File squid-beta.changes of Package squid-beta

Mon Mar 11 16:02:07 CET 2010 -

- [bnc#576087] squid_dns_dos_bnc576087.patch fixes dns dos vuln.
- [bnc#525774] squid-3.0.PRE6-b9070_b9074_b9074_b9081_b9082_bnc525774.patch
  fixes CVE-2009-2621 and CVE-2009-2622 (missing/wrong bounds checks
  in incomplete requests or large headers).
- [bnc#577347] squid-3.0.PRE6-bug2541-bnc577347.patch fixes
  CVE-2009-2855 denial of service with comma delimited auth headers

Wed Aug 20 15:49:06 CEST 2008 -

- fixed init script

Thu May  8 15:48:46 CEST 2008 -

- Use autoreconf.

Wed Jan 16 11:16:16 CET 2008 -

- fixed build (compiler) errors

Wed Dec 12 18:08:14 CET 2007 -

- BuildRequires doesn't need openldap2 anymore. fixed.

Tue Nov 20 10:37:54 CET 2007 -

- added squid3 to Conflicts: 

Tue Nov 13 11:52:44 CET 2007 -

- fixed gcc-4.3 "-Wall -Werror" issues

Wed Jul  4 16:32:17 CEST 2007 -

- removed outdated pconn.h (bugzilla#288175)
- injected latest patches:
  * Squid hangs occasionally when using DNS search paths
  * digest_edir_auth helper, using novell eDirectory universal
  * Add missing helpers/digest_auth/eDirectory/.cvsignore
  * ufsdump needs a bit of dependencies or parallell builds may
  * The last commit message is missing the following
    important change:
  * Try to revive a suspended service
  * Bypass failures of optional ICAP services.
  * Ignore comm_write notifications if the newly added
  * Added icap_connect_timeout and icap_io_timeout squid.conf
    options to control
  * Made AsyncJob::callException() virtual so that kids can
    customize exception
  * Do not retry server transactions aborted due to request body
  * Added debugging and polished comments.
  * Tell FwdState that an unregistered and failed Server is
  * Double "squid -k shutdown" makes Squid restart again
  * HTTP/0.9 responses support
  * Make ACLChecklist::matchAclListSlow a private member function.
    Not part of the public API
- fixed compilation issues on various architectures

Thu Jun 14 16:12:56 CEST 2007 -

- update to version 3.0PRE6:
  * Preparing to release Squid-3.0.PRE6
  * ICAPModXact needs to use the new AUTHUSERREQUESTLOCK() macro
  * Fixed NULL pointer passed to xstrdup in AuthUser::username().
  * Bug #1951: NTLM authentication does not work
  * Fixed assertion at src/
  * Fixed free() errors in AuthUser::~AuthUser()
  * Fixed NULL pointer bug in new version of
  * Port of 2.6/changesets/11280.patch
  * Removed auth_user_request_t typedef. Just use AuthUserRequest.
  * Removed auth_user_request_t typedef. Just use AuthUserRequest.
  * Removed unused ICAPClientStream code.
  * Bug #1819 fix: retry the ICAP transaction when its pconn fails.
  * Two unrelated changes: A failed ICAP RESPMOD transaction could
  * Make sure the entire response body gets to ICAP, even when the
  * Bug #1819 fix in three parts: Retry failed ICAP pconns.
  * If a consumer leaves without consuming anything, do not tell
  * Added cbdataProtected parameter to control the last eventAdd
  * Updated NTLM/Negotiate test clients, explaining a bit of their
  * Added HTTP status code 307 (Temporary Redirect) to
  * Bug #1752: cbdata problems with storeRegisterAbort()
  * FtpState should not call StoreEntry::unregisterAbort()
  * Bug #1950: cachemgr requests for auth helper stats can crash
  * Bug #1950: cachemgr requests for auth helper stats can crash
  * Bug #1688: assertion when Squid filters HTTP headers
  * Add HTTP status codes 416 and 417 to the list that Squid knows
  * FTP will no longer send REST command if offset exceeds size.
  * Fixed "spec->length >= 0" assertion for FTP request with range
  * Add HTTP status codes 416 and 417 to the list that Squid knows
  * Removed repeated assertion from httpHdrRangeRespSpecPackInto
  * Avoid memory leaks when submitting a NULL helper.
  * Removed casts from numeric types in debugs() statements.
  * Fixed buffer overflow bug in
  * Compile error: the address of `void sigusr2_handle(int)', will
    always evaluate as `true'
  * The hex/dec I/O format operators is in the std namespace
  * Convert debug statements to debugs
  * Adding a comment that tests/testUfs will fail when 'heap' is
    the only
  * Change diskd default DebugLevel to 0
  * Bug #1940: assertion failed:
  * Amos Jeffries' tidyup of the debugging sections.
  * unit testing fix for tests/
  * Fix tests/testCoss; storeSwapOut is now StoreEntry::swapOut
  * Fix 'unknown http status code in reply' for status 408 replies
  * SQUID_HELPER define for including squid.h from helpers
  * Reserver the oa and ot logformat tags for outgoing address/tos.
  * Fix for compiling src/ with kqueue and epoll.
  * Fix 'make check' for --disable-unlinkd
  * Fixed "ftpReadTransferDone: Got code 426 after reading data"
  * Fix "store_status == STORE_PENDING" assertion in FTP with large
  * Fix compile-time issue related to removing getRaw() uses.
  * Fix coredump bug when auth header contains invalid characters
  * Convert most of the debug() to debugs()'s; just to see how
    difficult it is.
  * Bugfix from StoreEntry method conversion: hashInsert is now a
  * Converted a more StoreEntry functions to class methods:
  * Fix for --enable-cpu-profiling mode. Do not change PROF_start()
  * Converted a few more StoreEntry functions to class methods:
  * Changed storeAbort() into StoreEntry::abort()
  * Removed some uses of RefCount::getRaw()
  * Removed some uses of RefCount::getRaw()
  * Removed some uses of RefCount::getRaw()
  * Removed a bunch of code marked UNUSED_CODE, OLD, and
  * Removing storeLowestMemReaderOffset() as unused.
  * fix tests/testNull after storeSwapOut() becaome
  * Fix Squid <-> pinger communication.
  * Fix NULL pointer bug when using netdb and test_reachability.
  * Short StoreEntry::swapOut() does not compile when
  * Converted contentLen() to a StoreEntry class method.
  * Converted three functions to StoreEntry class
  * unit testing fix for tests/
  * unit testing fix for tests/
  * Imported updated WCCP v2 draft from the authors
  * Converted contentLen() to a StoreEntry class method.
  * Converted objectLen() to a StoreEntry class method.
  * Rename cache_dir option read-only to no-store
  * Removed FtpStateData::rest_att because is not used anywhere
  * Add source code comments for retry-related functions in
  * Bug #1935 fix: Do not retry a request after sending [some of]
    its body.
  * Remove cppunit from the Squid distribution
  * Convert Czech/ERR_SHUTTING_DOWN error file from DOS to Unix
    text format.
  * Convert Traditional Chinese error files from DOS to Unix text
  * Bug #1630: TPROXY needs porting from 2.6 to 3.x
  * Added 'store_log_tags' cache manager page. It reports counts of
    tags that
  * Added 'service_times' cachemgr page to report service time
  * Adding a perl script that can send HTCP queries
  * - Some test cases were missing source, causing
    "make check"
  * The return value of comm_udp_recvfrom() must be stored into a
  * Reverted revision 1.442 change that was supposed to fix
  * The --enable-truncate and USE_TRUNCATE code has been removed.
  * Bug #1475: Filedescriptor limit does not need to be hardcoded
    for kqueue/epoll
  * fixed cbdata "cookie" assertion. peer_digest was unlocking
    peer, but did
  * minor debugging fix. There was newline in <<
  * Fixed SEGV during reconfigure due to NULL pointer bug in
  * A fix for the !flags.write_draining assertion. Due to the way
  * Comment out some debugging messages that are printed before
  * solve some strange negative integer to double conversion bug by
  * Fixed disk file leak. UFS-based disk files were not always
  * This change should fix bug #1829.
  * Added reporting of swap and memory usage (%used, %free) to
    cachemgr info
  * This change should fix bug #1837: Segfault on configuration
  * This change should fix bug #1898: "assertion failed:"
  * This change should fix bug #1637.
  * Fix some HttpMsg lock counting bugs in HTCP.
  * backout an assertion mistakenly added by last commit
  * cache.log was being created as root, then would later fail to
  * Fixed parsing diskd cache_dir Q1 and Q2 options
  * Since I changed the semantics of store_dirs_rebuilding
    yesterday (to match
  * - Bug #1356: Close open DNS sockets when doing idnsShutdown.
    Leaving them
  * store_dirs_rebuilding should be initialized to 1
  * Forward port of 2.x changes from Duane:
  * Cosmetic fix: added missing newline in WCCPv2 configuration
  * Bug #1931: allow_underscore directive not available in Squid
  * Fixed build error on Windows
  * Always use xisxxxx() Squid defined macros instead of ctype
  * - | ./cleanpatch
  * - Added Axel Westerhold for his ICAP patches.
  * - ICAP-unrelated improvements from the squid3-icap branch on SF
  * - Replaced BodyReader with BodyPipe. BodyReader was a
  * - Added basic support for asynchronous calls. The calls are
  * - Support printing refcounted pointers to ostreams. When
  * IPV6 DNS and address formats RFCs
  * Subversion request methods
  * Bug #1908: store*DirRebuildFromSwapLog() ignores some
    SWAP_LOG_DEL entries
  * Remove more traces of wais
  * Kill the psuedo-support for wais. Was never really implemented.
  * automake no longer recommends mkinstalldirs. Remove it from the
  * draft-jaganathan-kerberos-http has been published as RFC4559
  * Bug #1420: 302 responses with an Expires header is always
  * Bug #1787: Objects stuck in cache if origin server clock in
  * Clean up relations between TCP probing and DNS checks of peers
    with no known addresses.
  * Need to initialize neighbors even if not using ICP.
  * minor printf typo "%ud" should be "%u"
  * Two versions of DiskdIOStrategy::send() had a lot of duplicated
  * Bug #1865: deny_info redirection with authentication related
  * unlinkdClose() should be called after (not before)
  * 2.6.STABLE is in branch SQUID_2_6
  * Squid-2.6 branched from Squid-2 HEAD
  * Bug #1873: authenticateNTLMFixErrorHeader: state 4.
  * Bug #1828: squid.conf docutemtation error for proxy_auth digest
  * Specifi LDADD for tcp-banger2 as it doesn't have much
  * Cleanup of AuthUserRequest->lastReply to keep ACL_AUTHENTICATED
  * Move the AuthUser ip_list management to AuthUser where it
  * Bug #1792: max_user_ip not working with ntlm_auth
  * Bug #1857: Segmentation fault when accessing certain ftp://
  * Bug #1858: digest_ldap_auth had some remains of old hash format
  * Accept large dates >2^31. Seen for example in the Google logo.
  * Fix the WCCPv2 mask assignment code to not crash as the value
    assignments are built.
  * Windows port: Fix build errors when using latest MinGW
  * Windows port: Fixed build error on MinGW using SSL support
  * Added .cvsignore and config.test files to POP3 helper.
  * Bug #1584: Unable to register with multiple WCCP2 routers
  * Bug #1840: Disable digest and netdb queries to multicast peers
  * Bug #439: Multicast ICP peering is unstable and considers most
    peers dead
  * Bug #1853: Support for ARP ACL on NetBSD
  * Bug #1853: Support for ARP ACL on NetBSD
  * Kill the obsolete -V command line option. Not working, and not
    in line
  * wccp2_router config fixes. Should not need to specify the port.
  * Build the POP3 helper Makefile
  * Bug #1839: Cosmetic debug message cleanup in
  * Simple POP3 basic auth helper querying a POP3 server
  * Bug #1832: Error building squid-2.6.STABLE5 using
  * Remove old/undefined variable from the profiling code.
  * Add profiling points into the fd code to note how long is being
    spent in syscalls.
  * Fix off-by-one in the kqueue event assembly code; remove silly
    extra comments from when I was <20..
  * Add in explicit typecast to silence gcc 4.x printf warnings
    under FreeBSD
  * High-res profiling changes - nested profiling, recursive
    profiling and profiling points
  * Add support for the weight= parameter to round-robin peers
  * Bug #1823: ntlm_auth/SMB/ntlm_auth.c fails to compile on some
    platforms due to a syntax error
  * Bug #1805: assertion failed: StatHist.c:195: "D[i] >= 0"
  * Remove extra newline in redirect message sent by deny_info
    http://... aclname
  * Minor adjustment of the release process to match how the
    changesets is generated
  * Add back the -CVS signature on the version number in CVS
- added the following official patches for this release:
  * Kill old stale code dealing with deferred reads and delay
  * Mark kqueue as experimental
  * Clean up configure magics selecting which comm loop to use,
    promote epoll to stable
  * Bug #1939: --enable-epoll causes SSL to occationally hang
  * Restore the code making helpers run in their own sessions.
  * Database auth helper using Perl DBI
  * Bug #1983: Update the read timeout when reading from an CONNECT
  * Bug #1983: Update the read timeout when reading from an CONNECT
  * Rename more SSL references to Tunnel in
  * Make identify itself as tunnel and not ssl
  * Bug #1976 fix: Do not check OPTIONS response specifics if the
  * Rollback String API changes. Delayed to 3.1.
  * Added 'clientside_tos' directive and feature.
  * Adjust refresh_pattern min-age to make 0 mean 0, not 1 second
  * URI-escape using the recommended upper case
  * Kill the redundant url_convert_hex function.
  * Equivalent to rfc1738_unescape
  * Back out unintentional commit of unrelated changes
  * Fix the cppunit tests to use setUp() rather than an static
    constructor to
  * Do not reuse a persistent ICAP connection if
    icap_persistent_connections in
  * The ICAP minimum for service_revival_delay and other OPTIONS
    retries is
  * Bug #1966 fix: Use rounded String MemPool sizes in the
    hard-coded pool
  * Bug #1967 fix: avoid new strncmp() that silently converts char*
    buffers into
  * Removed hopefully unused SIZEOF_CHUNK macro in preparation for
    bug #1966 fix.
  * %URI external_acl_type tag for referencing the complete URI
  * error: cannot convert 'unsigned int*' to
    'size_t*' for argument '2' to 'void* memAllocString(size_t, si
  * Load configure defines from src/cf_gen_defines
  * Fix 1-off bug left after strnlen bug removal.
  * Implement FreeBSD ipfw based ip transparent interception using
  * Haren SqStrign copy-constructor.
  * Fix old bug: append sometimes does not fully copy a string if
    \0 exists in source
  * Really remove and String.cci
  * Convert three old known points of buffer voilation to use
    protected code.
  * Make string handle append (NULL) gracefully instead of core
  * Fix: Squid does not compile with --enable-storeio=coss
  * Fixed assertion related to TCP_RESET feature
  * Added some debugging to ClientHttpRequest::doCallouts()
  * Fix compile errors slipped into ICAP on string API patch.
  * SqString core apparently not automatically added to cvs by
  * Add string API layer for better string handling.
  * Add cfgman to Squid-3 snapshot generation
  * Imported -> HTML script from Squid-2.
  * Fix reply header log format %{header}<h. Was logging the
    request headers...
  * logformat %rp logging the URL-Path only (excluding hostname)
  * More magic to have the configuration manual published
  * Move the delay pool parameters up before the MISC section (was
    in the middle of it..)
  * Update cfgman directory when making snapshots
  * Add md5 sums to snapshots
  * Bug #1957 fix: Close a persistent ICAP connection if we have to
    open a
  * Fixed "if (srv->flags.reserved = S_HELPER_FREE)" typo, assuming
    it should have
  * Replaced one more mem-> with direct mem_obj-> reference.

Thu May 24 16:11:19 CEST 2007 -

- moved cachemgr.cgi to %{_libdir}/squid to make rpmlint happy
- removed errors directory from %_docdir to make rpmlint happy

Mon Apr 30 17:00:15 CEST 2007 -

- added libexpat-devel to buildrequires 

Tue Feb 27 20:09:47 CET 2007 -

- fixed ulimit setting: maxfd is now changed as official FAQ suggests

Mon Jan 22 17:12:20 CET 2007 -

- removed duplicate PreReq from specfile (bugzilla#236285)

Thu Jan 18 12:26:43 CET 2007 -

- applied permissions handling fix from squid package to get package
  building again

Tue Dec 12 12:28:41 CET 2006 -

- upgrade to version 3.0PRE5 with many fixes/changes:
  * Update Changelog in preparation for the PRE release.
  * PRE4-CVS -> PRE5 preparation
  * Bug #1799: Harmless 1 byte buffer overflow on long hostnames in /etc/
  * Add client source port logformat tag >p
  * Bug #1817: Assertion failure assert(buflen >= copy_sz) in htcp.c
  * Fix make check after changes for Bugs #1719 and #1695
  * Add support for wccpv2 mask assignment
  * - Many ICAP fixes from Alex Rousskov accumulated on the
  * Windows port: Correctly identify Windows Vista and Windows Server
  * Bug #1778: Build error on Irix using SGI MipsPRO compiler
  * Bug #1778: Build error on Irix using SGI MipsPRO compiler
  * Alex reports getting coredumps (with high debugging) at process
  * Need to #include helper.h in for --disable-internal-dns
  * bugfix: In clientProcessRequest(), the call to connNoteUseOfBuffer() was
  * minor nit: format intro comments and GPL text to fit within 80 columns
  * Bug #1778: Build error on Irix using SGI MipsPRO compiler
  * Bug #1778: Build error on Irix using SGI MipsPRO compiler
  * Removing port 563 from the default SSL_ports and Safe_ports ACLs
  * Bug #1794: Allow 00:00-24:00 time specifications even if redundant
  * Bug #1775: cachemgr storedir segfault with cache_dir null
  * Forward port of patches for Bug #1719 and Bug #1695 from 2.6.
  * Fix more stupid off-by-one errors parsing the request line.
  * Include missing profiling defines.
  * Remove another instance of temporary string abuse.
  * Reduce a couple of obvious string copies by using String references and
    filling them.
  * Only enforce HTTP version if we parsed a full request line.
  * Don't try parsing a blank request!
  * Add in a missing \n for the Squid access log format routine.
  * Fix/Add request-line parser debugging; fix bug with pipelined connection
  * Fix an off-by-one bug in the UFS code. Thanks go to valgrind!
  * Bug #1782: Memory leak in ncsa_auth on password changes
  * Slightly change the request line demarcation logic a little in an
    attempt to find
  * Add in some more refresh-related debugging
  * Updated .cvsignore file
  * Bug #1784: access_log syslog results in blanks syslog lines between
    every access log entry.
  * Add profiling points for the string library.
  * Add in profiling points for header parsing and cleaning.
  * Add more profiling points
  * Create "inlined" Macro versions of the offset functions with the new
    request parser
  * Add profiling for the new request line parser
  * Replace the client-side request line parser
  * Various changes to break out the request parsing state and remove extra
  * Back out other unrelated change
  * Link Squid SNMP library as a .a library directly to avoid conflicts with
  * Do some small changes to the HTTP parser and client side code to
    (eventually) save on strlen() and similar calls
  * tcp-banger2 support for status validation and custom HTTP headers
  * Add in more profiling points to identify CPU usage
  * Add in a missing check for whether the new dlink-based pending comm
    callbacks are ready
  * Bug #1769: near-hit and filedescriptor usage missing in SNMP MIB
  * Bug #1774: ncsa_auth support for cramfs timestamps
  * ICAP cleanup of some cbdataReference misunderstanding.
  * Clean up cbdataReference() use to comply with the API and make GCC happy
  * Modify StoreEntry::write() probe to not overlap but still give accurate
    call numbers
  * Add in more profiling points
  * Add profiling points for Membuf::grow, ::append and ::consume
  * Additional hi-res probes
  * Bypass the expensive check to the allocator getStats() when obtaining
    inuse data
  * Fix a forgotten change during recent comm layer rework
  * First part of a comm layer rework
  * Un-astyle a flags definition
  * Bug #1768: Redundant DNS PTR lookups
  * Bug #1760: FTP related memory leak
  * Bug #1758: HEAD on ftp:// URLs always returned 200 OK.
  * Bug #1770: wccp2_weight directive
  * and must be compiled only on MinGW
  * Portability fix: use memset() instead of deprecated bzero()
  * Fix a typo in recent commit
  * Fix astyle munging of flags.
  * Dist test headers for make check
  * Convert a debug() to debugs() to make GCC happy about formatting
  * Need to dist PeerDigest.h
  * Fix make check on MinGW
  * Add missing files from bugfix for COSS config-failures.
  * Avoid a string copy/reference operation in a reasonably critical path in
    the Header code
  * Fix bug 1218 by adding tests for the io engine of coss and ufs swapdirs
    after parsing completes, and providing a heurist
  * On MinGW store tests need
  * Windows port: split Windows service code into, allowing
    correct execution of make check
  * Windows port: remove obsolete break from command line functionality
  * Fix a bug which resulted in objects being released after forwarding was
  * add in some more debugging to
  * testURL needs GNUregex library on MinGW
  * Fix make dist error
  * Fix build error on MinGW when using --enable-icmp configure option
  * Bug #1759: cachemgr.cgi attempts to write to file system root directory
    under MSWIN builds
  * reverse last patch - i missed that the fd_set includes the
  * Bug #1579, 1475 - fix unlinkd to reduce the number of fd_set references
  * Rework the transaction completion/aborting in the ftp code to fix bug
  * Updated Windows related copyrigth notice
  * Bug #1754: BodyReader was reading too much data from the socket buffer.
  * Windows port: Added Windows threads support to DiskThreads Disk module
  * Windows port: Added Windows Overlapped I/O support to AIO Disk module
  * Add iiNet to the squid-3 sponsors list. Thanks iiNet!
  * Syntax glue to get the MemPool API back in shape.
  * Fix typo in
  * Windows port: merged Windows native IPC support
  * Forgotten to adjust the pointer type ... :-(
  * Remove a no more needed #ifdef _SQUID_MSWIN_ from structs.h
  * Windows port: merged Windows native IPC support
  * Windows port: merged Windows native IPC support
  * Fix wrong debug section in
  * Update MemPoolTest for MemPool changes.
  * skip memory cleanups on shutdown even if built in leak check mode.
  * Correctly free HttpHeaderFieldInfo array
  * silence gcc about some cbdata const violations
  * (Tres Seaver)Fix bug 975. Ths may cause memory leaks, though running
    1000 requests through showed no sign of it.
  * Cleanup of some MemAllocatorProxy abuse. This is a MemPool internal
  * Bugfix 1750 - support tunnelling of RTSP and other protocols that abuse
    HTTP by sending just the headers and then waitin
  * Valgrind support. Mainly rearranging of cbdata to make malloc debugging
  * Fix library link order in tests to more closely match what is used for
    the main
  * Fix build error of testEventLoop using gcc 4.1
  * Updated .cvsignore files
  * Portability fix: check if ip_user_check can be build
  * Windows port: Use a more explicative message during configure
  * Windows port: Specific OpenSSL trick for FD<=>socket equivalence
  * Windows port: Tricks for fd<=> socket equivalence need the usage of a
    C++ namespace
  * Windows port: Updated for MinGW support
  * Windows port: Added MinGW support to
  * Windows port: Allow unlinkd to work on MinGW
  * Windows port: Allow build on MinGW (typecasting and linking)
  * Windows port: merge remaining MinGW configure "glue"
  * Windows port: add lib/win32lib.c. This add the emulation of some
  * Windows port: Display also the Windows handle in the FD stats.
  * Windows port: add squid_mswin.h. This add FD<=>socket equivalence and
    other tricks.
  * Windows port: Redirect during early service startup stderr to a file.
  * Windows port: increase number of FDs to the maximum supported from CRT
  * Fix warning on Windows about conflicting declaration of ev_entry
  * Add a missing function to make kqueue compile again.
  * Break checkTimeouts() out of each of the comm_select() routines, fixing
    kqueue's in the process
  * Fix bug 1642: FTP assertion/blank page on authentication error
  * Bug #1716: Squid 2.6-STABLE2 does not compile with newer versions of
  * Bug #1598: start_announce cannot be disabled
  * Fix bug 772, by reading aborted data from connections when there is a
    pending POST on the connection. This is still lack
  * (Tres Seaver) Fix bug 1749 - make check errors from gcc 3.5.5.
  * Bugzilla bug 1068: Check object pointer isn't NULL before calling
  * Add an extra assert to HttpHeader::addEntry as extra insurance for bug
  * Resurrect the old API of eventDelete(func, NULL) deleting all events
    with that callback
  * Fix bug #1568 - the assertion on the String having a buffer does not fit
  * Address bug 951 by changing the assert to a debug statement. This may
  * Bug #1744: squid-2.6.STABLE3 - fakeauth_auth.core
  * Windows port: Disable printf formatting check on native Windows.
  * Windows port: Allow safe multithreaded usage of debug()
  * Windows port: fix another missing USE_SELECT_WIN32 in squid.h
  * Windows port: missing syscalls.selects in stats when USE_SELECT_WIN32 is
  * Fix another harmless fake_auth compiler warning on gcc 4.1.1 x86
  * Fix some harmless fake_auth 64-bit compiler warnings
  * Bug #1706: Squid time acl accepts invalid time range.
  * Bug #1708: Ports in ACL accepts characters and out of range
  * Bug #1635: Merge in HTCP updates from 2.6.
  * Bug #212: variable %i always
  * Bug #1602: Need to implement TCP fallback on truncated (large) DNS
  * Fix Squid crash when using %a in ERR_INVALID_REQ and ERR_INVALID_URL
    error messages.
  * Split out cbdata fully, it now is an optional include and no Init call
    is needed.
  * Handle very large DNS responses gracefully.
  * Fixed a build error on Solaris 9 x86 (int format error)
  * Added check for 8 bit signed and unsigned integers
  * Fix typo in Steven's name
  * Fix an harmless compiler warning on Irix.
  * Portability fix: use _PATH_DEVNULL instead of "/dev/null"
  * Bugfix the event loop idle detection - it was broken, and correct the
    store fs
  * Bug #1736: Missing Italian translation of ERR_TOO_BIG error page
  * Bug #582: fake_auth ntlmGetString: bad ascii: ffffffb9 followed by
    FATAL: authenticateNTLMHandleReply: called with no re
  * Bug #1733: Small translation error to Portuguese ERR_CANNOT_FORWARD
  * Bug #1040: The bodge on OS/2 for _res is wrong
  * Add AsyncEngine and TimeEngine support to the EventLoop, allowing it to
  * Create an explicit EventLoop class which can be used to run an event
  * BUGFIX: eventRun of an event with non-cbdata callback argument used a
    random callback value.
  * Bug #1714: cache_dir coss line not shown correctly under cachemgr.cgi
  * Remove unneeded duplication of RegexData logic from ACLHTTPHeaderData
  * Bug #1718: warning: the address of 'strerror_buf' will always evaluate
    as 'true'
  * Bug #1716: Fails to compile with OpenSSL 0.9.7j
  * wccp2_rebuild_wait directive to delay registering with WCCP until the
  * extend getpwnam helper to also support shadow password systems
  * Forward port of latest 2.6 WCCPv2 changes:
  * ARP acl support for OpenBSD, code common with the FreeBSD
  * Bug #1702: Squid silently accepts defining acl's with too long name,
  * Bug #1694: Assertion failure in mgr:config if using access_log_format %
  * Bug #1691: multicast peering issues
  * Corrected bad debug sections
  * Bug #1381: assertion failed: "c->locks < 65535"
  * Bug #991: squid should fallback from resolv.conf to localhost
  * Stop making Squid-2.5 snapshots. The squid-2.5 tree is closed.
  * Windows arp ACL fixes by Gennadiy Tsarenkov:
  * make check needs
  * Added WCCPv2 contributors and changelog entry
  * Bug #1674: Fails to build on S/390, MIPS, Sparc: no previous prototype
    for 'byteSwap'
  * Fixed wrong debug section
  * Added to the redirectors interface the support for SSL client
  * Bug #1653: Username info not logged into Cachemgr active_requests
  * Fixed wrong debug section
  * Fix wrong strsep() C++ prototype
  * Ran indent (again)
  * Ran indent
  * strsep() is not available on any platform, this add an own
  * Bug #1646: Memory corruption when using client-side SSL certificates
  * strsep() is not available on any platform, this add an own
  * Forward port of WCCPv2 support and latest WCCPv1 changes from 2.6.
  * Bug #1620: http_reply_access denied replies casuses assertion failure
  * ICAP bug: request satisfaction mode was not working. The presence of
  * cosmetic bugfix: need a space between request method and URL in
  * Automatically rotate the changesets when making a release
  * Merged current mkrelease script from squid-2. The Squid-3 version

Sat Jul  8 21:20:56 CEST 2006 -

- no more man8 files to remove  

Wed Jun 21 18:03:26 CEST 2006 -

- upgrade to version 3.0.PRE4

Thu Feb  9 11:59:35 CET 2006 -

- removed/replaced non-GPL code with GPL compliant (bugzilla#143472)

Wed Jan 25 21:41:47 CET 2006 -

- converted neededforbuild to BuildRequires

Mon Jan 16 16:15:24 CET 2006 -

- update to snapshot 20060116
- fixed various gcc/glibc problems
- removed already included patches

Thu Dec 15 16:51:18 CET 2005 -

- update to snapshot 20051212
- adapted old patches
- added missing pconn.h

Thu Nov 24 14:30:56 CET 2005 -

- update to snapshot 20051030
- adapted old patches
- fixed gcc4.1 warning errors
- adapted to compile with openldap again
- fixed 64bit issue

Wed Aug  3 15:15:42 CEST 2005 -

- finally the snapshot 20050715 builds with gcc4, pie, etc.
- adapted all the usual stuff to get it work

Wed Apr 20 21:32:15 CEST 2005 -

- small show case on what has to change for gcc4

Sat Jan 15 21:18:36 CET 2005 -

- Use <owner>:<group> in permissions file.

Mon Nov 15 14:57:05 CET 2004 -

- Use common-* PAM config files

Fri Jan 16 13:08:58 CET 2004 -

- Add pam-devel to neededforbuild

Wed Nov  5 17:49:19 CET 2003 -

- package according to and add run_permissions

Mon Sep  1 17:36:53 CEST 2003 -

- fixed smb_auth (bugzilla#28260)

Mon Sep  1 15:56:13 CEST 2003 -

- specfile: restart of daemon on rpm package update (bugzilla#29036)
- try-restart needs rc_status for test and not rc_stop (bugzilla#26937)
Tue Aug 26 13:38:28 CEST 2003 -

- new fixes for the S390 arch

Mon Aug 25 17:09:40 CEST 2003 -

- updated to latest version: squid-3.0-PRE3

Tue Aug 12 16:38:34 CEST 2003 -

- compiler patch works also for ia64, which doesnt have a /usr/lib64

Mon Aug 11 18:13:25 CEST 2003 -

- compiler patches for various architectures

Wed Jul 30 01:56:59 CEST 2003 -

- replace invalid chown *.* syntax with *:*

Fri Jul 25 19:08:11 CEST 2003 -

- updated to 20030725 branch
- known problems: version might not compile on other architectures than ix86

Thu Mar  6 16:36:26 CET 2003 -

- Remove cyrus-sasl from neededforbuild

Tue Feb 18 18:45:15 CET 2003 -

- added and updated /etc/permissions.d/squid (bugzilla#23752)

Mon Feb 17 17:41:24 CET 2003 -

- ix86 and ppc patches

Thu Feb 13 18:19:36 CET 2003 -

- added ppc64 patch
- added s390 patch (which hopefully fixes ppc and i386 too)

Wed Feb 12 11:43:21 CET 2003 -

- fixed 64bit compile problems (added a lot of correct definitions, %ld, ...)

Tue Feb 11 19:52:12 CET 2003 -

- now configure, installation and filelist looks good

Mon Feb 10 16:28:14 CET 2003 -

- first compile 3.0-DEVEL version (before feature freeze)
  "configure" options have still to be optimizied. :)

Mon Nov 11 11:26:13 CET 2002 -

- changed neededforbuild <sp> to <opensp>
- changed neededforbuild <sp-devel> to <>

Mon Sep 23 14:06:58 CEST 2002 -

- fixed dependency typo 

Wed Sep 18 13:17:41 CEST 2002 -

- fixed path of mime.conf.default

Tue Sep 17 16:32:19 CEST 2002 -

- update to 2.5.PRE13
- merged in changes from stable tree (e.g. Requires:, logrotate, %attr, ...)

Sun Jul 14 18:03:00 CEST 2002 -

- update to 2.5.PRE8
- auth-helper NTLMSSP seems to be in the SMB auth module now
- rc.squid INIT section: use X-UnitedLinux-Should-Start
- use the same macro names as in the other squid package
- use %defatt

Wed Jul  3 00:20:36 CEST 2002 -

- create squid user 

Tue Mar 26 11:47:45 CET 2002 -

- security fix (compressed DNS reply problems)

Mon Feb 25 13:45:56 CET 2002 -

- disable HTCP support (upon recommendation of Henrik Nordstrom
  <>). The implementation lacks access control
  and logging, and does not add any value to cache peering compared
  to ICP.

Sun Feb 24 11:23:40 CET 2002 -

- update to 2.5.PRE4. For the Changelog see
- add security patch that fixes a coredump on ftp:// style URLs
- make file locations more FHS conform:
  /var/squid/cache --> /var/cache/squid
  /var/squid/logs --> /var/log/squid
- fix missing ] in %post
- drop outdated README.SuSE and remove a couple of files from
  %files that no longer exist

Sat Feb  2 19:36:29 CET 2002 -

- replace GmbH --> AG

Fri Dec 14 16:38:12 CET 2001 -

- removed START_SQUID 

Wed Nov 21 01:01:33 CET 2001 -

- new spec for new squid 2.5 devel version
Tue Sep  4 13:33:23 CEST 2001 -

- specfile fix: install /etc/squid.conf with noreplace [Bug #10023]

Wed Aug 29 11:23:09 CEST 2001 -

- update to squid-2.4.STABLE2

Fri Aug 24 14:26:07 CEST 2001 -

- removed /lib/security path from pam.d config file 

Thu Aug 16 22:52:33 CEST 2001 -

- initscript and textfiles moved away from squid-2.4.STABLE1.dif

Mon Aug 13 15:51:56 CEST 2001 -

- changed neededforbuild <sp_libs> to <sp-devel>

Thu May 10 15:42:54 CEST 2001 -

- initscript fix: don't start squid in runlevel 2 [bug #7956] 

Wed May  9 20:33:45 CEST 2001 -

- repacked the two tar archives with bzip2 (xzip)

Thu Apr 19 11:02:32 CEST 2001 -

- new patch from applied

Tue Apr 17 16:40:37 CEST 2001 -

- initscript fix: check for running squid before creating cache-dir

Thu Apr  5 20:02:10 CEST 2001 -

- patches from applied

Thu Apr  5 14:46:24 CEST 2001 -

- squid.conf: allow localhost access to squid by default
- initscript: ulimit -n 4096 added to increase filedescriptors
- cachemgr.cgi moved to doc/scripts
- build of Programming-Guide removed from specfile

Fri Mar 30 19:18:00 CEST 2001 -

- initscript-fix: $named added for required startup

Wed Mar 28 17:36:43 CEST 2001 -

- new initscript more LSB conform

Thu Mar 22 10:58:24 CET 2001 -

- update to squid-2.4.STABLE1

Mon Mar 19 11:49:56 CET 2001 -

- update to squid-2.4.PRE-STABLE2

Fri Mar 16 11:11:47 CET 2001 -

- Remove bogus requires

Thu Mar 15 17:01:56 CET 2001 -

- changed for openldap2 

Thu Mar 15 01:08:35 CET 2001 -

- fixed neededforbuild for openldap

Tue Feb 13 17:53:04 CET 2001 -

- pam_auth: permissions changed to sgid shadow

Mon Jan 22 12:49:24 CET 2001 -

- initial package squid-2.4 (version squid-2.4.PRE-STABLE)