------------------------------------------------------------ revno: 10694 revision-id: squid3@treenet.co.nz-20100801080809-vdn8zaeafdpkn9ee parent: squid3@treenet.co.nz-20100801062948-spbyl1dyw60zpluu committer: Amos Jeffries branch nick: trunk timestamp: Sun 2010-08-01 20:08:09 +1200 message: Drop 3.2 release notes html from 3.HEAD ------------------------------------------------------------ # Bazaar merge directive format 2 (Bazaar 0.90) # revision_id: squid3@treenet.co.nz-20100801080809-vdn8zaeafdpkn9ee # target_branch: http://www.squid-cache.org/bzr/squid3/trunk/ # testament_sha1: d01cc751c4f167d8e843fad599d3c8c75402552d # timestamp: 2010-08-01 08:53:44 +0000 # source_branch: http://www.squid-cache.org/bzr/squid3/trunk/ # base_revision_id: squid3@treenet.co.nz-20100801062948-\ # spbyl1dyw60zpluu # # Begin patch === removed file 'doc/release-notes/release-3.2.html' --- doc/release-notes/release-3.2.html 2010-06-11 06:28:50 +0000 +++ doc/release-notes/release-3.2.html 1970-01-01 00:00:00 +0000 @@ -1,714 +0,0 @@ - - - - - Squid 3.2.0.0 release notes - - -

Squid 3.2.0.0 release notes

- -

Squid Developers

-
-This document contains the release notes for version 3.2 of Squid. -Squid is a WWW Cache application developed by the National Laboratory -for Applied Network Research and members of the Web Caching community. -
-

-

1. Notice

- - -

-

2. Major new features since Squid-3.1

- - -

-

3. Changes to squid.conf since Squid-3.1

- - -

-

4. Changes to ./configure options since Squid-3.1

- - -

-

5. Options Removed since Squid-2

- - -

-

6. Regressions since Squid-2.7

- - - -
-

1. Notice

- -

The Squid Team are pleased to announce the release of Squid-3.2.0.0 for testing.

-

This new release is available for download from -http://www.squid-cache.org/Versions/v3/3.2/ or the -mirrors.

-

While this release is not deemed ready for production use, we believe it is ready for wider testing by the community.

-

We welcome feedback and bug reports. If you find a bug, please see -http://wiki.squid-cache.org/SquidFaq/TroubleShooting#head-7067fc0034ce967e67911becaabb8c95a34d576d for how to submit a report with a stack trace.

- -

1.1 Known issues -

- -

Although this release is deemed good enough for use in many setups, please note the existence of -open bugs against Squid-3.2.

- -

1.2 Changes since earlier releases of Squid-3.2 -

- -

The 3.2 change history can be -viewed here.

- -

2. Major new features since Squid-3.1

- -

Squid 3.2 represents a new feature release above 3.1.

- -

The most important of these new features are: -

-

-

Most user-facing changes are reflected in squid.conf (see below).

- -

2.1 Helper Multiplexer -

- -

The helper multiplexer's purpose is to relieve some of the burden -Squid has when dealing with slow helpers. It does so by acting as a -middleman between squid and the actual helpers, talking to Squid via -the multiplexed concurrent variant of the helper protocol and to the -helpers via the non-concurrent variant.

- -

Helpers are started on demand, and in theory the muxer can handle up to -1k helpers per instance. It's up to squid to decide how many helpers -to start.

- -

The muxer knows nothing about the actual messages being passed around, -and as such can't really (yet?) compensate for broken helpers. -It is not yet able to manage dying helpers, but it will.

- -

To configure the multiplexer add its binary name (usually /usr/share/libexec/helper-mux.pl) -in front of the name of whichever helper is being multiplexed. It takes the helper binary -path and parameters as its own command parameters. The concurrency setting already -existing in Squid is used to configure how many child helpers it may run.

- -

For example, a traditional configration is -

-        url_rewrite_program /your/redirector.sh
-        url_rewrite_children 5
-   
-
- -the alternative multiplexer configuration is: -
-        url_rewrite_program /usr/share/libexec/helper-mux.pl /your/redirector.sh
-        url_rewrite_children 1 concurrency=5
-   
-
-

- -

Helpers which are already concurrent protocol enabled gain little benefit from the multiplexer -on most systems. However on some systems where Squid spawning helpers causes excess memory usage -the reduction in direct helper spawned by Squid can result in a great reduction in resource use.

- -

The helper can be controlled using various signals: -

-

- -

2.2 Helper Name Changes -

- -

To improve the understanding of what each helper does and where it should be used the helper binaries -which are bundled with Squid have undergone a naming change in this release.

- -

Below is a list of the old helper names and what their names have changed to. -For several helpers the directory name used in --enable-X-helpers configure option has also changed.

- -

Basic Authentication protocol helpers

- -

-

-

- -

Digest Authentication protocol helpers

- -

-

-

- -

External ACL helpers

- -

-

-

- -

Negotiate Authentication protocol helpers

- -

-

-

- -

NTLM Authentication protocol helpers

- -

-

-

- -

URL re-write helpers

- -

This group of helpers have been bundled to demonstrate how to code URL re-writers: -

-

- - -

2.3 Multi-Lingual manuals -

- -

The man(8) and man(1) pages bundled with Squid are now provided online for all -versions and beginning with 3.2 they are available in languages other than english.

- -

Details in -The Squid wiki

- -

3.1 began the Internationalization of Squid with the public facing error pages. -This move begins the Localization of the internal administrator facing manuals.

- - -

2.4 Solaris 10 pthreads Support (Experimental) -

- -

Automatic detection and use of the pthreads library available from Solaris 10

- - -

3. Changes to squid.conf since Squid-3.1

- -

There have been changes to Squid's configuration file since Squid-3.1.

-

This section gives a thorough account of those changes in three categories:

-

-

-

- - -

3.1 New tags -

- -

-

-
adapted_http_access
-

Access control based on altered HTTP request following adaptation alterations (ICAP, eCAP, URL rewriter). -An upgraded drop-in replacement for http_access2 found in Squid-2.

- -
eui_lookup
-

Whether to lookup the EUI or MAC address of a connected client.

- -
memory_cache_mode
-

Controls which objects to keep in the memory cache (cache_mem) -

-        'always'  Keep most recently fetched objects in memory (default)
-        
-        'disk'    Only disk cache hits are kept in memory, which means
-                  an object must first be cached on disk and then hit
-                  a second time before cached in memory.
-        
-        network   Only objects fetched from network is kept in memory
-        
-
-

- -
logfile_daemon
-

Ported from 2.7. Specify the file I/O daemon helper to run for logging.

- -
tproxy_uses_indirect_client
-

Controls whether the indirect client address found in the X-Forwarded-For -header is used for spoofing instead of the directly connected client address. -Requires both --enable-follow-x-forwarded-for and --enable-linux-netfilter

- -
-

- -

3.2 Changes to existing tags -

- -

-

-
access_log
-

New stdio module to send log data directly from Squid to a disk file. -This is the historic behaviour of Squid before logging modules were introduced, and -remains the default used when no module is selected. -It is recommended to upgrade logging to the faster daemon: module.

-

New daemon module to send each log line as text data to a file I/O daemon handling the slow disk I/O. -New installs, or installs with no logs configured explicitly will use this module by default.

-

New tcp module to send each log line as text data to a TCP receiver.

-

New udp module to send each log line as text data to a UDP receiver.

- -
acl random
-

New type random. Pseudo-randomly match requests based on a configured probability.

- -
auth_param
-

New options for Basic, Digest, NTLM, Negotiate children settings. -startup=N determins minimum number of helper processes used. -idle=N determines how many helper to retain as buffer against sudden traffic loads. -concurrency=N previously called auth_param ... concurrency as a separate option.

-

Removed Basic, Digest, NTLM, Negotiate auth_param ... concurrency setting option.

- -
deny_info
-

Support URL format tags. For dynamically generated URL in denial redirect.

- -
external_acl_type
-

New format tags and option parameters:

-

%SRCEUI48 EUI-48 / MAC address of client from ARP lookup.

-

%SRCEUI64 EUI-64 of clients with SLAAC address.

-

children-max=N determins maximum number of helper processes used.

-

children-startup=N determins minimum number of helper processes used.

-

children-idle=N determines how many helper to retain as buffer against sudden traffic loads.

-

Deprecated children=N in favor of children-max=N.

- -
logformat
-

%>lp Local TCP port used by transactions with http servers.

-

%sn Unique sequence number per log line. Ported from 2.7

-

%<eui EUI logging (EUI-48 / MAC address for IPv4, EUI-64 for IPv6) -Both EUI forms are logged in the same field. Type can be identified by length or byte delimiter.

- -
memory_pools_limit
-

Memory limits have been revised and corrected from 3.1.4 onwards.

-

Please check and update your squid.conf to use the text none for no limit instead of the old 0 (zero).

-

All users upgrading need to be aware that from Squid-3.3 setting this option to 0 (zero) will mean zero bytes of memory get pooled.

- -
windows_ipaddrchangemonitor
-

Now only available to be set in Windows builds.

- -
url_rewrite_children
-

New options startup=N, idle=N, concurrency=N -

    -
  • startup=N allow finer tuning of how many helpers are started initially.
    • -
  • idle=N allow fine tuning of how many helper to retain as buffer against sudden traffic loads.
    • -
  • concurrency=N was previously called url_rewrite_concurrency as a distinct directive.
    • -
-

- -
-

- - -

3.3 Removed tags -

- -

-

-
ftp_list_width
-

Obsolete.

- -
url_rewrite_concurrency
-

Replaced by url_rewrite_children ... concurrency=N option.

- -
-

- - -

4. Changes to ./configure options since Squid-3.1

- -

There have been some changes to Squid's build configuration since Squid-3.1.

-

This section gives an account of those changes in three categories:

-

-

-

- - -

4.1 New options -

- -

-

-
--enable-auth-basic[=HELPERS]
-

Specified without any parameters all helpers will be auto-built.

-

With an explicit empty list ="" protocol suport will be built but no helpers.

-

With an explicit list protocol support and just those helpers will be built.

- -
--enable-auth-digest[=HELPERS]
-

Specified without any parameters all helpers will be auto-built.

-

With an explicit empty list ="" protocol suport will be built but no helpers.

-

With an explicit list protocol support and just those helpers will be built.

- -
--enable-auth-negotiate
-

Specified without any parameters all helpers will be auto-built.

-

With an explicit empty list ="" protocol suport will be built but no helpers.

-

With an explicit list protocol support and just those helpers will be built.

- -
--enable-auth-ntlm
-

Specified without any parameters all helpers will be auto-built.

-

With an explicit empty list ="" protocol suport will be built but no helpers.

-

With an explicit list protocol support and just those helpers will be built.

- -
--enable-eui
-

Enable Support for handling EUI operations. -This includes ARP lookups for MAC (EUI-48) addresses and the ACL arp type tests.

- -
--enable-log-daemon-helpers
-

Build helpers for logging I/O.

- -
--enable-url-rewrite-helpers
-

Build helpers for some basic URL-rewrite actions. For use by url_rewrite_program. -If omitted or set to =all then all bundled helpers that are able to build will be built. -If set to a specific list of helpers then only those helpers will build. -Currently one demo helper fake is provided in shell and C++ forms to demonstrate -the helper protocol usage and provide exemplar code.

- -
-

- -

4.2 Changes to existing options -

- -

-

-
--enable-auth
-

No longer takes a list of arguments. This option now is restricted to building with or without for authentication.

-

The new --enable-auth-X/--disable-auth-X parameters determine which authentication protocols and helpers are built.

- -
-

-

4.3 Removed options -

- -

-

-
--enable-arp-acl
-

Replaced by --enable-eui

- -
--enable-auth-basic-helpers
-

replaced by --enable-auth-basic.

- -
--enable-auth-digest-helpers
-

replaced by --enable-auth-digest.

- -
--enable-auth-negotiate-helpers
-

replaced by --enable-auth-negotiate.

- -
--enable-auth-ntlm-helpers
-

replaced by --enable-auth-ntlm.

- -
-

- - -

5. Options Removed since Squid-2

- -

Some squid.conf and ./configure options which were available in Squid-2.6 and Squid-2.7 are made obsolete in Squid-3.2.

- -

5.1 Removed squid.conf options since Squid-2.7 -

- -

-

-
auth_param
-

blankpassword option for basic scheme removed.

- -
cache_peer
-

http11 Obsolete.

- -
external_acl_type
-

Format tag %{Header} replaced by %>{Header}

-

Format tag %{Header:member} replaced by %>{Header:member}

- -
header_access
-

Replaced by request_header_access and reply_header_access

- -
http_port
-

no-connection-auth replaced by connection-auth=[on|off]. Default is ON.

-

transparent option replaced by intercept

-

http11 obsolete.

- -
http_access2
-

Replaced by adapted_http_access

- -
httpd_accel_no_pmtu_disc
-

Replaced by http_port disable-pmtu-discovery= option

- -
incoming_rate
-

Obsolete.

- -
redirector_bypass
-

Replaced by url_rewrite_bypass

- -
server_http11
-

Obsolete.

- -
upgrade_http0.9
-

Obsolete.

- -
zph_local
-

Replaced by qos_flows local-hit=

- -
zph_mode
-

Obsolete.

- -
zph_option
-

Obsolete.

- -
zph_parent
-

Replaced by qos_flows parent-hit=

- -
zph_sibling
-

Replaced by qos_flows sibling-hit=

- -
-

- -

5.2 Removed squid.conf options since Squid-2.6 -

- -

-

-
cache_dir
-

read-only option replaced by no-store.

- -
-

- -

5.3 Removed ./configure options since Squid-2.7 -

- -

-

-
--enable-coss-aio-ops
-

Obsolete.

- -
--enable-devpoll
-

Replaced by automatic detection.

- -
--enable-dlmalloc=LIB
-

Obsolete.

- -
--enable-epoll
-

Replaced by automatic detection.

- -
--enable-forward-log
-

Obsolete.

- -
--enable-heap-replacement
-

Obsolete.

- -
--enable-htcp
-

Obsolete. Enabled by default.

- -
--enable-large-cache-files
-

Obsolete.

- -
--enable-mempool-debug
-

Obsolete.

- -
--enable-multicast-miss
-

Obsolete.

- -
--enable-poll
-

Replaced by automatic detection.

- -
--enable-select
-

Replaced by automatic detection.

- -
--enable-select-simple
-

Replaced by automatic detection.

- -
--enable-snmp
-

Obsolete. Enabled by default.

- -
--enable-truncate
-

Obsolete.

- -
--disable-kqueue
-

Obsolete. Disabled by default.

- -
-

- - -

6. Regressions since Squid-2.7

- -

Some squid.conf and ./configure options which were available in Squid-2.7 are not yet available in Squid-3.2

- -

If you need something to do then porting one of these from Squid-2 to Squid-3 is most welcome.

- -

6.1 Missing squid.conf options available in Squid-2.7 -

- -

-

-
acl
-

urllogin option not yet ported from 2.6

-

urlgroup option not yet ported from 2.6

- -
authenticate_ip_shortcircuit_access
-

Not yet ported from 2.7

- -
authenticate_ip_shortcircuit_ttl
-

Not yet ported from 2.7

- -
broken_vary_encoding
-

Not yet ported from 2.6

- -
cache_dir
-

min-size option not yet ported from Squid-2

-

COSS storage type is lacking stability fixes from 2.6

-

COSS overwrite-percent= option not yet ported from 2.6

-

COSS max-stripe-waste= option not yet ported from 2.6

-

COSS membufs= option not yet ported from 2.6

-

COSS maxfullbufs= option not yet ported from 2.6

- -
cache_peer
-

idle= not yet ported from 2.7

-

monitorinterval= not yet ported from 2.6

-

monitorsize= not yet ported from 2.6

-

monitortimeout= not yet ported from 2.6

-

monitorurl= not yet ported from 2.6

- -
cache_vary
-

Not yet ported from 2.6

- -
collapsed_forwarding
-

Not yet ported from 2.6

- -
error_map
-

Not yet ported from 2.6

- -
external_acl_type
-

%ACL format tag not yet ported from 2.6

-

%DATA format tag not yet ported from 2.6

- -
external_refresh_check
-

Not yet ported from 2.7

- -
http_port
-

act-as-origin not yet ported from 2.7

-

urlgroup= not yet ported from 2.6

- -
ignore_ims_on_miss
-

Not yet ported from 2.7

- -
location_rewrite_access
-

Not yet ported from 2.6

- -
location_rewrite_children
-

Not yet ported from 2.6

- -
location_rewrite_concurrency
-

Not yet ported from 2.6

- -
location_rewrite_program
-

Not yet ported from 2.6

- -
logformat
-

%oa tag not yet ported from 2.7

- -
max_stale
-

Not yet ported from 2.7

- -
refresh_pattern
-

stale-while-revalidate= not yet ported from 2.7

-

ignore-stale-while-revalidate= not yet ported from 2.7

-

max-stale= not yet ported from 2.7

-

negative-ttl= not yet ported from 2.7

- -
refresh_stale_hit
-

Not yet ported from 2.7

- -
storeurl_access
-

Not yet ported from 2.7

- -
storeurl_rewrite_children
-

Not yet ported from 2.7

- -
storeurl_rewrite_concurrency
-

Not yet ported from 2.7

- -
storeurl_rewrite_program
-

Not yet ported from 2.7

- -
update_headers
-

Not yet ported from 2.7

- -
zero_buffers
-

Not yet ported from 2.7

- -
-

- -

6.2 Missing ./configure options available in Squid-2.7 -

- -

-

-
--without-system-md5
- -
-

- - -