Search squid archive

Re: SSL-BUMP and Dynamic SSL certs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi Will,

do I need to patch the squid source?

On Tue, Apr 10, 2012 at 6:17 PM, Will Roberts <ironwill42@xxxxxxxxx> wrote:
> I think you're seeing bug #3405 which has a temporary patch attached:
>
> http://bugs.squid-cache.org/show_bug.cgi?id=3405
>
> --Will
>
> On Tue, Apr 10, 2012 at 5:52 AM, Bijoy Lobo <bijoy.lobo@xxxxxxxxxxxx> wrote:
>> I have configured SSL-BUMP and Dynamic SSL creation. However, my first
>> attempt to facebook (https) shows up properly, when i try my second
>> attempt, the entire css is messed up and the page is shown inline
>>
>> Here is my squid config
>>
>> http_port 3128 ssl-bump generate-host-certificates=on
>> dynamic_cert_mem_cache_size=10MB cert=/root/cert/bijoy.com.pem
>> sslcrtd_program /usr/lib/squid3/ssl_crtd -s /var/lib/ssl_db -M 100MB
>> sslcrtd_children 32
>>
>> Here are my log errors
>> /var/log/squid3/cache.log
>>
>> -----BEGIN SSL SESSION PARAMETERS-----
>> MGQCAQECAgMBBAIAhAQABDD6oYtJ/i1VXPXTpE7aYKM0u6e6nkRGN0f+jc/DChLX
>> Brxmu05B0Nqy5MOaPLz2h9ShBgIET4OG36IEAgIBLKQCBACmEQQPaWQuZ29vZ2xl
>> LmNvLmlu
>> -----END SSL SESSION PARAMETERS-----
>> 2012/04/10 06:35:03| WARNING: ssl_crtd #1 (FD 14) exited
>> 2012/04/10 06:35:03| client_side.cc(3410) sslCrtdHandleReply:
>> "ssl_crtd" helper return <NULL> reply
>> (ssl_crtd): Cannot add certificate to db.
>>
>> /var/syslog
>>
>> Apr 10 06:33:08 UTM squid[2496]: Squid Parent: child process 2498 started
>> Apr 10 06:37:28 UTM (squid): The ssl_crtd helpers are crashing too
>> rapidly, need help!
>> Apr 10 06:37:28 UTM squid[2496]: Squid Parent: child process 2498
>> exited with status 1



-- 
Thanks and Regards
Bijoy Lobo
Paladion Networks
[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux