cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
109,513 Commits 1 Branch 0 Tags
Commit Graph

95 Commits

Author SHA1 Message Date
sthen
370a9fb9c0 Security update to squid-3.5.14, ok jasper@ rpointel@ 
http://www.squid-cache.org/Advisories/SQUID-2016_1.txt

"Due to incorrectly handling server errors Squid is vulnerable to a
denial of service attack when connecting to TLS or SSL servers."
 2016-02-16 13:21:07 +00:00
sthen
aa7f6d8dac update to squid-3.5.12 2015-11-30 10:26:16 +00:00
sthen
2a41ed34cd fix autoconf check which used SSLv3_method; results in assert failure in 
some ssl interception modes
 2015-11-04 15:39:55 +00:00
sthen
c9e2ff2014 update to squid-3.5.11 2015-11-02 17:21:55 +00:00
sthen
f712f64382 update to squid-3.5.10 2015-10-09 00:28:56 +00:00
sthen
0f44ba58ad Update to squid-3.5.9, fixes problems with TLS/SSL parsing in configurations 
using SSL-Bump.

- int overflow with extension parsing: char << 8 into a short
http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13915.patch

- {Client,Server}Hello parsing; when checking for TLS extensions, don't
check for bytes following compression_method in the _whole_ message, only
in the *Hello part ("does not account for the fact that the message may
contain more than just ServerHello").
http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13915.patch
 2015-09-18 11:17:04 +00:00
sthen
f5d8cc22e3 drop accidentally-added .orig patch file. ports ignore these anyway so no bump. 2015-09-10 13:02:40 +00:00
sthen
6c2a6e4b95 Currently Squid 3.5 is considered stable. Rather than moving snapshot/* 
to stable/*, just drop back to a single version of squid in ports.
 2015-09-10 13:00:10 +00:00
sthen
08667fdeed remove dead patch files 2014-04-21 19:22:06 +00:00
sthen
f5640e28da update to squid 3.3.9 2013-09-17 16:56:24 +00:00
sthen
15566a655e Fix autoconf check for atomic ops (it needs to attempt linking, not just 
compiling); likely to fix arm. Remove BROKEN-* to give this another chance
on hppa/mips64 too.
 2013-08-15 11:10:16 +00:00
sthen
a86b09b5d4 update to squid-3.3.6 2013-07-11 14:28:01 +00:00
ajacoutot
9920238d6f Unbreak with new Heimdal; get rid of self-cooked krb5-config since we 
have it in base now.
 2013-06-17 19:30:22 +00:00
sthen
fc39912ef2 - add patch from upstream, fixing problem with kqueue and SSL MITM 
- s/transparent/intercept/ in README, as I happened to notice in a misc@
post from Rob Sheldon
 2013-06-03 11:01:03 +00:00
sthen
50a80c79e5 update to squid 3.3.5 2013-05-25 12:33:05 +00:00
sthen
e429329751 Major update to Squid 3.3.4 (moving the port from the 3.2 branch to 3.3). 
New features include:

- SQL Database logging helper
- Time-Quota session helper
- Custom HTTP request headers
- SSL-Bump Server First
- Server Certificate Mimic

While there, add notes to README-main about increasing the number of
file descriptors via login.conf.
 2013-04-30 18:41:50 +00:00
sthen
5c7ac6266b minor update to squid 3.2.11 2013-04-30 14:05:51 +00:00
sthen
12454f4e76 update to squid-3.2.10: fixes & rolling in some patches committed upstream 2013-04-27 15:19:48 +00:00
sthen
1a7ed26e74 printf format string fix for long long time_t 2013-04-25 21:29:52 +00:00
sthen
89bdb97ebe update to Squid 3.2.9, various fixes including DoS affecting 3.2.0.9 and up 
(CVE-2013-1839).
 2013-03-12 14:58:16 +00:00
sthen
af9d1f1acc landry@ noticed that www/squid was picking up execinfo.h in bulk causing 
#ifdef'd headers to be used and dpb was junking it thus breaking the build;
fix by improving detection for backtrace_symbol_fd / libexecinfo and
explicitly using it.
 2013-01-22 14:30:46 +00:00
sthen
08607b4d02 squid 3.2.5; minor update, it just rolls in the compat/xstrerror.h diff. 2012-12-17 18:56:56 +00:00
sthen
6969f2b8b1 mark BROKEN-hppa and remove my broken attempt at fixing the broken autoconf 
test for atomic ops.
 2012-12-11 18:22:54 +00:00
sthen
d33bc05337 - move -ldap to a "MULTI_PACKAGES+= -ldap" within the 'if flavor != 
no_ldap' block

- squid optionally uses atomic ops if available, however in the code
it requires 4 byte operations, whereas configure only tests for int.
change configure test which may give hppa a chance to build; breakage
reported by landry
 2012-12-10 21:19:41 +00:00
sthen
f973e9766c update to Squid 3.2.4 2012-12-04 10:40:19 +00:00
sthen
35ceda849c Update to Squid 3.2.3. 
This is merged from work by myself and Matthias Pitzl @ genua, thanks to
Rodolfo Gouveia for testing with NTLM.

Flavours have been removed:

- the external helper programs for NTLM/LDAP are now in subpackages:
squid-ldap and squid-ntlm.

- SNMP support is built by default in Squid 3.x so this has moved
to the main package (no external dependencies for this).
 2012-11-28 17:45:29 +00:00
ajacoutot
e197aaebf5 Remove -pthread patching. 
from Brad
 2012-08-27 06:19:48 +00:00
sthen
3e12ab7ce0 sync "SSLv2 disabled" messages with upstream's newer code, from Brad 2012-06-30 09:32:28 +00:00
sthen
7b31b99b78 let squid handle things if SSLv2 is disabled, from Brad. 2012-06-20 08:48:27 +00:00
giovanni
946085d0d3 Fix kerberos helper, spotted and fixed by Andrea Parazzini 2011-09-05 07:18:41 +00:00
sthen
17f86c3675 - reduce the default shutdown_lifetime to 20s; previously it was 30s which 
is the maximum time rc.subr waits for a daemon, so usually it would end up
being forcefully killed (i.e. unclean shutdown -> cache must be rescanned
at next startup). suggested by aja@, diff from Brad.

- adjust PLIST to prevent warnings with pkg_delete -c, from aja@ ok Brad.
 2011-05-30 20:56:30 +00:00
dcoppa
557742f0fa I accidentally broke the ldap flavor. Mea culpa. 
Pointed out by espie@
 2010-11-29 23:06:39 +00:00
dcoppa
81599f251c Add ntlm flavor for NTLM authentication 
Fix pthread linkage
Fix default path for errors directory
Switch to pkg-readmes
Add an rcscript

OK giovanni@, Brad (MAINTAINER)
 2010-11-26 13:45:04 +00:00
sthen
b363d9e7cc update to 2.7.STABLE9, from Brad (maintainer) 2010-06-18 10:32:17 +00:00
ajacoutot
df750b9dca Fix gcc2 patch. 2010-05-20 08:27:33 +00:00
sthen
6ac85d151f m4 eval.c r1.67 fixed the HAVE_VOID__ problem which was causing 
trouble for autoconf 2.62+; remove this workaround which now causes
the build to fail. No bump as the package doesn't change from the
version which last built successfully.

Build failure noticed by naddy@. 'make it so' jasper@, Brad ok.
 2010-04-02 00:38:03 +00:00
jasper
82012ecbfd SECURITY FIX for CVE-2010-0308, "Squid DNS Packet Processing 
Denial of Service Vulnerability"

brad (MAINTAINER) came up with the same diff
ok ajacoutot@ sthen@
 2010-02-03 06:41:17 +00:00
sthen
b63c6b4c36 update to the latest bug fix release in the 2.7 branch. From Brad (maintainer). 2009-10-30 00:56:57 +00:00
jasper
34c1f307c2 Security fix for CVE-2009-2855 
ok brad (MAINTAINER)
 2009-08-30 21:52:44 +00:00
sthen
ae88779346 bug fix update to Squid 2.7-STABLE6, from Brad. 2009-02-08 15:04:33 +00:00
sthen
8d7d2b4d1b update to 2.7.STABLE5, various bugfixes. From Brad (and running here ~3wks). 2009-01-08 03:37:24 +00:00
brad
464f38be0c Upgrade Squid to 2.7-STABLE4 
ok ajacoutot@
 2008-08-20 16:35:15 +00:00
brad
ff9d8cf194 Upgrade Squid to 2.7-STABLE3. 
ok okan@
 2008-07-16 21:18:27 +00:00
jasper
1f76a0180b - update squid to 2.6STABLE20 
- update license marker
- remove transparent flavor
- add ldap flavor

from brad@ (MAINTAINER), testing by several users
 2008-05-31 10:07:45 +00:00
todd
ca63a400d5 update to 2.6.STABLE17 
from maint; works and builds ok for me
 2007-12-04 01:27:13 +00:00
merdely
c324015314 Update to Squid 2.6.STABLE16. 
From brad (MAINTAINER)
ok sthen@
 2007-09-10 17:49:23 +00:00
todd
82be18b245 update to 2.6 stable13, from brad@ (maint) 
ok kili@ tested by me
 2007-05-20 00:52:32 +00:00
robert
1e7cd4578c update to version 2.6.STABLE12 (regen patches while here); 
from MAINTAINER; Brad <brad@comstyle.com>
 2007-04-12 15:10:02 +00:00
todd
c49ef31abf bugfix maintenance release update for Squid. 
from maint brad@
 2007-02-01 07:46:24 +00:00
todd
5b9b91a5d5 bugfix update; from maintainer (brad@) 2007-01-13 16:13:28 +00:00