Releases: kinkie/squid
Releases · kinkie/squid
v4.0.12
Changes to squid-4.0.12 (01 Jul 2016):
- Regression Fix: shell issues with require_smblib definition
- Regression Bug 4532: pid_filename not working as documented
- Regression Bug 4504: Too many WARNING: Ignoring error setting CA certificate locations
- Bug 4516: security_file_certgen man page update
- Bug 4446: undefined reference to 'libecap::Name::Name'
- Bug 4376: clang cannot build Squid eCAP code
- HTTP/1.1: Update all stored headers on 304 revalidation
- TLS: Authority Key Identifier certificate extension
- Add a script to find kid-specific cache.log lines
- Cleanup cppunit detection and use
- ... and several performance improvements
- ... and some unit test updates
- ... and all fixes from 3.5.20
v3.5.20
Changes to squid-3.5.20 (01 Jul 2016):
- Bug 4523: smblib compile fails on NetBSD
- Bug 4485: off-by-one out-of-bounds Parser::Tokenizer::int64() read errors
- Bug 3579: assertion failed 'MemPools[type]' from dst_as ACL
- Fix icons loading speed
- Fix OpenSSL detection on FreeBSD
- Fix assertion failed: Write.cc:38: 'fd_table[conn->fd].flags.open'
- Fix SEGFAULT parsing malformed adaptation service configuration
- Fix ConnStateData::In::maybeMakeSpaceAvailable() logic
- Do not override user defined -std option
- Do not allow low-level debugging to hide important/critical messages
- Do not make bogus recvmsg(2) calls when closing UDS sockets
- Support unified EUI format code in external_acl_type
v4.0.11
Changes to squid-4.0.11 (09 Jun 2016):
- Bug 4517: error: comparison between signed and unsigned integer
- Bug 4492: chunked parser needs to accept BWS after chunk size
- HTTP/1.1: allow chunking the last HTTP response on a connection
- HTTP/1.1: unfold mime header blocks
- TLS: fast SNI peek
- TLS: check for SSL_CIPHER_get_id() support required in adjustSSL()
- TLS: never enable OPENSSL_HELLO_OVERWRITE_HACK automatically
- squidclient: improve shell-escape support in -H option
- Do not allow low-level debugging to hide important/critical messages
- Replace new/delete operators using modern C++ rules
- Remove ie_refresh configuration option
- Deprecating SMB LanMan helpers
- Mark refresh-waiting transactions with REFRESH
- ... and some code cleanup and polishing
v3.5.19
Changes to squid-3.5.19 (09 May 2016):
- Regression Bug 4515: interception proxy hangs
v4.0.10
Changes to squid-4.0.10 (06 May 2016):
- Accumulate fewer unknown-size responses to avoid overwhelming disks.
- Fix shared memory corruption when storing multi-slot (>32KB) shm misses.
- ... and some documentation and code cleanup
- ... and all fixes from 3.5.18
v3.5.18
Changes to squid-3.5.18 (06 May 2016):
- Bug 4510: stale comment about 32KB limit on shared memory cache entries
- Bug 4509: EUI compile error on NetBSD
- Bug 4501: HTTP/1.1: normalize Host header
- Bug 4498: URL-unescape the login-info after extraction from URI
- Bug 4455: SegFault from ESIInclude::Start
- Prevent Squid forcing -b 2048 into the arguments for sslcrtd_program
- Fix TLS/SSL server handshake alert handling
v4.0.9
Changes to squid-4.0.9 (20 Apr 2016):
- Bug #4405: assertion failed: comm.cc:554: "Comm::IsConnOpen(conn)"
- Add a new error page token for unquoted external ACL messages.
- Stop parsing response prefix after discovering an "HTTP/0.9" response.
- ... and some documentation updates
- ... and some code polishing
- ... and all fixes from 3.5.17
v3.5.17
Changes to squid-3.5.17 (20 Apr 2016):
- Regression Bug 4480: logformat [.width_max]
- Regression Bug 4481: varyEvaluateMatch: Oops. Not a Vary match on second attempt
- Bug 4495: Unknown SSL option SSL_OP_NO_TICKET
- Bug 4493: theObject->sharedMemorySize() == theSegment.size() exception
- Bug 4483: ./configure garbles -Og option in CFLAGS
- Bug 4482: Solaris GCC 5.2 warning in src/ip/Intercept.cc
- Bug 4468: NotNode (!acl) naming: Terminate the name before strncat(name).
- Bug 4465: Header forgery detection leads to crash
- Bug 2460 partial: workaround deferred reads on shutdown and restart
- cachemgr.cgi: use dynamic MemBuf for internal content generation
- ESI: Fix several element construction issues
- TLS: Fix Handshake Error: ccs received early
- TLS: Add chained and signing cert to peek-then-bumped connections
- Fix some startup/shutdown crashes
v4.0.8
Changes to squid-4.0.8 (02 Apr 2016):
- Bug 4459: FHS compliance: move netdb.state and ssl_db to /var/cache/squid
- Bug 4458: Behaviour change with external ACL arguments
- Bug 4450: wait() related cleanup
- Bug 4438: SIGSEGV in memFreeString() destructing SBuf globals on shutdown/restart
- Bug 4312: Support disabling collapsed forwarding SMP cooperation
- Bug 3826: SMP compatibility with systemd and --foreground option
- Bug 1979: Add ACL-driven server_pconn_for_nonretriable squid.conf directive
- Bug 7 (partial): Update cached entries on 304 responses
- Add reply_header_add directive
- HTTP/1.1: Do not prohibit updating Last-Modified on 304 responses
- Fix memory leaks of lastAclData and AccessLogentry::url
- Fix clang -Winconsistent-missing-override warning
- Tests: update test suite for GnuTLS
- ... and some documentation updates
- ... and some code cleanup and polishing
- ... and all fixes from squid 3.5.16
v3.5.16
Changes to squid-3.5.16 (02 Apr 2016):
- Bug 4476: Removed duplicated #include lines
- Bug 4452: squid -z segfaults with ufs
- Bug 4447:FwdState.cc:447 "serverConnection() == conn" assertion
- Bug 4423: adding stdio: prefix to cache_log directive produces FATAL error
- Bug 4409: compile error when two Heimdal libraries are installed
- Bug 2831: Cache-control: max-age not sent on TCP_IMS_HIT/304
- pinger: Fix buffer overflow in Icmp6::Recv
- pinger: Fix select(2) to actually use max_fd
- pinger: drop capabilities on Linux
- Fix memory leak of HttpRequest objects
- Fix memory leak when the cache of sslcrtvalidator_program is disabled via ttl=0
- Fix assertion failed: Write.cc:41: "!ccb->active()"
- Fix crash on shutdown while cleaning up idle ICAP connections
- RFC 7725: Add registry entry for 451 status text
- ... and some build issues