My squid-2.1.PATCH2 patches.

Here is a summary of all my pending patches to 2.1.PATCH2 that I think
is ready for commit. Only a few of them has been acknowledged by Duane.
Status report please.

/Henrik

*** Bug fixes / corrections ***

Squid-2.1.PATCH2: Client side Cache-Control: no-cache
Obey any Cache-Control: no-cache sent by the client.

Squid-2.1.PATCH2: proxy_auth ignored user list
The proxy_auth acl ignored any user list restrictions specified in
squid.conf. This patch does the final transformation of proxy_auth to a
real ACL type, allowing allows and denials as any other ACL type.

Squid-2.1.PATCH2: Fix for a filedescriptor leak on non-anonymous FTP
Fix for a file descriptor leak on non-anonymous ftp
(ftp://user@host/...)

Squid-2.1.PATCH1: Fix client-side Cache-control: max-age
Client-side Cache-Control: max-age has been broken some time (including
all Squid 2 releases) due to other code changes.

Squid-2.1.RELEASE: FTP // path [updated 1998-11-22]
Translate FTP path // to a empty CWD command

Squid-2.1.RELEASE: Handle empty dir;type=d directories
Properly handle empty dir;type=d directories (== show server error).
Previously Squid got confused and showed a standard listing of the
previous directory.

Squid-2.1.RELEASE: Assertion failure when loading large icons
If the icons was replaced by larger ones (presumeably larger than 4KB)
then Squid failed with a assertion failure while loading them.

Squid-2.1.PRE4: Show FTP connection refused
Show server error message when a FTP server refuses to accept a
connection (usually due to to many users).

*** Code cleanup ***

Squid-2.1.PATCH2: change peer->pinglist to peer->peer_domain change
peer->pinglist to peer->cache_domain to make it easier to understand
what it is (cache_peer_domain)

Squid-2.1.PATCH2: cache_mem has no high/low water marks
Remove the last traces of cache_mem high/low water marks

*** New features ***

Squid-2.1.PATCH2: broken_cgi acl (*1)
This replaces persistent_client_posts with a ACL for controlling if
Squid should send CRLF after PUT/POST requests.

Squid-2.1.PATCH1: Cachemgr option to refresh ACL lists
Cachemgr option to refresh ACL lists. Especially useful if you use the
"include file" method for defining ACL lists, and you don't want to do a
full reconfigure of Squid each time you change the list. It is also
useful if you need to refresh IP addresses of src or dst lists after you
have updated your DNS server and/or host table.

Squid-2.1.RELEASE: Break FTP title URL in parts [Originally by: Andrew
Filonov <aef@shu.smolensk.su>]
Make title URL in FTP listings hyperlinked on each directory level.

Squid-2.0.RELEASE: Make cachemgr send proxy authentication (*2)
Make cachemgr send proxy authentication header, to enable it to be used
when proxy_auth is enforced.

*2) I don't give up on this proxy authentication from cachemgr.cgi. It
is a very simple change only affecting cachemgr.cgi, and very useful if
you use proxy_auth for other access checks. In fact this single line
allows one to configure proxy_auth based per-user access control to the
manager interface by disabling all manager passwords and instead make a
couple of ACL lists for the different classes of operations. To make it
easier to configure a manager ACL type should be added (possibly
overriding manager_password).

*1) Regarding the broken_cgi ACL, this should only be added if another
ACL for selecting persistent/nonpersistent connection is also added.
Without this companion the current code may be better althought it is
far from optimal (I beleive the combination of broken_cgi ACL and
persistent_connection ACL is optimal for configuring broken
sites/scripts)

---
Henrik Nordstrom
Spare time Squid hacker