Author: Mark Nottingham <mnot@pobox.com>
Bug #2376: Round-Robin becomes unbalanced when a peer dies and comes back
When a peer goes down and then comes back, its round-robin counters aren't
reset, causing it to get a disproportionate amount of traffic until it "catches
up" with the rest of the peers in the round-robin pool.
If it was down for load-related issues, this has the effect of making it more
likely that it will go down again, because it's temporarily handling the load
of the entire pool.
Normally, this isn't a concern, because the number of requests that it can get
out-of-step is relatively small (bounded to how many requests it can be given
before it is considered down -- is this 10 in all cases, or are there corner
cases?), but in an accelerator case where the origin has a process-based
request-handling model, or back-end processes are CPU-intensive, it is.
This patch resets the counters each time a peer changes state.
Windows port: Fix mswin_check_ad_group build error on MinGW and Cygwin
The w32api currently available on MinGW and Cygwin is not complete, and
lacks the needed AD functions for mswin_check_ad_group.
This add to config.test the check for the availability of the needed functions.
This converts the hard-coded footer section of all error pages to XHTML
or HTML 4.01 Strict compliance. Ready for any improvements done on page
templates themselves to match the compliance level.
Windows port: add option for control of IP address changes notification in squid.conf
On Windows Squid by default will monitor IP address changes and will
reconfigure itself after any detected event. This is very useful for
proxies connected to internet with dial-up interfaces.
In some cases (a Proxy server acting as VPN gateway is one) it could be
desiderable to disable this behaviour.
Windows port: forward port of 2.7 lib functions updates
- Implement crypt() on Windows
- Implement getopt() on Windows
- Implement dirent-style opendir(), readdir(), closedir(),
rewinddir(), seekdir() and telldir() on Windows
Author: Guido Serassio <serassio@squid-cache.org>
Fix build error on Solaris using gcc and --with-large-files
On Solaris getconf returns for CFLAGS and LDFLAGS -xarch=generic64 option, but
this option is supported only by Sun cc, so we need to We need to replace it
with -m64 gcc equivalent option
Amos Jeffries [Fri, 27 Jun 2008 13:40:12 +0000 (07:40 -0600)]
Author: Alter <alter@alter.org.ua>
Bug 2301: Regression: Log format request/reply size options
MFC: logging HTTP-request size
I've made patch to Squid 2.5-stable14 (r4), which enables logging of
http-request size and/or total request+reply size.
Patch extends 'logformat' option of squid.conf. '>st' and 'st' can be
used to log request size and total size respectively. If 'st' is used
instead of '<st', squid will log total request size
instead of reply size to access.log. For example
Amos Jeffries [Fri, 20 Jun 2008 12:46:59 +0000 (06:46 -0600)]
Bug 1566 (also Bug 975): esi:include aborts with lock assert
Proper fix requires callers inserting HTTPMSGLOCK() when the base rep
pointers are set, and HTTPMSGUNLOCK() macros when done. The lock/unlock
mechanism will take care of garbage collection in the background if used
properly.
The function this patches has no need to perform any of that itself
either way (it's a * not a ** ptr parameter so _cannot_ be safely deleted).
I'm cementing the temporary fix for 975 and 1566 as a permanent one and
documenting the correct requirements of the functions callers to prevent
memory leaks.
If leaks are found it will be separate bugs in the calling code related
to bad refcounting.
Amos Jeffries [Thu, 19 Jun 2008 05:35:31 +0000 (23:35 -0600)]
Author: Henrik Nordstrom <henrik@henriknordstrom.net>
Fix SNMP reporting of counters with a value >= 0xFF800000
The ASN.1 encoding of unsigned integers incorrectly compressed the value
as if it was a signed integer, truncating leading 0xFF octest, causing
0xFF800000 to be send ax 0x800000, 0xFFFF8000 as 0x8000 etc..
Amos Jeffries [Fri, 13 Jun 2008 04:42:05 +0000 (22:42 -0600)]
Update ACL docs
- Some regex types were missing -i mentions.
- Altered auth type to mention intercept alongside transparent
now that they are distinct in squid
- Also cosmetic re-order of a few items to provide a some type grouping
Amos Jeffries [Thu, 22 May 2008 06:04:40 +0000 (18:04 +1200)]
Silence secondary errors on fatal shutdowns.
This patch causes fatal() errors to set the shutdown flag before aborting.
The result of this is that secondary errors not related to the fatal condition
but caused during the shutdown sequence no longer confuse the error traces.
It also cleans up a little broken whitespace formatting in the snmp_core.cc
Amos Jeffries [Mon, 19 May 2008 11:24:47 +0000 (05:24 -0600)]
Author: Guido Serassio <serassio@squid-cache.org>
Windows port: Added new mswin_check_ad_group external ACL helper
This helper allow the lookup of users's group membership in a Windows
Active Directory domain.
It overcomes the Lan Manager limits of mswin_check_lm_group, but it can be
used only with native Windows Active Directory domains, so mswin_check_lm_group
will not removed from Squid.
Amos Jeffries [Tue, 13 May 2008 14:51:16 +0000 (08:51 -0600)]
Add cachemgr.conf.default for easier maintenance
cachemgr.conf has for a long while been created conditionally if none
already existed, but no current new default file was added to compare
for new configuration options.
This patch adds a file named cachemgr.conf.default next to the cachemgr.conf
cachemgr.conf.default file is replaces unconditionally so that it remains
current with the most recently installed build.
cachemgr.conf itself is only created if not already present so as not to
loose local configuration changes.
Amos Jeffries [Mon, 12 May 2008 01:51:12 +0000 (13:51 +1200)]
Bug 2206: Build error caused by incorrect configure include file detection
Adds type-definitions for the *BSD family networking OS header files which
depend on them without including the necessary definition headers themselves.
Amos Jeffries [Mon, 12 May 2008 01:48:26 +0000 (13:48 +1200)]
Bug 2196: configure: net*/*.h present but cannot be compiled
This moves critical net*/*.h file tests from the general location
and use testign to the *BSD special testing which accounts for
system file dependencies.
TODO: some files are still missing dependencies even with the *BSD test
their brokenness will be fixed at a later point. (bug 2206)
Amos Jeffries [Sun, 4 May 2008 11:53:29 +0000 (23:53 +1200)]
Author: Henrik Nordstrom <henrik@henriknordstrom.net>
Make --with-large-files try to build 64-bit if possible
--with-large-files for some reason tried to make a 32-bit build with
large file offsets even if the host supports 64-bit applications, making
--with-large-files degrade Squid capabilities on 64-bit OS:es..
Amos Jeffries [Sun, 4 May 2008 11:08:15 +0000 (23:08 +1200)]
Author: Guido Serassio <serassio@squid-cache.org>
Windows port: Add support for the Windows machine DNS domain, and also automatically derived default domain
This patch adds the capacity to get the machine DNS domain from the registry, similar to
search but only accepting a single domain.
In addition it adds support for automatically deriving the domain from
the fully qualified hostname.
Also fixed some memory leaks during the DNS configuration parse in the registry.
Amos Jeffries [Sun, 4 May 2008 11:05:58 +0000 (23:05 +1200)]
Author: Guido Serassio <serassio@squid-cache.org>
Removed the advertisement clause from BSD license
According to the new revised (3-clause) BSD license:
ftp://ftp.cs.berkeley.edu/pub/4bsd/README.Impt.License.Change
the advertisement clause (3) of old (4-clause) BSD license can
be deleted.
Also added forgotten reference to lib/strnstr.cc into CREDITS
Adds --enable-zph-qos options to turn on the following:
- Allows you to select a TOS/Diffserv value to mark local hits.
- Allows you to select a TOS/Diffserv value to mark peer hits.
- Allows you to selectively set only sibling or sibling+parent requests
- Allows any HTTP response towards clients will
have the TOS value of the response comming from the remote
server masked with the value of zph_preserve_miss_tos_mask.
For this to work correctly, you will need to patch your linux
kernel with the TOS preserving ZPH patch.
The kernel patch can be downloaded from http://zph.bratcheda.org
- Allows you to mask certain bits in the TOS received from the
remote server, before copying the value to the TOS send towards
clients.
projects / thirdparty / squid.git / log
