr/sbin \
- --sbindir=/usr/sbin \
- --localstatedir=/var \
--libexecdir=/usr/sbin \
--datadir=/usr/share/squid \
- --mandir=%{_mandir} \
- --libdir=%{_libdir} \
--sharedstated
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2013-09-29 17:53:18 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-09-09 19:52:07.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-09-29 17:53:20.0 +0200 @@ -1,0 +2,22 @@ +Sat Sep 28 17:56:52 UTC 2013 - ch...@computersalat.de + +- Changes to squid-3.3.9 (11 Sep 2013): + * Regression Bug 3077: off-by-one error in Digest header decoding + * Bug 3895: fix acl_uses_indirect_client and cache_peer_access + * Bug 3879: assertion failed ConnStateData::validatePinnedConnection + * Bug 3863: myportname acl causes segmentation fault + * Bug 3849: Duplicate certificate sent when using https_port + * Bug 2287: Better fix for unsupported HTTP version handling + * Bug 2112: Reload into If-None-Match + * Fix several assert with side effects in ICAP/eCAP response handling + * Fix myportname ACL on ICAP/eCAP transactions + * Fix external ACL user:pass detail logging after adaptation + * Fix SMP mgr:info report 'Largest file desc currently in use' + * Improved compatibility with gcc 4.8, clang and icc + * Show number of available filedescriptors when reserved FD changes + * Sync with newest OpenSSL error codes + * Register Http2-Settings header + * ... and many Windows portability fixes +- fix changelog + +--- @@ -89,14 +111,8 @@ -- Changes for squid 3.2.13 release (July 13th 2013) - Better handling of strange port values in Host: - Bug #3869: assertion failed: MemBuf.cc:272: size < capacity - -- Changes for squid 3.2.12 release (July 10th 2013) - Protect against buffer overrun in DNS query generation - Revert rev.11818 - not applicable to 3.2. - Allocate ClientInfo::hash.key using malloc() instead of new char[] - Remove origin_tries limiter on forwarding - Fixed leaking configurable SSL error details. - Fix memory error with Kerberos authentication - Avoid !closing assertions when helpers call comm_read [during reconfigure]. - Avoid Comm::Connection leaks when helpers are reconfigured or otherwise closed. - Add missing piece omitted from rev.9677 +- Changes to squid-3.2.13 (13 Jul 2013): + * Bug 3869: assertion failed: MemBuf.cc:272: size < capacity + * Improved handling of port values in Host: header validation +- Changes to squid-3.2.12 (11 Jul 2013): + * Protect against buffer overrun in DNS query generation + * Avoid !closing assertions when helpers call comm_read during reconfigure. + * Fix several minor memory leaks during reconfigure + * Remove origin_tries limiter on forwarding and permit large max_forward_tries values @@ -114,12 +130,12 @@ - - Fix enter_suid/leave_suid build errors in ip/Intercept.cc - - GNU Hurd: define MAP_NORESERVE as no-op when missing - - Bug #3833: Option '-k' is not present in squidclient man page - - Bug #3817: Memory leak in SSL cert validate for alt_name peer certs - - Bug #3822: Locate LDAP and SASL headers in /usr/local/include for BSD support - - Bug #3825: basic_ncsa_auth segfaulting with glibc-2.17 - - Bug #3774: -k reconfigure drops rock - - Bug #3565: Resuming postponed accept kills Squid - - HTTP/1.1: partial support for no-cache and private controls with parameters - - ssl_crtd: helpers dying during startup on ARM - - Updated copyright for icons/SN.png squid-3.2-11813.patch - - Revert r11810 - tools.h does not exist in 3.2 squid-3.2-11812.patch + * Fix enter_suid/leave_suid build errors in ip/Intercept.cc + * GNU Hurd: define MAP_NORESERVE as no-op when missing + * Bug #3833: Option '-k' is not present in squidclient man page + * Bug #3817: Memory leak in SSL cert validate for alt_name peer certs + * Bug #3822: Locate LDAP and SASL headers in /usr/local/include for BSD support + * Bug #3825: basic_ncsa_auth segfaulting with glibc-2.17 + * Bug #3774: -k reconfigure drops rock + * Bug #3565: Resuming postponed accept kills Squid + * HTTP/1.1: partial support for no-cache and private controls with parameters + * ssl_crtd: helpers dying during startup on ARM + * Updated copyright for icons/SN.png squid-3.2-11813.patch + * Revert r11810 - tools.h does not exist in 3.2 squid-3.2-11812.patch @@ -139,3 +154,0 @@ - -Thu Mar 14 13:08:54 UTC 2013 - br...@ioda-net.ch - @@ -143 +156 @@ - - Rework on squid.service ExecStartPre line + * Rework on squid.service ExecStartPre line @@ -145,5 +158,5 @@ - - Fix bnc#802635 (creating cache struture fail on first call) - - Fixed Type=forking and remove the u
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2013-09-09 19:52:06
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-07-30
16:48:26.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-09-09
19:52:07.0 +0200
@@ -1,0 +2,85 @@
+Thu Sep 5 11:43:22 UTC 2013 - ch...@computersalat.de
+
+- fix build for Factory
+ * rework fix-pod2man-check
+
+---
+Mon Sep 2 21:58:38 UTC 2013 - ch...@computersalat.de
+
+- fix build for 1110 (SLES_11)
+ * add configure --disable-strict-error-checking
+
+---
+Sun Sep 1 12:25:46 UTC 2013 - ch...@computersalat.de
+
+- Changes to squid-3.3.8 (13 Jul 2013):
+ * Bug 3869: assertion failed: MemBuf.cc:272: size < capacity
+ * Improved handling of port values in Host: header validation
+- Changes to squid-3.3.7 (11 Jul 2013):
+ * Bug 3297: Fix openSSL related build failures
+ * Fix build on FreeBSD 9.x platform with clang
+ * Protect against buffer overrun in DNS query generation
+- Changes to squid-3.3.6 (01 Jul 2013):
+ * Bug 3854: pt1: compile errors on AIX
+ * Bug 3802: Fix wrong check inside Format::Format::assemble
+ * Bug 3762: remove bogus WARNING in cache.log
+ * Bug 3717: assertion failed with dstdom_regex with IP based URL
+ * Bug 1991: kqueue causes SSL to hang
+ * Ask for SSL key password when started with -N but without
sslpassword_program
+ * Make sure %http://www.squid-cache.org/Versions/v3/3.2
-Source0:
http://www.squid-cache.org/Versions/v3/3.2/%{name}-%{version}.tar.bz2
+Url:http://www.squid-cache.org/Versions/v3/3.3
+Source0:
http://www.squid-cache.org/Versions/v3/3.3/%{name}-%{version}.tar.bz2
Source1:%{name}-%{version}.tar.bz2.asc
Source2:RELEASENOTES.html
Source3:squid.init
@@ -118,26 +117,19 @@
%description
Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. It
reduces bandwidth and improves response times by caching and reusing
frequently-requested web pages. Squid has extensive access controls and makes a
great server accelerator.
-Squid 3.2 represents a new feature release above 3.1.
+Squid 3.3 represents a new feature release above 3.2.
The most important of these new features are:
- * CVE-2009-0801 : NAT interception vulnerability to malicious clients.
- * NCSA helper DES algorithm password limits
- * SMP scalability
- * Helper Multiplexer and On-Demand
- * Helper Name Changes
- * Multi-Lingual manuals
- * Solaris 10 pthreads Support
- * Surrogate/1.0 protocol extensions to HTTP
- * Logging Infrastructure Updated
- * Client Bandwidth Limits
- * Better eCAP support
- * Cache Manager access changes
-
- First STABLE release Date: 02 Aug 2010
- Latest Release: %{version}
- Latest Release Date: %{version_published}
+ * SQL Database logging helper
+ * Time-Quota session helper
+ * SSL-Bump Server First
+ * Server Certificate Mimic
+ * Custom HTTP request headers
+
+Most user-facing changes are reflected in squid.conf (see below).
+
+ First STABLE release Date: 20 Oct 2012
%prep
%gpg_verify %{S:1}
@@ -151,13 +143,17 @@
chmod a-x CREDITS
%patch101
%patch102
-%patch103 -p1
+%patch103
%build
export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF"
export CXXFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF"
export LDFLAGS='-Wl,-z,relro,-z,now -pie'
-./configure --prefix=/usr \
+./configure \
+%if 0%{?suse_version} == 1110
+ --disable-strict-error-checking \
+%endif
+ --prefix=/usr \
--sysconfdir=%{squidconfdir} \
--bindir=/usr/sbin \
--sbindir=/usr/sbin \
@@ -384,6 +380,7 @@
%{_sbindir}/ext_unix_group_acl
%{_sbindir}/ext_wbinfo_group_acl
%{_sbindir}/helper-mux.pl
+%{_sbindir}/log_db_daemon
%{_sbindir}/log_file_daemon
%{_sbindir}/negotiate_kerberos_auth
%{_sbindir}/negotiate_kerberos_auth_test
++ RELEASENOTES.html ++
1384 lines (skipped)
between /work/SRC/openSUSE:Factory/squid/RELEASENOTES.html
and /work/SRC/openSUSE:Factory/.squid.new/RELEASENOTES.html
++ squid-3.2.13.tar.bz2 -> squid-3.3.8.tar.bz2 ++
90763 lines of diff (skipped)
++ squid-3.2.13.tar.bz2.asc -> squid-3.3.8.tar.bz2.asc ++
--- /work/SRC/openSUSE:Factory/squid/squid-3.2.13.tar.bz2.asc 2013-07-30
16:48:26.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.3.8.tar.bz2.asc
2013-09-09 19:52:07.0 +0200
@@ -1,8 +1,8 @@
-File: squid-3.2.13.tar.bz2
-Date: Sat Jul 13 13:49:04 UTC 2013
-Size: 2898293
-MD5 : 367e59c9c25da7ebbfbf7cbc36d2444e
-SHA1: f253df49819
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2013-07-30 16:48:24
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-07-25
14:46:50.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-07-30
16:48:26.0 +0200
@@ -1,0 +2,18 @@
+Sun Jul 28 12:44:37 UTC 2013 - br...@ioda-net.ch
+
+- Changes for squid 3.2.13 release (July 13th 2013)
+ Better handling of strange port values in Host:
+ Bug #3869: assertion failed: MemBuf.cc:272: size < capacity
+
+- Changes for squid 3.2.12 release (July 10th 2013)
+ Protect against buffer overrun in DNS query generation
+ Revert rev.11818 - not applicable to 3.2.
+ Allocate ClientInfo::hash.key using malloc() instead of new char[]
+ Remove origin_tries limiter on forwarding
+ Fixed leaking configurable SSL error details.
+ Fix memory error with Kerberos authentication
+ Avoid !closing assertions when helpers call comm_read [during
reconfigure].
+ Avoid Comm::Connection leaks when helpers are reconfigured or otherwise
closed.
+ Add missing piece omitted from rev.9677
+
+---
Old:
squid-3.2.11.tar.bz2
squid-3.2.11.tar.bz2.asc
New:
squid-3.2.13.tar.bz2
squid-3.2.13.tar.bz2.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.Hv9GR3/_old 2013-07-30 16:48:27.0 +0200
+++ /var/tmp/diff_new_pack.Hv9GR3/_new 2013-07-30 16:48:27.0 +0200
@@ -18,12 +18,13 @@
%definesquidlibdir %{_libdir}/squid
%definesquidconfdir /etc/squid
+%defineversion_published "2013-07-24"
Name: squid
Summary:Squid Version 3.2 WWW Proxy Server
License:GPL-2.0+
Group: Productivity/Networking/Web/Proxy
-Version:3.2.11
+Version:3.2.13
Release:0
Url:http://www.squid-cache.org/Versions/v3/3.2
Source0:
http://www.squid-cache.org/Versions/v3/3.2/%{name}-%{version}.tar.bz2
@@ -135,8 +136,8 @@
* Cache Manager access changes
First STABLE release Date: 02 Aug 2010
- Latest Release: 3.2.9
- Latest Release Date: 12 Mar 2013
+ Latest Release: %{version}
+ Latest Release Date: %{version_published}
%prep
%gpg_verify %{S:1}
++ RELEASENOTES.html ++
--- /var/tmp/diff_new_pack.Hv9GR3/_old 2013-07-30 16:48:27.0 +0200
+++ /var/tmp/diff_new_pack.Hv9GR3/_new 2013-07-30 16:48:27.0 +0200
@@ -1,11 +1,11 @@
-
- Squid 3.2.6 release notes
+
+ Squid 3.2.13 release notes
-Squid 3.2.6 release notes
+Squid 3.2.13 release notes
Squid Developers
@@ -72,12 +72,14 @@
1. Notice
-The Squid Team are pleased to announce the release of Squid-3.2.6 for
-testing.
+The Squid Team are pleased to announce the release of Squid-3.2.13.
This new release is available for download from
-http://www.squid-cache.org/Versions/v3/3.2/";>http://www.squid-cache.org/Versions/v3/3.2/
or the
+http://www.squid-cache.org/Versions/v3/3.2/";>http://www.squid-cache.org/Versions/v3/3.2/
or the
http://www.squid-cache.org/Mirrors/http-mirrors.html";>mirrors.
-While this release is not deemed ready for production use, we believe it is
ready for wider testing by the community.
+
+A large number of the show-stopper bugs have been fixed along with general
improvements to the IPv6 support.
+While this release is not fully bug-free we believe it is ready for use in
production on many systems.
+
We welcome feedback and bug reports. If you find a bug, please see
http://wiki.squid-cache.org/SquidFaq/BugReporting";>http://wiki.squid-cache.org/SquidFaq/BugReporting
for how to submit a
report with a stack trace.
@@ -86,7 +88,7 @@
Although this release is deemed good enough for use in many setups, please
note the existence of
-http://bugs.squid-cache.org/buglist.cgi?query_format=advanced&short_desc_type=allwordssubstr&short_desc=&target_milestone=3.2&long_desc_type=allwordssubstr&long_desc=&bug_file_loc_type=allwordssubstr&bug_file_loc=&status_whiteboard_type=allwordssubstr&status_whiteboard=&bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&emailtype1=substring&email1=&emailtype2=substring&email2=&bugidtype=include&bug_id=&votes=&chfieldfrom=&chfieldto=Now&chfieldvalue=&cmdtype=doit&order=bugs.bug_severity&field0-0-0=noop&type0-0-0=noop&value0-0-0=";>open
bugs against Squid-3.2.
+http://bugs.squid-cache.org/buglist.cgi?query_format=advanced&product=Squid&bug_status=UNCONFIRMED&bug_status=NEW&bug_status=
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2013-07-25 14:46:49
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-05-13
15:37:19.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-07-25
14:46:50.0 +0200
@@ -1,0 +2,6 @@
+Thu Jul 25 10:19:05 UTC 2013 - tchva...@suse.com
+
+- Add patch squid-fix-pod2man-check.patch solving building with
+ new perl.
+
+---
New:
squid-fix-pod2man-check.patch
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.Tgis4n/_old 2013-07-25 14:46:51.0 +0200
+++ /var/tmp/diff_new_pack.Tgis4n/_new 2013-07-25 14:46:51.0 +0200
@@ -58,6 +58,8 @@
## File is compiled without RPM_OPT_FLAGS
# squid3 no-rpm-opt-flags :./cf_gen.cc
Patch102: %{name}-compiled_without_RPM_OPT_FLAGS.patch
+# Upstream notified of this problem by mageia guys
+Patch103: %{name}-fix-pod2man-check.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
PreReq: %fillup_prereq
PreReq: %insserv_prereq
@@ -148,6 +150,7 @@
chmod a-x CREDITS
%patch101
%patch102
+%patch103 -p1
%build
export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF"
++ squid-fix-pod2man-check.patch ++
diff -urN squid-3.2.11.old/helpers/basic_auth/DB/config.test
squid-3.2.11/helpers/basic_auth/DB/config.test
--- squid-3.2.11.old/helpers/basic_auth/DB/config.test 2013-07-25
12:15:59.645954336 +0200
+++ squid-3.2.11/helpers/basic_auth/DB/config.test 2013-07-25
12:16:26.881955259 +0200
@@ -2,6 +2,6 @@
## Test: do we have perl to build the helper scripts?
## Test: do we have pod2man to build the manual?
-perl --version >/dev/null && echo | pod2man >/dev/null
+perl --version >/dev/null && echo =encoding US-ASCII | pod2man >/dev/null
exit $?
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2013-05-13 15:37:18
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-03-25
20:45:39.0 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-05-13
15:37:19.0 +0200
@@ -1,0 +2,17 @@
+Tue Apr 30 11:42:06 UTC 2013 - br...@ioda-net.ch
+
+- Changes for squid 3.2.11 release (29 April 2013)
+ - Fix enter_suid/leave_suid build errors in ip/Intercept.cc
+ - GNU Hurd: define MAP_NORESERVE as no-op when missing
+ - Bug #3833: Option '-k' is not present in squidclient man page
+ - Bug #3817: Memory leak in SSL cert validate for alt_name peer certs
+ - Bug #3822: Locate LDAP and SASL headers in /usr/local/include for BSD
support
+ - Bug #3825: basic_ncsa_auth segfaulting with glibc-2.17
+ - Bug #3774: -k reconfigure drops rock
+ - Bug #3565: Resuming postponed accept kills Squid
+ - HTTP/1.1: partial support for no-cache and private controls with
parameters
+ - ssl_crtd: helpers dying during startup on ARM
+ - Updated copyright for icons/SN.png squid-3.2-11813.patch
+ - Revert r11810 - tools.h does not exist in 3.2 squid-3.2-11812.patch
+
+---
Old:
squid-3.2.9.tar.bz2
squid-3.2.9.tar.bz2.asc
New:
squid-3.2.11.tar.bz2
squid-3.2.11.tar.bz2.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.jcpf2d/_old 2013-05-13 15:37:21.0 +0200
+++ /var/tmp/diff_new_pack.jcpf2d/_new 2013-05-13 15:37:21.0 +0200
@@ -23,7 +23,7 @@
Summary:Squid Version 3.2 WWW Proxy Server
License:GPL-2.0+
Group: Productivity/Networking/Web/Proxy
-Version:3.2.9
+Version:3.2.11
Release:0
Url:http://www.squid-cache.org/Versions/v3/3.2
Source0:
http://www.squid-cache.org/Versions/v3/3.2/%{name}-%{version}.tar.bz2
@@ -43,9 +43,12 @@
# don't change the names for easier identification
#
# please read every file if there is interest about what the patch changes
-# or just visit: http://www.squid-cache.org/Versions/v3/3.0/changesets/
+# or just visit: http://www.squid-cache.org/Versions/v3/3.2/changesets/
#
#
+# Upstream patch
+# Patch0:
+
# do not show some rpmlint warnings
Source99: rpmlintrc
# some useful defaults for squid
@@ -138,8 +141,7 @@
%setup -q -n %{name}-%{version}
cp %{S:10} .
# upstream patches after RELEASE
-#patch0
-#patch1
+#
# other patches
%patch100
perl -p -i -e 's|/usr/local/bin/perl|/usr/bin/perl|' `find -name "*.pl"`
++ squid-3.2.9.tar.bz2 -> squid-3.2.11.tar.bz2 ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.2.9/CREDITS new/squid-3.2.11/CREDITS
--- old/squid-3.2.9/CREDITS 2013-03-12 11:15:58.0 +0100
+++ new/squid-3.2.11/CREDITS2013-04-30 06:47:06.0 +0200
@@ -531,9 +531,8 @@
Squid NOW icon - copyright Squid Project
This work is licensed under the
- Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported Liscence
- (CC BY-NC-SA 3.0)
- [ http://creativecommons.org/licenses/by-nc-sa/3.0/ ]
+ Creative Commons Attribution-ShareAlike 3.0 Unported Liscence (CC BY-SA 3.0)
+ [ http://creativecommons.org/licenses/by-sa/3.0/ ]
==
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.2.9/ChangeLog new/squid-3.2.11/ChangeLog
--- old/squid-3.2.9/ChangeLog 2013-03-12 11:15:58.0 +0100
+++ new/squid-3.2.11/ChangeLog 2013-04-30 06:47:06.0 +0200
@@ -1,3 +1,22 @@
+
+Changes to squid-3.2.11 (30 Apr 2013):
+
+ - Regression Bug 3839: build error: src/tools.h: No such file or
directory
+ - Update copyright on SN.png
+
+Changes to squid-3.2.10 (27 Apr 2013):
+
+ - Bug 3833: squidclient: Option '-k' is not present in man(1) page
+ - Bug 3825: basic_ncsa_auth: segfaulting with glibc-2.17
+ - Bug 3822: Locate LDAP and SASL headers for BSD support
+ - Bug 3817: Memory leak in SSL cert validate for alt_name peer certs
+ - Bug 3774: 'squid -k reconfigure' drops rock cache
+ - Bug 3565: Resuming postponed accept kills Squid
+ - HTTP/1.1: partial support for no-cache and private controls with
parameters
+ - ssl_crtd: fix helpers dying during startup on ARM
+ - GNU Hurd: define MAP_NORESERVE as no-op when missing
+ - BSD: fix
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2013-03-25 20:45:38
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid", Maintainer is "dr...@suse.com"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-02-22
17:02:46.0 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-03-25
20:45:39.0 +0100
@@ -1,0 +2,48 @@
+Sun Mar 24 18:57:26 UTC 2013 - br...@ioda-net.ch
+
+- Fixed squid.service
+- Removed commented patch lines
+
+---
+Fri Mar 15 10:31:02 UTC 2013 - br...@ioda-net.ch
+
+- New revision for squid.service (using only sed)
+ handle multiple cache_dir line
+ Added sed as require
+
+Thu Mar 14 13:08:54 UTC 2013 - br...@ioda-net.ch
+
+- Packaging : fixed systemd squid.service
+ - Rework on squid.service ExecStartPre line
+ remove dependency on unfunctionnal wrapper
+ - Fix bnc#802635 (creating cache struture fail on first call)
+ - Fixed Type=forking and remove the use off -N (non daemon flag)
+ - Fixed missing pid file
+ - Structural : add all -k to end of Exec/Stop line
+ - Ulimit : Added LimitNOFile=4096 ( same value as in /etc/sysconfig)
+ but there's no way to decode dynamically /etc/sysconfig
+ - Remove syslog.target ( no need anymore : advise from fcrozat )
+ - Clean up squid_cache_build.sh
+- Changes to squid-3.2.9 (12 Mar 2013):
+ - Regression fix: Accept-Language header parse
+ - Bug 3673: Silence 'Failed to select source' messages
+ - Fix authentication headers sent on peer digest requests
+ - Fix build error on Solaris, OpenIndiana, Omnios
+
+- Changes to squid-3.2.8 (02 Mar 2013):
+
+ - Bug 3767: tcp_outgoing_tos/mark ACLs do not obey
acl_uses_indirect_client
+ - Bug 3763: diskd Error: no filename in shm buffer
+ - Bug 3752: objects that cannot be cached in memory are not cached on
disk
+ - Bug 3753: Removes the domain from the cache_peer server pconn key
+ - Bug 3749: IDENT lookup using wrong ports to identify the user
+ - Bug 3723: tcp_outgoing_tos/mark broken for CONNECT requests
+ - Bug 3686: cache_dir max-size default fails
+ - Bug 3515: crash in FtpStateData::ftpTimeout
+ - Bug 3329: Quieten orphan Comm::Connection messages
+ - Make squid -z for cache_dir rock preserve the rock DB
+ - Fixed several server connect problems
+ - ... and some build issues on Solaris, OpenIndiana, MacOS X
+ - ... and some documentation and debugs polishing
+
+---
Old:
squid-3.2.7.tar.bz2
squid-3.2.7.tar.bz2.asc
squid_cache_swap.sh
New:
squid-3.2.9.tar.bz2
squid-3.2.9.tar.bz2.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.tA20UX/_old 2013-03-25 20:45:41.0 +0100
+++ /var/tmp/diff_new_pack.tA20UX/_new 2013-03-25 20:45:41.0 +0100
@@ -23,7 +23,7 @@
Summary:Squid Version 3.2 WWW Proxy Server
License:GPL-2.0+
Group: Productivity/Networking/Web/Proxy
-Version:3.2.7
+Version:3.2.9
Release:0
Url:http://www.squid-cache.org/Versions/v3/3.2
Source0:
http://www.squid-cache.org/Versions/v3/3.2/%{name}-%{version}.tar.bz2
@@ -37,7 +37,6 @@
Source9:%{name}.permissions
Source10: README.kerberos
Source11: %{name}.service
-Source12: squid_cache_swap.sh
Source13: %{name}.keyring
#
# the following patches are downloaded directly from the webserver
@@ -46,12 +45,7 @@
# please read every file if there is interest about what the patch changes
# or just visit: http://www.squid-cache.org/Versions/v3/3.0/changesets/
#
-# [request|reply]_header_* manglers fixes to handle custom headers
-#Patch0:
http://www.squid-cache.org/Versions/v3/3.2/changesets/squid-3.2-11611.patch
-# cache.log analysis: Add a pattern to report alive (opened and not closed)
FDs.
-#Patch1:
http://www.squid-cache.org/Versions/v3/3.2/changesets/squid-3.2-11612.patch
#
-##
# do not show some rpmlint warnings
Source99: rpmlintrc
# some useful defaults for squid
@@ -107,6 +101,7 @@
%endif
Requires: logrotate
+Requires: sed
Provides: http_proxy
# due to package rename
@@ -135,8 +130,8 @@
* Cache Manager access changes
First STABLE release Date: 02 Aug 2010
- Latest Release: 3.2.7
- Latest Release Date: 01 Feb 2013
+ Latest Release: 3.2.9
+ Latest Release Date: 12 Mar 2013
%prep
%gpg_verify %{S:1}
@@ -2
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2013-02-22 17:02:45
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid", Maintainer is "dr...@suse.com"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-01-14
12:03:43.0 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-02-22
17:02:46.0 +0100
@@ -1,0 +2,20 @@
+Wed Feb 20 23:24:06 UTC 2013 - e.isto...@edss.ee
+
+- Changes to squid-3.2.7 (01 Feb 2013):
+ - Bug 3736: Floating point exception due to divide by zero
+ - Bug 3735: raw-IPv6 domain URLs crash if IPv6-disabled
+ - Bug 3732: Fix ConnOpener IPv6 awareness
+ - Bug 3729: 32-bit overflow in parsing 64-bit configuration values
+ - Bug 3728: Improve debug for cache_dir
+ - Bug 3687: unhandled exception: c when using interception and peers
+ - Bug 3678: external acl grace period causes acl lookup failures
+ - Bug 3567: Memory leak handling malformed requests
+ - Bug 3111: Mid-term fix for the forward.cc "err" assertion
+ - Support OpenSSL NO_Compression optio
+ - Fix IPv6 enabled pinger on split-stack or IPv6-disabled systems
+ - Fix "address.GetPort() != 0" assertion for helpers
+ - ... and several minor memory leaks
+ - ... and some cache.log message polishing
+
+
+---
Old:
squid-3.2.6.tar.bz2
squid-3.2.6.tar.bz2.asc
New:
squid-3.2.7.tar.bz2
squid-3.2.7.tar.bz2.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.NCGkdI/_old 2013-02-22 17:02:48.0 +0100
+++ /var/tmp/diff_new_pack.NCGkdI/_new 2013-02-22 17:02:48.0 +0100
@@ -23,7 +23,7 @@
Summary:Squid Version 3.2 WWW Proxy Server
License:GPL-2.0+
Group: Productivity/Networking/Web/Proxy
-Version:3.2.6
+Version:3.2.7
Release:0
Url:http://www.squid-cache.org/Versions/v3/3.2
Source0:
http://www.squid-cache.org/Versions/v3/3.2/%{name}-%{version}.tar.bz2
@@ -135,8 +135,8 @@
* Cache Manager access changes
First STABLE release Date: 02 Aug 2010
- Latest Release: 3.2.6
- Latest Release Date: 08 Jan 2013
+ Latest Release: 3.2.7
+ Latest Release Date: 01 Feb 2013
%prep
%gpg_verify %{S:1}
++ squid-3.2.6.tar.bz2 -> squid-3.2.7.tar.bz2 ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.2.6/ChangeLog new/squid-3.2.7/ChangeLog
--- old/squid-3.2.6/ChangeLog 2013-01-09 02:41:51.0 +0100
+++ new/squid-3.2.7/ChangeLog 2013-02-01 11:55:31.0 +0100
@@ -1,3 +1,20 @@
+Changes to squid-3.2.7 (01 Feb 2013):
+
+ - Bug 3736: Floating point exception due to divide by zero
+ - Bug 3735: raw-IPv6 domain URLs crash if IPv6-disabled
+ - Bug 3732: Fix ConnOpener IPv6 awareness
+ - Bug 3729: 32-bit overflow in parsing 64-bit configuration values
+ - Bug 3728: Improve debug for cache_dir
+ - Bug 3687: unhandled exception: c when using interception and peers
+ - Bug 3678: external acl grace period causes acl lookup failures
+ - Bug 3567: Memory leak handling malformed requests
+ - Bug 3111: Mid-term fix for the forward.cc "err" assertion
+ - Support OpenSSL NO_Compression optio
+ - Fix IPv6 enabled pinger on split-stack or IPv6-disabled systems
+ - Fix "address.GetPort() != 0" assertion for helpers
+ - ... and several minor memory leaks
+ - ... and some cache.log message polishing
+
Changes to squid-3.2.6 (09 Jan 2013):
- Regression Bug 3731: TOS setsockopt() requires int value
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.2.6/RELEASENOTES.html
new/squid-3.2.7/RELEASENOTES.html
--- old/squid-3.2.6/RELEASENOTES.html 2013-01-09 03:06:07.0 +0100
+++ new/squid-3.2.7/RELEASENOTES.html 2013-02-01 12:23:34.0 +0100
@@ -2,10 +2,10 @@
- Squid 3.2.6 release notes
+ Squid 3.2.7 release notes
-Squid 3.2.6 release notes
+Squid 3.2.7 release notes
Squid Developers
@@ -72,7 +72,7 @@
1. Notice
-The Squid Team are pleased to announce the release of Squid-3.2.6 for
+The Squid Team are pleased to announce the release of Squid-3.2.7 for
testing.
This new release is available for download from
http://www.squid-cache.org/Versions/v3/3.2/";>http://www.squid-cache.org/Versions/v3/3.2/
or the
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.2.6/configure new/squid-3.2.7/config
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2013-01-14 12:03:41 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid", Maintainer is "dr...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-01-14 09:49:46.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-01-14 12:03:43.0 +0100 @@ -4,0 +5 @@ + fix for bnc#794954, CVE-2012-5643, SQUID:2012-1 Other differences: -- -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2013-01-14 09:49:45
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid", Maintainer is "dr...@suse.com"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-01-03
08:44:08.0 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-01-14
09:49:46.0 +0100
@@ -1,0 +2,13 @@
+Sun Jan 13 20:09:22 UTC 2013 - ch...@computersalat.de
+
+- Changes to squid-3.2.6 (09 Jan 2013):
+ - Regression Bug 3731: TOS setsockopt() requires int value
+ - Regression Bug 3712: Rotating logs overwrites the previous log
+ - Bug 3727: LLVM compile errors in kerberos_ldap_group
+ - Bug 3650: Negotiate auth missing challenge token
+ - Additional fixes for CVE-2012-5643 / SQUID:2012-1
+* http://www.squid-cache.org/Advisories/SQUID-2012_1.txt
+* http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5643
+- rebase nobuilddates, config patches
+
+---
Old:
squid-3.2.5.tar.bz2
squid-3.2.5.tar.bz2.asc
New:
squid-3.2.6.tar.bz2
squid-3.2.6.tar.bz2.asc
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.Xk0Z7R/_old 2013-01-14 09:49:48.0 +0100
+++ /var/tmp/diff_new_pack.Xk0Z7R/_new 2013-01-14 09:49:48.0 +0100
@@ -1,7 +1,7 @@
#
# spec file for package squid
#
-# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -23,7 +23,7 @@
Summary:Squid Version 3.2 WWW Proxy Server
License:GPL-2.0+
Group: Productivity/Networking/Web/Proxy
-Version:3.2.5
+Version:3.2.6
Release:0
Url:http://www.squid-cache.org/Versions/v3/3.2
Source0:
http://www.squid-cache.org/Versions/v3/3.2/%{name}-%{version}.tar.bz2
@@ -135,8 +135,8 @@
* Cache Manager access changes
First STABLE release Date: 02 Aug 2010
- Latest Release: 3.2.5
- Latest Release Date: 10 Dec 2012
+ Latest Release: 3.2.6
+ Latest Release Date: 08 Jan 2013
%prep
%gpg_verify %{S:1}
++ RELEASENOTES.html ++
--- /var/tmp/diff_new_pack.Xk0Z7R/_old 2013-01-14 09:49:48.0 +0100
+++ /var/tmp/diff_new_pack.Xk0Z7R/_new 2013-01-14 09:49:48.0 +0100
@@ -2,10 +2,10 @@
- Squid 3.2.5 release notes
+ Squid 3.2.6 release notes
-Squid 3.2.5 release notes
+Squid 3.2.6 release notes
Squid Developers
@@ -72,7 +72,7 @@
1. Notice
-The Squid Team are pleased to announce the release of Squid-3.2.5 for
+The Squid Team are pleased to announce the release of Squid-3.2.6 for
testing.
This new release is available for download from
http://www.squid-cache.org/Versions/v3/3.2/";>http://www.squid-cache.org/Versions/v3/3.2/
or the
++ squid-3.2.5.tar.bz2 -> squid-3.2.6.tar.bz2 ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.2.5/ChangeLog new/squid-3.2.6/ChangeLog
--- old/squid-3.2.5/ChangeLog 2012-12-10 10:53:26.0 +0100
+++ new/squid-3.2.6/ChangeLog 2013-01-09 02:41:51.0 +0100
@@ -1,3 +1,11 @@
+Changes to squid-3.2.6 (09 Jan 2013):
+
+ - Regression Bug 3731: TOS setsockopt() requires int value
+ - Regression Bug 3712: Rotating logs overwrites the previous log
+ - Bug 3727: LLVM compile errors in kerberos_ldap_group
+ - Bug 3650: Negotiate auth missing challenge token
+ - Additional fixes for CVE-2012-5643 / SQUID:2012-1
+
Changes to squid-3.2.5 (10 Dec 2012):
- Bug 3698: Add missing include of errno.h
@@ -451,6 +459,10 @@
- ... and a great many testing improvements
- ... and many documentation updates
+Changes to squid-3.1.23 (09 Jan 2013):
+
+ - Additional fixes for CVE-2012-5643 / SQUID:2012-1
+
Changes to squid-3.1.22 (03 Dec 2012):
- Bug 3685: Squid hangs in Delay Pools ClassCBucket::update
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/squid-3.2.5/RELEASENOTES.html
new/squid-3.2.6/RELEASENOTES.html
--- old/squid-3.2.5/RELEASENOTES.html 2012-12-10 11:15:13.0 +0100
+++ new/squid-3.2.6/RELEASENOTES.html 2013-01-09 03:06:07.0 +0100
@@ -2,10 +2,10 @@
- Squid 3.2.5 release notes
+ Squid 3.2.6 release notes
-Squid 3.2.5 release notes
+Squid 3.2.6 release notes
Squid Developers
@@ -72,7 +72,7 @@
1. Notice
-The Squid Team are pleased t
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2013-01-03 08:44:06
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid", Maintainer is "dr...@suse.com"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2012-11-18
20:27:04.0 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-01-03
08:44:08.0 +0100
@@ -1,0 +2,22 @@
+Sun Dec 30 14:56:38 UTC 2012 - ch...@computersalat.de
+
+- Changes to squid-3.2.5 (10 Dec 2012):
+ - Bug 3698: Add missing include of errno.h
+- Changes to squid-3.2.4 (03 Dec 2012):
+ - Ported: urllogin ACL from squid 2.7
+ - Bug 3688: Lots of Orphan Comm:Connections to ICAP server
+ - Bug 3677: Port un-pinning logic changes from squid 3.3
+ - Bug 3405: ssl_crtd crashes failing to remove certificate
+ - ... and major bugs fixed in squid 3.1.22
+ - Fix accept_filter on Linux
+ - Remove 'Bungled' warning on missing component directives
+ - ... and many buffer and memory leak issues in the bundled helpers
+ - ... and a small amount of code polishing
+- remove obsolete glibc-217 patch
+
+---
+Thu Nov 29 19:10:16 CET 2012 - sbra...@suse.cz
+
+- Verify GPG signature.
+
+---
Old:
squid-3.2.3.tar.bz2
squid-3.2.3.tar.bz2.asc
squid-glibc217.patch
New:
squid-3.2.5.tar.bz2
squid-3.2.5.tar.bz2.asc
squid.keyring
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.5qBeQ7/_old 2013-01-03 08:44:10.0 +0100
+++ /var/tmp/diff_new_pack.5qBeQ7/_new 2013-01-03 08:44:10.0 +0100
@@ -23,7 +23,7 @@
Summary:Squid Version 3.2 WWW Proxy Server
License:GPL-2.0+
Group: Productivity/Networking/Web/Proxy
-Version:3.2.3
+Version:3.2.5
Release:0
Url:http://www.squid-cache.org/Versions/v3/3.2
Source0:
http://www.squid-cache.org/Versions/v3/3.2/%{name}-%{version}.tar.bz2
@@ -38,6 +38,7 @@
Source10: README.kerberos
Source11: %{name}.service
Source12: squid_cache_swap.sh
+Source13: %{name}.keyring
#
# the following patches are downloaded directly from the webserver
# don't change the names for easier identification
@@ -60,8 +61,6 @@
## File is compiled without RPM_OPT_FLAGS
# squid3 no-rpm-opt-flags :./cf_gen.cc
Patch102: %{name}-compiled_without_RPM_OPT_FLAGS.patch
-# Handle setuid/setgid failure
-Patch103: squid-glibc217.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
PreReq: %fillup_prereq
PreReq: %insserv_prereq
@@ -74,6 +73,7 @@
BuildRequires: ed
BuildRequires: expat
BuildRequires: gcc-c++
+BuildRequires: gpg-offline
BuildRequires: libcap-devel
BuildRequires: libexpat-devel
BuildRequires: libtool
@@ -135,10 +135,11 @@
* Cache Manager access changes
First STABLE release Date: 02 Aug 2010
- Latest Release: 3.2.3
- Latest Release Date: 20 Oct 2012
+ Latest Release: 3.2.5
+ Latest Release Date: 10 Dec 2012
%prep
+%gpg_verify %{S:1}
%setup -q -n %{name}-%{version}
cp %{S:10} .
# upstream patches after RELEASE
@@ -150,7 +151,6 @@
chmod a-x CREDITS
%patch101
%patch102
-%patch103 -p1
%build
export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF"
++ RELEASENOTES.html ++
--- /var/tmp/diff_new_pack.5qBeQ7/_old 2013-01-03 08:44:11.0 +0100
+++ /var/tmp/diff_new_pack.5qBeQ7/_new 2013-01-03 08:44:11.0 +0100
@@ -2,10 +2,10 @@
- Squid 3.2.3 release notes
+ Squid 3.2.5 release notes
-Squid 3.2.3 release notes
+Squid 3.2.5 release notes
Squid Developers
@@ -72,7 +72,8 @@
1. Notice
-The Squid Team are pleased to announce the release of Squid-3.2.3 for
testing.
+The Squid Team are pleased to announce the release of Squid-3.2.5 for
+testing.
This new release is available for download from
http://www.squid-cache.org/Versions/v3/3.2/";>http://www.squid-cache.org/Versions/v3/3.2/
or the
http://www.squid-cache.org/Mirrors/http-mirrors.html";>mirrors.
@@ -535,9 +536,10 @@
The cache manager is available under the path prefix /squid-internal-mgr/.
For example
the URL http://example/com/squid-internal-mgr/menu will bring up the manager
menu. This
means there are some configuration changes required to lock down manager
access.
-The manager ACL needs changing to:
+The manager ACL needs changing. A built-in definition is now used,
equivalent
+to the following regex pattern:
-acl manager url_regex -i ^cache_object://
^https?://[^/]+/squid-internal-mgr/
+^(cache_object://|https?://[^/
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2012-11-18 20:27:02
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid", Maintainer is "dr...@suse.com"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2012-10-24
10:24:09.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2012-11-18
20:27:04.0 +0100
@@ -1,0 +2,5 @@
+Sat Nov 17 09:38:19 UTC 2012 - a...@suse.de
+
+- Fix build with glibc 2.17 (add patch squid-glibc217.patch).
+
+---
New:
squid-glibc217.patch
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.O0Zsfx/_old 2012-11-18 20:27:05.0 +0100
+++ /var/tmp/diff_new_pack.O0Zsfx/_new 2012-11-18 20:27:05.0 +0100
@@ -60,7 +60,8 @@
## File is compiled without RPM_OPT_FLAGS
# squid3 no-rpm-opt-flags :./cf_gen.cc
Patch102: %{name}-compiled_without_RPM_OPT_FLAGS.patch
-
+# Handle setuid/setgid failure
+Patch103: squid-glibc217.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
PreReq: %fillup_prereq
PreReq: %insserv_prereq
@@ -149,6 +150,7 @@
chmod a-x CREDITS
%patch101
%patch102
+%patch103 -p1
%build
export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF"
++ squid-glibc217.patch ++
Index: squid-3.2.3/src/icmp/pinger.cc
===
--- squid-3.2.3.orig/src/icmp/pinger.cc
+++ squid-3.2.3/src/icmp/pinger.cc
@@ -180,8 +180,18 @@ main(int argc, char *argv[])
}
max_fd = max(max_fd, squid_link);
-setgid(getgid());
-setuid(getuid());
+if (setgid(getgid()) < 0) {
+debugs(42, 0, "FATAL: pinger: setgid failed.");
+icmp4.Close();
+icmp6.Close();
+ exit (1);
+}
+if (setuid(getuid()) < 0) {
+debugs(42, 0, "FATAL: pinger: setuid failed.");
+icmp4.Close();
+icmp6.Close();
+exit (1);
+}
last_check_time = squid_curtime;
Index: squid-3.2.3/src/tools.cc
===
--- squid-3.2.3.orig/src/tools.cc
+++ squid-3.2.3/src/tools.cc
@@ -757,7 +757,8 @@ enter_suid(void)
debugs(21, 3, "enter_suid: PID " << getpid() << " taking root priveleges");
#if HAVE_SETRESUID
-setresuid((uid_t)-1, 0, (uid_t)-1);
+if (setresuid((uid_t)-1, 0, (uid_t)-1) < 0)
+ debugs (21, 3, "enter_suid: setresuid failed" << xstrerror ());
#else
setuid(0);
@@ -782,7 +783,8 @@ no_suid(void)
uid = geteuid();
debugs(21, 3, "no_suid: PID " << getpid() << " giving up root priveleges
forever");
-setuid(0);
+if (setuid(0) < 0)
+ debugs(50, 1, "no_suid: setuid (0): " << xstrerror());
if (setuid(uid) < 0)
debugs(50, 1, "no_suid: setuid: " << xstrerror());
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2012-02-16 15:01:30
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid", Maintainer is "dr...@suse.com"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2011-12-08
11:31:32.0 +0100
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2012-02-16
15:02:23.0 +0100
@@ -1,0 +2,5 @@
+Wed Feb 15 16:02:51 UTC 2012 - ch...@computersalat.de
+
+- run suse_update_config only on suse_version < 1220
+
+---
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.eTlIbx/_old 2012-02-16 15:02:24.0 +0100
+++ /var/tmp/diff_new_pack.eTlIbx/_new 2012-02-16 15:02:24.0 +0100
@@ -1,7 +1,7 @@
#
# spec file for package squid
#
-# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -14,18 +14,18 @@
# Please submit bugfixes or comments via http://bugs.opensuse.org/
#
-
# needsrootforbuild
+
%define squid_ldapauth_version 1.3
%define squidconfdir /etc/squid
Name: squid
Summary:Squid WWW proxy server
-Version:2.7.STABLE9
-Release:0
License:GPL-2.0+
Group: Productivity/Networking/Web/Proxy
+Version:2.7.STABLE9
+Release:0
Url:http://www.squid-cache.org
Source:
http://www.squid-cache.org/Versions/v2/2.7/squid-%{version}.tar.bz2
Source1:squid_ldapauth-%{squid_ldapauth_version}.tar.bz2
@@ -135,7 +135,9 @@
DATE="\"$(date -d "${modified}" "+%%b %%e %%Y")\""
TIME="\"$(date -d "${modified}" "+%%R")\""
find . -type f -regex ".*\.c\|.*\.cpp\|.*\.h" -exec sed -i
"s/__DATE__/${DATE}/g;s/__TIME__/${TIME}/g" {} +
+%if 0%{?suse_version} < 1220
%{?suse_update_config:%{suse_update_config}}
+%endif
export RPM_OPT_FLAGS="$RPM_OPT_FLAGS -fPIE -DLDAP_DEPRECATED
-fno-strict-aliasing"
export CFLAGS="$RPM_OPT_FLAGS"
export LDFLAGS="-pie"
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory checked
in at 2011-12-08 11:31:31
Comparing /work/SRC/openSUSE:Factory/squid (Old)
and /work/SRC/openSUSE:Factory/.squid.new (New)
Package is "squid", Maintainer is "dr...@suse.com"
Changes:
--- /work/SRC/openSUSE:Factory/squid/squid.changes 2011-09-23
12:46:48.0 +0200
+++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2011-12-08
11:31:32.0 +0100
@@ -1,0 +2,14 @@
+Fri Dec 2 10:01:19 UTC 2011 - ch...@computersalat.de
+
+- fix ip_wccp.c
+ * update to current online version
+- add upstream patches
+ * 12711 - Correct parsing of large gopher indexes
+ * 12714 - Fix various harmless warnings detected by gcc 4.6
+
+---
+Thu Dec 1 17:00:11 UTC 2011 - co...@suse.com
+
+- add automake as buildrequire to avoid implicit dependency
+
+---
New:
12711.patch
12714.patch
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.Kh7FC8/_old 2011-12-08 11:31:40.0 +0100
+++ /var/tmp/diff_new_pack.Kh7FC8/_new 2011-12-08 11:31:40.0 +0100
@@ -23,11 +23,11 @@
Name: squid
Summary:Squid WWW proxy server
Version:2.7.STABLE9
-Release:2
-License:GPLv2+
+Release:0
+License:GPL-2.0+
Group: Productivity/Networking/Web/Proxy
Url:http://www.squid-cache.org
-Source: squid-%{version}.tar.bz2
+Source:
http://www.squid-cache.org/Versions/v2/2.7/squid-%{version}.tar.bz2
Source1:squid_ldapauth-%{squid_ldapauth_version}.tar.bz2
Source2:rc.squid
Source4:README.SuSE
@@ -43,9 +43,12 @@
Source11: squid_ie_blocker.txt
Source12: http://www.squid-cache.org/WCCP-support/Linux/ip_wccp.c
Source13: squid.sysconfig
+# PATCH-UPSTREAM - Bug #2973: memoryleak on maformed requests
Patch0:
http://www.squid-cache.org/Versions/v2/2.7/changesets/12697.patch
-#Patch1:http://www.squid-cache.org/Versions/v2/2.7/changesets/
-#Patch2:http://www.squid-cache.org/Versions/v2/2.7/changesets/
+# PATCH-UPSTREAM - Correct parsing of large gopher indexes
+Patch1:
http://www.squid-cache.org/Versions/v2/2.7/changesets/12711.patch
+# PATCH-UPSTREAM - Fix various harmless warnings detected by gcc 4.6
+Patch2:
http://www.squid-cache.org/Versions/v2/2.7/changesets/12714.patch
#Patch3:http://www.squid-cache.org/Versions/v2/2.7/changesets/
#Patch4:http://www.squid-cache.org/Versions/v2/2.7/changesets/
#Patch5 http://www.squid-cache.org/Versions/v2/2.7/changesets/
@@ -69,12 +72,18 @@
Patch102: %{name}-2.6.STABLE19-64bit.patch
Patch103: %{name}-2.6.STABLE2-ldflags.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
-AutoReqProv:on
PreReq: /usr/sbin/useradd, %insserv_prereq, %fillup_prereq
-BuildRequires: db-devel openldap2-devel opensp-devel pam-devel samba
-BuildRequires: sgmltool sharutils
+BuildRequires: automake
+BuildRequires: db-devel
+BuildRequires: openldap2-devel
+BuildRequires: opensp-devel
+BuildRequires: pam-devel
+BuildRequires: samba
+BuildRequires: sgmltool
+BuildRequires: sharutils
%ifarch %ix86 x86_64 ppc ppc64
-BuildRequires: valgrind valgrind-devel
+BuildRequires: valgrind
+BuildRequires: valgrind-devel
%endif
Conflicts: squid-beta squid2 squid23
Requires: logrotate, cron
@@ -85,12 +94,6 @@
Home page: http://www.squid-cache.org
-
-
-Authors:
-
-Duane Wessels
-
%prep
%setup -n squid-%{version} -a 1 -a 8
#(cd auth_modules
@@ -99,8 +102,8 @@
#mv msntauth-v2.0.3-squid.1 MSNT
#)
%patch0 -p1
-#%patch1 -p1
-#%patch2 -p1
+%patch1 -p1
+%patch2 -p1
#%patch3 -p1
#%patch4 -p1
#%patch5 -p1
++ 12711.patch ++
-
PatchSet 12711
Date: 2011/08/26 21:51:44
Author: hno
Branch: SQUID_2_7
Tag: (none)
Log:
Correct parsing of large gopher indexes
Members:
src/gopher.c:1.181.2.1->1.181.2.2
Index: squid/src/gopher.c
===
RCS file: /cvsroot/squid/squid/src/gopher.c,v
retrieving revision 1.181.2.1
retrieving revision 1.181.2.2
diff -u -r1.181.2.1 -r1.181.2.2
--- squid/src/gopher.c 4 May 2008 23:23:13 - 1.181.2.1
+++ squid/src/gopher.c 26 Aug 2011 21:51:44 - 1.181.2.2
@@ -1,6 +1,6 @@
/*
- * $Id: gopher.c,v 1.181.2.1 2008/05/04 23:23:13 hno Exp $
+ * $Id: gopher.c,v 1.181.2.2 2011/08/26 21:51:44 hno Exp $
*
* DEBUG: section 10Gopher
* AUTHOR: Harvest Derived
@@ -314,8 +314,6 @@
gopherState->HTML_header_added = 1;
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory
checked in at Mon Jul 11 10:20:30 CEST 2011.
--- squid/squid.changes 2011-02-19 12:48:48.0 +0100
+++ /mounts/work_src_done/STABLE/squid/squid.changes2011-05-25
05:47:20.0 +0200
@@ -1,0 +2,5 @@
+Wed May 25 03:46:39 UTC 2011 - crrodrig...@opensuse.org
+
+- Supress timestamps from binaries, breaks build-compare.
+
+---
calling whatdependson for head-i586
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.S5J5NQ/_old 2011-07-11 10:20:11.0 +0200
+++ /var/tmp/diff_new_pack.S5J5NQ/_new 2011-07-11 10:20:11.0 +0200
@@ -23,7 +23,7 @@
Name: squid
Summary:Squid WWW proxy server
Version:2.7.STABLE9
-Release:1
+Release:2
License:GPLv2+
Group: Productivity/Networking/Web/Proxy
Url:http://www.squid-cache.org
@@ -128,6 +128,10 @@
%patch103 -p1
%build
+modified="$(sed -n '/^/n;s/ - .*$//;p;q' "%{_sourcedir}/%{name}.changes")"
+DATE="\"$(date -d "${modified}" "+%%b %%e %%Y")\""
+TIME="\"$(date -d "${modified}" "+%%R")\""
+find . -type f -regex ".*\.c\|.*\.cpp\|.*\.h" -exec sed -i
"s/__DATE__/${DATE}/g;s/__TIME__/${TIME}/g" {} +
%{?suse_update_config:%{suse_update_config}}
export RPM_OPT_FLAGS="$RPM_OPT_FLAGS -fPIE -DLDAP_DEPRECATED
-fno-strict-aliasing"
export CFLAGS="$RPM_OPT_FLAGS"
Remember to have fun...
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit squid for openSUSE:Factory
Hello community,
here is the log from the commit of package squid for openSUSE:Factory
checked in at Mon Feb 21 00:55:58 CET 2011.
--- squid/squid.changes 2009-11-03 20:22:42.0 +0100
+++ /mounts/work_src_done/STABLE/squid/squid.changes2011-02-19
12:48:48.0 +0100
@@ -1,0 +2,75 @@
+Sat Feb 19 11:45:53 UTC 2011 - ch...@computersalat.de
+
+- update to 2.7.STABLE9
+ - 2.7.STABLE8 failed to compile with OpenSSL 0.9.8 on some systems
+ - failure to detect certain system libraries on some systems
+resulting in compilation errors
+- Changes to squid-2.7.STABLE8 (10 March 2010)
+ - Bug #2458: reply_body_max_size incorrectly documented
+ - Bug #2858: Segment violation in HTCP
+ - Bug #2773: Segfault in RFC2069 Digest authantication
+ - 64-bit filesize issue in squidclient if trying to post a file > 2GB
+ - Improve %nn parser to better deal with certain odd %nn sequences
+ - Segmentation fault if failed to open cache.log
+ - Bug #2819: const correctness errors in dns_internal.c
+ - Handle DNS header-only packets as invalid. (CVE-2010-0308)
+ - Windows port: Updated mswin_ad_group native helper to version 2.1
+ - Cosmetic change to keep GCC happy
+ - Bug #2678 - storeurl_rewrite does not play nicely with vary
+ - Bug #2861 - only-if-cached request blocks if it collapsed into
+another request
+ - Use libcap functions instead of raw kernel interface
+ - No need to sync the store on -k rotate, but instead it needs to be
+done in reconfigure
+ - const correctness in OpenSSL initialization
+ - Rework the http digest auth parser
+- Changes to squid-2.7.STABLE7 (17 September 2009)
+ - Bug #2661 - Solaris /dev/poll support broken with EINVAL
+ - Clarify external_acl_type %{Header} documentation slightly
+ - Bug #2482: Remove mem_obj->old_entry in async code to avoid deep ctx
+errors
+ - GCC-4.x cleanups
+ - Bug #2605: Don't call setsid() on helper childs when running in
+daemon mode
+ - Windows port: Fix PSAPI.DLL usage, is always available on Windows NT
+and later
+ - Windows port: Added support for Windows 7, Windows Server 2008 R2
+and later
+ - Bug #2602: increase MAX_URL to 8192
+ - The debug mode option '-d' was not documented in LDAP helpers usage
+message
+ - Windows port: Added a note about installation on Windows Vista and
+later
+ - Bug #2642: Remove duplicate peerMonitorInit() on reconfigure
+ - Bug #2515: Final chunk parsing errors on FreeBSD6+
+ - Bug #2647: Reprioritise override-* and stale-while-revalidate
+ - Windows port: Fix improper access permissions to registry and DNS
+parsing from registry
+ - Windows port: Fix getservbyname() usage abuse.
+ - Bug #2672: cacheMemMaxSize 32-bit overflow during snmpwalk
+ - Bug #2691: store_url memory leak
+ - Accept PUT/POST requests without an entity-body
+ - Plug request_t + HttpStateData memory leak on PUT/POST requests with
+early response
+ - Bug #2710: squid_kerb_auth non-terminated string
+ - Bug #2369: squid traffic counter 32-bit overflow
+ - Bug #2080: wbinfo_group.pl - false positive under certain conditions
+ - Bug #2739: DNS resolver option ndots can't be parsed from
+resolv.conf
+ - Windows port: fix mswin_negotiate_auth.exe crash when executing a
+LocalCall authentication with verbose deBug #enabled
+ - Add 0.0.0.0 as an to_localhost address
+ - Windows port: Update mswin_check_ad_group to version 2.0
+ - Windows port: There is no "-P" command line option into
+mswin_check_ad_group helper.
+ - Correct Valgrind mempool protection
+ - Bug #2451: Correct length handling on 304 responses
+ - Bug #2541: Hang in 100% CPU loop while extacting header details
+using a delimiter other than comma (external_acl_type,
+access_log_format, external_refresh_check)
+ - Bug #2768 - squid_ldap_group -K argument parsing error
+- removed old upstream patches: 12466, 12480 - 12497
+- added new upstream patch: 12697
+- cleanup spec
+
+---
calling whatdependson for head-i586
Old:
12466.patch
12480.patch
12481.patch
12482.patch
12483.patch
12484.patch
12485.patch
12486.patch
12487.patch
12488.patch
12489.patch
12490.patch
12491.patch
12492.patch
12493.patch
12494.patch
12495.patch
12497.patch
squid-2.7.STABLE6-RELEASENOTES.html
squid-2.7.STABLE6.tar.bz2
New:
12697.patch
squid-2.7.STABLE9-RELEASENOTES.html
squid-2.7.STABLE9.tar.bz2
Other differences:
--
++ squid.spec ++
--- /var/tmp/diff_new_pack.wtwnbF/_old 2011-02-21 00:55:49.0 +0100
+++ /var/tmp/diff_new_pack.wtwnbF/_new 2011-02-21 00:55:49.0 +0100
@@ -1,7 +1,7 @@
#
-# spec file for package squid (Version 2.7.STABLE6)
+# spec file for package squid
#
-# Copyright (c) 2009 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2011 SUSE L
