non port: www/squid/Makefile |
Number of commits found: 273 (showing only 100 on this page) |
Wednesday, 10 Apr 2024
|
18:36 Vladimir Druzenko (vvd) Author: Pavel Timofeev
www/squid: update to 6.9
Changelog:
https://www.squid-cache.org/Versions/v6/squid-6.9-RELEASENOTES.html
PR: 278291
Approved by: arrowd (mentor, implicit)
eee2e163 |
Sunday, 7 Apr 2024
|
09:36 Florian Smeets (flo)
databases/p5-DBD-mysql: Fix for MariaDB users
Add a new variable DBD_MYSQL, use that in *_DEPENDS and add mysql to USES
where required. DBD_MYSQL will automatically set the correct DBD dependency.
In cd16748194e2 databases/p5-DBD-mysql was updated to 5.x, in 5.x the
support for MariaDB was removed and only MySQL >= 8.0 is supported.
In the 4.x releases MariaDB is still supported, according to upstream 4.x
will still be supported for a while [1], so use that for now when we detect
that MYSQL_FLAVOUR is set to mariadb. databases/p5-DBD-mysql4 was added in
d95f49cb3b54.
DBD:MariaDB would be another alternative, but migrating to it might need
more analysis than just staying with the 4.x releases of p5-DBD-mysql. This
thread on the amavis-users mailing list has a very good summary [2] from
the author of DBD:MariaDB.
This includes ideas and suggestions from vvd and mat. Thanks!
[1] https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=277889#c17
[2] https://lists.amavis.org/pipermail/amavis-users/2024-March/006823.html
PR: 275100, 277889
Reviewed by: vvd, mat
Fixes: cd16748194e2
Differential Revision: https://reviews.freebsd.org/D44662
92a030d |
Wednesday, 20 Mar 2024
|
13:23 Philippe Audeoud (jadawin)
www/squid: update to 6.8
remove patch no longer needed
add patch to remove ifdef duplicate
PR: 277672
Approved by: maintainer, bapt (mentor)
Differential Revision: https://reviews.freebsd.org/D44431
df24358 |
Friday, 23 Feb 2024
|
22:47 Li-Wen Hsu (lwhsu) Author: Pavel Timofeev
www/squid: Update to 6.7
Release notes:
https://www.squid-cache.org/Versions/v6/squid-6.7-RELEASENOTES.html
PR: 277195
b345050 |
12:00 Renato Botelho (garga)
www/squid: Moved manpages to share/man
Approved by: portmgr (blanket)
Sponsored by: Rubicon Communications, LLC ("Netgate")
651c44c |
Sunday, 10 Dec 2023
|
16:54 Fernando Apesteguía (fernape) Author: Pavel Timofeev
www/squid: update to 6.6
ChangeLog: http://www.squid-cache.org/Versions/v6/squid-6.6-RELEASENOTES.html
* TLS ServerHello
* Log TLS Communication Secrets
* Ban ACL key Changes in ACLs
* Block to-local Traffic
* RFC 9211: HTTP Cache-Status support
* RFC 9111: Stop treating Warning specially
* ext_kerberos_ldap_group_acl: Support -b with -D
* Remove Gopher Protocol Support
* Remove Outdated Tools
PR: 275639
Reported by: timp87@gmail.com (maintainer)
da4620c |
Friday, 10 Nov 2023
|
11:27 Vladimir Druzenko (vvd) Author: Pavel Timofeev
www/squid: update to 6.5 - dumps core after updating from 6.3 to 6.4
Fixed bug in 6.4 after fix CVE.
PR: 274825
Approved by: arrowd (mentor)
MFH: 2023Q4
c37e92a |
Wednesday, 25 Oct 2023
|
20:47 Joel Bodenmann (jbo) Author: Pavel Timofeev
www/squid: Update to 6.4
Changelog:
https://github.com/squid-cache/squid/blob/7254f20cbc449119ae39bfeeced965f2c80bad75/ChangeLog
Also remove a dead mirror.
PR: 274646
Approved by: tcberner (mentor)
Differential Revision: https://reviews.freebsd.org/D42324
55cdc95 |
Wednesday, 11 Oct 2023
|
06:04 Robert Clausecker (fuz) Author: Pavel Timofeev
www/squid: update to 6.3
Error message translation files are now part of www/squid-langpack.
Changelog: http://www.squid-cache.org/Versions/v6/squid-6.3-RELEASENOTES.html
PR: 272524
5313460 |
Tuesday, 30 May 2023
|
22:27 Matthew Seaman (matthew) Author: Pavel Timofeev
www/squid: update to 5.9
Changes: https://github.com/squid-cache/squid/blob/4a7431df0fff6e55ed1b544be6f1ed08d6580aae/ChangeLog#L113-L117
PR: 271725
Approved by: Pavel Timofeev (maintainer)
a142061 |
Wednesday, 8 Mar 2023
|
10:19 Robert Clausecker (fuz) Author: Pavel Timofeev
www/squid: update to 5.8
Changelog:
https://github.com/squid-cache/squid/blob/491933673f2492ffc7b2238ea0d5ac8308dd3160/ChangeLog#L113-L121
PR: 269999
4a29b00 |
Wednesday, 8 Feb 2023
|
10:53 Muhammad Moinur Rahman (bofh)
Mk/**ldap.mk: Convert USE_LDAP to USES=ldap
Convert the USE_LDAP=yes to USES=ldap and adds the following features:
- Adds the argument USES=ldap:server to add openldap2{4|5|6}-server as
RUN_DEPENDS
- Adds the argument USES=ldap<version> and replaces WANT_OPENLDAP_VER
- Adds OPENLDAP versions in bsd.default-versions.mk
- Adds USE_OPENLDAP/WANT_OPENLDAP_VER in Mk/bsd.sanity.mk
- Changes consumers to use the features
Reviewed by: delphij
Approved by: portmgr
Differential Revision: https://reviews.freebsd.org/D38233
6e1233b |
Tuesday, 4 Oct 2022
|
17:36 Yasuhiro Kimura (yasu)
www/squid: Update to 5.7
ReleaseNotes: http://www.squid-cache.org/Versions/v5/squid-5.7-RELEASENOTES.html
PR: 266625
Approved by: maintainer
MFH: 2022Q4
Security: f9ada0b5-3d80-11ed-9330-080027f5fec9
41c0968 |
Wednesday, 7 Sep 2022
|
21:10 Stefan Eßer (se)
Add WWW entries to port Makefiles
It has been common practice to have one or more URLs at the end of the
ports' pkg-descr files, one per line and prefixed with "WWW:". These
URLs should point at a project website or other relevant resources.
Access to these URLs required processing of the pkg-descr files, and
they have often become stale over time. If more than one such URL was
present in a pkg-descr file, only the first one was tarnsfered into
the port INDEX, but for many ports only the last line did contain the
port specific URL to further information.
There have been several proposals to make a project URL available as
a macro in the ports' Makefiles, over time.
This commit implements such a proposal and moves one of the WWW: entries
of each pkg-descr file into the respective port's Makefile. A heuristic
attempts to identify the most relevant URL in case there is more than
one WWW: entry in some pkg-descr file. URLs that are not moved into the
Makefile are prefixed with "See also:" instead of "WWW:" in the pkg-descr
files in order to preserve them.
There are 1256 ports that had no WWW: entries in pkg-descr files. These
ports will not be touched in this commit.
The portlint port has been adjusted to expect a WWW entry in each port
Makefile, and to flag any remaining "WWW:" lines in pkg-descr files as
deprecated.
Approved by: portmgr (tcberner)
b7f0544 |
Wednesday, 8 Jun 2022
|
16:02 Nuno Teixeira (eduardo) Author: Pavel Timofeev
www/squid: Update to 5.6
ChangeLog: https://github.com/squid-cache/squid/blob/master/ChangeLog
PR: 264505
d215389 |
Saturday, 23 Apr 2022
|
19:29 Neel Chauhan (nc) Author: Pavel Timofeev
www/squid: update to 5.5
Changes: https://github.com/squid-cache/squid/commits/v5
PR: 263477
0e51d9f |
Monday, 14 Feb 2022
|
05:24 Guangyuan Yang (ygy) Author: Pavel Timofeev
www/squid: Update to 5.4.1
Changelog: https://github.com/squid-cache/squid/commits/v5
PR: 261913
e415dda |
Wednesday, 19 Jan 2022
|
10:11 Daniel Engberg (diizzy) Author: Pavel Timofeev
www/squid: update to 5.3: New port: Google Chat plugin for libpurple
Changelog: http://www.squid-cache.org/Versions/v5/squid-5.3-RELEASENOTES.html
PR: 260927
d792ff1 |
Tuesday, 14 Dec 2021
|
02:07 Yasuhiro Kimura (yasu) Author: Pavel Timofeev
www/{squid,squid-devel}: Remove PCRE option
This option was added in 2017 and worked as is expected at the
time. But it doesn't work any more. So remove it from squid ports.
PR: 243291
Reported by: OlivierW
Approved by: maintainer timeout (about modified version)
d6c9352 |
Thursday, 25 Nov 2021
|
21:40 Stefan Eßer (se)
*/*: Remove redundant '-*' from CONFLICTS definitions
The conflict checks compare the patterns first against the package
names without version (as reported by "pkg query "%n"), then - if
there was no match - agsinst the full package names including the
version (as reported by "pkg query "%n-%v").
Approved by: portmgr (blanket)
04b9da4 |
Thursday, 3 Jun 2021
|
09:15 Nuno Teixeira (eduardo) Author: Pavel Timofeev
www/squid: update to 4.15
- Use DISTVERSION instead of PORTVERSION
ChangeLog:
https://github.com/squid-cache/squid/pull/818/files#diff-91c5b46dc84a94604a4e4d0caed9bf85590a2eddbb12d2e8dc80badf324a9dfbR1-R16
PR: 256358
Approved by: dbaio, garga (mentors, implicit)
b5c8df5 |
Wednesday, 7 Apr 2021
|
08:09 Mathieu Arnold (mat)
One more small cleanup, forgotten yesterday.
Reported by: lwhsu
cf118cc |
Tuesday, 6 Apr 2021
|
14:31 Mathieu Arnold (mat)
Remove # $FreeBSD$ from Makefiles.
305f148 |
Tuesday, 9 Feb 2021
|
16:48 nc
www/squid: update to 4.14
Changes: https://github.com/squid-cache/squid/commits/v4
PR: 253378
Submitted by: timp87 AT gmail DOT com (maintainer)
|
Monday, 31 Aug 2020
|
15:07 pi
www/squid: update 4.12 -> 4.13
- https://lists.freebsd.org/pipermail/freebsd-ports/2020-August/119290.html
mentions security issues, but no CVEs
PR: 248856
Submitted by: Pavel Timofeev <timp87@gmail.com> (maintainer)
MFH: 2020Q3
Relnotes: http://www.squid-cache.org/Versions/v4/changesets/
Security: probably
|
Monday, 27 Jul 2020
|
14:50 garga
www/squid: Update to 4.12 among other changes
- Update to 4.12
- Remove upstreamed patches
- Enhance rc script (thanks to Walter von Entferndt for ideas!):
-- create piddir if missing (/var/run may be a tmpfs)
-- don't wait endlessly if squid can't create a pidfile
-- define squid_group
- address GREASEd (thanks to Joshua Kinard and Juraj Lutter!)
PR: 247397
Submitted by: Juraj Lutter <juraj@lutter.sk>
Reworked by: maintainer
Approved by: maintainer
MFH: 2020Q3 (bug-fix release)
Sponsored by: Rubicon Communications, LLC (Netgate)
|
Saturday, 16 May 2020
|
10:51 sunpoet
Bump PORTREVISION for security/nettle shlib change
|
Sunday, 3 May 2020
|
15:59 pi
www/squid: add CONFLICTS with incoming squid-devel and rework
- add delayer external acl helper to the build
- add eDirectory_userip external acl helper to the build if LDAP enabled
- add eDirectory and LDAP digest auth helpers to the build if LDAP enabled
- add DB log daemon helper to the build
- add LFS url rewrite helper to the build
- remove useless REINPLACE_CMD from post-patch
- remove DIST_SUBDIR as it's useless now
- simplify REINPLACE_CMD in post-patch-IPV6-off
- regenerate patches to make portlint happy
- reverse sort plist
PR: 246139
Submitted by: Pavel Timofeev <timp87@gmail.com> (maintainer)
|
Monday, 20 Apr 2020
|
19:30 pi
www/squid: update 4.10 -> 4.11
PR: 245758
Submitted by: timp87@gmail.com (maintainer)
Relnotes: http://www.squid-cache.org/Versions/v4/squid-4.11-RELEASENOTES.html
|
Tuesday, 11 Feb 2020
|
19:46 pi
www/squid: upgrade 4.9 -> 4.10
PR: 244026
Submitted by: timp87@gmail.com (maintainer)
Relnotes: http://lists.squid-cache.org/pipermail/squid-announce/2020-February/000107.html
Security: http://www.squid-cache.org/Advisories/SQUID-2020_1.txt
http://www.squid-cache.org/Advisories/SQUID-2020_2.txt
http://www.squid-cache.org/Advisories/SQUID-2020_3.txt
|
Thursday, 5 Dec 2019
|
18:27 pkubaj
www/squid: fix build on GCC architectures
Add --disable-strict-error-checking to CONFIGURE_ARGS for everyone. It adds
-Werror, which is against ports tree policy and causes:
Icmp6.cc: In member function 'virtual void Icmp6::SendEcho(Ip::Address&, int,
const char*, int)':
Icmp6.cc:165:72: error: converting a packed 'icmp6_hdr' pointer (alignment 1) to
a 'short unsigned int' pointer (alignment 2) may result in an unaligned pointer
value [-Werror=address-of-packed-member]
165 | icmp->icmp6_cksum = CheckSum((unsigned short *) icmp,
icmp6_pktsize);
| ^
In file included from Icmp6.h:20,
from Icmp6.cc:18:
/usr/include/netinet/icmp6.h:72:8: note: defined here
72 | struct icmp6_hdr {
| ^~~~~~~~~
At global scope:
cc1plus: error: unrecognized command line option '-Wno-deprecated-register'
[-Werror]
cc1plus: all warnings being treated as errors
PR: 241804
Approved by: timp87@gmail.com (maintainer), mentors (implicit approval)
|
Tuesday, 19 Nov 2019
|
08:28 joneum
Update to 4.9
Changelog: http://www.squid-cache.org/Advisories/SQUID-2019_11.txt
PR: 241976
MFH: 2019Q4
Security: 620685d6-0aa3-11ea-9673-4c72b94353b5
Sponsored by: Netzkommune GmbH
|
Wednesday, 16 Oct 2019
|
22:02 swills
www/squid: Fix build with libc++ 9
PR: 240830
Submitted by: dim
Approved by: maintainer timeout (timp87@gmail.com, >2 weeks)
|
Wednesday, 9 Oct 2019
|
12:23 bapt
Drop the ipv6 virtual category for w* category as it is not relevant anymore
|
Friday, 26 Jul 2019
|
20:46 gerald
Bump PORTREVISION for ports depending on the canonical version of GCC
as defined in Mk/bsd.default-versions.mk which has moved from GCC 8.3
to GCC 9.1 under most circumstances now after revision 507371.
This includes ports
- with USE_GCC=yes or USE_GCC=any,
- with USES=fortran,
- using Mk/bsd.octave.mk which in turn features USES=fortran, and
- with USES=compiler specifying openmp, nestedfct, c11, c++0x, c++11-lang,
c++11-lib, c++14-lang, c++17-lang, or gcc-c++11-lib
plus, everything INDEX-11 shows with a dependency on lang/gcc9 now.
PR: 238330
|
Tuesday, 16 Jul 2019
|
17:35 swills
www/squid: update to 4.8
PR: 239214
Submitted by: timp87@gmail.com (maintainer)
|
Tuesday, 9 Jul 2019
|
17:13 sunpoet
Update security/nettle to 3.5.1
- Bump PORTREVISION of dependent ports for shlib change
- Fix build of devel/pijul [1]
Changes: https://git.lysator.liu.se/nettle/nettle/blob/master/NEWS
PR: 238991
Exp-run by: antoine
Thanks to: tobik [1]
|
Tuesday, 4 Jun 2019
|
14:17 antoine
Switch default version of samba from 4.7 to 4.8
With hat: portmgr
|
Wednesday, 15 May 2019
|
09:06 joneum
Update to 4.7
Changelog:
- Bug 4942: --with-filedescriptors does not do anything
- Bug 4928: Cannot convert non-IPv4 to IPv4
- Bug 4823: assertion failed: "lowestOffset () <= target_offset"
- Bug 4796: comm.cc !isOpen(conn->fd) assertion when rotating logs
- Fix squidclient authentication to origin servers
- Fix stack-based buffer-overflow when parsing SNMP messages
- Add support for buffer-size= to UDP logging
- TLS: When using OpenSSL, trust intermediate CAs from trusted store
PR: 237882
Submitted by: timp87@gmail.com (maintainer)
Sponsored by: Netzkommune GmbH
|
Tuesday, 30 Apr 2019
|
19:10 pkubaj
www/squid: fix build with GCC-based architectures
Add -Wno-error=stringop-truncation to CFLAGS when using GCC.
PR: 237276
Approved by: timp87@gmail.com (maintainer timeout), mat (mentor)
Differential Revision: https://reviews.freebsd.org/D20104
|
Monday, 22 Apr 2019
|
12:29 garga
www/squid: Fix build with GSSAPI options
In some circumstances squid's configure script cannot detect properly which
GSSAPI is being used to build with and break build. Applied patch from
upstream ticket and also passes path of desired krb5-config to be used
during build
PR: 236959
Approved by: maintainer timeout (2 weeks)
Obtained from: https://bugs.squid-cache.org/show_bug.cgi?id=4933 (based on)
Sponsored by: Rubicon Communications, LLC (Netgate)
|
Monday, 4 Mar 2019
|
19:10 swills
www/squid: update to 4.6
PR: 236090
Submitted by: timp87@gmail.com (maintainer)
Reported by: ncrogers@gmail.com
|
Wednesday, 9 Jan 2019
|
12:22 swills
www/squid: update to 4.5
PR: 234777
Submitted by: timp87@gmail.com (maintainer)
|
Wednesday, 12 Dec 2018
|
01:35 gerald
Bump PORTREVISION for ports depending on the canonical version of GCC
defined via Mk/bsd.default-versions.mk which has moved from GCC 7.4 t
GCC 8.2 under most circumstances.
This includes ports
- with USE_GCC=yes or USE_GCC=any,
- with USES=fortran,
- using Mk/bsd.octave.mk which in turn features USES=fortran, and
- with USES=compiler specifying openmp, nestedfct, c11, c++0x, c++11-lang,
c++11-lib, c++14-lang, c++17-lang, or gcc-c++11-lib
plus, as a double check, everything INDEX-11 showed depending on lang/gcc7.
PR: 231590
|
Sunday, 9 Dec 2018
|
00:18 swills
www/squid: Update to 4.4
While here, pet portlint
PR: 233845
Submitted by: takefu@airport.fm
Approved by: timp87@gmail.com (maintainer)
|
Thursday, 11 Oct 2018
|
07:14 pi
www/squid: fix bug in 4.3, no connections are accepted after ECONNABORTED
- without the fix, squid locks up every couple of hours, no longer
accept(2)-ing new connections, and needs to be restarted.
PR: 231950
Submitted by: Mark.Martinec@ijs.si
Reviewed by: Oleh Hushchenkov <gor@clogic.com.ua>
Approved by: Pavel Timofeev <timp87@gmail.com> (maintainer)
Obtained from: https://bugs.squid-cache.org/show_bug.cgi?id=4889
|
Monday, 1 Oct 2018
|
18:31 pi
www/squid: update 4.1 -> 4.3
- fix build with LibreSSL
PR: 231442
Submitted by: timp87@gmail.com (maintainer), takefu@airport.fm
Relnotes: http://www.squid-cache.org/Versions/v4/changesets/
|
Saturday, 1 Sep 2018
|
17:05 antoine
Switch default version of samba to 4.7
Samba 4.6 will be discontinued in a few weeks
Reviewed by: mat
Differential Revision: https://reviews.freebsd.org/D16904
|
Sunday, 29 Jul 2018
|
22:18 gerald
Bump PORTREVISION for ports depending on the canonical version of GCC
in the ports tree (via Mk/bsd.default-versions.mk and lang/gcc) which
has now moved from GCC 6 to GCC 7 by default.
This includes ports
- featuring USE_GCC=yes or USE_GCC=any,
- featuring USES=fortran,
- using Mk/bsd.octave.mk which in turn features USES=fortran, and those
- with USES=compiler specifying one of openmp, nestedfct, c11, c++0x,
c++11-lib, c++11-lang, c++14-lang, c++17-lang, or gcc-c++11-lib.
PR: 222542
|
Sunday, 8 Jul 2018
|
20:46 swills
www/squid: update to 4.1
PR: 229601
Submitted by: timp87@gmail.com (maintainer)
|
Friday, 23 Feb 2018
|
20:35 dbaio
www/squid: Fixes security vulnerabilities
Add patches to fix CVE's:
CVE-2018-1000024
CVE-2018-1000027
PR: 226139
Submitted by: Yasuhiro KIMURA <yasu@utahime.org>
Approved by: timp87@gmail.com (maintainer)
MFH: 2018Q1
Security: d5b6d151-1887-11e8-94f7-9c5c8e75236a
|
Saturday, 17 Feb 2018
|
12:01 sunpoet
Use BROKEN_SSL
Approved by: portmgr (blanket)
|
Saturday, 23 Dec 2017
|
07:03 antoine
Change default version of samba from 4.4 to 4.6
Reviewed by: mat
With hat: portmgr
Differential Revision: https://reviews.freebsd.org/D13529
|
Wednesday, 13 Dec 2017
|
22:35 swills
Fix typo in previous commit
Reported by: Yasuhiro KIMURA <yasu@utahime.org>
|
18:40 swills
www/squid: Enable PCRE support
PR: 223505
Submitted by: OlivierW <olivierw1+bugzilla-freebsd@hotmail.com> (inspired by)
Approved by: timp87@gmail.com (maintainer)
|
Saturday, 26 Aug 2017
|
21:20 madpilot
Update www/squid to 3.5.27
PR: 221765
Submitted by: timp87@gmail.com (maintainer)
|
Friday, 9 Jun 2017
|
17:08 joneum
- www/squid: Update from 3.5.25 to 3.5.26
- Changes:
*Bug 4711: SubjectAlternativeNames is missing in some generated certificates
*Bug 4695: squidpurge: GCC 7 build errors
*Bug 4682: ignoring http_access deny when client-first bumping mode is used
*Bug 4682: Fix ssl_bump "bump" action documentation
*Bug 4653: %st lies about tunneled traffic volumes
*Bug 4589: ssl_crtd: returning zero on failure
*Bug 3772: message from FTP server gets mangled
*Bug 3102: FTP directory listing drops fist character of file names
*Add OpenSSL library details to -v output
*... and some documentatino updates
PR: 219773
Submitted by: timp87 at gmail.com (maintainer)
Approved by: tz, miwi (mentors)
Differential Revision: https://reviews.freebsd.org/D11041
|
Wednesday, 3 May 2017
|
13:51 miwi
- Update to 3.5.25
PR: 218343
Submitted by: maintainer
|
Sunday, 30 Apr 2017
|
04:35 linimon
Provide more descriptive error messages for ports failing on powerpc64.
While here, pet portlint.
Approved by: portmgr (tier-2 blanket)
|
Saturday, 25 Mar 2017
|
23:37 antoine
Switch default version of samba from 4.3 to 4.4
With hat: portmgr
Differential Revision: https://reviews.freebsd.org/D10131
|
Tuesday, 21 Mar 2017
|
21:59 antoine
- Add USES=samba to handle dependency on samba
Valid ARGS: build, env, lib, run (default: build,run)
- Add SAMBA_DEFAULT to bsd.default-versions.mk (default: 4.3)
- Remove obsolete samba36 ports
- Modify samba4x ports to install libsmbclient
- Convert the ports tree to USES=samba
Reviewed by: mat
Differential Revision: https://reviews.freebsd.org/D8919
|
Sunday, 5 Feb 2017
|
15:11 riggs
Update to upstream version 3.5.24; retire support for FreeBSD < 10
PR: 216578
Submitted by: timp87@gmail.com (maintainer)
|
Friday, 23 Dec 2016
|
03:41 junovitch
www/squid: update 3.5.22 -> 3.5.23
- Spell CHOSEN_COMPILER_TYPE correctly
- Remove upstreamed patch (IPv6 + PF crash)
- Add --enable-zph-qos option to default set
http://wiki.squid-cache.org/Features/QualityOfService
PR: 215416
Submitted by: Pavel Timofeev <timp87@gmail.com> (maintainer)
Security: CVE-2016-10002
Security: CVE-2016-10003
Security: https://vuxml.FreeBSD.org/freebsd/41f8af15-c8b9-11e6-ae1b-002590263bf5.html
MFH: 2016Q4
|
Tuesday, 29 Nov 2016
|
18:46 mat
Mark some ports as not openssl-devel ready.
Sponsored by: Absolight
|
Thursday, 24 Nov 2016
|
12:39 amdmi3
- Update to 3.5.22
- Switch to options helpers
PR: 212909
Submitted by: timp87@gmail.com (maintainer)
|
Friday, 8 Jul 2016
|
00:59 junovitch
www/squid: update 3.5.19 -> 3.5.20
- Also swap USE_OPENSSL=yes to USES=ssl
PR: 210811
Submitted by: Pavel Timofeev <timp87@gmail.com> (maintainer)
|
Monday, 23 May 2016
|
20:35 amdmi3
Remove NLS, DOCS, EXAMPLES and IPV6 from OPTIONS_DEFAULT, they are enabled by
default anyway and don't need to be listed
Approved by: portmgr blanket
|
Sunday, 15 May 2016
|
11:16 brnrd
www/squid: Fix configure errors for libssl
- Fix building with ports' OpenSSL/LibreSSL
- Use GSSAPI descriptions from Mk/Uses/gssapi.mk
- Use more OPTIONS features
PR: 208584
Submitted by: timp87@gmail.com (maintainer)
MFH: 2016Q2
|
Wednesday, 11 May 2016
|
12:56 matthew
Security update to 3.5.19
PR: 209334
Submitted by: timp87@gmail.com (maintainer)
Security: 25e5205b-1447-11e6-9ead-6805ca0b3d42
|
Sunday, 1 May 2016
|
20:31 matthew
Add conflicts against the new squid-devel port
Rework transparent proxy / firewall related options
PR: 203860
Submitted by: timp87@gmail.com (maintainer)
|
Thursday, 21 Apr 2016
|
16:43 swills
many ports: mark broken on powerpc64
|
Wednesday, 20 Apr 2016
|
18:49 pi
www/squid: 3.5.16 -> 3.5.17
Changes:
http://www.squid-cache.org/Versions/v3/3.5/changesets/SQUID_3_5_17.html
http://www.squid-cache.org/Advisories/SQUID-2016_5.txt
PR: 208939
Submitted by: Pavel Timofeev <timp87@gmail.com> (maintainer)
MFH: 2016Q2
Security: CVE-2016-4052, CVE-2016-4053, CVE-2016-4054
|
13:45 pi
www/squid: Add all available official patches up to 14031
It fixes two annoying and long-standing problems:
- header forgery detection (using sslbump) leads to crash
- add chained certificates and signing certificate to
peek-then-bumped connections.
PR: 207901
MFH: 2016Q2
Submitted by: Pavel Timofeev <timp87@gmail.com> (maintainer)
Reported by: Christophe Anselme-Moizan <christophe.anselmemoizan@orange.com>
|
Saturday, 2 Apr 2016
|
15:13 riggs
Update to upstream version 3.5.16
PR: 208463
Submitted by: timp87@gmail.com (maintainer)
|
Friday, 1 Apr 2016
|
14:33 mat
Remove ${PORTSDIR}/ from dependencies, categories v, w, x, y, and z.
With hat: portmgr
Sponsored by: Absolight
|
Thursday, 31 Mar 2016
|
19:05 pi
www/squid: cleanup, adding patches
1. Turn ON all options that don't require external dependencies.
2. Split SMB options to more items to make it possible to compile
squid with samba36 and samba42.*
3. Set databases/p5-DBI as a dependency for SQL option and add note
to pkg-message about perl DBD drivers.*
4. Add fix for PF+IPv6.**
5. Require SSL option if SSL_CRTD is on.
6. Small fixes.
7. Add all available patches from upstream.
* thanks to Alonso Cardenas Marquez!
** thanks to Orlando Bassotto!
PR: 208290
Submitted by: Pavel Timofeev <timp87@gmail.com> (maintainer)
|
Monday, 14 Mar 2016
|
16:26 feld
www/squid: Fix crashes under heavy load
Squid 3.5.15 addresses security issues, but reports have been made that
it is unstable under load. These patches repair stability while not
requiring we downgrade to 3.5.14 which reintroduces security vulnerabilities.
PR: 207762
Approved by: maintainer
MFH: 2016Q1
|
Thursday, 25 Feb 2016
|
01:09 junovitch
www/squid: update 3.5.14 -> 3.5.15
Changes:
* Bug 3870 assertion failed: String.cc: 'len_ + len <65536' in ESI::CustomParser
* Fix multiple assertion on String overflows
* Fix unit test errors on MacOS
* Better handling of huge response headers. Fewer incorrect "Bug #3279" messages
* Log noise reduction for eCAP
PR: 207454
Submitted by: Pavel Timofeev <timp87@gmail.com> (maintainer)
Security: https://vuxml.FreeBSD.org/freebsd/660ebbf5-daeb-11e5-b2bd-002590263bf5.html
X-MFH-With: r406625, r409148
|
Friday, 19 Feb 2016
|
03:40 junovitch
www/squid: update 3.5.13 -> 3.5.14
PR: 207294
Submitted by: Pavel Timofeev <timp87@gmail.com> (maintainer)
Security: CVE-2016-2390
Security: https://vuxml.FreeBSD.org/freebsd/56562efb-d5e4-11e5-b2bd-002590263bf5.html
X-MFH-Note: MFH not required, only 3.5.13 in ports/head is vulnerable
|
Saturday, 23 Jan 2016
|
21:14 johans
Bump versions to chase Nettle shared library update
|
Tuesday, 19 Jan 2016
|
00:20 junovitch
www/squid: update 3.5.12 -> 3.5.13
Changes:
* Bug 4397: DragonFly BSD, POSIX shared memory is implemented as filepath
* Bug 4387: Kerberos build errors on Solaris
* TLS: Support Ephemeral Elliptic Curve Diffie-Hellman (EECDH) key exchange
* TLS: Complete certificate chains using external intermediate certificates
* Avoid memory leaks when an X.509 certificate validator is used with SslBump
* Fix connection retry and fallback after failed server TLS connections
* Fix GnuTLS detection via pkg-config
* Fix startup crash with a misconfigured (too-small) shared memory cache
* ... and some documentation updates
PR: 206127
Submitted by: Pavel Timofeev <timp87@gmail.com> (maintainer)
|
Sunday, 6 Dec 2015
|
18:45 flo
Update to 3.5.12
PR: 204913
Submitted by: <timp87@gmail.com> (maintainer)
|
Wednesday, 11 Nov 2015
|
17:24 junovitch
www/squid: update 3.5.10 -> 3.5.11
- Regen patches for new release and for portlint
- Drop creating/deleting /var/run/squid in the rc script as this duplicates
handling it in the pkg-plist
Changes:
* Bug 3574: crashes on reconfigure and startup
* Bug 4347: compile errors with LibreSSL 2.3
* Bug 4281: copy-paste typos in src/tools.cc
* Bug 4279: No response from proxy for FTP-download of non-existing file
* Bug 4188: Bumping intercepted SSL connections does not work on Solaris
* Fix incorrect authentication headers on cache digest requests
* Fix connection stats, including %<lp, missing for persistent connections
* Fix invalid memory access issues in SBuf
* Avoid errors when parsing manager ACL in old squid.conf
PR: 204217
Submitted by: Pavel Timofeev <timp87@gmail.com> (maintainer)
Tested by: ncrogers@gmail.com
|
Tuesday, 6 Oct 2015
|
18:53 flo
Update to 3.5.10
PR: 203501
Submitted by: <timp87@gmail.com> (maintainer)
|
Wednesday, 30 Sep 2015
|
18:58 bdrewery
rc.d/squid: Check the config before starting, reloading, or restarting.
|
Monday, 21 Sep 2015
|
01:51 junovitch
www/squid: security update and build fix
- security update 3.5.8 -> 3.5.9 [1]
- Fix TP_IPF build on FreeBSD 9 [2]
PR: 203186 [1]
PR: 202950 [2]
Approved by: Pavel Timofeev <timp87@gmail.com> (maintainer) [1]
Security: d3a98c2d-5da1-11e5-9909-002590263bf5
MFH: 2015Q3
X-MFH-With: r391555, r392222, r393602, r396106, r396185, r397215
|
Friday, 18 Sep 2015
|
05:12 cy
Rather than produce a warning message that IPv6 is not supported
under ipfilter 4 (FreeBSD 9) every tenth time, reduce the message
to one in a million. This has the effect of displaying the message
at or shortly after startup with a reminder every blue moon.
PR: 202950
|
Saturday, 5 Sep 2015
|
16:29 cy
Fix TP_IPF build.
|
Friday, 4 Sep 2015
|
16:12 junovitch
www/squid: update 3.5.7 -> 3.5.8
PR: 202826
Submitted by: Pavel Timofeev <timp87@gmail.com> (maintainer)
Approved by: feld (mentor)
|
Wednesday, 5 Aug 2015
|
18:32 robak
www/squid: update 3.5.6 -> 3.5.7
- Fix build with ecap by clang
- Get rid of useless and always empty /var/squid/logs
- Rework patches to make portlint a bit happier
PR: 202053
Submitted by: Pavel Timofeev <timp87@gmail.com> (maintainer)
|
Wednesday, 8 Jul 2015
|
09:30 marino
www/squid: Support DragonFly SHM segments
Out of the box, squid would not run on dragonfly due to its handling
of SHM segments. On DragonFly, SHM segments are always treated as files
but on FreeBSD it depends on whether or not application is inside a jail.
In any case, the case for DragonFly was no supported, so it has been
added via patch. This also requires the return of /var/run/squid
directory which is where the SHM files are stored (defined by
localstatedir and supported by RC script). The RC script would define
this directory if missing, but let's make sure it is always available.
PR: 201405
Submitted by: marino
Approved by: maintainer (timp87/gmail)
|
Monday, 6 Jul 2015
|
17:38 feld
Update to 3.5.6
Resolve security issue, no CVE assigned yet
Approved by: maintainer
Security: 150d1538-23fa-11e5-a4a5-002590263bf5
|
Sunday, 7 Jun 2015
|
21:03 flo
- update to 3.5.5
- fix GASSAPI_NONE handling;
- unbreak eCAP option, but only for FreeBSD < 10, no luck with clang.
PR: 200070
Submitted by: <timp87@gmail.com> (maintainer)
|
Thursday, 14 May 2015
|
10:15 mat
MASTER_SITES cleanup.
- Replace ${MASTER_SITE_FOO} with FOO.
- Merge MASTER_SITE_SUBDIR into MASTER_SITES when possible. (This means 99.9%
of the time.)
- Remove occurrences of MASTER_SITE_LOCAL when no subdirectory was present and
no hint of what it should be was present.
- Fix some logic.
- And generally, make things more simple and easy to understand.
While there, add magic values to the FESTIVAL, GENTOO, GIMP, GNUPG, QT and
SAMBA macros.
Also, replace some EXTRACT_SUFX occurences with USES=tar:*.
Checked by: make fetch-urlall-list
With hat: portmgr
Sponsored by: Absolight
|
Friday, 1 May 2015
|
17:00 marino
www/squid finally gets a maintainer
Pavel Timofeev spearheaded the update to squid to version 3.5 and has
been prepared to be the port's maintainer. Let's make that happen!
Thanks for taking care of this popular port, Timp87.
|
Thursday, 30 Apr 2015
|
19:34 marino
www/squid: Add MAP_NOSYNC flay to mmap call
This is the same technique used by PostgreSQL to prevent dirty pages
from flushing prematurely (performance hit). In any case, it can't hurt
and it's been used in production for 18 months. Timp87 provided the 3.5
version of squid; the port is still unmaintained.
PR: 198920
Submitted by: emz (norma.perm.ru)
concurred: timp87 (gmail)
|
Tuesday, 14 Apr 2015
|
16:34 pi
www/squid: 3.4.12 -> 3.5.3
As it is written on http://www.squid-cache.org/Versions/ for 3.4.x
versions: they are no longer intended for general use in new installations.
So this is a big upgrade.
Changes to squid-3.5.3 (28 Mar 2015):
- Regression Bug 4213: negotiate_kerberos_auth: freeing non-dynamic memory
- Regression Bug 4206: Incorrect connection close on expect:100-continue
- Bug 4204: ./configure does not abort when required helpers cannot be built
- Bug 3805: support shared memory on MacOS X in Mem::IPC::Segment
- Bug 2907: high CPU usage on CONNECT when using delay pools
- basic_getpwnam_auth: fail authentication on crypt() failures
- basic_nis_auth: fail authentication on crypt() failures
- ext_kerberos_ldap_group_acl: Heimdal support improvements
- ext_wbinfo_group_acl: Perl 5.20 support
- ... and several compile issues
Changes to squid-3.5.2 (18 Feb 2015):
- Regression Bug 4176: Digest auth too many helper lookups
- Regression Bug 4180: not-fully-initialized data member in ACLUserData
- Bug 4172: Solaris broken krb5-config
- Bug 4073: Cygwin compile errors
- Bug 3919: remove several never-true / never-false comparisons
- HTTPS: Add missing root CAs when validating chains that passed
internal checks
- Fix some cbdataFree related memory leaks
- Quieten CBDATA 'leak' messages
- Set SNI information in transparent bumping mode
- negotiate_kerberos_auth: fix krb5.conf backward compatibility
- Fix memory leaks in cachemgr.cgi URL parser
- Fix sslproxy_options in peek-and-splice mode
- ... and fix several portability and build issues
- ... and some documentation updates
- ... and all fixes from squid 3.4.11
Changes to squid-3.5.1 (13 Jan 2015):
- Fix handling of invalid SSL server certificates when splicing connections
- basic_smb_lm_auth: Simplified MSNT basic auth helper
- squidclient: Fix -A and -P options
- ... and several portability fixes
- ... and all fixes from squid 3.4.11
- ... and a lot of documentation updates
Changes to squid-3.5.0.4 (21 Dec 2014):
- Bug 3826: pt 2: Provide a systemd .service file for Squid
- Support http_access denials of SslBump "peeked" connections.
- Fix DONT_VERIFY_DOMAIN ssl flag
- Fix peek-and-splice mode: certificate validation for domain mismatched errors
- negotiate_kerberos_auth: MEMORY keytab and replay cache support
- ... and some documentation updates
- ... and a large amount of code polishing (non-logic changes)
Changes to squid-3.5.0.3 (09 Dec 2014):
- Bug 4146: workaround SSL Bump crash on Linux
- Bug 4135: Support \-escaped characters in regex patterns
- Bug 4131: SIGSEGV at store.cc:962 content_length > store_maxobjsize
- Fix delay_parameters parsing
- HTTP/2: handle 'PRI' method found in HTTP/1.x traffic
- ... and all changes from squid 3.4.10
- ... and a lot of documentation updates
Changes to squid-3.5.0.2 (31 Oct 2014):
- Fix FTP socket opening during reconfigure
- ... and all changes from 3.4.9
- ... and some build errors in rarely used code
- ... and several documentation updates
Changes to squid-3.5.0.1 (17 Oct 2014):
- Port from 2.7: redirector and logging urlgroup feature
- Bug 4093: source-maintenance.sh bad perl -i option
- Bug 3608: per-service name for workers UDS sockets
- Bug 2554: 32-bit wrap in AUFS counters
- Bug 1961 pt1: URL handling redesign
- Bug 1202 pt1: documentation for refresh_pattern algorithms
- Update Squid boilerplate copyright/license
- Update the http(s)_port directives protocol= parameter
- Update forward_max_tries to permit 25 server paths
- Update Kerberos library detection and build options
- Support ACLs on ftp_epsv directive
- Support >32KB objects in cache_dir rock storage
- Support client connection annotation by helpers via clt_conn_tag=TAG
- Support native FTP Relay
- Support libgnugss Kerberos library
- Support libecap v1.0
- Support SSL Peek and Splice feature
- Support receiving PROXY protocol version 1 and 2
- Replace --enable-ssl build option with --with-openssl
- Enable -n service name command line option for all Squid builds
- Enable ICAP client by default
- Fix configuration file parsing bugs, related to quoted strings
- Fix Windows MinGW build errors
- Fix multiple TCP outgoing TOS/DiffServ bugs
- Fix Cygwin /etc/resolv.conf parsing
- Fix crash when sending %ssl::cert_subject to external ACL w/o certificate
- Fix crash reading malformed config files
- Send selected SSL version and cipher to the certificate validation helper
- Validate server certificates without bumping
- Add zero-copy string buffer support
- Add automated squid.conf parser testing with squid -k parse
- Add adaptation_service ACL
- Add logformat code %tS to log transaction start time
- Add logformat code %>rd to log client URL domain name
- Add key_extras to proxy authentication
- Add url_rewrite_extras and store_id_extras directives
- Add send_hit and store_miss directives
- Add collapsed_forwarding directive
- Add sslproxy_cert_sign_hash directive
- Add SMP SSL session cache
- Add cache_peer standby connections
- Add helper ext_delayer_acl
- Add TCP_TUNNEL log code for CONNECT tunnels which are not SSL-bumped
- Add BUILDCXX and BUILDCXXFLAGS configure options for cross-compile
- Remove COSS storage in favour of Rock storage
- Remove dnsserver and external DNS helper API in favour of mDNS
- Remove broken mallinfo() accounting and memory tracing
- Remove hierarchy_stoplist in favour of always_direct
- Deprecate tag ACL type in favour of note ACL type
- Deprecate urlgroup feature in favour of note ACL type
- HTTP/1.1: method names are case-sensitive
- HTTP/1.1: register new headers from RFC 723x
- squidclient: polish and update help display
- squidclient: support TLS with GnuTLS 3.1.5+
- squidclient: support verbosity levels
- squidclient: --ping mode module support
- url_fake_rewrite: support concurrency
- storeid_file_rewrite: support concurrency
- digest_file_auth: support concurrency
- digest_edirectory_auth: support concurrency
- digest_ldap_auth: support concurrency
- ... and many error page translation updates
- ... and much code cleanup and polishing
PR: 198089
Submitted by: Pavel Timofeev <timp87@gmail.com>
Tested by: John Marshall <john.marshall@riverwillow.com.au>
|
Thursday, 19 Feb 2015
|
19:58 sunpoet
- Update to 3.4.12
- While I'm here:
- Pet portlint
- Remove contiguous blank lines
Changes: http://www.squid-cache.org/Versions/v3/3.4/RELEASENOTES.html
PR: 197812
Submitted by: <timp87@gmail.com>
|
Saturday, 17 Jan 2015
|
12:50 madpilot
- Update to 3.4.11
- Fix STACKTRACES option
- Put correct permissions on /var directories creted by the port
PR: 196711
Submitted by: timp87 at gmail.com
|
Monday, 22 Dec 2014
|
14:50 rea
www/squid: implement proper backtrace support
Now Squid will print full backtrace for problematic cases when it is
about to die on some signal and should emit stacktrace. You'll
obviously need to compile it with STACKTRACES option.
Tested at: KIAE Grid production Squid cluster
MFC after: 1 week
MFH: 2014Q4
Sponsored by: Kurchatov Institute of Atomic Energy
|
Number of commits found: 273 (showing only 100 on this page) |