Talking to an upstream ISA server that requires NTLM authentication. from Tsachi on 2006-06-15 (squid-dev)

From: Tsachi <tsachi.kimel@dont-contact.us>
Date: Fri, 16 Jun 2006 00:45:10 +0200

Hi All,
I am working with squid version 2.5 stable 7.
I would like to try and get squid talking to an upstream ISA server
that requires NTLM authentication.
Squid works as a transparent proxy with a ISA parent (login=PASS).

I have also applied the connection pinning patch from Nov 7 2005.
Connection is mark as pinned both for WWW and PROXY authentication.
WWW NTLM authentication works well!

In order to support proxy I changed httpReadReply() (http.c) to refer to
"orig_request->pinned_connection"
Instead of
"request->pinned_connection".

Now, proxy NTLM negotiation goes well, but right after I am getting an assert.

I believe it is b/c I need to have better support for FD and pinning.
It seems that the FD to the other proxy is being closed twice?!

I would really appreciate if you can share some tips/guidelines about
what should be taken into consideration when trying to support proxy
connection pinning?
Did anyone try to support NTLM for proxy before?

Thank you in advanced,
Tsachi Kimel

Here are the last lines from the debug file:
(comm_close: FD 16 is called twice!?)

2006/06/15 16:22:32| CommWriteStateCallbackAndFree ## ENTER ### fd=13
2006/06/15 16:22:32| commCallCloseHandlers: FD 13
2006/06/15 16:22:32| commCallCloseHandlers: ch->handler=0x805c7b0
2006/06/15 16:22:32| comm_close: FD 16
2006/06/15 16:22:32| CommWriteStateCallbackAndFree ## ENTER ### fd=16
2006/06/15 16:22:32| commCallCloseHandlers: FD 16
2006/06/15 16:22:32| commCallCloseHandlers: ch->handler=0x807793c
2006/06/15 16:22:32| commCallCloseHandlers: ch->handler=0x806bc44
2006/06/15 16:22:32| fwdServerClosed: FD 16 http://www.google.co.il/
2006/06/15 16:22:32| fwdStateFree: 0x847d308
2006/06/15 16:22:32| commCallCloseHandlers: ch->handler=0x8062268
2006/06/15 16:22:32| clientPinnedConnectionClosed ## ENTER ### fd=16
2006/06/15 16:22:32| commCallCloseHandlers: ch->handler=0x806d2d4
2006/06/15 16:22:32| fd_close FD 16 http://www.google.co.il/
2006/06/15 16:22:32| fd_close FD 13 http://www.google.co.il/
2006/06/15 16:22:32| comm_close: FD 16
2006/06/15 16:22:32| assertion failed: comm.c:746: "F->flags.open"
Received on Thu Jun 15 2006 - 19:27:32 MDT

This archive was generated by hypermail pre-2.1.9 : Fri Jun 30 2006 - 12:00:02 MDT