SSl-bump wiki entry outdated

Alex, Christos - anybody else with good SSL-bump knowledge Can somebody please udate http://wiki.squid-cache.org/Features/SslBump to document the options for bumping in 3.3 and recommend the safest possible bumping configuration. It is currently still stuck on the 3.1 config examples and leadin

Re: [PATCH] Sending root certificate for validation

On 8/06/2013 4:20 a.m., Tsantilas Christos wrote: This patch modify squid cert validation subsystem to sent to cert validator helper the complete certificates chain, not only the certificates sent by web server. This is may not be possible in all cases, for example in cases where the root certif

Re: [PATCH] Error page format codes upgrade

I will apply this patch to trunk shortly unless there are an last minute objections. Amos

Re: /bzr/squid3/trunk/ r12903: Instruct clang not to treat unused command line arguments as errors

On Mon, Jun 10, 2013 at 11:27 AM, Amos Jeffries wrote: > On 10/06/2013 8:35 a.m., Francesco Chemolli wrote: >> >> >> revno: 12903 >> committer: Francesco Chemolli >> branch nick: trunk >> timestamp: Sun 2013-06-09 22:35:58 +0200 >> mess

Re: /bzr/squid3/trunk/ r12903: Instruct clang not to treat unused command line arguments as errors

On 11/06/2013 12:59 a.m., Kinkie wrote: On Mon, Jun 10, 2013 at 11:27 AM, Amos Jeffries wrote: On 10/06/2013 8:35 a.m., Francesco Chemolli wrote: revno: 12903 committer: Francesco Chemolli branch nick: trunk timestamp: Sun 2013-06-0

Build failed in Jenkins: 3.HEAD-amd64-FreeBSD-9.0-clang #271

See Changes: [Amos Jeffries] Bug 3722: Invalid markup in Armenian hy ERR_ONLY_IF_CACHED_MISS -- [...truncated 17830 lines...] mv -f .deps/Pages.Tpo .deps/Pages.Plo /bin/sh ../..

Re: /bzr/squid3/trunk/ r12903: Instruct clang not to treat unused command line arguments as errors

On 06/10/2013 03:27 AM, Amos Jeffries wrote: > On 10/06/2013 8:35 a.m., Francesco Chemolli wrote: >> >> revno: 12903 >> committer: Francesco Chemolli >> branch nick: trunk >> timestamp: Sun 2013-06-09 22:35:58 +0200 >> message: >>Ins

Re: [PATCH] Sending root certificate for validation

On 06/10/2013 03:16 PM, Amos Jeffries wrote: > On 8/06/2013 4:20 a.m., Tsantilas Christos wrote: >> This patch modify squid cert validation subsystem to sent to cert >> validator helper the complete certificates chain, not only the >> certificates sent by web server. This is may not be possible in

Re: [PATCH] Error page format codes upgrade

On 06/02/2013 05:08 AM, Amos Jeffries wrote: > On 7/04/2013 5:48 p.m., Amos Jeffries wrote: >> What this does is convert ErrorState object to using the generic >> libformat.la parser and macro expansions instead of its own rather >> limited custom ones for error pages and deny_info URL creation. T

Re: [PATCH] Sending root certificate for validation

On 06/10/2013 10:31 AM, Tsantilas Christos wrote: > On 06/10/2013 03:16 PM, Amos Jeffries wrote: >> On 8/06/2013 4:20 a.m., Tsantilas Christos wrote: >>> This patch modify squid cert validation subsystem to sent to cert >>> validator helper the complete certificates chain, not only the >>> certific

Re: Should we remove ESI?

On 06/09/2013 02:40 PM, Kinkie wrote: > while attempting to increase portability to recent clang releases, I > noticed that libTrie hasn't benefited from the portability work that > was done in the past few years. > > I can see three ways to move forward: > 1- replicate these changes into libTr

Re: [PATCH] Sending root certificate for validation

On 06/10/2013 08:06 PM, Alex Rousskov wrote: > On 06/10/2013 10:31 AM, Tsantilas Christos wrote: >> On 06/10/2013 03:16 PM, Amos Jeffries wrote: >>> On 8/06/2013 4:20 a.m., Tsantilas Christos wrote: This patch modify squid cert validation subsystem to sent to cert validator helper the com

Re: [PATCH] Support forwarding intercepted but not bumped connections to cache_peers

On 06/07/2013 10:45 AM, Alex Rousskov wrote: > On 05/24/2013 05:58 PM, Alex Rousskov wrote: >> When talking to a cache_peer (i.e., sending a CONNECT request before >> tunneling the transaction), tunnel code is using a clever hack: Squid >> does not parse the CONNECT response from peer but blind

Build failed in Jenkins: 3.HEAD-amd64-opensuse #522

See -- Started by upstream project "3.HEAD-amd64-CentOS-5.3" build number 2464 originally caused by: Started by an SCM change Building remotely on opensuse-x64 in workspace

Build failed in Jenkins: 3.HEAD-amd64-FreeBSD-7.2 #1887

See -- Started by upstream project "3.HEAD-amd64-CentOS-5.3" build number 2464 originally caused by: Started by an SCM change Building remotely on east in workspace

Re: [PATCH] Error page format codes upgrade

On 11/06/2013 4:53 a.m., Alex Rousskov wrote: On 06/02/2013 05:08 AM, Amos Jeffries wrote: On 7/04/2013 5:48 p.m., Amos Jeffries wrote: What this does is convert ErrorState object to using the generic libformat.la parser and macro expansions instead of its own rather limited custom ones for err

Build failed in Jenkins: 3.HEAD-amd64-FreeBSD-9.0-clang #272

See Changes: [Alex Rousskov] Support forwarding intercepted but not bumped connections to cache_peers. When talking to a cache_peer (i.e., sending a CONNECT request before tunneling the transaction), tunnel code is u

Jenkins build is back to normal : 3.HEAD-amd64-FreeBSD-7.2 #1888

See

Jenkins build is back to normal : 3.HEAD-amd64-opensuse #523

See