Hey all,
I am using squid 3.2.17 to generate dynamic certificates in my proxy
setup. The certificate generation programs are crashing instantly when
a generation request goes to them on opening an https page. My machine
is RHEL 5 (kernel 2.6.18-194) x86_64.
Here is my squid conf:
http_port 192.168.8.40:3128 ssl-bump generate-host-certificates=on
dynamic_cert_mem_cache_size=4MB
cert=/home/talha/squid/www.sample.com.pem
key=/home/talha/squid/www.sample.com.pem
Here is the output from squid
2012/05/03 14:35:22| WARNING: ssl_crtd #1 exited
2012/05/03 14:35:22| Too few ssl_crtd processes are running (need 1/32)
2012/05/03 14:35:22| Starting new helpers
2012/05/03 14:35:22| helperOpenServers: Starting 1/32 'ssl_crtd' processes
2012/05/03 14:35:22| client_side.cc(3478) sslCrtdHandleReply:
"ssl_crtd" helper return <NULL> reply
2012/05/03 14:35:22| clientNegotiateSSL: Error negotiating SSL
connection on FD 14: error:14094412:SSL routines:SSL3_READ_BYTES:sslv3
alert bad certificate (1/0)
2012/05/03 14:36:30| WARNING: ssl_crtd #2 exited
2012/05/03 14:36:30| Too few ssl_crtd processes are running (need 1/32)
2012/05/03 14:36:30| Starting new helpers
2012/05/03 14:36:30| helperOpenServers: Starting 1/32 'ssl_crtd' processes
2012/05/03 14:36:30| client_side.cc(3478) sslCrtdHandleReply:
"ssl_crtd" helper return <NULL> reply
2012/05/03 14:36:30| clientNegotiateSSL: Error negotiating SSL
connection on FD 7: error:14094412:SSL routines:SSL3_READ_BYTES:sslv3
alert bad certificate (1/0)
2012/05/03 14:36:54| WARNING: ssl_crtd #3 exited
2012/05/03 14:36:54| Too few ssl_crtd processes are running (need 1/32)
2012/05/03 14:36:54| storeDirWriteCleanLogs: Starting...
2012/05/03 14:36:54| Finished. Wrote 0 entries.
2012/05/03 14:36:54| Took 0.00 seconds ( 0.00 entries/sec).
FATAL: The ssl_crtd helpers are crashing too rapidly, need help!
-- Regards, -Ahmed Talha KhanReceived on Thu May 03 2012 - 10:05:56 MDT
This archive was generated by hypermail 2.2.0 : Thu May 03 2012 - 12:00:02 MDT