commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-11-05 21:56:20 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.11331 (New) Package is "squid" Thu Nov 5 21:56:20 2020 rev:88 rq:846311 version:4.13 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-10-10 00:29:11.453148242 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.11331/squid.changes 2020-11-05 21:56:43.067941646 +0100 @@ -1,0 +2,14 @@ +Mon Nov 2 10:34:59 UTC 2020 - Adam Majer + +- re-add older SLES12 requirements so we can use one devel project + for all codestreams + +--- +Fri Oct 30 11:52:08 UTC 2020 - Matthias Gerstner + +- fix previous change to reinstante permissions macros, because the wrong path + has been used (bsc#1171569). +- use libexecdir instead of libdir to conform to recent changes in Factory + (bsc#1171164). + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.Luy9O0/_old 2020-11-05 21:56:43.807939982 +0100 +++ /var/tmp/diff_new_pack.Luy9O0/_new 2020-11-05 21:56:43.811939973 +0100 @@ -16,11 +16,11 @@ # -%define squidlibdir %{_libdir}/squid +%define squidlibexecdir %{_libexecdir}/squid %define squidconfdir %{_sysconfdir}/squid -%if 0%{?suse_version} >= 1550 -%define squidhelperdir %{squidlibdir} +%if 0%{?suse_version} > 1500 || 0%{?sle_version} >= 150300 +%define squidhelperdir %{squidlibexecdir} %else %define squidhelperdir %{_sbindir} %endif @@ -63,8 +63,13 @@ BuildRequires: pkgconfig BuildRequires: samba-winbind BuildRequires: sharutils +%if 0%{?suse_version} >= 1500 BuildRequires: sysuser-shadow BuildRequires: sysuser-tools +%sysusers_requires +%else +Requires(pre): shadow +%endif BuildRequires: pkgconfig(expat) BuildRequires: pkgconfig(gssrpc) BuildRequires: pkgconfig(kdb) @@ -80,7 +85,6 @@ Provides: %{name}3 = %{version} Obsoletes: %{name}3 < %{version} %{?systemd_ordering} -%sysusers_requires %if 0%{?suse_version} >= 1330 BuildRequires: libnsl-devel %endif @@ -151,8 +155,10 @@ --disable-arch-native \ --enable-security-cert-generators \ --enable-security-cert-validators -%make_build SAMBAPREFIX=%{_prefix} +make %{?_smp_mflags} -O SAMBAPREFIX=%{_prefix} +%if 0%{?suse_version} >= 1500 %sysusers_generate_pre %{SOURCE12} squid +%endif %install install -d -m 750 %{buildroot}%{_localstatedir}/{cache,log}/%{name} @@ -171,10 +177,14 @@ install -d -m 755 doc/scripts install scripts/*.pl doc/scripts cat > doc/scripts/cachemgr.readme <<-EOT +%if 0%{?suse_version} > 1500 || 0%{?sle_version} >= 150300 + cachemgr.cgi will now be found in %{squidhelperdir} +%else cachemgr.cgi will now be found in %{_libdir}/%{name} +%endif EOT -%if 0%{?suse_version} <= 1500 +%if 0%{?suse_version} <= 1500 && 0%{?sle_version} < 150300 install -dpm 755 %{buildroot}/%{_libdir}/%{name} mv %{buildroot}%{_sbindir}/cachemgr.cgi %{buildroot}/%{_libdir}/%{name} %endif @@ -197,9 +207,9 @@ # systemd install -D -m 644 %{SOURCE11} %{buildroot}%{_unitdir}/%{name}.service -install -D -m 755 %{SOURCE15} %{buildroot}%{squidlibdir}/cache_dir.sed -install -D -m 755 %{SOURCE16} %{buildroot}%{squidlibdir}/initialize_cache_if_needed.sh -sed -i -e 's!%%{_libdir}!%{_libdir}!' %{buildroot}%{_unitdir}/%{name}.service +install -D -m 755 %{SOURCE15} %{buildroot}%{squidlibexecdir}/cache_dir.sed +install -D -m 755 %{SOURCE16} %{buildroot}%{squidlibexecdir}/initialize_cache_if_needed.sh +sed -i -e 's!%%{_libexecdir}!%{_libexecdir}!' %{buildroot}%{_unitdir}/%{name}.service ln -sf %{_sbindir}/service %{buildroot}%{_sbindir}/rc%{name} # needed for smp support (bsc#1112695, bsc#1112066) @@ -217,9 +227,30 @@ %check # Fails in chroot environment -%make_build check +make check +%if 0%{?suse_version} >= 1500 %pre -f squid.pre +%else +%pre +# we need this group for /usr/sbin/pinger +getent group %{name} >/dev/null || %{_sbindir}/groupadd -g 31 -r %{name} +# we need this group for squid (ntlmauth) +# read access to /var/lib/samba/winbindd_privileged +getent group winbind >/dev/null || %{_sbindir}/groupadd -r winbind +getent passwd squid >/dev/null || \ + %{_sbindir}/useradd -c "WWW-proxy squid" -d %{_localstatedir}/cache/%{name} \ +-G winbind -g %{name} -o -u 31 -r -s /bin/false \ +%{name} +# if default group is not squid, change it +if [ "$(%{_bindir}/id -ng %{name} 2>/dev/null)" != "%{name}" ]; then + %{_sbindir}/usermod -g %{name} %{name} +fi +# if squid is not member of winbind, add him +if [
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-10-10 00:29:08 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.4249 (New) Package is "squid" Sat Oct 10 00:29:08 2020 rev:87 rq:840300 version:4.13 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-09-03 01:14:53.116486685 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.4249/squid.changes2020-10-10 00:29:11.453148242 +0200 @@ -1,0 +2,8 @@ +Thu Oct 8 11:01:44 UTC 2020 - Matthias Gerstner + +- Reinstate permissions macros for pinger binary, because the permissions + package is also responsible for setting up the cap_net_raw capability, + currently a fresh squid install doesn't get a capability bit at all + (bsc#1171569). + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.fMxRGC/_old 2020-10-10 00:29:12.413148718 +0200 +++ /var/tmp/diff_new_pack.fMxRGC/_new 2020-10-10 00:29:12.417148720 +0200 @@ -231,8 +231,7 @@ fi %post -# %%set_permissions %%{_sbindir}/basic_pam_auth -# %%set_permissions %%{_sbindir}/pinger +%set_permissions %{_sbindir}/pinger %set_permissions %{_localstatedir}/cache/squid/ %set_permissions %{_localstatedir}/log/squid/ %tmpfiles_create %{_tmpfilesdir}/squid.conf @@ -242,8 +241,7 @@ %service_del_preun squid.service %verifyscript -# %%verify_permissions -e %%{_sbindir}/basic_pam_auth -# %%verify_permissions -e %%{_sbindir}/pinger +%verify_permissions -e %{_sbindir}/pinger %verify_permissions -e %{_localstatedir}/cache/squid/ %verify_permissions -e %{_localstatedir}/log/squid/
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-09-03 01:13:55 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.3399 (New) Package is "squid" Thu Sep 3 01:13:55 2020 rev:86 rq:831407 version:4.13 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-08-25 09:35:39.572102340 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.3399/squid.changes2020-09-03 01:14:53.116486685 +0200 @@ -6 +6,2 @@ - * Fix livelocking in peerDigestHandleReply (#698) (bsc#1175671) + * Fix livelocking in peerDigestHandleReply (#698) +(bsc#1175671, CVE-2020-24606) Other differences: --
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-08-25 09:33:38 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.3399 (New) Package is "squid" Tue Aug 25 09:33:38 2020 rev:85 rq:828922 version:4.13 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-08-10 15:02:19.108137348 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.3399/squid.changes2020-08-25 09:35:39.572102340 +0200 @@ -1,0 +2,18 @@ +Mon Aug 24 11:38:09 UTC 2020 - Adam Majer + +- squid 4.13: + * Enforce token characters for field-name (#700) + * Fix livelocking in peerDigestHandleReply (#698) (bsc#1175671) + * Improve Transfer-Encoding handling (#702) +(bsc#1175665, CVE-2020-15811) + * Forbid obs-fold and bare CR whitespace in framing header fields (#701) + * Source Format Enforcement + * Enforce token characters for field-name (#700) +(bsc#1175664, CVE-2020-15810) + * Do not stall while debugging a scan of an empty store_table (#699) + * Fix livelocking in peerDigestHandleReply (#698) + * Honor on_unsupported_protocol for intercepted https_port (#689) + * Bug #5051: Some collapsed revalidation responses never expire (#683) + * SslBump: Support parsing GREASEd (and future) TLS handshakes (#663) + +--- Old: squid-4.12.tar.xz squid-4.12.tar.xz.asc New: squid-4.13.tar.xz squid-4.13.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.jVEQ8d/_old 2020-08-25 09:35:42.000103757 +0200 +++ /var/tmp/diff_new_pack.jVEQ8d/_new 2020-08-25 09:35:42.004103760 +0200 @@ -26,7 +26,7 @@ %endif Name: squid -Version:4.12 +Version:4.13 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0-or-later ++ squid-4.12.tar.xz -> squid-4.13.tar.xz ++ 22096 lines of diff (skipped) ++ squid-4.12.tar.xz.asc -> squid-4.13.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-4.12.tar.xz.asc 2020-06-22 17:46:18.333922233 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.3399/squid-4.13.tar.xz.asc 2020-08-25 09:35:38.032101442 +0200 @@ -1,25 +1,25 @@ -File: squid-4.12.tar.xz -Date: Tue Jun 9 07:34:59 UTC 2020 -Size: 2450564 -MD5 : ad7a4a8a0031cae3435717a759173829 -SHA1: 316b8a343aa542b5e7469d33b9d726bee00679c6 +File: squid-4.13.tar.xz +Date: Sat 22 Aug 2020 19:33:59 UTC +Size: 2452752 +MD5 : 492e54afc15821141ff1d1d9903854d6 +SHA1: cac95c18789e9ecd6620c2f278fc3900498c065b Key : CD6DBF8EF3B17D3E B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E keyring = http://www.squid-cache.org/pgp.asc keyserver = pool.sks-keyservers.net -BEGIN PGP SIGNATURE- -iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAl7fO6wACgkQzW2/jvOx -fT5dchAAvAB2fh/QBkumskN/K5c061NFA+/ZbHD8gqmvaUUIjXNoEqBhBAzTpCpm -03XcFZdIBFKqkHxiJrlWzdRylSqv5nkw1qZBN6S6NzygYVs3UYHkpNSM8AZLBW4c -XDZEnmYbr2HlWHJ9fISsWhwApQ2HXwzUdMAFeN3ADDtT2nbCSjpO89sFj6zHrUVo -sWsf+pKuPd6C/30MymsF5ZQVkmAeb1TRDRpnWvg0Ec//m2Sw0p6nKlr0uPBLMALW -nIQivuf6MRTaa0iFibWtIyA4m88mUZLifWM9F3DOJcJYjXlKjWpQ0GQY/ylpDpeL -DzMbIV/Ycv4R/w6Hk6f4MDva7FRkamlsUhCUrrL09B0CaAjnW3b0wIbFnoiCP2cL -48TST3NjKy2CG8yrHKL2G5mER2T/KyGv3m2TvVNl+sihH35Urtq9ecBCn2UwiRFL -mNsEXllhMVzYmRwlN3+1Y+P612jdpdSLzIQH++ih3FYhpiZRrUPKYWNSYnesUQo+ -AJiOoDzdqzHlg2P5ZVQlhaTf7qEMLf55w6TzPJ4lo6DuDdIyGVBJBJFiuBMp6JHr -jElIYnwgCJ2j+Lmr2pmN0njlhSkio6084Wava37P3c61wqFF47NErO8bwaUZNPT/ -66A23tcqM1ADeBB9Ll4vmxjvn/CHrWmX0RzoOp2VCG8s7i1CT1E= -=c3VT +iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAl9BczQACgkQzW2/jvOx +fT54vQ//S7KNcv8wiO9GFYmRW0At2aJqE7j3alni5PBNzHvZKHwNyBfGFaCPGm0+ ++lM2VoYwVrELBqg9gFUpKvFscUtqBQyFAd+84JjJ2x6IJp2+eajxO+1grbwa+4aw +pcFu73MzzSgZ8n0IJB95zJoD5Tc/AHt6MXn84BABo3bFXNBSw1y6yFTuz8MtfLBQ +ACFWVTPmoei0DyD0gdF+qGHydlLJG+8GDpzXM6gMDjAxbFXkPqWey0V8+vQ8SFrC +8t4XMBCC7VyhzM9kOP5hgStRHzhuGNBedfqd0VrY0xOlYjCQrY7ihelak7NfvlHx +wIMM/tuiSV+DgMNVLG4aCmtPWtyrvw1N0jz7+dr243sf8iuSEulIa98IM5YGPeq7 +alHPkmoyLfjhKHW33xzS+oM8jBvOH3A4gIgTna8t/5tWwgttRA1T4xqbBDfNAGy8 +qxJeLlqKaFO9tyvkGqMT+CEcthULrKGOBqFu/DfkAoID/x7a3gyLVaYhHtOtUv8y +EIISadVos3XGTZfnn8OFWsJ0etWrfveYR36P+ImhQku5uwK1hr6YE6khY5UWYJL/ +pdaT6jzLzwB6DtUdSfwiE44aaftxOEGH4ZdlLo6dgGlEVh12ni91Jn99v9sg9X4D +bFXMWa7u7bMgAvEPyjEd2fSNk7UFUL2+gAxOtBN79RxMwg520zc= +=/0kc -END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-08-10 15:01:05 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.3399 (New) Package is "squid" Mon Aug 10 15:01:05 2020 rev:84 rq:825214 version:4.12 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-06-29 21:17:59.413714358 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.3399/squid.changes2020-08-10 15:02:19.108137348 +0200 @@ -1,0 +2,8 @@ +Fri Jul 24 15:03:53 UTC 2020 - Adam Majer + +- Change pinger and basic_pam_auth helper to use standard permissions. + pinger uses cap_net_raw=ep instead (bsc#1171569) +- Move squid helpers under /usr/lib{,64}/squid for Tumbleweed and SLE16 + Please adjust your config paths accordingly + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.Ezoyjq/_old 2020-08-10 15:02:20.200137924 +0200 +++ /var/tmp/diff_new_pack.Ezoyjq/_new 2020-08-10 15:02:20.204137926 +0200 @@ -18,6 +18,13 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid + +%if 0%{?suse_version} >= 1550 +%define squidhelperdir %{squidlibdir} +%else +%define squidhelperdir %{_sbindir} +%endif + Name: squid Version:4.12 Release:0 @@ -106,7 +113,7 @@ %configure \ --disable-strict-error-checking \ --sysconfdir=%{squidconfdir} \ - --libexecdir=%{_sbindir} \ + --libexecdir=%{squidhelperdir} \ --datadir=%{_datadir}/squid \ --sharedstatedir=%{_localstatedir}/squid \ --with-logdir=%{_localstatedir}/log/squid \ @@ -166,8 +173,11 @@ cat > doc/scripts/cachemgr.readme <<-EOT cachemgr.cgi will now be found in %{_libdir}/%{name} EOT + +%if 0%{?suse_version} <= 1500 install -dpm 755 %{buildroot}/%{_libdir}/%{name} mv %{buildroot}%{_sbindir}/cachemgr.cgi %{buildroot}/%{_libdir}/%{name} +%endif install -dpm 755 doc/contrib install %{SOURCE6} doc/contrib @@ -221,8 +231,8 @@ fi %post -%set_permissions %{_sbindir}/basic_pam_auth -%set_permissions %{_sbindir}/pinger +# %%set_permissions %%{_sbindir}/basic_pam_auth +# %%set_permissions %%{_sbindir}/pinger %set_permissions %{_localstatedir}/cache/squid/ %set_permissions %{_localstatedir}/log/squid/ %tmpfiles_create %{_tmpfilesdir}/squid.conf @@ -232,8 +242,8 @@ %service_del_preun squid.service %verifyscript -%verify_permissions -e %{_sbindir}/basic_pam_auth -%verify_permissions -e %{_sbindir}/pinger +# %%verify_permissions -e %%{_sbindir}/basic_pam_auth +# %%verify_permissions -e %%{_sbindir}/pinger %verify_permissions -e %{_localstatedir}/cache/squid/ %verify_permissions -e %{_localstatedir}/log/squid/ @@ -271,6 +281,7 @@ %dir %{_datadir}/%{name} %dir %{_datadir}/snmp %dir %{_datadir}/snmp/mibs +%dir %{_libdir}/%{name} %{_datadir}/%{name}/errors %{_datadir}/%{name}/icons %{_datadir}/%{name}/mime.conf @@ -278,50 +289,50 @@ %{_datadir}/snmp/mibs/SQUID-MIB.txt %{_bindir}/purge %{_bindir}/squidclient -%{_sbindir}/basic_db_auth -%{_sbindir}/basic_fake_auth -%{_sbindir}/basic_getpwnam_auth -%{_sbindir}/basic_ldap_auth -%{_sbindir}/digest_edirectory_auth -%{_sbindir}/basic_ncsa_auth -%{_sbindir}/basic_nis_auth -%verify(not mode) %attr(2750,root,shadow) %{_sbindir}/basic_pam_auth -%{_sbindir}/basic_pop3_auth -%{_sbindir}/basic_radius_auth -%{_sbindir}/basic_sasl_auth -%{_sbindir}/basic_smb_auth -%{_sbindir}/basic_smb_auth.sh -%{_sbindir}/basic_smb_lm_auth -%{_sbindir}/cert_tool -%{_sbindir}/digest_file_auth -%{_sbindir}/digest_ldap_auth -%{_sbindir}/diskd -%{_sbindir}/ext_edirectory_userip_acl -%{_sbindir}/ext_file_userip_acl -%{_sbindir}/ext_kerberos_ldap_group_acl -%{_sbindir}/ext_ldap_group_acl -%{_sbindir}/ext_session_acl -%{_sbindir}/ext_unix_group_acl -%{_sbindir}/ext_wbinfo_group_acl -%{_sbindir}/helper-mux -%{_sbindir}/log_db_daemon -%{_sbindir}/log_file_daemon -%{_sbindir}/negotiate_kerberos_auth -%{_sbindir}/negotiate_kerberos_auth_test -%{_sbindir}/negotiate_wrapper_auth -%{_sbindir}/ntlm_fake_auth -%{_sbindir}/ntlm_smb_lm_auth -%verify(not user group mode caps) %attr(0750,root,squid) %{_sbindir}/pinger -%{_sbindir}/security_fake_certverify -%{_sbindir}/security_file_certgen -%{_sbindir}/%{name} -%{_sbindir}/storeid_file_rewrite -%{_sbindir}/unlinkd -%{_sbindir}/url_fake_rewrite -%{_sbindir}/url_fake_rewrite.sh -%{_sbindir}/url_lfs_rewrite -%{_sbindir}/ext_time_quota_acl -%{_sbindir}/rc%{name} +%{squidhelperdir}/basic_db_auth +%{squidhelperdir}/basic_fake_auth +%{squidhelperdir}/basic_getpwnam_auth +%{squidhelperdir}/basic_ldap_auth +%{squidhelperdir}/digest_edirectory_auth +%{squidhe
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-06-29 21:17:13 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.3060 (New) Package is "squid" Mon Jun 29 21:17:13 2020 rev:83 rq:817633 version:4.12 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-06-24 15:50:50.404881216 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.3060/squid.changes2020-06-29 21:17:59.413714358 +0200 @@ -9 +9 @@ - * HTTP: validate Content-Length value prefix + * HTTP: validate Content-Length value prefix (CVE-2020-15049, bsc#1173455) Other differences: --
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-06-24 15:50:24 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.2956 (New) Package is "squid" Wed Jun 24 15:50:24 2020 rev:82 rq:816822 version:4.12 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-06-22 17:46:18.685923337 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.2956/squid.changes2020-06-24 15:50:50.404881216 +0200 @@ -4,0 +5,2 @@ + * Fixes a potential Denial of Service when processing TLS certificates +during HTTPS or SSL-Bump connections (CVE-2020-14059, bsc#1173304) Other differences: --
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-06-22 17:46:11 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.2956 (New) Package is "squid" Mon Jun 22 17:46:11 2020 rev:81 rq:816284 version:4.12 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-04-23 18:40:25.65723 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.2956/squid.changes2020-06-22 17:46:18.685923337 +0200 @@ -1,0 +2,11 @@ +Sun Jun 21 05:28:33 UTC 2020 - Andreas Stieger + +- squid 4.12: + * Regression Fix: Revert to slow search for new SMP shm pages + * Fix Negative responses are never cached + * HTTP: validate Content-Length value prefix + * HTTP: add flexible RFC 3986 URI encoder + * Fix stall if transaction overwrites a recently active cache +entry + +--- Old: squid-4.11.tar.xz squid-4.11.tar.xz.asc New: squid-4.12.tar.xz squid-4.12.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.MZ7bu9/_old 2020-06-22 17:46:19.361925458 +0200 +++ /var/tmp/diff_new_pack.MZ7bu9/_new 2020-06-22 17:46:19.361925458 +0200 @@ -19,7 +19,7 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:4.11 +Version:4.12 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0-or-later @@ -65,18 +65,18 @@ BuildRequires: pkgconfig(libsasl2) BuildRequires: pkgconfig(libxml-2.0) BuildRequires: pkgconfig(nettle) -Recommends: logrotate Requires(pre): permissions +Recommends: logrotate Provides: http_proxy # due to package rename # Wed Aug 15 17:40:30 UTC 2012 Provides: %{name}3 = %{version} Obsoletes: %{name}3 < %{version} %{?systemd_ordering} +%sysusers_requires %if 0%{?suse_version} >= 1330 BuildRequires: libnsl-devel %endif -%sysusers_requires %description Squid is a caching proxy for the Web supporting HTTP(S), FTP, and @@ -92,7 +92,7 @@ # upstream patches after RELEASE perl -p -i -e 's|%{_prefix}/local/bin/perl|%{_bindir}/perl|' `find -name "*.pl"` %patch1 -p1 -%if %{suse_version} < 1500 +%if 0%{?suse_version} < 1500 %patch2 -p1 %endif @@ -144,7 +144,7 @@ --disable-arch-native \ --enable-security-cert-generators \ --enable-security-cert-validators -make SAMBAPREFIX=%{_prefix} %{?_smp_mflags} +%make_build SAMBAPREFIX=%{_prefix} %sysusers_generate_pre %{SOURCE12} squid %install @@ -207,7 +207,7 @@ %check # Fails in chroot environment -make %{?_smp_mflags} check +%make_build check %pre -f squid.pre %service_add_pre %{name}.service ++ squid-4.11.tar.xz -> squid-4.12.tar.xz ++ 2403 lines of diff (skipped) ++ squid-4.11.tar.xz.asc -> squid-4.12.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-4.11.tar.xz.asc 2020-04-23 18:40:24.593232409 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.2956/squid-4.12.tar.xz.asc 2020-06-22 17:46:18.333922233 +0200 @@ -1,25 +1,25 @@ -File: squid-4.11.tar.xz -Date: Sun Apr 19 12:56:37 UTC 2020 -Size: 2447700 -MD5 : 10f34e852153a9996aa4614670e2bda1 -SHA1: 053277bf5497163ffc9261b9807abda5959bb6fc +File: squid-4.12.tar.xz +Date: Tue Jun 9 07:34:59 UTC 2020 +Size: 2450564 +MD5 : ad7a4a8a0031cae3435717a759173829 +SHA1: 316b8a343aa542b5e7469d33b9d726bee00679c6 Key : CD6DBF8EF3B17D3E B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E keyring = http://www.squid-cache.org/pgp.asc keyserver = pool.sks-keyservers.net -BEGIN PGP SIGNATURE- -iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAl6cSpEACgkQzW2/jvOx -fT6YbA/6A+IbIbNBJUW45oj23Io9Tw/CzAcTeLHR+McKwV77qMbR+L+kQ+fUdM5F -rHAmd8bVVlyHc4WanVfWItEmzBzHA/ifTNvVpefSGGEbDb80RF66k7ACiZUokg1b -kkPwc/SjDhe2wvketIaBiVVd7pylrlCdVvazcF8gE9MWDOIlJND5mnHXidXvwkbJ -T2//8JZVEmcmN9pdFGNAUVckFm+AnwWXcRM1SQPYDGSVUtjVlqido8snLTA1mZwl -rIpjppujMV54OOWlj+Gqa3MZkpNzIaMCAfphzUFlsQY+/sRUYAOv1wmxw2WclxlK -WlWM+fw8OsYNDMwkOScKZZWceoAkq6UsUHzCAdJIdLqV/R6mZ9nfuZ6BHIr0+2dP -bDf9MU4KXbwEuXiRD/KPziUxxOZwSPivbm3wy9DqTTZfO9V+Iq6FVHX+ahxJ0XbM -JWRYA3GW+DRLjorfsWxU5r4UJsrnBfhItPUAfGPjPjEGZ/pn8r9G6MGenNGPLMKy -wP1rMlOhrZPwerzokzAvKx8G0WWkfN+IPv2JK3rDot6RiJIOuvnZZd4RIuVNTGbh -liO7M24JlWX3WD2wHBzxQag46+plb3VvrrVChwIQnZ2Qzpf50w0Bife/wtNBGpK0 -k/Xi/nocO796YS8GZBnmhS1lEGEwp/YpJBFWmIjTWMUMEOcswVA= -=PKl0 +iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAl7fO6wACgkQzW2/jvOx +fT5dchAAvAB2fh/QBkumskN/K5c061NFA+/ZbHD8gqmvaUUIjXNoEqBhBAzTpCpm +03XcFZdIBFKqkHxiJrlWzdRylSqv5nkw1qZBN6S6NzygYVs3UYHkpNSM8AZLBW4c +XDZEnmYbr2HlWHJ9fISsWhwApQ2HXwzUdMAFeN3ADDtT2
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-04-23 18:40:20 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.2738 (New) Package is "squid" Thu Apr 23 18:40:20 2020 rev:80 rq:796564 version:4.11 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-04-21 13:11:44.144940145 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.2738/squid.changes2020-04-23 18:40:25.65723 +0200 @@ -1,0 +2,19 @@ +Thu Apr 23 13:02:37 UTC 2020 - Adam Majer + +- Update to squid 4.11: + * Fix incorrect buffer handling that can result in cache +poisoning, remote execution, and denial of service attacks when +processing ESI responses +(CVE-2019-12519, CVE-2019-12521, bsc#1169659) + * Fixes possible information disclosure when translating +FTP server listings into HTTP responses. +(CVE-2019-12528, bsc#1162689) + * Fixes possible denial of service caused by incorrect buffer +management ext_lm_group_acl when processing NTLM Authentication +credentials. (CVE-2020-8517, bsc#1162691) + * Fixes a potential remote execution vulnerability when using +HTTP Digest Authentication (CVE-2020-11945, bsc#1170313) + * Fixes problem when reconfigure killed Coordinator in +SMP+ufs configurations (#556) + +--- Old: squid-4.10.tar.xz squid-4.10.tar.xz.asc New: squid-4.11.tar.xz squid-4.11.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.gwIUJ3/_old 2020-04-23 18:40:27.513237995 +0200 +++ /var/tmp/diff_new_pack.gwIUJ3/_new 2020-04-23 18:40:27.517238003 +0200 @@ -19,7 +19,7 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:4.10 +Version:4.11 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0-or-later ++ squid-4.10.tar.xz -> squid-4.11.tar.xz ++ 4743 lines of diff (skipped) retrying with extended exclude list diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/squid-4.10/ChangeLog new/squid-4.11/ChangeLog --- old/squid-4.10/ChangeLog2020-01-20 03:51:40.0 +0100 +++ new/squid-4.11/ChangeLog2020-04-19 14:38:51.0 +0200 @@ -1,3 +1,15 @@ +Changes to squid-4.11 (18 Apr 2020): + + - Bug 5036: capital 'L's in logs when daemon queue overflows + - Bug 5022: Reconfigure kills Coordinator in SMP+ufs configurations + - Bug 5016: systemd thinks Squid is ready before Squid listens + - kerberos_ldap_group: fix encryption type for cross realm check + - HTTP: Ignore malformed Host header in intercept and reverse proxy mode + - Fix Digest authentication nonce handling + - Supply ALE to request_header_add/reply_header_add + - ... and some documentation updates + - ... and some compile fixes + Changes to squid-4.10 (14 Jan 2020): - Bug 5009: Build failure with older clang libc++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/squid-4.10/RELEASENOTES.html new/squid-4.11/RELEASENOTES.html --- old/squid-4.10/RELEASENOTES.html2020-01-20 04:07:14.0 +0100 +++ new/squid-4.11/RELEASENOTES.html2020-04-19 14:50:33.0 +0200 @@ -1,11 +1,12 @@ - - Squid 4.10 release notes + + + Squid 4.11 release notes -Squid 4.10 release notes +Squid 4.11 release notes Squid Developers @@ -63,7 +64,7 @@ 1. Notice -The Squid Team are pleased to announce the release of Squid-4.10. +The Squid Team are pleased to announce the release of Squid-4.11. This new release is available for download from http://www.squid-cache.org/Versions/v4/";>http://www.squid-cache.org/Versions/v4/ or the http://www.squid-cache.org/Download/http-mirrors.html";>mirrors. @@ -637,6 +638,10 @@ The cppunit testing framework is auto-detected and used when available. This option can be used to disable it explicitly. +--without-systemd +SystemD init environment features are auto-detected and used when available. +This option can be used to disable systemd features explicitly. + diff -urN '--exclu
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-04-21 13:11:43 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.2738 (New) Package is "squid" Tue Apr 21 13:11:43 2020 rev:79 rq:795800 version:4.10 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-04-08 19:57:31.905160567 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.2738/squid.changes2020-04-21 13:11:44.144940145 +0200 @@ -1,0 +2,6 @@ +Mon Apr 20 10:24:46 UTC 2020 - Thorsten Kukuk + +- Make logrotate recommended, it's not strictly required and + doesn't make any sense in containers + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.0X4DYZ/_old 2020-04-21 13:11:45.036941923 +0200 +++ /var/tmp/diff_new_pack.0X4DYZ/_new 2020-04-21 13:11:45.036941923 +0200 @@ -65,7 +65,7 @@ BuildRequires: pkgconfig(libsasl2) BuildRequires: pkgconfig(libxml-2.0) BuildRequires: pkgconfig(nettle) -Requires: logrotate +Recommends: logrotate Requires(pre): permissions Provides: http_proxy # due to package rename
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-04-08 19:57:10 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.3248 (New) Package is "squid" Wed Apr 8 19:57:10 2020 rev:78 rq:792007 version:4.10 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-02-19 12:43:13.455934661 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new.3248/squid.changes2020-04-08 19:57:31.905160567 +0200 @@ -41,0 +42,2 @@ + * fixes handling of invalid domain names in cachemgr.cgi +(CVE-2019-18860, bsc#1167373) Other differences: --
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-02-19 12:43:04 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.26092 (New) Package is "squid" Wed Feb 19 12:43:04 2020 rev:77 rq:776229 version:4.10 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2020-02-05 19:44:59.083361494 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new.26092/squid.changes 2020-02-19 12:43:13.455934661 +0100 @@ -1,0 +2,6 @@ +Tue Feb 18 15:46:02 CET 2020 - ku...@suse.de + +- Use sysusers instead of shadow to create squid user and groups +- Don't hard require systemd + +--- New: squid-user.conf Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.J3lJxd/_old 2020-02-19 12:43:15.259938134 +0100 +++ /var/tmp/diff_new_pack.J3lJxd/_new 2020-02-19 12:43:15.263938142 +0100 @@ -33,6 +33,7 @@ Source9:%{name}.permissions Source10: README.kerberos Source11: %{name}.service +Source12: %{name}-user.conf # http://lists.squid-cache.org/pipermail/squid-announce/2016-October/64.html Source13: http://www.squid-cache.org/pgp.asc#/squid.keyring Source15: cache_dir.sed @@ -55,6 +56,8 @@ BuildRequires: pkgconfig BuildRequires: samba-winbind BuildRequires: sharutils +BuildRequires: sysuser-shadow +BuildRequires: sysuser-tools BuildRequires: pkgconfig(expat) BuildRequires: pkgconfig(gssrpc) BuildRequires: pkgconfig(kdb) @@ -64,16 +67,16 @@ BuildRequires: pkgconfig(nettle) Requires: logrotate Requires(pre): permissions -Requires(pre): shadow Provides: http_proxy # due to package rename # Wed Aug 15 17:40:30 UTC 2012 Provides: %{name}3 = %{version} Obsoletes: %{name}3 < %{version} -%{?systemd_requires} +%{?systemd_ordering} %if 0%{?suse_version} >= 1330 BuildRequires: libnsl-devel %endif +%sysusers_requires %description Squid is a caching proxy for the Web supporting HTTP(S), FTP, and @@ -142,6 +145,7 @@ --enable-security-cert-generators \ --enable-security-cert-validators make SAMBAPREFIX=%{_prefix} %{?_smp_mflags} +%sysusers_generate_pre %{SOURCE12} squid %install install -d -m 750 %{buildroot}%{_localstatedir}/{cache,log}/%{name} @@ -197,28 +201,15 @@ mv %{buildroot}%{_datadir}/squid/mib.txt \ %{buildroot}%{_datadir}/snmp/mibs/SQUID-MIB.txt +# Install sysusers file. +mkdir -p %{buildroot}%{_sysusersdir} +install -m 644 %{SOURCE12} %{buildroot}%{_sysusersdir}/ + %check # Fails in chroot environment make %{?_smp_mflags} check -%pre -# we need this group for /usr/sbin/pinger -getent group %{name} >/dev/null || %{_sbindir}/groupadd -g 31 -r %{name} -# we need this group for squid (ntlmauth) -# read access to /var/lib/samba/winbindd_privileged -getent group winbind >/dev/null || %{_sbindir}/groupadd -r winbind -getent passwd squid >/dev/null || \ - %{_sbindir}/useradd -c "WWW-proxy squid" -d %{_localstatedir}/cache/%{name} \ --G winbind -g %{name} -o -u 31 -r -s /bin/false \ -%{name} -# if default group is not squid, change it -if [ "$(%{_bindir}/id -ng %{name} 2>/dev/null)" != "%{name}" ]; then - %{_sbindir}/usermod -g %{name} %{name} -fi -# if squid is not member of winbind, add him -if [ $(%{_bindir}/id -nG %{name} 2>/dev/null | grep -q winbind; echo $?) -ne 0 ]; then - %{_sbindir}/usermod -G winbind %{name} -fi +%pre -f squid.pre %service_add_pre %{name}.service # update mode? @@ -265,6 +256,7 @@ %dir %{squidconfdir} %dir %{_tmpfilesdir} %{_tmpfilesdir}/squid.conf +%{_sysusersdir}/squid-user.conf %config(noreplace) %{squidconfdir}/cachemgr.conf %config(noreplace) %{squidconfdir}/errorpage.css %config(noreplace) %{squidconfdir}/errors ++ squid-user.conf ++ # Type Name ID GECOS [HOME] u squid - "WWW-proxy squid" /var/cache/squid g winbind - - m squid winbind
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2020-02-05 19:44:27 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.26092 (New) Package is "squid" Wed Feb 5 19:44:27 2020 rev:76 rq:770216 version:4.10 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-11-09 23:40:32.537311122 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new.26092/squid.changes 2020-02-05 19:44:59.083361494 +0100 @@ -1,0 +2,13 @@ +Wed Feb 5 09:57:59 UTC 2020 - Adam Majer + +- Update to squid 4.10: + * fixes a security issue allowing a remote client ability to cause +use a buffer overflow when squid is acting as reverse-proxy. +(CVE-2020-8449, CVE-2020-8450, bsc#1162687) + * fixes a security issue allowing for information disclosure in +FTP gateway (CVE-2019-12528, bsc#1162689) + * fixes a security issue in ext_lm_group_acl when processing +NTLM Authentication credentials. (CVE-2020-8517, bsc#1162691) + * improve cache handling with chunked responses + +--- Old: squid-4.9.tar.xz squid-4.9.tar.xz.asc New: squid-4.10.tar.xz squid-4.10.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.aHGPma/_old 2020-02-05 19:45:00.003361932 +0100 +++ /var/tmp/diff_new_pack.aHGPma/_new 2020-02-05 19:45:00.003361932 +0100 @@ -1,7 +1,7 @@ # # spec file for package squid # -# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2020 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -19,7 +19,7 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:4.9 +Version:4.10 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0-or-later ++ squid-4.9.tar.xz -> squid-4.10.tar.xz ++ 41593 lines of diff (skipped) ++ squid-4.9.tar.xz.asc -> squid-4.10.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-4.9.tar.xz.asc 2019-11-09 23:40:32.501311066 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new.26092/squid-4.10.tar.xz.asc 2020-02-05 19:44:58.979361445 +0100 @@ -1,25 +1,25 @@ -File: squid-4.9.tar.xz -Date: Wed Nov 6 04:57:57 UTC 2019 -Size: 2444664 -MD5 : 5c2e335dd1e8ced9dda6e0e11894b344 -SHA1: 43c90a1a2eb4d1613f1bfc603ad08e8a835be319 +File: squid-4.10.tar.xz +Date: Mon Jan 20 04:10:45 UTC 2020 +Size: 2445848 +MD5 : af7ac6e70f9bd03ae4fcec0c9b99c38a +SHA1: b8b267771550bb8c7f2b2968b305118090e7217a Key : CD6DBF8EF3B17D3E B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E keyring = http://www.squid-cache.org/pgp.asc keyserver = pool.sks-keyservers.net -BEGIN PGP SIGNATURE- -iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAl3CUt8ACgkQzW2/jvOx -fT4Wnw/+Osf9VTnDFj5g/eXgb6vhzDaSLVfPNKLI6mF46a6twTvlMcM1+sX+b2Of -KXznDkUHvhIHijXGVbscSWx6Rn2tuPGDRRtDucqK98bYUo7mhEpdGtkVE7t8U3iz -wIKm7Hbr8qar4nJDLoZiZSCswI+UTcYncUuAqZ0O8LGIK0m6aYYDSS4bRq04yiS2 -1JD0UEWW35X35hoVuhGlRRgvLzKn8F4KFeDde0gg+cqvkM0LR2+xkUqz6DcyE34m -8uK6hlABu32Zj+9oRBvNNcDOr2bfNYsbS4tAy635thFTyGUF7jjrOEXhl2SYrDY5 -gVRzXHq/WBQ5rjTdmwvfn3wcwA1BQK/Oru6OaTFGaSrRlmJJM3JUFQWSsYWm8ARV -BJEGy8iQ9R41Yom2Ct8SOhwg7f3fBlFnK+BB8En+8s+fEa8z5rVmmjh1Es8qm6Tj -C/xGTZ23C4lUveKznDhc8MR2M4jjsH77Y7K/PvJUjZ/yYNpwsOwhv7fs51v70S5Q -4wC+ykpsmwckmOajrkOnupUN9Un2FzfyOctTt6PQkmwlq++09Jwxwg36O+KLDX08 -f48F/qCCJ4bubuhFjM/A+cwVev0nAp0haSV0jpbemAHwzog21O51l70B8qUe18jp -XKYpbp3zCJ5cNmrAummsEVaj2ZCsH5ZHxTUIwvJDIS5b0OFn/lo= -=LNc9 +iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAl4lKFMACgkQzW2/jvOx +fT4aUBAAhR5YcsaTdBaFMOTNM0WUp3USNxjhrQtq+rwkQLqwh3hl2idKZY6fmqAJ +cv/m9915T7Nd2H7ROl3vxs0ToP1R5EsEbyvcz/tKPoBrXFDDH9JsgkvbF0A4oxW1 +S8PtRlwXPbllHp/yaEZk9NL0PZCrUeW79s4M2hXSPOsC0/RogUUMN/Saa8VX3ZVe +ZuSZoy+Ew3ZeQ3Y/mqblTN6xRn9zLq+GfqXOjTQQBfAiGprjsPQE4rOame6P9meh +aGOGDABx7YoRsSskiAZY8cfIsunZdHoORi1WXvcu3hAB0zCZjrO0vptSig7sVCFD +pdjLCrxopj/jIpAcVLPhl7AHjirAeTxDraQhgie+PT3M+tVm950HJZRt/idzCiNX +XJj4Tw2gZ+tCKPLUoPvILID8grQQ+HKUA1a8ASeUxUD+sOcwdolUhbzlIl9lMDwY +hxle9J1QH/04MAhMEnfGZH+ekR5PV+XG4iLWQnPcMSKymtDxiYpgJ9GTDBww0phk +P1Tg33kSkHLAecEvcFlkZwrsw57qULFQKo2ZUE7Udm9xwBruwPunc+1XJ/PCs6mc +3RfT5b1rf/fgWhvuwm5vuBkbL1H74gX8u84G984st5zj33t9aagByUXIkxjsLQww +pFHXYm1PbphFsRIAcAGfkEluSz1X9yOwXyy12uuE7Bc/Ox7zIXk= +=vpEO -END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2019-11-09 23:40:27 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.2990 (New) Package is "squid" Sat Nov 9 23:40:27 2019 rev:75 rq:746661 version:4.9 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-08-08 14:23:35.484347350 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.2990/squid.changes2019-11-09 23:40:32.537311122 +0100 @@ -1,0 +2,26 @@ +Fri Nov 8 15:24:15 UTC 2019 - Adam Majer + +- Update to squid 4.9: + * fixes multiple Cross-Site Scripting issues in cachemgr.cgi +(CVE-2019-13345, bsc#1140738) + * fixes heap overflow in URN processing +(CVE-2019-12526, bsc#1156326) + * fixes multiple issues in URI processing +(CVE-2019-12523, CVE-2019-18676, bsc#1156329) + * fixes Cross-Site Request Forgery in HTTP Request processing +(CVE-2019-18677, bsc#1156328) + * fixes HTTP Request Splitting in HTTP message processing +(CVE-2019-18678, bsc#1156323) + * fixes information disclosure in HTTP Digest Authentication +(CVE-2019-18679, bsc#1156324) + * lower cache_peer hostname - this showed up as DNS failures +if peer name was configured with any upper case characters + * TLS: Multiple SSL-Bump fixes + * TLS: Fix expiration of self-signed generated certs to be 3 years + * TLS: Fix on_unsupported_protocol tunnel action + * Fix several rock cache_dir corruption issues + +- fix_configuration_error.patch: upstreamed +- old_nettle_compat.patch: refreshed + +--- Old: fix_configuration_error.patch squid-4.8.tar.xz squid-4.8.tar.xz.asc New: squid-4.9.tar.xz squid-4.9.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.w876Mh/_old 2019-11-09 23:40:33.417312475 +0100 +++ /var/tmp/diff_new_pack.w876Mh/_new 2019-11-09 23:40:33.437312506 +0100 @@ -19,7 +19,7 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:4.8 +Version:4.9 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0-or-later @@ -40,7 +40,6 @@ Source17: tmpfilesdir.squid.conf Patch1: missing_installs.patch Patch2: old_nettle_compat.patch -Patch3: fix_configuration_error.patch BuildRequires: cppunit-devel BuildRequires: db-devel BuildRequires: ed @@ -93,7 +92,6 @@ %if %{suse_version} < 1500 %patch2 -p1 %endif -%patch3 -p1 %build %define _lto_cflags %{nil} ++ old_nettle_compat.patch ++ --- /var/tmp/diff_new_pack.w876Mh/_old 2019-11-09 23:40:33.649312832 +0100 +++ /var/tmp/diff_new_pack.w876Mh/_new 2019-11-09 23:40:33.653312838 +0100 @@ -15,11 +15,11 @@ Base64 and base16 decoding: Use *dst_length as output only. -Index: squid-4.8/src/HttpHeader.cc +Index: squid-4.9/src/HttpHeader.cc === squid-4.8.orig/src/HttpHeader.cc -+++ squid-4.8/src/HttpHeader.cc -@@ -1301,8 +1301,8 @@ HttpHeader::getAuthToken(Http::HdrType i +--- squid-4.9.orig/src/HttpHeader.cc squid-4.9/src/HttpHeader.cc +@@ -1298,8 +1298,8 @@ HttpHeader::getAuthToken(Http::HdrType i char *decodedAuthToken = result.rawAppendStart(BASE64_DECODE_LENGTH(fieldLen)); struct base64_decode_ctx ctx; base64_decode_init(&ctx); @@ -30,10 +30,10 @@ !base64_decode_final(&ctx)) { return nil; } -Index: squid-4.8/src/auth/basic/Config.cc +Index: squid-4.9/src/auth/basic/Config.cc === squid-4.8.orig/src/auth/basic/Config.cc -+++ squid-4.8/src/auth/basic/Config.cc +--- squid-4.9.orig/src/auth/basic/Config.cc squid-4.9/src/auth/basic/Config.cc @@ -176,8 +176,8 @@ Auth::Basic::Config::decodeCleartext(con struct base64_decode_ctx ctx; base64_decode_init(&ctx); @@ -45,10 +45,10 @@ cleartext[dstLen] = '\0'; /* -Index: squid-4.8/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc +Index: squid-4.9/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc === squid-4.8.orig/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc -+++ squid-4.8/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc +--- squid-4.9.orig/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc squid-4.9/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc @@ -131,6 +131,7 @@ token_decode(size_t *decodedLen, uint8_t { struct base64_decode_ctx ctx; @@ -57,10 +57,10 @@ if (!base64_decode_update(&ctx, decodedL
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2019-08-08 14:23:33 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.9556 (New) Package is "squid" Thu Aug 8 14:23:33 2019 rev:74 rq:721533 version:4.8 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-07-26 12:42:21.813855718 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.9556/squid.changes2019-08-08 14:23:35.484347350 +0200 @@ -1,0 +2,6 @@ +Tue Aug 6 13:05:58 UTC 2019 - Adam Majer + +- fix_configuration_error.patch: Fix compilation with -Wreturn-type +- old_nettle_compat.patch: Update to actually use older version + +--- New: fix_configuration_error.patch Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.G3Iezs/_old 2019-08-08 14:23:36.224347237 +0200 +++ /var/tmp/diff_new_pack.G3Iezs/_new 2019-08-08 14:23:36.224347237 +0200 @@ -40,6 +40,7 @@ Source17: tmpfilesdir.squid.conf Patch1: missing_installs.patch Patch2: old_nettle_compat.patch +Patch3: fix_configuration_error.patch BuildRequires: cppunit-devel BuildRequires: db-devel BuildRequires: ed @@ -92,6 +93,7 @@ %if %{suse_version} < 1500 %patch2 -p1 %endif +%patch3 -p1 %build %define _lto_cflags %{nil} ++ fix_configuration_error.patch ++ Fix warnings that result in build failures with -Wreturn-type errors error: no return statement in function returning non-void warning: 'conv' defined but not used 202 | static struct pam_conv conv = { &password_conversation, 0 }; |^~~~ cc1plus: some warnings being treated as errors Index: squid-4.8/acinclude/pam.m4 === --- squid-4.8.orig/acinclude/pam.m4 +++ squid-4.8/acinclude/pam.m4 @@ -21,7 +21,7 @@ AC_DEFUN([CHECK_STRUCT_PAM_CONV], [ AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[ #include static int -password_conversation(int num_msg, const struct pam_message **msg, struct pam_response **resp, void *appdata_ptr) {} +password_conversation(int num_msg, const struct pam_message **msg, struct pam_response **resp, void *appdata_ptr) { return 0; } static struct pam_conv conv = { &password_conversation, 0 }; ]])], [ squid_cv_pam_conv_signature=linux @@ -29,7 +29,7 @@ static struct pam_conv conv = { &passwor AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[ #include static int -password_conversation(int num_msg, struct pam_message **msg, struct pam_response **resp, void *appdata_ptr) {} +password_conversation(int num_msg, struct pam_message **msg, struct pam_response **resp, void *appdata_ptr) { return 0; } static struct pam_conv conv = { &password_conversation, 0 }; ]])], [ squid_cv_pam_conv_signature=solaris ++ old_nettle_compat.patch ++ --- /var/tmp/diff_new_pack.G3Iezs/_old 2019-08-08 14:23:36.284347227 +0200 +++ /var/tmp/diff_new_pack.G3Iezs/_new 2019-08-08 14:23:36.284347227 +0200 @@ -19,28 +19,32 @@ === --- squid-4.8.orig/src/HttpHeader.cc +++ squid-4.8/src/HttpHeader.cc -@@ -1301,7 +1301,7 @@ HttpHeader::getAuthToken(Http::HdrType i +@@ -1301,8 +1301,8 @@ HttpHeader::getAuthToken(Http::HdrType i char *decodedAuthToken = result.rawAppendStart(BASE64_DECODE_LENGTH(fieldLen)); struct base64_decode_ctx ctx; base64_decode_init(&ctx); -size_t decodedLen = 0; -+size_t decodedLen = BASE64_DECODE_LENGTH(fieldLen); - if (!base64_decode_update(&ctx, &decodedLen, reinterpret_cast(decodedAuthToken), fieldLen, field) || +-if (!base64_decode_update(&ctx, &decodedLen, reinterpret_cast(decodedAuthToken), fieldLen, field) || ++unsigned decodedLen = BASE64_DECODE_LENGTH(fieldLen); ++if (!base64_decode_update(&ctx, &decodedLen, reinterpret_cast(decodedAuthToken), fieldLen, (uint8_t*)field) || !base64_decode_final(&ctx)) { return nil; + } Index: squid-4.8/src/auth/basic/Config.cc === --- squid-4.8.orig/src/auth/basic/Config.cc +++ squid-4.8/src/auth/basic/Config.cc -@@ -176,7 +176,7 @@ Auth::Basic::Config::decodeCleartext(con +@@ -176,8 +176,8 @@ Auth::Basic::Config::decodeCleartext(con struct base64_decode_ctx ctx; base64_decode_init(&ctx); -size_t dstLen = 0; -+size_t dstLen = BASE64_DECODE_LENGTH(srcLen)+1; - if (base64_decode_update(&ctx, &dstLen, reinterpret_cast(cleartext), srcLen, eek) && base64_decode_final(&ctx)) { +-if (base64_decode_update(&ctx, &dstLen, reinterpret_cast(cleartext), srcLen, eek
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2019-07-26 12:42:20 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.4126 (New) Package is "squid" Fri Jul 26 12:42:20 2019 rev:73 rq:718583 version:4.8 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-07-18 15:20:24.944144110 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.4126/squid.changes2019-07-26 12:42:21.813855718 +0200 @@ -1,0 +2,5 @@ +Thu Jul 18 14:11:28 UTC 2019 - Adam Majer + +- old_nettle_compat.patch: Fix compatibility with nettle in SLE-12 + +--- New: old_nettle_compat.patch Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.tvth4C/_old 2019-07-26 12:42:23.101855178 +0200 +++ /var/tmp/diff_new_pack.tvth4C/_new 2019-07-26 12:42:23.105855176 +0200 @@ -39,6 +39,7 @@ Source16: initialize_cache_if_needed.sh Source17: tmpfilesdir.squid.conf Patch1: missing_installs.patch +Patch2: old_nettle_compat.patch BuildRequires: cppunit-devel BuildRequires: db-devel BuildRequires: ed @@ -88,6 +89,9 @@ # upstream patches after RELEASE perl -p -i -e 's|%{_prefix}/local/bin/perl|%{_bindir}/perl|' `find -name "*.pl"` %patch1 -p1 +%if %{suse_version} < 1500 +%patch2 -p1 +%endif %build %define _lto_cflags %{nil} ++ old_nettle_compat.patch ++ Author: Adam Majer Date: Thu Jul 18 13:57:22 CEST 2019 nettle from SLE-12 is missing the change from later versions that ignores the destLen parameter size to base64_decode_update function. This is only used in the assert() but we need to pass real size of the buffer as otherwise all we get is a crash. The missing commit in nettle is, commit 07cb0b62a5fab216ed647f5a87e0f17ab3c9a615 Author: Niels Möller Date: Fri Feb 7 09:11:20 2014 +0100 Base64 and base16 decoding: Use *dst_length as output only. Index: squid-4.8/src/HttpHeader.cc === --- squid-4.8.orig/src/HttpHeader.cc +++ squid-4.8/src/HttpHeader.cc @@ -1301,7 +1301,7 @@ HttpHeader::getAuthToken(Http::HdrType i char *decodedAuthToken = result.rawAppendStart(BASE64_DECODE_LENGTH(fieldLen)); struct base64_decode_ctx ctx; base64_decode_init(&ctx); -size_t decodedLen = 0; +size_t decodedLen = BASE64_DECODE_LENGTH(fieldLen); if (!base64_decode_update(&ctx, &decodedLen, reinterpret_cast(decodedAuthToken), fieldLen, field) || !base64_decode_final(&ctx)) { return nil; Index: squid-4.8/src/auth/basic/Config.cc === --- squid-4.8.orig/src/auth/basic/Config.cc +++ squid-4.8/src/auth/basic/Config.cc @@ -176,7 +176,7 @@ Auth::Basic::Config::decodeCleartext(con struct base64_decode_ctx ctx; base64_decode_init(&ctx); -size_t dstLen = 0; +size_t dstLen = BASE64_DECODE_LENGTH(srcLen)+1; if (base64_decode_update(&ctx, &dstLen, reinterpret_cast(cleartext), srcLen, eek) && base64_decode_final(&ctx)) { cleartext[dstLen] = '\0'; Index: squid-4.8/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc === --- squid-4.8.orig/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc +++ squid-4.8/src/auth/negotiate/SSPI/negotiate_sspi_auth.cc @@ -131,6 +131,7 @@ token_decode(size_t *decodedLen, uint8_t { struct base64_decode_ctx ctx; base64_decode_init(&ctx); +*decodedLen = BASE64_DECODE_LENGTH(strlen(srcLen)); if (!base64_decode_update(&ctx, decodedLen, decoded, strlen(buf), reinterpret_cast(buf)) || !base64_decode_final(&ctx)) { SEND("BH base64 decode failed"); Index: squid-4.8/src/auth/negotiate/kerberos/negotiate_kerberos_auth.cc === --- squid-4.8.orig/src/auth/negotiate/kerberos/negotiate_kerberos_auth.cc +++ squid-4.8/src/auth/negotiate/kerberos/negotiate_kerberos_auth.cc @@ -681,7 +681,7 @@ main(int argc, char *const argv[]) struct base64_decode_ctx ctx; base64_decode_init(&ctx); -size_t dstLen = 0; +size_t dstLen = BASE64_DECODE_LENGTH(srcLen); if (!base64_decode_update(&ctx, &dstLen, static_cast(input_token.value), srcLen, b64Token) || !base64_decode_final(&ctx)) { debug((char *) "%s| %s: ERROR: Invalid base64 token [%s]\n", LogTime(), PROGRAM, b64Token); Index: squid-4.8/src/auth/negotiate/wrapper/negotiate_wrapper.cc === --- squid-4.8.orig/src/auth/negotiate/
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2019-05-15 12:33:54 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.5148 (New) Package is "squid" Wed May 15 12:33:54 2019 rev:71 rq:702817 version:4.7 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-05-08 15:17:48.449167800 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new.5148/squid.changes2019-05-15 12:33:55.244615679 +0200 @@ -30 +30,2 @@ - bsc#959290, CVE-2016-4052, CVE-2016-4053) + bsc#959290, CVE-2016-4052, CVE-2016-4053, + bsc#1029157, bsc#1024020, bsc#998595, fate#319674) Other differences: --
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2019-05-08 15:17:46 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.5148 (New) Package is "squid" Wed May 8 15:17:46 2019 rev:70 rq:701549 version:4.7 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-02-25 17:57:04.642304406 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new.5148/squid.changes2019-05-08 15:17:48.449167800 +0200 @@ -1,0 +2,31 @@ +Wed May 8 10:41:22 UTC 2019 - Adam Majer + +- Update to squid 4.7: (jsc#SLE-5648) + + Fix stack-based buffer-overflow when parsing SNMP messages + + Fixed squidclient authentication + + Add support for buffer-size= to UDP logging + + Trust intermediate CAs from trusted stores + + Bug #4928: Cannot convert non-IPv4 to IPv4 + + Bug #4796: comm.cc !isOpen(conn->fd) assertion when rotating logs + + Bug #4823: assertion failed: "lowestOffset () <= target_offset" +(bsc#1133089) + + Bug #4942: --with-filedescriptors does not do anything + +--- +Tue Feb 26 15:53:50 UTC 2019 - adam.ma...@suse.de + +- Syncronize bug and CVE references between 3.x and 4.x squid changelog + versions. These bugs were fixed here either without properly referencing + them during the fix or 4.x branch was never affected by them. + (bsc#1090089, CVE-2018-1172, bsc#979008, CVE-2016-4556, + bsc#938715, CVE-2015-5400, bsc#949942, CVE-2014-9749, + bsc#1016169, CVE-2016-10003, bsc#1016168, CVE-2016-10002, + bsc#979011, CVE-2016-4555, bsc#979010, CVE-2016-4554, + bsc#979009, CVE-2016-4553, bsc#976556, CVE-2016-4054, + bsc#976553, CVE-2016-4051, bsc#973783, CVE-2016-3948, + bsc#973782, CVE-2016-3947, bsc#968395, CVE-2016-2572, + bsc#968394, CVE-2016-2571, bsc#968393, CVE-2016-2570, + bsc#968392, CVE-2016-2569, bsc#967011, CVE-2016-2390, + bsc#959290, CVE-2016-4052, CVE-2016-4053) + +--- @@ -54 +85,2 @@ - + Fix memory leak when parsing SNMP packet (bsc#1113669) + + Fix memory leak when parsing SNMP packet +(bsc#1113669, CVE-2018-19132) @@ -56 +88 @@ -before displaying them (bsc#1113668) +before displaying them (bsc#1113668, CVE-2018-19131) Old: squid-4.6.tar.xz squid-4.6.tar.xz.asc New: squid-4.7.tar.xz squid-4.7.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.AQweX1/_old 2019-05-08 15:17:50.645172640 +0200 +++ /var/tmp/diff_new_pack.AQweX1/_new 2019-05-08 15:17:50.669172692 +0200 @@ -19,7 +19,7 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:4.6 +Version:4.7 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0-or-later ++ squid-4.6.tar.xz -> squid-4.7.tar.xz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-4.6/ChangeLog new/squid-4.7/ChangeLog --- old/squid-4.6/ChangeLog 2019-02-19 03:46:22.0 +0100 +++ new/squid-4.7/ChangeLog 2019-05-06 15:53:49.0 +0200 @@ -1,3 +1,14 @@ +Changes to squid-4.7 (06 May 2019): + + - Bug 4942: --with-filedescriptors does not do anything + - Bug 4928: Cannot convert non-IPv4 to IPv4 + - Bug 4823: assertion failed: "lowestOffset () <= target_offset" + - Bug 4796: comm.cc !isOpen(conn->fd) assertion when rotating logs + - Fix squidclient authentication to origin servers + - Fix stack-based buffer-overflow when parsing SNMP messages + - Add support for buffer-size= to UDP logging + - TLS: When using OpenSSL, trust intermediate CAs from trusted store + Changes to squid-4.6 (19 Feb 2019): - Bug 4915: Detect IPv6 loopback binding errors diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-4.6/RELEASENOTES.html new/squid-4.7/RELEASENOTES.html --- old/squid-4.6/RELEASENOTES.html 2019-02-19 04:13:57.0 +0100 +++ new/squid-4.7/RELEASENOTES.html 2019-05-06 16:07:31.0 +0200 @@ -2,10 +2,10 @@ - Squid 4.6 release notes + Squid 4.7 release notes -Squid 4.6 release notes +Squid 4.7 release notes Squid Developers @@ -63,7 +63,7 @@ 1. Notice -The Squid Team are pleased to announce the release of Squid-4.6 for testing. +The Squid Team are pleased to announce the release of Squid-4.7 for testing. This new release is available for download from http://www.squid-cache.org/Versions/v4/";>http://www.squid-cache.org/Versions/v4/ or the http://www.squid-cache.org/Downloa
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2019-02-25 17:57:01 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.28833 (New) Package is "squid" Mon Feb 25 17:57:01 2019 rev:69 rq:678651 version:4.6 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-02-19 12:02:04.701085979 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new.28833/squid.changes 2019-02-25 17:57:04.642304406 +0100 @@ -1,0 +2,18 @@ +Sat Feb 23 06:37:31 UTC 2019 - sean...@opensuse.org + +- Update to squid 4.6: + + master commit b599471 leaks memory (#4919) + + SourceFormat Enforcement (#367) + + Detect IPv6 loopack binding errors (#355) + + Do not call setsid() in --foreground mode (#354) + + Fail Rock swapout if the disk dropped write reqs (#352) + + Initialize StoreMapSlice when reserving a new cache slot (#350) + + Fixed disker-to-worker queue overflows (#353) + + Fix OpenSSL builds that define OPENSSL_NO_ENGINE (#349) + + Fix BodyPipe/Sink memory leaks associated with auto-consumption + + Exit when GoIntoBackground() fork() call fails (#344) + + GCC-8 compile errors with -O3 optimization (#4875) + + Initial translations to ka/georgian language (#345) + + basic_ldap_auth: Return BH on internal errors (#347) + +--- Old: squid-4.5.tar.xz squid-4.5.tar.xz.asc New: squid-4.6.tar.xz squid-4.6.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.b4hcqU/_old 2019-02-25 17:57:05.334303818 +0100 +++ /var/tmp/diff_new_pack.b4hcqU/_new 2019-02-25 17:57:05.338303813 +0100 @@ -19,7 +19,7 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:4.5 +Version:4.6 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0-or-later ++ squid-4.5.tar.xz -> squid-4.6.tar.xz ++ 43262 lines of diff (skipped) ++ squid-4.5.tar.xz.asc -> squid-4.6.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-4.5.tar.xz.asc 2019-01-03 18:08:11.204057276 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new.28833/squid-4.6.tar.xz.asc 2019-02-25 17:57:04.510304518 +0100 @@ -1,25 +1,25 @@ -File: squid-4.5.tar.xz -Date: Tue Jan 1 05:12:50 UTC 2019 -Size: 2437936 -MD5 : 8275da5846f9f2243ad2625e5aef2ee0 -SHA1: 1249cf60f1ea2a0cd145f66a790d1e9e48333c51 +File: squid-4.6.tar.xz +Date: Tue Feb 19 03:25:07 UTC 2019 +Size: 2439792 +MD5 : e25e7cc37754ad14d8aa368c0c210e54 +SHA1: 0396fe8077049000407d13aca8efdd9228e69d98 Key : CD6DBF8EF3B17D3E B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E keyring = http://www.squid-cache.org/pgp.asc keyserver = pool.sks-keyservers.net -BEGIN PGP SIGNATURE- -iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAlwq9vIACgkQzW2/jvOx -fT5u8hAAnXV/L+XDTZXjxIYimN/4zKPVwG0lEbAg6uXQ0z/7+tH3G8kQ+DAXtxlz -my5MnJ0GvI98RhuIIR34wces/KLMYtcH8wTj5YzNRxLZu929eIm5IyV02Ve83FNd -uuU4Tea0H2qCPUKZrsdQX7fn9ZlVeSvu7/pRNmM1/V+Txnn0Jut+Xk1KxkTHtwr5 -5UjGm+sP9/ISpttosY5FcYEdIrOB9PlqLI6umt9L+mdAOnnhIN2YgXX167PzSZqv -O+3VRUKGEFXi31krvWE+gL46tnHpV75A9Ccy52yNKCkdfVbRelJijnk7WYj/32GC -jWOzkjJh235CoIwiVt0xQshnrVs3EbiEWgu2XLBbGmWAyc4eJerPxwR8MQR6hnWf -tGB+RyzQ+7rGBTCupKuk1k75tHOqPxcPN6N2Pw+l+A34yAyu721Bnt76AqQVYPQH -wKwK5BGQF5t1llW8I5C7CAO5Kn/mtF5ZbkhjTsqy+BvqVPAeMVbCCgGro694vWKG -YOX2MqXwVaA/LE+Y8cWRYIVfyl3ABpP98JZU9HAzC9D+AIwLFUI6EaVrwcKfDU1j -GRSBJsG6N0Z/MvdQdlU3xqAWvyKI+HRLKxRP+9DK2DkRX8RVsODhZ2txsjpCxh3t -mYICqcuahPuPSUvR6m+wfLDsniQ93Fdzzv6YC34f/9LPdnj4DrM= -=aK8J +iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAlxrdx0ACgkQzW2/jvOx +fT741Q//dEG1uEEGuU7qKAmimpw6JtMauSMkGCD5wrwBEQo4z0Y4DYsY7mlT4F0I +0VOHjuB0HVx7xE3x8vV5j38KqpokhywFtd2JJHjmTCSNt4KIMBVf9U9PbUlHbg5y +iBw0aQlXknB9cYkI9vbK9MwDVBhv1U25dUqJ/+f8XwTR1rpLmC4ShvtaEK++uMOB +Df8EszHxGZseyKay/JGNUT2SwWdl7j2zjhRK9WueJGyJ85m76ptkpwJ1BuOz2dJ6 +XJVFuoJl8cb4Pm0xQEVobZ3MdMzqZUEgAmT6rWm9znmNuVQUw0pr7sMowOQyC5bm +x7ltSr10ZmT+0Fhu0OnXTN2wzz09L8CHTHacFBzNDzxqfh7s+Rlv+KIgEoJKR68O +4BjSNYPf4U34D7fVsk6pE7pJFwbE3gkwU6oU6tdpG9d8pSzR5yX7JVXdI+FZM6mb +NyQ0p1wcNN87Zk7R/Yve0CneZVNUzXvuXMM7IfmN81v30iakDL0GOEDqENLIxvxX +dPRqd2wy00sdvX+ZIWfqKFGvgA0PFYs/GQN0tl8S66XgmIHnbFObGZ3iPiNAknhm +a2cSero+GEOH/R3wp03ogDnX6uGRS83tIMWNZwaE9vGS8GA256dpZ9JY7s3LIdws +VyRWqTiN2ZFrl7XRU/wpkr9T4YwRG8swQxe46w46RjGZc046w4w= +=F/If -END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2019-02-19 12:00:50 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.28833 (New) Package is "squid" Tue Feb 19 12:00:50 2019 rev:68 rq:677001 version:4.5 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2019-01-03 18:08:11.476057035 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new.28833/squid.changes 2019-02-19 12:02:04.701085979 +0100 @@ -1,0 +2,11 @@ +Mon Feb 18 10:03:23 UTC 2019 - adam.ma...@suse.de + +- Revert whitespace deletions of .changes as it makes diffs a pain. + +--- +Sat Feb 16 00:19:25 UTC 2019 - Jan Engelhardt + +- Do not hide errors from useradd. Make scriptlets + plain sh compatible. + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.4TrEnj/_old 2019-02-19 12:02:06.505085047 +0100 +++ /var/tmp/diff_new_pack.4TrEnj/_new 2019-02-19 12:02:06.509085045 +0100 @@ -197,26 +197,21 @@ %pre # we need this group for /usr/sbin/pinger -if [[ -z $(%{_bindir}/getent group %{name} 2>/dev/null) ]]; then - %{_sbindir}/groupadd -g 31 -r %{name} 2>/dev/null -fi +getent group %{name} >/dev/null || %{_sbindir}/groupadd -g 31 -r %{name} # we need this group for squid (ntlmauth) # read access to /var/lib/samba/winbindd_privileged -if [[ -z $(%{_bindir}/getent group winbind 2>/dev/null) ]]; then - %{_sbindir}/groupadd -r winbind 2>/dev/null -fi -if [[ -z $(%{_bindir}/getent passwd squid 2>/dev/null) ]]; then +getent group winbind >/dev/null || %{_sbindir}/groupadd -r winbind +getent passwd squid >/dev/null || \ %{_sbindir}/useradd -c "WWW-proxy squid" -d %{_localstatedir}/cache/%{name} \ -G winbind -g %{name} -o -u 31 -r -s /bin/false \ -%{name} 2>/dev/null -fi +%{name} # if default group is not squid, change it -if [[ "$(%{_bindir}/id -ng %{name} 2>/dev/null)" != "%{name}" ]]; then - %{_sbindir}/usermod -g %{name} %{name} 2>/dev/null +if [ "$(%{_bindir}/id -ng %{name} 2>/dev/null)" != "%{name}" ]; then + %{_sbindir}/usermod -g %{name} %{name} fi # if squid is not member of winbind, add him -if [[ $(%{_bindir}/id -nG %{name} 2>/dev/null | grep -q winbind >/dev/null; echo $?) -ne 0 ]]; then - %{_sbindir}/usermod -G winbind %{name} 2>/dev/null +if [ $(%{_bindir}/id -nG %{name} 2>/dev/null | grep -q winbind; echo $?) -ne 0 ]; then + %{_sbindir}/usermod -G winbind %{name} fi %service_add_pre %{name}.service
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2019-01-03 18:08:06 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.28833 (New) Package is "squid" Thu Jan 3 18:08:06 2019 rev:67 rq:662383 version:4.5 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-12-04 20:57:49.032620863 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new.28833/squid.changes 2019-01-03 18:08:11.476057035 +0100 @@ -1,0 +2,15 @@ +Wed Jan 02 05:45:03 UTC 2019 - s...@suspend.net + +- Update to squid 4.5: + + Squid crashes when ICAPS and a sslcrtvalidator used together (#328) + + ssl_bump prevents from accessing some web contents (#304) + + Docs: improved lexgrog compatibility (#340) + + Redesign forward_max_tries count TCP connection attempts + + Fix client_connection_mark ACL handling of clientless transactions + + Fix netdb exchange with a TLS cache peer + + Update netdb when tunneling requests + + Use pkg-config for detecting libxml2 + + Misc doc updates + + Misc code compile fixes + +--- Old: squid-4.4.tar.xz squid-4.4.tar.xz.asc New: squid-4.5.tar.xz squid-4.5.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.FyaNsr/_old 2019-01-03 18:08:12.040056534 +0100 +++ /var/tmp/diff_new_pack.FyaNsr/_new 2019-01-03 18:08:12.044056530 +0100 @@ -1,7 +1,7 @@ # # spec file for package squid # -# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -12,14 +12,14 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via http://bugs.opensuse.org/ +# Please submit bugfixes or comments via https://bugs.opensuse.org/ # %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:4.4 +Version:4.5 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0-or-later ++ squid-4.4.tar.xz -> squid-4.5.tar.xz ++ 3223 lines of diff (skipped) retrying with extended exclude list diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/squid-4.4/ChangeLog new/squid-4.5/ChangeLog --- old/squid-4.4/ChangeLog 2018-10-27 22:44:55.0 +0200 +++ new/squid-4.5/ChangeLog 2019-01-01 01:02:15.0 +0100 @@ -1,12 +1,24 @@ -Changes to squid-4.3 (28 Oct 2018): +Changes to squid-4.5 (01 Jan 2019): - - Bug 4893: Malformed %>ru URIs for CONNECT requests - - Fix %USER_CA_CERT_xx and %USER_CERT_xx crashes - - SSL: support compilation with minimal OpenSSL - - SSL: certificate fields injection via %D in ERR_SECURE_CONNECT_FAIL - - Fix netdb not saving to disk - - Fix memory leak when parsing SNMP packet - - ... and some compile issues + - Bug 4253: ssl_bump prevents access to some web contents + - TLS: add %>handshake logformat code + - Redesign forward_max_tries to count TCP connection attempts + - Fix client_connection_mark ACL handling of clientless transactions + - Fix netdb exchange with a TLS cache_peer + - Update netdb when tunneling requests + - Use pkg-config for detecting libxml2 + - ... and some documentation updates + - ... and some code compile fixes + +Changes to squid-4.4 (28 Oct 2018): + + - Bug 4893: Malformed %>ru URIs for CONNECT requests + - Fix %USER_CA_CERT_xx and %USER_CERT_xx crashes + - SSL: support compilation with minimal OpenSSL + - SSL: certificate fields injection via %D in ERR_SECURE_CONNECT_FAIL + - Fix netdb not saving to disk + - Fix memory leak when parsing SNMP packet + - ... and some compile issues Changes to squid-4.3 (01 Oct 2018): diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/squid-4.4/RELEASENOTES.html new/squid-4.5/RELEASENO
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2018-12-04 20:57:39 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new.19453 (New) Package is "squid" Tue Dec 4 20:57:39 2018 rev:66 rq:653729 version:4.4 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-10-31 13:15:42.211381701 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new.19453/squid.changes 2018-12-04 20:57:49.032620863 +0100 @@ -1,0 +2,5 @@ +Fri Nov 9 13:13:37 UTC 2018 - adam.ma...@suse.de + +- Fix permissions of installed file to tmpfilesdir + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.bNJEHt/_old 2018-12-04 20:57:49.536620307 +0100 +++ /var/tmp/diff_new_pack.bNJEHt/_new 2018-12-04 20:57:49.536620307 +0100 @@ -184,7 +184,7 @@ # needed for smp support (bsc#1112695, bsc#1112066) mkdir -p %{buildroot}%{_tmpfilesdir} -install -D -m 755 %{SOURCE17} %{buildroot}%{_tmpfilesdir}/squid.conf +install -D -m 644 %{SOURCE17} %{buildroot}%{_tmpfilesdir}/squid.conf # Move the MIB definition to the proper place (and name) mkdir -p %{buildroot}%{_datadir}/snmp/mibs
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2018-10-31 13:14:28 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Wed Oct 31 13:14:28 2018 rev:65 rq:645296 version:4.4 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-10-23 20:42:45.872374128 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-10-31 13:15:42.211381701 +0100 @@ -1,0 +2,9 @@ +Mon Oct 29 10:26:08 UTC 2018 - adam.ma...@suse.de + +- New upstream stable version 4.4: + + Fix memory leak when parsing SNMP packet (bsc#1113669) + + Fixed display of error page by quoting certificate fields +before displaying them (bsc#1113668) + + Malformed %>ru URIs for CONNECT requests + +--- Old: squid-4.3.tar.xz squid-4.3.tar.xz.asc New: squid-4.4.tar.xz squid-4.4.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.obet8E/_old 2018-10-31 13:15:45.615378456 +0100 +++ /var/tmp/diff_new_pack.obet8E/_new 2018-10-31 13:15:45.639378433 +0100 @@ -19,7 +19,7 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:4.3 +Version:4.4 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0-or-later ++ squid-4.3.tar.xz -> squid-4.4.tar.xz ++ 2925 lines of diff (skipped) ++ squid-4.3.tar.xz.asc -> squid-4.4.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-4.3.tar.xz.asc 2018-10-04 19:02:33.223136560 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid-4.4.tar.xz.asc 2018-10-31 13:15:40.687383154 +0100 @@ -1,25 +1,25 @@ -File: squid-4.3.tar.xz -Date: Sun Sep 30 19:40:57 UTC 2018 -Size: 2435880 -MD5 : ebb67abaec4db9d298c0edd8e1ffaca4 -SHA1: 690540e7d0904e3959557f8beca45dbac1c94578 +File: squid-4.4.tar.xz +Date: Sat Oct 27 21:20:24 UTC 2018 +Size: 2436468 +MD5 : 892504ca9700e1f139a53f84098613bd +SHA1: 0ab6b133f65866d825bf72cbbe8cef209768b2fa Key : CD6DBF8EF3B17D3E B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E keyring = http://www.squid-cache.org/pgp.asc keyserver = pool.sks-keyservers.net -BEGIN PGP SIGNATURE- -iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAluxJtUACgkQzW2/jvOx -fT50ZxAAnvDo6WNO/ZJTbNvgiH78/U8aO/PFseR/ZXSwhFU+OmGsouhIxFCtEi+X -c3Zk8yxl48nGQA72gR44n46V6uADQXXv7lxZb1aHjulbgMBCK4o03jpzAalgREAy -UkJnxWp+5VE43eML1iep27TpZlnWo7cUfXAJtv1NugdgUw8sOuWVIvI/9h5mtgcw -UVBXI8UWsA3p1RmllF8fBPXwcJKJdGPKxu598pC/ctjxJXZtaFnqj50j7QqL7+cE -Xh3w9ozdW2e624keY/iaXPJXTEHPyGPGDkfxLn2bVpbYfc+avgdtI8MsshFBVHzD -vOSO8bxWrFaA2VSihCKEMtvXEYXZhI0EQZOVJGEP7IOxz6sLTYg1c24yG5PDMUTD -l9bSZmpvcqmeiUrMbczwOYCP8lG+Sqj+cc8AroTxG1+wRKgTtZmgYBakEoYcZm6G -VFS08hV5YzTB6yAh7nUAd1kQDT6rKKKcDbWOBmc9xEut1eGZVDd4hkUQif+kKIWi -WVPuUKhyk454xI2J9F5L1isnR1XLzPiOFsnjlDH63/KhcJoRyPElWCBl229xLvAE -1FGxIa0GYXY8J2tXoaPXRhd6AW/ThsIQnQqgjbwSp/uqtXL8E6LioKMtxAdgXDzH -1yK8nNPCSjaqcfrAADgl6kfbvSALPhg5lGDN0aRaCz0cf53TZ30= -=HvFs +iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAlvU1qAACgkQzW2/jvOx +fT5Y3Q//R3/ZtDHal9H9c4VUB1fEzkk22JfgXTzRRUdzNkN+XxDkVGmM9R0E0Opo +9E/lsE9PcLX1EBtBXbPfwLESzfMe4QJgqq1B4FocpJcdtfCQX6ADU4Qdfc+oo8Z1 +J/xCf8XrU3yUgXn3pMnQ9DT+IuPYe+Jte7Awm148mC15GMC49NBAYAd793XZ+L2t +fVPCbVYA40AU3xVJkxlblh7O0E8UEQ7zQMxcXM2jJJ4jJOjqecOIoJt6lyPD59q3 +UjD0EmcjTj54BpaU8r++kAc2TkLyBvFV1vWQuQRNG5IAMEOF3H8OfujCXl3lX9fD +Tvi9763f9LxdImLJttkzgTt20XAudlUmKOdpj6t1uF+7EmNJg/ChowyLsLzlLLST +1mGNdcUdP9VhX2aoTXN/ctn8BTQ/cNIx2VY8kKWsXB+ymFcCJRBW1cBAr3R+UzuX +KVlsDzlxP6Dp8EFvKN3sIbM/QtpstKgbTkxro7d9XBkeldsasd5uI2Yt5PSMIs+y +VtscqCnwDjxAIW6FNqB96J4hcOYECdWHDL3s46wEDnQaiR0IdBAN5QHn1imzM5e1 +eHuwZimqBW6vE4rPnVpPIr1Gml5OlLl3te2jsbUVmBiOwDVlQLZJQGzI5UTazvnN +eR3QeTW+ggSAdVc6GEApELARfKPRxywLQTOlAhEPn0xayy4ByME= +=1eSQ -END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2018-10-23 20:42:13 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Tue Oct 23 20:42:13 2018 rev:64 rq:643975 version:4.3 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-10-04 19:02:33.263136518 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-10-23 20:42:45.872374128 +0200 @@ -1,0 +2,7 @@ +Tue Oct 23 09:20:12 UTC 2018 - adam.ma...@suse.de + +- Create runtime directories needed when SMP mode is enabled. + (bsc#1112695, bsc#1112066) +- Make changelog entries format consistent + +--- @@ -11,10 +18,10 @@ - * Bug 4885: Excessive memory usage when running out of descriptors - * Bug 4877: Add missing text about external_acl_type %DATA changes - * Bug 4875 pt1: GCC-8 compile errors with -O3 optimization - * Bug 4716: Blank lines in cachemgr.conf are not skipped - * Bug 4691: balance_on_multiple_ip config option docs - * basic_pop3_auth: fix startup errors - * langpack: Add missing dialect aliases - * Fix range_offset_limit debugging - * Fix icc build errors - * Update systemd dependencies in squid.service + + Bug 4885: Excessive memory usage when running out of descriptors + + Bug 4877: Add missing text about external_acl_type %DATA changes + + Bug 4875 pt1: GCC-8 compile errors with -O3 optimization + + Bug 4716: Blank lines in cachemgr.conf are not skipped + + Bug 4691: balance_on_multiple_ip config option docs + + basic_pop3_auth: fix startup errors + + langpack: Add missing dialect aliases + + Fix range_offset_limit debugging + + Fix icc build errors + + Update systemd dependencies in squid.service New: tmpfilesdir.squid.conf Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.83FeNV/_old 2018-10-23 20:42:46.460373425 +0200 +++ /var/tmp/diff_new_pack.83FeNV/_new 2018-10-23 20:42:46.464373420 +0200 @@ -12,7 +12,7 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via https://bugs.opensuse.org/ +# Please submit bugfixes or comments via http://bugs.opensuse.org/ # @@ -37,6 +37,7 @@ Source13: http://www.squid-cache.org/pgp.asc#/squid.keyring Source15: cache_dir.sed Source16: initialize_cache_if_needed.sh +Source17: tmpfilesdir.squid.conf Patch1: missing_installs.patch BuildRequires: cppunit-devel BuildRequires: db-devel @@ -181,6 +182,10 @@ sed -i -e 's!%%{_libdir}!%{_libdir}!' %{buildroot}%{_unitdir}/%{name}.service ln -sf %{_sbindir}/service %{buildroot}%{_sbindir}/rc%{name} +# needed for smp support (bsc#1112695, bsc#1112066) +mkdir -p %{buildroot}%{_tmpfilesdir} +install -D -m 755 %{SOURCE17} %{buildroot}%{_tmpfilesdir}/squid.conf + # Move the MIB definition to the proper place (and name) mkdir -p %{buildroot}%{_datadir}/snmp/mibs mv %{buildroot}%{_datadir}/squid/mib.txt \ @@ -228,7 +233,7 @@ %set_permissions %{_sbindir}/pinger %set_permissions %{_localstatedir}/cache/squid/ %set_permissions %{_localstatedir}/log/squid/ - +%tmpfiles_create %{_tmpfilesdir}/squid.conf %service_add_post squid.service %preun @@ -257,6 +262,8 @@ %verify(not user group mode) %attr(750,%{name},root) %dir %{_localstatedir}/cache/%{name}/ %verify(not user group mode) %attr(750,%{name},root) %dir %{_localstatedir}/log/%{name}/ %dir %{squidconfdir} +%dir %{_tmpfilesdir} +%{_tmpfilesdir}/squid.conf %config(noreplace) %{squidconfdir}/cachemgr.conf %config(noreplace) %{squidconfdir}/errorpage.css %config(noreplace) %{squidconfdir}/errors ++ tmpfilesdir.squid.conf ++ # See tmpfiles.d(5) for details d /run/squid 0700 squid root -
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2018-10-04 19:02:24 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Thu Oct 4 19:02:24 2018 rev:63 rq:639903 version:4.3 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-08-15 10:36:36.812096855 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-10-04 19:02:33.263136518 +0200 @@ -1,0 +2,21 @@ +Thu Oct 4 07:36:49 UTC 2018 - Martin Pluskal + +- Correct changelog +- Enable tests + +--- +Tue Oct 02 10:16:22 UTC 2018 - s...@suspend.net + +- New upstream stable version 4.3: + * Bug 4885: Excessive memory usage when running out of descriptors + * Bug 4877: Add missing text about external_acl_type %DATA changes + * Bug 4875 pt1: GCC-8 compile errors with -O3 optimization + * Bug 4716: Blank lines in cachemgr.conf are not skipped + * Bug 4691: balance_on_multiple_ip config option docs + * basic_pop3_auth: fix startup errors + * langpack: Add missing dialect aliases + * Fix range_offset_limit debugging + * Fix icc build errors + * Update systemd dependencies in squid.service + +--- Old: squid-4.2.tar.xz squid-4.2.tar.xz.asc New: squid-4.3.tar.xz squid-4.3.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.dCSP6m/_old 2018-10-04 19:02:33.791135962 +0200 +++ /var/tmp/diff_new_pack.dCSP6m/_new 2018-10-04 19:02:33.791135962 +0200 @@ -12,19 +12,19 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via http://bugs.opensuse.org/ +# Please submit bugfixes or comments via https://bugs.opensuse.org/ # %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:4.2 +Version:4.3 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0-or-later Group: Productivity/Networking/Web/Proxy -Url:http://www.squid-cache.org +URL:http://www.squid-cache.org Source0:http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz Source1: http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz.asc Source5:pam.squid @@ -186,6 +186,10 @@ mv %{buildroot}%{_datadir}/squid/mib.txt \ %{buildroot}%{_datadir}/snmp/mibs/SQUID-MIB.txt +%check +# Fails in chroot environment +make %{?_smp_mflags} check + %pre # we need this group for /usr/sbin/pinger if [[ -z $(%{_bindir}/getent group %{name} 2>/dev/null) ]]; then @@ -240,7 +244,6 @@ %service_del_postun squid.service %files -%defattr(-,root,root) %license COPYING %doc ChangeLog CONTRIBUTORS CREDITS %doc QUICKSTART README RELEASENOTES.html SPONSORS* ++ squid-4.2.tar.xz -> squid-4.3.tar.xz ++ 19314 lines of diff (skipped) retrying with extended exclude list diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/squid-4.2/ChangeLog new/squid-4.3/ChangeLog --- old/squid-4.2/ChangeLog 2018-08-05 16:13:41.0 +0200 +++ new/squid-4.3/ChangeLog 2018-09-30 20:57:54.0 +0200 @@ -1,3 +1,16 @@ +Changes to squid-4.3 (01 Oct 2018): + + - Bug 4885: Excessive memory usage when running out of descriptors + - Bug 4877: Add missing text about external_acl_type %DATA changes + - Bug 4875 pt1: GCC-8 compile errors with -O3 optimization + - Bug 4716: Blank lines in cachemgr.conf are not skipped + - Bug 4691: balance_on_multiple_ip config option docs + - basic_pop3_auth: fix startup errors + - langpack: Add missing dialect aliases + - Fix range_offset_limit debugging + - Fix icc build errors + - Update systemd dependencies in squid.service + Changes to squid-4.2 (04 Aug 2018): - Regression fix: support for https_port clientca= option diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/squid-4.2/RELEASENOTES.
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2018-08-15 10:36:34 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Wed Aug 15 10:36:34 2018 rev:62 rq:628977 version:4.2 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-07-09 13:31:38.442454386 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-08-15 10:36:36.812096855 +0200 @@ -1,0 +2,9 @@ +Mon Aug 13 07:30:05 UTC 2018 - adam.ma...@suse.de + +- New upstream stable version 4.2: + + fix HTTPMSGLOCK missing pointer safety + + gcc-8 fixes + + fix milliseconds logformats prepend 0s instead of spaces + + fix %>ru logging of huge URLs + +--- Old: squid-4.1.tar.xz squid-4.1.tar.xz.asc New: squid-4.2.tar.xz squid-4.2.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.Za9Ibq/_old 2018-08-15 10:36:37.476098066 +0200 +++ /var/tmp/diff_new_pack.Za9Ibq/_new 2018-08-15 10:36:37.476098066 +0200 @@ -19,7 +19,7 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:4.1 +Version:4.2 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0-or-later ++ squid-4.1.tar.xz -> squid-4.2.tar.xz ++ 7881 lines of diff (skipped) ++ squid-4.1.tar.xz.asc -> squid-4.2.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-4.1.tar.xz.asc 2018-07-09 13:31:38.430454411 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid-4.2.tar.xz.asc 2018-08-15 10:36:36.792096819 +0200 @@ -1,25 +1,25 @@ -File: squid-4.1.tar.xz -Date: Mon Jul 2 03:56:22 UTC 2018 -Size: 2425892 -MD5 : 9c6356352f25cac9fd0586344f349fbf -SHA1: 591828f9524a6250b3d3926eb589ea598bc43d98 +File: squid-4.2.tar.xz +Date: Sun Aug 5 15:04:50 UTC 2018 +Size: 2426856 +MD5 : 2cf3f5f183d04322d798f98ea5ead43f +SHA1: 77fd6f06e6028780faf85ba7e7e9aef0922e9dc0 Key : CD6DBF8EF3B17D3E B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E keyring = http://www.squid-cache.org/pgp.asc keyserver = pool.sks-keyservers.net -BEGIN PGP SIGNATURE- -iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAls5om0ACgkQzW2/jvOx -fT5kFA//fwkwm4I2FkEnyY5klJEdyofYHIFTA9t4XG146VRksGXd8DRgRj2u+QTg -87v7pyaqurI41flHLtH+pnaCy2WdFU+fBwILSX6SPqpOAQULrNPbrjNLExVliYE0 -Y7XqnEDvJnngo07SYYC3er53bur/EL5yI5Tf4btlDGbWQTcHQqFP6q/IzGOK/xQ4 -pDD6vv2V5Olr+w3k4relDMtBrY43tVDF3J4pdl9zXHV8if2Pzni5UFXtMXMlHOqN -z96iaerHcPxLO4BmGiHngXXREGWCin8gKiAhPXaaTkdir2P09KX+h02LyB5JbNz8 -nuwvapmQcCJ4l4nti+e3i23zEm7p0Oc8eIDiz64O9zmafBmVs/omYrOFfOj7HoLP -Oe8Lxg4lrhmAUml3H5RHsJyBmmtMqNQxJqFI1rUXLCBYfxFyaW6c8xTRtaixTXip -HfFsDbUOYQ/uKzMXMgUKU4+BixV5fJEDM3ZwSTsTkCLfzvG5/OwJ04fechhciGJL -A2HDn3Aj+8m3JkKwT0n1GO95Q+rxuWm6gX2Fx9/uve8RhSu4Yq4sLQ+IsUna9RuJ -fV9aCYY0ge27VpxXPcPIMKx/n9MbVaEcHyFvhNmGUsYTb3T7taXJ54dDQ97wVn3N -uue0MKEqLy+WibwpKXaMXVM4qX/bO3ZYEauNxk8CELXD6yonu5Y= -=WX3y +iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAltnEhsACgkQzW2/jvOx +fT5elRAAvdmTD1kxfE4CZEmp2SJ1KgfMaCXehFFtFYRbdi8oNYoN5u75mwgo2VO1 +WmBedYJ3c9UKyaqu5AIc60WRIE+boFBy0vvaJO5T+wl3Ay1SKkuS5253dllxg6RT +r+1Kh9j72rchyBTerWClAydH5PRc9r5fNOzufJGTV8s/SCoAD+dxZHFZT6kad9U1 +n0+vcOM1I8dJCVNDakTXqY0zou/gURLfl7EJW/PYkHatJitXazoRVPROF0G1U4Xh ++/wDGj+1+bUEj7K4YIJ2/LfftnVY+c85UiG7URFZ32uNJx8aM7zevfSePdgN6U7c +DUBvtIScI/b2NOgp3scNKuDFs61aLIx8qOjXa603xQs2xbsufCaTv8vFnEz/oO0F ++924pcT3Fbh3vYe3iWP9MejaFf2dDF+1OAGt2sY/LX10VO68bEGpF0fAWGbyDEOC +HGk5cNdfUIK3TISbTOGzG7X3ysZ+5/UxtX4Q1y7x9vBVXGfdZrixfWG9BZkcYyxz +SvykpFe9WvNw1zoIUED/8Sf1FgK0f+WGrpyCnDSDnUrJ26NZOtTkXkJgf239yNBH +KUNgaTxH20Ix8mPGDohT5QgmvpULz0r5ZecHkeoYzyxvF8c6EFOdVt6Iq4jdOT3v +QpcZhfxQhg8yklE+cQjbD0Qywc0QIu19Uzh5URDu4UrarsVVpKM= +=I3Em -END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2018-07-09 13:30:52 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Mon Jul 9 13:30:52 2018 rev:61 rq:621672 version:4.1 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-06-20 15:32:48.630911901 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-07-09 13:31:38.442454386 +0200 @@ -1,0 +2,7 @@ +Thu Jul 5 15:30:07 UTC 2018 - adam.ma...@suse.de + +- New upstream stable version 4.1: + + Fix --with-netfilter-conntrack error message + + Supply ALE for force_request_body_continuation ACL + +--- Old: squid-4.0.25.tar.xz squid-4.0.25.tar.xz.asc New: squid-4.1.tar.xz squid-4.1.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.JxEFja/_old 2018-07-09 13:31:39.026453211 +0200 +++ /var/tmp/diff_new_pack.JxEFja/_new 2018-07-09 13:31:39.026453211 +0200 @@ -19,7 +19,7 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:4.0.25 +Version:4.1 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0-or-later ++ squid-4.0.25.tar.xz -> squid-4.1.tar.xz ++ 4783 lines of diff (skipped) ++ squid-4.0.25.tar.xz.asc -> squid-4.1.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-4.0.25.tar.xz.asc2018-06-20 15:32:46.043005799 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid-4.1.tar.xz.asc 2018-07-09 13:31:38.430454411 +0200 @@ -1,25 +1,25 @@ -File: squid-4.0.25.tar.xz -Date: Mon Jun 11 17:15:25 UTC 2018 -Size: 2424644 -MD5 : a0b5f7bd39216aa7d8fce332441bbff7 -SHA1: 306117ebc37dc475cad5d8dc29a3fdf89a75e5c3 +File: squid-4.1.tar.xz +Date: Mon Jul 2 03:56:22 UTC 2018 +Size: 2425892 +MD5 : 9c6356352f25cac9fd0586344f349fbf +SHA1: 591828f9524a6250b3d3926eb589ea598bc43d98 Key : CD6DBF8EF3B17D3E B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E keyring = http://www.squid-cache.org/pgp.asc keyserver = pool.sks-keyservers.net -BEGIN PGP SIGNATURE- -iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAlserjcACgkQzW2/jvOx -fT7aGQ//Sez7N4o7uzBlmrd3h3O0/plPhxNcbvWgMjz8RNGZDPIhNwYt8QUpeyTG -47Uw01ukmIKJstekYvjHYlu8LGY1Sgc0OGv7VxdreOOKN2pewnoJ0c3JFHSl/Lu+ -pH8ePWPVSWWWAWIOsjCkbiEHzUtp3F1U/xUlpUuSDPepEE+RPe/6n11ugAMlKQUW -TfVJ4+9BBb1hbGcrMjdyn6OohsiXZtH3+kk9rV4KkKfoyAUCBgDgb9mW30yRcHip -B2CEOxzwRyCPZaT3uc7kPg9mThtLKAkvsLlamYw35nGzzwt1Kr/e49Q8TJBMdXkK -AWP6N9tfr3Hsi4akcV12ZyiMZzPJGIS/E/KDGlh5049lzCoHcMEwuc9C37N+oZCg -esBraPiXEF8y0wEIHQ1DOEBx2qAETlVsqj+D8LV3LiRJcKzqqQRPmJ3963lKxo83 -LYRgA1OFL4O39TI7SdgctMkOfpWDosTqX6nqzVAvmmXLxspE+L2VS7ydZGZH3tG2 -inGyf4i0nWCDoqkkcGEfZaq3zysceiL3KdsyqMra9I+QW/S4TRYiTO0pqbJXHgq7 -/8YdUdbCRH2UR9OYHO7Oq1KtzRQNMNR0H/fMgQ6yGWnvqmXLhPnGkZoUq0RIHqwV -p3QX0TOtD90zg5Zi6ppysZIk6GdhmVxl0w80BT/hZ8En3yQaI1Q= -=EpT6 +iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAls5om0ACgkQzW2/jvOx +fT5kFA//fwkwm4I2FkEnyY5klJEdyofYHIFTA9t4XG146VRksGXd8DRgRj2u+QTg +87v7pyaqurI41flHLtH+pnaCy2WdFU+fBwILSX6SPqpOAQULrNPbrjNLExVliYE0 +Y7XqnEDvJnngo07SYYC3er53bur/EL5yI5Tf4btlDGbWQTcHQqFP6q/IzGOK/xQ4 +pDD6vv2V5Olr+w3k4relDMtBrY43tVDF3J4pdl9zXHV8if2Pzni5UFXtMXMlHOqN +z96iaerHcPxLO4BmGiHngXXREGWCin8gKiAhPXaaTkdir2P09KX+h02LyB5JbNz8 +nuwvapmQcCJ4l4nti+e3i23zEm7p0Oc8eIDiz64O9zmafBmVs/omYrOFfOj7HoLP +Oe8Lxg4lrhmAUml3H5RHsJyBmmtMqNQxJqFI1rUXLCBYfxFyaW6c8xTRtaixTXip +HfFsDbUOYQ/uKzMXMgUKU4+BixV5fJEDM3ZwSTsTkCLfzvG5/OwJ04fechhciGJL +A2HDn3Aj+8m3JkKwT0n1GO95Q+rxuWm6gX2Fx9/uve8RhSu4Yq4sLQ+IsUna9RuJ +fV9aCYY0ge27VpxXPcPIMKx/n9MbVaEcHyFvhNmGUsYTb3T7taXJ54dDQ97wVn3N +uue0MKEqLy+WibwpKXaMXVM4qX/bO3ZYEauNxk8CELXD6yonu5Y= +=WX3y -END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2018-06-20 15:31:31 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Wed Jun 20 15:31:31 2018 rev:60 rq:617654 version:4.0.25 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-06-08 23:16:46.869212942 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-06-20 15:32:48.630911901 +0200 @@ -1,0 +2,17 @@ +Mon Jun 18 13:04:17 UTC 2018 - adam.ma...@suse.de + +- New upstream version 4.0.25: + + Fixed regression: querying private entries for HTCP/ICP + + Fixed regression: deny_info %R macro not being expanded + + Fixed regression: proxy_auth ACL -i/+i flags not working + + Fixed regression: filter chain certificates for validity +when loading + + Fixed regression: Transient reader locking broken in 4.0.24 + + Fixed NegotiateSsl crash on aborting transaction + + Fixed IPC shared memory leaks when disker queue overflows + + Update negotiate_kerberos_auth helper protocol to v3.4 + + Fixed: purge tool does not obey --sysconfdir= build option + + Add timestamps to (most) FATAL messages +- a3f6783.patch: upstreamed, obsolete. + +--- Old: a3f6783.patch squid-4.0.24.tar.xz squid-4.0.24.tar.xz.asc New: squid-4.0.25.tar.xz squid-4.0.25.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.5hNlp1/_old 2018-06-20 15:32:50.578841222 +0200 +++ /var/tmp/diff_new_pack.5hNlp1/_new 2018-06-20 15:32:50.582841077 +0200 @@ -19,7 +19,7 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:4.0.24 +Version:4.0.25 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0-or-later @@ -38,7 +38,6 @@ Source15: cache_dir.sed Source16: initialize_cache_if_needed.sh Patch1: missing_installs.patch -Patch2: a3f6783.patch BuildRequires: cppunit-devel BuildRequires: db-devel BuildRequires: ed @@ -87,7 +86,6 @@ # upstream patches after RELEASE perl -p -i -e 's|%{_prefix}/local/bin/perl|%{_bindir}/perl|' `find -name "*.pl"` %patch1 -p1 -%patch2 -p1 %build autoreconf -fi ++ squid-4.0.24.tar.xz -> squid-4.0.25.tar.xz ++ 8281 lines of diff (skipped) ++ squid-4.0.24.tar.xz.asc -> squid-4.0.25.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-4.0.24.tar.xz.asc2018-03-30 12:07:49.324867687 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid-4.0.25.tar.xz.asc 2018-06-20 15:32:46.043005799 +0200 @@ -1,25 +1,25 @@ -File: squid-4.0.24.tar.xz -Date: Wed Mar 7 15:09:08 UTC 2018 -Size: 2420076 -MD5 : dcb167d7677ff469c1c59b0baad8a5be -SHA1: 8c9bbe539af5f1060d93d30d7e099a6badc1f3e1 +File: squid-4.0.25.tar.xz +Date: Mon Jun 11 17:15:25 UTC 2018 +Size: 2424644 +MD5 : a0b5f7bd39216aa7d8fce332441bbff7 +SHA1: 306117ebc37dc475cad5d8dc29a3fdf89a75e5c3 Key : CD6DBF8EF3B17D3E B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E keyring = http://www.squid-cache.org/pgp.asc keyserver = pool.sks-keyservers.net -BEGIN PGP SIGNATURE- -iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAlqgAJwACgkQzW2/jvOx -fT7HgBAAnyzIsJ95aFGQGKsXxxzXMQkjrWu2XQS6Fg9oJ/jFtS99msvoRZXLzpTs -m5/n0QIk9h9xXPs8iOsfJLUymslw8LLOMIfljFVfxBId8pb4wcKf+OTGRjnmrqFy -5btu1xr5kZuKSbNzP5KXet6KOitkkC+siuCfaZ5a8Zuf+aJRQBoc9v9ETbfnXesg -kJWUd7G7BgvxCYC8x/dstabi3iA8qWk1zE01fZ2V9Xa5Cx4zYe7G6XFqG79VoMyd -uaLBWhC055Xf8Pt87KSBDrSgQMrFTlnwi/ybAROIXbF3B0FEVtBbRmjI9YvOAhIM -dMassujNGwFFcIFq2ghh6EHgChreV+zRqLOghGRy5+A0d9lUNKRGTOFHhJAMauKs -ipMFJuc6oKL22TGaFyRJmQjY+F/Fkow99k7M3XMtMp8Ybl0APgCU35ac0F9UkeSh -lU68Y4ZzBn2//z+vRDF4AtJuwCAec1uHWFp8LsXjVMJHa3xKONy766LYIZJnYU4p -Pco0UGDT0bKl5xSA0a3Awx2FYsQn7Ng9TSmgk2G+GJrWNfqEPqdZ9xaCuW78GwvG -41QYQTALAsfWjzVYVvPxSkELPNdZp7tn8PKrJZhEoLDkxO3cC1p1WrOUrLFzsTi+ -+iDtv9RNtvHpGuzQ8MDl5Ek7pYOlNhP/ecDAJQ1/gXljspYZoIo= -=3OwY +iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAlserjcACgkQzW2/jvOx +fT7aGQ//Sez7N4o7uzBlmrd3h3O0/plPhxNcbvWgMjz8RNGZDPIhNwYt8QUpeyTG +47Uw01ukmIKJstekYvjHYlu8LGY1Sgc0OGv7VxdreOOKN2pewnoJ0c3JFHSl/Lu+ +pH8ePWPVSWWWAWIOsjCkbiEHzUtp3F1U/xUlpUuSDPepEE+RPe/6n11ugAMlKQUW +TfVJ4+9BBb1hbGcrMjdyn6OohsiXZtH3+kk9rV4KkKfoyAUCBgDgb9mW30yRcHip +B2CEOxzwRyCPZaT3uc7kPg9mThtLKAkvsLlamYw35nGzzwt1Kr/e49Q8TJBMdXkK +AWP6N9tfr3Hsi4akcV12ZyiMZzPJGIS/E/KDGlh5049lzCoHcMEwuc9C37N+oZCg +esBraPiXEF8y0wEIHQ1DOEBx2qAETlVsqj+D8LV3LiRJcKzqqQRPmJ3963lKxo83 +LYRgA1OFL4O39TI7SdgctMkOfpWDosTqX6nqzVAvmmXLxspE+L2VS7ydZGZH3tG2 +inGyf4i0nWCDoqkkcGEfZaq3zysceiL3KdsyqMra9I+QW/S4TR
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2018-06-08 23:16:44 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Fri Jun 8 23:16:44 2018 rev:59 rq:614573 version:4.0.24 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-05-16 11:43:47.939482730 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-06-08 23:16:46.869212942 +0200 @@ -1,0 +2,6 @@ +Wed Jun 6 13:52:01 UTC 2018 - adam.ma...@suse.de + +- a3f6783.patch: Fixes certificate handling with intermediates + chains + +--- New: a3f6783.patch Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.vDarvR/_old 2018-06-08 23:16:48.389158043 +0200 +++ /var/tmp/diff_new_pack.vDarvR/_new 2018-06-08 23:16:48.393157899 +0200 @@ -38,6 +38,7 @@ Source15: cache_dir.sed Source16: initialize_cache_if_needed.sh Patch1: missing_installs.patch +Patch2: a3f6783.patch BuildRequires: cppunit-devel BuildRequires: db-devel BuildRequires: ed @@ -86,6 +87,7 @@ # upstream patches after RELEASE perl -p -i -e 's|%{_prefix}/local/bin/perl|%{_bindir}/perl|' `find -name "*.pl"` %patch1 -p1 +%patch2 -p1 %build autoreconf -fi ++ a3f6783.patch ++ commit a3f6783b1cfe4b8067312fa65828fcd925757c38 Author: Amos Jeffries Date: Tue Jun 5 06:11:29 2018 + Bug 4831: filter chain certificates for validity when loading (#187) 51e09c08a5e6c582e7d93af99a8f2cfcb14ea9e6 adding GnuTLS support required splitting the way certificate chains were loaded. This resulted in the leaf certificate being added twice at the prefix of a chain in the serverHello. It turns out that some recipients validate strictly that the chain delivered by a serverHello does not contain extra certificates and reject the handshake if they do. This patch implements the XXX about filtering certificates for chain sequence order and self-sign properties, added in the initial PR. Resolving the bug 4831 regression and also reporting failures at startup/reconfigure for admins. Also, add debug display of certificate names for simpler detection and administrative fix when loaded files fail these tests. diff --git a/src/security/KeyData.cc b/src/security/KeyData.cc index 23d123954..052c64ffd 100644 --- a/src/security/KeyData.cc +++ b/src/security/KeyData.cc @@ -86,8 +86,6 @@ void Security::KeyData::loadX509ChainFromFile() { #if USE_OPENSSL -// XXX: This BIO loads the public cert as first chain cert, -// so the code appending chains sends it twice in handshakes. const char *certFilename = certFile.c_str(); Ssl::BIO_Pointer bio(BIO_new(BIO_s_file())); if (!bio || !BIO_read_filename(bio.get(), certFilename)) { @@ -96,14 +94,41 @@ Security::KeyData::loadX509ChainFromFile() return; } -if (X509_check_issued(cert.get(), cert.get()) == X509_V_OK) -debugs(83, 5, "Certificate is self-signed, will not be chained"); -else { +#if TLS_CHAIN_NO_SELFSIGNED // ignore self-signed certs in the chain +if (X509_check_issued(cert.get(), cert.get()) == X509_V_OK) { +char *nameStr = X509_NAME_oneline(X509_get_subject_name(cert.get()), nullptr, 0); +debugs(83, DBG_PARSE_NOTE(2), "Certificate is self-signed, will not be chained: " << nameStr); +OPENSSL_free(nameStr); +} else +#endif +{ +debugs(83, DBG_PARSE_NOTE(3), "Using certificate chain in " << certFile); // and add to the chain any other certificate exist in the file -while (X509 *ca = PEM_read_bio_X509(bio.get(), nullptr, nullptr, nullptr)) { -// XXX: self-signed check should be applied to all certs loaded. -// XXX: missing checks that the chained certs are actually part of a chain for validating cert. -chain.emplace_front(Security::CertPointer(ca)); +CertPointer latestCert = cert; + +while (auto ca = PEM_read_bio_X509(bio.get(), nullptr, nullptr, nullptr)) { +// get Issuer name of the cert for debug display +char *nameStr = X509_NAME_oneline(X509_get_subject_name(ca), nullptr, 0); + +#if TLS_CHAIN_NO_SELFSIGNED // ignore self-signed certs in the chain +// self-signed certificates are not valid in a sent chain +if (X509_check_issued(ca, ca) == X509_V_OK) { +debugs(83, DBG_PARSE_NOTE(2), "CA " << nameStr << " is self-signed, will not be chained: " << nameStr); +OPENSSL_free(nameStr); +continue;
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2018-05-16 11:41:52 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Wed May 16 11:41:52 2018 rev:58 rq:607436 version:4.0.24 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-03-30 12:07:50.152837751 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-05-16 11:43:47.939482730 +0200 @@ -1,0 +2,5 @@ +Tue May 15 07:43:44 UTC 2018 - adam.ma...@suse.de + +- Fix package configure + +--- @@ -4 +9 @@ -- New upstream version 4.2.24 +- New upstream version 4.0.24 Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.rqglFH/_old 2018-05-16 11:43:48.823450553 +0200 +++ /var/tmp/diff_new_pack.rqglFH/_new 2018-05-16 11:43:48.827450408 +0200 @@ -89,6 +89,7 @@ %build autoreconf -fi +cd libltdl; autoreconf -fi; cd .. export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF" export CXXFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF" export LDFLAGS="-Wl,--as-needed -Wl,--no-undefined -Wl,-z,relro,-z,now -pie"
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2018-03-30 12:07:45 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Fri Mar 30 12:07:45 2018 rev:57 rq:592192 version:4.0.24 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-02-20 17:56:17.275844576 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-03-30 12:07:50.152837751 +0200 @@ -1,0 +2,11 @@ +Wed Mar 28 09:01:14 UTC 2018 - adam.ma...@suse.de + +- New upstream version 4.2.24 + + Bug 4505: SMP caches sometimes do not purge entries + + TPROXY: Fix clientside_mark and client port logging + + Native FTP: Fix "Cannot assign requested address" with TPROXY + + SSL-Bump: Fix authentication with types other than Basic + + ... and some documentation fixes +- install license correctly (bsc#1082318) and transition to SPDXv3 + +--- Old: squid-4.0.23.tar.xz squid-4.0.23.tar.xz.asc New: squid-4.0.24.tar.xz squid-4.0.24.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.L1OWSd/_old 2018-03-30 12:07:51.140802030 +0200 +++ /var/tmp/diff_new_pack.L1OWSd/_new 2018-03-30 12:07:51.144801885 +0200 @@ -19,10 +19,10 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:4.0.23 +Version:4.0.24 Release:0 Summary:Caching and forwarding HTTP web proxy -License:GPL-2.0+ +License:GPL-2.0-or-later Group: Productivity/Networking/Web/Proxy Url:http://www.squid-cache.org Source0:http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz @@ -240,7 +240,8 @@ %files %defattr(-,root,root) -%doc ChangeLog CONTRIBUTORS COPYING CREDITS +%license COPYING +%doc ChangeLog CONTRIBUTORS CREDITS %doc QUICKSTART README RELEASENOTES.html SPONSORS* %doc README.kerberos %doc doc/contrib doc/scripts ++ squid-4.0.23.tar.xz -> squid-4.0.24.tar.xz ++ 9136 lines of diff (skipped) ++ squid-4.0.23.tar.xz.asc -> squid-4.0.24.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-4.0.23.tar.xz.asc2018-01-24 15:32:23.209079848 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid-4.0.24.tar.xz.asc 2018-03-30 12:07:49.324867687 +0200 @@ -1,25 +1,25 @@ -File: squid-4.0.23.tar.xz -Date: Fri Jan 19 13:39:51 UTC 2018 -Size: 2415132 -MD5 : 04eb448f1dc31b4b2d73fee6a91c240c -SHA1: 0bd4248b412e88087ba37686bc27b08480995a9d +File: squid-4.0.24.tar.xz +Date: Wed Mar 7 15:09:08 UTC 2018 +Size: 2420076 +MD5 : dcb167d7677ff469c1c59b0baad8a5be +SHA1: 8c9bbe539af5f1060d93d30d7e099a6badc1f3e1 Key : CD6DBF8EF3B17D3E B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E keyring = http://www.squid-cache.org/pgp.asc keyserver = pool.sks-keyservers.net -BEGIN PGP SIGNATURE- -iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAlph9S8ACgkQzW2/jvOx -fT4Acg/+JmF+1Y+pwI/cFwFJNbgY3+9Lo2jWtV929Faip/h7MoRdm4eGUB6DW4ts -3xn0prfIlOHSzg+GO7wda+/AWUe2V2VY3UKfd7HrxJ9PIr9RCUYOTFucIvW+7Jpd -MqxHhohURQKKUfOHHPzenGPoZdnI+pyf6sK7xL11rnDNyPd7P8MqZc6QCa4WrfI9 -Z9fmTwuXH7r4kP4uPhqi1pEa5awM1UEJPPF+ovl5s8JcfsYPtN/c6FKAZf0wzz+s -SxuJIx/6JB4wIepOVMNEMObOzfhLqM96w3CAFGaDLi1w4dVfBqMknVEikArlbEKV -zvtkKevYsnkbmOYbFdsyqyr4+8VnzAor+RBauXc3H5DT5yUFryBLXzQxIc7EgBOn -b69pr3VhLctjtsHpdWRGFzxRh//EDNEYSHspoOqURivUTtR1U/qIV/pJ5P38hBfr -udXy7gFTrrny3nA3fGvK7Lr+yDW72V2z2oMqR0TKPKAJkrmDAyX11svdEBBNJjpt -yzQUWHoWvlzZ8YJlBbTh1gGjXT1SEhSVQBbYcgZJb7fy/WVJg2TS5uf965Xckvig -uFGdHnjkWeJHLFZUciHabxwdXroIj/rRymR+vRb/sqmuVroT4pMaS1sx96SUHfyD -OoGK/KeCHeP9xYywlAFb/mzd+bRkL9O2+sb0yjLtgSEMB9A5HQs= -=z1t9 +iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAlqgAJwACgkQzW2/jvOx +fT7HgBAAnyzIsJ95aFGQGKsXxxzXMQkjrWu2XQS6Fg9oJ/jFtS99msvoRZXLzpTs +m5/n0QIk9h9xXPs8iOsfJLUymslw8LLOMIfljFVfxBId8pb4wcKf+OTGRjnmrqFy +5btu1xr5kZuKSbNzP5KXet6KOitkkC+siuCfaZ5a8Zuf+aJRQBoc9v9ETbfnXesg +kJWUd7G7BgvxCYC8x/dstabi3iA8qWk1zE01fZ2V9Xa5Cx4zYe7G6XFqG79VoMyd +uaLBWhC055Xf8Pt87KSBDrSgQMrFTlnwi/ybAROIXbF3B0FEVtBbRmjI9YvOAhIM +dMassujNGwFFcIFq2ghh6EHgChreV+zRqLOghGRy5+A0d9lUNKRGTOFHhJAMauKs +ipMFJuc6oKL22TGaFyRJmQjY+F/Fkow99k7M3XMtMp8Ybl0APgCU35ac0F9UkeSh +lU68Y4ZzBn2//z+vRDF4AtJuwCAec1uHWFp8LsXjVMJHa3xKONy766LYIZJnYU4p +Pco0UGDT0bKl5xSA0a3Awx2FYsQn7Ng9TSmgk2G+GJrWNfqEPqdZ9xaCuW78GwvG +41QYQTALAsfWjzVYVvPxSkELPNdZp7tn8PKrJZhEoLDkxO3cC1p1WrOUrLFzsTi+ ++iDtv9RNtvHpGuzQ8MDl5Ek7pYOlNhP/ecDAJQ1/gXljspYZoIo= +=3OwY -END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2018-02-20 17:56:11 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Tue Feb 20 17:56:11 2018 rev:56 rq:578257 version:4.0.23 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-02-06 16:47:38.636308336 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-02-20 17:56:17.275844576 +0100 @@ -1,0 +2,13 @@ +Mon Feb 19 08:08:14 UTC 2018 - adam.ma...@suse.de + +- Spec file cleanup: + + Drop unused fillup template - it's not used by systemd script + + Drop %pretrans section which is only used to upgrade from +version 3.4 of squid - no supported codestream has that version. + + Drop explicit BR: on systemd-rpm-macros +- Update squid.service systemd file + + Don't need to use squid to manage squid anymore + + Drop references to default config file, since it's default +- Drop reference to nonexistent EnvironmentFile in the service file + +--- Old: squid.sysconfig Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.AOc9uX/_old 2018-02-20 17:56:18.903785959 +0100 +++ /var/tmp/diff_new_pack.AOc9uX/_new 2018-02-20 17:56:18.907785815 +0100 @@ -18,10 +18,6 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid -#Compat macro for new _fillupdir macro introduced in Nov 2017 -%if ! %{defined _fillupdir} - %define _fillupdir %{_localstatedir}/adm/fillup-templates -%endif Name: squid Version:4.0.23 Release:0 @@ -31,7 +27,6 @@ Url:http://www.squid-cache.org Source0:http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz Source1: http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz.asc -Source4:squid.sysconfig Source5:pam.squid Source6:unsquid.pl Source7:%{name}.logrotate @@ -58,7 +53,6 @@ BuildRequires: pkgconfig BuildRequires: samba-winbind BuildRequires: sharutils -BuildRequires: systemd-rpm-macros BuildRequires: pkgconfig(expat) BuildRequires: pkgconfig(gssrpc) BuildRequires: pkgconfig(kdb) @@ -66,7 +60,6 @@ BuildRequires: pkgconfig(libsasl2) BuildRequires: pkgconfig(libxml-2.0) Requires: logrotate -Requires(post): %fillup_prereq Requires(pre): permissions Requires(pre): shadow Provides: http_proxy @@ -186,7 +179,6 @@ install -D -m 755 %{SOURCE16} %{buildroot}%{squidlibdir}/initialize_cache_if_needed.sh sed -i -e 's!%%{_libdir}!%{_libdir}!' %{buildroot}%{_unitdir}/%{name}.service ln -sf %{_sbindir}/service %{buildroot}%{_sbindir}/rc%{name} -install -Dpm 644 %{SOURCE4} %{buildroot}%{_fillupdir}/sysconfig.%{name} # Move the MIB definition to the proper place (and name) mkdir -p %{buildroot}%{_datadir}/snmp/mibs @@ -226,21 +218,6 @@ fi fi -%pretrans -p --- Directory to symlink is not working in RPM so workaround it --- Occurs when updating from 3.4 to 3.5 -error_dir="%{_datadir}/%{name}/errors/" -bad_ones={"zh-cn","zh-tw"} -print("cleaning up old directories") -for i,f in pairs(bad_ones) do - pstat = posix.stat(error_dir..f) - if pstat and pstat.type == "directory" then - print ("moving away "..error_dir..f.." to "..error_dir..f .. ".rpmmoved") - --posix.rmdir(error_dir..f) - os.rename(error_dir..f, error_dir..f .. ".rpmmoved") - end -end - %post %set_permissions %{_sbindir}/basic_pam_auth %set_permissions %{_sbindir}/pinger @@ -340,7 +317,6 @@ %{_sbindir}/url_lfs_rewrite %{_sbindir}/ext_time_quota_acl %{_sbindir}/rc%{name} -%{_fillupdir}/sysconfig.%{name} %dir %{_libdir}/%{name} %{_libdir}/%{name}/cachemgr.cgi ++ initialize_cache_if_needed.sh ++ --- /var/tmp/diff_new_pack.AOc9uX/_old 2018-02-20 17:56:18.963783799 +0100 +++ /var/tmp/diff_new_pack.AOc9uX/_new 2018-02-20 17:56:18.963783799 +0100 @@ -8,6 +8,6 @@ if ! test -d $CACHE_DIR; then echo "Initializing cache directories..." -exec /usr/sbin/squid -z -F --foreground -S -f /etc/squid/squid.conf +exec /usr/sbin/squid -z -F --foreground -S fi ++ squid.service ++ --- /var/tmp/diff_new_pack.AOc9uX/_old 2018-02-20 17:56:19.055780487 +0100 +++ /var/tmp/diff_new_pack.AOc9uX/_new 2018-02-20 17:56:19.055780487 +0100 @@ -1,14 +1,13 @@ [Unit] Description=Squid caching proxy +Documentation=man:squid(8) After=network.target named.service nss-lookup.service [Service] Type=forking -EnvironmentFile=-/etc/sysconfig/squid ExecStartPre=%{_libdir}/squid/initialize_cache_if_needed.sh -ExecStart=/usr/sbin/squid -F $SQUID_START_OPTIONS -f /etc/squid/squid.conf -Exe
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2018-02-06 16:47:37 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Tue Feb 6 16:47:37 2018 rev:55 rq:572519 version:4.0.23 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-01-24 15:32:23.333074049 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-02-06 16:47:38.636308336 +0100 @@ -1,0 +2,5 @@ +Mon Jan 29 10:36:36 UTC 2018 - adam.ma...@suse.de + +- Change default error pages symlink from German to English. + +--- @@ -8 +13 @@ - (bnc#1077003) + (bnc#1077003, CVE-2018-124) @@ -11 +16 @@ - (bnc#1077006) + (bnc#1077006, CVE-2018-127) Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.0XSocO/_old 2018-02-06 16:47:39.592263604 +0100 +++ /var/tmp/diff_new_pack.0XSocO/_new 2018-02-06 16:47:39.592263604 +0100 @@ -175,7 +175,7 @@ install -m 644 $i/* %{buildroot}%{_datadir}/%{name}/$i fi done -ln -sf %{_datadir}/%{name}/errors/de %{buildroot}%{squidconfdir}/errors +ln -sf %{_datadir}/%{name}/errors/en %{buildroot}%{squidconfdir}/errors # fix file duplicates %fdupes -s %{buildroot}%{_prefix}
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2018-01-24 15:32:17 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Wed Jan 24 15:32:17 2018 rev:54 rq:568822 version:4.0.23 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2018-01-10 23:36:55.811062521 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-01-24 15:32:23.333074049 +0100 @@ -1,0 +2,14 @@ +Mon Jan 22 12:48:24 UTC 2018 - adam.ma...@suse.de + +- Update Squid to 4.0.23 + * fixes DoS caused by incorrect pointer handling when processing + ESI responses. This affects the default custom esi_parser + (libxml2 and expat esi_parsers are unaffected) + (bnc#1077003) + * fixes DoS caused by incorrect pointer handing whien processing + ESI responses or downloading intermediate CA certificates + (bnc#1077006) + * fixes "User names not sent to url_rewrite_program" + * fixes %http://www.squid-cache.org +Url:http://www.squid-cache.org Source0:http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz Source1: http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz.asc Source4:squid.sysconfig ++ squid-4.0.22.tar.xz -> squid-4.0.23.tar.xz ++ 47274 lines of diff (skipped) ++ squid-4.0.22.tar.xz.asc -> squid-4.0.23.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-4.0.22.tar.xz.asc2018-01-10 23:36:55.795063271 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid-4.0.23.tar.xz.asc 2018-01-24 15:32:23.209079848 +0100 @@ -1,25 +1,25 @@ -File: squid-4.0.22.tar.xz -Date: Thu Dec 7 18:03:01 UTC 2017 -Size: 2411692 -MD5 : c09dab527ac8ea86833286597d2d633d -SHA1: b3e1cfe1cc1074506a46652946efe175eb69bf8a +File: squid-4.0.23.tar.xz +Date: Fri Jan 19 13:39:51 UTC 2018 +Size: 2415132 +MD5 : 04eb448f1dc31b4b2d73fee6a91c240c +SHA1: 0bd4248b412e88087ba37686bc27b08480995a9d Key : CD6DBF8EF3B17D3E B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E keyring = http://www.squid-cache.org/pgp.asc keyserver = pool.sks-keyservers.net -BEGIN PGP SIGNATURE- -iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAlopgl8ACgkQzW2/jvOx -fT55dw/+JlwxV8qTWxITUZ/8IFB5TO6T2Rzy8g4hFulTDoPN8/z4RZz/FNeQT/44 -/csodC7kja1ZxVlzNz07gaIoPz8Ft4ITQRL3kUMJ3+azYSevXlaiTtAy2O3oo2PC -oGw8X5M8USZ578BwaEIsnG/FHJY8qogr6WfX2lPfT9fgnYzXl+hRLqc4oD/605pY -k+D3C6j4cuTjoo30qD867BY/0sf6AdFYnfsLtc/cT4K4B/VHB2pDDk+cDXyjLzT2 -8AZkvG8XHwLFlXO7lHssHGM7uqxM2Sj+w9QJNJrFEh2tfdRAS6eXn3aSy6WeRHty -vOWXFc9U9D+PWPcHV3vE3FpLOBBkfhJnCiSMnz4GabjkXqjpD/7P1MQsTM2sKS4M -g/CpNdfhUshgxeNCmY0tJFu6cl/LFi7qbLBPNXQk0NDKZciiijARh9fFSsvvUHTA -g63LOZw+AyldeO5NMEalDaDsWViKd99CDXX93Y5qWxxuM4WhbStzUBUOXVl9CZ6m -P0B/uC+1IR56NETveklSRth7JrrlG7GkbV8uTkHJzTEHw3t+jAGFi80zV+V/gaAH -mMaXuv74UYosp2Zjdr5Ee5QLlo61kAWjKro9pd2uOyCUyGjijCcuyKa6zaNs1klp -9ehX0hnN1nX9blp/5Qx/fYLcds8vSr9QIpG6GEx5gJ5PCryckys= -=omrg +iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAlph9S8ACgkQzW2/jvOx +fT4Acg/+JmF+1Y+pwI/cFwFJNbgY3+9Lo2jWtV929Faip/h7MoRdm4eGUB6DW4ts +3xn0prfIlOHSzg+GO7wda+/AWUe2V2VY3UKfd7HrxJ9PIr9RCUYOTFucIvW+7Jpd +MqxHhohURQKKUfOHHPzenGPoZdnI+pyf6sK7xL11rnDNyPd7P8MqZc6QCa4WrfI9 +Z9fmTwuXH7r4kP4uPhqi1pEa5awM1UEJPPF+ovl5s8JcfsYPtN/c6FKAZf0wzz+s +SxuJIx/6JB4wIepOVMNEMObOzfhLqM96w3CAFGaDLi1w4dVfBqMknVEikArlbEKV +zvtkKevYsnkbmOYbFdsyqyr4+8VnzAor+RBauXc3H5DT5yUFryBLXzQxIc7EgBOn +b69pr3VhLctjtsHpdWRGFzxRh//EDNEYSHspoOqURivUTtR1U/qIV/pJ5P38hBfr +udXy7gFTrrny3nA3fGvK7Lr+yDW72V2z2oMqR0TKPKAJkrmDAyX11svdEBBNJjpt +yzQUWHoWvlzZ8YJlBbTh1gGjXT1SEhSVQBbYcgZJb7fy/WVJg2TS5uf965Xckvig +uFGdHnjkWeJHLFZUciHabxwdXroIj/rRymR+vRb/sqmuVroT4pMaS1sx96SUHfyD +OoGK/KeCHeP9xYywlAFb/mzd+bRkL9O2+sb0yjLtgSEMB9A5HQs= +=z1t9 -END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2018-01-10 23:36:55 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Wed Jan 10 23:36:55 2018 rev:53 rq:563122 version:4.0.22 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-12-05 01:30:34.164576389 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2018-01-10 23:36:55.811062521 +0100 @@ -1,0 +2,22 @@ +Tue Jan 9 17:06:14 UTC 2018 - mplus...@suse.com + +- Update download url + +--- +Mon Jan 8 12:21:51 UTC 2018 - adam.ma...@suse.de + +- Update Squid to 4.0.22 (fate#324583, bnc#1073089) + * re-enable building with default openssl-devel + * Helper changes since 3.5.27: ++ basic_msnt_multi_domain_auth removed - basic_smb_lm_auth + helper performs the same functionality ++ cert_valid.pl testing helper renamed to + security_fake_certverify ++ ssl_crtd renamed to security_file_certgen + For complete set of release notes and changes since squid 3.5 see + http://www.squid-cache.org/Versions/v4/squid-4.0.22-RELEASENOTES.html + +- Updated squid.keyring using current keyring file from upstream +- missing_installs.patch: install manpages for installed helpers + +--- Old: squid-3.5.27.tar.xz squid-3.5.27.tar.xz.asc New: missing_installs.patch squid-4.0.22.tar.xz squid-4.0.22.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.I4MgMA/_old 2018-01-10 23:36:56.555027616 +0100 +++ /var/tmp/diff_new_pack.I4MgMA/_new 2018-01-10 23:36:56.559027428 +0100 @@ -1,7 +1,7 @@ # # spec file for package squid # -# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -16,22 +16,21 @@ # +%define squidlibdir %{_libdir}/squid +%define squidconfdir %{_sysconfdir}/squid #Compat macro for new _fillupdir macro introduced in Nov 2017 %if ! %{defined _fillupdir} - %define _fillupdir /var/adm/fillup-templates + %define _fillupdir %{_localstatedir}/adm/fillup-templates %endif - -%define squidlibdir %{_libdir}/squid -%define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.5.27 +Version:4.0.22 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0+ Group: Productivity/Networking/Web/Proxy -Url:http://www.squid-cache.org -Source0: http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz -Source1: http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz.asc +URL:http://www.squid-cache.org +Source0:http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz +Source1: http://www.squid-cache.org/Versions/v4/squid-%{version}.tar.xz.asc Source4:squid.sysconfig Source5:pam.squid Source6:unsquid.pl @@ -39,9 +38,11 @@ Source9:%{name}.permissions Source10: README.kerberos Source11: %{name}.service -Source13: %{name}.keyring +# http://lists.squid-cache.org/pipermail/squid-announce/2016-October/64.html +Source13: http://www.squid-cache.org/pgp.asc#/squid.keyring Source15: cache_dir.sed Source16: initialize_cache_if_needed.sh +Patch1: missing_installs.patch BuildRequires: cppunit-devel BuildRequires: db-devel BuildRequires: ed @@ -50,16 +51,9 @@ BuildRequires: gcc-c++ BuildRequires: libcap-devel BuildRequires: libtool -%if 0%{?suse_version} >= 1330 -BuildRequires: libnsl-devel -%endif BuildRequires: openldap2-devel BuildRequires: opensp-devel -%if 0%{suse_version} >= 1330 -BuildRequires: libopenssl-1_0_0-devel -%else BuildRequires: openssl-devel -%endif BuildRequires: pam-devel BuildRequires: pkgconfig BuildRequires: samba-winbind @@ -81,6 +75,9 @@ Provides: %{name}3 = %{version} Obsoletes: %{name}3 < %{version} %{?systemd_requires} +%if 0%{?suse_version} >= 1330 +BuildRequires: libnsl-devel +%endif %description Squid is a caching proxy for the Web supporting HTTP(S), FTP, and @@ -92,12 +89,13 @@ %prep %setup -q cp %{SOURCE10} . -# upstream patches after RELEASE +# upstream patches after RELEASE perl -p -i -e 's|%{_prefix}/local/bin/perl|%{_bindir}/perl|' `find -name "*.pl"` -chmod a-x CREDITS +%patch1 -p1 %build +autoreconf -fi expor
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2017-12-05 01:30:32 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Tue Dec 5 01:30:32 2017 rev:52 rq:548098 version:3.5.27 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-11-24 10:55:23.662260479 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-12-05 01:30:34.164576389 +0100 @@ -1,0 +2,6 @@ +Mon Dec 4 12:31:44 UTC 2017 - adam.ma...@suse.de + +- Explicitly BuildRequire libopenssl-1_0_0-devel until + OpenSSL 1.1.x support can be ported. + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.xzM1Q8/_old 2017-12-05 01:30:35.004545874 +0100 +++ /var/tmp/diff_new_pack.xzM1Q8/_new 2017-12-05 01:30:35.004545874 +0100 @@ -55,7 +55,11 @@ %endif BuildRequires: openldap2-devel BuildRequires: opensp-devel +%if 0%{suse_version} >= 1330 +BuildRequires: libopenssl-1_0_0-devel +%else BuildRequires: openssl-devel +%endif BuildRequires: pam-devel BuildRequires: pkgconfig BuildRequires: samba-winbind
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2017-11-24 10:55:21 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Fri Nov 24 10:55:21 2017 rev:51 rq:544867 version:3.5.27 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-10-09 19:49:04.393336974 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-11-24 10:55:23.662260479 +0100 @@ -1,0 +2,6 @@ +Thu Nov 23 13:47:31 UTC 2017 - rbr...@suse.com + +- Replace references to /var/adm/fillup-templates with new + %_fillupdir macro (boo#1069468) + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.IjymQc/_old 2017-11-24 10:55:25.014211100 +0100 +++ /var/tmp/diff_new_pack.IjymQc/_new 2017-11-24 10:55:25.018210954 +0100 @@ -16,6 +16,11 @@ # +#Compat macro for new _fillupdir macro introduced in Nov 2017 +%if ! %{defined _fillupdir} + %define _fillupdir /var/adm/fillup-templates +%endif + %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid Name: squid @@ -178,7 +183,7 @@ install -D -m 755 %{SOURCE16} %{buildroot}%{squidlibdir}/initialize_cache_if_needed.sh sed -i -e 's!%%{_libdir}!%{_libdir}!' %{buildroot}%{_unitdir}/%{name}.service ln -sf %{_sbindir}/service %{buildroot}%{_sbindir}/rc%{name} -install -Dpm 644 %{SOURCE4} %{buildroot}%{_localstatedir}/adm/fillup-templates/sysconfig.%{name} +install -Dpm 644 %{SOURCE4} %{buildroot}%{_fillupdir}/sysconfig.%{name} # Move the MIB definition to the proper place (and name) mkdir -p %{buildroot}%{_datadir}/snmp/mibs @@ -332,7 +337,7 @@ %{_sbindir}/url_fake_rewrite.sh %{_sbindir}/ext_time_quota_acl %{_sbindir}/rc%{name} -%{_localstatedir}/adm/fillup-templates/sysconfig.%{name} +%{_fillupdir}/sysconfig.%{name} %dir %{_libdir}/%{name} %{_libdir}/%{name}/cachemgr.cgi
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2017-10-09 19:48:10 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Mon Oct 9 19:48:10 2017 rev:50 rq:532831 version:3.5.27 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-09-25 13:58:17.896273946 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-10-09 19:49:04.393336974 +0200 @@ -1,0 +2,6 @@ +Mon Oct 9 15:57:54 UTC 2017 - dims...@opensuse.org + +- libnsl-devel is required from suse_version 1330 on (not only + 1500+). + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.Ii5Vnh/_old 2017-10-09 19:49:05.293297420 +0200 +++ /var/tmp/diff_new_pack.Ii5Vnh/_new 2017-10-09 19:49:05.297297244 +0200 @@ -45,7 +45,7 @@ BuildRequires: gcc-c++ BuildRequires: libcap-devel BuildRequires: libtool -%if 0%{?suse_version} >= 1500 +%if 0%{?suse_version} >= 1330 BuildRequires: libnsl-devel %endif BuildRequires: openldap2-devel
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2017-09-25 13:58:16 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Mon Sep 25 13:58:16 2017 rev:49 rq:528110 version:3.5.27 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-07-30 11:27:48.273800464 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-09-25 13:58:17.896273946 +0200 @@ -1,0 +2,9 @@ +Thu Sep 21 12:01:50 UTC 2017 - adam.ma...@suse.de + +- Add missing build dependency on libnsl-devel for Factory. + libnsl was split from glibc +- Update Squid to 3.5.27 + * bug fix release - for complete list of changes see +http://www.squid-cache.org/Versions/v3/3.5/changesets/ + +--- Old: squid-3.5.26.tar.xz squid-3.5.26.tar.xz.asc New: squid-3.5.27.tar.xz squid-3.5.27.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.pRLQKb/_old 2017-09-25 13:58:18.696161404 +0200 +++ /var/tmp/diff_new_pack.pRLQKb/_new 2017-09-25 13:58:18.700160841 +0200 @@ -19,7 +19,7 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.5.26 +Version:3.5.27 Release:0 Summary:Caching and forwarding HTTP web proxy License:GPL-2.0+ @@ -45,6 +45,9 @@ BuildRequires: gcc-c++ BuildRequires: libcap-devel BuildRequires: libtool +%if 0%{?suse_version} >= 1500 +BuildRequires: libnsl-devel +%endif BuildRequires: openldap2-devel BuildRequires: opensp-devel BuildRequires: openssl-devel ++ squid-3.5.26.tar.xz -> squid-3.5.27.tar.xz ++ 4031 lines of diff (skipped) ++ squid-3.5.26.tar.xz.asc -> squid-3.5.27.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-3.5.26.tar.xz.asc2017-06-21 13:54:42.360407409 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.27.tar.xz.asc 2017-09-25 13:58:17.768291952 +0200 @@ -1,20 +1,20 @@ -File: squid-3.5.26.tar.xz -Date: Fri Jun 2 00:43:54 UTC 2017 -Size: 2328352 -MD5 : 510e2c84773879c00d0e7ced997864d9 -SHA1: 51a664217957b35de8b7fae180b9f93a759a4204 +File: squid-3.5.27.tar.xz +Date: Sat Aug 19 20:16:51 UTC 2017 +Size: 2303468 +MD5 : 39ef8199675d48a314b540f92c00c545 +SHA1: 1e69c96d13cd49844da3bcf33a0b428fbe7b6f77 Key : 0xFF5CF463 EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463 keyring = http://www.squid-cache.org/pgp.asc keyserver = subkeys.pgp.net -BEGIN PGP SIGNATURE- -iQEzBAABCAAdFiEE6jHMXpSI5RaNLcxesmjnBv9c9GMFAlkwtTYACgkQsmjnBv9c -9GPpRAf7B+2gZgh1GGwjDheRvX43odQhVg9KkXB+raufqDBSRs7cyj5E/cC9XBPC -bmhyF2sk03p0a8wgmSbIH7gBFZ01TbQ5np2dUGh0b9sZPI8DJcSDPS8g9I2IT99v -axAttf8IbSzeNTgOk4l/veNMA1RU5fgyY19FnD+G22rVhcmWZFMfD/GBTyw3oc1i -7Hs/ulyCmdOHmzzTinMBEaU787mxwng2K7j2SV0O4W6wnuakAMWLdSCGsrUNBwik -teu5nd/AuAo1Y1KhM8adjHcANwa12s02yPUgkxyIDkVKBgYmbJAGvfSwFpOqRK4q -2uvHSqEAJr47u+n+Y2QampwAXCOEDQ== -=XyzG +iQEzBAABCAAdFiEE6jHMXpSI5RaNLcxesmjnBv9c9GMFAlmYnLsACgkQsmjnBv9c +9GM1uAf+PeYKQI/hwJZXul020S5+pyxBem8txVVqTba1YZA/khk0vRqj54lBBxrX +C5AsnNbY6yGfsH6S0tQCFn3IkftXgUVMWij5x10yUYhZiXjV0EFe9rBiAOkd4zuT +j/4HOsHaG0I1qNqh1NZmvyV/a40Eq65lphOySt6N2okXeZS0Daoc23HHUXtZrO49 +QqY2LEhKYg9mtxE3k7lnZ7AxWtzZPQrdqNOZLs7pyJikGn7Usv2hzdIjyyaBRV9g +jwUPzEOiCLYleExCeqE/9k5M7JLRIJE7ofnkbkVs9+V57csYkQ5Cqr5vMWhvL1RN +4GGMjSMMS2m7vhiLPTgMn5ebHn6bJw== +=eHYj -END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2017-07-30 11:27:40 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Sun Jul 30 11:27:40 2017 rev:48 rq:513028 version:3.5.26 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-07-07 10:17:51.966949184 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-07-30 11:27:48.273800464 +0200 @@ -1,0 +2,5 @@ +Thu Jul 27 06:54:01 UTC 2017 - bra...@web.de + +- Enable compiling of time_quota extension + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.Ootyy4/_old 2017-07-30 11:27:49.137678566 +0200 +++ /var/tmp/diff_new_pack.Ootyy4/_new 2017-07-30 11:27:49.145677438 +0200 @@ -121,7 +121,7 @@ --enable-auth-ntlm \ --enable-auth-negotiate \ --enable-auth-digest \ - --enable-external-acl-helpers=LDAP_group,eDirectory_userip,file_userip,kerberos_ldap_group,session,unix_group,wbinfo_group \ + --enable-external-acl-helpers=LDAP_group,eDirectory_userip,file_userip,kerberos_ldap_group,session,unix_group,wbinfo_group,time_quota \ --enable-stacktraces \ --enable-x-accelerator-vary \ --with-default-user=%{name} \ @@ -327,6 +327,7 @@ %{_sbindir}/unlinkd %{_sbindir}/url_fake_rewrite %{_sbindir}/url_fake_rewrite.sh +%{_sbindir}/ext_time_quota_acl %{_sbindir}/rc%{name} %{_localstatedir}/adm/fillup-templates/sysconfig.%{name} %dir %{_libdir}/%{name}
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2017-07-07 10:17:48 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Fri Jul 7 10:17:48 2017 rev:47 rq:508585 version:3.5.26 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-06-21 13:54:42.868335760 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-07-07 10:17:51.966949184 +0200 @@ -1,0 +2,5 @@ +Wed Jul 5 20:00:49 UTC 2017 - jeng...@inai.de + +- Update description from webpage. + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.fARavu/_old 2017-07-07 10:17:52.822828083 +0200 +++ /var/tmp/diff_new_pack.fARavu/_new 2017-07-07 10:17:52.826827517 +0200 @@ -21,7 +21,7 @@ Name: squid Version:3.5.26 Release:0 -Summary:A fully featured HTTP/1.0 proxy +Summary:Caching and forwarding HTTP web proxy License:GPL-2.0+ Group: Productivity/Networking/Web/Proxy Url:http://www.squid-cache.org @@ -71,12 +71,11 @@ %{?systemd_requires} %description -Squid is a fully-featured HTTP/1.0 proxy which is almost (but not quite - -we're getting there!) a fully-featured HTTP/1.1 proxy. Squid offers a rich -access control, authorization and logging environment to develop web proxy -and content serving applications. Squid offers a rich set of traffic -optimization options, most of which are enabled by default for simpler -installation and high performance. +Squid is a caching proxy for the Web supporting HTTP(S), FTP, and +some others. It reduces bandwidth and improves response times by +caching and reusing frequently-requested web pages. Squid has +extensive access controls and can also be used as a server +accelerator. %prep %setup -q
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2017-06-21 13:54:33 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Wed Jun 21 13:54:33 2017 rev:46 rq:504589 version:3.5.26 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-04-14 13:40:46.409507215 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-06-21 13:54:42.868335760 +0200 @@ -1,0 +2,26 @@ +Mon Jun 19 08:20:52 UTC 2017 - mplus...@suse.com + +- Packaging cleanup +- Dropped: + * squid-brokenad.patch + * squid-config.patch + * squid.init squid.init.rh + * squid-old-kerberos.patch + * squid-rpmlintrc +- Update description and url + +--- +Wed Jun 14 08:54:53 UTC 2017 - adam.ma...@suse.de + +- Update Squid to 3.5.26 + * SubjectAlternativeNames missing in some generated certificates +Previous releases of Squid were not able to generate valid +mimic certificates from AltName server certificate field only. + * Fix ignoring http_access deny with client-first bumping mode + * ssl_crtd: now returns non-zero on failure + * Fix FTP directory listings display issues + * OpenSSL support better compliance with license requirements +This release of Squid will now include the required OpenSSL +advertisement on builds -v output where features are displayed. + +--- Old: squid-3.5.25.tar.xz squid-3.5.25.tar.xz.asc squid-brokenad.patch squid-config.patch squid-old-kerberos.patch squid-rpmlintrc squid.init squid.init.rh New: squid-3.5.26.tar.xz squid-3.5.26.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.p1Ea59/_old 2017-06-21 13:54:44.140156358 +0200 +++ /var/tmp/diff_new_pack.p1Ea59/_new 2017-06-21 13:54:44.144155794 +0200 @@ -18,17 +18,15 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid - Name: squid -Version:3.5.25 +Version:3.5.26 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ Group: Productivity/Networking/Web/Proxy -Url:http://www.squid-cache.org/Versions/v3/3.5 +Url:http://www.squid-cache.org Source0: http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz Source1: http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz.asc -Source3:squid.init Source4:squid.sysconfig Source5:pam.squid Source6:unsquid.pl @@ -37,115 +35,58 @@ Source10: README.kerberos Source11: %{name}.service Source13: %{name}.keyring -Source14: squid.init.rh Source15: cache_dir.sed Source16: initialize_cache_if_needed.sh - -# do not show some rpmlint warnings -Source99: squid-rpmlintrc -# some useful defaults for squid -Patch100: %{name}-config.patch -# patch fixes kerberos principalname handling (http://bugs.squid-cache.org/show_bug.cgi?id=4042) -Patch103: squid-brokenad.patch -#patch fix SLE 11 target... BAD PATCH -Patch104: squid-old-kerberos.patch - -BuildRoot: %{_tmppath}/%{name}-%{version}-build -# BuildRequires: autoconf -# BuildRequires: automake -# If you want to run unit tests, these also need mounted /dev/shm and /proc -# BuildRequires: cppunit-devel +BuildRequires: cppunit-devel BuildRequires: db-devel -# needed by bootstrap.sh -BuildRequires: cyrus-sasl-devel BuildRequires: ed BuildRequires: expat -# BuildRequires: fdupes BuildRequires: gcc-c++ -BuildRequires: krb5-devel BuildRequires: libcap-devel -BuildRequires: libexpat-devel -%if 0%{?suse_version} <= 1140 BuildRequires: libtool -%else -BuildRequires: libtool >= 2.4 -%endif -%if 0%{?suse_version} < 1220 -BuildRequires: libxml2-devel -BuildRequires: xz -%else -BuildRequires: pkgconfig(libxml-2.0) -%endif BuildRequires: openldap2-devel BuildRequires: opensp-devel BuildRequires: openssl-devel BuildRequires: pam-devel BuildRequires: pkgconfig +BuildRequires: samba-winbind BuildRequires: sharutils - -%if 0%{?suse_version} +BuildRequires: systemd-rpm-macros +BuildRequires: pkgconfig(expat) +BuildRequires: pkgconfig(gssrpc) +BuildRequires: pkgconfig(kdb) +BuildRequires: pkgconfig(krb5) +BuildRequires: pkgconfig(libsasl2) +BuildRequires: pkgconfig(libxml-2.0) +Requires: logrotate Requires(post): %fillup_prereq -Requires(pre): %{_bindir}/getent -%if 0%{?suse_version} < 1140 Requires(pre): permissions -%else -Requires(pre): permissions >= 2014.11 -%endif -R
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2017-04-14 13:40:43 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Fri Apr 14 13:40:43 2017 rev:45 rq:487028 version:3.5.25 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-03-24 02:22:51.737811399 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-04-14 13:40:46.409507215 +0200 @@ -1,0 +2,11 @@ +Mon Apr 10 09:50:21 UTC 2017 - adam.ma...@suse.de + +- Update Squid to 3.5.25 + * Fix host forgery stalls intercepted being-spliced connections + * Native FTP relay fixes, now able to cope with active-mode +FTP DATA connections when intercepting FTP traffic. + * SSL Bump client fixes. Error responses for issues encountered +early in the TLS/SSL handling being sent to clients unencrypted +when Squid should have bumped and delivered them encrypted. + +--- Old: squid-3.5.24.tar.xz squid-3.5.24.tar.xz.asc New: squid-3.5.25.tar.xz squid-3.5.25.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.cu8JpU/_old 2017-04-14 13:40:47.533348380 +0200 +++ /var/tmp/diff_new_pack.cu8JpU/_new 2017-04-14 13:40:47.537347815 +0200 @@ -20,7 +20,7 @@ %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.5.24 +Version:3.5.25 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ ++ squid-3.5.24.tar.xz -> squid-3.5.25.tar.xz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.5.24/ChangeLog new/squid-3.5.25/ChangeLog --- old/squid-3.5.24/ChangeLog 2017-01-28 04:54:46.0 +0100 +++ new/squid-3.5.25/ChangeLog 2017-04-02 15:04:18.0 +0200 @@ -1,3 +1,15 @@ +Changes to squid-3.5.25 (02 Apr 2017): + + - Bug 4688: various typo error(s) in man page(s) + - Bug 4508: Host forgery stalls intercepted being-spliced connections + - Native FTP relay: NAT and TPROXY interception fixes + - Fix missing CRLF on FTP timeout ABORT commands + - TLS: Bump client on errors encountered before ssl_bump evaluation + - ext_kerberos_ldap_group_acl: fix unused value warnings + - Fix crash when configuring with invalid delay_parameters restore value. + - Check that -k argument is provided before trying to use it. + - ... and some build fixes + Changes to squid-3.5.24 (28 Jan 2017): - Regression Bug 3940: Make 'cache deny' do what is documented diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.5.24/RELEASENOTES.html new/squid-3.5.25/RELEASENOTES.html --- old/squid-3.5.24/RELEASENOTES.html 2017-01-28 09:09:58.0 +0100 +++ new/squid-3.5.25/RELEASENOTES.html 2017-04-02 19:10:43.0 +0200 @@ -2,10 +2,10 @@ - Squid 3.5.24 release notes + Squid 3.5.25 release notes -Squid 3.5.24 release notes +Squid 3.5.25 release notes Squid Developers @@ -64,7 +64,7 @@ 1. Notice -The Squid Team are pleased to announce the release of Squid-3.5.24. +The Squid Team are pleased to announce the release of Squid-3.5.25. This new release is available for download from http://www.squid-cache.org/Versions/v3/3.5/";>http://www.squid-cache.org/Versions/v3/3.5/ or the http://www.squid-cache.org/Download/http-mirrors.html";>mirrors. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.5.24/compat/compat.h new/squid-3.5.25/compat/compat.h --- old/squid-3.5.24/compat/compat.h2017-01-28 04:54:46.0 +0100 +++ new/squid-3.5.25/compat/compat.h2017-04-02 15:04:18.0 +0200 @@ -11,7 +11,7 @@ /* * From discussions it was chosen to push compat code as far down as possible. - * That means we can have a seperate compat for most + * That means we can have a separate compat for most * compatability and portability hacks and resolutions. * * This file is meant to collate all those hacks files together and diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.5.24/configure new/squid-3.5.25/configure --- old/squid-3.5.24/configure 2017-01-28 04:57:15.0 +0100 +++ new/squid-3.5.25/configure 2017-04-02 15:07:29.0 +0200 @@ -1,7 +1,7 @@ #! /bin/sh # From configure.ac Revision. # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.69 for Squid Web Proxy 3.5.24. +# Generated by GNU Autoconf 2.69 for Squid Web Proxy 3.5.25. #
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2017-03-24 02:22:51 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Fri Mar 24 02:22:51 2017 rev:44 rq:482005 version:3.5.24 Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2017-02-03 20:02:19.965794852 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-03-24 02:22:51.737811399 +0100 @@ -1,0 +2,7 @@ +Wed Mar 22 14:28:05 UTC 2017 - adam.ma...@suse.de + +- initialize_cache_if_needed.sh, squid_dir.sed: Initialize cache + directory on startup if it is missing. Move scripts out of + systemd service file and into individual files. (bnc#1030421) + +--- New: cache_dir.sed initialize_cache_if_needed.sh Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.LsdZjx/_old 2017-03-24 02:22:52.649682376 +0100 +++ /var/tmp/diff_new_pack.LsdZjx/_new 2017-03-24 02:22:52.653681809 +0100 @@ -38,6 +38,8 @@ Source11: %{name}.service Source13: %{name}.keyring Source14: squid.init.rh +Source15: cache_dir.sed +Source16: initialize_cache_if_needed.sh # do not show some rpmlint warnings Source99: squid-rpmlintrc @@ -259,6 +261,9 @@ # systemd vs SysVinit %if 0%{?has_systemd} install -D -m 644 %{SOURCE11} %{buildroot}%{_unitdir}/%{name}.service + install -D -m 755 %{SOURCE15} %{buildroot}%{squidlibdir}/cache_dir.sed + install -D -m 755 %{SOURCE16} %{buildroot}%{squidlibdir}/initialize_cache_if_needed.sh + sed -i -e 's!%%{_libdir}!%{_libdir}!' %{buildroot}%{_unitdir}/%{name}.service ln -sf %{_sbindir}/service %{buildroot}%{_sbindir}/rc%{name} %else # SysVinit # fix postrotate script for SysVinit @@ -406,6 +411,8 @@ %doc %{_mandir}/man?/* %if 0%{?has_systemd} %{_unitdir}/%{name}.service +%{squidlibdir}/initialize_cache_if_needed.sh +%{squidlibdir}/cache_dir.sed %else %{_sysconfdir}/init.d/%{name} %endif ++ cache_dir.sed ++ #!/usr/bin/sed -nf /^\s*cache_dir\s\+[[:alnum:]]\+\s\+\([[:graph:]\/]\+\)\s.*/ { s//\1\/00/p q } ++ initialize_cache_if_needed.sh ++ #!/bin/sh DIR=$(dirname $0) CACHE_DIR=$($DIR/cache_dir.sed < /etc/squid/squid.conf) if [ 'x'$CACHE_DIR = 'x' ]; then exit 0 fi if ! test -d $CACHE_DIR; then echo "Initializing cache directories..." exec /usr/sbin/squid -z -F -N -S -f /etc/squid/squid.conf fi ++ squid.service ++ --- /var/tmp/diff_new_pack.LsdZjx/_old 2017-03-24 02:22:52.829656911 +0100 +++ /var/tmp/diff_new_pack.LsdZjx/_new 2017-03-24 02:22:52.833656345 +0100 @@ -5,7 +5,7 @@ [Service] Type=forking EnvironmentFile=-/etc/sysconfig/squid -ExecStartPre=/bin/sh -c "test -d \"`sed -n 's/^cache_dir\s\+[[:alnum:]]\+\s\+\([[:graph:]\/]\+\)\s.*/\1/p' /etc/squid/squid.conf | sed '1 q'`/00\" || /usr/sbin/squid -z -F -N -S -f /etc/squid/squid.conf" +ExecStartPre=%{_libdir}/squid/initialize_cache_if_needed.sh ExecStart=/usr/sbin/squid -F $SQUID_START_OPTIONS -f /etc/squid/squid.conf ExecReload=/usr/sbin/squid -F $SQUID_START_OPTIONS -f /etc/squid/squid.conf -k reconfigure ExecStop=/usr/sbin/squid -F -f /etc/squid/squid.conf -k shutdown
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2017-01-31 12:48:35 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2016-10-13 11:32:43.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2017-02-03 20:02:19.965794852 +0100 @@ -1,0 +2,30 @@ +Mon Jan 30 09:33:08 UTC 2017 - adam.ma...@suse.de + +- Update Squid to 3.5.24 + * Mitigate DoS attacks that use client-initiated SSL/TLS +renegotiation. Rate limit TLS renegotiation. + * SSLv2 records force SslBump bumping despite a matching step2 +peek rule. + * Update External ACL helpers error handling and caching + * Fix regression in 3.5.23 where `cache deny` rule was not +obeyed. + +--- +Fri Jan 27 15:15:15 UTC 2017 - adam.ma...@suse.de + +- Update Squid to 3.5.23 + * Do not share private responses with collapsed client(s). +(CVE-2016-10003) + * Fixes incorrect processing of responses to If-None-Modified +HTTP conditional requests. (CVE-2016-10002) + * partially fix hostHeaderVerify failures MISS when they should +be HIT + * HTTP/1.1: Add registered codes entry for new 103 (Early Hints) +status code + * Hang on DNS query with dead-end CNAME + * partial: Fix segfault via Ftp::Client::readControlReply + * Fix ssl::server_name ACL - was badly broken since inception. + * HTTP/1.1: make Vary:* objects cacheable + * fix Strange IPv6 shown in access.log + +--- Old: squid-3.5.22.tar.xz squid-3.5.22.tar.xz.asc New: squid-3.5.24.tar.xz squid-3.5.24.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.2RgrY7/_old 2017-02-03 20:02:21.093636103 +0100 +++ /var/tmp/diff_new_pack.2RgrY7/_new 2017-02-03 20:02:21.097635540 +0100 @@ -1,7 +1,7 @@ # # spec file for package squid # -# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -20,7 +20,7 @@ %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.5.22 +Version:3.5.24 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ ++ squid-3.5.22.tar.xz -> squid-3.5.24.tar.xz ++ 41830 lines of diff (skipped) ++ squid-3.5.22.tar.xz.asc -> squid-3.5.24.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-3.5.22.tar.xz.asc2016-10-13 11:32:43.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.24.tar.xz.asc 2017-02-03 20:02:19.925800481 +0100 @@ -1,19 +1,20 @@ -File: squid-3.5.22.tar.xz -Date: Sun Oct 9 23:43:33 UTC 2016 -Size: 2324164 -MD5 : afb82d2748c06c95815c171463b4aa14 -SHA1: 73e9199dd9d2a7f107f78d03454830713a4a571d +File: squid-3.5.24.tar.xz +Date: Sat Jan 28 08:22:04 UTC 2017 +Size: 2326424 +MD5 : 3fae511e16b6379b61c011914673973d +SHA1: f203637783301a4b86e554b6dd226de721762ae5 Key : 0xFF5CF463 - +EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463 keyring = http://www.squid-cache.org/pgp.asc keyserver = subkeys.pgp.net -BEGIN PGP SIGNATURE- -iQEcBAABCAAGBQJX+tbSAAoJELJo5wb/XPRjl2gH/ReWuyxU88issJB6RDkqpg1z -ULCFIGXOZieUB1Ec+kh6gkothXfFSmec4U/3nx42N2e1cFlQby9lRY27e7T47na7 -rA8ZiXc8gXNrE06GCtFXIR9AvRQrySAJMES6wJT4LigkfbS3wZt3PvUw+RUgGCcz -RC14yLwFgzaAR7d9RVgZWBIOXlz4NUvdlb/ri+kiHc2mfT09ikm9NX+t5wJ64MfI -S/U2tFJLDeqG0B4Sx/lnl35h7f2mk+c9DPfmTDkZSE1dJScE34GtEpehJQwZcxA9 -EHgPwIP4BFIReywnCwhDMY17JDkC58gXyOBNjSd6v0PzyvXbSQLAYYJu1MKzKi8= -=JCC/ +iQEzBAABCAAdFiEE6jHMXpSI5RaNLcxesmjnBv9c9GMFAliMVWgACgkQsmjnBv9c +9GP0QwgAwRR2s/Y3gZu+iI1teUmPx31vuJZsQqtmEaF9aG+/Yv0slTzET2M43W6w +EPWPhV1MvEGExQNFE1UN+tpCtaS3JnGYihOuaUGIRyrtqxs5ksvzGTCXp2fb8J+b +hEbbgMvEAf8ijQ7ExaBsE7fUazdzAIZtzRXsuGP/fQy91CQ6C5ZOnBKHHe81uIRz +5eCHo2ro23Can2KEwQpLG4XsGxnII6SqVK3Vx83790q8jZP/qbTp1KcR6NxEyBNl ++0SNyzjvdqMi2uXPBOzA0H2RXCdEOJdMdQGSQrgHaiPvg2jf1737zqYtMEYaeYgf ++Z7IgU0kdiq/jwGHgVPJLdRZasXi+g== +=hZv8 -END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2016-10-13 11:32:42 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2016-08-03 11:42:59.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2016-10-13 11:32:43.0 +0200 @@ -1,0 +2,67 @@ +Wed Oct 12 14:51:59 UTC 2016 - adam.ma...@suse.de + +- Update Squid to 3.5.22 + * HTTP: MUST ignore a [revalidation] response with an older Date +header. + * Optimized/simplified buffering: Appending nothing is always +possible. + * Avoid segfaults when debugging section 4 at level 9. + * fix #4302 pt2: IPFilter v5 transparent interception + * Bug #4471: revalidation doesn't work when expired cached +object lacks Last-Modified. + * Bug #2833: Collapse internal revalidation requests +(SMP-unaware caches) + * Bug #3819: "fd >= 0" assertion in file_write() during +reconfiguration + * Do not leak url_rewrite_extras and store_id_extras on +reconfigure/shutdown. + * Fix potential ICAP null pointer dereference after rev.14082 + * Fix logged request size (%http::>st) and other size-related +%codes. + +--- +Tue Sep 13 15:32:34 UTC 2016 - adam.ma...@suse.de + +- Merge changes from SLE12 SP2 so we have identical packages + +--- +Mon Sep 12 09:57:30 UTC 2016 - adam.ma...@suse.de + +- Update Squid to 3.5.21 + * fix assertion failure in xcalloc when using many cache_dir +Squid is documented as supporting up to 64 cache directories, +but would crash with a memory allocation error if more than +a few were actually configured. + * fix authentication credentials IP TTL updated incorrectly +This bug caused error in max_user_ip ACL accounting to allow +clients to shift IP address more times than configured. +Fix may have an effect on IPv6 clients using "proviacy adressing" +to rotate IPs. + * fix mal-formed Cache-Control:stale-if-error header +This bug shows up as incorrect stale-if-error values being +relayed by Squid breaking the use of this feature in the +recipients. Squid now relays the header values correctly. + * fix Proxy-Authenticate problem using ICAP server +With this change Squid now treats the ICAP REQMOD adaptation +point as a part of itself with regards to proxy authentication. +The Proxy-Authentication header received from the client is +delivered as part of the HTTP request headers in expectation +that the ICAP service may authenticate and/or +produce 407 response itself. + * fix HTTP: MUST always revalidate Cache-Control:no-cache responses +This bug shows up as Squid not revalidating some responses until +they became stale according to refresh_pattern heuristic rules +(specifically the minimum caching age). Squid now revalidates +these objects on every request. + * fix HTTP: do not allow Proxy-Connection to override Connection + * fix SSL CN wildcard must only match a single domain fragment +This bug shows up as incorrect matching (or non-matching) of the +ss::server_name ACL against TLS certificate values. Squid now +treats the certificate CN fields according to X.509 domain +matching requirements instead of HTTP domain matching +requirements. +- squid-brokenad.patch + * propertly capitalize option name + * make the conditional if() not a riddle + +--- Old: squid-3.5.20.tar.xz squid-3.5.20.tar.xz.asc New: squid-3.5.22.tar.xz squid-3.5.22.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.Ex8XcO/_old 2016-10-13 11:32:45.0 +0200 +++ /var/tmp/diff_new_pack.Ex8XcO/_new 2016-10-13 11:32:45.0 +0200 @@ -20,7 +20,7 @@ %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.5.20 +Version:3.5.22 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ @@ -28,7 +28,6 @@ Url:http://www.squid-cache.org/Versions/v3/3.5 Source0: http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz Source1: http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz.asc - Source3:squid.init Source4:squid.sysconfig Source5:pam.squid @@ -50,6 +49,10 @@ Patch104: squid-old-kerberos.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build +# BuildRequires: autoconf +# Bui
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2016-08-03 11:42:56 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2016-07-14 09:47:39.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2016-08-03 11:42:59.0 +0200 @@ -1,0 +2,9 @@ +Mon Jul 18 08:05:42 UTC 2016 - adam.ma...@suse.de + +- Remove no-op option from configure + --enable-ntlm-fail-open has been removed more than 4 years ago in + squid 3.3.0.1 and apparently it wasn't useful for 10 years prior + to that already + http://www.squid-cache.org/mail-archive/squid-dev/201207/0072.html + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.NwCHwy/_old 2016-08-03 11:43:01.0 +0200 +++ /var/tmp/diff_new_pack.NwCHwy/_new 2016-08-03 11:43:01.0 +0200 @@ -183,7 +183,6 @@ --enable-auth-negotiate \ --enable-auth-digest \ --enable-external-acl-helpers=LDAP_group,eDirectory_userip,file_userip,kerberos_ldap_group,session,unix_group,wbinfo_group \ - --enable-ntlm-fail-open \ --enable-stacktraces \ --enable-x-accelerator-vary \ --with-default-user=%{name} \
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2016-07-14 09:47:33 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2016-05-11 16:37:36.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2016-07-14 09:47:39.0 +0200 @@ -1,0 +2,22 @@ +Sun Jul 10 07:49:53 UTC 2016 - mplus...@suse.com + +- Update to version 3.5.20: + * Assertion failed: Write.cc:38: "fd_table[conn->fd].flags.open" + * Bug #4523: smblib compile fails on NetBSD + * Do not make bogus recvmsg(2) calls when closing UDS sockets. + * Fix SEGFAULT parsing malformed adaptation service configuration + * Fixed ConnStateData::In::maybeMakeSpaceAvailable() logic. + * Bug #3579: assertion failed 'MemPools[type]' from dst_as ACL + * SourceFormat Enforcement + * Do not allow low-level debugging to hide important/critical +messages. + * Bug #4485: off-by-one out-of-bounds Parser::Tokenizer::int64() +read errors + * Increase debug level in a peek-and-splice related debug message + * Fix icons loading speed. + * Fix OpenSSL detection on FreeBSD + * Do not override user defined -std option + * SourceFormat Enforcement + * Support unified EUI format code in external_acl_type + +--- Old: squid-3.5.19.tar.xz squid-3.5.19.tar.xz.asc New: squid-3.5.20.tar.xz squid-3.5.20.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.BQWnVA/_old 2016-07-14 09:47:41.0 +0200 +++ /var/tmp/diff_new_pack.BQWnVA/_new 2016-07-14 09:47:41.0 +0200 @@ -20,7 +20,7 @@ %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.5.19 +Version:3.5.20 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ @@ -142,7 +142,7 @@ %build export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF" export CXXFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF" -export LDFLAGS='-Wl,-z,relro,-z,now -pie' +export LDFLAGS="-Wl,--as-needed -Wl,--no-undefined -Wl,-z,relro,-z,now -pie" %configure \ --disable-strict-error-checking \ --sysconfdir=%{squidconfdir} \ ++ squid-3.5.19.tar.xz -> squid-3.5.20.tar.xz ++ 1986 lines of diff (skipped) ++ squid-3.5.19.tar.xz.asc -> squid-3.5.20.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-3.5.19.tar.xz.asc2016-05-11 16:37:36.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.20.tar.xz.asc 2016-07-14 09:47:39.0 +0200 @@ -1,8 +1,8 @@ -File: squid-3.5.19.tar.xz -Date: Sun May 8 14:25:45 UTC 2016 -Size: 2318720 -MD5 : a1d990284c429a63ee85d80ee5b3b8b9 -SHA1: 809133b751df9fb5bca07f181b3e2f7df392f761 +File: squid-3.5.20.tar.xz +Date: Fri Jul 1 13:49:42 UTC 2016 +Size: 2319780 +MD5 : 48fb18679a30606de98882528beab3a7 +SHA1: 2bb6d3568e7167c9b99fea092a97287d0e430863 Key : 0xFF5CF463 fingerprint = EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463 keyring = http://www.squid-cache.org/pgp.asc @@ -10,11 +10,11 @@ -BEGIN PGP SIGNATURE- Version: GnuPG v1 -iQEcBAABAgAGBQJXL0zWAAoJELJo5wb/XPRjTFMH/A09rmkzxYmNOSCNCRDU5OAR -GaKfWWhmg9zTz9F6KE4XQyEm2SLwjJguZXGipgEeGv3b7z6xhZt9boKvzP+F7izt -42v6vGY63VAhmHfL6Ub2SKKzryzEjkItzuk/N5qB2bTUk4U7xlIvToLjemSMPuB0 -RsIsL9W54Szz8Bh/ixKBKUX3SSJlE7/aVyW8SPFPSSWmlK33EX/VE5Mkxsi9T/WZ -l8FlaeQgrUP8LA+5XW86mEYl7m2YNdFJlMPDgkVwBYaeyAv7FkvGbaLnxxBm40MN -/wD3/2rotdvbxROpCfS7jih8D8oMS/DuBFNnfVMCcKWL7/+fXmqBlqHvXBFu0xg= -=/l9z +iQEcBAABAgAGBQJXdnW5AAoJELJo5wb/XPRjqzsH+wXT0yt47aqoGWI8D1YpRaW5 +KPYvJdos0zPfgIPFWXxngH+ZpJcSPD21QuiEPS8BqISxm+/+By+0QIljITnHWFOV +/wo1nwL/IMissmD+9bksyBede+BsZdz1PSwl9V1MzvuGL4vwOC0UZD9RT9RYvMwj +Exfw80v/01bAVpV8U3tsBodk4Rz3AWIHhH2Tf9O2EZ/pIAtEHtDbkdLk81rSwNED +tL6yV/n+BoWgAPg/+YPVGRK/h5nD4tBkTD6YBCnxp5PJmybhvAjLr/J96PtPpHdC +or7Vx1lVpKvkXwZjn936+v4pqv19lsvKs5zLtGKBG2wMmoSIo2bf/bGhhT5kBDc= +=znHp -END PGP SIGNATURE- ++ squid-config.patch ++ --- /var/tmp/diff_new_pack.BQWnVA/_old 2016-07-14 09:47:42.0 +0200 +++ /var/tmp/diff_new_pack.BQWnVA/_new 2016-07-14 09:47:42.0 +0200 @@ -11,7 +11,7 @@ http_access allow localhost # And finally deny all other access to this proxy -@@ -3761,6 +3763,10 @@ DOC_START +@@ -3769,6 +3771,10 @@ DOC_START Instead, if you want Squid to use the entire disk drive, subtract 20% and use that value. @@ -22,7 +22,7 @@ 'L1' is the number of first-level subdirectories which will be created under the 'Directory'. The default i
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2016-05-11 16:37:34 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2016-04-06 11:52:26.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2016-05-11 16:37:36.0 +0200 @@ -1,0 +2,41 @@ +Mon May 9 08:50:11 UTC 2016 - h...@urpla.net + +- Update to 3.5.19 + * Regression Bug 4515: interception proxy hangs +- Update to 3.5.18 + * Bug 4510: stale comment about 32KB limit on shared memory cache +entries + * Bug 4509: EUI compile error on NetBSD + * Bug 4501: HTTP/1.1: normalize Host header + * Bug 4498: URL-unescape the login-info after extraction from URI + * Bug 4455: SegFault from ESIInclude::Start + * Prevent Squid forcing -b 2048 into the arguments for +sslcrtd_program + * Fix TLS/SSL server handshake alert handling + +--- +Thu May 5 10:56:34 UTC 2016 - h...@urpla.net + +- Update to 3.5.17 + * Regression Bug 4480: logformat [.width_max] + * Regression Bug 4481: varyEvaluateMatch: Oops. Not a Vary match +on second attempt + * Bug 4495: Unknown SSL option SSL_OP_NO_TICKET + * Bug 4493: theObject->sharedMemorySize() == theSegment.size() +exception + * Bug 4483: ./configure garbles -Og option in CFLAGS + * Bug 4482: Solaris GCC 5.2 warning in src/ip/Intercept.cc + * Bug 4468: NotNode (!acl) naming: Terminate the name before +strncat(name). + * Bug 4465: Header forgery detection leads to crash + * Bug 2460 partial: workaround deferred reads on shutdown and +restart + * cachemgr.cgi: use dynamic MemBuf for internal content +generation + * ESI: Fix several element construction issues + * TLS: Fix Handshake Error: ccs received early + * TLS: Add chained and signing cert to peek-then-bumped +connections + * Fix some startup/shutdown crashes + +--- Old: squid-3.5.16.tar.xz squid-3.5.16.tar.xz.asc New: squid-3.5.19.tar.xz squid-3.5.19.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.E146LN/_old 2016-05-11 16:37:37.0 +0200 +++ /var/tmp/diff_new_pack.E146LN/_new 2016-05-11 16:37:37.0 +0200 @@ -20,7 +20,7 @@ %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.5.16 +Version:3.5.19 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ ++ squid-3.5.16.tar.xz -> squid-3.5.19.tar.xz ++ 2586 lines of diff (skipped) ++ squid-3.5.16.tar.xz.asc -> squid-3.5.19.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-3.5.16.tar.xz.asc2016-04-06 11:52:26.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.19.tar.xz.asc 2016-05-11 16:37:36.0 +0200 @@ -1,8 +1,8 @@ -File: squid-3.5.16.tar.xz -Date: Fri Apr 1 23:08:56 UTC 2016 -Size: 2317320 -MD5 : 557b1011a880ec3291797367e2ca4c45 -SHA1: 8268ace3de2971222e4e5b05b0d3caa6475280d4 +File: squid-3.5.19.tar.xz +Date: Sun May 8 14:25:45 UTC 2016 +Size: 2318720 +MD5 : a1d990284c429a63ee85d80ee5b3b8b9 +SHA1: 809133b751df9fb5bca07f181b3e2f7df392f761 Key : 0xFF5CF463 fingerprint = EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463 keyring = http://www.squid-cache.org/pgp.asc @@ -10,11 +10,11 @@ -BEGIN PGP SIGNATURE- Version: GnuPG v1 -iQEcBAABAgAGBQJW/v/wAAoJELJo5wb/XPRjylQH/iVelewJqDRZWIEinCX7DrRd -oWw7qq7ifYJOfFbXRXDMakSee6xrvUpWLy9SugBMbpEGc8YCvAkUC3tnvawH5+I4 -5gYnedyk87X7Ia4zBJs6RDJavJ+kKeY6HjKuKjxJW9R/QWqP8zIFwngQ5GqR0V6c -mI8fDy6uoz3wFUAd0f7P7Krc4UDMf8W3nT5LEhuWlzKwz2cRxWNbUwWg8Chgc/B9 -HxwSE2Ypbw0RfH2XkgiEYGDMY45tIedFm9DBMw2UHTGUk3UCnzkI7dd8anCLjgG5 -w7v1MZ+WyTqzeidVbT4D/HQOifIsG9I43nCtCtcSZYGYboGsauNXX+sU06COipc= -=kkEu +iQEcBAABAgAGBQJXL0zWAAoJELJo5wb/XPRjTFMH/A09rmkzxYmNOSCNCRDU5OAR +GaKfWWhmg9zTz9F6KE4XQyEm2SLwjJguZXGipgEeGv3b7z6xhZt9boKvzP+F7izt +42v6vGY63VAhmHfL6Ub2SKKzryzEjkItzuk/N5qB2bTUk4U7xlIvToLjemSMPuB0 +RsIsL9W54Szz8Bh/ixKBKUX3SSJlE7/aVyW8SPFPSSWmlK33EX/VE5Mkxsi9T/WZ +l8FlaeQgrUP8LA+5XW86mEYl7m2YNdFJlMPDgkVwBYaeyAv7FkvGbaLnxxBm40MN +/wD3/2rotdvbxROpCfS7jih8D8oMS/DuBFNnfVMCcKWL7/+fXmqBlqHvXBFu0xg= +=/l9z -END PGP SIGNATURE- ++ squid-rpmlintrc ++ --- /var/tmp/diff_new_pack.E146LN/_old 2016-05-11 16:37:39.0 +0200 +++ /var/tmp/diff_new_pack.E146LN/_new 2016-05-11 16:37:39.0 +0200 @@ -3,3 +3,4 @@ addFilter("incorrect-fsf-address") # Temporary solution untill it is moved into factory #setBadness('
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2016-04-06 11:52:21 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2016-03-09 16:48:54.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2016-04-06 11:52:26.0 +0200 @@ -1,0 +2,24 @@ +Mon Apr 4 07:19:58 UTC 2016 - mplus...@suse.com + +- Update to 3.5.16 (boo#973771) + * Bug 4476: Removed duplicated #include lines + * Bug 4452: squid -z segfaults with ufs + * Bug 4447:FwdState.cc:447 "serverConnection() == conn" assertion + * Bug 4423: adding stdio: prefix to cache_log directive produces +FATAL error + * Bug 4409: compile error when two Heimdal libraries are +installed + * Bug 2831: Cache-control: max-age not sent on TCP_IMS_HIT/304 + * pinger: Fix buffer overflow in Icmp6::Recv + * pinger: Fix select(2) to actually use max_fd + * pinger: drop capabilities on Linux + * Fix memory leak of HttpRequest objects + * Fix memory leak when the cache of sslcrtvalidator_program is +disabled via ttl=0 + * Fix assertion failed: Write.cc:41: "!ccb->active()" + * Fix crash on shutdown while cleaning up idle ICAP connections + * RFC 7725: Add registry entry for 451 status text + * ... and some build issues +- Refresh all patches + +--- Old: squid-3.5.15.tar.xz squid-3.5.15.tar.xz.asc New: squid-3.5.16.tar.xz squid-3.5.16.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.TPBxUh/_old 2016-04-06 11:52:28.0 +0200 +++ /var/tmp/diff_new_pack.TPBxUh/_new 2016-04-06 11:52:28.0 +0200 @@ -1,7 +1,7 @@ # # spec file for package squid # -# Copyright (c) 2016 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -20,7 +20,7 @@ %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.5.15 +Version:3.5.16 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ ++ squid-3.5.15.tar.xz -> squid-3.5.16.tar.xz ++ 1647 lines of diff (skipped) retrying with extended exclude list diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/squid-3.5.15/ChangeLog new/squid-3.5.16/ChangeLog --- old/squid-3.5.15/ChangeLog 2016-02-23 17:25:46.0 +0100 +++ new/squid-3.5.16/ChangeLog 2016-04-01 23:02:59.0 +0200 @@ -1,3 +1,21 @@ +Changes to squid-3.5.16 (02 Apr 2016): + + - Bug 4476: Removed duplicated #include lines + - Bug 4452: squid -z segfaults with ufs + - Bug 4447:FwdState.cc:447 "serverConnection() == conn" assertion + - Bug 4423: adding stdio: prefix to cache_log directive produces FATAL error + - Bug 4409: compile error when two Heimdal libraries are installed + - Bug 2831: Cache-control: max-age not sent on TCP_IMS_HIT/304 + - pinger: Fix buffer overflow in Icmp6::Recv + - pinger: Fix select(2) to actually use max_fd + - pinger: drop capabilities on Linux + - Fix memory leak of HttpRequest objects + - Fix memory leak when the cache of sslcrtvalidator_program is disabled via ttl=0 + - Fix assertion failed: Write.cc:41: "!ccb->active()" + - Fix crash on shutdown while cleaning up idle ICAP connections + - RFC 7725: Add registry entry for 451 status text + - ... and some build issues + Changes to squid-3.5.15 (23 Feb 2016): - Bug 3870: assertion failed: String.cc: 'len_ + len <65536' in ESI::CustomParser diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/squid-3.5.15/RELEASENOTES.html new/squid-3.5.16/RELEASENOTES.html --- old/squid-3.5.15/RELEASENOTES.html 2016-02-23 18:14:19.0 +0100 +++ new/squid-3.5.16/RELEASENOTES.html 2016-04-02 00:42:35.0 +0200 @@ -2,10 +2,10 @@ - Squid 3.5.15 release notes + Squid 3.5.16 release notes
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2016-03-09 15:17:30 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2016-01-28 17:23:58.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2016-03-09 16:48:54.0 +0100 @@ -1,0 +2,23 @@ +Mon Mar 7 13:47:55 UTC 2016 - ch...@computersalat.de + +- Changes to squid-3.5.15 (23 Feb 2016): + * Bug 3870: assertion failed: String.cc: 'len_ + len <65536' in ESI::CustomParser + * Fix multiple assertion on String overflows + * Fix unit test errors on MacOS + * Better handling of huge response headers. Fewer incorrect "Bug #3279" messages. + * Log noise reduction for eCAP +- Changes to squid-3.5.14 (16 Feb 2016): + * Bug 4437: Fix Segfault on Certain SSL Handshake Errors + * Bug 4431: C code is not compiled with CFLAGS + * Bug 4418: FlexibleArray compile error with GCC 6 + * Bug 4378: assertion failed: DestinationIp.cc:60: +'checklist->conn() && checklist->conn()->clientConnection != NULL' + * Fix invalid FTP connection handling on blocked content + * Fix handling of shared memory left over by Squid crashes or bugs + * Fix mgr:config report 'qos_flows mark' output + * Fix compile error in CPU affinity + * Fix %un logging external ACL username + * Avoid more certificate validation memory leaks + * ... and some documentation updates + +--- Old: squid-3.5.13.tar.xz squid-3.5.13.tar.xz.asc New: squid-3.5.15.tar.xz squid-3.5.15.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.DXKO5X/_old 2016-03-09 16:48:55.0 +0100 +++ /var/tmp/diff_new_pack.DXKO5X/_new 2016-03-09 16:48:55.0 +0100 @@ -20,7 +20,7 @@ %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.5.13 +Version:3.5.15 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ ++ squid-3.5.13.tar.xz -> squid-3.5.15.tar.xz ++ 57706 lines of diff (skipped) ++ squid-3.5.13.tar.xz.asc -> squid-3.5.15.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-3.5.13.tar.xz.asc2016-01-28 17:23:58.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.15.tar.xz.asc 2016-03-09 16:48:54.0 +0100 @@ -1,8 +1,8 @@ -File: squid-3.5.13.tar.xz -Date: Thu Jan 7 04:33:15 UTC 2016 -Size: 2379460 -MD5 : 7a22503cfc99e1f89cb309b5facfbbc3 -SHA1: 3c45f8a8522c67c633c85c65dbfe63ccaf6df0e8 +File: squid-3.5.15.tar.xz +Date: Tue Feb 23 17:19:35 UTC 2016 +Size: 2315628 +MD5 : 997084b40aaed7d0fa9db11904638ea9 +SHA1: 054fb18a3b0b8228be28e61bf58cfb621c266155 Key : 0xFF5CF463 fingerprint = EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463 keyring = http://www.squid-cache.org/pgp.asc @@ -10,11 +10,11 @@ -BEGIN PGP SIGNATURE- Version: GnuPG v1 -iQEcBAABAgAGBQJWkOegAAoJELJo5wb/XPRjWIcIAK0RQqBz4QcEE6bZba5qLK+l -T/hoKPMNi2QTjpR4WGIWhuw2YoX9HrWUceP8BZ0HsA9HssAG8Te5du0hjjOHNbxy -3jMdSchM3KVLw7xlotDsp3CWRzFgYp3UE5Czcvy4vakggGNTPJ7NddgX1dda3ChG -tl4yDlzOw6hkab4wEGbT0V8/WUbNEWtGFtZNCFdhL1hdtfKBXqtLwSo3/vLxqFJT -85aQNU5C6bOAiz4LBLhIv7uY81vwIK73zFgGsiY3RBXe0ekC7Q9TvAh5wkejLM/b -mp4xVXk6ZJXFBggbeUzBVR+OGEl4GhqEwI+6MULTc6DXVE4m5PvpF6wcn5yf9yg= -=U8vk +iQEcBAABAgAGBQJWzJgNAAoJELJo5wb/XPRjU+gIAKvcDtS/8tS+alSSt23w2Q1N +qE0XMn+Sz4S4sGPaby29lxopYxxeWQaNv9G+BnVObxLTGIi+pLDHfMYAxM32OQ+A +VsQFRUBENH+w6HW6BBPBdrj91CSQ5wORwsrjIzqc41A57BAQQMDduLIzUxjJz6RE +9rxXpwW7n8PflDRAsWOm8qm8bOLJs4zfOO971l9aLrocGztDCgiMn7VT+1/fUHpx +Z3HhIGISJHM0O7rRmICe7Nw/XRNY+EEj9ibqTzHouRZlKevbtmp1NCKjN9vsXC3T +3K9Zn7+VaNZGRuCe7hV4SnH9aR/DW0aLmzdikG3kjK+LAchAbTq7gpIaKLPnRuw= +=DCl6 -END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2016-01-28 17:23:14 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-12-09 22:34:26.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2016-01-28 17:23:58.0 +0100 @@ -2 +2 @@ -Wed Dec 9 10:11:36 UTC 2015 - mplus...@suse.com +Sun Jan 24 18:28:45 UTC 2016 - ch...@computersalat.de @@ -4,27 +4,37 @@ -- Update to 4.0.3 - * Bug 4372: missing template files - * Bug 4371: compile errors: no such file or directory: - DiskIO/*/*DiskIOModule.o - * Bug 4368: A simpler and more robust HTTP request line parser - * Fix compile erorr on clang undefined reference to - '__atomic_load_8' - * ext_kerberos_ldap_group_acl: Add missing workarounds for - Heimdal Kerberos - * ext_ldap_group_acl: Allow unlimited LDAP search filter - * ext_unix_group_acl: Support -r parameter to strip @REALM from - usernames - * ... and much code cleanup and polishing - * ... and all fixes from squid 3.5.11 -- Changes for squid-4.0.2 - * Regression Bug 4351: compile errors when authentication modules - disabled - * Regression fix: HTTP/1.1 Transfer-Encoding:chunked parsing - * Bug 4359: assertion failure 'Comm::IsConnOpen(conn)' within - ConnStateData::requestTimeout - * Bug 4356: segmentation fault using proxy_auth ACL - * Bug 4352: compile errors in OS X 10.11 - * Bug 4021: ext_user_regex does exact match - * Bug 3574: avoid crashes, prohibit reconfiguration during - shutdown - * Support re-assigning delay pools based on HTTP reply details - * ... and all fixes from squid 3.5.11 +- Changes to squid-3.5.13 (06 Jan 2016): + * Bug 4397: DragonFly BSD, POSIX shared memory is implemented as filepath + * Bug 4387: Kerberos build errors on Solaris + * TLS: Support Ephemeral Elliptic Curve Diffie-Hellman (EECDH) key exchange + * TLS: Complete certificate chains using external intermediate certificates + * Avoid memory leaks when an X.509 certificate validator is used with SslBump + * Fix connection retry and fallback after failed server TLS connections + * Fix GnuTLS detection via pkg-config + * Fix startup crash with a misconfigured (too-small) shared memory cache + * ... and some documentation updates +- Changes to squid-3.5.12 (28 Nov 2015): + * Bug 4374: refresh_pattern config parser (%) + * Bug 4373: assertion 'calloutContext->redirect_state == REDIRECT_NONE' + * Bug 4228: links with krb5 libs despite --without options + * Fix SSL_get_certificate() problem detection + * Fix TLS handshake problem during Renegotiation + * Fix cache_peer forceddomain= in CONNECT + * Fix status code-based HTTP reason phrase for eCAP-generated messages + * Fix build errors in cpuafinity.cc + * ... and several documentation updates +- Changes to squid-3.5.11 (01 Nov 2015): + * Bug 3574: crashes on reconfigure and startup + * Bug 4347: compile errors with LibreSSL 2.3 + * Bug 4281: copy-paste typos in src/tools.cc + * Bug 4279: No response from proxy for FTP-download of non-existing file + * Bug 4188: Bumping intercepted SSL connections does not work on Solaris + * Fix incorrect authentication headers on cache digest requests + * Fix connection stats, including %= 4.7 -- rebase squid-config.patch -- rebase and fix squid-brokenad.patch Old: squid-4.0.3.tar.xz squid-4.0.3.tar.xz.asc New: squid-3.5.13.tar.xz squid-3.5.13.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.xkZAQU/_old 2016-01-28 17:23:59.0 +0100 +++ /var/tmp/diff_new_pack.xkZAQU/_new 2016-01-28 17:23:59.0 +0100 @@ -1,7 +1,7 @@ # # spec file for package squid # -# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2016 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -20,14 +20,14 @@ %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:4.0.3 +Version:3.5.13 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ Group: Productivity/Networking/Web/Proxy -Url:http://www.squid-cache.org/Versions/v4 -Source0: http://www.squid-cache.org/Versions/v4/%{name}-%{version}.tar.xz -Source1: http://www.squid-cache.org/Versions/v4/%{name}-%{version}.tar.xz.asc +Url:http://www.s
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-12-09 19:54:37 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-10-20 00:05:47.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-12-09 22:34:26.0 +0100 @@ -1,0 +2,96 @@ +Wed Dec 9 10:11:36 UTC 2015 - mplus...@suse.com + +- Update to 4.0.3 + * Bug 4372: missing template files + * Bug 4371: compile errors: no such file or directory: + DiskIO/*/*DiskIOModule.o + * Bug 4368: A simpler and more robust HTTP request line parser + * Fix compile erorr on clang undefined reference to + '__atomic_load_8' + * ext_kerberos_ldap_group_acl: Add missing workarounds for + Heimdal Kerberos + * ext_ldap_group_acl: Allow unlimited LDAP search filter + * ext_unix_group_acl: Support -r parameter to strip @REALM from + usernames + * ... and much code cleanup and polishing + * ... and all fixes from squid 3.5.11 +- Changes for squid-4.0.2 + * Regression Bug 4351: compile errors when authentication modules + disabled + * Regression fix: HTTP/1.1 Transfer-Encoding:chunked parsing + * Bug 4359: assertion failure 'Comm::IsConnOpen(conn)' within + ConnStateData::requestTimeout + * Bug 4356: segmentation fault using proxy_auth ACL + * Bug 4352: compile errors in OS X 10.11 + * Bug 4021: ext_user_regex does exact match + * Bug 3574: avoid crashes, prohibit reconfiguration during + shutdown + * Support re-assigning delay pools based on HTTP reply details + * ... and all fixes from squid 3.5.11 + +--- +Sat Dec 5 00:36:04 UTC 2015 - bo...@steki.net + +- fixes for boo#956989 + - updated pretrans scriptlet so it handles only rpm link vs folders issue + - pre scriptlet updated to not change configuration file without real need +for configuration updates + + +--- +Tue Oct 27 17:12:19 UTC 2015 - ch...@computersalat.de + +- update to 4.0.1 + * Bug 4329: GCC 5.2 no known conversion for argument + * Bug 4292: negotiate_wrapper: Unreleased Resources + * Bug 4269: ignore-must-revalidate broken + * Bug 4190: assertion 'hash_remove_link' from Auth::User::cacheCleanup + * Bug 3920: Splay::remove() reference counting inconsistent + * Bug 3069: CONNECT method bytes sent logging + * Bug 2741 partial: libsecurity API for GnuTLS support + * Bug 1961 partial: redesign of URL handling + * Fix crash when parsing invalid squid.conf + * Fix eCAP: Return 'unknown body size' for bodies with unknown body sizes + * Remove unused OS detection: Sun, SysV, Ultrix, BSDi + * Remove cache_peer_domain directive + * RFC 6176 compliance: Remove SSLv2 support + * HTTP/1.1: Remove refresh_pattern ignore-auth and ignore-must-revalidate + * Remove GCC 2.x and 3.x detection and support + * C++11 compiler support is now mandatory + * Enable flexible transport protocol + * Enable long (--foo) command line parameters on squid binary + * Add per-rule refresh_pattern matching statistics + * Replace sslversion=N with tls-min-version=1.N + * Replace sslproxy_* directives with tls_outgoing_options + * Replace GNU atomics and related hacks with C++11 std::atomic + * Replace external_acl_type format %macros with logformat codes + * Support Ephemeral Elliptic Curve Diffie-Hellman (EECDH) key exchange + * Support Secure ICAP services + * Support rotate=N option on access_log + * Support bypass for non-HTTP intercepted traffic (on_unsupported_protocol) + * Support lifetime timeout for persistent connections (pconn_lifetime) + * Support timeout for URL-rewrite helper lookups (url_rewrite_timeout) + * Support logging fast things (nanosecond log resolution) + * Support ICAP/eCAP adaptation for 100-continue responses + * Support configurable helper queue size, with consistent defaults +and better overflow handling. + * Support named service PID file by default (pid_filename) + * url_lfs_rewrite: Add URL-rewriter based on local file existence + * negotiate_kerberos_auth: output group= kv-pair + * helper-mux: add man(8) page + * purge: convert README to man(1) page + * basic_msnt_multi_domain_auth: Superceeded by basic_smb_lm_auth + * basic_sspi_auth: fix MinGW compile errors + * negotiate_sspi_auth: fix various build errors + * Crypto-NG: libnettle Base64 algorithm support + * Parser-NG: HTTP Parser structural redesign + * libltdl: copyright updated to LGPL version 2.1 + * ... and several performance optimizations + * ... and many documentation chan
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-10-19 22:52:04 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-10-12 10:02:30.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-10-20 00:05:47.0 +0200 @@ -1,0 +2,10 @@ +Thu Oct 15 14:57:13 UTC 2015 - jk...@suse.de + +- Fix rpmlint errors / warnings + * systemd-service-without-service_add_pre +moved service_add_pre to %pre + * non-etc-or-var-file-marked-as-conffile +moved mib.txt to /usr/share/snmp/mibs/SQUID-MIB.txt +idea taken from Fedora package + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.4tlVl2/_old 2015-10-20 00:05:48.0 +0200 +++ /var/tmp/diff_new_pack.4tlVl2/_new 2015-10-20 00:05:48.0 +0200 @@ -128,7 +128,6 @@ * Basic authentication MSNT helper changes %prep -#setup -q -n %{name}-%{version}%{snap} %setup -q cp %{SOURCE10} . # upstream patches after RELEASE @@ -274,6 +273,11 @@ install -D -m644 %{SOURCE4} %{buildroot}%{_sysconfdir}/sysconfig/%{name} %endif +# Move the MIB definition to the proper place (and name) +mkdir -p $RPM_BUILD_ROOT/usr/share/snmp/mibs +mv $RPM_BUILD_ROOT/usr/share/squid/mib.txt \ + $RPM_BUILD_ROOT/usr/share/snmp/mibs/SQUID-MIB.txt + %pre # we need this group for /usr/sbin/pinger if [[ -z $(%{_bindir}/getent group %{name} 2>/dev/null) ]]; then @@ -298,6 +302,10 @@ %{_sbindir}/usermod -G winbind %{name} 2>/dev/null fi +%if 0%{?has_systemd} +%service_add_pre %{name}.service +%endif + %pretrans # Directory to symlink is not working in RPM so workaround it # Occurs when updating from 3.4 to 3.5 @@ -322,10 +330,6 @@ %{_sbindir}/usermod -g %{name} %{name} fi -%if 0%{?has_systemd} -%service_add_pre %{name}.service -%endif - %post %if 0%{?suse_version} >= 1140 %if 0%{?set_permissions:1} @@ -416,11 +420,13 @@ %config %{_sysconfdir}/permissions.d/%{name} %endif %dir %{_datadir}/%{name} +%dir %{_datadir}/snmp +%dir %{_datadir}/snmp/mibs %{_datadir}/%{name}/errors %{_datadir}/%{name}/icons -%config %{_datadir}/%{name}/mib.txt %{_datadir}/%{name}/mime.conf %{_datadir}/%{name}/mime.conf.default +%{_datadir}/snmp/mibs/SQUID-MIB.txt %{_bindir}/purge %{_bindir}/squidclient %{_sbindir}/basic_db_auth
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-10-12 10:02:23 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-09-17 09:21:25.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-10-12 10:02:30.0 +0200 @@ -1,0 +2,16 @@ +Thu Oct 8 14:41:53 UTC 2015 - jk...@suse.de + +- Changes to squid-3.5.10 (01 Oct 2015): + * Regression Fix cache_peer login=PASS(THRU) after CVE-2015-5400 + * Regression Bug 4326: base64 binary encoder rejects data beginning with nil byte + * Bug 4323: Netfilter broken cross-includes with Linux 4.2 + * Bug 4328: %un format code does not work for external ACLs in credentials-fetching rules + * Bug 4208: more than one port in wccp2_service_info line causes error + * Bug 4304: PeerConnector.cc:743 "!callback" assertion. + * Bug 4330: Do not use SSL_METHOD::put_cipher_by_char to determine size of SSL hello ciphers + * Relicense ntlm_fake_auth.pl to GPLv2+ + * Relicense smb_lm auth helper to GPLv2+ + * Relicense SSPI helper to GPLv2+ + * ... and several minor performance optimizations + +--- Old: squid-3.5.8.tar.xz squid-3.5.8.tar.xz.asc New: squid-3.5.10.tar.xz squid-3.5.10.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.fvr7vv/_old 2015-10-12 10:02:31.0 +0200 +++ /var/tmp/diff_new_pack.fvr7vv/_new 2015-10-12 10:02:31.0 +0200 @@ -1,7 +1,7 @@ # # spec file for package squid # -# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -20,7 +20,7 @@ %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.5.8 +Version:3.5.10 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ ++ squid-3.5.8.tar.xz -> squid-3.5.10.tar.xz ++ 2339 lines of diff (skipped) ++ squid-3.5.8.tar.xz.asc -> squid-3.5.10.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-3.5.8.tar.xz.asc 2015-09-08 17:42:29.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.10.tar.xz.asc 2015-10-12 10:02:30.0 +0200 @@ -1,8 +1,8 @@ -File: squid-3.5.8.tar.xz -Date: Tue Sep 1 20:46:18 UTC 2015 -Size: 2295644 -MD5 : 0b4eae643b009215688fcf5f1a7803a7 -SHA1: 4ba4b43cf9abaf7e5015ad4d2d9b628213e55044 +File: squid-3.5.10.tar.xz +Date: Thu Oct 1 15:37:56 UTC 2015 +Size: 2297452 +MD5 : 5ddc53bd6ff78234691a7ebbcbc6aa38 +SHA1: 804bbf5ef6ccdc277dacde83e086fad30d02da60 Key : 0xFF5CF463 fingerprint = EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463 keyring = http://www.squid-cache.org/pgp.asc @@ -10,11 +10,11 @@ -BEGIN PGP SIGNATURE- Version: GnuPG v1 -iQEcBAABAgAGBQJV5iUtAAoJELJo5wb/XPRjAGgIAIRy2AiWg/TdVtnKP0PuvmnX -8ASl8/XIdmXYHn7GVL97Ut/1IW+ZNF2ur4n6YWuf1pHIaSx5I8/RnLfO0dtAnkgs -24O8bBUEHQNSaaCrGjO75PA7PTJxfT6uTaBOl+169JiZVry/prI/YlcJVr73SPjM -S0r326xydBF1McayVCkqTaPti/d88uj496qresWE1zOEWNjjZdXUoWuRSG6ZuDNo -nrq07c+k+F6wNNvii8bBPLiUrxXtE5NRml63UWfUidDWmdx8jrv1e1T2ZK5Gn0JR -+YPeljSUTLrfIdZ1kHGugiycb4zArV3awej/hTGhb2IJ2ezZSQY3TVfLFzD4Yic= -=CE8O +iQEcBAABAgAGBQJWDVnkAAoJELJo5wb/XPRjC/MIAMUTJEgzajbcbpCJubfxL8+y +gxV/SjysESmgjjgC7LdtEsz6X156zxPXNYbNC05NKZ0qLrMN0cHy1+LG1uIWie2c +vFL0KmFllIRY9wiV2m4Y3uoEYvGFEWYviaW8edRJstZAEBe2ntSSvD+982rRwRgw +mHDnjIUL9MnJGnjqVq+O3jq1M/lxmAYoiiJrDQM/Jkd6yvs73o4spRp5AVg6+Vfq +sL3qP/Xz2IaLmHTgHmjhwOQsa7y5THAkUhBzv9Q+BSbo2Qb/6orQnvBcDuhCFs7j +DRnm602Axmqa4zTOQjfkg9ag6WXB+8AIeKFnJuX+Ynw9LVRVTq2DCJqyNVhZbNw= +=LrXD -END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-09-17 09:21:24 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-09-08 17:42:29.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-09-17 09:21:25.0 +0200 @@ -1,0 +2,5 @@ +Fri Sep 4 15:18:54 UTC 2015 - ch...@computersalat.de + +- rebase squid-config.patch + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.tTl4Ur/_old 2015-09-17 09:21:26.0 +0200 +++ /var/tmp/diff_new_pack.tTl4Ur/_new 2015-09-17 09:21:26.0 +0200 @@ -1,7 +1,7 @@ # # spec file for package squid # -# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed ++ squid-config.patch ++ --- /var/tmp/diff_new_pack.tTl4Ur/_old 2015-09-17 09:21:26.0 +0200 +++ /var/tmp/diff_new_pack.tTl4Ur/_new 2015-09-17 09:21:26.0 +0200 @@ -2,7 +2,7 @@ === --- src/cf.data.pre.orig +++ src/cf.data.pre -@@ -1458,6 +1458,8 @@ http_access deny manager +@@ -1460,6 +1460,8 @@ http_access deny manager # Adapt localnet in the ACL section to list your (internal) IP networks # from where browsing should be allowed http_access allow localnet @@ -11,7 +11,7 @@ http_access allow localhost # And finally deny all other access to this proxy -@@ -3686,6 +3688,10 @@ DOC_START +@@ -3692,6 +3694,10 @@ DOC_START Instead, if you want Squid to use the entire disk drive, subtract 20% and use that value. @@ -22,7 +22,7 @@ 'L1' is the number of first-level subdirectories which will be created under the 'Directory'. The default is 16. -@@ -3804,7 +3810,7 @@ DOC_START +@@ -3810,7 +3816,7 @@ DOC_START NOCOMMENT_START # Uncomment and adjust the following to add a disk cache directory. @@ -31,7 +31,7 @@ NOCOMMENT_END DOC_END -@@ -4486,7 +4492,7 @@ DOC_END +@@ -4507,7 +4513,7 @@ DOC_END NAME: logfile_rotate TYPE: int
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-09-08 17:39:18 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-08-11 08:27:00.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-09-08 17:42:29.0 +0200 @@ -1,0 +2,21 @@ +Thu Sep 3 12:59:31 UTC 2015 - jk...@suse.de + +- Changes to squid-3.5.8 (02 Sep 2015): + * Regression Bug 4306: build portability fix in Kerberos helpers + * Bug 4302: IPFilter v5 transparent interception + * Bug 4301: compile errors with IPFilter interception + * Bug 4285 partial: %us is not supported in access.log + * Bug 4278: Docs: typo in the refresh_pattern freshness algorithm + * Bug 4242: compile errors with eCAP using clang-3.6 + * Bug 3696: crash when client delay pools are activated + * Bug 3553: cache_swap_high ignored and maxCapacity used instead + * Regression Fix: FtpServer.cc:1024: "reply != NULL" assertion + * Fix ignore of impossible SSL bumping actions, as intended and documented + * Fix memory leak in Surrogate-Capability header detection + * Fix truncated body length when RESPMOD service aborts + * Reject non-chunked HTTP messages with conflicting Content-Length values + * Support splice for SSLv3 and TLSv1 sessions that start with an SSLv2 Hello + * ... and several portability and compile fixes + * ... and several documentation updates + +--- Old: squid-3.5.7.tar.xz squid-3.5.7.tar.xz.asc New: squid-3.5.8.tar.xz squid-3.5.8.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.u8FVQh/_old 2015-09-08 17:42:34.0 +0200 +++ /var/tmp/diff_new_pack.u8FVQh/_new 2015-09-08 17:42:34.0 +0200 @@ -20,7 +20,7 @@ %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.5.7 +Version:3.5.8 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ ++ squid-3.5.7.tar.xz -> squid-3.5.8.tar.xz ++ 12319 lines of diff (skipped) ++ squid-3.5.7.tar.xz.asc -> squid-3.5.8.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-3.5.7.tar.xz.asc 2015-08-07 00:24:31.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.8.tar.xz.asc 2015-09-08 17:42:29.0 +0200 @@ -1,8 +1,8 @@ -File: squid-3.5.7.tar.xz -Date: Sat Aug 1 06:59:59 UTC 2015 -Size: 2294580 -MD5 : e24943386555ca922130a7e034badba7 -SHA1: e7dcc0cbcee6fd10a8c8bf3e9bff0dc6359ccc48 +File: squid-3.5.8.tar.xz +Date: Tue Sep 1 20:46:18 UTC 2015 +Size: 2295644 +MD5 : 0b4eae643b009215688fcf5f1a7803a7 +SHA1: 4ba4b43cf9abaf7e5015ad4d2d9b628213e55044 Key : 0xFF5CF463 fingerprint = EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463 keyring = http://www.squid-cache.org/pgp.asc @@ -10,11 +10,11 @@ -BEGIN PGP SIGNATURE- Version: GnuPG v1 -iQEcBAABAgAGBQJVvHHfAAoJELJo5wb/XPRjmUUH/3nlvdfeAHWXkbM8PnmJ+/BD -ZYKciqbxo3MzufJQST/uZBIgtwBBrpzS1WBkPT8Lm5iHXavYZSAp3v/cGF/F9z6e -/oMU891G/ve1Pp6QIVoGxUkeMYDqM985UilhhXptPP8ZpztRa7fEgsFy2E4rUkt9 -g5MHMY1heK3n+C8+1o1As5tc/5bYQ+Erd3g2TRlbJNJIc5Sz+K6B8AAg+VabR+d+ -dT3yNC5wP4Bmagrh+vdh0H8BXKyXv4OCTGI6k7qlBy7nY36YvLJC6Z0kZB1OMHef -rb1oTdT7F87UE+8cqu9Zu76HnSVu3PfQYbx1ETaRWE6vjSNIM2BAU9mnpdrS1fs= -=nB5m +iQEcBAABAgAGBQJV5iUtAAoJELJo5wb/XPRjAGgIAIRy2AiWg/TdVtnKP0PuvmnX +8ASl8/XIdmXYHn7GVL97Ut/1IW+ZNF2ur4n6YWuf1pHIaSx5I8/RnLfO0dtAnkgs +24O8bBUEHQNSaaCrGjO75PA7PTJxfT6uTaBOl+169JiZVry/prI/YlcJVr73SPjM +S0r326xydBF1McayVCkqTaPti/d88uj496qresWE1zOEWNjjZdXUoWuRSG6ZuDNo +nrq07c+k+F6wNNvii8bBPLiUrxXtE5NRml63UWfUidDWmdx8jrv1e1T2ZK5Gn0JR ++YPeljSUTLrfIdZ1kHGugiycb4zArV3awej/hTGhb2IJ2ezZSQY3TVfLFzD4Yic= +=CE8O -END PGP SIGNATURE-
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-08-11 08:26:59 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-08-07 00:24:31.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-08-11 08:27:00.0 +0200 @@ -1,0 +2,6 @@ +Mon Aug 10 12:26:30 UTC 2015 - jk...@suse.de + +- Move update logic to proper scriptlet + * Replace 'etc' with %{_sysconfdir} macro + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.iSaHMG/_old 2015-08-11 08:27:01.0 +0200 +++ /var/tmp/diff_new_pack.iSaHMG/_new 2015-08-11 08:27:01.0 +0200 @@ -1,7 +1,7 @@ # # spec file for package squid # -# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -312,6 +312,16 @@ sed -i '/emulate_httpd_log/d' /etc/%{name}/%{name}.conf fi +# update mode? +if [ "$1" -gt "1" ]; then + if [ -e %{_sysconfdir}/%{name}.conf -a ! -L %{_sysconfdir}/%{name}.conf -a ! -e %{_sysconfdir}/%{name}/%{name}.conf ]; then +echo "moving %{_sysconfdir}/%{name}.conf to %{_sysconfdir}/%{name}/%{name}.conf" +mv /%{_sysconfdir}/%{name}.conf /%{_sysconfdir}/%{name}/%{name}.conf + fi + # default group changed from nogroup to squid + %{_sbindir}/usermod -g %{name} %{name} +fi + %if 0%{?has_systemd} %service_add_pre %{name}.service %endif @@ -327,15 +337,6 @@ %run_permissions %endif %endif -# update mode? -if [ "$1" -gt "1" ]; then - if [ -e etc/%{name}.conf -a ! -L etc/%{name}.conf -a ! -e etc/%{name}/%{name}.conf ]; then -echo "moving %{_sysconfdir}/%{name}.conf to %{_sysconfdir}/%{name}/%{name}.conf" -mv /etc/%{name}.conf /etc/%{name}/%{name}.conf - fi - # default group changed from nogroup to squid - %{_sbindir}/usermod -g %{name} %{name} -fi %if 0%{?has_systemd} %service_add_post squid.service
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-08-07 00:24:30 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-07-22 09:19:55.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-08-07 00:24:31.0 +0200 @@ -1,0 +2,22 @@ +Wed Aug 5 21:20:28 UTC 2015 - ch...@computersalat.de + +- Changes to squid-3.5.7 (01 Aug 2015): + * Bug 4293: wrong SNI sent to server after URL-rewrite + * Bug 4251: incorrect instance name for memory segments in /dev/shm + * Bug 4227: invalid key in AuthUserHashPointer causing assertation failure + * Bug 3345: support %un (any available user name) format code for external ACLs. + * basic_smb_auth: Fix several old issues identified by Debian users + * Support ssl-bump splicing to origin cache_peer + * Fix SSL errors relayed using invalid certificates + * Fix crash in TcpAccepter with profiler enabled + * Fix some cases of ssl_crtd SSL certificate DB corruption + * Fix performance regression in SBuf::chop operations + * Improve handling of client connections on shutdown + * Handle exceptions during squid.conf parse + * Make pod2man an optional dependency + * ... and polishing for several cache.log notification messages + * Do not blindly forward cache peer CONNECT responses (CVE-2015-5400) +- rebase patch + * squid-config.patch + +--- Old: squid-3.5.6.tar.xz squid-3.5.6.tar.xz.asc New: squid-3.5.7.tar.xz squid-3.5.7.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.QoOPls/_old 2015-08-07 00:24:33.0 +0200 +++ /var/tmp/diff_new_pack.QoOPls/_new 2015-08-07 00:24:33.0 +0200 @@ -1,7 +1,7 @@ # # spec file for package squid # -# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -20,7 +20,7 @@ %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.5.6 +Version:3.5.7 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ ++ squid-3.5.6.tar.xz -> squid-3.5.7.tar.xz ++ 12264 lines of diff (skipped) retrying with extended exclude list diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/squid-3.5.6/ChangeLog new/squid-3.5.7/ChangeLog --- old/squid-3.5.6/ChangeLog 2015-07-03 11:12:52.0 +0200 +++ new/squid-3.5.7/ChangeLog 2015-08-01 08:08:17.0 +0200 @@ -1,3 +1,21 @@ +Changes to squid-3.5.7 (01 Aug 2015): + + - Bug 4293: wrong SNI sent to server after URL-rewrite + - Bug 4251: incorrect instance name for memory segments in /dev/shm + - Bug 4227: invalid key in AuthUserHashPointer causing assertation failure + - Bug 3345: support %un (any available user name) format code for external ACLs. + - basic_smb_auth: Fix several old issues identified by Debian users + - Support ssl-bump splicing to origin cache_peer + - Fix SSL errors relayed using invalid certificates + - Fix crash in TcpAccepter with profiler enabled + - Fix some cases of ssl_crtd SSL certificate DB corruption + - Fix performance regression in SBuf::chop operations + - Improve handling of client connections on shutdown + - Handle exceptions during squid.conf parse + - Make pod2man an optional dependency + - ... and polishing for several cache.log notification messages + - ... and all fixes from squid 3.4.14 + Changes to squid-3.5.6 (03 Jul 2015): - Bug 4274: ssl_crtd.8 not being installed @@ -182,6 +200,10 @@ - ... and many error page translation updates - ... and much code cleanup and polishing +Changes to squid-3.4.14 (01 Aug 2015): + + - Do not blindly forward cache peer CONNECT responses (CVE-2015-5400) + Changes to squid-3.4.13 (01 May 2015): - Bug 4212: ssl_crtd crashes with corrupt database diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-07-22 09:19:52 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-06-06 09:54:13.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-07-22 09:19:55.0 +0200 @@ -1,0 +2,23 @@ +Tue Jul 21 06:44:15 UTC 2015 - mplus...@suse.com + +- Update to 3.5.6 + * Bug 4274: ssl_crtd.8 not being installed + * Bug 4193: memory leak on FTP listings + * Bug 4183: segfault when freeing https_port clientca on +reconfigure or exit + * Bug 3875: bad mimeLoadIconFile error handling + * Bug 3483: assertion failed store.cc:1866: 'isEmpty()' + * Bug 3329: pinned server connection is not closed properly + * TLS: Disable client-initiated renegotiation + * ext_edirectory_userip_acl: fix uninitialized variable + * Support custom OIDs in *_cert ACLs + * Fix CONNECT failover to IPv4 after trying broken IPv6 servers + * Use relative-URL in errorpage.css for SN.png + * Do not blindly forward cache peer CONNECT responses + * Fix assertion String.cc:221: "str" + * Fix assertion comm.cc:759: "Comm::IsConnOpen(conn)" in +ConnStateData::getSslContextDone + * Translations: add Spanish US dialect alias +- Drop no longer needed squid-nobuilddates.patch + +--- Old: squid-3.5.5.tar.xz squid-3.5.5.tar.xz.asc squid-nobuilddates.patch New: squid-3.5.6.tar.xz squid-3.5.6.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.ID0kSP/_old 2015-07-22 09:19:56.0 +0200 +++ /var/tmp/diff_new_pack.ID0kSP/_new 2015-07-22 09:19:56.0 +0200 @@ -20,7 +20,7 @@ %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.5.5 +Version:3.5.6 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ @@ -44,8 +44,6 @@ Source99: squid-rpmlintrc # some useful defaults for squid Patch100: %{name}-config.patch -# make build compare happy - remove build dates -Patch101: %{name}-nobuilddates.patch # patch fixes kerberos principalname handling (http://bugs.squid-cache.org/show_bug.cgi?id=4042) Patch103: squid-brokenad.patch #patch fix SLE 11 target... BAD PATCH @@ -139,7 +137,6 @@ %patch100 perl -p -i -e 's|%{_prefix}/local/bin/perl|%{_bindir}/perl|' `find -name "*.pl"` chmod a-x CREDITS -%patch101 %patch103 %patch104 ++ squid-3.5.5.tar.xz -> squid-3.5.6.tar.xz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.5.5/ChangeLog new/squid-3.5.6/ChangeLog --- old/squid-3.5.5/ChangeLog 2015-05-28 13:06:38.0 +0200 +++ new/squid-3.5.6/ChangeLog 2015-07-03 11:12:52.0 +0200 @@ -1,3 +1,21 @@ +Changes to squid-3.5.6 (03 Jul 2015): + + - Bug 4274: ssl_crtd.8 not being installed + - Bug 4193: memory leak on FTP listings + - Bug 4183: segfault when freeing https_port clientca on reconfigure or exit + - Bug 3875: bad mimeLoadIconFile error handling + - Bug 3483: assertion failed store.cc:1866: 'isEmpty()' + - Bug 3329: pinned server connection is not closed properly + - TLS: Disable client-initiated renegotiation + - ext_edirectory_userip_acl: fix uninitialized variable + - Support custom OIDs in *_cert ACLs + - Fix CONNECT failover to IPv4 after trying broken IPv6 servers + - Use relative-URL in errorpage.css for SN.png + - Do not blindly forward cache peer CONNECT responses + - Fix assertion String.cc:221: "str" + - Fix assertion comm.cc:759: "Comm::IsConnOpen(conn)" in ConnStateData::getSslContextDone + - Translations: add Spanish US dialect alias + Changes to squid-3.5.5 (28 May 2015): - Regression Bug 4132: short_icon_urls with global_internal_static on diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.5.5/RELEASENOTES.html new/squid-3.5.6/RELEASENOTES.html --- old/squid-3.5.5/RELEASENOTES.html 2015-05-28 13:58:09.0 +0200 +++ new/squid-3.5.6/RELEASENOTES.html 2015-07-03 12:15:40.0 +0200 @@ -2,10 +2,10 @@ - Squid 3.5.5 release notes + Squid 3.5.6 release notes -Squid 3.5.5 release notes +Squid 3.5.6 release notes Squid Developers @@ -63,7 +63,7 @@ 1. Notice -The Squid Team are pleased to announce the release of Squid-3.5.5. +The Squid Team are pleased to announce the release of Squid-3.5.6. This new release is available for d
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-06-06 09:54:03 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-05-23 13:07:59.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-06-06 09:54:13.0 +0200 @@ -1,0 +2,22 @@ +Thu Jun 4 22:31:30 UTC 2015 - mplus...@suse.com + +- Update to 3.5.5 + * Regression Bug 4132: short_icon_urls with +global_internal_static on + * Bug 4238: assertion Read.cc:205: "params.data == data" + * Bug 4236: SSL negotiation error of 'success' + * Bug 3930: assertion 'connIsUsable(http->getConn())' + * Fix assertion MemBuf.cc:380: "new_cap > (size_t) capacity" in +SSL I/O buffer + * Fix assertion errorpage.cc:600: "entry->isEmpty()" + * Fix comm_connect_addr on failures returns Comm:OK + * Fix missing external ACL helper notes + * Fix "Not enough space to hold server hello message" error +message + * Fix segmentation fault inside +Adaptation::Icap::Xaction::swanSong + * Prevent unused ssl_crtd helpers being run +- Update permission in logrotate config +- Refresh squid-config.patch + +--- Old: squid-3.5.4.tar.xz squid-3.5.4.tar.xz.asc New: squid-3.5.5.tar.xz squid-3.5.5.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.llOzNe/_old 2015-06-06 09:54:14.0 +0200 +++ /var/tmp/diff_new_pack.llOzNe/_new 2015-06-06 09:54:14.0 +0200 @@ -20,7 +20,7 @@ %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.5.4 +Version:3.5.5 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ ++ squid-3.5.4.tar.xz -> squid-3.5.5.tar.xz ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.5.4/ChangeLog new/squid-3.5.5/ChangeLog --- old/squid-3.5.4/ChangeLog 2015-05-01 13:27:20.0 +0200 +++ new/squid-3.5.5/ChangeLog 2015-05-28 13:06:38.0 +0200 @@ -1,3 +1,19 @@ +Changes to squid-3.5.5 (28 May 2015): + + - Regression Bug 4132: short_icon_urls with global_internal_static on + - Bug 4238: assertion Read.cc:205: "params.data == data" + - Bug 4236: SSL negotiation error of 'success' + - Bug 3930: assertion 'connIsUsable(http->getConn())' + - Fix assertion MemBuf.cc:380: "new_cap > (size_t) capacity" in SSL I/O buffer + - Fix assertion errorpage.cc:600: "entry->isEmpty()" + - Fix comm_connect_addr on failures returns Comm:OK + - Fix missing external ACL helper notes + - Fix "Not enough space to hold server hello message" error message + - Fix segmentation fault inside Adaptation::Icap::Xaction::swanSong + - Prevent unused ssl_crtd helpers being run + - ... and some code cleanup and portability updates + - ... and several documentation updates + Changes to squid-3.5.4 (01 May 2015): - Bug 4234: comm_connect_addr uses errno incorrectly diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.5.4/RELEASENOTES.html new/squid-3.5.5/RELEASENOTES.html --- old/squid-3.5.4/RELEASENOTES.html 2015-05-01 14:25:08.0 +0200 +++ new/squid-3.5.5/RELEASENOTES.html 2015-05-28 13:58:09.0 +0200 @@ -2,10 +2,10 @@ - Squid 3.5.4 release notes + Squid 3.5.5 release notes -Squid 3.5.4 release notes +Squid 3.5.5 release notes Squid Developers @@ -63,7 +63,7 @@ 1. Notice -The Squid Team are pleased to announce the release of Squid-3.5.4. +The Squid Team are pleased to announce the release of Squid-3.5.5. This new release is available for download from http://www.squid-cache.org/Versions/v3/3.5/";>http://www.squid-cache.org/Versions/v3/3.5/ or the http://www.squid-cache.org/Download/http-mirrors.html";>mirrors. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.5.4/acinclude/ax_cxx_0x_types.m4 new/squid-3.5.5/acinclude/ax_cxx_0x_types.m4 --- old/squid-3.5.4/acinclude/ax_cxx_0x_types.m42015-05-01 13:27:20.0 +0200 +++ new/squid-3.5.5/acinclude/ax_cxx_0x_types.m42015-05-28 13:06:38.0 +0200 @@ -17,8 +17,8 @@ AC_MSG_RESULT(yes)], [ HAVE_NULLPTR=no AC_MSG_RESULT(no)]) - if test "x$HAVE_NULLPTR" = xyes; then -AC_DEFINE(HAVE_NULLPTR, 1, [Define to 1 if nullptr is supported]) + if test "x$HAVE_NULLPTR" = xno; then +AC_DEFINE(nullptr, NULL, [Leave undefined if nul
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-05-23 13:07:58 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-05-06 12:10:50.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-05-23 13:07:59.0 +0200 @@ -1,0 +2,20 @@ +Fri May 22 17:43:50 UTC 2015 - mplus...@suse.com + +- Update to 3.5.4 + * Bug 4234: comm_connect_addr uses errno incorrectly + * Bug 4231: fd_open() not correctly handling UDS socket descriptions + * Bug 4226: digest_edirectory_auth: found but cannot be built + * Bug 4198: assertion failed: client_side.h:364: "sslServerBump == srvBump" + * Bug 3775: Disable HTTP/1.1 pipeline feature for pinned connections + * Fix require-proxy-header preventing HTTPS proxying and ssl-bump + * Fix Negotiate/Kerberos authentication request size exceeds output buffer size + * Fix SQUID_X509_V_ERR_DOMAIN_MISMATCH errors while accessing sites with valid certificates + * Add server_name ACL matching server name(s) obtained from various sources + * Add Kerberos support for MAC OS X 10.x + * Support for resuming TLS sessions + * ... and some portability and compile fixes + * ... and several documentation updates + * ... and all fixes from squid 3.4.13 +- Refresh patches + +--- Old: squid-3.5.3.tar.xz squid-3.5.3.tar.xz.asc New: squid-3.5.4.tar.xz squid-3.5.4.tar.xz.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.qmItrb/_old 2015-05-23 13:08:00.0 +0200 +++ /var/tmp/diff_new_pack.qmItrb/_new 2015-05-23 13:08:00.0 +0200 @@ -20,7 +20,7 @@ %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.5.3 +Version:3.5.4 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ @@ -429,6 +429,7 @@ %{_sbindir}/basic_fake_auth %{_sbindir}/basic_getpwnam_auth %{_sbindir}/basic_ldap_auth +%{_sbindir}/digest_edirectory_auth ## will get removed in 3.6 series # http://www.squid-cache.org/Versions/v3/3.5/RELEASENOTES.html#toc2.8 %{_sbindir}/basic_msnt_multi_domain_auth ++ squid-3.5.3.tar.xz -> squid-3.5.4.tar.xz ++ 3932 lines of diff (skipped) ++ squid-3.5.3.tar.xz.asc -> squid-3.5.4.tar.xz.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-3.5.3.tar.xz.asc 2015-04-27 13:05:13.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.5.4.tar.xz.asc 2015-05-23 13:07:59.0 +0200 @@ -1,8 +1,8 @@ -File: squid-3.5.3.tar.xz -Date: Sat Mar 28 11:51:30 UTC 2015 -Size: 2283580 -MD5 : 6cd553300a2253c0913f498beb79ee51 -SHA1: 6919305e16f59387197cf543f525e41f510b4727 +File: squid-3.5.4.tar.xz +Date: Fri May 1 12:25:42 UTC 2015 +Size: 2289772 +MD5 : 5b53d5bb47fa033b76857f7956d0c36b +SHA1: 71a04a5f7c4c38464a8a08ae1089c47abcea0e49 Key : 0xFF5CF463 fingerprint = EA31 CC5E 9488 E516 8D2D CC5E B268 E706 FF5C F463 keyring = http://www.squid-cache.org/pgp.asc @@ -10,11 +10,11 @@ -BEGIN PGP SIGNATURE- Version: GnuPG v1 -iQEcBAABAgAGBQJVFpsoAAoJELJo5wb/XPRj4KYH/RU/x21yI0nI2sI0ilTUbG4K -W0mFM1YcbjtaRreXU6zgc7kVLPiypRYeXP+GDvADK3uEmXCvjulyT2pBqCdiftsV -BC2kBQDH4m1XUICE+vxKC2LmDAAPFxH0yOTiNltH1BEjNrjUcAPAlfuforVUz84u -VbiVcKMHQ3UShCsdLU3ZfM9qt5AUI6IEKDYIrfOJ+zNg8tEdMXlA3vSno1M2LQ32 -v0wKJJ0WtT8KETOI2HAFAXJJFImJczWh480ffQV76vctT1BAmtue2CRpH0IKpNbZ -8WBIx2wraxzBSu+YAvjinnabLMblyzPfkwuP4U4j0JBGml9A3Us+P/unIlsEGj0= -=rz1P +iQEcBAABAgAGBQJVQ3PPAAoJELJo5wb/XPRjdI8H/3vB73EXjW0nzu9iJr6gN7vs +PZjle4b6cT/76nbAf0O4R5m/HAeIfuoWLsHoVCysroRMcVqni0su1swqavMj/d27 +ikhSyR/JlXArFFumV0Nj1srZuY11Qz9dohLqVBwX8dzuqzFrqF5jQMvM2bKK1Pm9 +hUF+tFZP4sF/y7NBdHMKkb7pRLLc8Yn75wZtg4FAhLY6HfM58e3Sn5Y3JUJ4Lyt0 +6YqnzDQzNAs6YCrsLnY/AY7TKL8hAXMmvJXP9q1wn31lCmzx5KNz3b9YTq+Ul1aB +XqyXyP2FptkUrPJ448f0hgAsrDNfs2rpAblq35ueo6fAV4gwgtmlIb81Y5w0eTQ= +=PwZH -END PGP SIGNATURE- ++ squid-brokenad.patch ++ --- /var/tmp/diff_new_pack.qmItrb/_old 2015-05-23 13:08:02.0 +0200 +++ /var/tmp/diff_new_pack.qmItrb/_new 2015-05-23 13:08:02.0 +0200 @@ -74,7 +74,7 @@ === --- helpers/external_acl/kerberos_ldap_group/support.h.orig +++ helpers/external_acl/kerberos_ldap_group/support.h -@@ -101,6 +101,7 @@ struct main_args { +@@ -105,6 +105,7 @@ struct main_args { int rc_allow; int AD; int mdepth; @@ -82,7 +82,7 @@ char *ddomain; struct gdstruct *groups; struct ndstruct *ndoms; -@@ -160,7 +161,7 @@
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-05-06 12:10:47 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-04-28 11:47:11.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-05-06 12:10:50.0 +0200 @@ -1,0 +2,5 @@ +Wed May 6 08:32:28 UTC 2015 - mplus...@suse.com + +- Remove emulate_httpd_log from config on update + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.zY66Q3/_old 2015-05-06 12:10:51.0 +0200 +++ /var/tmp/diff_new_pack.zY66Q3/_new 2015-05-06 12:10:51.0 +0200 @@ -310,6 +310,10 @@ rm -rf "$error_dir/$i" || true fi done +# emulate_httpd_log is gone with 3.5 +if [ -e etc/%{name}/%{name}.conf ]; then + sed -i '/emulate_httpd_log/d' /etc/%{name}/%{name}.conf +fi %if 0%{?has_systemd} %service_add_pre %{name}.service @@ -330,7 +334,7 @@ if [ "$1" -gt "1" ]; then if [ -e etc/%{name}.conf -a ! -L etc/%{name}.conf -a ! -e etc/%{name}/%{name}.conf ]; then echo "moving %{_sysconfdir}/%{name}.conf to %{_sysconfdir}/%{name}/%{name}.conf" -mv etc/%{name}.conf etc/%{name}/%{name}.conf +mv /etc/%{name}.conf /etc/%{name}/%{name}.conf fi # default group changed from nogroup to squid %{_sbindir}/usermod -g %{name} %{name}
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-04-28 11:47:10 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-04-27 13:05:13.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-04-28 11:47:11.0 +0200 @@ -1,0 +2,5 @@ +Tue Apr 28 08:59:41 UTC 2015 - mplus...@suse.com + +- Fix update from 3.4 to 3.5 + +--- @@ -4 +9 @@ -- fix SLE 11 build with older kerberos libraries +- Fix SLE 11 build with older kerberos libraries Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.AsgkRD/_old 2015-04-28 11:47:12.0 +0200 +++ /var/tmp/diff_new_pack.AsgkRD/_new 2015-04-28 11:47:12.0 +0200 @@ -301,6 +301,16 @@ %{_sbindir}/usermod -G winbind %{name} 2>/dev/null fi +%pretrans +# Directory to symlink is not working in RPM so workaround it +# Occurs when updating from 3.4 to 3.5 +error_dir="%{_datadir}/%{name}/errors" +for i in zh-cn zh-tw; do + if [ -d "$error_dir/$i" ]; then + rm -rf "$error_dir/$i" || true + fi +done + %if 0%{?has_systemd} %service_add_pre %{name}.service %endif
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-04-27 13:05:12 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-03-11 09:56:45.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-04-27 13:05:13.0 +0200 @@ -1,0 +2,63 @@ +Sun Apr 26 11:18:42 UTC 2015 - mplus...@suse.com + +- fix SLE 11 build with older kerberos libraries + * squid-old-kerberos.patch + +--- +Wed Apr 1 06:55:04 UTC 2015 - mplus...@suse.com + +- Update to 3.5.3 + * Regression Bug 4213: negotiate_kerberos_auth: freeing non-dynamic memory + * Regression Bug 4206: Incorrect connection close on expect:100-continue + * Bug 4204: ./configure does not abort when required helpers cannot be built + * Bug 3805: support shared memory on MacOS X in Mem::IPC::Segment + * Bug 2907: high CPU usage on CONNECT when using delay pools + * basic_getpwnam_auth: fail authentication on crypt() failures + * basic_nis_auth: fail authentication on crypt() failures + * ext_kerberos_ldap_group_acl: Heimdal support improvements + * ext_wbinfo_group_acl: Perl 5.20 support + * ... and several compile issues + +--- +Sat Mar 21 13:16:42 UTC 2015 - mplus...@suse.com + +- Use xz compressed source +- Update to 3.5.2 + * Regression Bug 4176: Digest auth too many helper lookups + * Regression Bug 4180: not-fully-initialized data member in +ACLUserData + * Bug 4172: Solaris broken krb5-config + * Bug 4073: Cygwin compile errors + * Bug 3919: remove several never-true / never-false comparisons + * HTTPS: Add missing root CAs when validating chains that passed +internal checks + * Fix some cbdataFree related memory leaks + * Quieten CBDATA 'leak' messages + * Set SNI information in transparent bumping mode + * negotiate_kerberos_auth: fix krb5.conf backward compatibility + * Fix memory leaks in cachemgr.cgi URL parser + * Fix sslproxy_options in peek-and-splice mode + * ... and fix several portability and build issues + * ... and some documentation updates + * ... and all fixes from squid 3.4.11 + +--- +Thu Feb 19 01:09:38 UTC 2015 - ch...@computersalat.de + +- Update to 3.5.1 (13 Jan 2015): + * Fix handling of invalid SSL server certificates when splicing connections + * basic_smb_lm_auth: Simplified MSNT basic auth helper + * squidclient: Fix -A and -P options + * ... and several portability fixes + * ... and all fixes from squid 3.4.11 + * ... and a lot of documentation updates +- removed obsolete patch + * squid-compiled_without_RPM_OPT_FLAGS.patch +- rebased patches + * squid-config.patch + * squid-nobuilddates.patch + * squid-brokenad.patch +- replace configure option + * --enable-ssl > --with-openssl + +--- Old: squid-3.4.11.tar.bz2 squid-3.4.11.tar.bz2.asc squid-compiled_without_RPM_OPT_FLAGS.patch New: squid-3.5.3.tar.xz squid-3.5.3.tar.xz.asc squid-old-kerberos.patch Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.6TE7zT/_old 2015-04-27 13:05:14.0 +0200 +++ /var/tmp/diff_new_pack.6TE7zT/_new 2015-04-27 13:05:14.0 +0200 @@ -1,7 +1,7 @@ # # spec file for package squid # -# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -20,14 +20,14 @@ %define squidconfdir %{_sysconfdir}/squid Name: squid -Version:3.4.11 +Version:3.5.3 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ Group: Productivity/Networking/Web/Proxy -Url:http://www.squid-cache.org/Versions/v3/3.4 -Source0: http://www.squid-cache.org/Versions/v3/3.4/%{name}-%{version}.tar.bz2 -Source1: http://www.squid-cache.org/Versions/v3/3.4/%{name}-%{version}.tar.bz2.asc +Url:http://www.squid-cache.org/Versions/v3/3.5 +Source0: http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz +Source1: http://www.squid-cache.org/Versions/v3/3.5/%{name}-%{version}.tar.xz.asc Source3:squid.init Source4:squid.sysconfig @@ -46,11 +46,10 @@ Patch100: %{name}-config.patch # make build com
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-03-11 09:56:44 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2015-01-09 20:51:01.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-03-11 09:56:45.0 +0100 @@ -1,0 +2,34 @@ +Wed Feb 18 23:28:06 UTC 2015 - ch...@computersalat.de + +- remove obsolete RELEASENOTES.html + * included in package + +--- +Wed Feb 11 22:35:30 UTC 2015 - mplus...@suse.com + +- Update to 3.4.11: + * cachemgr.cgi: memory leak in request parser + * Fix typo on commStartSslClose + * Fix SQUID_CC_REQUIRE_ARGUMENT autoconf macro + * Bug #3760: squidclient ignores --disable-ipv6 + * Bug #3664: ssl_crtd fails to build on OpenSolaris/OpenIndiana/Solaris 11 + * Bug #3754: configure doesnt detect IPFilter 5.1.2 system headers + * Bug #4164: SEGFAULT when %W formating code used in errorpages + * Deleting first fs left psstate->servers pointing to uninitialized memory + * Maintenance: check release notes on packaging + * Bug #4057: Avoid on-exit crashes when adaptation is enabled. + +--- +Sat Jan 10 01:08:40 UTC 2015 - ch...@computersalat.de + +- recover old spec + * merge in suggested changes from tchvatal +- fix permissions for SLE11 + * revert suid bit for pinger and basic_pam_auth +add them to permissions file (commented) +- readd deleted files + * RELEASENOTES + * permissions (needed for SLE11) + * init.rh + +--- Old: squid-3.4.10.tar.bz2 squid-3.4.10.tar.bz2.asc New: squid-3.4.11.tar.bz2 squid-3.4.11.tar.bz2.asc squid.init squid.init.rh squid.permissions Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.YvjQs3/_old 2015-03-11 09:56:47.0 +0100 +++ /var/tmp/diff_new_pack.YvjQs3/_new 2015-03-11 09:56:47.0 +0100 @@ -18,8 +18,9 @@ %define squidlibdir %{_libdir}/squid %define squidconfdir %{_sysconfdir}/squid + Name: squid -Version:3.4.10 +Version:3.4.11 Release:0 Summary:A fully featured HTTP/1.0 proxy License:GPL-2.0+ @@ -27,13 +28,18 @@ Url:http://www.squid-cache.org/Versions/v3/3.4 Source0: http://www.squid-cache.org/Versions/v3/3.4/%{name}-%{version}.tar.bz2 Source1: http://www.squid-cache.org/Versions/v3/3.4/%{name}-%{version}.tar.bz2.asc + +Source3:squid.init Source4:squid.sysconfig Source5:pam.squid Source6:unsquid.pl Source7:%{name}.logrotate +Source9:%{name}.permissions Source10: README.kerberos Source11: %{name}.service Source13: %{name}.keyring +Source14: squid.init.rh + # do not show some rpmlint warnings Source99: squid-rpmlintrc # some useful defaults for squid @@ -45,47 +51,89 @@ Patch102: %{name}-compiled_without_RPM_OPT_FLAGS.patch # patch fixes kerberos principalname handling (http://bugs.squid-cache.org/show_bug.cgi?id=4042) Patch103: squid-brokenad.patch -BuildRequires: cyrus-sasl-devel + +BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRequires: db-devel +# needed by bootstrap.sh +BuildRequires: cyrus-sasl-devel BuildRequires: ed BuildRequires: expat +# BuildRequires: fdupes BuildRequires: gcc-c++ BuildRequires: krb5-devel BuildRequires: libcap-devel BuildRequires: libexpat-devel +%if 0%{?suse_version} <= 1140 +BuildRequires: libtool +%else BuildRequires: libtool >= 2.4 +%endif +%if 0%{?suse_version} < 1220 +BuildRequires: libxml2-devel +%else +BuildRequires: pkgconfig(libxml-2.0) +%endif BuildRequires: openldap2-devel BuildRequires: opensp-devel BuildRequires: openssl-devel BuildRequires: pam-devel BuildRequires: pkgconfig BuildRequires: sharutils -BuildRequires: systemd -BuildRequires: pkgconfig(libxml-2.0) -Requires: logrotate -Requires: sed + +%if 0%{?suse_version} Requires(post): %fillup_prereq -Requires(pre): %insserv_prereq Requires(pre): %{_bindir}/getent +%if 0%{?suse_version} < 1140 Requires(pre): permissions +%else +Requires(pre): permissions >= 2014.11 +%endif Requires(pre): pwdutils -Provides: %{name}3 = %{version} +%else +Requires(pre): shadow-utils +Requires(post): /sbin/chkconfig +Requires(preun): /sbin/service /sbin/chkconfig +Requires(postun): /sbin/service +%endif + +%if 0%{?suse_version} > 1210 +BuildRequires: systemd +%{?systemd
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2015-01-09 20:50:52 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2014-04-05 16:48:24.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2015-01-09 20:51:01.0 +0100 @@ -1,0 +2,197 @@ +Fri Jan 9 10:19:10 UTC 2015 - tchva...@suse.com + +- Cleanup with spec-cleaner +- Version bump to 3.4.10: + * Fix bootstrap.sh dependency on SPONSORS.list + * HTTP/2: Support 421 (Misdirected Request) status code + * Alternate-Protocol is a hop-by-hop header + * Bug #4148: external_acl_type header format does not accept the new libformat syntax + * Bug #4033: Rebuild corrupted ssl_db/size file + * Bug #3902: Docs: external_acl_type cache hash key + * Bug #4145: squid_endian.h compile errors with OpenBSD 5.6 + * Fix segmentation fault in ACLUrlPathStrategy::match +- Remove support for other distros as we build for opensuse anyway + +--- +Fri Jan 2 16:07:38 UTC 2015 - bo...@steki.net + +- remove permissions.easy and permissions.paranoid files from package + as they are not used any more + +--- +Tue Dec 9 12:42:48 UTC 2014 - bo...@steki.net + +- remove setBadness in rpmlintrc as it should be already in Factory + permissions package handled + +--- +Mon Dec 8 15:28:42 UTC 2014 - meiss...@suse.com + +- %verifyscript is its own section, move out of the %postun section + +--- +Tue Dec 2 10:27:49 UTC 2014 - dims...@opensuse.org + +- Use URLs to paths that the source validator actually understands + and make this acceptable for Tumbleweed. + +--- +Thu Nov 27 21:18:35 UTC 2014 - ch...@computersalat.de + +- fix for boo#894636 (squid's logrotate snippet runs init script) + * modify squid.logrotate to work on both systemd and SysVinit + +--- +Thu Nov 27 13:16:58 UTC 2014 - lmue...@suse.com + +- Changes to 3.4.9 (31 Oct 2014): + + Regression fix: ext_kerberos_ldap_group_acl typo in 3.4.7 update + + Bug 4102: sslbump cert contains only a dot character in key usage extension + + Bug 4093: source-maintenance.sh errors and warnings due to wrong +tools/options + + Bug 4088: memory leak in external_acl_type helper with cache=0 or ttl=0 + + Bug 4024: Bad host/IP ::1 when using IPv4-only environment + + Bug 3803: ident leaks memory on failure + + kerberos_ldap_group/cert_tool: Remove ksh dependency; +obsoletes squid-cert_tool_use_bash_not_ksh.patch + + ... and some automated code style updates + + ... and some documentation updates +- Changes to 3.4.8 (15 Sep 2014): + + Fix off by one in SNMP subsystem + + pinger: Fix various ICMP handling issues; CVE-2014-7141; CVE-2014-7142; +http://www.squid-cache.org/Advisories/SQUID-2014_4.txt; bnc#891268 +obsoletes squid-icmp-DoS.patch + +--- +Wed Nov 26 21:45:48 UTC 2014 - lmue...@suse.com + +- Remove dependency on gpg-offline as signature checking is implemented in the + source validator. + +--- +Wed Sep 24 11:49:04 UTC 2014 - ch...@computersalat.de + +- fix spec and changes file + +--- +Tue Sep 16 09:31:35 UTC 2014 - bo...@steki.net + +- update logrotate file + * postrotate now defaults to 'systemd' + +--- +Tue Sep 16 08:35:11 UTC 2014 - bo...@steki.net + +- fix for icmp pinger DOS bnc#891268 + +--- +Mon Sep 15 11:36:51 UTC 2014 - ch...@computersalat.de + +- some spec cleanup +- some systemd/SysVinit fixes +- fix sysconfig file for ! suse_version + +--- +Thu Sep 11 15:25:01 UTC 2014 - bo...@steki.net + +- replaced permissions handling using setuid bit with use of + linux capabilities (on supported systems) +- general cleanup of .spec file and systemd handling + +--- +Fri Sep 5 15:04:47 UTC 2014 - ch...@computersalat.de + +- Changes to 3.4.7 (28 Aug 2014): + * Regression Fix: Kerberos LDAP authorizing groups with principle subdomain + * Bug 4080: worker hangs when client identd is not responding + * Bug 3966: Add
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2014-04-05 16:48:23 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2014-03-18 14:07:04.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2014-04-05 16:48:24.0 +0200 @@ -1,0 +2,7 @@ +Fri Mar 28 18:46:44 UTC 2014 - ch...@computersalat.de + +- fix pidfile dir + * systemd -> /run/squid.pid + * SysVinit -> /var/run/squid.pid + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.sYd2h0/_old 2014-04-05 16:48:25.0 +0200 +++ /var/tmp/diff_new_pack.sYd2h0/_new 2014-04-05 16:48:25.0 +0200 @@ -92,7 +92,7 @@ BuildRequires: pkgconfig(libxml-2.0) %endif -%if 0%{?suse_version} > 1140 +%if 0%{?suse_version} >= 1210 BuildRequires: systemd %{?systemd_requires} %define has_systemd 1 @@ -151,7 +151,11 @@ --datadir=/usr/share/squid \ --sharedstatedir=/var/squid \ --with-logdir=/var/log/squid \ +%if 0%{?has_systemd} --with-pidfile=/run/squid.pid \ +%else + --with-pidfile=/var/run/squid.pid \ +%endif --with-dl \ --enable-disk-io \ --enable-storeio \ ++ squid.service ++ --- /var/tmp/diff_new_pack.sYd2h0/_old 2014-04-05 16:48:25.0 +0200 +++ /var/tmp/diff_new_pack.sYd2h0/_new 2014-04-05 16:48:25.0 +0200 @@ -10,7 +10,7 @@ ExecReload=/usr/sbin/squid -F $SQUID_START_OPTIONS -f /etc/squid/squid.conf -k reconfigure ExecStop=/usr/sbin/squid -F -f /etc/squid/squid.conf -k shutdown LimitNOFILE=4096 -PIDFile=/var/run/squid.pid +PIDFile=/run/squid.pid [Install] WantedBy=multi-user.target -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2014-03-18 14:07:03 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2014-01-23 15:56:49.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2014-03-18 14:07:04.0 +0100 @@ -1,0 +2,48 @@ +Sun Mar 16 08:54:50 UTC 2014 - bo...@steki.net + +- added patch to force kerberos principalname handling + ( http://bugs.squid-cache.org/show_bug.cgi?id=4042 ) + * squid-brokenad.patch + +--- +Sat Mar 15 12:11:30 UTC 2014 - ch...@computersalat.de + +- Changes to squid-3.4.4 (09 Mar 2014): + * Bug 4029: intercepted HTTPS requests bypass caching checks + * Bug 4001: remove use of strsep() + * Bug 3186 and 3628: Digest authentication always sending stale=false for nonce + * Fix stalled concurrent rock store reads + * Fix helper ID number assignment + * Fix build failures from CMSG related definitions + * Fix build failures from libcompat unsafe.h protections + * Copyright: Relicense helpers by Treehouse Networks Ltd. + * ... and all bug fixes from 3.3.12 +- fix for bnc#743563 + * fix spec(post): remove SLE_10 permissions stuff +- rebased patches: + * squid-compiled_without_RPM_OPT_FLAGS.patch + * squid-nobuilddates.patch + +--- +Fri Mar 14 14:34:27 UTC 2014 - bo...@steki.net + +- add ssl bump to build config + +--- +Thu Feb 27 13:26:24 UTC 2014 - ch...@computersalat.de + +- Changes to squid-3.4.3 (02 Feb 2014): + * Bug 4008: HttpHeader warnOnError should be an int not a bool + * Bug 4002: clang 3.4 unable to compile + * Bug 3996: Malformed DNS reply leads to crash + * Bug 3995: compile error on CentOS 5 with GCC 4.1.2 + * Bug 3975: atomic detection cross-compilation failure + * Bug 3971: "cannot aggregate mgr:client_list: cmd->profile != NULL" in SMP mode + * Bug 3954: compile failure in CpuAffinity.cc + * Bug 3927: tests/testRock fatal.cc required + * Fix memory leak in peer Cache Digest exchange + * Fix external_acl_type async loop failures + * Fix destination IP address cycling + * ... and a few polishing changes + +--- Old: squid-3.4.2.tar.bz2 squid-3.4.2.tar.bz2.asc New: squid-3.4.4.tar.bz2 squid-3.4.4.tar.bz2.asc squid-brokenad.patch Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.PJjK2v/_old 2014-03-18 14:07:05.0 +0100 +++ /var/tmp/diff_new_pack.PJjK2v/_new 2014-03-18 14:07:05.0 +0100 @@ -24,7 +24,7 @@ Summary:Squid Version 3.3 WWW Proxy Server License:GPL-2.0+ Group: Productivity/Networking/Web/Proxy -Version:3.4.2 +Version:3.4.4 Release:0 Url:http://www.squid-cache.org/Versions/v3/3.4 #Source0: http://www.squid-cache.org/Versions/v3/3.3/%{name}-%{version}%{snap}.tar.bz2 @@ -60,6 +60,8 @@ ## File is compiled without RPM_OPT_FLAGS # squid3 no-rpm-opt-flags :./cf_gen.cc Patch102: %{name}-compiled_without_RPM_OPT_FLAGS.patch +# patch fixes kerberos principalname handling (http://bugs.squid-cache.org/show_bug.cgi?id=4042) +Patch103: squid-brokenad.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build PreReq: %fillup_prereq PreReq: %insserv_prereq @@ -136,6 +138,7 @@ chmod a-x CREDITS %patch101 %patch102 +%patch103 %build export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF" @@ -162,6 +165,7 @@ --enable-kill-parent-hack \ --enable-arp-acl \ --enable-ssl \ + --enable-ssl-crtd \ --enable-forw-via-db \ --enable-cache-digests \ --enable-linux-netfilter \ @@ -218,6 +222,7 @@ install -d -m 755 doc/contrib install %{SOURCE6} doc/contrib install -D -m 644 %{SOURCE5} %{buildroot}%{_sysconfdir}/pam.d/%{name} +install -D -m 644 ./helpers/external_acl/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8 %{buildroot}%{_mandir}/man8/ext_kerberos_ldap_group_acl.8 rm -rf %{buildroot}%{squidconfdir}/errors for i in errors/*; do @@ -261,9 +266,6 @@ %endif %post -%if 0%{?sles_version} == 10 -sed -i -e "s,\(^%{_sbindir}/pam_auth.*\)\(2755\),\14755," /etc/permissions.secure -%endif %if 0%{?suse_version} >= 1140 %set_permissions %{_localstatedir}/cache/%{name} %set_permissions %{_localstatedir}/log/%{name} @@ -375,6 +377,7 @@ %{_sbindir}/pinger %{_sbindir}/rc%{name} %{_sbindir}/%{name} +%{_sbindi
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2014-01-22 14:00:42 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-12-30 10:44:19.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2014-01-23 15:56:49.0 +0100 @@ -1,0 +2,85 @@ +Tue Jan 7 19:45:22 UTC 2014 - ch...@computersalat.de + +- Changes to squid-3.4.2 (30 Dec 2013): + * Regression Bug 3980: FATAL ERROR due to max_user_ip -s option + * Regression Fix: \-unescaping in quoted strings from helpers + * Regression Fix: URL helper API bypassing on URL containing '=' character + * Bug 3985: 60s limit introduced by balance_on_multiple_ip breaks bad IP recovery + * Bug 3806: Caching responses with Vary header + * Bug 3498: FTP PUT assertion + * WCCPv2: Fix assertion 'Cannot convert non-IPv4 to IPv4' on FreeBSD + * Enable concurrency by default for SSL certificate validator + * ... and fix several build errors + +--- +Wed Dec 25 23:10:24 UTC 2013 - ch...@computersalat.de + +- Changes to squid-3.4.1 (09 Dec 2013): + * Bug 3935: Invalid pointer dereference when peeking at origin server certificate + * Bug 3589: intercepted and ICAP modified request using a cache_peer + * ... and several portability fixes + * ... and some documentation updates +- Changes to squid-3.4.0.3 (01 Dec 2013): + * Bug 3941: Release notes error + * Receive annotations from authentication and external ACL helpers + * basic_nis_auth: Improved portability + * ... and several documentation updates + * ... and all bug fixes from 3.3.9, 3.3.10, 3.3.11 +- Changes to squid-3.4.0.2 (03 Oct 2013): + * Regression Bug 3891: squid.conf parser errors in 3.4.0.1 + * Regression Fix: re-disable MinGW C++11 support + * Bug 3914: partial: make squidclient tool build cleanly with -Wconversion + * Fix memory leak in refresh_pattern parsing + * negotiate_kerberos_auth: upgrade to present group= keys + * Handle NTLM helper returning OK without user= value + * Add dns_multicast_local to control mDNS operation + * Add --disable-arch-native build option + * Display Build-Info in cache manager info report + * ... and all changes from squid 3.3.9 + * ... and some code and debug output polishing +- Changes to squid-3.4.0.1 (29 Jul 2013): + * Port from 2.7: StoreURL (renamed Store-ID) support + * Bug 3795: fix several mistakes in the MIB file + * Bug 3793: configure: improved helper detection + * Bug 3722: Invalid markup in Armenian hy ERR_ONLY_IF_CACHED_MISS + * Bug 3676: Support GCC 4.7 with -Wshadow option + * Bug 3643: NTLM helpers stuck in reserved state by Safari + * Bug 3389: Auto-reconnect for tcp access_log + * Bug 2066: squid does not do chdir() after chroot() + * Fix uninitialized fields in IcapLogEntry + * Fix a number of minor issues detected by Coverity Scan + * Fix some potential memory leaks detected by Coverity Scan + * Fix 64-bit support for Intel compiler suite (ICC) and other similar compilers + * Fix ACL matching algorithm to avoid repeating tests + * basic_pam_auth: Add -r option to strip NTLM/Negotiate domain from username + * squidpurge: fix META TLV parsing issues + * squid.conf: enforce all the directive and option names are lower-case + * Support EUI on HTTPS and FTP data connections + * Support OK/ERR/BH response codes from any helper + * Support No-lookup flag (-n) on DNS ACLs + * Support -march=native compiler optimization by default + * Support forwarding intercepted but not bumped connections to cache_peers + * Support IPv6 NAT interception on Linux and some BSD + * Deprecate log_icap and log_access configuration directives + * HTTP/1.1: improved method invalidation and cacheability detection + * HTTP/1.1: support length configuration for pipeline_prefetch queue + * Improved TPROXY support for OpenBSD and FreeBSD + * Add storeid_file_rewrite helper to perform Store-ID rewrites from a rules file + * Add all-of and any-of ACL types for grouping sets of ACL tests + * Add note directive for transaction annotations + * Add %note log format for transaction annotation logging + * Add note ACL type for matching annotated transactions with by annotation name or value + * Add kv-pair support to URL-rewrite/redirector interface + * Add SSL server certificate validator interface, helper and result cache + * Add SSL server certificate fingerprint ACL type + * Add spoof_client_ip access control + * Add pt-bz (Belize Portuguese) dialect to translations + * ... and many Windows portability changes (still incomplete) + * ... and many documentation changes + * ... and much code cleanup and
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2013-12-30 10:44:18 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-09-29 17:53:20.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-12-30 10:44:19.0 +0100 @@ -1,0 +2,41 @@ +Wed Dec 25 21:29:38 UTC 2013 - ch...@computersalat.de + +- Changes to squid-3.3.11 (01 Dec 2013): + * Regression Bug 3936: error-details.txt parse error with OpenSSL since 3.3.9 + * Bug 3972: Segfault when getting the deny_info page ID after a reconfigure + * Bug 3970: max_filedescriptors disabled due to missing setrlimit + * Bug 3967: ipc/Kid.cc compilation failure: 'time' was not declared in this scope + * Bug 3960: DEAD cache_peer are not revived + * Bug 3956: xstrndup: tried to dup a NULL pointer + * Bug 3906: Filedescriptor leaks in SNMP + * Bug 3782: Digest authentication not obeying nonce_max_count + * HTTP/1.1: Make header parser obey relaxed_header_parser + * HTTP/1.1: Re-compute Range response content offset after an FTP response was adapted + * SMP: Replace blocking sleep(3) and close UDS socket on failures + * Windows: fix several compile errors +- Changes to squid-3.3.10 (03 Nov 2013): + * Bug 3929: request_header_add not working for tunnel requests + * Bug 3923: cbdata and undefined behavior due to dynamic runtime enumeration + * Bug 3918: Self Test Failures on Mac OS X 10.8 + * Bug 3887: tcp_outgoing_tos not working for IPv6 + * Bug 3836: Fix issues with automake 1.13+ and make check + * Bug 3480: StoreEntry::kickProducer() segfaults in store_client::copy() + * Fix pinning hierarchy log information + * Fix close idle client connections associated with closed idle pinned connections. + * Fix cbdata 'error: expression result unused' errors + * Avoid "hot idle": A series of rapid select() calls with zero timeout. + * Append Connection:close to OPTIONS requests when icap_persistent_connections is off + * ntlm_fake_auth: pass DOMAIN data to Squid in original case + * kerberos_ldap_group: fix LDAP string duplication + * Use IPv6 localhost nameserver on DNS configuration errors + * Add cache_miss_revalidate + * ... and several portability improvements +- modified patches: + * squid-compiled_without_RPM_OPT_FLAGS.patch + * squid-config.patch +- fix build for SLE (libxml2-devel vs pkgconfig(libxml2)) +- fix changed files + * bindir/purge + * bindir/squidclient + +--- Old: squid-3.3.9.tar.bz2 squid-3.3.9.tar.bz2.asc New: squid-3.3.11.tar.bz2 squid-3.3.11.tar.bz2.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.tZFUQW/_old 2013-12-30 10:44:21.0 +0100 +++ /var/tmp/diff_new_pack.tZFUQW/_new 2013-12-30 10:44:21.0 +0100 @@ -23,7 +23,7 @@ Summary:Squid Version 3.3 WWW Proxy Server License:GPL-2.0+ Group: Productivity/Networking/Web/Proxy -Version:3.3.9 +Version:3.3.11 Release:0 Url:http://www.squid-cache.org/Versions/v3/3.3 Source0: http://www.squid-cache.org/Versions/v3/3.3/%{name}-%{version}.tar.bz2 @@ -71,8 +71,10 @@ BuildRequires: cyrus-sasl-devel BuildRequires: ed BuildRequires: expat +BuildRequires: fdupes BuildRequires: gcc-c++ BuildRequires: gpg-offline +BuildRequires: krb5-devel BuildRequires: libcap-devel BuildRequires: libexpat-devel BuildRequires: libtool @@ -82,21 +84,10 @@ BuildRequires: pam-devel BuildRequires: pkgconfig BuildRequires: sharutils -# -%if 0%{?sles_version} == 9 -BuildRequires: heimdal-devel +%if 0%{?suse_version} < 1220 +BuildRequires: libxml2-devel %else -BuildRequires: krb5-devel -%endif -# -%if 0%{?suse_version} > 1030 || 0%{?fedora_version} > 8 -BuildRequires: fdupes -%endif -# -%if 0%{?suse_version} >= 1130 BuildRequires: pkgconfig(libxml-2.0) -%else -BuildRequires: libxml2-devel %endif %if 0%{?suse_version} > 1140 @@ -149,22 +140,14 @@ export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF" export CXXFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF" export LDFLAGS='-Wl,-z,relro,-z,now -pie' -./configure \ -%if 0%{?suse_version} == 1110 +%configure \ --disable-strict-error-checking \ -%endif - --prefix=/usr \ --sysconfdir=%{squidconfdir} \ - --bindir=/usr/sbin \ - --sbindir=/usr/sbin \ - --localstatedir=/var \ --libexecdir=/usr/sbin \ --datadir=/usr/share/squid \ - --mandir=%{_mandir} \ - --libdir=%{_libdir} \ --sharedstated
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2013-09-29 17:53:18 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-09-09 19:52:07.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-09-29 17:53:20.0 +0200 @@ -1,0 +2,22 @@ +Sat Sep 28 17:56:52 UTC 2013 - ch...@computersalat.de + +- Changes to squid-3.3.9 (11 Sep 2013): + * Regression Bug 3077: off-by-one error in Digest header decoding + * Bug 3895: fix acl_uses_indirect_client and cache_peer_access + * Bug 3879: assertion failed ConnStateData::validatePinnedConnection + * Bug 3863: myportname acl causes segmentation fault + * Bug 3849: Duplicate certificate sent when using https_port + * Bug 2287: Better fix for unsupported HTTP version handling + * Bug 2112: Reload into If-None-Match + * Fix several assert with side effects in ICAP/eCAP response handling + * Fix myportname ACL on ICAP/eCAP transactions + * Fix external ACL user:pass detail logging after adaptation + * Fix SMP mgr:info report 'Largest file desc currently in use' + * Improved compatibility with gcc 4.8, clang and icc + * Show number of available filedescriptors when reserved FD changes + * Sync with newest OpenSSL error codes + * Register Http2-Settings header + * ... and many Windows portability fixes +- fix changelog + +--- @@ -89,14 +111,8 @@ -- Changes for squid 3.2.13 release (July 13th 2013) - Better handling of strange port values in Host: - Bug #3869: assertion failed: MemBuf.cc:272: size < capacity - -- Changes for squid 3.2.12 release (July 10th 2013) - Protect against buffer overrun in DNS query generation - Revert rev.11818 - not applicable to 3.2. - Allocate ClientInfo::hash.key using malloc() instead of new char[] - Remove origin_tries limiter on forwarding - Fixed leaking configurable SSL error details. - Fix memory error with Kerberos authentication - Avoid !closing assertions when helpers call comm_read [during reconfigure]. - Avoid Comm::Connection leaks when helpers are reconfigured or otherwise closed. - Add missing piece omitted from rev.9677 +- Changes to squid-3.2.13 (13 Jul 2013): + * Bug 3869: assertion failed: MemBuf.cc:272: size < capacity + * Improved handling of port values in Host: header validation +- Changes to squid-3.2.12 (11 Jul 2013): + * Protect against buffer overrun in DNS query generation + * Avoid !closing assertions when helpers call comm_read during reconfigure. + * Fix several minor memory leaks during reconfigure + * Remove origin_tries limiter on forwarding and permit large max_forward_tries values @@ -114,12 +130,12 @@ - - Fix enter_suid/leave_suid build errors in ip/Intercept.cc - - GNU Hurd: define MAP_NORESERVE as no-op when missing - - Bug #3833: Option '-k' is not present in squidclient man page - - Bug #3817: Memory leak in SSL cert validate for alt_name peer certs - - Bug #3822: Locate LDAP and SASL headers in /usr/local/include for BSD support - - Bug #3825: basic_ncsa_auth segfaulting with glibc-2.17 - - Bug #3774: -k reconfigure drops rock - - Bug #3565: Resuming postponed accept kills Squid - - HTTP/1.1: partial support for no-cache and private controls with parameters - - ssl_crtd: helpers dying during startup on ARM - - Updated copyright for icons/SN.png squid-3.2-11813.patch - - Revert r11810 - tools.h does not exist in 3.2 squid-3.2-11812.patch + * Fix enter_suid/leave_suid build errors in ip/Intercept.cc + * GNU Hurd: define MAP_NORESERVE as no-op when missing + * Bug #3833: Option '-k' is not present in squidclient man page + * Bug #3817: Memory leak in SSL cert validate for alt_name peer certs + * Bug #3822: Locate LDAP and SASL headers in /usr/local/include for BSD support + * Bug #3825: basic_ncsa_auth segfaulting with glibc-2.17 + * Bug #3774: -k reconfigure drops rock + * Bug #3565: Resuming postponed accept kills Squid + * HTTP/1.1: partial support for no-cache and private controls with parameters + * ssl_crtd: helpers dying during startup on ARM + * Updated copyright for icons/SN.png squid-3.2-11813.patch + * Revert r11810 - tools.h does not exist in 3.2 squid-3.2-11812.patch @@ -139,3 +154,0 @@ - -Thu Mar 14 13:08:54 UTC 2013 - br...@ioda-net.ch - @@ -143 +156 @@ - - Rework on squid.service ExecStartPre line + * Rework on squid.service ExecStartPre line @@ -145,5 +158,5 @@ - - Fix bnc#802635 (creating cache struture fail on first call) - - Fixed Type=forking and remove the u
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2013-09-09 19:52:06 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-07-30 16:48:26.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-09-09 19:52:07.0 +0200 @@ -1,0 +2,85 @@ +Thu Sep 5 11:43:22 UTC 2013 - ch...@computersalat.de + +- fix build for Factory + * rework fix-pod2man-check + +--- +Mon Sep 2 21:58:38 UTC 2013 - ch...@computersalat.de + +- fix build for 1110 (SLES_11) + * add configure --disable-strict-error-checking + +--- +Sun Sep 1 12:25:46 UTC 2013 - ch...@computersalat.de + +- Changes to squid-3.3.8 (13 Jul 2013): + * Bug 3869: assertion failed: MemBuf.cc:272: size < capacity + * Improved handling of port values in Host: header validation +- Changes to squid-3.3.7 (11 Jul 2013): + * Bug 3297: Fix openSSL related build failures + * Fix build on FreeBSD 9.x platform with clang + * Protect against buffer overrun in DNS query generation +- Changes to squid-3.3.6 (01 Jul 2013): + * Bug 3854: pt1: compile errors on AIX + * Bug 3802: Fix wrong check inside Format::Format::assemble + * Bug 3762: remove bogus WARNING in cache.log + * Bug 3717: assertion failed with dstdom_regex with IP based URL + * Bug 1991: kqueue causes SSL to hang + * Ask for SSL key password when started with -N but without sslpassword_program + * Make sure %http://www.squid-cache.org/Versions/v3/3.2 -Source0: http://www.squid-cache.org/Versions/v3/3.2/%{name}-%{version}.tar.bz2 +Url:http://www.squid-cache.org/Versions/v3/3.3 +Source0: http://www.squid-cache.org/Versions/v3/3.3/%{name}-%{version}.tar.bz2 Source1:%{name}-%{version}.tar.bz2.asc Source2:RELEASENOTES.html Source3:squid.init @@ -118,26 +117,19 @@ %description Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. It reduces bandwidth and improves response times by caching and reusing frequently-requested web pages. Squid has extensive access controls and makes a great server accelerator. -Squid 3.2 represents a new feature release above 3.1. +Squid 3.3 represents a new feature release above 3.2. The most important of these new features are: - * CVE-2009-0801 : NAT interception vulnerability to malicious clients. - * NCSA helper DES algorithm password limits - * SMP scalability - * Helper Multiplexer and On-Demand - * Helper Name Changes - * Multi-Lingual manuals - * Solaris 10 pthreads Support - * Surrogate/1.0 protocol extensions to HTTP - * Logging Infrastructure Updated - * Client Bandwidth Limits - * Better eCAP support - * Cache Manager access changes - - First STABLE release Date: 02 Aug 2010 - Latest Release: %{version} - Latest Release Date: %{version_published} + * SQL Database logging helper + * Time-Quota session helper + * SSL-Bump Server First + * Server Certificate Mimic + * Custom HTTP request headers + +Most user-facing changes are reflected in squid.conf (see below). + + First STABLE release Date: 20 Oct 2012 %prep %gpg_verify %{S:1} @@ -151,13 +143,17 @@ chmod a-x CREDITS %patch101 %patch102 -%patch103 -p1 +%patch103 %build export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF" export CXXFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF" export LDFLAGS='-Wl,-z,relro,-z,now -pie' -./configure --prefix=/usr \ +./configure \ +%if 0%{?suse_version} == 1110 + --disable-strict-error-checking \ +%endif + --prefix=/usr \ --sysconfdir=%{squidconfdir} \ --bindir=/usr/sbin \ --sbindir=/usr/sbin \ @@ -384,6 +380,7 @@ %{_sbindir}/ext_unix_group_acl %{_sbindir}/ext_wbinfo_group_acl %{_sbindir}/helper-mux.pl +%{_sbindir}/log_db_daemon %{_sbindir}/log_file_daemon %{_sbindir}/negotiate_kerberos_auth %{_sbindir}/negotiate_kerberos_auth_test ++ RELEASENOTES.html ++ 1384 lines (skipped) between /work/SRC/openSUSE:Factory/squid/RELEASENOTES.html and /work/SRC/openSUSE:Factory/.squid.new/RELEASENOTES.html ++ squid-3.2.13.tar.bz2 -> squid-3.3.8.tar.bz2 ++ 90763 lines of diff (skipped) ++ squid-3.2.13.tar.bz2.asc -> squid-3.3.8.tar.bz2.asc ++ --- /work/SRC/openSUSE:Factory/squid/squid-3.2.13.tar.bz2.asc 2013-07-30 16:48:26.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid-3.3.8.tar.bz2.asc 2013-09-09 19:52:07.0 +0200 @@ -1,8 +1,8 @@ -File: squid-3.2.13.tar.bz2 -Date: Sat Jul 13 13:49:04 UTC 2013 -Size: 2898293 -MD5 : 367e59c9c25da7ebbfbf7cbc36d2444e -SHA1: f253df49819
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2013-07-30 16:48:24 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-07-25 14:46:50.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-07-30 16:48:26.0 +0200 @@ -1,0 +2,18 @@ +Sun Jul 28 12:44:37 UTC 2013 - br...@ioda-net.ch + +- Changes for squid 3.2.13 release (July 13th 2013) + Better handling of strange port values in Host: + Bug #3869: assertion failed: MemBuf.cc:272: size < capacity + +- Changes for squid 3.2.12 release (July 10th 2013) + Protect against buffer overrun in DNS query generation + Revert rev.11818 - not applicable to 3.2. + Allocate ClientInfo::hash.key using malloc() instead of new char[] + Remove origin_tries limiter on forwarding + Fixed leaking configurable SSL error details. + Fix memory error with Kerberos authentication + Avoid !closing assertions when helpers call comm_read [during reconfigure]. + Avoid Comm::Connection leaks when helpers are reconfigured or otherwise closed. + Add missing piece omitted from rev.9677 + +--- Old: squid-3.2.11.tar.bz2 squid-3.2.11.tar.bz2.asc New: squid-3.2.13.tar.bz2 squid-3.2.13.tar.bz2.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.Hv9GR3/_old 2013-07-30 16:48:27.0 +0200 +++ /var/tmp/diff_new_pack.Hv9GR3/_new 2013-07-30 16:48:27.0 +0200 @@ -18,12 +18,13 @@ %definesquidlibdir %{_libdir}/squid %definesquidconfdir /etc/squid +%defineversion_published "2013-07-24" Name: squid Summary:Squid Version 3.2 WWW Proxy Server License:GPL-2.0+ Group: Productivity/Networking/Web/Proxy -Version:3.2.11 +Version:3.2.13 Release:0 Url:http://www.squid-cache.org/Versions/v3/3.2 Source0: http://www.squid-cache.org/Versions/v3/3.2/%{name}-%{version}.tar.bz2 @@ -135,8 +136,8 @@ * Cache Manager access changes First STABLE release Date: 02 Aug 2010 - Latest Release: 3.2.9 - Latest Release Date: 12 Mar 2013 + Latest Release: %{version} + Latest Release Date: %{version_published} %prep %gpg_verify %{S:1} ++ RELEASENOTES.html ++ --- /var/tmp/diff_new_pack.Hv9GR3/_old 2013-07-30 16:48:27.0 +0200 +++ /var/tmp/diff_new_pack.Hv9GR3/_new 2013-07-30 16:48:27.0 +0200 @@ -1,11 +1,11 @@ - - Squid 3.2.6 release notes + + Squid 3.2.13 release notes -Squid 3.2.6 release notes +Squid 3.2.13 release notes Squid Developers @@ -72,12 +72,14 @@ 1. Notice -The Squid Team are pleased to announce the release of Squid-3.2.6 for -testing. +The Squid Team are pleased to announce the release of Squid-3.2.13. This new release is available for download from -http://www.squid-cache.org/Versions/v3/3.2/";>http://www.squid-cache.org/Versions/v3/3.2/ or the +http://www.squid-cache.org/Versions/v3/3.2/";>http://www.squid-cache.org/Versions/v3/3.2/ or the http://www.squid-cache.org/Mirrors/http-mirrors.html";>mirrors. -While this release is not deemed ready for production use, we believe it is ready for wider testing by the community. + +A large number of the show-stopper bugs have been fixed along with general improvements to the IPv6 support. +While this release is not fully bug-free we believe it is ready for use in production on many systems. + We welcome feedback and bug reports. If you find a bug, please see http://wiki.squid-cache.org/SquidFaq/BugReporting";>http://wiki.squid-cache.org/SquidFaq/BugReporting for how to submit a report with a stack trace. @@ -86,7 +88,7 @@ Although this release is deemed good enough for use in many setups, please note the existence of -http://bugs.squid-cache.org/buglist.cgi?query_format=advanced&short_desc_type=allwordssubstr&short_desc=&target_milestone=3.2&long_desc_type=allwordssubstr&long_desc=&bug_file_loc_type=allwordssubstr&bug_file_loc=&status_whiteboard_type=allwordssubstr&status_whiteboard=&bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&emailtype1=substring&email1=&emailtype2=substring&email2=&bugidtype=include&bug_id=&votes=&chfieldfrom=&chfieldto=Now&chfieldvalue=&cmdtype=doit&order=bugs.bug_severity&field0-0-0=noop&type0-0-0=noop&value0-0-0=";>open bugs against Squid-3.2. +http://bugs.squid-cache.org/buglist.cgi?query_format=advanced&product=Squid&bug_status=UNCONFIRMED&bug_status=NEW&bug_status=
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2013-07-25 14:46:49 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-05-13 15:37:19.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-07-25 14:46:50.0 +0200 @@ -1,0 +2,6 @@ +Thu Jul 25 10:19:05 UTC 2013 - tchva...@suse.com + +- Add patch squid-fix-pod2man-check.patch solving building with + new perl. + +--- New: squid-fix-pod2man-check.patch Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.Tgis4n/_old 2013-07-25 14:46:51.0 +0200 +++ /var/tmp/diff_new_pack.Tgis4n/_new 2013-07-25 14:46:51.0 +0200 @@ -58,6 +58,8 @@ ## File is compiled without RPM_OPT_FLAGS # squid3 no-rpm-opt-flags :./cf_gen.cc Patch102: %{name}-compiled_without_RPM_OPT_FLAGS.patch +# Upstream notified of this problem by mageia guys +Patch103: %{name}-fix-pod2man-check.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build PreReq: %fillup_prereq PreReq: %insserv_prereq @@ -148,6 +150,7 @@ chmod a-x CREDITS %patch101 %patch102 +%patch103 -p1 %build export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF" ++ squid-fix-pod2man-check.patch ++ diff -urN squid-3.2.11.old/helpers/basic_auth/DB/config.test squid-3.2.11/helpers/basic_auth/DB/config.test --- squid-3.2.11.old/helpers/basic_auth/DB/config.test 2013-07-25 12:15:59.645954336 +0200 +++ squid-3.2.11/helpers/basic_auth/DB/config.test 2013-07-25 12:16:26.881955259 +0200 @@ -2,6 +2,6 @@ ## Test: do we have perl to build the helper scripts? ## Test: do we have pod2man to build the manual? -perl --version >/dev/null && echo | pod2man >/dev/null +perl --version >/dev/null && echo =encoding US-ASCII | pod2man >/dev/null exit $? -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2013-05-13 15:37:18 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-03-25 20:45:39.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-05-13 15:37:19.0 +0200 @@ -1,0 +2,17 @@ +Tue Apr 30 11:42:06 UTC 2013 - br...@ioda-net.ch + +- Changes for squid 3.2.11 release (29 April 2013) + - Fix enter_suid/leave_suid build errors in ip/Intercept.cc + - GNU Hurd: define MAP_NORESERVE as no-op when missing + - Bug #3833: Option '-k' is not present in squidclient man page + - Bug #3817: Memory leak in SSL cert validate for alt_name peer certs + - Bug #3822: Locate LDAP and SASL headers in /usr/local/include for BSD support + - Bug #3825: basic_ncsa_auth segfaulting with glibc-2.17 + - Bug #3774: -k reconfigure drops rock + - Bug #3565: Resuming postponed accept kills Squid + - HTTP/1.1: partial support for no-cache and private controls with parameters + - ssl_crtd: helpers dying during startup on ARM + - Updated copyright for icons/SN.png squid-3.2-11813.patch + - Revert r11810 - tools.h does not exist in 3.2 squid-3.2-11812.patch + +--- Old: squid-3.2.9.tar.bz2 squid-3.2.9.tar.bz2.asc New: squid-3.2.11.tar.bz2 squid-3.2.11.tar.bz2.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.jcpf2d/_old 2013-05-13 15:37:21.0 +0200 +++ /var/tmp/diff_new_pack.jcpf2d/_new 2013-05-13 15:37:21.0 +0200 @@ -23,7 +23,7 @@ Summary:Squid Version 3.2 WWW Proxy Server License:GPL-2.0+ Group: Productivity/Networking/Web/Proxy -Version:3.2.9 +Version:3.2.11 Release:0 Url:http://www.squid-cache.org/Versions/v3/3.2 Source0: http://www.squid-cache.org/Versions/v3/3.2/%{name}-%{version}.tar.bz2 @@ -43,9 +43,12 @@ # don't change the names for easier identification # # please read every file if there is interest about what the patch changes -# or just visit: http://www.squid-cache.org/Versions/v3/3.0/changesets/ +# or just visit: http://www.squid-cache.org/Versions/v3/3.2/changesets/ # # +# Upstream patch +# Patch0: + # do not show some rpmlint warnings Source99: rpmlintrc # some useful defaults for squid @@ -138,8 +141,7 @@ %setup -q -n %{name}-%{version} cp %{S:10} . # upstream patches after RELEASE -#patch0 -#patch1 +# # other patches %patch100 perl -p -i -e 's|/usr/local/bin/perl|/usr/bin/perl|' `find -name "*.pl"` ++ squid-3.2.9.tar.bz2 -> squid-3.2.11.tar.bz2 ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.2.9/CREDITS new/squid-3.2.11/CREDITS --- old/squid-3.2.9/CREDITS 2013-03-12 11:15:58.0 +0100 +++ new/squid-3.2.11/CREDITS2013-04-30 06:47:06.0 +0200 @@ -531,9 +531,8 @@ Squid NOW icon - copyright Squid Project This work is licensed under the - Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported Liscence - (CC BY-NC-SA 3.0) - [ http://creativecommons.org/licenses/by-nc-sa/3.0/ ] + Creative Commons Attribution-ShareAlike 3.0 Unported Liscence (CC BY-SA 3.0) + [ http://creativecommons.org/licenses/by-sa/3.0/ ] == diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.2.9/ChangeLog new/squid-3.2.11/ChangeLog --- old/squid-3.2.9/ChangeLog 2013-03-12 11:15:58.0 +0100 +++ new/squid-3.2.11/ChangeLog 2013-04-30 06:47:06.0 +0200 @@ -1,3 +1,22 @@ + +Changes to squid-3.2.11 (30 Apr 2013): + + - Regression Bug 3839: build error: src/tools.h: No such file or directory + - Update copyright on SN.png + +Changes to squid-3.2.10 (27 Apr 2013): + + - Bug 3833: squidclient: Option '-k' is not present in man(1) page + - Bug 3825: basic_ncsa_auth: segfaulting with glibc-2.17 + - Bug 3822: Locate LDAP and SASL headers for BSD support + - Bug 3817: Memory leak in SSL cert validate for alt_name peer certs + - Bug 3774: 'squid -k reconfigure' drops rock cache + - Bug 3565: Resuming postponed accept kills Squid + - HTTP/1.1: partial support for no-cache and private controls with parameters + - ssl_crtd: fix helpers dying during startup on ARM + - GNU Hurd: define MAP_NORESERVE as no-op when missing + - BSD: fix
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2013-03-25 20:45:38 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid", Maintainer is "dr...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-02-22 17:02:46.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-03-25 20:45:39.0 +0100 @@ -1,0 +2,48 @@ +Sun Mar 24 18:57:26 UTC 2013 - br...@ioda-net.ch + +- Fixed squid.service +- Removed commented patch lines + +--- +Fri Mar 15 10:31:02 UTC 2013 - br...@ioda-net.ch + +- New revision for squid.service (using only sed) + handle multiple cache_dir line + Added sed as require + +Thu Mar 14 13:08:54 UTC 2013 - br...@ioda-net.ch + +- Packaging : fixed systemd squid.service + - Rework on squid.service ExecStartPre line + remove dependency on unfunctionnal wrapper + - Fix bnc#802635 (creating cache struture fail on first call) + - Fixed Type=forking and remove the use off -N (non daemon flag) + - Fixed missing pid file + - Structural : add all -k to end of Exec/Stop line + - Ulimit : Added LimitNOFile=4096 ( same value as in /etc/sysconfig) + but there's no way to decode dynamically /etc/sysconfig + - Remove syslog.target ( no need anymore : advise from fcrozat ) + - Clean up squid_cache_build.sh +- Changes to squid-3.2.9 (12 Mar 2013): + - Regression fix: Accept-Language header parse + - Bug 3673: Silence 'Failed to select source' messages + - Fix authentication headers sent on peer digest requests + - Fix build error on Solaris, OpenIndiana, Omnios + +- Changes to squid-3.2.8 (02 Mar 2013): + + - Bug 3767: tcp_outgoing_tos/mark ACLs do not obey acl_uses_indirect_client + - Bug 3763: diskd Error: no filename in shm buffer + - Bug 3752: objects that cannot be cached in memory are not cached on disk + - Bug 3753: Removes the domain from the cache_peer server pconn key + - Bug 3749: IDENT lookup using wrong ports to identify the user + - Bug 3723: tcp_outgoing_tos/mark broken for CONNECT requests + - Bug 3686: cache_dir max-size default fails + - Bug 3515: crash in FtpStateData::ftpTimeout + - Bug 3329: Quieten orphan Comm::Connection messages + - Make squid -z for cache_dir rock preserve the rock DB + - Fixed several server connect problems + - ... and some build issues on Solaris, OpenIndiana, MacOS X + - ... and some documentation and debugs polishing + +--- Old: squid-3.2.7.tar.bz2 squid-3.2.7.tar.bz2.asc squid_cache_swap.sh New: squid-3.2.9.tar.bz2 squid-3.2.9.tar.bz2.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.tA20UX/_old 2013-03-25 20:45:41.0 +0100 +++ /var/tmp/diff_new_pack.tA20UX/_new 2013-03-25 20:45:41.0 +0100 @@ -23,7 +23,7 @@ Summary:Squid Version 3.2 WWW Proxy Server License:GPL-2.0+ Group: Productivity/Networking/Web/Proxy -Version:3.2.7 +Version:3.2.9 Release:0 Url:http://www.squid-cache.org/Versions/v3/3.2 Source0: http://www.squid-cache.org/Versions/v3/3.2/%{name}-%{version}.tar.bz2 @@ -37,7 +37,6 @@ Source9:%{name}.permissions Source10: README.kerberos Source11: %{name}.service -Source12: squid_cache_swap.sh Source13: %{name}.keyring # # the following patches are downloaded directly from the webserver @@ -46,12 +45,7 @@ # please read every file if there is interest about what the patch changes # or just visit: http://www.squid-cache.org/Versions/v3/3.0/changesets/ # -# [request|reply]_header_* manglers fixes to handle custom headers -#Patch0: http://www.squid-cache.org/Versions/v3/3.2/changesets/squid-3.2-11611.patch -# cache.log analysis: Add a pattern to report alive (opened and not closed) FDs. -#Patch1: http://www.squid-cache.org/Versions/v3/3.2/changesets/squid-3.2-11612.patch # -## # do not show some rpmlint warnings Source99: rpmlintrc # some useful defaults for squid @@ -107,6 +101,7 @@ %endif Requires: logrotate +Requires: sed Provides: http_proxy # due to package rename @@ -135,8 +130,8 @@ * Cache Manager access changes First STABLE release Date: 02 Aug 2010 - Latest Release: 3.2.7 - Latest Release Date: 01 Feb 2013 + Latest Release: 3.2.9 + Latest Release Date: 12 Mar 2013 %prep %gpg_verify %{S:1} @@ -2
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2013-02-22 17:02:45 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid", Maintainer is "dr...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-01-14 12:03:43.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-02-22 17:02:46.0 +0100 @@ -1,0 +2,20 @@ +Wed Feb 20 23:24:06 UTC 2013 - e.isto...@edss.ee + +- Changes to squid-3.2.7 (01 Feb 2013): + - Bug 3736: Floating point exception due to divide by zero + - Bug 3735: raw-IPv6 domain URLs crash if IPv6-disabled + - Bug 3732: Fix ConnOpener IPv6 awareness + - Bug 3729: 32-bit overflow in parsing 64-bit configuration values + - Bug 3728: Improve debug for cache_dir + - Bug 3687: unhandled exception: c when using interception and peers + - Bug 3678: external acl grace period causes acl lookup failures + - Bug 3567: Memory leak handling malformed requests + - Bug 3111: Mid-term fix for the forward.cc "err" assertion + - Support OpenSSL NO_Compression optio + - Fix IPv6 enabled pinger on split-stack or IPv6-disabled systems + - Fix "address.GetPort() != 0" assertion for helpers + - ... and several minor memory leaks + - ... and some cache.log message polishing + + +--- Old: squid-3.2.6.tar.bz2 squid-3.2.6.tar.bz2.asc New: squid-3.2.7.tar.bz2 squid-3.2.7.tar.bz2.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.NCGkdI/_old 2013-02-22 17:02:48.0 +0100 +++ /var/tmp/diff_new_pack.NCGkdI/_new 2013-02-22 17:02:48.0 +0100 @@ -23,7 +23,7 @@ Summary:Squid Version 3.2 WWW Proxy Server License:GPL-2.0+ Group: Productivity/Networking/Web/Proxy -Version:3.2.6 +Version:3.2.7 Release:0 Url:http://www.squid-cache.org/Versions/v3/3.2 Source0: http://www.squid-cache.org/Versions/v3/3.2/%{name}-%{version}.tar.bz2 @@ -135,8 +135,8 @@ * Cache Manager access changes First STABLE release Date: 02 Aug 2010 - Latest Release: 3.2.6 - Latest Release Date: 08 Jan 2013 + Latest Release: 3.2.7 + Latest Release Date: 01 Feb 2013 %prep %gpg_verify %{S:1} ++ squid-3.2.6.tar.bz2 -> squid-3.2.7.tar.bz2 ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.2.6/ChangeLog new/squid-3.2.7/ChangeLog --- old/squid-3.2.6/ChangeLog 2013-01-09 02:41:51.0 +0100 +++ new/squid-3.2.7/ChangeLog 2013-02-01 11:55:31.0 +0100 @@ -1,3 +1,20 @@ +Changes to squid-3.2.7 (01 Feb 2013): + + - Bug 3736: Floating point exception due to divide by zero + - Bug 3735: raw-IPv6 domain URLs crash if IPv6-disabled + - Bug 3732: Fix ConnOpener IPv6 awareness + - Bug 3729: 32-bit overflow in parsing 64-bit configuration values + - Bug 3728: Improve debug for cache_dir + - Bug 3687: unhandled exception: c when using interception and peers + - Bug 3678: external acl grace period causes acl lookup failures + - Bug 3567: Memory leak handling malformed requests + - Bug 3111: Mid-term fix for the forward.cc "err" assertion + - Support OpenSSL NO_Compression optio + - Fix IPv6 enabled pinger on split-stack or IPv6-disabled systems + - Fix "address.GetPort() != 0" assertion for helpers + - ... and several minor memory leaks + - ... and some cache.log message polishing + Changes to squid-3.2.6 (09 Jan 2013): - Regression Bug 3731: TOS setsockopt() requires int value diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.2.6/RELEASENOTES.html new/squid-3.2.7/RELEASENOTES.html --- old/squid-3.2.6/RELEASENOTES.html 2013-01-09 03:06:07.0 +0100 +++ new/squid-3.2.7/RELEASENOTES.html 2013-02-01 12:23:34.0 +0100 @@ -2,10 +2,10 @@ - Squid 3.2.6 release notes + Squid 3.2.7 release notes -Squid 3.2.6 release notes +Squid 3.2.7 release notes Squid Developers @@ -72,7 +72,7 @@ 1. Notice -The Squid Team are pleased to announce the release of Squid-3.2.6 for +The Squid Team are pleased to announce the release of Squid-3.2.7 for testing. This new release is available for download from http://www.squid-cache.org/Versions/v3/3.2/";>http://www.squid-cache.org/Versions/v3/3.2/ or the diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.2.6/configure new/squid-3.2.7/config
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2013-01-14 12:03:41 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid", Maintainer is "dr...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-01-14 09:49:46.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-01-14 12:03:43.0 +0100 @@ -4,0 +5 @@ + fix for bnc#794954, CVE-2012-5643, SQUID:2012-1 Other differences: -- -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2013-01-14 09:49:45 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid", Maintainer is "dr...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2013-01-03 08:44:08.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-01-14 09:49:46.0 +0100 @@ -1,0 +2,13 @@ +Sun Jan 13 20:09:22 UTC 2013 - ch...@computersalat.de + +- Changes to squid-3.2.6 (09 Jan 2013): + - Regression Bug 3731: TOS setsockopt() requires int value + - Regression Bug 3712: Rotating logs overwrites the previous log + - Bug 3727: LLVM compile errors in kerberos_ldap_group + - Bug 3650: Negotiate auth missing challenge token + - Additional fixes for CVE-2012-5643 / SQUID:2012-1 +* http://www.squid-cache.org/Advisories/SQUID-2012_1.txt +* http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5643 +- rebase nobuilddates, config patches + +--- Old: squid-3.2.5.tar.bz2 squid-3.2.5.tar.bz2.asc New: squid-3.2.6.tar.bz2 squid-3.2.6.tar.bz2.asc Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.Xk0Z7R/_old 2013-01-14 09:49:48.0 +0100 +++ /var/tmp/diff_new_pack.Xk0Z7R/_new 2013-01-14 09:49:48.0 +0100 @@ -1,7 +1,7 @@ # # spec file for package squid # -# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -23,7 +23,7 @@ Summary:Squid Version 3.2 WWW Proxy Server License:GPL-2.0+ Group: Productivity/Networking/Web/Proxy -Version:3.2.5 +Version:3.2.6 Release:0 Url:http://www.squid-cache.org/Versions/v3/3.2 Source0: http://www.squid-cache.org/Versions/v3/3.2/%{name}-%{version}.tar.bz2 @@ -135,8 +135,8 @@ * Cache Manager access changes First STABLE release Date: 02 Aug 2010 - Latest Release: 3.2.5 - Latest Release Date: 10 Dec 2012 + Latest Release: 3.2.6 + Latest Release Date: 08 Jan 2013 %prep %gpg_verify %{S:1} ++ RELEASENOTES.html ++ --- /var/tmp/diff_new_pack.Xk0Z7R/_old 2013-01-14 09:49:48.0 +0100 +++ /var/tmp/diff_new_pack.Xk0Z7R/_new 2013-01-14 09:49:48.0 +0100 @@ -2,10 +2,10 @@ - Squid 3.2.5 release notes + Squid 3.2.6 release notes -Squid 3.2.5 release notes +Squid 3.2.6 release notes Squid Developers @@ -72,7 +72,7 @@ 1. Notice -The Squid Team are pleased to announce the release of Squid-3.2.5 for +The Squid Team are pleased to announce the release of Squid-3.2.6 for testing. This new release is available for download from http://www.squid-cache.org/Versions/v3/3.2/";>http://www.squid-cache.org/Versions/v3/3.2/ or the ++ squid-3.2.5.tar.bz2 -> squid-3.2.6.tar.bz2 ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.2.5/ChangeLog new/squid-3.2.6/ChangeLog --- old/squid-3.2.5/ChangeLog 2012-12-10 10:53:26.0 +0100 +++ new/squid-3.2.6/ChangeLog 2013-01-09 02:41:51.0 +0100 @@ -1,3 +1,11 @@ +Changes to squid-3.2.6 (09 Jan 2013): + + - Regression Bug 3731: TOS setsockopt() requires int value + - Regression Bug 3712: Rotating logs overwrites the previous log + - Bug 3727: LLVM compile errors in kerberos_ldap_group + - Bug 3650: Negotiate auth missing challenge token + - Additional fixes for CVE-2012-5643 / SQUID:2012-1 + Changes to squid-3.2.5 (10 Dec 2012): - Bug 3698: Add missing include of errno.h @@ -451,6 +459,10 @@ - ... and a great many testing improvements - ... and many documentation updates +Changes to squid-3.1.23 (09 Jan 2013): + + - Additional fixes for CVE-2012-5643 / SQUID:2012-1 + Changes to squid-3.1.22 (03 Dec 2012): - Bug 3685: Squid hangs in Delay Pools ClassCBucket::update diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/squid-3.2.5/RELEASENOTES.html new/squid-3.2.6/RELEASENOTES.html --- old/squid-3.2.5/RELEASENOTES.html 2012-12-10 11:15:13.0 +0100 +++ new/squid-3.2.6/RELEASENOTES.html 2013-01-09 03:06:07.0 +0100 @@ -2,10 +2,10 @@ - Squid 3.2.5 release notes + Squid 3.2.6 release notes -Squid 3.2.5 release notes +Squid 3.2.6 release notes Squid Developers @@ -72,7 +72,7 @@ 1. Notice -The Squid Team are pleased t
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2013-01-03 08:44:06 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid", Maintainer is "dr...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2012-11-18 20:27:04.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2013-01-03 08:44:08.0 +0100 @@ -1,0 +2,22 @@ +Sun Dec 30 14:56:38 UTC 2012 - ch...@computersalat.de + +- Changes to squid-3.2.5 (10 Dec 2012): + - Bug 3698: Add missing include of errno.h +- Changes to squid-3.2.4 (03 Dec 2012): + - Ported: urllogin ACL from squid 2.7 + - Bug 3688: Lots of Orphan Comm:Connections to ICAP server + - Bug 3677: Port un-pinning logic changes from squid 3.3 + - Bug 3405: ssl_crtd crashes failing to remove certificate + - ... and major bugs fixed in squid 3.1.22 + - Fix accept_filter on Linux + - Remove 'Bungled' warning on missing component directives + - ... and many buffer and memory leak issues in the bundled helpers + - ... and a small amount of code polishing +- remove obsolete glibc-217 patch + +--- +Thu Nov 29 19:10:16 CET 2012 - sbra...@suse.cz + +- Verify GPG signature. + +--- Old: squid-3.2.3.tar.bz2 squid-3.2.3.tar.bz2.asc squid-glibc217.patch New: squid-3.2.5.tar.bz2 squid-3.2.5.tar.bz2.asc squid.keyring Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.5qBeQ7/_old 2013-01-03 08:44:10.0 +0100 +++ /var/tmp/diff_new_pack.5qBeQ7/_new 2013-01-03 08:44:10.0 +0100 @@ -23,7 +23,7 @@ Summary:Squid Version 3.2 WWW Proxy Server License:GPL-2.0+ Group: Productivity/Networking/Web/Proxy -Version:3.2.3 +Version:3.2.5 Release:0 Url:http://www.squid-cache.org/Versions/v3/3.2 Source0: http://www.squid-cache.org/Versions/v3/3.2/%{name}-%{version}.tar.bz2 @@ -38,6 +38,7 @@ Source10: README.kerberos Source11: %{name}.service Source12: squid_cache_swap.sh +Source13: %{name}.keyring # # the following patches are downloaded directly from the webserver # don't change the names for easier identification @@ -60,8 +61,6 @@ ## File is compiled without RPM_OPT_FLAGS # squid3 no-rpm-opt-flags :./cf_gen.cc Patch102: %{name}-compiled_without_RPM_OPT_FLAGS.patch -# Handle setuid/setgid failure -Patch103: squid-glibc217.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build PreReq: %fillup_prereq PreReq: %insserv_prereq @@ -74,6 +73,7 @@ BuildRequires: ed BuildRequires: expat BuildRequires: gcc-c++ +BuildRequires: gpg-offline BuildRequires: libcap-devel BuildRequires: libexpat-devel BuildRequires: libtool @@ -135,10 +135,11 @@ * Cache Manager access changes First STABLE release Date: 02 Aug 2010 - Latest Release: 3.2.3 - Latest Release Date: 20 Oct 2012 + Latest Release: 3.2.5 + Latest Release Date: 10 Dec 2012 %prep +%gpg_verify %{S:1} %setup -q -n %{name}-%{version} cp %{S:10} . # upstream patches after RELEASE @@ -150,7 +151,6 @@ chmod a-x CREDITS %patch101 %patch102 -%patch103 -p1 %build export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF" ++ RELEASENOTES.html ++ --- /var/tmp/diff_new_pack.5qBeQ7/_old 2013-01-03 08:44:11.0 +0100 +++ /var/tmp/diff_new_pack.5qBeQ7/_new 2013-01-03 08:44:11.0 +0100 @@ -2,10 +2,10 @@ - Squid 3.2.3 release notes + Squid 3.2.5 release notes -Squid 3.2.3 release notes +Squid 3.2.5 release notes Squid Developers @@ -72,7 +72,8 @@ 1. Notice -The Squid Team are pleased to announce the release of Squid-3.2.3 for testing. +The Squid Team are pleased to announce the release of Squid-3.2.5 for +testing. This new release is available for download from http://www.squid-cache.org/Versions/v3/3.2/";>http://www.squid-cache.org/Versions/v3/3.2/ or the http://www.squid-cache.org/Mirrors/http-mirrors.html";>mirrors. @@ -535,9 +536,10 @@ The cache manager is available under the path prefix /squid-internal-mgr/. For example the URL http://example/com/squid-internal-mgr/menu will bring up the manager menu. This means there are some configuration changes required to lock down manager access. -The manager ACL needs changing to: +The manager ACL needs changing. A built-in definition is now used, equivalent +to the following regex pattern: -acl manager url_regex -i ^cache_object:// ^https?://[^/]+/squid-internal-mgr/ +^(cache_object://|https?://[^/
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2012-11-18 20:27:02 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid", Maintainer is "dr...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2012-10-24 10:24:09.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2012-11-18 20:27:04.0 +0100 @@ -1,0 +2,5 @@ +Sat Nov 17 09:38:19 UTC 2012 - a...@suse.de + +- Fix build with glibc 2.17 (add patch squid-glibc217.patch). + +--- New: squid-glibc217.patch Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.O0Zsfx/_old 2012-11-18 20:27:05.0 +0100 +++ /var/tmp/diff_new_pack.O0Zsfx/_new 2012-11-18 20:27:05.0 +0100 @@ -60,7 +60,8 @@ ## File is compiled without RPM_OPT_FLAGS # squid3 no-rpm-opt-flags :./cf_gen.cc Patch102: %{name}-compiled_without_RPM_OPT_FLAGS.patch - +# Handle setuid/setgid failure +Patch103: squid-glibc217.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build PreReq: %fillup_prereq PreReq: %insserv_prereq @@ -149,6 +150,7 @@ chmod a-x CREDITS %patch101 %patch102 +%patch103 -p1 %build export CFLAGS="%{optflags} -fPIE -fPIC -DOPENSSL_LOAD_CONF" ++ squid-glibc217.patch ++ Index: squid-3.2.3/src/icmp/pinger.cc === --- squid-3.2.3.orig/src/icmp/pinger.cc +++ squid-3.2.3/src/icmp/pinger.cc @@ -180,8 +180,18 @@ main(int argc, char *argv[]) } max_fd = max(max_fd, squid_link); -setgid(getgid()); -setuid(getuid()); +if (setgid(getgid()) < 0) { +debugs(42, 0, "FATAL: pinger: setgid failed."); +icmp4.Close(); +icmp6.Close(); + exit (1); +} +if (setuid(getuid()) < 0) { +debugs(42, 0, "FATAL: pinger: setuid failed."); +icmp4.Close(); +icmp6.Close(); +exit (1); +} last_check_time = squid_curtime; Index: squid-3.2.3/src/tools.cc === --- squid-3.2.3.orig/src/tools.cc +++ squid-3.2.3/src/tools.cc @@ -757,7 +757,8 @@ enter_suid(void) debugs(21, 3, "enter_suid: PID " << getpid() << " taking root priveleges"); #if HAVE_SETRESUID -setresuid((uid_t)-1, 0, (uid_t)-1); +if (setresuid((uid_t)-1, 0, (uid_t)-1) < 0) + debugs (21, 3, "enter_suid: setresuid failed" << xstrerror ()); #else setuid(0); @@ -782,7 +783,8 @@ no_suid(void) uid = geteuid(); debugs(21, 3, "no_suid: PID " << getpid() << " giving up root priveleges forever"); -setuid(0); +if (setuid(0) < 0) + debugs(50, 1, "no_suid: setuid (0): " << xstrerror()); if (setuid(uid) < 0) debugs(50, 1, "no_suid: setuid: " << xstrerror()); -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2012-02-16 15:01:30 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid", Maintainer is "dr...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2011-12-08 11:31:32.0 +0100 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2012-02-16 15:02:23.0 +0100 @@ -1,0 +2,5 @@ +Wed Feb 15 16:02:51 UTC 2012 - ch...@computersalat.de + +- run suse_update_config only on suse_version < 1220 + +--- Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.eTlIbx/_old 2012-02-16 15:02:24.0 +0100 +++ /var/tmp/diff_new_pack.eTlIbx/_new 2012-02-16 15:02:24.0 +0100 @@ -1,7 +1,7 @@ # # spec file for package squid # -# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -14,18 +14,18 @@ # Please submit bugfixes or comments via http://bugs.opensuse.org/ # - # needsrootforbuild + %define squid_ldapauth_version 1.3 %define squidconfdir /etc/squid Name: squid Summary:Squid WWW proxy server -Version:2.7.STABLE9 -Release:0 License:GPL-2.0+ Group: Productivity/Networking/Web/Proxy +Version:2.7.STABLE9 +Release:0 Url:http://www.squid-cache.org Source: http://www.squid-cache.org/Versions/v2/2.7/squid-%{version}.tar.bz2 Source1:squid_ldapauth-%{squid_ldapauth_version}.tar.bz2 @@ -135,7 +135,9 @@ DATE="\"$(date -d "${modified}" "+%%b %%e %%Y")\"" TIME="\"$(date -d "${modified}" "+%%R")\"" find . -type f -regex ".*\.c\|.*\.cpp\|.*\.h" -exec sed -i "s/__DATE__/${DATE}/g;s/__TIME__/${TIME}/g" {} + +%if 0%{?suse_version} < 1220 %{?suse_update_config:%{suse_update_config}} +%endif export RPM_OPT_FLAGS="$RPM_OPT_FLAGS -fPIE -DLDAP_DEPRECATED -fno-strict-aliasing" export CFLAGS="$RPM_OPT_FLAGS" export LDFLAGS="-pie" -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at 2011-12-08 11:31:31 Comparing /work/SRC/openSUSE:Factory/squid (Old) and /work/SRC/openSUSE:Factory/.squid.new (New) Package is "squid", Maintainer is "dr...@suse.com" Changes: --- /work/SRC/openSUSE:Factory/squid/squid.changes 2011-09-23 12:46:48.0 +0200 +++ /work/SRC/openSUSE:Factory/.squid.new/squid.changes 2011-12-08 11:31:32.0 +0100 @@ -1,0 +2,14 @@ +Fri Dec 2 10:01:19 UTC 2011 - ch...@computersalat.de + +- fix ip_wccp.c + * update to current online version +- add upstream patches + * 12711 - Correct parsing of large gopher indexes + * 12714 - Fix various harmless warnings detected by gcc 4.6 + +--- +Thu Dec 1 17:00:11 UTC 2011 - co...@suse.com + +- add automake as buildrequire to avoid implicit dependency + +--- New: 12711.patch 12714.patch Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.Kh7FC8/_old 2011-12-08 11:31:40.0 +0100 +++ /var/tmp/diff_new_pack.Kh7FC8/_new 2011-12-08 11:31:40.0 +0100 @@ -23,11 +23,11 @@ Name: squid Summary:Squid WWW proxy server Version:2.7.STABLE9 -Release:2 -License:GPLv2+ +Release:0 +License:GPL-2.0+ Group: Productivity/Networking/Web/Proxy Url:http://www.squid-cache.org -Source: squid-%{version}.tar.bz2 +Source: http://www.squid-cache.org/Versions/v2/2.7/squid-%{version}.tar.bz2 Source1:squid_ldapauth-%{squid_ldapauth_version}.tar.bz2 Source2:rc.squid Source4:README.SuSE @@ -43,9 +43,12 @@ Source11: squid_ie_blocker.txt Source12: http://www.squid-cache.org/WCCP-support/Linux/ip_wccp.c Source13: squid.sysconfig +# PATCH-UPSTREAM - Bug #2973: memoryleak on maformed requests Patch0: http://www.squid-cache.org/Versions/v2/2.7/changesets/12697.patch -#Patch1:http://www.squid-cache.org/Versions/v2/2.7/changesets/ -#Patch2:http://www.squid-cache.org/Versions/v2/2.7/changesets/ +# PATCH-UPSTREAM - Correct parsing of large gopher indexes +Patch1: http://www.squid-cache.org/Versions/v2/2.7/changesets/12711.patch +# PATCH-UPSTREAM - Fix various harmless warnings detected by gcc 4.6 +Patch2: http://www.squid-cache.org/Versions/v2/2.7/changesets/12714.patch #Patch3:http://www.squid-cache.org/Versions/v2/2.7/changesets/ #Patch4:http://www.squid-cache.org/Versions/v2/2.7/changesets/ #Patch5 http://www.squid-cache.org/Versions/v2/2.7/changesets/ @@ -69,12 +72,18 @@ Patch102: %{name}-2.6.STABLE19-64bit.patch Patch103: %{name}-2.6.STABLE2-ldflags.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build -AutoReqProv:on PreReq: /usr/sbin/useradd, %insserv_prereq, %fillup_prereq -BuildRequires: db-devel openldap2-devel opensp-devel pam-devel samba -BuildRequires: sgmltool sharutils +BuildRequires: automake +BuildRequires: db-devel +BuildRequires: openldap2-devel +BuildRequires: opensp-devel +BuildRequires: pam-devel +BuildRequires: samba +BuildRequires: sgmltool +BuildRequires: sharutils %ifarch %ix86 x86_64 ppc ppc64 -BuildRequires: valgrind valgrind-devel +BuildRequires: valgrind +BuildRequires: valgrind-devel %endif Conflicts: squid-beta squid2 squid23 Requires: logrotate, cron @@ -85,12 +94,6 @@ Home page: http://www.squid-cache.org - - -Authors: - -Duane Wessels - %prep %setup -n squid-%{version} -a 1 -a 8 #(cd auth_modules @@ -99,8 +102,8 @@ #mv msntauth-v2.0.3-squid.1 MSNT #) %patch0 -p1 -#%patch1 -p1 -#%patch2 -p1 +%patch1 -p1 +%patch2 -p1 #%patch3 -p1 #%patch4 -p1 #%patch5 -p1 ++ 12711.patch ++ - PatchSet 12711 Date: 2011/08/26 21:51:44 Author: hno Branch: SQUID_2_7 Tag: (none) Log: Correct parsing of large gopher indexes Members: src/gopher.c:1.181.2.1->1.181.2.2 Index: squid/src/gopher.c === RCS file: /cvsroot/squid/squid/src/gopher.c,v retrieving revision 1.181.2.1 retrieving revision 1.181.2.2 diff -u -r1.181.2.1 -r1.181.2.2 --- squid/src/gopher.c 4 May 2008 23:23:13 - 1.181.2.1 +++ squid/src/gopher.c 26 Aug 2011 21:51:44 - 1.181.2.2 @@ -1,6 +1,6 @@ /* - * $Id: gopher.c,v 1.181.2.1 2008/05/04 23:23:13 hno Exp $ + * $Id: gopher.c,v 1.181.2.2 2011/08/26 21:51:44 hno Exp $ * * DEBUG: section 10Gopher * AUTHOR: Harvest Derived @@ -314,8 +314,6 @@ gopherState->HTML_header_added = 1;
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at Mon Jul 11 10:20:30 CEST 2011. --- squid/squid.changes 2011-02-19 12:48:48.0 +0100 +++ /mounts/work_src_done/STABLE/squid/squid.changes2011-05-25 05:47:20.0 +0200 @@ -1,0 +2,5 @@ +Wed May 25 03:46:39 UTC 2011 - crrodrig...@opensuse.org + +- Supress timestamps from binaries, breaks build-compare. + +--- calling whatdependson for head-i586 Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.S5J5NQ/_old 2011-07-11 10:20:11.0 +0200 +++ /var/tmp/diff_new_pack.S5J5NQ/_new 2011-07-11 10:20:11.0 +0200 @@ -23,7 +23,7 @@ Name: squid Summary:Squid WWW proxy server Version:2.7.STABLE9 -Release:1 +Release:2 License:GPLv2+ Group: Productivity/Networking/Web/Proxy Url:http://www.squid-cache.org @@ -128,6 +128,10 @@ %patch103 -p1 %build +modified="$(sed -n '/^/n;s/ - .*$//;p;q' "%{_sourcedir}/%{name}.changes")" +DATE="\"$(date -d "${modified}" "+%%b %%e %%Y")\"" +TIME="\"$(date -d "${modified}" "+%%R")\"" +find . -type f -regex ".*\.c\|.*\.cpp\|.*\.h" -exec sed -i "s/__DATE__/${DATE}/g;s/__TIME__/${TIME}/g" {} + %{?suse_update_config:%{suse_update_config}} export RPM_OPT_FLAGS="$RPM_OPT_FLAGS -fPIE -DLDAP_DEPRECATED -fno-strict-aliasing" export CFLAGS="$RPM_OPT_FLAGS" Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit squid for openSUSE:Factory
Hello community, here is the log from the commit of package squid for openSUSE:Factory checked in at Mon Feb 21 00:55:58 CET 2011. --- squid/squid.changes 2009-11-03 20:22:42.0 +0100 +++ /mounts/work_src_done/STABLE/squid/squid.changes2011-02-19 12:48:48.0 +0100 @@ -1,0 +2,75 @@ +Sat Feb 19 11:45:53 UTC 2011 - ch...@computersalat.de + +- update to 2.7.STABLE9 + - 2.7.STABLE8 failed to compile with OpenSSL 0.9.8 on some systems + - failure to detect certain system libraries on some systems +resulting in compilation errors +- Changes to squid-2.7.STABLE8 (10 March 2010) + - Bug #2458: reply_body_max_size incorrectly documented + - Bug #2858: Segment violation in HTCP + - Bug #2773: Segfault in RFC2069 Digest authantication + - 64-bit filesize issue in squidclient if trying to post a file > 2GB + - Improve %nn parser to better deal with certain odd %nn sequences + - Segmentation fault if failed to open cache.log + - Bug #2819: const correctness errors in dns_internal.c + - Handle DNS header-only packets as invalid. (CVE-2010-0308) + - Windows port: Updated mswin_ad_group native helper to version 2.1 + - Cosmetic change to keep GCC happy + - Bug #2678 - storeurl_rewrite does not play nicely with vary + - Bug #2861 - only-if-cached request blocks if it collapsed into +another request + - Use libcap functions instead of raw kernel interface + - No need to sync the store on -k rotate, but instead it needs to be +done in reconfigure + - const correctness in OpenSSL initialization + - Rework the http digest auth parser +- Changes to squid-2.7.STABLE7 (17 September 2009) + - Bug #2661 - Solaris /dev/poll support broken with EINVAL + - Clarify external_acl_type %{Header} documentation slightly + - Bug #2482: Remove mem_obj->old_entry in async code to avoid deep ctx +errors + - GCC-4.x cleanups + - Bug #2605: Don't call setsid() on helper childs when running in +daemon mode + - Windows port: Fix PSAPI.DLL usage, is always available on Windows NT +and later + - Windows port: Added support for Windows 7, Windows Server 2008 R2 +and later + - Bug #2602: increase MAX_URL to 8192 + - The debug mode option '-d' was not documented in LDAP helpers usage +message + - Windows port: Added a note about installation on Windows Vista and +later + - Bug #2642: Remove duplicate peerMonitorInit() on reconfigure + - Bug #2515: Final chunk parsing errors on FreeBSD6+ + - Bug #2647: Reprioritise override-* and stale-while-revalidate + - Windows port: Fix improper access permissions to registry and DNS +parsing from registry + - Windows port: Fix getservbyname() usage abuse. + - Bug #2672: cacheMemMaxSize 32-bit overflow during snmpwalk + - Bug #2691: store_url memory leak + - Accept PUT/POST requests without an entity-body + - Plug request_t + HttpStateData memory leak on PUT/POST requests with +early response + - Bug #2710: squid_kerb_auth non-terminated string + - Bug #2369: squid traffic counter 32-bit overflow + - Bug #2080: wbinfo_group.pl - false positive under certain conditions + - Bug #2739: DNS resolver option ndots can't be parsed from +resolv.conf + - Windows port: fix mswin_negotiate_auth.exe crash when executing a +LocalCall authentication with verbose deBug #enabled + - Add 0.0.0.0 as an to_localhost address + - Windows port: Update mswin_check_ad_group to version 2.0 + - Windows port: There is no "-P" command line option into +mswin_check_ad_group helper. + - Correct Valgrind mempool protection + - Bug #2451: Correct length handling on 304 responses + - Bug #2541: Hang in 100% CPU loop while extacting header details +using a delimiter other than comma (external_acl_type, +access_log_format, external_refresh_check) + - Bug #2768 - squid_ldap_group -K argument parsing error +- removed old upstream patches: 12466, 12480 - 12497 +- added new upstream patch: 12697 +- cleanup spec + +--- calling whatdependson for head-i586 Old: 12466.patch 12480.patch 12481.patch 12482.patch 12483.patch 12484.patch 12485.patch 12486.patch 12487.patch 12488.patch 12489.patch 12490.patch 12491.patch 12492.patch 12493.patch 12494.patch 12495.patch 12497.patch squid-2.7.STABLE6-RELEASENOTES.html squid-2.7.STABLE6.tar.bz2 New: 12697.patch squid-2.7.STABLE9-RELEASENOTES.html squid-2.7.STABLE9.tar.bz2 Other differences: -- ++ squid.spec ++ --- /var/tmp/diff_new_pack.wtwnbF/_old 2011-02-21 00:55:49.0 +0100 +++ /var/tmp/diff_new_pack.wtwnbF/_new 2011-02-21 00:55:49.0 +0100 @@ -1,7 +1,7 @@ # -# spec file for package squid (Version 2.7.STABLE6) +# spec file for package squid # -# Copyright (c) 2009 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2011 SUSE L