October 2008 - openSUSE Commits - openSUSE Mailing Lists

commit yast2-ntp-client
by root＠Hilbert.suse.de 28 Oct '08

28 Oct '08

Hello community, here is the log from the commit of package yast2-ntp-client checked in at Tue Oct 28 18:21:21 CET 2008. -------- --- yast2-ntp-client/yast2-ntp-client.changes 2008-10-15 13:25:02.000000000 +0200 +++ /mounts/work_src_done/STABLE/yast2-ntp-client/yast2-ntp-client.changes 2008-10-28 15:50:11.822610000 +0100 @@ -1,0 +2,6 @@ +Tue Oct 28 15:47:41 CET 2008 - varkoly(a)suse.de + +- (bnc#438704) – ntp server do not work +- 2.17.5 + +------------------------------------------------------------------- calling whatdependson for head-i586 Old: ---- yast2-ntp-client-2.17.4.tar.bz2 New: ---- yast2-ntp-client-2.17.5.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ yast2-ntp-client.spec ++++++ --- /var/tmp/diff_new_pack.R32735/_old 2008-10-28 18:19:31.000000000 +0100 +++ /var/tmp/diff_new_pack.R32735/_new 2008-10-28 18:19:31.000000000 +0100 @@ -1,5 +1,5 @@ # -# spec file for package yast2-ntp-client (Version 2.17.4) +# spec file for package yast2-ntp-client (Version 2.17.5) # # Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany. # @@ -19,12 +19,12 @@ Name: yast2-ntp-client -Version: 2.17.4 +Version: 2.17.5 Release: 1 License: GPL v2 or later Group: System/YaST BuildRoot: %{_tmppath}/%{name}-%{version}-build -Source0: yast2-ntp-client-2.17.4.tar.bz2 +Source0: yast2-ntp-client-2.17.5.tar.bz2 Prefix: /usr BuildRequires: perl-XML-Writer update-desktop-files yast2 yast2-devtools yast2-testsuite BuildRequires: yast2-country-data @@ -46,7 +46,7 @@ Lukas Ocilka <locilka(a)suse.cz> %prep -%setup -n yast2-ntp-client-2.17.4 +%setup -n yast2-ntp-client-2.17.5 %build %{prefix}/bin/y2tool y2autoconf @@ -83,6 +83,9 @@ %doc %{prefix}/share/doc/packages/yast2-ntp-client /usr/share/YaST2/schema/autoyast/rnc/ntpclient.rnc %changelog +* Tue Oct 28 2008 varkoly(a)suse.de +- (bnc#438704) – ntp server do not work +- 2.17.5 * Wed Oct 15 2008 mvidner(a)suse.cz - Use sntp instead of ntpdate which is obsolete (bnc#431516). - 2.17.4 ++++++ yast2-ntp-client-2.17.4.tar.bz2 -> yast2-ntp-client-2.17.5.tar.bz2 ++++++ ++++ 3282 lines of diff (skipped) ++++ retrying with extended exclude list diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/yast2-ntp-client-2.17.4/src/widgets.ycp new/yast2-ntp-client-2.17.5/src/widgets.ycp --- old/yast2-ntp-client-2.17.4/src/widgets.ycp 2008-08-18 12:29:09.000000000 +0200 +++ new/yast2-ntp-client-2.17.5/src/widgets.ycp 2008-10-28 15:47:18.000000000 +0100 @@ -4,7 +4,7 @@ * Summary: Widgets definitions * Authors: Jiri Srain <jsrain(a)suse.cz> * - * $Id: widgets.ycp 50165 2008-08-18 10:29:09Z mvidner $ + * $Id: widgets.ycp 52626 2008-10-28 14:47:18Z varkoly $ */ { @@ -692,7 +692,7 @@ * @param id any widget id */ define void optionsInit (string id) ``{ - UI::ChangeWidget (`id ("options"), `Value, NtpClient::selected_record["options"]:""); + UI::ChangeWidget (`id ("options"), `Value, NtpClient::selected_record["options"]:"iburst"); } /** diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore --exclude Makefile.in --exclude configure --exclude config.guess --exclude '*.pot' --exclude mkinstalldirs --exclude aclocal.m4 --exclude config.sub --exclude depcomp --exclude install-sh --exclude ltmain.sh old/yast2-ntp-client-2.17.4/VERSION new/yast2-ntp-client-2.17.5/VERSION --- old/yast2-ntp-client-2.17.4/VERSION 2008-10-15 13:23:35.000000000 +0200 +++ new/yast2-ntp-client-2.17.5/VERSION 2008-10-28 15:48:27.000000000 +0100 @@ -1 +1 @@ -2.17.4 +2.17.5 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit zypper
by root＠Hilbert.suse.de 28 Oct '08

28 Oct '08

Hello community, here is the log from the commit of package zypper checked in at Tue Oct 28 18:20:55 CET 2008. -------- --- zypper/zypper.changes 2008-10-27 19:03:03.000000000 +0100 +++ /mounts/work_src_done/STABLE/zypper/zypper.changes 2008-10-28 10:30:14.000000000 +0100 @@ -1,0 +2,6 @@ +Tue Oct 28 10:29:10 CET 2008 - jkupec(a)suse.cz + +- translations update +- r11519 + +------------------------------------------------------------------- calling whatdependson for head-i586 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ zypper.spec ++++++ --- /var/tmp/diff_new_pack.BzJ803/_old 2008-10-28 18:19:49.000000000 +0100 +++ /var/tmp/diff_new_pack.BzJ803/_new 2008-10-28 18:19:49.000000000 +0100 @@ -30,7 +30,7 @@ PreReq: permissions Summary: Command Line Package Management Using Libzypp Version: 0.12.11 -Release: 1 +Release: 2 Source: zypper-0.12.11.tar.bz2 Prefix: /usr Url: http://en.opensuse.org/Zypper @@ -113,6 +113,9 @@ # it from being erased by rpm -e %ghost %config(noreplace) %{_var}/log/zypper.log %changelog +* Tue Oct 28 2008 jkupec(a)suse.cz +- translations update +- r11519 * Mon Oct 27 2008 jkupec(a)suse.cz - translations update - r11515 ++++++ zypper-0.12.11.tar.bz2 ++++++ ++++ 2904 lines of diff (skipped) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit squid
by root＠Hilbert.suse.de 28 Oct '08

28 Oct '08

Hello community, here is the log from the commit of package squid checked in at Tue Oct 28 18:19:12 CET 2008. -------- --- squid/squid.changes 2008-10-02 14:21:40.000000000 +0200 +++ /mounts/work_src_done/STABLE/squid/squid.changes 2008-10-27 18:04:46.129056000 +0100 @@ -1,0 +2,19 @@ +Mon Oct 27 18:04:31 CET 2008 - kssingvo(a)suse.de + +- update to 2.7.STABLE5, which is a bugfix version only: + * Don't set expires: now in generated error responses + * Old headers still returned after a cache validation + * swap.state permission issues if crashing during "squid -k + reconfigure" + * Limit stale-if-error to 500-504 responses + * Increase negotiate auth token buffer size + * add upgrade_http0.9 option making it possible to disable + upgrade of HTTP/0.9 responses + * assertion failed: sc->new_callback == NULL at store_client.c:190 + * Shut down store url rewrite helpers on squid -k reconfigure + * configuration file contains non-ASCII characters + For complete list of changes see: + http://www.squid-cache.org/Versions/v2/2.7/changesets/SQUID_2_7_STABLE5.html +- removed obsolete, already in upstream version patches + +------------------------------------------------------------------- calling whatdependson for head-i586 Old: ---- 12374.patch 12375.patch 12376.patch 12377.patch 12378.patch 12380.patch squid-2.7.STABLE4-RELEASENOTES.html squid-2.7.STABLE4.tar.bz2 New: ---- squid-2.7.STABLE5-RELEASENOTES.html squid-2.7.STABLE5.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ squid.spec ++++++ --- /var/tmp/diff_new_pack.v29459/_old 2008-10-28 18:18:39.000000000 +0100 +++ /var/tmp/diff_new_pack.v29459/_new 2008-10-28 18:18:39.000000000 +0100 @@ -1,5 +1,5 @@ # -# spec file for package squid (Version 2.7.STABLE4) +# spec file for package squid (Version 2.7.STABLE5) # # Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany. # @@ -25,8 +25,8 @@ BuildRequires: valgrind valgrind-devel %endif Summary: Squid WWW proxy server -Version: 2.7.STABLE4 -Release: 16 +Version: 2.7.STABLE5 +Release: 1 License: GPL v2 or later Url: http://www.squid-cache.org Group: Productivity/Networking/Web/Proxy @@ -53,12 +53,12 @@ Source12: http://www.squid-cache.org/WCCP-support/Linux/ip_wccp.c Source13: squid.sysconfig Patch0: squid-2.7.STABLE3-config.patch -Patch1: http://www.squid-cache.org/Versions/v2/2.7/changesets/12374.patch -Patch2: http://www.squid-cache.org/Versions/v2/2.7/changesets/12375.patch -Patch3: http://www.squid-cache.org/Versions/v2/2.7/changesets/12376.patch -Patch4: http://www.squid-cache.org/Versions/v2/2.7/changesets/12377.patch -Patch5: http://www.squid-cache.org/Versions/v2/2.7/changesets/12378.patch -Patch6: http://www.squid-cache.org/Versions/v2/2.7/changesets/12380.patch +# Patch1: http://www.squid-cache.org/Versions/v2/2.7/changesets/12374.patch +# Patch2: http://www.squid-cache.org/Versions/v2/2.7/changesets/12375.patch +# Patch3: http://www.squid-cache.org/Versions/v2/2.7/changesets/12376.patch +# Patch4: http://www.squid-cache.org/Versions/v2/2.7/changesets/12377.patch +# Patch5: http://www.squid-cache.org/Versions/v2/2.7/changesets/12378.patch +# Patch6: http://www.squid-cache.org/Versions/v2/2.7/changesets/12380.patch # Patch7: http://www.squid-cache.org/Versions/v2/2.7/changesets/ # Patch8: http://www.squid-cache.org/Versions/v2/2.7/changesets/ # Patch9: http://www.squid-cache.org/Versions/v2/2.7/changesets/ @@ -138,12 +138,12 @@ #mv msntauth-v2.0.3-squid.1 MSNT #) %patch0 -p1 -%patch1 -p1 -%patch2 -p1 -%patch3 -p1 -%patch4 -p1 -%patch5 -p1 -%patch6 -p1 +# %patch1 -p1 +# %patch2 -p1 +# %patch3 -p1 +# %patch4 -p1 +# %patch5 -p1 +# %patch6 -p1 # %patch7 -p1 # %patch8 -p1 # %patch9 -p1 @@ -397,6 +397,22 @@ %doc README.ip_user %changelog +* Mon Oct 27 2008 kssingvo(a)suse.de +- update to 2.7.STABLE5, which is a bugfix version only: + * Don't set expires: now in generated error responses + * Old headers still returned after a cache validation + * swap.state permission issues if crashing during "squid -k + reconfigure" + * Limit stale-if-error to 500-504 responses + * Increase negotiate auth token buffer size + * add upgrade_http0.9 option making it possible to disable + upgrade of HTTP/0.9 responses + * assertion failed: sc->new_callback == NULL at store_client.c:190 + * Shut down store url rewrite helpers on squid -k reconfigure + * configuration file contains non-ASCII characters + For complete list of changes see: + http://www.squid-cache.org/Versions/v2/2.7/changesets/SQUID_2_7_STABLE5.html +- removed obsolete, already in upstream version patches * Thu Oct 02 2008 kssingvo(a)suse.de - bugfix if user is in many kerberos groups (12380.patch) * Thu Sep 25 2008 kssingvo(a)suse.de @@ -1328,7 +1344,7 @@ set to 4096 at buildtime by "ulimit -n 4096" in spec-file * Tue Dec 12 2000 ro(a)suse.de - use official tags for required-start -* Tue Dec 12 2000 bodammer(a)suse.de +* Mon Dec 11 2000 bodammer(a)suse.de - error in initscript fixed * Wed Dec 06 2000 bodammer(a)suse.de - Requires ldaplib added in specfile ++++++ squid-2.7.STABLE4-RELEASENOTES.html -> squid-2.7.STABLE5-RELEASENOTES.html ++++++ --- squid/squid-2.7.STABLE4-RELEASENOTES.html 2008-08-08 21:19:32.000000000 +0200 +++ /mounts/work_src_done/STABLE/squid/squid-2.7.STABLE5-RELEASENOTES.html 2008-10-17 18:56:00.000000000 +0200 @@ -2,12 +2,12 @@ <HTML> <HEAD> <META NAME="GENERATOR" CONTENT="LinuxDoc-Tools 0.9.21"> - <TITLE>Squid 2.7.STABLE4 release notes</TITLE> + <TITLE>Squid 2.7.STABLE5 release notes</TITLE> </HEAD> <BODY> -<H1>Squid 2.7.STABLE4 release notes</H1> +<H1>Squid 2.7.STABLE5 release notes</H1> -<H2>Squid Developers</H2>$Id: release.html,v 1.1.2.9 2008/08/08 19:19:32 hno Exp $ +<H2>Squid Developers</H2>$Id: release.html,v 1.1.2.10 2008/10/17 18:56:26 hno Exp $ <HR> <EM>This document contains the release notes for version 2.7 of Squid. Squid is a WWW Cache application developed by the Web Caching community.</EM> @@ -50,6 +50,9 @@ <P> <H2><A NAME="toc7">7.</A> <A HREF="#s7">Key changes in squid-2.7.STABLE4</A></H2> +<P> +<H2><A NAME="toc8">8.</A> <A HREF="#s8">Key changes in squid-2.7.STABLE5</A></H2> + <HR> <H2><A NAME="s1">1.</A> <A HREF="#toc1">Key changes from squid 2.6</A></H2> @@ -446,6 +449,28 @@ <LI>Make dns_nameserver work when using --disable-internal-dns on glibc based systems</LI> <LI>Handle aborted objects properly. The change in 2.7.STABLE3 triggered a number of issues.</LI> <LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2406">#2406</a>: access.log logs rewritten URL and strip_query_terms ineffective</LI> +<LI>See also the list of +<A HREF="http://www.squid-cache.org/Versions/v2/2.7/changesets/SQUID_2_7_STABLE4.html">squid-2.7.STABLE4 changes</A> and the +<A HREF="ChangeLog.txt">ChangeLog</A> file for details.</LI> +</UL> +</P> + +<H2><A NAME="s8">8.</A> <A HREF="#toc8">Key changes in squid-2.7.STABLE5</A></H2> + +<P> +<UL> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2441">#2441</a>: Shut down store url rewrite helpers on squid -k reconfigure</LI> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2464">#2464</a>: assertion failed: sc->new_callback == NULL at store_client.c:190</LI> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2394">#2394</a>: add upgrade_http0.9 option making it possible to disable upgrade of HTTP/0.9 responses</LI> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2426">#2426</a>: Increase negotiate auth token buffer size</LI> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2468">#2468</a>: Limit stale-if-error to 500-504 responses</LI> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2477">#2477</a>: swap.state permission issues if crashing during "squid -k reconfigure"</LI> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2430">#2430</a>: Old headers sometimes still returned after a cache validation</LI> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2481">#2481</a>: Don't set expires: now in generated error responses</LI> +<LI>Windows port: Fix build error using latest MinGW runtime.</LI> +<LI>See also the list of +<A HREF="http://www.squid-cache.org/Versions/v2/2.7/changesets/SQUID_2_7_STABLE5.html">squid-2.7.STABLE5 changes</A> and the +<A HREF="ChangeLog.txt">ChangeLog</A> file for details.</LI> </UL> </P> ++++++ squid-2.7.STABLE4.tar.bz2 -> squid-2.7.STABLE5.tar.bz2 ++++++ diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/ChangeLog new/squid-2.7.STABLE5/ChangeLog --- old/squid-2.7.STABLE4/ChangeLog 2008-08-08 21:17:40.000000000 +0200 +++ new/squid-2.7.STABLE5/ChangeLog 2008-10-17 20:55:54.000000000 +0200 @@ -1,5 +1,24 @@ -Changes to squid-2.7.SATBLE4 (8 August 2008) +Changes to squid-2.7.STABLE5 (17 October 2008) + - Bug #2439: configuration file contains non-ASCII characters + - Bug #2441: Shut down store url rewrite helpers on squid -k + reconfigure + - foreground rebuild should do all of the rebuilding before Squid + accepts requests. + - Bug #2464: assertion failed: sc->new_callback == NULL at + store_client.c:190 + - Bug #2394: add upgrade_http0.9 option making it possible to disable + upgrade of HTTP/0.9 responses + - Bug #2426: Increase negotiate auth token buffer size + - Bug #2468: Limit stale-if-error to 500-504 responses + - Bug #2477: swap.state permission issues if crashing during "squid -k + reconfigure" + - Bug #2430: Old headers still returned after a cache validation if + the request triggering the cache validation was itself a + If-Modified-Since request. + - Bug #2481: Don't set expires: now in generated error responses + - Windows port: Fix build error using latest MinGW runtime. +Changes to squid-2.7.STABLE4 (8 August 2008) - Bug #2387: The calculation of the number of hash buckets need to account for the memory size, not only disk size - Bug #2393: DNS requests retried indefinitely at full speed on failed @@ -27,6 +46,7 @@ - Bug #2406: access.log logs rewritten URL and strip_query_terms ineffective - More changes to deal properly with aborted requests + - Bug #2427: squid_ldap_group -h reports the old % codes for -f Changes to squid-2.6.STABLE21 (27 June 2008) diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/configure new/squid-2.7.STABLE5/configure --- old/squid-2.7.STABLE4/configure 2008-08-08 21:21:03.000000000 +0200 +++ new/squid-2.7.STABLE5/configure 2008-10-17 21:01:04.000000000 +0200 @@ -1,7 +1,7 @@ #! /bin/sh -# From configure.in Revision: 1.430.2.14 . +# From configure.in Revision: 1.430.2.15 . # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.61 for Squid Web Proxy 2.7.STABLE4. +# Generated by GNU Autoconf 2.61 for Squid Web Proxy 2.7.STABLE5. # # Report bugs to <http://www.squid-cache.org/bugs/>. # @@ -575,8 +575,8 @@ # Identity of this package. PACKAGE_NAME='Squid Web Proxy' PACKAGE_TARNAME='squid' -PACKAGE_VERSION='2.7.STABLE4' -PACKAGE_STRING='Squid Web Proxy 2.7.STABLE4' +PACKAGE_VERSION='2.7.STABLE5' +PACKAGE_STRING='Squid Web Proxy 2.7.STABLE5' PACKAGE_BUGREPORT='http://www.squid-cache.org/bugs/' ac_default_prefix=/usr/local/squid @@ -1312,7 +1312,7 @@ # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF -\`configure' configures Squid Web Proxy 2.7.STABLE4 to adapt to many kinds of systems. +\`configure' configures Squid Web Proxy 2.7.STABLE5 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... @@ -1382,7 +1382,7 @@ if test -n "$ac_init_help"; then case $ac_init_help in - short | recursive ) echo "Configuration of Squid Web Proxy 2.7.STABLE4:";; + short | recursive ) echo "Configuration of Squid Web Proxy 2.7.STABLE5:";; esac cat <<\_ACEOF @@ -1663,7 +1663,7 @@ test -n "$ac_init_help" && exit $ac_status if $ac_init_version; then cat <<\_ACEOF -Squid Web Proxy configure 2.7.STABLE4 +Squid Web Proxy configure 2.7.STABLE5 generated by GNU Autoconf 2.61 Copyright (C) 1992, 1993, 1994, 1995, 1996, 1998, 1999, 2000, 2001, @@ -1677,7 +1677,7 @@ This file contains any messages produced by compilers while running configure, to aid debugging if configure makes a mistake. -It was created by Squid Web Proxy $as_me 2.7.STABLE4, which was +It was created by Squid Web Proxy $as_me 2.7.STABLE5, which was generated by GNU Autoconf 2.61. Invocation command line was $ $0 $@ @@ -2350,7 +2350,7 @@ # Define the identity of the package. PACKAGE='squid' - VERSION='2.7.STABLE4' + VERSION='2.7.STABLE5' cat >>confdefs.h <<_ACEOF @@ -27798,7 +27798,7 @@ # report actual input values of CONFIG_FILES etc. instead of their # values after options handling. ac_log=" -This file was extended by Squid Web Proxy $as_me 2.7.STABLE4, which was +This file was extended by Squid Web Proxy $as_me 2.7.STABLE5, which was generated by GNU Autoconf 2.61. Invocation command line was CONFIG_FILES = $CONFIG_FILES @@ -27851,7 +27851,7 @@ _ACEOF cat >>$CONFIG_STATUS <<_ACEOF ac_cs_version="\\ -Squid Web Proxy config.status 2.7.STABLE4 +Squid Web Proxy config.status 2.7.STABLE5 configured by $0, generated by GNU Autoconf 2.61, with options \\"`echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/\\\\&/g'`\\" diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/configure.in new/squid-2.7.STABLE5/configure.in --- old/squid-2.7.STABLE4/configure.in 2008-08-08 21:21:03.000000000 +0200 +++ new/squid-2.7.STABLE5/configure.in 2008-10-17 21:01:04.000000000 +0200 @@ -1,16 +1,16 @@ dnl dnl Configuration input file for Squid dnl -dnl $Id: configure.in,v 1.430.2.14 2008/08/03 22:27:01 hno Exp $ +dnl $Id: configure.in,v 1.430.2.15 2008/10/17 18:55:54 hno Exp $ dnl dnl dnl -AC_INIT(Squid Web Proxy, 2.7.STABLE4, http://www.squid-cache.org/bugs/, squid) +AC_INIT(Squid Web Proxy, 2.7.STABLE5, http://www.squid-cache.org/bugs/, squid) AC_PREREQ(2.52) AM_CONFIG_HEADER(include/autoconf.h) AC_CONFIG_AUX_DIR(cfgaux) AM_INIT_AUTOMAKE -AC_REVISION($Revision: 1.430.2.14 $)dnl +AC_REVISION($Revision: 1.430.2.15 $)dnl AC_PREFIX_DEFAULT(/usr/local/squid) AM_MAINTAINER_MODE diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/helpers/negotiate_auth/squid_kerb_auth/squid_kerb_auth.c new/squid-2.7.STABLE5/helpers/negotiate_auth/squid_kerb_auth/squid_kerb_auth.c --- old/squid-2.7.STABLE4/helpers/negotiate_auth/squid_kerb_auth/squid_kerb_auth.c 2008-02-24 20:18:53.000000000 +0100 +++ new/squid-2.7.STABLE5/helpers/negotiate_auth/squid_kerb_auth/squid_kerb_auth.c 2008-09-29 00:44:36.000000000 +0200 @@ -43,6 +43,9 @@ #ifndef MAXHOSTNAMELEN #define MAXHOSTNAMELEN HOST_NAME_MAX #endif +#ifndef MAX_AUTHTOKEN_LEN +#define MAX_AUTHTOKEN_LEN 65535 +#endif #define PROGRAM "squid_kerb_auth" @@ -173,10 +176,9 @@ } - int main(int argc, char * const argv[]) { - char buf[6400]; + char buf[MAX_AUTHTOKEN_LEN]; char *c; int length=0; static int err=0; diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/include/sspwin32.h new/squid-2.7.STABLE5/include/sspwin32.h --- old/squid-2.7.STABLE4/include/sspwin32.h 2006-09-09 17:41:45.000000000 +0200 +++ new/squid-2.7.STABLE5/include/sspwin32.h 2008-10-13 18:33:32.000000000 +0200 @@ -1,6 +1,6 @@ /* - * $Id: sspwin32.h,v 1.2 2006/09/09 15:41:45 serassio Exp $ + * $Id: sspwin32.h,v 1.2.6.1 2008/10/13 16:33:32 hno Exp $ * * AUTHOR: Guido Serassio <serassio(a)squid-cache.org> * Based on previous work of Francesco Chemolli, Robert Collins and Andrew Doran @@ -46,6 +46,7 @@ #include <tchar.h> #endif #include <windows.h> +#include <ntsecapi.h> #include <security.h> #include <sspi.h> diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/include/version.h new/squid-2.7.STABLE5/include/version.h --- old/squid-2.7.STABLE4/include/version.h 2008-08-08 21:21:03.000000000 +0200 +++ new/squid-2.7.STABLE5/include/version.h 2008-10-17 21:01:04.000000000 +0200 @@ -9,5 +9,5 @@ */ #ifndef SQUID_RELEASE_TIME -#define SQUID_RELEASE_TIME 1218223259 +#define SQUID_RELEASE_TIME 1224270059 #endif diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/RELEASENOTES.html new/squid-2.7.STABLE5/RELEASENOTES.html --- old/squid-2.7.STABLE4/RELEASENOTES.html 2008-08-08 21:21:35.000000000 +0200 +++ new/squid-2.7.STABLE5/RELEASENOTES.html 2008-10-17 21:01:40.000000000 +0200 @@ -2,12 +2,12 @@ <HTML> <HEAD> <META NAME="GENERATOR" CONTENT="LinuxDoc-Tools 0.9.21"> - <TITLE>Squid 2.7.STABLE4 release notes</TITLE> + <TITLE>Squid 2.7.STABLE5 release notes</TITLE> </HEAD> <BODY> -<H1>Squid 2.7.STABLE4 release notes</H1> +<H1>Squid 2.7.STABLE5 release notes</H1> -<H2>Squid Developers</H2>$Id: release.html,v 1.1.2.9 2008/08/08 19:19:32 hno Exp $ +<H2>Squid Developers</H2>$Id: release.html,v 1.1.2.10 2008/10/17 18:56:26 hno Exp $ <HR> <EM>This document contains the release notes for version 2.7 of Squid. Squid is a WWW Cache application developed by the Web Caching community.</EM> @@ -50,6 +50,9 @@ <P> <H2><A NAME="toc7">7.</A> <A HREF="#s7">Key changes in squid-2.7.STABLE4</A></H2> +<P> +<H2><A NAME="toc8">8.</A> <A HREF="#s8">Key changes in squid-2.7.STABLE5</A></H2> + <HR> <H2><A NAME="s1">1.</A> <A HREF="#toc1">Key changes from squid 2.6</A></H2> @@ -446,6 +449,28 @@ <LI>Make dns_nameserver work when using --disable-internal-dns on glibc based systems</LI> <LI>Handle aborted objects properly. The change in 2.7.STABLE3 triggered a number of issues.</LI> <LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2406">#2406</a>: access.log logs rewritten URL and strip_query_terms ineffective</LI> +<LI>See also the list of +<A HREF="http://www.squid-cache.org/Versions/v2/2.7/changesets/SQUID_2_7_STABLE4.html">squid-2.7.STABLE4 changes</A> and the +<A HREF="ChangeLog">ChangeLog</A> file for details.</LI> +</UL> +</P> + +<H2><A NAME="s8">8.</A> <A HREF="#toc8">Key changes in squid-2.7.STABLE5</A></H2> + +<P> +<UL> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2441">#2441</a>: Shut down store url rewrite helpers on squid -k reconfigure</LI> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2464">#2464</a>: assertion failed: sc->new_callback == NULL at store_client.c:190</LI> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2394">#2394</a>: add upgrade_http0.9 option making it possible to disable upgrade of HTTP/0.9 responses</LI> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2426">#2426</a>: Increase negotiate auth token buffer size</LI> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2468">#2468</a>: Limit stale-if-error to 500-504 responses</LI> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2477">#2477</a>: swap.state permission issues if crashing during "squid -k reconfigure"</LI> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2430">#2430</a>: Old headers sometimes still returned after a cache validation</LI> +<LI>Bug <a href="http://www.squid-cache.org/bugs/show_bug.cgi?id=2481">#2481</a>: Don't set expires: now in generated error responses</LI> +<LI>Windows port: Fix build error using latest MinGW runtime.</LI> +<LI>See also the list of +<A HREF="http://www.squid-cache.org/Versions/v2/2.7/changesets/SQUID_2_7_STABLE5.html">squid-2.7.STABLE5 changes</A> and the +<A HREF="ChangeLog">ChangeLog</A> file for details.</LI> </UL> </P> diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/src/auth/negotiate/auth_negotiate.c new/squid-2.7.STABLE5/src/auth/negotiate/auth_negotiate.c --- old/squid-2.7.STABLE4/src/auth/negotiate/auth_negotiate.c 2007-08-29 00:39:10.000000000 +0200 +++ new/squid-2.7.STABLE5/src/auth/negotiate/auth_negotiate.c 2008-09-29 00:44:36.000000000 +0200 @@ -1,6 +1,6 @@ /* - * $Id: auth_negotiate.c,v 1.12 2007/08/28 22:39:10 hno Exp $ + * $Id: auth_negotiate.c,v 1.12.2.1 2008/09/28 22:44:36 hno Exp $ * * DEBUG: section 29 Negotiate Authenticator * AUTHOR: Robert Collins @@ -41,6 +41,9 @@ #include "squid.h" #include "auth_negotiate.h" +// Maximum length (buffer size) for token strings. +#define MAX_AUTHTOKEN_LEN 32768 + extern AUTHSSETUP authSchemeSetup_negotiate; static void @@ -573,7 +576,7 @@ authenticateNegotiateStart(auth_user_request_t * auth_user_request, RH * handler, void *data) { authenticateStateData *r = NULL; - char buf[8192]; + char buf[MAX_AUTHTOKEN_LEN]; char *sent_string = NULL; negotiate_user_t *negotiate_user; negotiate_request_t *negotiate_request; @@ -606,9 +609,9 @@ r->auth_user_request = auth_user_request; authenticateAuthUserRequestLock(r->auth_user_request); if (negotiate_request->auth_state == AUTHENTICATE_STATE_INITIAL) { - snprintf(buf, 8192, "YR %s\n", sent_string); + snprintf(buf, MAX_AUTHTOKEN_LEN, "YR %s\n", sent_string); } else { - snprintf(buf, 8192, "KK %s\n", sent_string); + snprintf(buf, MAX_AUTHTOKEN_LEN, "KK %s\n", sent_string); } negotiate_request->waiting = 1; safe_free(negotiate_request->client_blob); diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/src/cf.data.pre new/squid-2.7.STABLE5/src/cf.data.pre --- old/squid-2.7.STABLE4/src/cf.data.pre 2008-07-10 11:47:28.000000000 +0200 +++ new/squid-2.7.STABLE5/src/cf.data.pre 2008-09-25 04:33:37.000000000 +0200 @@ -1,6 +1,6 @@ # -# $Id: cf.data.pre,v 1.450.2.26 2008/07/10 09:47:28 hno Exp $ +# $Id: cf.data.pre,v 1.450.2.28 2008/09/25 02:33:37 hno Exp $ # # SQUID Web Proxy Cache http://www.squid-cache.org/ # ---------------------------------------------------------- @@ -3253,6 +3253,29 @@ broken_posts allow buggy_server DOC_END +NAME: upgrade_http0.9 +TYPE: acl_access +DEFAULT: none +LOC: Config.accessList.upgrade_http09 +DOC_START + This access list controls when HTTP/0.9 responses is upgraded + to our current HTTP version. The default is to always upgrade. + + Some applications expect to be able to respond with non-HTTP + responses and clients gets confused if the response is upgraded. + For example SHOUTcast servers used for mp3 streaming. + + To enable some flexibility in detection of such applications + the first line of the response is available in the internal header + X-HTTP09-First-Line for use in the rep_header acl. + +NOCOMMENT_START +# Don't upgrade ShoutCast responses to HTTP +acl shoutcast rep_header X-HTTP09-First-Line ^ICY\s[0-9] +upgrade_http0.9 deny shoutcast +NOCOMMENT_END +DOC_END + NAME: via IFDEF: HTTP_VIOLATIONS COMMENT: on|off @@ -3538,7 +3561,7 @@ When using the concurrency option, the protocol is changed by introducing a query channel tag infront of the request/response. The query channel - tag is a number between 0 and concurrency−1. + tag is a number between 0 and concurrency-1. FORMAT specifications: @@ -3570,7 +3593,7 @@ present, the supplied value completely replaces the cached value. - In the event of a helper−related error (e.g., overload), Squid + In the event of a helper-related error (e.g., overload), Squid will always default to STALE. DOC_END diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/src/client_side.c new/squid-2.7.STABLE5/src/client_side.c --- old/squid-2.7.STABLE4/src/client_side.c 2008-07-21 22:43:27.000000000 +0200 +++ new/squid-2.7.STABLE5/src/client_side.c 2008-10-06 23:27:44.000000000 +0200 @@ -1,6 +1,6 @@ /* - * $Id: client_side.c,v 1.754.2.21 2008/07/21 20:43:27 hno Exp $ + * $Id: client_side.c,v 1.754.2.24 2008/10/06 21:27:44 hno Exp $ * * DEBUG: section 33 Client-side Routines * AUTHOR: Duane Wessels @@ -927,10 +927,11 @@ /* the client can handle this reply, whatever it is */ http->flags.hit = 0; http->log_type = LOG_TCP_REFRESH_MISS; - if (HTTP_NOT_MODIFIED == rep->sline.status) { + if (HTTP_NOT_MODIFIED == rep->sline.status && http->request->flags.cache_validation) { httpReplyUpdateOnNotModified(http->old_entry->mem_obj->reply, rep); storeTimestampsSet(http->old_entry); + storeUpdate(http->old_entry, http->request); if (!EBIT_TEST(http->old_entry->flags, REFRESH_FAILURE)) http->log_type = LOG_TCP_REFRESH_HIT; else @@ -953,6 +954,7 @@ if (EBIT_TEST(entry->flags, ENTRY_ABORTED)) { /* Old object got aborted, not good */ clientProcessMiss(http); + return; } if (recopy) { storeClientCopyHeaders(http->sc, entry, @@ -1941,8 +1943,8 @@ LOCAL_ARRAY(char, bbuf, MAX_URL + 32); String strVia = httpHeaderGetList(hdr, HDR_VIA); snprintf(bbuf, MAX_URL + 32, "%d.%d %s", - http->entry->mem_obj->reply->sline.version.major, - http->entry->mem_obj->reply->sline.version.minor, ThisCache); + rep->sline.version.major, + rep->sline.version.minor, ThisCache); strListAdd(&strVia, bbuf, ','); httpHeaderDelById(hdr, HDR_VIA); httpHeaderPutStr(hdr, HDR_VIA, strBuf(strVia)); @@ -2002,13 +2004,6 @@ /* try to grab the already-parsed header */ rep = httpReplyClone(orig_rep); if (rep->pstate == psParsed) { - if (http->conn->port->http11) { - /* enforce 1.1 reply version */ - httpBuildVersion(&rep->sline.version, 1, 1); - } else { - /* enforce 1.0 reply version */ - httpBuildVersion(&rep->sline.version, 1, 0); - } /* do header conversions */ clientBuildReplyHeader(http, rep); /* if we do ranges, change status to "Partial Content" */ @@ -3017,17 +3012,41 @@ { HttpReply *rep = http->reply; MemBuf mb; + int send_header = 1; /* reset range iterator */ http->range_iter.pos = HttpHdrRangeInitPos; if (http->request->method == METHOD_HEAD) { /* do not forward body for HEAD replies */ http->flags.done_copying = 1; } + if (http->http_ver.major < 1) + send_header = 0; + if (rep->sline.version.major < 1) { + if (send_header && Config.accessList.upgrade_http09) { + aclCheck_t *checklist = clientAclChecklistCreate(Config.accessList.upgrade_http09, http); + checklist->reply = rep; + if (aclCheckFast(Config.accessList.upgrade_http09, checklist) != 1) + send_header = 0; + aclChecklistFree(checklist); + } + httpHeaderDelById(&rep->header, HDR_X_HTTP09_FIRST_LINE); + } /* init mb; put status line and headers */ - if (http->http_ver.major >= 1) + if (send_header) { + if (http->conn->port->http11) { + /* enforce 1.1 reply version */ + httpBuildVersion(&rep->sline.version, 1, 1); + } else { + /* enforce 1.0 reply version */ + httpBuildVersion(&rep->sline.version, 1, 0); + } mb = httpReplyPack(rep); - else + } else { + debug(33, 2) ("HTTP/0.9 response, disable everything\n"); + http->request->flags.chunked_response = 0; + http->request->flags.proxy_keepalive = 0; memBufDefInit(&mb); + } if (Config.onoff.log_mime_hdrs) { http->al.headers.reply = xmalloc(mb.size + 1); xstrncpy(http->al.headers.reply, mb.buf, mb.size); diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/src/enums.h new/squid-2.7.STABLE5/src/enums.h --- old/squid-2.7.STABLE4/src/enums.h 2008-05-27 14:49:39.000000000 +0200 +++ new/squid-2.7.STABLE5/src/enums.h 2008-09-25 04:33:37.000000000 +0200 @@ -1,6 +1,6 @@ /* - * $Id: enums.h,v 1.245.2.2 2008/05/27 12:49:39 hno Exp $ + * $Id: enums.h,v 1.245.2.3 2008/09/25 02:33:37 hno Exp $ * * * SQUID Web Proxy Cache http://www.squid-cache.org/ @@ -261,6 +261,7 @@ #endif HDR_X_ERROR_URL, /* errormap, requested URL */ HDR_X_ERROR_STATUS, /* errormap, received HTTP status line */ + HDR_X_HTTP09_FIRST_LINE, /* internal, first line of HTTP/0.9 response */ HDR_FRONT_END_HTTPS, HDR_PROXY_SUPPORT, HDR_KEEP_ALIVE, diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/src/errorpage.c new/squid-2.7.STABLE5/src/errorpage.c --- old/squid-2.7.STABLE4/src/errorpage.c 2007-11-21 16:06:13.000000000 +0100 +++ new/squid-2.7.STABLE5/src/errorpage.c 2008-10-13 18:32:35.000000000 +0200 @@ -1,6 +1,6 @@ /* - * $Id: errorpage.c,v 1.193 2007/11/21 15:06:13 hno Exp $ + * $Id: errorpage.c,v 1.193.2.1 2008/10/13 16:32:35 hno Exp $ * * DEBUG: section 4 Error Generation * AUTHOR: Duane Wessels @@ -628,7 +628,7 @@ /* no LMT for error pages; error pages expire immediately */ if (strchr(name, ':')) { /* Redirection */ - httpReplySetHeaders(rep, HTTP_MOVED_TEMPORARILY, NULL, "text/html", 0, -1, squid_curtime); + httpReplySetHeaders(rep, HTTP_MOVED_TEMPORARILY, NULL, "text/html", 0, -1, -1); if (err->request) { char *quoted_url = rfc1738_escape_part(urlCanonical(err->request)); httpHeaderPutStrf(&rep->header, HDR_LOCATION, name, quoted_url); @@ -636,7 +636,7 @@ httpHeaderPutStrf(&rep->header, HDR_X_SQUID_ERROR, "%d %s", err->http_status, "Access Denied"); } else { MemBuf content = errorBuildContent(err); - httpReplySetHeaders(rep, err->http_status, NULL, "text/html", content.size, -1, squid_curtime); + httpReplySetHeaders(rep, err->http_status, NULL, "text/html", content.size, -1, -1); /* * include some information for downstream caches. Implicit * replaceable content. This isn't quite sufficient. xerrno is not diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/src/http.c new/squid-2.7.STABLE5/src/http.c --- old/squid-2.7.STABLE4/src/http.c 2008-06-26 00:14:02.000000000 +0200 +++ new/squid-2.7.STABLE5/src/http.c 2008-09-25 04:33:37.000000000 +0200 @@ -1,6 +1,6 @@ /* - * $Id: http.c,v 1.439.2.6 2008/06/25 22:14:02 hno Exp $ + * $Id: http.c,v 1.439.2.7 2008/09/25 02:33:37 hno Exp $ * * DEBUG: section 11 Hypertext Transfer Protocol (HTTP) * AUTHOR: Harvest Derived @@ -432,6 +432,18 @@ hdr_len = httpState->reply_hdr.size; if (hdr_len > 4 && strncmp(httpState->reply_hdr.buf, "HTTP/", 5)) { debug(11, 3) ("httpProcessReplyHeader: Non-HTTP-compliant header: '%s'\n", httpState->reply_hdr.buf); + { + char *t, *t2; + t = xstrdup(httpState->reply_hdr.buf); + t2 = strchr(t, '\n'); + if (t2) + *t2 = '\0'; + t2 = strchr(t, '\r'); + if (t2) + *t2 = '\0'; + httpHeaderPutStr(&reply->header, HDR_X_HTTP09_FIRST_LINE, t); + safe_free(t); + } httpState->reply_hdr_state += 2; httpState->chunk_size = -1; /* Terminated by EOF */ httpState->reply_hdr.size = old_size; @@ -972,7 +984,6 @@ } else if (s == HTTP_INVALID_HEADER) { MemBuf mb; HttpReply *reply = entry->mem_obj->reply; - httpReplyReset(reply); httpBuildVersion(&reply->sline.version, 0, 9); reply->sline.status = HTTP_OK; httpHeaderPutTime(&reply->header, HDR_DATE, squid_curtime); diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/src/HttpHeader.c new/squid-2.7.STABLE5/src/HttpHeader.c --- old/squid-2.7.STABLE4/src/HttpHeader.c 2007-12-21 10:50:19.000000000 +0100 +++ new/squid-2.7.STABLE5/src/HttpHeader.c 2008-09-25 04:33:37.000000000 +0200 @@ -1,6 +1,6 @@ /* - * $Id: HttpHeader.c,v 1.99 2007/12/21 09:50:19 adrian Exp $ + * $Id: HttpHeader.c,v 1.99.2.1 2008/09/25 02:33:37 hno Exp $ * * DEBUG: section 55 HTTP Header * AUTHOR: Alex Rousskov @@ -129,6 +129,7 @@ {"X-Forwarded-For", HDR_X_FORWARDED_FOR, ftStr}, {"X-Request-URI", HDR_X_REQUEST_URI, ftStr}, {"X-Squid-Error", HDR_X_SQUID_ERROR, ftStr}, + {"X-HTTP09-First-Line", HDR_X_HTTP09_FIRST_LINE, ftStr}, {"Negotiate", HDR_NEGOTIATE, ftStr}, #if X_ACCELERATOR_VARY {"X-Accelerator-Vary", HDR_X_ACCELERATOR_VARY, ftStr}, diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/src/main.c new/squid-2.7.STABLE5/src/main.c --- old/squid-2.7.STABLE4/src/main.c 2008-05-27 01:14:30.000000000 +0200 +++ new/squid-2.7.STABLE5/src/main.c 2008-09-25 04:21:52.000000000 +0200 @@ -1,6 +1,6 @@ /* - * $Id: main.c,v 1.403.2.2 2008/05/26 23:14:30 hno Exp $ + * $Id: main.c,v 1.403.2.3 2008/09/25 02:21:52 hno Exp $ * * DEBUG: section 1 Startup and Main Loop * AUTHOR: Harvest Derived @@ -467,6 +467,7 @@ dnsShutdown(); #endif redirectShutdown(); + storeurlShutdown(); locationRewriteShutdown(); authenticateShutdown(); externalAclShutdown(); @@ -1105,6 +1106,7 @@ redirectShutdown(); externalAclShutdown(); refreshCheckShutdown(); + storeurlShutdown(); locationRewriteShutdown(); icpConnectionClose(); #if USE_HTCP diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/src/store.c new/squid-2.7.STABLE5/src/store.c --- old/squid-2.7.STABLE4/src/store.c 2008-07-18 02:44:02.000000000 +0200 +++ new/squid-2.7.STABLE5/src/store.c 2008-10-06 23:26:42.000000000 +0200 @@ -1,6 +1,6 @@ /* - * $Id: store.c,v 1.584.2.6 2008/07/18 00:44:02 hno Exp $ + * $Id: store.c,v 1.584.2.7 2008/10/06 21:26:42 hno Exp $ * * DEBUG: section 20 Storage Manager * AUTHOR: Harvest Derived @@ -1677,10 +1677,12 @@ { StoreEntry *oe = e->mem_obj->old_entry; time_t expires = e->expires; + http_status status = e->mem_obj->reply->sline.status; refresh_cc cc = refreshCC(e, e->mem_obj->request); if (expires == -1) expires = squid_curtime + cc.negative_ttl; - if (oe && !EBIT_TEST(oe->flags, KEY_PRIVATE) && !EBIT_TEST(oe->flags, ENTRY_REVALIDATE)) { + if (status && oe && !EBIT_TEST(oe->flags, KEY_PRIVATE) && !EBIT_TEST(oe->flags, ENTRY_REVALIDATE) && + 500 <= status && status <= 504) { HttpHdrCc *oldcc = oe->mem_obj->reply->cache_control; if (oldcc && EBIT_TEST(oldcc->mask, CC_STALE_IF_ERROR) && oldcc->stale_if_error >= 0) cc.max_stale = oldcc->stale_if_error; diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/src/store_rebuild.c new/squid-2.7.STABLE5/src/store_rebuild.c --- old/squid-2.7.STABLE4/src/store_rebuild.c 2007-09-02 01:09:32.000000000 +0200 +++ new/squid-2.7.STABLE5/src/store_rebuild.c 2008-10-06 23:25:45.000000000 +0200 @@ -1,6 +1,6 @@ /* - * $Id: store_rebuild.c,v 1.80 2007/09/01 23:09:32 hno Exp $ + * $Id: store_rebuild.c,v 1.80.2.2 2008/10/06 21:25:45 hno Exp $ * * DEBUG: section 20 Store Rebuild Routines * AUTHOR: Duane Wessels @@ -67,8 +67,10 @@ StoreEntry *e; hash_link *link_ptr = NULL; hash_link *link_next = NULL; + int limit = opt_foreground_rebuild ? 1 << 30 : 500; validnum_start = validnum; - while (validnum - validnum_start < 500) { + + while (validnum - validnum_start < limit) { if (++bucketnum >= store_hash_buckets) { debug(20, 1) (" Completed Validation Procedure\n"); debug(20, 1) (" Validated %d Entries\n", validnum); diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/src/structs.h new/squid-2.7.STABLE5/src/structs.h --- old/squid-2.7.STABLE4/src/structs.h 2008-07-21 22:18:50.000000000 +0200 +++ new/squid-2.7.STABLE5/src/structs.h 2008-09-25 04:33:37.000000000 +0200 @@ -1,6 +1,6 @@ /* - * $Id: structs.h,v 1.538.2.15 2008/07/21 20:18:50 hno Exp $ + * $Id: structs.h,v 1.538.2.16 2008/09/25 02:33:37 hno Exp $ * * * SQUID Web Proxy Cache http://www.squid-cache.org/ @@ -737,6 +737,7 @@ #endif acl_access *vary_encoding; acl_access *auth_ip_shortcircuit; + acl_access *upgrade_http09; } accessList; acl_deny_info_list *denyInfoList; struct _authConfig { diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/squid-2.7.STABLE4/src/tools.c new/squid-2.7.STABLE5/src/tools.c --- old/squid-2.7.STABLE4/src/tools.c 2008-05-31 22:37:22.000000000 +0200 +++ new/squid-2.7.STABLE5/src/tools.c 2008-10-06 23:27:17.000000000 +0200 @@ -1,6 +1,6 @@ /* - * $Id: tools.c,v 1.260.2.4 2008/05/31 20:37:22 hno Exp $ + * $Id: tools.c,v 1.260.2.5 2008/10/06 21:27:17 hno Exp $ * * DEBUG: section 21 Misc Functions * AUTHOR: Harvest Derived @@ -396,6 +396,7 @@ void fatal(const char *message) { + leave_suid(); releaseServerSockets(); /* check for store_dirs_rebuilding because fatal() is often * used in early initialization phases, long before we ever @@ -444,6 +445,7 @@ void fatal_dump(const char *message) { + leave_suid(); failure_notify = NULL; releaseServerSockets(); if (message) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit simple-ccsm
by root＠Hilbert.suse.de 28 Oct '08

28 Oct '08

Hello community, here is the log from the commit of package simple-ccsm checked in at Tue Oct 28 18:18:22 CET 2008. -------- --- simple-ccsm/simple-ccsm.changes 2008-10-13 12:42:10.000000000 +0200 +++ /mounts/work_src_done/STABLE/simple-ccsm/simple-ccsm.changes 2008-10-28 14:11:45.000000000 +0100 @@ -1,0 +2,8 @@ +Mon Oct 27 17:08:28 CEST 2008 - rodrigo(a)novell.com + +- Removed explicit library Requires: +- Add simple-ccsm-explicitly-disable-compiz.patch to create a + disable-compiz file in ~/.config/compiz to make sure compiz is + not started in gnome-session (bnc#436873) + +------------------------------------------------------------------- calling whatdependson for head-i586 New: ---- simple-ccsm-explicitly-disable-compiz.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ simple-ccsm.spec ++++++ --- /var/tmp/diff_new_pack.X26563/_old 2008-10-28 18:17:43.000000000 +0100 +++ /var/tmp/diff_new_pack.X26563/_new 2008-10-28 18:17:43.000000000 +0100 @@ -24,18 +24,20 @@ Group: System/X11/Utilities PreReq: %fillup_prereq Version: 0.7.8 -Release: 4 -Requires: compiz python-compizconfig python-xml libcompizconfig compiz-manager compiz-fusion-plugins-main compizconfig-settings-manager +Release: 5 +Requires: compiz python-compizconfig python-xml compiz-manager compiz-fusion-plugins-main compizconfig-settings-manager Summary: Simple Settings Manager for Compiz BuildRoot: %{_tmppath}/%{name}-%{version}-build ExclusiveArch: %ix86 x86_64 ppc ppc64 ia64 Source: simple-ccsm-%{version}.tar.bz2 Patch: simple-ccsm-compiz-manager-cmd.diff Patch1: simple-ccsm-kde-enable.patch -#include glx bnc #432301 +# PATCH-FEATURE-OPENSUSE simple-ccsm-default-plugins.patch bnc #432301 -- include glx Patch2: simple-ccsm-default-plugins.patch -#simple-ccsm.desktop patch for better menu integration +# PATCH-FIX-OPENSUSE simple-ccsm.desktop patch -- for better menu integration Patch3: simple-ccsm-desktop.patch +# PATCH-FIX-OPENSUSE simple-ccsm-explicitly-disable-compiz.patch +Patch4: simple-ccsm-explicitly-disable-compiz.patch %py_requires %description @@ -53,6 +55,7 @@ %patch1 -p1 %patch2 -p1 %patch3 -p1 +%patch4 -p1 %build ./setup.py install --root=%buildroot --prefix=/usr --enableDesktopEffects @@ -76,6 +79,11 @@ %{py_sitedir}/* %changelog +* Mon Oct 27 2008 rodrigo(a)novell.com +- Removed explicit library Requires: +- Add simple-ccsm-explicitly-disable-compiz.patch to create a + disable-compiz file in ~/.config/compiz to make sure compiz is + not started in gnome-session (bnc#436873) * Mon Oct 13 2008 rodrigo(a)novell.com - Review and merge changes from X11:Compiz * Sun Oct 12 2008 cyberorg(a)opensuse.org ++++++ simple-ccsm-explicitly-disable-compiz.patch ++++++ Only in simple-ccsm-0.7.8: setup.py~ diff -upr simple-ccsm-0.7.8-orig//simple-ccsm.in simple-ccsm-0.7.8/simple-ccsm.in --- simple-ccsm-0.7.8-orig//simple-ccsm.in 2008-09-22 02:40:29.000000000 +0200 +++ simple-ccsm-0.7.8/simple-ccsm.in 2008-10-27 17:05:47.000000000 +0100 @@ -1288,6 +1288,11 @@ class MainWin: cmd = "kwriteconfig --file ksmserverrc --group General --key windowManager kwin".split(" ") subprocess.Popen(cmd) + # Create a file that indicates compiz is explicitly disabled, so should not + # be started + patch = os.path.expanduser("~/.config/compiz/disable-compiz") + open(path, "w+").close() # touch replacement + # Remove old config files = ("~/.config/compiz/enable-compiz", "~/.config/compiz/compiz-manager") for file in files: Only in simple-ccsm-0.7.8: simple-ccsm.in~ ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit powerpc-utils
by root＠Hilbert.suse.de 28 Oct '08

28 Oct '08

Hello community, here is the log from the commit of package powerpc-utils checked in at Tue Oct 28 18:14:58 CET 2008. -------- --- arch/ppc/powerpc-utils/powerpc-utils.changes 2008-10-27 13:46:47.000000000 +0100 +++ /mounts/work_src_done/STABLE/powerpc-utils/powerpc-utils.changes 2008-10-28 15:00:26.000000000 +0100 @@ -1,0 +2,5 @@ +Tue Oct 28 14:59:48 CET 2008 - olh(a)suse.de + +- Release hotplug children of slots on dlpar remove (bnc#439491 - LTC48584) + +------------------------------------------------------------------- calling whatdependson for head-i586 New: ---- powerpc-utils-papr.no_sysfs_hp_path.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ powerpc-utils.spec ++++++ --- /var/tmp/diff_new_pack.u18593/_old 2008-10-28 18:14:28.000000000 +0100 +++ /var/tmp/diff_new_pack.u18593/_new 2008-10-28 18:14:28.000000000 +0100 @@ -28,7 +28,7 @@ Obsoletes: ppc64-utils Provides: ppc64-utils Version: 1.1.1 -Release: 8 +Release: 9 License: IBM Public License Url: http://powerpc-utils.ozlabs.org/ Group: System/Management @@ -47,6 +47,7 @@ Patch102: powerpc-utils-papr.drmgs_mem_rm.patch Patch103: powerpc-utils-papr.drmgr-symlinks.patch Patch104: powerpc-utils-papr.drmgr-phandle.patch +Patch105: powerpc-utils-papr.no_sysfs_hp_path.patch ExclusiveArch: ppc ppc64 %description @@ -73,6 +74,7 @@ %patch102 -p1 %patch103 -p1 %patch104 -p1 +%patch105 -p1 %build make CFLAGS="$RPM_OPT_FLAGS" %{?jobs:-j%jobs} @@ -108,6 +110,8 @@ %config %attr (755,root,root) /etc/init.d/ibmvscsis.sh %changelog +* Tue Oct 28 2008 olh(a)suse.de +- Release hotplug children of slots on dlpar remove (bnc#439491 - LTC48584) * Mon Oct 27 2008 olh(a)suse.de - use linux,phandle for memory add when ibm,phandle is not available. (bnc#438685 - LTC49075) ++++++ powerpc-utils-papr.no_sysfs_hp_path.patch ++++++ --- cmds/drmgr/common_pci.c | 40 ---------------------------------------- cmds/drmgr/drpci.h | 1 - cmds/drmgr/drslot_chrp_slot.c | 16 +++++++--------- 3 files changed, 7 insertions(+), 50 deletions(-) --- a/cmds/drmgr/common_pci.c +++ b/cmds/drmgr/common_pci.c @@ -61,7 +61,6 @@ alloc_node(struct dr_connector *drc, int node->drc_power = drc->powerdomain; node->dev_type = dev_type; node->sysfs_dev_path = NULL; - node->sysfs_hp_path = get_sysfs_hp_path(node->drc_name); return node; @@ -478,43 +477,6 @@ done: return rc; } -#define PHP_SYSFS_PATH "/sys/bus/pci/slots" - -/** - * get_sysfs_hp_path - * - * @param drc_name - * @returns - */ -char * -get_sysfs_hp_path(char *drc_name) -{ - struct dirent **de_list, *de; - char path[DR_PATH_MAX], location[DR_BUF_SZ], *result = NULL; - int count, i, rc; - - count = scandir(PHP_SYSFS_PATH, &de_list, 0, alphasort); - for (i = 0; i < count; i++) { - de = de_list[i]; - if ((de->d_type != DT_DIR) || is_dot_dir(de->d_name)) - continue; - - sprintf(path, "%s/%s", PHP_SYSFS_PATH, de->d_name); - - rc = get_str_attribute(path, "phy_location", &location, - DR_BUF_SZ); - if ((rc == 0) && (!strcmp(location, drc_name))) { - result = strdup(path); - if (result == NULL) - err_msg("Could not allocate sysfs hp path " - "for %s\n", path); - break; - } - } - - return result; -} - static inline int is_hp_type(char *type) { return (strtoul(type, NULL, 10) > 0); @@ -558,8 +520,6 @@ free_node(struct node *node_list) free(node->ofdt_dname); if (node->sysfs_dev_path) free(node->sysfs_dev_path); - if (node->sysfs_hp_path) - free(node->sysfs_hp_path); if (node->node_pci_info) free(node->node_pci_info); --- a/cmds/drmgr/drpci.h +++ b/cmds/drmgr/drpci.h @@ -97,7 +97,6 @@ struct node { /* One per PCI hot plug char *ofdt_path; char *ofdt_dname; char *sysfs_dev_path; - char *sysfs_hp_path; int skip; uint32_t dev_type; --- a/cmds/drmgr/drslot_chrp_slot.c +++ b/cmds/drmgr/drslot_chrp_slot.c @@ -51,16 +51,14 @@ remove_slot(struct node *node) int rc; char cmd[256], *remove_path; - if (node->sysfs_hp_path) { - rc = disable_hp_children(node->drc_name); - if (rc) - err_msg("failed to disable hotplug children\n"); + rc = disable_hp_children(node->drc_name); + if (rc) + err_msg("failed to disable hotplug children\n"); - rc = release_hp_children(node->drc_name); - if (rc && rc != -EINVAL) { - err_msg("failed to release hotplug children\n"); - return rc; - } + rc = release_hp_children(node->drc_name); + if (rc && rc != -EINVAL) { + err_msg("failed to release hotplug children\n"); + return rc; } dbg("The sensor-state of drc_index 0x%x is %d\n", ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit polkit-default-privs
by root＠Hilbert.suse.de 28 Oct '08

28 Oct '08

Hello community, here is the log from the commit of package polkit-default-privs checked in at Tue Oct 28 18:14:58 CET 2008. -------- --- polkit-default-privs/polkit-default-privs.changes 2008-10-27 09:49:29.000000000 +0100 +++ /mounts/work_src_done/STABLE/polkit-default-privs/polkit-default-privs.changes 2008-10-28 14:42:12.000000000 +0100 @@ -1,0 +2,5 @@ +Tue Oct 28 14:42:02 CET 2008 - lnussel(a)suse.de + +- add system-config-printer and a few more hal device access lines + +------------------------------------------------------------------- calling whatdependson for head-i586 Old: ---- polkit-default-privs-0.1_200810270947.tar.bz2 New: ---- polkit-default-privs-0.1_200810281440.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ polkit-default-privs.spec ++++++ --- /var/tmp/diff_new_pack.j17696/_old 2008-10-28 18:14:05.000000000 +0100 +++ /var/tmp/diff_new_pack.j17696/_new 2008-10-28 18:14:05.000000000 +0100 @@ -1,5 +1,5 @@ # -# spec file for package polkit-default-privs (Version 0.1_200810270947) +# spec file for package polkit-default-privs (Version 0.1_200810281440) # # Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany. # @@ -22,7 +22,7 @@ Name: polkit-default-privs License: GPL v2 or later Group: Productivity/Security -Version: 0.1_200810270947 +Version: 0.1_200810281440 Release: 1 Summary: SUSE PolicyKit default permissions Source: polkit-default-privs-%version.tar.bz2 @@ -71,6 +71,8 @@ /var/adm/fillup-templates/sysconfig.security-polkit_default_privs %changelog +* Tue Oct 28 2008 lnussel(a)suse.de +- add system-config-printer and a few more hal device access lines * Mon Oct 27 2008 lnussel(a)suse.de - combine privilege settings from multiple files (bnc#439127) * Fri Oct 24 2008 lnussel(a)suse.de ++++++ polkit-default-privs-0.1_200810270947.tar.bz2 -> polkit-default-privs-0.1_200810281440.tar.bz2 ++++++ diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/polkit-default-privs-0.1_200810270947/polkit-default-privs.restrictive new/polkit-default-privs-0.1_200810281440/polkit-default-privs.restrictive --- old/polkit-default-privs-0.1_200810270947/polkit-default-privs.restrictive 2008-10-27 09:47:30.000000000 +0100 +++ new/polkit-default-privs-0.1_200810281440/polkit-default-privs.restrictive 2008-10-28 14:40:40.000000000 +0100 @@ -55,6 +55,9 @@ org.freedesktop.hal.device-access.joystick auth_admin_keep_always:yes:yes org.freedesktop.hal.device-access.mouse auth_admin_keep_always:yes:yes org.freedesktop.hal.device-access.video auth_admin_keep_always:yes:yes +org.freedesktop.hal.device-access.fingerprint-reader auth_admin_keep_always:yes:yes +org.freedesktop.hal.device-access.obex auth_admin_keep_always +org.freedesktop.hal.device-access.ppdev auth_admin_keep_always # org.libvirt.unix.monitor auth_admin_keep_always org.libvirt.unix.manage auth_admin_keep_always @@ -110,4 +113,10 @@ # com.google.code.backupmanager.schedule auth_admin +# +# system-config-printer +# + +org.opensuse.cupspkhelper.mechanism.printeraddremove auth_admin_keep_always + ### diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/polkit-default-privs-0.1_200810270947/polkit-default-privs.standard new/polkit-default-privs-0.1_200810281440/polkit-default-privs.standard --- old/polkit-default-privs-0.1_200810270947/polkit-default-privs.standard 2008-10-27 09:47:30.000000000 +0100 +++ new/polkit-default-privs-0.1_200810281440/polkit-default-privs.standard 2008-10-28 14:40:40.000000000 +0100 @@ -61,6 +61,9 @@ org.freedesktop.hal.device-access.joystick auth_admin_keep_always:yes:yes org.freedesktop.hal.device-access.mouse auth_admin_keep_always:yes:yes org.freedesktop.hal.device-access.video auth_admin_keep_always:yes:yes +org.freedesktop.hal.device-access.fingerprint-reader auth_admin_keep_always:yes:yes +org.freedesktop.hal.device-access.obex auth_admin_keep_always +org.freedesktop.hal.device-access.ppdev auth_admin_keep_always # org.libvirt.unix.monitor yes org.libvirt.unix.manage auth_admin_keep_always @@ -116,4 +119,10 @@ # com.google.code.backupmanager.schedule auth_admin +# +# system-config-printer +# + +org.opensuse.cupspkhelper.mechanism.printeraddremove auth_admin_keep_always + ### ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit patterns-openSUSE
by root＠Hilbert.suse.de 28 Oct '08

28 Oct '08

Hello community, here is the log from the commit of package patterns-openSUSE checked in at Tue Oct 28 18:13:04 CET 2008. -------- --- patterns-openSUSE/patterns-openSUSE.changes 2008-10-28 11:25:49.000000000 +0100 +++ /mounts/work_src_done/STABLE/patterns-openSUSE/patterns-openSUSE.changes 2008-10-28 17:23:18.000000000 +0100 @@ -1,0 +2,12 @@ +Tue Oct 28 17:23:03 CET 2008 - coolo(a)suse.de + +- fixed long standing bug 388570 - make kerneloops default + +------------------------------------------------------------------- +Tue Oct 28 13:40:08 CET 2008 - coolo(a)suse.de + +- move java-plugin out of non-oss +- install the pullin packages with non-oss +- make packages required in non-oss-java + +------------------------------------------------------------------- calling whatdependson for head-i586 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ patterns-openSUSE.spec ++++++ --- /var/tmp/diff_new_pack.O13779/_old 2008-10-28 18:12:53.000000000 +0100 +++ /var/tmp/diff_new_pack.O13779/_new 2008-10-28 18:12:53.000000000 +0100 @@ -25,7 +25,7 @@ AutoReqProv: on Summary: Patterns for Installation (full ftp tree) Version: 11.1 -Release: 55 +Release: 56 Url: http://en.opensuse.org/Patterns BuildRoot: %{_tmppath}/%{name}-%{version}-build Source: patterns-openSUSE-data.tar.bz2 @@ -101,6 +101,12 @@ %changelog * Tue Oct 28 2008 coolo(a)suse.de +- fixed long standing bug 388570 - make kerneloops default +* Tue Oct 28 2008 coolo(a)suse.de +- move java-plugin out of non-oss +- install the pullin packages with non-oss +- make packages required in non-oss-java +* Tue Oct 28 2008 coolo(a)suse.de - hopefully sort out the pam-xx packages (only for DVD) * Tue Oct 28 2008 coolo(a)suse.de - remove yast2-wagon ++++++ patterns-openSUSE-data.tar.bz2 ++++++ diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/patterns-openSUSE-data/data/ENHANCED-BASIS-OPT new/patterns-openSUSE-data/data/ENHANCED-BASIS-OPT --- old/patterns-openSUSE-data/data/ENHANCED-BASIS-OPT 2008-10-23 16:28:02.000000000 +0200 +++ new/patterns-openSUSE-data/data/ENHANCED-BASIS-OPT 2008-10-28 17:20:58.000000000 +0100 @@ -59,6 +59,8 @@ hplip // DELL computers mainly #403270 biosdevname +// bnc#388570 +kerneloops -Prc: +Psg: diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/patterns-openSUSE-data/data/GNOME-Utilities-OPT new/patterns-openSUSE-data/data/GNOME-Utilities-OPT --- old/patterns-openSUSE-data/data/GNOME-Utilities-OPT 2008-05-27 11:33:28.000000000 +0200 +++ new/patterns-openSUSE-data/data/GNOME-Utilities-OPT 2008-10-28 17:20:40.000000000 +0100 @@ -1,5 +1,7 @@ +Prq: alacarte +# 388570 +kerneloops-applet -Prq: +Psg: libopensync-plugin-evolution2 diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/patterns-openSUSE-data/data/NON-OSS new/patterns-openSUSE-data/data/NON-OSS --- old/patterns-openSUSE-data/data/NON-OSS 2008-10-20 11:25:02.000000000 +0200 +++ new/patterns-openSUSE-data/data/NON-OSS 2008-10-28 13:39:38.000000000 +0100 @@ -1,12 +1,15 @@ ++Prq: +pullin-fluendo-mp3 +#if defined(__i386__) || defined (__x86_64__) +pullin-flash-player +#endif +-Prq: +Prc: gst-fluendo-mp3 #if defined(__i386__) || defined (__x86_64__) flash-player #endif -#if defined(__i386__) || defined (__x86_64__) -RealPlayer -#endif -#if defined __ia64__ +#if defined(__ia64__) ia32el #endif -Prc: diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/patterns-openSUSE-data/data/NON-OSS-JAVA new/patterns-openSUSE-data/data/NON-OSS-JAVA --- old/patterns-openSUSE-data/data/NON-OSS-JAVA 2008-08-12 15:14:26.000000000 +0200 +++ new/patterns-openSUSE-data/data/NON-OSS-JAVA 2008-10-28 13:38:29.000000000 +0100 @@ -1,8 +1,6 @@ +Prq: -jre >= 1.5 -#if defined(__i386__) -java-plugin >= 1.5 -#endif +jms +mx4j -Prq: +Psg: ant-javamail @@ -11,6 +9,4 @@ javamail-demo javamail-javadoc javamail-monolithic -jms -mx4j -Psg: diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/patterns-openSUSE-data/data/X11 new/patterns-openSUSE-data/data/X11 --- old/patterns-openSUSE-data/data/X11 2008-10-20 11:25:02.000000000 +0200 +++ new/patterns-openSUSE-data/data/X11 2008-10-28 13:37:33.000000000 +0100 @@ -45,6 +45,10 @@ yast2-tv #endif +#if defined(__i386__) +java-plugin >= 1.5 +#endif + // split of ConsoleKit ConsoleKit-x11 // chooce icewm-lite if you have a choice ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit pam_ldap
by root＠Hilbert.suse.de 28 Oct '08

28 Oct '08

Hello community, here is the log from the commit of package pam_ldap checked in at Tue Oct 28 18:12:46 CET 2008. -------- --- pam_ldap/pam_ldap.changes 2008-08-28 18:15:04.000000000 +0200 +++ /mounts/work_src_done/STABLE/pam_ldap/pam_ldap.changes 2008-10-28 16:26:20.000000000 +0100 @@ -1,0 +2,7 @@ +Tue Oct 28 13:54:56 CET 2008 - rhafer(a)suse.de + +- fixed check for message buffer in ldap_get_lderrno and return + PAM_AUTHTOK_ERR instead of PAM_PERM_DENIED when password changing + fails. (bnc#439436) + +------------------------------------------------------------------- calling whatdependson for head-i586 New: ---- pam_ldap-chauthtok-errcode.dif ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ pam_ldap.spec ++++++ --- /var/tmp/diff_new_pack.f12146/_old 2008-10-28 18:12:08.000000000 +0100 +++ /var/tmp/diff_new_pack.f12146/_new 2008-10-28 18:12:08.000000000 +0100 @@ -24,7 +24,7 @@ Group: Productivity/Networking/LDAP/Clients AutoReqProv: on Version: 184 -Release: 135 +Release: 144 Summary: A PAM Module for LDAP Authentication Url: http://www.padl.com/OSS/pam_ldap.html Source: pam_ldap-%{version}.tar.bz2 @@ -32,6 +32,7 @@ Patch: pam_ldap.patch Patch1: pam_ldap-ppolicy-referral-fix.dif Patch2: pam_ldap-expirewarning.dif +Patch3: pam_ldap-chauthtok-errcode.dif BuildRoot: %{_tmppath}/%{name}-%{version}-build %description @@ -53,6 +54,7 @@ %patch -E %patch1 -p1 %patch2 -p1 +%patch3 -p1 cp -v %{S:1} . %{suse_update_libdir README pam_ldap.c pam.conf} @@ -80,6 +82,10 @@ /%{_lib}/security/pam_ldap.so %changelog +* Tue Oct 28 2008 rhafer(a)suse.de +- fixed check for message buffer in ldap_get_lderrno and return + PAM_AUTHTOK_ERR instead of PAM_PERM_DENIED when password changing + fails. (bnc#439436) * Thu Aug 28 2008 rhafer(a)suse.de - improve Password expiration warnings - inform user about grace logins (bnc#420051) @@ -149,7 +155,7 @@ - fixed neededforbuild * Sat Mar 08 2003 kukuk(a)suse.de - Add workaround for KDM Bug [Bug #24931] -* Fri Feb 21 2003 kukuk(a)suse.de +* Thu Feb 20 2003 kukuk(a)suse.de - Fix base and scope values if we have an nss_base_passwd option without scope * Thu Feb 20 2003 rhafer(a)suse.de @@ -207,7 +213,7 @@ * Tue Dec 05 2000 kukuk(a)suse.de - Update to version 82 - Don't log user name of failed logins -* Sun Nov 05 2000 kukuk(a)suse.de +* Sat Nov 04 2000 kukuk(a)suse.de - Use ldaplib in neededforbuild * Wed Sep 27 2000 kukuk(a)suse.de - Fix sshd example ++++++ pam_ldap-chauthtok-errcode.dif ++++++ Index: pam_ldap-184/pam_ldap.c =================================================================== --- pam_ldap-184.orig/pam_ldap.c +++ pam_ldap-184/pam_ldap.c @@ -3264,7 +3264,7 @@ _update_authtok (pam_handle_t *pamh, { syslog (LOG_ERR, "pam_ldap: ldap_extended_operation_s %s", ldap_err2string (rc)); - rc = PAM_PERM_DENIED; + rc = PAM_AUTHTOK_ERR; } else { ++++++ pam_ldap-ppolicy-referral-fix.dif ++++++ --- /var/tmp/diff_new_pack.f12146/_old 2008-10-28 18:12:09.000000000 +0100 +++ /var/tmp/diff_new_pack.f12146/_new 2008-10-28 18:12:09.000000000 +0100 @@ -11,15 +11,6 @@ #ifdef YPLDAPD static int _ypldapd_read_config (pam_ldap_config_t ** presult); #endif -@@ -361,7 +363,7 @@ ldap_get_lderrno (LDAP * ld, char **m, c - lderrno = ld->ld_errno; - #endif - -- if (s != NULL) -+ if (m != NULL) - { - #if defined(HAVE_LDAP_GET_OPTION) && defined(LDAP_OPT_ERROR_STRING) - rc = ldap_get_option (ld, LDAP_OPT_ERROR_STRING, s); @@ -1612,8 +1614,19 @@ _rebind_proc (LDAP * ld, LDAP_CONST char pam_ldap_session_t *session = global_session; #endif ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit pam_krb5
by root＠Hilbert.suse.de 28 Oct '08

28 Oct '08

Hello community, here is the log from the commit of package pam_krb5 checked in at Tue Oct 28 18:12:31 CET 2008. -------- --- pam_krb5/pam_krb5.changes 2008-10-24 14:30:37.000000000 +0200 +++ /mounts/work_src_done/STABLE/pam_krb5/pam_krb5.changes 2008-10-28 15:15:34.245945000 +0100 @@ -1,0 +2,7 @@ +Tue Oct 28 15:09:24 CET 2008 - mc(a)suse.de + +- simplify switch permissions of refresh credentials + (remove pam_krb5-2.2.11-1-refresh-drop-restore-priv.dif + add pam_krb5-2.3.1-switch-perms-on-refresh.dif) + +------------------------------------------------------------------- calling whatdependson for head-i586 Old: ---- pam_krb5-2.2.11-1-refresh-drop-restore-priv.dif New: ---- pam_krb5-2.3.1-switch-perms-on-refresh.dif ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ pam_krb5.spec ++++++ --- /var/tmp/diff_new_pack.M11763/_old 2008-10-28 18:12:04.000000000 +0100 +++ /var/tmp/diff_new_pack.M11763/_new 2008-10-28 18:12:04.000000000 +0100 @@ -26,19 +26,19 @@ Provides: pam_krb AutoReqProv: on Version: 2.3.1 -Release: 38 +Release: 39 Summary: PAM Module for Kerberos Authentication Url: http://sourceforge.net/projects/pam-krb5/ Source: pam_krb5-%{version}-%{PAM_RELEASE}.tar.bz2 Source2: pam_krb5-po.tar.gz Patch1: pam_krb5-2.2.0-0.5-configure_ac.dif -Patch2: pam_krb5-2.2.11-1-refresh-drop-restore-priv.dif Patch3: pam_krb5-2.3.1-log-choise.dif Patch4: pam_krb5-po-Makevars.dif Patch5: pam_krb5-LINGUAS.dif Patch6: pam_krb5-2.3.1-post.dif Patch7: bug-425861_pam_krb5-2.3.1-ccacheperms.patch Patch8: pam_krb5-2.3.1-fix-pwchange-with-use_shmem.dif +Patch9: pam_krb5-2.3.1-switch-perms-on-refresh.dif BuildRoot: %{_tmppath}/%{name}-%{version}-build %description @@ -56,13 +56,13 @@ %setup -q -n pam_krb5-%{version}-%{PAM_RELEASE} %setup -a 2 -T -D -n pam_krb5-%{version}-%{PAM_RELEASE} %patch1 -%patch2 %patch3 -p1 %patch4 -p1 %patch5 %patch6 %patch7 -p1 %patch8 -p1 +%patch9 -p1 %build %{suse_update_config -f} @@ -97,6 +97,10 @@ %attr(755,root,root) /usr/bin/afs5log %changelog +* Tue Oct 28 2008 mc(a)suse.de +- simplify switch permissions of refresh credentials + (remove pam_krb5-2.2.11-1-refresh-drop-restore-priv.dif + add pam_krb5-2.3.1-switch-perms-on-refresh.dif) * Fri Oct 24 2008 mc(a)suse.de - write new ticket into shmem after password change if requested. (bnc#438181) ++++++ pam_krb5-2.3.1-switch-perms-on-refresh.dif ++++++ Index: pam_krb5-2.3.1-1/src/auth.c =================================================================== --- pam_krb5-2.3.1-1.orig/src/auth.c +++ pam_krb5-2.3.1-1/src/auth.c @@ -62,6 +62,7 @@ #include "items.h" #include "kuserok.h" #include "log.h" +#include "perms.h" #include "options.h" #include "prompter.h" #include "sly.h" @@ -477,6 +478,7 @@ int pam_sm_setcred(pam_handle_t *pamh, int flags, int argc, PAM_KRB5_MAYBE_CONST char **argv) { + struct _pam_krb5_perms *saved_perms; notice("pam_setcred (%s) called", (flags & PAM_ESTABLISH_CRED)?"establish credential": (flags & PAM_REINITIALIZE_CRED)?"reinitialize credential": @@ -486,10 +488,22 @@ pam_sm_setcred(pam_handle_t *pamh, int f return pam_sm_open_session(pamh, flags, argc, argv); } if (flags & (PAM_REINITIALIZE_CRED | PAM_REFRESH_CRED)) { + saved_perms = _pam_krb5_switch_perms_r2e(); + if (_pam_krb5_sly_looks_unsafe() == 0) { - return _pam_krb5_sly_maybe_refresh(pamh, flags, - argc, argv); + int i = _pam_krb5_sly_maybe_refresh(pamh, flags, argc, argv); + if (saved_perms != NULL) { + _pam_krb5_restore_perms_r2e(saved_perms); + } + saved_perms = NULL; + + return i; } else { + debug("looks unsafe - ignore refresh"); + if (saved_perms != NULL) { + _pam_krb5_restore_perms_r2e(saved_perms); + } + saved_perms = NULL; return PAM_IGNORE; } } Index: pam_krb5-2.3.1-1/src/perms.c =================================================================== --- pam_krb5-2.3.1-1.orig/src/perms.c +++ pam_krb5-2.3.1-1/src/perms.c @@ -87,3 +87,49 @@ _pam_krb5_restore_perms(struct _pam_krb5 } return ret; } + +struct _pam_krb5_perms * +_pam_krb5_switch_perms_r2e(void) +{ + struct _pam_krb5_perms *ret; + ret = malloc(sizeof(*ret)); + if (ret != NULL) { + ret->ruid = getuid(); + ret->euid = geteuid(); + ret->rgid = getgid(); + ret->egid = getegid(); + if (ret->ruid == ret->euid) { + ret->ruid = -1; + ret->euid = -1; + } + if (ret->rgid == ret->egid) { + ret->rgid = -1; + ret->egid = -1; + } + if (setresgid(ret->rgid, ret->rgid, ret->egid) == -1) { + free(ret); + ret = NULL; + } else { + if (setresuid(ret->ruid, ret->ruid, ret->euid) == -1) { + setresgid(ret->rgid, ret->egid, ret->rgid); + free(ret); + ret = NULL; + } + } + } + return ret; +} + +int +_pam_krb5_restore_perms_r2e(struct _pam_krb5_perms *saved) +{ + int ret = -1; + if (saved != NULL) { + if ((setresuid(saved->ruid, saved->euid, saved->ruid) == 0) && + (setresgid(saved->rgid, saved->egid, saved->rgid) == 0)) { + ret = 0; + } + free(saved); + } + return ret; +} Index: pam_krb5-2.3.1-1/src/perms.h =================================================================== --- pam_krb5-2.3.1-1.orig/src/perms.h +++ pam_krb5-2.3.1-1/src/perms.h @@ -37,4 +37,7 @@ struct _pam_krb5_perms; struct _pam_krb5_perms *_pam_krb5_switch_perms(void); int _pam_krb5_restore_perms(struct _pam_krb5_perms *saved); +struct _pam_krb5_perms *_pam_krb5_switch_perms_r2e(void); +int _pam_krb5_restore_perms_r2e(struct _pam_krb5_perms *saved); + #endif ++++++ pam_krb5-po.tar.gz ++++++ ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0

commit pam_fp
by root＠Hilbert.suse.de 28 Oct '08

28 Oct '08

Hello community, here is the log from the commit of package pam_fp checked in at Tue Oct 28 18:11:59 CET 2008. -------- --- pam_fp/pam_fp.changes 2008-10-27 17:06:07.000000000 +0100 +++ /mounts/work_src_done/STABLE/pam_fp/pam_fp.changes 2008-10-28 12:52:29.113983000 +0100 @@ -1,0 +2,7 @@ +Tue Oct 28 12:50:15 CET 2008 - thoenig(a)suse.de + +- remove empty %post +- do not execute pam-config -d --fp for updates +- Provides/Obsoletes: pam_thinkfinger + +------------------------------------------------------------------- calling whatdependson for head-i586 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ pam_fp.spec ++++++ --- /var/tmp/diff_new_pack.Zs8018/_old 2008-10-28 18:09:46.000000000 +0100 +++ /var/tmp/diff_new_pack.Zs8018/_new 2008-10-28 18:09:46.000000000 +0100 @@ -26,8 +26,10 @@ PreReq: coreutils pam pam-config # on biarch platforms we need to have it before the call of pam-config Recommends: yast2-fingerprint-reader +Obsoletes: pam_thinkfinger <= 0.3 +Provides: pam_thinkfinger = 0.3 Version: 0.1 -Release: 7 +Release: 8 License: GPL v2 or later Group: Productivity/Security Source0: %{name}-%{version}.tar.bz2 @@ -73,10 +75,10 @@ %clean rm -rf %{_buildroot} -%post - %postun -%{_sbindir}/pam-config -d --fp +if [ "$1" == "0" ]; then + %{_sbindir}/pam-config -d --fp +fi %files -n pam_fp %defattr(-,root,root) @@ -86,6 +88,10 @@ /%_lib/security/pam_fp.so %changelog +* Tue Oct 28 2008 thoenig(a)suse.de +- remove empty %%post +- do not execute pam-config -d --fp for updates +- Provides/Obsoletes: pam_thinkfinger * Mon Oct 27 2008 ro(a)suse.de - re-add s390 to ExcludeArch list (not just s390x) * Mon Oct 27 2008 thoenig(a)suse.de ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-commit+help(a)opensuse.org

1 0