+Changes to squid-4.0.23 (19 Jan 2018):
+
+ - Bug 4715: security_file_certgen: Remove -g and -n options docs
+ - Bug 4679: User names not sent to url_rewrite_program
+ - Bug 4631: security_file_certgen helper without disk cache
+ - Bug 3911: clang -fsanitize warnings
+ - Bug 2378: Duplicates in selected peer destinations
+ - Nettle v3.4 support
+ - Fix Squid FTP server dying because of an unhandled exception
+ - Automatically revive hopeless kids on reconfigure and after a timeout
+ - Fix %<Hs, %<pt, %<tt, %<bs calculation bugs for error responses
+ - ... and many documentation updates
+ - ... and some stability fixes
+
Changes to squid-4.0.22 (07 Dec 2017):
- Regression fix: Relay peer CONNECT error status line and headers to clients
<!doctype linuxdoc system>
<article>
-<title>Squid 4.0.22 release notes</title>
+<title>Squid 4.0.23 release notes</title>
<author>Squid Developers</author>
<abstract>
<toc>
<sect>Notice
-<p>The Squid Team are pleased to announce the release of Squid-4.0.22 for testing.
+<p>The Squid Team are pleased to announce the release of Squid-4.0.23 for testing.
This new release is available for download from <url url="http://www.squid-cache.org/Versions/v4/"> or the
<url url="http://www.squid-cache.org/Download/http-mirrors.html" name="mirrors">.
<item>Improved SMP support
<item>Improved process management
<item>Initial GnuTLS support
+ <item>ESI Custom Parser removal
</itemize>
Most user-facing changes are reflected in squid.conf (see below).
the OpenSSL options when using GnuTLS.
+<sect1>ESI Custom Parser removal
+<p>The Squid custom ESI (Edge Side Includes) parser has been removed in favour
+of better supported and maintained third-party libraries. At least one of libxml2
+or libexpat is now mandatory to build support for the ESI response processor.
+
+
<sect>Changes to squid.conf since Squid-3.5
<p>
There have been changes to Squid's configuration file since Squid-3.5.
<tag>acl</tag>
<p>New <em>-m</em> flag for <em>note</em> ACL to match substrings.
+ <p>New <em>clientside_mark</em> type for matching Netfilter CONNMARK on
+ the client TCP connection.
<p>New <em>connections_encrypted</em> type for matching transactions
where all HTTP messages were received over TLS transport connections,
including messages received from ICAP servers.
<p>Replaced option <em>sslcafile=</em> with <em>tls-cafile=</em>
which takes multiple entries.
+ <tag>esi_parser</tag>
+ <p>Removed <em>custom</em> parser option.
+ <p>Changed default to auto-detect available parsers instead of <em>custom</em>.
+
<tag>external_acl_type</tag>
<p>New parameter <em>queue-size=</em> to set the maximum number
of queued requests.
negotiated cipher of the client connection.
<p>New code <em>%ssl::<negotiated_cipher</em> to display the
negotiated cipher of the last server or peer connection.
+ <p>Fixed <em>%<Hs</em>, <em>%<pt</em> and <em>%<tt</em>
+ codes for received CONNECT errors.
+ <p>Improved <em>%<bs</em> logging on forwarding retries.
+ <p>Improved <em>%<Hs</em>, <em>%<pt</em>, <em>%<tt</em>,
+ <em>%<bs</em> logging on SslBump errors.
<tag>pid_filename</tag>
<p>Default value now based on squid -n command line parameter.
actually auto-detect them without configuring the module
list manually.
+ <tag>--enable-esi</tag>
+ <p>Custom ESI parser has been removed.
+ Libxml2 or libexpat is now required to enable ESI processing.
+
</descrip>
</p>
projects / thirdparty / squid.git / commitdiff
