cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
97,363 Commits 1 Branch 0 Tags
Commit Graph

244 Commits

Author SHA1 Message Date
sthen
192dd39297 Reduce warning spam during build now that we have le*toh. From sven falempin. 2014-12-09 21:44:29 +00:00
ajacoutot
d6aa8845b4 Bump daemon_timeout from 31 to 35. Default squid shutdown timeout is 30s, 
but we may be a bit slow, so give us some room.

ok sthen@ (maintainer)
 2014-11-17 14:02:19 +00:00
sthen
a5edcc6e38 update to squid 3.4.9 2014-11-07 01:00:01 +00:00
sthen
1a0439b56b update to squid-3.4.8, fix off by one in SNMP subsystem 
3.4.8 also fixes an issue with the standalone pinger process as described
in http://www.openwall.com/lists/oss-security/2014/09/16/6, but we don't have
that enabled in the port at present.
 2014-09-16 15:29:30 +00:00
sthen
546337cb98 SECURITY update to squid 3.4.7 - clients can perform a DoS due to 
incorrect input validation in range checking.

http://www.squid-cache.org/Advisories/SQUID-2014_2.txt
 2014-09-10 09:59:55 +00:00
ajacoutot
9ecb6ea3d9 /etc/rc.d -> ${RCDIR} 
(as pedantic and useless as /usr/local vs LOCALBASE|PREFIX but well...)

ok sthen@
 2014-07-19 22:36:13 +00:00
ajacoutot
bd5a8990d9 Drop local shutdown patch and set daemon_timeout="31". 
prodded by sthen@
 2014-07-09 14:19:58 +00:00
sthen
c6d998bb71 BUILD_DEPENDS+= works better if it's after a previous BUILD_DEPENDS 
rather than before it... found my naddy (and myself earlier but I didn't
see the problem then).
 2014-06-26 21:13:47 +00:00
sthen
130723b94e update squid/snapshot to squid-3.HEAD-20140626 2014-06-26 13:08:42 +00:00
sthen
065fc55d2f Update to squid-3.4.6, various fixes (especially for SSL-bump but some general 
ones). Includes some memory leak and segv fixes.
 2014-06-26 12:54:31 +00:00
sthen
7d9a5fdb74 remove leftovers 2014-06-16 21:39:57 +00:00
sthen
51bd12abbb add patch (committed upstrem) to fix an uninitialised use when %tg is used in 
a logformat config line.
 2014-05-19 11:29:01 +00:00
sthen
5102b6fb88 disable "rock" storeio backend, it doesn't currently work on OpenBSD (creates 
initial db file ok, but EMSGSIZE when trying to open at normal startup)
 2014-05-15 21:24:33 +00:00
sthen
fd5ba335ea don't pick up execinfo (dpb junking problem, reported by naddy) 2014-05-10 22:24:33 +00:00
sthen
5d181c2e95 add a comment about ac_cv_path_CPPUNITCONFIG=false which I may switch to 
instead of a build dep on cppunit when the devel version becomes stable.
 2014-05-09 10:06:46 +00:00
sthen
0d39e456e9 Add a build dependency on cppunit. Not required for Squid itself, but tests 
are enabled if it's present at configure time, and junking it mid-build
causes a failure. Found by espie@.
 2014-05-09 09:13:47 +00:00
sthen
0518f009de update squid/stable to 3.4.5 and squid/snapshot to 20140506-r13398. 
use ports/lang/gcc to build snapshot, squid will be moving to requiring
c++11 so let's build this with it already to get more experience.
squid/stable stays with base gcc for most arch for now.
 2014-05-07 20:52:06 +00:00
sthen
accef96e34 un-revert previous revert, and add a patch from upstream to fix https tunnels 2014-04-26 12:06:52 +00:00
sthen
01cf8eec5e partially revert upstream commit to fix failures with https CONNECT 
introduced in 3.4.4.2

http://bugs.squid-cache.org/show_bug.cgi?id=4051
 2014-04-26 10:34:04 +00:00
sthen
441a9c2a35 update squid/stable to 3.4.4.2, move some now-common pieces up into 
squid/Makefile.inc, and regen PLISTs with @commented pieces from PLIST-ntlm
to avoid problems with future regens if samba is installed.
 2014-04-24 14:26:21 +00:00
sthen
877f724b3e disable ntlm subpackage for now, it depends on samba,ads 2014-04-21 23:37:55 +00:00
sthen
19137831c2 disable kerberos 2014-04-21 20:29:50 +00:00
sthen
08667fdeed remove dead patch files 2014-04-21 19:22:06 +00:00
ajacoutot
cfe4be35c5 No need to explicitely SUBST_VARS LOCALSTATEDIR anymore. 2014-04-15 08:53:04 +00:00
sthen
7fc1244a3e adjust autoconf test to check for working 64-bit atomic ops (which is not the 
case on i386 without using -march=i586 or higher), and remove BROKEN-i386
 2014-04-13 21:41:00 +00:00
sthen
838bf67e0b update to newer snapshot of squid, and mark BROKEN-i386 for now - stable 
version is unaffected. (If atomic ops are available at all, it wants 64-bit
ops; http://permalink.gmane.org/gmane.comp.web.squid.devel/22453)
 2014-04-13 12:38:37 +00:00
sthen
8341c987d2 missed a bump when I moved this from snapshots/ to stable/, thanks naddy@ 2014-04-09 19:47:51 +00:00
sthen
5d4f1010d1 switch squid/stable to the 3.4 branch, and update squid/snapshot to a 
recent snapshot from the 3.5 branch
 2014-04-08 12:22:48 +00:00
sthen
4a6353aec2 test pod2man differently, previous version no good with perl 5.18 2014-03-21 12:46:55 +00:00
sthen
c03c98a5b8 update to squid-3.4.4, security fix for CVE-2014-0128 in HTTPS request 
handling affecting users who have enabled the "ssl-bump" MITM feature.

workarounds at
http://www.squid-cache.org/Advisories/SQUID-2014_1.txt

Also includes other fixes, see changelog.
 2014-03-16 13:15:12 +00:00
sthen
c9f8aa721c update to squid-3.3.12, security fix for CVE-2014-0128 in HTTPS request 
handling, only affects users who have enabled the "ssl-bump" MITM feature.

workarounds at
http://www.squid-cache.org/Advisories/SQUID-2014_1.txt
 2014-03-16 12:58:48 +00:00
sthen
8c63d62465 update to squid 3.4.3 2014-03-09 20:56:44 +00:00
sthen
6bc6cc88db Squid 3.4's build process uses -march=native by default; disable to avoid cpu- 
specific code in packages. Reported and diagnosed by Aleksandar Lazic, thanks!
 2014-01-27 13:38:17 +00:00
sthen
a7da13f462 update to squid 3.4.2 
3.4.x is now classed as a stable release upstream, but let's leave 3.3
around for now in squid/stable until we have more experience with 3.4 as
there have been fairly big chances to the tproxy code.
 2014-01-10 20:54:27 +00:00
sthen
f5d77ee7cf update squid/snapshot to 3.4.1 2013-12-10 12:09:17 +00:00
sthen
4eef3dbb4f update to squid 3.4.0.3 2013-12-07 10:47:29 +00:00
sthen
0ab0266ef4 update to squid 3.3.11 2013-12-07 10:47:20 +00:00
sthen
3c95359333 oops, forgot to regen PLIST in squid/stable after disabling an auth module, 
reported by naddy@.
 2013-11-16 19:20:46 +00:00
sthen
85d9a928ff Update to squid-3.3.10 and reorganise the squid ports; retire squid-2.7 
(it was kept separately because 3.x didn't build on some arch due to an
incomplete atomic ops autoconf check which has since been repaired) and
replace with 3.4 (devel version). Enable additional helpers and turn on
support for rock cache dirs.
 2013-11-15 19:09:17 +00:00
sthen
27f03b1c52 bump REVISION for any ports using route messages. regen some distinfos and 
remove unnecessary USE_GROFFs while there.
 2013-10-31 21:12:12 +00:00
sthen
f5640e28da update to squid 3.3.9 2013-09-17 16:56:24 +00:00
sthen
15566a655e Fix autoconf check for atomic ops (it needs to attempt linking, not just 
compiling); likely to fix arm. Remove BROKEN-* to give this another chance
on hppa/mips64 too.
 2013-08-15 11:10:16 +00:00
sthen
05787d260d SECURITY update to Squid 3.3.8, fixes CVE-2013-4115 CVE-2013-4123 
"Due to incorrect data validation Squid is vulnerable to a buffer overflow
attack when processing specially crafted HTTP requests."
 2013-07-15 08:21:54 +00:00
sthen
a86b09b5d4 update to squid-3.3.6 2013-07-11 14:28:01 +00:00
sthen
ec6bb7d789 squid documentation generally uses the nomenclature "interception proxy" 
rather than "transparent proxy"; switch the readme to match. also tweak the
wording to make it clear which firewall reals need to be on which machine
when having a router pass off http traffic to squid on a different machine
configured as an interception proxy.
 2013-06-21 21:37:56 +00:00
lteo
5b3395e57b Fix incorrect path of squid.conf in pkg/README-main. 
OK sthen@ (maintainer)
 2013-06-21 01:54:55 +00:00
ajacoutot
25b3041f91 Unbreak after hx509 and ntlm removal from Kerberos. 2013-06-20 06:54:36 +00:00
ajacoutot
9920238d6f Unbreak with new Heimdal; get rid of self-cooked krb5-config since we 
have it in base now.
 2013-06-17 19:30:22 +00:00
sthen
fc39912ef2 - add patch from upstream, fixing problem with kqueue and SSL MITM 
- s/transparent/intercept/ in README, as I happened to notice in a misc@
post from Rob Sheldon
 2013-06-03 11:01:03 +00:00
sthen
50a80c79e5 update to squid 3.3.5 2013-05-25 12:33:05 +00:00