17:00 marino 

www/squid finally gets a maintainer

Pavel Timofeev spearheaded the update to squid to version 3.5 and has
been prepared to be the port's maintainer.  Let's make that happen!

Thanks for taking care of this popular port, Timp87.

 

19:34 marino 

www/squid: Add MAP_NOSYNC flay to mmap call

This is the same technique used by PostgreSQL to prevent dirty pages
from flushing prematurely (performance hit).  In any case, it can't hurt
and it's been used in production for 18 months.  Timp87 provided the 3.5
version of squid; the port is still unmaintained.

PR:		198920
Submitted by:	emz (norma.perm.ru)
concurred:	timp87 (gmail)

 

16:34 pi 

www/squid: 3.4.12 -> 3.5.3

As it is written on http://www.squid-cache.org/Versions/ for 3.4.x
versions: they are no longer intended for general use in new installations.
So this is a big upgrade.

Changes to squid-3.5.3 (28 Mar 2015):

- Regression Bug 4213: negotiate_kerberos_auth: freeing non-dynamic memory
- Regression Bug 4206: Incorrect connection close on expect:100-continue
- Bug 4204: ./configure does not abort when required helpers cannot be built
- Bug 3805: support shared memory on MacOS X in Mem::IPC::Segment
- Bug 2907: high CPU usage on CONNECT when using delay pools
- basic_getpwnam_auth: fail authentication on crypt() failures
- basic_nis_auth: fail authentication on crypt() failures
- ext_kerberos_ldap_group_acl: Heimdal support improvements
- ext_wbinfo_group_acl: Perl 5.20 support
- ... and several compile issues

Changes to squid-3.5.2 (18 Feb 2015):

- Regression Bug 4176: Digest auth too many helper lookups
- Regression Bug 4180: not-fully-initialized data member in ACLUserData
- Bug 4172: Solaris broken krb5-config
- Bug 4073: Cygwin compile errors
- Bug 3919: remove several never-true / never-false comparisons
- HTTPS: Add missing root CAs when validating chains that passed
  internal checks
- Fix some cbdataFree related memory leaks
- Quieten CBDATA 'leak' messages
- Set SNI information in transparent bumping mode
- negotiate_kerberos_auth: fix krb5.conf backward compatibility
- Fix memory leaks in cachemgr.cgi URL parser
- Fix sslproxy_options in peek-and-splice mode
- ... and fix several portability and build issues
- ... and some documentation updates
- ... and all fixes from squid 3.4.11

Changes to squid-3.5.1 (13 Jan 2015):

- Fix handling of invalid SSL server certificates when splicing connections
- basic_smb_lm_auth: Simplified MSNT basic auth helper
- squidclient: Fix -A and -P options
- ... and several portability fixes
- ... and all fixes from squid 3.4.11
- ... and a lot of documentation updates

Changes to squid-3.5.0.4 (21 Dec 2014):

- Bug 3826: pt 2: Provide a systemd .service file for Squid
- Support http_access denials of SslBump "peeked" connections.
- Fix DONT_VERIFY_DOMAIN ssl flag
- Fix peek-and-splice mode: certificate validation for domain mismatched errors
- negotiate_kerberos_auth: MEMORY keytab and replay cache support
- ... and some documentation updates
- ... and a large amount of code polishing (non-logic changes)

Changes to squid-3.5.0.3 (09 Dec 2014):

- Bug 4146: workaround SSL Bump crash on Linux
- Bug 4135: Support \-escaped characters in regex patterns
- Bug 4131: SIGSEGV at store.cc:962 content_length > store_maxobjsize
- Fix delay_parameters parsing
- HTTP/2: handle 'PRI' method found in HTTP/1.x traffic
- ... and all changes from squid 3.4.10
- ... and a lot of documentation updates

Changes to squid-3.5.0.2 (31 Oct 2014):

- Fix FTP socket opening during reconfigure
- ... and all changes from 3.4.9
- ... and some build errors in rarely used code
- ... and several documentation updates

Changes to squid-3.5.0.1 (17 Oct 2014):

- Port from 2.7: redirector and logging urlgroup feature
- Bug 4093: source-maintenance.sh bad perl -i option
- Bug 3608: per-service name for workers UDS sockets
- Bug 2554: 32-bit wrap in AUFS counters
- Bug 1961 pt1: URL handling redesign
- Bug 1202 pt1: documentation for refresh_pattern algorithms
- Update Squid boilerplate copyright/license
- Update the http(s)_port directives protocol= parameter
- Update forward_max_tries to permit 25 server paths
- Update Kerberos library detection and build options
- Support ACLs on ftp_epsv directive
- Support >32KB objects in cache_dir rock storage
- Support client connection annotation by helpers via clt_conn_tag=TAG
- Support native FTP Relay
- Support libgnugss Kerberos library
- Support libecap v1.0
- Support SSL Peek and Splice feature
- Support receiving PROXY protocol version 1 and 2
- Replace --enable-ssl build option with --with-openssl
- Enable -n service name command line option for all Squid builds
- Enable ICAP client by default
- Fix configuration file parsing bugs, related to quoted strings
- Fix Windows MinGW build errors
- Fix multiple TCP outgoing TOS/DiffServ bugs
- Fix Cygwin /etc/resolv.conf parsing
- Fix crash when sending %ssl::cert_subject to external ACL w/o certificate
- Fix crash reading malformed config files
- Send selected SSL version and cipher to the certificate validation helper
- Validate server certificates without bumping
- Add zero-copy string buffer support
- Add automated squid.conf parser testing with squid -k parse
- Add adaptation_service ACL
- Add logformat code %tS to log transaction start time
- Add logformat code %>rd to log client URL domain name
- Add key_extras to proxy authentication
- Add url_rewrite_extras and store_id_extras directives
- Add send_hit and store_miss directives
- Add collapsed_forwarding directive
- Add sslproxy_cert_sign_hash directive
- Add SMP SSL session cache
- Add cache_peer standby connections
- Add helper ext_delayer_acl
- Add TCP_TUNNEL log code for CONNECT tunnels which are not SSL-bumped
- Add BUILDCXX and BUILDCXXFLAGS configure options for cross-compile
- Remove COSS storage in favour of Rock storage
- Remove dnsserver and external DNS helper API in favour of mDNS
- Remove broken mallinfo() accounting and memory tracing
- Remove hierarchy_stoplist in favour of always_direct
- Deprecate tag ACL type in favour of note ACL type
- Deprecate urlgroup feature in favour of note ACL type
- HTTP/1.1: method names are case-sensitive
- HTTP/1.1: register new headers from RFC 723x
- squidclient: polish and update help display
- squidclient: support TLS with GnuTLS 3.1.5+
- squidclient: support verbosity levels
- squidclient: --ping mode module support
- url_fake_rewrite: support concurrency
- storeid_file_rewrite: support concurrency
- digest_file_auth: support concurrency
- digest_edirectory_auth: support concurrency
- digest_ldap_auth: support concurrency
- ... and many error page translation updates
- ... and much code cleanup and polishing

PR:		198089
Submitted by:	Pavel Timofeev <timp87@gmail.com>
Tested by:	John Marshall <john.marshall@riverwillow.com.au>

 

19:58 sunpoet 

- Update to 3.4.12
- While I'm here:
  - Pet portlint
  - Remove contiguous blank lines

Changes:	http://www.squid-cache.org/Versions/v3/3.4/RELEASENOTES.html
PR:		197812
Submitted by:	<timp87@gmail.com>

 

12:50 madpilot 

- Update to 3.4.11
- Fix STACKTRACES option
- Put correct permissions on /var directories creted by the port

PR:		196711
Submitted by:	timp87 at gmail.com

 

14:50 rea 

www/squid: implement proper backtrace support

Now Squid will print full backtrace for problematic cases when it is
about to die on some signal and should emit stacktrace.  You'll
obviously need to compile it with STACKTRACES option.

Tested at:	KIAE Grid production Squid cluster
MFC after:	1 week
MFH:		2014Q4
Sponsored by:	Kurchatov Institute of Atomic Energy

 

14:01 antoine 

Remove a directory that is created/deleted by rc script from stagedir

 

06:45 kevlo 

Add security/nettle dependency and fix pkg-plist.
Squid detects libnettle when available and uses it without yet forcing
it as a required dependency.

 

13:58 marino 

www/squid: Upgrade version 3.4.9 => 3.4.10

PR:		195843
Submitted by:	timp87 (gmail)

 

14:24 antoine 

Allow building with clang 3.5
Those warnings should be fixed, but squelch them for now

PR:		ports/195665

 

09:57 kevlo 

swapdir should be in /var/squid/cache.

 

09:53 marino 

www/squid: Remove one file from SHEBANG_FILES

ksh was removed from dependencies list in version 3.4.9, so cert_tool
doesn't have to be fixed anymore.

PR:		194777
Submitted by:	timp87 (gmail)

 

22:12 marino 

www/squid: Upgrade version 3.4.8 => 3.4.9

This update should address some memory leak issues

PR:		193938
PR:		194726
Submitted by:	timp87 (gmail)

 

13:48 marino 

www/squid: DragonFly needs an include CFLAG with Kerberos

 

07:24 flo 

Since http://bazaar.launchpad.net/~squid/squid/3-trunk/revision/12842,
Squid's configure script defaults to -march=native, if the flag is
supported by the compiler.  And this even *overrides* your own specified
CPUTYPE or -march= flag!

That could cause squid to crash when using a package that was built on a
newer CPU type that the one where the package would run on.

Submitted by:	dim

 

08:40 madpilot 

Add CPE info to squid ports.

Requested by:	des@

 

20:46 madpilot 

- Make diskd and rock storage schemes options (diskd enabled by default) [1]
- Add note in pkg-message about diskd needing some tuning [1]
- Fix transparent proxy with PF [1] [2]
- Fix a pair of typos [1]

PR:		193705 [1], 193752 [2]
Submitted by:	arcade@b1t.name [1], kib@ [2]

 

15:22 amdmi3 

- Unbreak ECAP option

 

13:24 madpilot 

Update squid to 3.4.8 and add patches to squid33.

This update addresses CVE-2014-6270.

PR:		193737
Submitted by:	timp87 at gmail.com

 

06:58 marino 

www/squid and www/squid33: Fix plist error depending on selected options

PR:		193717
Reported by:	kib@
Fixed by:	timp87 (gmail)

 

12:29 marino 

www/squid: Upgrade version 2.7.9 => 3.4.7

From now on, there will only be one squid port, this one.  Squid33 has
been deprecated and will expire on 31 JAN 2015.

PR:		192828
Submitted by:	timp87 (gmail)
Contributions:	takefu (airport.fm), Dennis Glatting

 

14:06 marino 

Retire www/squid in a month, and deprecate 6 dependent ports too

Squid cache is only supported for one stable release.  There was an
exception for squid 2.7 (www/squid) as it was supported until squid 3.x
reached feature parity which occurred with the release of Squid 3.2

Thus the maintainers of Squid have declared Squid 2.7 reached End-of-Life
on 14 August 2012.  As a result, set this port to expire on 15 Sept 2014.

Seven ports dependent on www/squid have been deprecated with the same
date. Perhaps they can be switched to www/squid33 before they expire.

Approved by:	portmgr (implicit, some ports not staged)

 

14:57 marino 

Stage www/squid

I went further than this PR, removing post-install script invocation
and cat messages, preinstall too.  This unmaintained port needs some
more modernizing, particularly involving options.

PR:		189898
Submitted by:	Joe (thrallingpenguin.com)

 

13:18 marino 

www/squid, squid32, squid33: Reset maintainer

At least 2 PRs per port have been submitted to provide staging going back
to May, but the maintainer has not responded.  These PRs prevented the
maintainer from being reset on the big pass, so do it now that there are
only 2 weeks left to stage these ports.

Approved by:	portmgr (implicit, NOT_STAGED)

 

18:41 adamw 

Convert a bunch of USE_BZIP2 to USES=tar:bzip2

Approved by:	portmgr (not really, but touches unstaged ports)

 

18:34 tijl 

net/openldap24-*:
- Convert to USES=libtool and bump dependent ports
- Avoid USE_AUTOTOOLS
- Don't use PTHREAD_LIBS
- Use MAKE_CMD

databases/glom:
- Drop :keepla
- Add INSTALL_TARGET=install-strip

databases/libgda4* databases/libgda5*:
- Convert to USES=libtool and bump dependent ports
- USES=tar:xz
- Use INSTALL_TARGET=install-strip
- Use @sample

databases/libgdamm:
- Drop :keepla
- USES=tar:bzip2
- Use INSTALL_TARGET=install-strip

databases/libgdamm5:
- Add INSTALL_TARGET=install-strip
- Drop --enable-static (inherited from old repocopy)

devel/anjuta x11-toolkits/py-gnome-extras:
- Drop :keepla

dns/powerdns dns/powerdns-devel:
- Convert to USES=libtool
- Add INSTALL_TARGET=install-strip
- Disable static modules
- Stop creating library symlinks with .0 suffix, not needed for dynamically
  opened modules

mail/dovecot2:
- Add USES=libtool

mail/dovecot2-pigeonhole:
- Drop CONFIGURE_TARGET (incorrect for Dragonfly)
- Add USES=libtool and INSTALL_TARGET=install-strip

math/gnumeric:
- USES=libtool tar:xz

Approved by:	portmgr (implicit, bump unstaged ports)

 

08:44 bapt 

Fix some non default LIB_DEPENDS

With hat:	portmgr

 

11:10 mat 

Fixup pkgnames.

PR:		ports/184440, ports/184441, ports/184442, ports/184443, ports/184444,
ports/184445, ports/184446, ports/184447, ports/184448, ports/184449,
ports/184450
Submitted by:	mat
Approved by:	portmgr (bapt)

 

15:31 mat 

Fix typo in OPTIONS_DEFINE.

(maintainer timeout)

PR:		ports/181982
Submitted by:	mat

 

23:36 bapt 

Add NO_STAGE all over the place in preparation for the staging support (cat:
www)

 

13:38 az 

- convert to the new perl5 framework
- convert USE_GMAKE to Uses

Approved by:	portmgr (bapt@, blanket)

 

01:12 bdrewery 

Fix options conversion with bmake

 

09:25 bapt 

Convert to new options framework

 

19:41 tmseck 

- Add the vendor patch for SQUID-2012:1 (CVE-2012-5643) and update VuXML
  information accordingly
- Bump PORTREVISION

PR:		ports/177773
Submitted by:	Kan Sasaki
Approved by:	flo (mentor)
Security:	c37de843-488e-11e2-a5c9-0019996bc1f7

 

18:09 tmseck 

Change MAINTAINER to my FreeBSD.org address.

Approved by:	flo (mentor)

 

12:37 gahr 

- Get rid of PTHREAD_CFLAGS and PTHREAD_LIBS (category: www)

Approved by:	portmgr

 

15:10 ume 

Update cyrus-sasl2 to 2.1.26.
This bumps shlib version of libsasl2.

 

16:33 hrs 

Fix rc.d script to support systems before and after ${name}_fib is introduced
into rc.subr.  Bump PORTREVISION.

Feature safe:	yes

 

22:26 amdmi3 

- Add LDFLAGS to CONFIGURE_ENV and MAKE_ENV (as it was done with LDFLAGS)
- Fix all ports that add {CPP,LD}FLAGS to *_ENV to modify flags instead

PR:             157936
Submitted by:   myself
Exp-runs by:    pav
Approved by:    pav

16:37 sunpoet 

- Use PLIST_DIRSTRY for ETCDIR: configuration file (not in PLIST) is
ETCDIR/squid.conf by default
- Use ETCDIR
- Make portlint happier
- Bump PORTREVISION for PLIST change

PR:             ports/158524
Submitted by:   sunpoet (myself)
Approved by:    Thomas-Martin Seck <tmseck@web.de> (maintainer)

15:11 flo 

change all squid ports from CONFLICTS to CONFLICTS_INSTALL

PR:             ports/158194
Submitted by:   Fedor A Borshev <fedor9@gmail.com>
Approved by:    maintainer

10:51 miwi 

- Update to 2.7.STABLE9
- Update MASTER_SITES
- Move default cache and log directories from $PREFIX/squid/ to /var/squid/

PR:             145674
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)

07:42 miwi 

- Update to 2.7.STABLE8

PR:             144668
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)

06:29 delphij 

Update www/squid and www/squid30 to address Squid HTCP Packet Processing
NULL Pointer Dereference vulnerability (SQUID-2010:2)

20:25 delphij 

Security patch for Squid advisory 2010:1, denial of service.

Submitted by:   maintainer (Thomas-Martin Seck <tmseck web de>)

02:58 wen 

- Implement OPTIONS vor SQUID_KERBEROS_AUTH and SQUID_NIS_AUTH
- Add a CONFLICT with www/lusca-head
- Make the Squid configuration directory world readable in new
  installations to ease use of cachemgr.cgi
- Implement squid_conf in the rc script and document user settable
  variables

PR:             ports/141930
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)

15:19 miwi 

- Add squid_fib option for alternate routing tables

PR:             140146
Submitted by:   Alson van der Meulen <alson+bugs@waalsdorp.nl> (based on)
Approved by:    maintainer

22:41 miwi 

- Update to 2.7-STABLE7

PR:             138941
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
Feature safe:   yes

16:20 miwi 

- Update MASTER_SITE_SUBDIR

PR:             136122
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)

22:20 miwi 

- The squid_kerb_auth helper needs to know about the endianness of the system
  at compile time. Its author suggests to use -D__LITTLE_ENDIAN__ in the
  program's Makefile and this is the solution proposed in ports/131878. Since
  FreeBSD (and FreeBSD ports) might be used on big-endian architectures as
  well as on little endian architectures I decided to instrument an already
  present endianness check directly in the affected source file instead.

- Bump PORTREVISION since this affects the content (and functionality) of
  the port's binary package.

Pr:             133159
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)

14:32 miwi 

- Update 2.7.STABLE6

PR:             131431
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
Security:      
http://www.vuxml.org/freebsd/9c2460a4-f6b1-11dd-94d9-0030843d3802.html

16:53 wxs 

- Remove conditional checks for FreeBSD 5.x and older

Approved by:    pav

12:36 miwi 

- Update to 2.7.STABLE5

PR:             128253
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)

21:57 miwi 

- Update to 2.7.STABLE4

PR:             126413
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)

19:10 beech 

- Update to 2.7.STABLE3

Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)

22:27 beech 

- Update to 2.6.STABLE21

PR:             ports/125099
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)

10:51 miwi 

Refactoring and fixes regarding the squid_kerb_auth helper:

- Move the content of
files/patch-helpers-negotiate_auth_squid_kerb_auth-Makefile.in and
-squid_kerb_auth.c to files/fix-kerberos.patch.

- Implement additional configure check for the presence of
gssapi/gssapi.h and gssapi.h and prefer the former over the latter in
squid_kerb_auth.c. This is done to prevent a compiler warning on
FreeBSD 7 and higher where gssapi.h is only present for compatibility
reasons.

- Actually enable the "negotiate" authentication method in Squid
(thanks to John Marshall for pointing this out to the maintainer).
Bump PORTREVISION for this change.

Removed files:

files/patch-helpers-negotiate_auth-squid_kerb_auth-Makefile.in
files/patch-helpers-negotiate_auth-squid_kerb_auth-squid_kerb_auth.c

PR:             124872
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)

00:08 miwi 

- Fix build after Heimdal update on HEAD

PR:             123782
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)

12:27 miwi 

- Fix a mistake I (the maintainer) had introduced regarding the
installation of the cachemgr.conf.default file: instead of explicitly
installing it I thought it would be enough to change an automake
variable that served an entirely different purpose, namely
hardcoding the path to the configuration in the cachemgr.cgi
binary.
- While at it: remove a no longer needed .sh reference from
files/pkg-message.in.
- Set PORTREVISION to 1 because the hardcoded name of the default
configuration file has changed within cachemgr.cgi.

PR:             123573
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)

12:07 miwi 

- Update to 2.6STABLE20

PR:             123432
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)

00:46 beech 

- Update to 2.6.STABLE19
- Add a patch for Squid bug #2203 (Fixed in the 3.0 but not yet in the 2.6
series)
- Update maintainer mail address

PR:             ports/122383
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)

13:11 miwi 

- Update to 2.6.STABLE18

PR:             119563
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)

19:24 delphij 

Update to 2.6.STABLE17

PR:             ports/118430
Submitted by:   maintainer

19:48 delphij 

Apply vendor patch 11780 for SQUID-2007_2.

Security:       Denial of Service from trusted client
Security:       VuXML 6eb580d7-a29c-11dc-8919-001c2514716c
Approved by:    portmgr (erwin)

00:08 edwin 

Remove support for OSVERSION < 5

19:24 miwi 

- Remove unneccessary USE_GCC line

Submitted by:   Derkjan de Haan <haanjdj@gmail.com>
Approved by:    maintainer via private mail

00:26 miwi 

- Update to 2.6.STABLE16

PR:             116165
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)

15:27 sem 

- Update to 2.6STABLE15 + 5 vendors patches.
  See http://www.squid-cache.org/Versions/v2/2.6/changesets/

PR:             ports/116093
Submitted by:   maintainer

22:11 sat 

- Honor NOPORTEXAMPLES

Approved by:    Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)

02:32 delphij 

 - Update to 2.6.STABLE14 plus three patches (see
   http://www.squid-cache.org/Versions/v2/2.6/changesets/ for details)
 - Add two new authentication helpers: DB and squid_kerb_auth
 - Add the website mirrors to the list of download sites as a last resort
   in case the distfiles do not make it to the FTP mirrors in time
 - Update the mirror server list a bit after checking with the official list
   at http://www.squid-cache.org/Download/mirrors.dyn
 - Stop handling the "WITH_DEBUG" case: bsd.port.mk handles this just fine
 - Add a new rc configuration variable "squid_pidfile" that defaults to
   $PREFIX/squid/logs/squid.pid, use this variable for $pidfile in
   the rc script and document it in the Squid default/example configuration
 - Update the ICAP-2.6-bootstrap patch to reflect changes in the Squid
   sources

Submitted by:   maintainer
PR:             ports/115453 (in followup)

01:52 delphij 

 - update to 2.6.STABLE13
 - replace sunsite.auc.dk which is no longer serving Squid distfiles
   (cf fenner's distfile survey) and replace it with ftp.belnet.be.
   The Squid mirror list seems to have vanished (temporarily) during
   their website redesign spree but it used to be listed there as
   an official Belgian mirror.
 - remove files/extra-patch-changeset_11375 which was added in
   2.6.12_1, the fix is present in 2.6.STABLE13.
 - simplify the SQUID_KQUEUE parsing; Squid-2 will automatically enable
   kqueue(2) support and the new OPTIONS parser does no longer require
   .ifndef WITHOUT_* constructs
 - remove IGNORE for the combination of SQUID_SSL and SQUID_ICAP
 - (try to) adapt the ICAP-core patch to the changes in the Squid code base
 - add a +ICAP identifier to the internal Squid version string to help the
   Squid developers in identifying patched up Squid versions (some
   reported bugs were not really Squid but rather ICAP bugs it seems)

Submitted by:   Thomas-Martin Seck (maintainer)
PR:             ports/112751

08:11 miwi 

Add a patch for Squid bug #1814, see
<http://www.squid-cache.org/bugs/show_bug.cgi?id=1814>.
The patchset is a slightly modified version of the Squid patchset 11375.

Notes:
Since this patch conflicts with the ICAP patchset and only affects
non-default configurations that have been compiled using the
WITH_SQUID_SSL configuration option, apply the patch only when this
option is enabled. Set IGNORE when both WITH_SQUID_SSL and
WITH_SQUID_ICAP are defined.

PR:             112054
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)

13:13 miwi 

- Update to 2.6.STABLE.12

PR:             110610
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)
Security:      
http://www.vuxml.org/freebsd/c27bc173-d7aa-11db-b141-0016179b2dd5.html

11:49 miwi 

- Update to 2.6.STABLE11.
- Update the ICAP client patchset to not remove a specific function call;
  this should fix timeout issues reported on the squid-dev list

PR:             110471
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)

22:47 miwi 

- Update to 2.6 stable10

PR:             110046
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)

08:42 pav 

Rename

  www/squid -> www/squid25
  www/squid26 -> www/squid

thus effectively updating www/squid to 2.6.STABLE9

PR:             ports/108562
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)
Repocopies by:  marcus

08:49 miwi 

- Add a patch for Squid bug #1857 (segfault on certain FTP URLs).
- Bump Portrevision

PR:             ports/107961
Submitted by:   Thomas-Martin Sec <tmseck@netcologne.de>

12:51 jmelo 

- Fix mastersites.

PR:             ports/105418
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)

20:36 stas 

- Fix typo in LDFLAGS (s,-I,-L,)

Approved by:    maintainer via private email

23:03 miwi 

- update pkg-descr and remove some cruft
- consistently use "Squid" when referring to the software's name
- define COMMENT a bit less chatty
- replace the progeny.com mirror with the one hosted by Vistech
- fix a wrong path in pkg-message.in (thanks to "Tuc at the Beach House")
- pass ${squid_flags} when stopping or reconfiguring Squid (ports/100510)

PR:             ports/105023
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)
Sponsored by:   FreeBSD Bug-a-thon #2

09:26 itetcu 

- integrate a vendor patch from
  <http://www.squid-cache.org/Versions/v2/2.5/bugs/>
  to correct a problem with logging that could occur in certain cases
  (Squid bug #1605)
- add some of the WWW mirrors found on
  <http://www.squid-cache.org/Mirrors/http-mirrors.html> as additional
  PATCH_SITES
  (thanks to Robert Backhaus for the initial submission)
- make the rc.d script print "Stopping squid." in the hand rolled stop command
  when shutting down, just like default rc.subr stop routine would do

PR:             ports/100056
Submitted by:   maintainer

22:00 jmelo 

- Update the list of MASTER_SITES.
- Update the icap-core patchset to CVS as of 2006-05-25.

PR:             ports/98279
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)
Approved by:    mnag (mentor)

19:55 sem 

- Integrate a vendor patch published on
  <http://www.squid-cache.org/Versions/v2/2.5/bugs/> to fix an "assertion
  failed: HttpReply.c:105: rep" error (squid bug #1606).

- Update the customlog patchset accordingly.

- Bump PORTREVISION.

PR:             ports/97066
Submitted by:   maintainer

16:11 garga 

- Update to 2.5.STABLE14
- accept 7-CURRENT's WITHOUT_NIS switch as a synonym for NO_NIS
- add a missing "/" in files/pkg-message.in
- update the ICAP core patchset to the latest CVS (2006-05-21)
- update the custom logfile patchset to the latest CVS (2006-05-21)

PR:             ports/97607
Submitted by:   maintainer

21:33 ehaupt 

- Introduce four vendor patches [1] which:

 - simplify definition of the SQUIDHOSTNAMELEN constant (squid bug #1434)
 - correct display of mime icons when visible_hostname contains only the plain
   hostname  without a domain (squid bug #1532)
 - plug a memory leak in the HTCP client code (squid bug #1553)
 - plug a memory leak in the ident processing code (squid bug #1557)

- Bump PORTREVISION

[1] http://www.squid-cache.org/Versions/v2/2.5/bugs/

PR:             97356
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)

17:11 pav 

- Update to 2.5.STABLE13
- Implement a new option WITH_SQUID_SASL_AUTH, off by default
- Update the ICAP core patchset to the latest CVS
- Extensive portlintification and cleanups

PR:             ports/94642
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)

11:45 sem 

Implemented custom log format patch, providing similar functionality
to that of Apache LogFormat and CustomLog configuration directives.
This also allows for output in multiple formats to different log files.

See http://devel.squid-cache.org/customlog/ for more information.

PR:             ports/92522
Submitted by:   Matthew Will <mwill@spingen.com>
Approved by:    maintainer

15:44 sem 

Integrate two vendor patches being published on
<http://www.squid-cache.org/Versions/v2/2.5/bugs/>:

- Fix wbinfo_group.pl to correctly work with the wbinfo command
  from samba-3.0.21 (squid bug #1472)

- Fix a crash when accessing async IO function counters via the
  cachemgr CGI in cases where squid was compiled for aufs support
  but not actually using it (squid bug #1464)

While at it, remove an unneeded patch from the ICAP core patchset.

PR:             ports/91831
Submitted by:   maintainer

13:37 jylefort 

Rename the rc script back to squid.sh, since some versions of
/etc/rc.d/localpkg only run scripts ending in .sh

PR:             ports/91387
Submitted by:   Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>, maintainer

23:38 edwin 

[Maintainer] www/squid: rc(8) related fixups

        - Fix rc(8) preamble in the squid run script
        - Use the .sh suffix only for the old style script
        - Do not refer to "rcNG" in pkg-install anymore, rcNG is the default
          rc style by now
        - Bump PORTREVISION (to mark this change and because the package content
          changes)

PR:             ports/90858
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de>

16:01 garga 

- Integrate vendor patch to fix a problem with the SMB helper when
  --enable-ntlm-fail-open was specified as an additional configuration
  option (squid bug #1022).
  The port does not enable this option by default; document it, while at it.
- Add SHA256 checksum for the squid tarball
- Integrate ICAP client support based upon the icap project's CVS repository,
  turned off by default.
  To activate it, build the port with WITH_SQUID_ICAP defined or rerun
  'make config'.
- Bump PORTREVISION

PR:             ports/90688
Submitted by:   maintainer

14:05 krion 

Update to 2.5.STABLE12

PR:             ports/88327
Submitted by:   maintainer

12:21 garga 

Integrate the following vendor patches as published on
<http://www.squid-cache.org/Versions/v2/2.5/bugs/>:

- document that tcp_outgoing_xxx works badly in combination with
  server_persistent_connections (squid bug #454)
- add more tracing in test mode of squid_ldap_auth (squid bug #1395)
- fix breakage of accel_single_host when combined with
  server_persistent_connection (squid bug #1402)
- correctly implement the CACHE_HTTP_PORT configuration directive
  (squid bug #1403)
- fix the problem that CNAME addresses were remembered with a wrong TTL
  (squid bug #1404)
- fix incorrect handling of squid-internal-dynamic/netdb in conjunction with
  httpd_accel/transparent proxies (squid bug #1410)
- properly revalidate the cache on HEAD requests (squid bug #1411)
- correct handling of Set-Cookie headers on cache refreshes (squid bug #1419)
- fix a vulnerability in the FTP parsing code (squid bug #1426)

PR:             ports/87637
Submitted by:   maintainer

18:47 mnag 

Fix smb_auth helper

PR:             86850
Pointed by:     Dean M. Phillips <dmphilli@gmail.com>
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)

12:55 garga 

Integrate a patch from
<http://www.squid-cache.org/Versions/v2/2.5/bugs/>:
- fix delay pools behaviour which was broken by the patch for squid bug #500,
  introduced in squid-2.5.10_6 (squid bug #1405)

PR:             ports/86669
Submitted by:   maintainer

17:28 garga 

- Update to 2.5-STABLE11
- Adapt the follow-XFF patches to the changes to squid's sources

PR:             ports/86472
Submitted by:   maintainer

17:39 pav 

Update the NTLM-scheme patch to version 2. The first version of the patch is
broken (cf <http://www.squid-cache.org/bugs/show_bug.cgi?id=1391>).

PR:             ports/86215
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)

20:10 pav 

- Integrate the following vendor patches:
  - LDAP helpers do not work with TLS (-Z option)
    (squid bug #1389)
  - Incorrect store dir selection debug message on objects >2G
    (squid bug #1343)
  - Enums cannot be assumed to be signed ints
    (squid bug #1343)
  - Allow leaving core dumps on Linux
    (squid bug #1335)
  - Do not let clients bypass delay pools by faking a cache hit
    (squid bug #500)
  - Fix problems regarding CONNECT requests when squid is configured with
    "pipeline_prefetch on"
  - Fix a possible DOS condition which may be triggered by certain NTLM
    authentication requests
    (squid bug #1391)
- Remove patching relevant to recently removed pf from ports option

PR:             ports/86179
Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)

23:27 pav 

- Remove dependencies on security/pf, it was removed. pf is in base since
  502106

Pointy hat to:  pav

07:57 sem 

- Fix somewhat messed up titles in FTP listings (squid bug #1220)
- FTP listings use "BASE HREF" much more than necessary (squid bug #1204)
- Cleanups for 64bit architectures (squid bug #1316)
- Allow wb_ntlm_auth to run more silent (squid bug #518)
- Add a new 'mail_program' configuration option
- Fix a possible denial of service condition regarding sslConnectTimeout
  (squid bug #1355, Secunia Advisory SA16674)
- Avoid a possible assertion failure in StatHist.c (squid bug #1325)
- Fix issues regarding chroot'ed installations on 'squid -k reconfigure'
  (squid bug #1331)
- Make URLs in error pages more consistent and less confusing (squid bug #1342)
- Fix compilation when _FORTIFY_SOURCE is defined (squid bug #1344)
- Fix handling of unexpected 250 replies from certain odd FTP servers
  (squid bug #1348)
- Add Greek error pages (squid bug #1351)
- Fix a possible denial of service condition with regards to aborted requests
  (squid bug #1368)
- Fix the -U option of squid_ldap_auth (squid bug #1370)
- Fix the output of the SNMP cacheClientTable for IP adresses that consist of
  16 digits (squid bug #1375)
- Make the From: field of mails sent from squid configurable to avoid
  mails getting lost due to spam filtering (squid bug #1380)

PR:             ports/85688
Submitted by:   maintainer