Dear Alex,
the file permissions must be ok.
Check my log messages, I made an extra test with a short path under /tmp
squid is able to create the session file:
-rw-r----- 1 squid squid 0 17. Feb 14:44 session
and even so, I get the error messages.
The same configuration was and is perfect under squid 3.x and 4.x.
Next week I will do deeper checks, thank you for your ideas.
A statement, that that part has no regressions, works also in the 5.x
versions would give me hope :-D
br, Tibor
Am 17.02.2023 um 17:30 schrieb Alex Rousskov:
On 2/17/23 09:20, MATYAS, Tibor wrote:
FATAL: (ext_session_acl): Failed to open session db
'/tmp/session/session'
An empty session file with zero byte is always created (with or
without tdb), and then the error flow.
This is a long shot, but check permissions of that file (and its
directory). Will Squid effective user be able to open that file for
writing? I would expect the helper to not be able to create a file at
all if this is a permissions issue, but it is easy to check.
If checking permissions does not give you an answer, I would try
wrapping the helper in a script to strace it (or equivalent). If you
are lucky, you will see a failed helper system call just before the
helper system calls that emit the above error message. That failure
may explain what is going on.
If nothing helps, I would attach gdb to the helper, but that requires
even more work.
HTH,
Alex.
Am 17.02.2023 um 10:09 schrieb MATYAS, Tibor:
Hello List,
trying to move from 4.7 to 5.7 (on gentoo Linux).
Splash portal is in use
https://wiki.squid-cache.org/ConfigExamples/Portal/Splash
squid -k parse -> OK
/var/lib/squid/session/ is clean, old berkeleyDB session files deleted.
Owner of the folder is the squid user.
Squid compiled with tdb:
Squid Cache: Version 5.7
Service Name: squid
Gentoo squid-5.7-r1 (r: NONE)
This binary uses OpenSSL 1.1.1t 7 Feb 2023. For legal restrictions
on distribution see https://www.openssl.org/source/license.html
configure options: '--prefix=/usr' '--build=x86_64-pc-linux-gnu'
'--host=x86_64-pc-linux-gnu' '--mandir=/usr/share/man'
'--infodir=/usr/share/info' '--datadir=/usr/share'
'--sysconfdir=/etc' '--localstatedir=/var/lib'
'--datarootdir=/usr/share' '--disable-dependency-tracking'
'--disable-silent-rules' '--disable-static'
'--docdir=/usr/share/doc/squid-5.7-r1'
'--htmldir=/usr/share/doc/squid-5.7-r1/html' '--with-sysroot=/'
'--libdir=/usr/lib64' '--datadir=/usr/share/squid'
'--libexecdir=/usr/libexec/squid' '--localstatedir=/var'
'--sysconfdir=/etc/squid' '--with-default-user=squid'
'--with-logdir=/var/log/squid' '--with-pidfile=/run/squid.pid'
'--enable-build-info=Gentoo squid-5.7-r1 (r: NONE)'
'--enable-log-daemon-helpers' '--enable-url-rewrite-helpers'
'--enable-cache-digests' '--enable-delay-pools' '--enable-disk-io'
'--enable-eui' '--enable-icmp' '--enable-ipv6'
'--enable-follow-x-forwarded-for'
'--enable-removal-policies=lru,heap'
'--disable-strict-error-checking' '--disable-arch-native'
'--with-large-files' '--with-build-environment=default' '--with-tdb'
'--without-included-ltdl' '--with-ltdl-include=/usr/include'
'--with-ltdl-lib=/usr/lib64' '--with-libcap' '--enable-snmp'
'--with-openssl' '--with-nettle' '--with-gnutls' '--enable-ssl-crtd'
'--without-systemd' '--without-cppunit' '--disable-ecap'
'--disable-esi' '--disable-expat' '--disable-libxml2'
'--enable-htcp' '--enable-wccp' '--enable-wccpv2'
'--without-mit-krb5' '--without-heimdal-krb5'
'--enable-linux-netfilter' '--enable-storeio=aufs,diskd,rock,ufs'
'--enable-auth-basic=NCSA,POP3,getpwnam,PAM'
'--enable-auth-digest=file' '--enable-auth-ntlm=none'
'--enable-auth-negotiate=none'
'--enable-external-acl-helpers=file_userip,session,unix_group,delayer,time_quota'
'build_alias=x86_64-pc-linux-gnu' 'host_alias=x86_64-pc-linux-gnu'
'CC=x86_64-pc-linux-gnu-gcc' 'CFLAGS=-march=nocona -O2 -pipe
-fomit-frame-pointer' 'LDFLAGS=-Wl,-O1 -Wl,--as-needed'
'CXXFLAGS=-march=nocona -O2 -pipe -fomit-frame-pointer'
'BUILDCXX=x86_64-pc-linux-gnu-g++' 'BUILDCXXFLAGS=-march=nocona -O2
-pipe -fomit-frame-pointer'
starting squid results in:
FATAL: (ext_session_acl): Failed to open session db
'/var/lib/squid/session/session'
2023/02/17 09:21:11 kid1| WARNING: external_acl_type #Hlpr27652 exited
current master transaction: master3
2023/02/17 09:21:11 kid1| Too few external_acl_type processes are
running (need 1/1)
current master transaction: master3
2023/02/17 09:21:11 kid1| Starting new helpers
current master transaction: master3
2023/02/17 09:21:11 kid1| helperOpenServers: Starting 1/1
'ext_session_acl' processes
current master transaction: master3
What am I missing?
Thanks a lot and br
Tibor
_______________________________________________
squid-users mailing list
squid-users@xxxxxxxxxxxxxxxxxxxxx
http://lists.squid-cache.org/listinfo/squid-users
--------------------------------------------------
DSI Aerospace Technologie GmbH
Sitz der Gesellschaft: Otto-Lilienthal-Str. 1, D-28199 Bremen, Germany
Web: http://www.dsi-as.de
Geschaeftsfuehrer: Dr.-Ing. Christian Dierker
M. Sc. Elias Hashem
HRB 17726, Amtsgericht Bremen
USt-IdNr.: DE 192 681 774
--------------------------------------------------
_______________________________________________
squid-users mailing list
squid-users@xxxxxxxxxxxxxxxxxxxxx
http://lists.squid-cache.org/listinfo/squid-users
_______________________________________________
squid-users mailing list
squid-users@xxxxxxxxxxxxxxxxxxxxx
http://lists.squid-cache.org/listinfo/squid-users
--------------------------------------------------
DSI Aerospace Technologie GmbH
Sitz der Gesellschaft: Otto-Lilienthal-Str. 1, D-28199 Bremen, Germany
Web: http://www.dsi-as.de
Geschaeftsfuehrer: Dr.-Ing. Christian Dierker
M. Sc. Elias Hashem
HRB 17726, Amtsgericht Bremen
USt-IdNr.: DE 192 681 774
--------------------------------------------------
_______________________________________________
squid-users mailing list
squid-users@xxxxxxxxxxxxxxxxxxxxx
http://lists.squid-cache.org/listinfo/squid-users