Rohit Sodhia
2017-09-11 17:50:53 UTC
I've been trying to setup a Squid box to bump SSL requests via the tutorial
on the Squid site and
https://stackoverflow.com/questions/34398484/can-i-use-squid-to-upgrade-client-tls-connections
Unfortunately, when I run it, I get the following errors in my squid logs:
Squid Cache (Version 3.5.20): Terminated abnormally.
CPU Usage: 0.031 seconds = 0.026 user + 0.005 sys
Maximum Resident Size: 71792 KB
Page faults with physical i/o: 0
2017/09/11 12:42:19 kid1| Current Directory is /
2017/09/11 12:42:19 kid1| Starting Squid Cache version 3.5.20 for
x86_64-redhat-linux-gnu...
2017/09/11 12:42:19 kid1| Service Name: squid
2017/09/11 12:42:19 kid1| Process ID 1711
2017/09/11 12:42:19 kid1| Process Roles: worker
2017/09/11 12:42:19 kid1| With 16384 file descriptors available
2017/09/11 12:42:19 kid1| Initializing IP Cache...
2017/09/11 12:42:19 kid1| DNS Socket created at [::], FD 6
2017/09/11 12:42:19 kid1| DNS Socket created at 0.0.0.0, FD 7
2017/09/11 12:42:19 kid1| Adding domain marvel.nyc.ent from /etc/resolv.conf
2017/09/11 12:42:19 kid1| Adding nameserver 172.21.20.200 from
/etc/resolv.conf
2017/09/11 12:42:19 kid1| Adding nameserver 172.21.20.201 from
/etc/resolv.conf
2017/09/11 12:42:19 kid1| Adding nameserver 172.20.102.201 from
/etc/resolv.conf
2017/09/11 12:42:19 kid1| helperOpenServers: Starting 5/32 'ssl_crtd'
processes
(ssl_crtd): Uninitialized SSL certificate database directory:
/var/lib/ssl_db. To initialize, run "ssl_crtd -c -s /var/lib/ssl_db".
(ssl_crtd): Uninitialized SSL certificate database directory:
/var/lib/ssl_db. To initialize, run "ssl_crtd -c -s /var/lib/ssl_db".
(ssl_crtd): Uninitialized SSL certificate database directory:
/var/lib/ssl_db. To initialize, run "ssl_crtd -c -s /var/lib/ssl_db".
(ssl_crtd): Uninitialized SSL certificate database directory:
/var/lib/ssl_db. To initialize, run "ssl_crtd -c -s /var/lib/ssl_db".
(ssl_crtd): Uninitialized SSL certificate database directory:
/var/lib/ssl_db. To initialize, run "ssl_crtd -c -s /var/lib/ssl_db".
2017/09/11 12:42:19 kid1| Logfile: opening log
stdio:/var/log/squid/access.log
2017/09/11 12:42:19 kid1| Local cache digest enabled; rebuild/rewrite every
3600/3600 sec
2017/09/11 12:42:19 kid1| Store logging disabled
2017/09/11 12:42:19 kid1| Swap maxSize 0 + 262144 KB, estimated 20164
objects
2017/09/11 12:42:19 kid1| Target number of buckets: 1008
2017/09/11 12:42:19 kid1| Using 8192 Store buckets
2017/09/11 12:42:19 kid1| Max Mem size: 262144 KB
2017/09/11 12:42:19 kid1| Max Swap size: 0 KB
2017/09/11 12:42:19 kid1| Using Least Load store dir selection
2017/09/11 12:42:19 kid1| Current Directory is /
2017/09/11 12:42:19 kid1| Finished loading MIME types and icons.
2017/09/11 12:42:19 kid1| HTCP Disabled.
2017/09/11 12:42:19 kid1| Squid plugin modules loaded: 0
2017/09/11 12:42:19 kid1| Adaptation support is off.
2017/09/11 12:42:19 kid1| Accepting SSL bumped HTTP Socket connections at
local=[::]:3128 remote=[::] FD 21 flags=9
2017/09/11 12:42:19 kid1| WARNING: ssl_crtd #Hlpr1 exited
2017/09/11 12:42:19 kid1| Too few ssl_crtd processes are running (need 1/32)
2017/09/11 12:42:19 kid1| Closing HTTP port [::]:3128
2017/09/11 12:42:19 kid1| storeDirWriteCleanLogs: Starting...
2017/09/11 12:42:19 kid1| Finished. Wrote 0 entries.
2017/09/11 12:42:19 kid1| Took 0.00 seconds ( 0.00 entries/sec).
FATAL: The ssl_crtd helpers are crashing too rapidly, need help!
I ran the ssl_crtd command, though that didn't help. From google, it seems
other people have had this error, but I can't find a solution and hope
someone may be able to advise me.
Thank you for any assistance.
Rohit Sodhia
on the Squid site and
https://stackoverflow.com/questions/34398484/can-i-use-squid-to-upgrade-client-tls-connections
Unfortunately, when I run it, I get the following errors in my squid logs:
Squid Cache (Version 3.5.20): Terminated abnormally.
CPU Usage: 0.031 seconds = 0.026 user + 0.005 sys
Maximum Resident Size: 71792 KB
Page faults with physical i/o: 0
2017/09/11 12:42:19 kid1| Current Directory is /
2017/09/11 12:42:19 kid1| Starting Squid Cache version 3.5.20 for
x86_64-redhat-linux-gnu...
2017/09/11 12:42:19 kid1| Service Name: squid
2017/09/11 12:42:19 kid1| Process ID 1711
2017/09/11 12:42:19 kid1| Process Roles: worker
2017/09/11 12:42:19 kid1| With 16384 file descriptors available
2017/09/11 12:42:19 kid1| Initializing IP Cache...
2017/09/11 12:42:19 kid1| DNS Socket created at [::], FD 6
2017/09/11 12:42:19 kid1| DNS Socket created at 0.0.0.0, FD 7
2017/09/11 12:42:19 kid1| Adding domain marvel.nyc.ent from /etc/resolv.conf
2017/09/11 12:42:19 kid1| Adding nameserver 172.21.20.200 from
/etc/resolv.conf
2017/09/11 12:42:19 kid1| Adding nameserver 172.21.20.201 from
/etc/resolv.conf
2017/09/11 12:42:19 kid1| Adding nameserver 172.20.102.201 from
/etc/resolv.conf
2017/09/11 12:42:19 kid1| helperOpenServers: Starting 5/32 'ssl_crtd'
processes
(ssl_crtd): Uninitialized SSL certificate database directory:
/var/lib/ssl_db. To initialize, run "ssl_crtd -c -s /var/lib/ssl_db".
(ssl_crtd): Uninitialized SSL certificate database directory:
/var/lib/ssl_db. To initialize, run "ssl_crtd -c -s /var/lib/ssl_db".
(ssl_crtd): Uninitialized SSL certificate database directory:
/var/lib/ssl_db. To initialize, run "ssl_crtd -c -s /var/lib/ssl_db".
(ssl_crtd): Uninitialized SSL certificate database directory:
/var/lib/ssl_db. To initialize, run "ssl_crtd -c -s /var/lib/ssl_db".
(ssl_crtd): Uninitialized SSL certificate database directory:
/var/lib/ssl_db. To initialize, run "ssl_crtd -c -s /var/lib/ssl_db".
2017/09/11 12:42:19 kid1| Logfile: opening log
stdio:/var/log/squid/access.log
2017/09/11 12:42:19 kid1| Local cache digest enabled; rebuild/rewrite every
3600/3600 sec
2017/09/11 12:42:19 kid1| Store logging disabled
2017/09/11 12:42:19 kid1| Swap maxSize 0 + 262144 KB, estimated 20164
objects
2017/09/11 12:42:19 kid1| Target number of buckets: 1008
2017/09/11 12:42:19 kid1| Using 8192 Store buckets
2017/09/11 12:42:19 kid1| Max Mem size: 262144 KB
2017/09/11 12:42:19 kid1| Max Swap size: 0 KB
2017/09/11 12:42:19 kid1| Using Least Load store dir selection
2017/09/11 12:42:19 kid1| Current Directory is /
2017/09/11 12:42:19 kid1| Finished loading MIME types and icons.
2017/09/11 12:42:19 kid1| HTCP Disabled.
2017/09/11 12:42:19 kid1| Squid plugin modules loaded: 0
2017/09/11 12:42:19 kid1| Adaptation support is off.
2017/09/11 12:42:19 kid1| Accepting SSL bumped HTTP Socket connections at
local=[::]:3128 remote=[::] FD 21 flags=9
2017/09/11 12:42:19 kid1| WARNING: ssl_crtd #Hlpr1 exited
2017/09/11 12:42:19 kid1| Too few ssl_crtd processes are running (need 1/32)
2017/09/11 12:42:19 kid1| Closing HTTP port [::]:3128
2017/09/11 12:42:19 kid1| storeDirWriteCleanLogs: Starting...
2017/09/11 12:42:19 kid1| Finished. Wrote 0 entries.
2017/09/11 12:42:19 kid1| Took 0.00 seconds ( 0.00 entries/sec).
FATAL: The ssl_crtd helpers are crashing too rapidly, need help!
I ran the ssl_crtd command, though that didn't help. From google, it seems
other people have had this error, but I can't find a solution and hope
someone may be able to advise me.
Thank you for any assistance.
Rohit Sodhia