Re: [squid-users] assertion failed: Server.cc:245: "r->body_pipe != NULL"

[hdkutz]

On Wed, Dec 18, 2013 at 11:03:13AM -0700, Alex Rousskov wrote:
> On 12/18/2013 09:07 AM, hdk...@hdkutz.de wrote:
> > Hello List,
> > I have a Problem on a Centos 6.4 64 Bit System running RPM Package
> > squid-3.3.11-1.el6.x86_64.rpm
> 
> > Any hints or tips on 
> > 
> > assertion failed: Server.cc:245: "r->body_pipe != NULL"
> > 
> > ?
> 
> Please see http://bugs.squid-cache.org/show_bug.cgi?id=3498
> 
> You may want to post your stack trace there to confirm that your case is
> similar, but I am not aware of anybody trying to fix that [FTP] bug
> right now.
> 
> Alex.
Hello Alex,
it seems to be the FTP Problem.
Here's a Stacktrace of squid during abort:

...
epoll_wait(6, {{EPOLLIN, {u32=432, u64=14609669202550718896}}, {EPOLLIN,
{u32=1256, u64=14609669202550719720}}}, 4096, 220) = 2
read(432, "150 Ok to send data.\r\n", 4096) = 22
epoll_ctl(6, EPOLL_CTL_DEL, 1256, {0, {u32=1256, u64=9886854727860225256}}) = 0
stat("/etc/localtime", {st_mode=S_IFREG|0644, st_size=2309, ...}) = 0
write(5, "2013/12/19 10:06:13 kid1| assert"..., 82) = 82
rt_sigprocmask(SIG_UNBLOCK, [ABRT], NULL, 8) = 0
tgkill(11315, 11315, SIGABRT)   = 0
--- SIGABRT (Aborted) @ 0 (0) ---


Anything I can do to avoid the situation?
E.g. stop using ftp on my squid?


Cheers,
ku
-- 
Luke Skywalker:
Your overconfidence is your weakness.
Emperor Palpatine:
Your faith in your friends is yours.

[squid-users] assertion failed: Server.cc:245: "r->body_pipe != NULL"

[hdkutz]

Hello List,
I have a Problem on a Centos 6.4 64 Bit System running RPM Package
squid-3.3.11-1.el6.x86_64.rpm

My squid.conf:

http_port 172.25.254.50:80
http_port 127.0.0.1:3128
hierarchy_stoplist cgi-bin ?
visible_hostname blbla.domain.local
coredump_dir /var/spool/squid
ignore_unknown_nameservers off
high_memory_warning 3000 MB
cachemgr_passwd mysecret all
cache_mgr root@localhost
memory_pools off
cache_mem 1024 MB
cache_swap_low 90
cache_swap_high 95
cache_effective_user squid
cache_dir ufs /var/spool/squid 20 16 256
access_log /var/log/squid/access.log squid
cache_log /var/log/squid/cache.log
cache_store_log /var/log/squid/store.log
pid_filename /var/log/squid/squid.pid 
refresh_pattern ^ftp:   144020% 10080
refresh_pattern ^gopher:14400%  1440
refresh_pattern .   0   20% 4320
append_domain .domain.local
acl localhost src 127.0.0.1/32 ::1
acl internal_if src 172.25.254.50/32
acl user1 src 172.25.63.152/32 172.25.63.134/32 172.25.33.238/32 172.25.33.21/32
acl to_localhost dst ::1
acl to_ipv6 dst ipv6 
acl SSL_ports port 443  # 
acl SSL_ports port 7001 # 
acl SSL_ports port 7010 # 
acl SSL_ports port 8443 #
acl SSL_ports port 9443 # 
acl SSL_ports port 12120#
acl SSL_ports port 54401# 
acl Safe_ports port 21  # ftp
acl Safe_ports port 70  # gopher
acl Safe_ports port 80  # http
acl Safe_ports port 81  # http
acl Safe_ports port 85  # 
acl Safe_ports port 86  # 
acl Safe_ports port 210 # wais
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 443 # https
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 1025-65535  # unregistered ports
acl ftp proto FTP
acl ftp_port port 21
acl ftp_port port 2121
acl CONNECT method CONNECT
acl QUERY urlpath_regex cgi-bin \?
acl snmppublic snmp_community public
acl swf-files urlpath_regex -i \.swf$
acl purge method PURGE
acl apache rep_header Server ^Apache
http_access deny to_ipv6 !all
http_access allow purge localhost internal_if
http_access allow manager localhost
http_access allow ftp_port CONNECT
http_access deny !Safe_ports 
http_access deny CONNECT !SSL_ports
cache deny QUERY
http_access allow localhost
http_access deny all
http_reply_access allow all
always_direct allow swf-files
redirect_program /usr/bin/squidguard -c /etc/squid/squidguard.conf
redirect_children 300
icp_access deny all
snmp_port 3401
snmp_access allow snmppublic kerpsys
snmp_access allow snmppublic localhost
snmp_access deny all
snmp_incoming_address 0.0.0.0 
snmp_outgoing_address 255.255.255.255
reply_header_max_size 700 KB
broken_posts allow localhost
vary_ignore_expire on
detect_broken_pconn on
ftp_epsv_all on
ftp_epsv off
ftp_passive on
delay_pool_uses_indirect_client on
log_uses_indirect_client on 
icap_enable on
icap_send_client_ip on
icap_send_client_username on
icap_client_username_header X-Authenticated-User
icap_service service_req reqmod_precache bypass=1
icap://127.0.0.1:1344/squidclamav
adaptation_access service_req allow all
icap_service service_resp respmod_precache bypass=1
icap://127.0.0.1:1344/squidclamav
adaptation_access service_resp allow all 


The cache restarts unregular times:

2013/12/18 16:06:14 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:06:50 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:09:39 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:16:14 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:16:49 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:19:39 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:26:13 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:26:50 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:29:39 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:36:13 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:36:49 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:39:38 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:46:14 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:46:50 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:49:39 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:56:14 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:56:50 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"
2013/12/18 16:59:39 kid1| assertion failed: Server.cc:245: "r->body_pipe !=
NULL"


Tried to find with multitail in parallel accessing cache.log and access.log what
has been accessed when the cache restarts - but I'll find different URL's.

An

Re: [squid-users] Problems POST-Method on Squid 3

[hdkutz]

On Wed, Nov 19, 2008 at 12:31:30PM +1300, Amos Jeffries wrote:
> > Hello List,
> > I'am having problems with my squid 3 on Centos.
> > If I try to use POST-Method (e.g. Webmail, Bugzilla) the proxy returns
> >
> > "Read Timeout"
> > No Error
> 
> This error indicates a network issue below Squid. The remote server has
> been sent and accepted the request, but has not sent back any reply within
> 15 minutes.
> 
> My experience with this its always been a PMTU error somewhere on the
> Internet between Squid and the server combined with someone blocking ICMP.
> 
> Amos
Thanx Amos.
That did the trick.
I had to disable automatic PMTU discovering by setting
net.ipv4.ip_no_pmtu_disc=1
in my /etc/sysctl.conf.
After that it works like a charm.

Cheers,
ku
-- 
Darth Vader:
Your powers are weak, old man.
Ben (Obi-Wan) Kenobi:
You can't win, Darth. If you strike me down, I shall
become more powerful than you could possibly
imagine.

[squid-users] Problems POST-Method on Squid 3

[hdkutz]

Hello List,
I'am having problems with my squid 3 on Centos.
If I try to use POST-Method (e.g. Webmail, Bugzilla) the proxy returns

"Read Timeout"
No Error

I have no idea why this is happening.

Here's my Config:

http_port 172.25.1.40:80
http_port 127.0.0.1:3128
hierarchy_stoplist cgi-bin ?
visible_hostname proxy.mycompany.com
coredump_dir /var/spool/squid
high_memory_warning 3000 MB
cachemgr_passwd secret all
cache_mgr [EMAIL PROTECTED]
memory_pools off
cache_mem 1024 MB
cache_swap_low 90
cache_swap_high 95
cache_effective_user squid
cache_dir ufs /var/spool/squid 20 16 256
access_log /var/log/squid/access.log squid
cache_log /var/log/squid/cache.log
cache_store_log /var/log/squid/store.log
pid_filename /var/log/squid/squid.pid
dns_defnames on
refresh_pattern ^ftp:   144020% 10080
refresh_pattern ^gopher:14400%  1440
refresh_pattern .   0   20% 4320
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255 
acl internal_if src 172.25.1.40/255.255.255.255 
acl kutz src 172.25.63.152/255.255.255.255 172.25.63.134/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443  # https
acl SSL_ports port 8443 # psync-https
acl SSL_ports port 12120#
acl Safe_ports port 80  # http
acl Safe_ports port 21  # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70  # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
acl QUERY urlpath_regex cgi-bin \?
acl snmppublic snmp_community public
acl mysys src 172.25.46.46/255.255.255.255
acl support.microsoft.com dstdomain support.microsoft.com
acl our_networks src 172.25.0.0/16 172.16.0.0/16 62.143.254.0/24 80.69.108.0/24
acl myspecial dstdomain .myspecial.com
acl ausnahme1 dst 172.25.22.198/32 172.25.46.206/32 172.25.46.218/32
acl ausnahme2 url_regex ^http://some.url.com$
acl ausnahme3 url_regex ^http://some.url.com$
acl ausnahme4 url_regex ^http://some.url.com$
acl ausnahme5 url_regex ^http://some.url.com$
acl ausnahme6 url_regex ^http://some.url.com$
acl ausnahme7 url_regex ^http://some.url.com$
acl ausnahme8 url_regex ^http://some.url.com$
acl ausnahme9 url_regex ^http://some.url.com$
acl ausnahmeA url_regex ^http://some.url.com$
acl ausnahmeB url_regex ^http://some.url.com$
acl ausnahmeC url_regex ^http://some.url.com$
acl ausnahmeD url_regex ^http://some.url.com$
acl ausnahmeE url_regex ^http://some.url.com$
acl ausnahmeF url_regex ^http://some.url.com$
acl ausnahmeG url_regex ^http://some.url.com$
always_direct allow myspecial
acl purge method PURGE
#broken_vary_encoding allow apache
acl apache rep_header Server ^Apache
request_header_access Accept-Encoding deny support.microsoft.com
http_access allow purge localhost internal_if
#http_access deny  purge
http_access allow manager localhost kutz mysys
#http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
no_cache deny ausnahme1 
no_cache deny ausnahme2 
no_cache deny ausnahme3 
no_cache deny ausnahme4 
no_cache deny ausnahme5 
no_cache deny ausnahme6
no_cache deny ausnahme7
no_cache deny ausnahme8
no_cache deny ausnahme9
no_cache deny ausnahmeA
no_cache deny ausnahmeB
no_cache deny ausnahmeC
no_cache deny ausnahmeD
no_cache deny ausnahmeE
no_cache deny ausnahmeF
no_cache deny ausnahmeG
cache deny QUERY
http_access allow our_networks
http_access allow localhost
http_access deny all
http_reply_access allow all
icp_access deny all
snmp_port 3401
snmp_access allow snmppublic kerpsys
snmp_access allow snmppublic localhost
snmp_access deny all
snmp_incoming_address 0.0.0.0 
snmp_outgoing_address 255.255.255.255


-- 
Han Solo:
Wonderful girl! Either I'm going to kill her
or I'm beginning to like her.

Re: [squid-users] Accessing cachemgr.cgi

[hdkutz]

On Tue, Apr 15, 2008 at 01:53:46PM -0800, Chris Robertson wrote:
> hdkutz wrote:
> >Hello List,
> >pretty new to squid 3.0.
> >Tried to configure cachemgr.cgi.
> >Problem:
> >Squid is not listening to his standard port 3128.
> >It is configured to Listen on port 80.
> >Apache Webserver is configured to use port 3128.
> >If I try to access http://proxy:3128/cgi-bin/cachemgr.cgi I'll get
> >
> >connect 127.0.0.1:80: (111) Connection refused
> >
> >
> >
> >[EMAIL PROTECTED] etc]# grep manager squid.conf
> >acl manager proto cache_object
> >http_access allow manager localhost 
> >http_access deny manager
> >[EMAIL PROTECTED] etc]# grep localhost squid.conf
> >acl localhost src 127.0.0.1/255.255.255.255
> >acl to_localhost dst 127.0.0.0/8
> >http_access allow manager localhost
> >http_access allow localhost
> >[EMAIL PROTECTED] etc]# grep 127.0.0.1 cachemgr.conf 
> >127.0.0.1
> >127.0.0.1:80
> >
> >
> >Am I missing something?
> >  
> 
> My guess would be that either you have specified an IP address on the 
> "port" line of your squid.conf, which forces Squid to only bind to the 
> interface where that IP is assigned, or something is preventing local 
> communication (be it SELinux, firewall rules...).
> 
> Chris
Thanx for your suggestion.
No SELinux, firewall rules.
You are right. Indeed, squid only listens on one IP.
Reconfigured squid to listen on 127.0.0.1:80 also.
Got now:

ERROR
The requested URL could not be retrieved

While trying to retrieve the URL: cache_object://127.0.0.1/

The following error was encountered:

* Access Denied.

  Access control configuration prevents your request from being allowed at
this time. Please contact your service provider if you feel this is incorrect. 

Your cache administrator is webmaster.
Generated Wed, 16 Apr 2008 08:04:05 GMT by proxy (squid/3.0.STABLE4) 

Seems to me, that an ACL is missing.
But, acl localhost is already there (see above).
Does this acl misses something.

Cheers,
ku
-- 
Jabba the Hutt:
Bring me Solo and the Wookiee! They will all suffer
for this outrage.

[squid-users] Accessing cachemgr.cgi

[hdkutz]

Hello List,
pretty new to squid 3.0.
Tried to configure cachemgr.cgi.
Problem:
Squid is not listening to his standard port 3128.
It is configured to Listen on port 80.
Apache Webserver is configured to use port 3128.
If I try to access http://proxy:3128/cgi-bin/cachemgr.cgi I'll get

connect 127.0.0.1:80: (111) Connection refused



[EMAIL PROTECTED] etc]# grep manager squid.conf
acl manager proto cache_object
http_access allow manager localhost 
http_access deny manager
[EMAIL PROTECTED] etc]# grep localhost squid.conf
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
http_access allow manager localhost
http_access allow localhost
[EMAIL PROTECTED] etc]# grep 127.0.0.1 cachemgr.conf 
127.0.0.1
127.0.0.1:80


Am I missing something?
-- 
Han Solo:
I love you.
Princess Leia:
I know.