Re: [squid-users] ssl interception causes "zero byte replies" sometimes

From: Sean Boran <sean_at_boran.com>
Date: Thu, 6 Jun 2013 10:00:46 +0200

I've started getting increasing "zero sized reply" messages in the
browser when visiting sslbump'ed sites again.
A reload in the browser usually works, but its annoying for users.

Last night I got many many of these while trying to access
https://drupal.org/user/password
In there logs there is not much:
TCP_MISS/502 4600 POST https://drupal.org/user/password -
PINNED/140.211.10.16 text/html

Are others having such issues, what is current recommendation? I'm
still running trunk from dec with the 19190-001.patch referenced
below.

Sean

On 20 December 2012 08:55, Sean Boran <sean_at_boran.com> wrote:
>
> I applied that the first patch a few days back, no complaints so far.
>
> Sean
>
>
> On 13 December 2012 16:14, Alex Rousskov
> <rousskov_at_measurement-factory.com> wrote:
>>
>> On 12/11/2012 02:40 AM, Sean Boran wrote:
>> > Hi,
>> >
>> > It happens a few times daily that on submitting a login request to
>> > sites like Atlassian confluence (not just at atlassian, but elsewhere
>> > too), or Redmine, that the user gets a screen "The requested URL could
>> > not be retrieved" and with a "zero sized reply".
>> >
>> > It does not happen every time.
>> > If one refreshes the browser it is ok.
>> > If the destination is excluded from SSL interception, it does not
>> > happen.
>>
>> Yes, this is a known issue with bumped requests and persistent
>> connection races. Our patch for this bug is available at
>> http://article.gmane.org/gmane.comp.web.squid.devel/19190
>>
>> and we are also working on a better approach to address the same bug:
>> http://article.gmane.org/gmane.comp.web.squid.devel/19256
>>
>>
>> HTH,
>>
>> Alex.
>>
>>
>>
>
Received on Thu Jun 06 2013 - 08:00:54 MDT

This archive was generated by hypermail 2.2.0 : Thu Jun 06 2013 - 12:00:04 MDT