[squid-users] Squid 3.4.11 crashing on FreeBSD 10 (64-bit)

Amos Jeffries squid3 at treenet.co.nz
Tue Jan 20 18:50:27 UTC 2015 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 21/01/2015 6:11 a.m., Odhiambo Washington wrote:
> On 20 January 2015 at 16:16, Odhiambo Washington wrote:
> 
> 1. I see these in cache.log
> 
> 
> 2015/01/20 20:00:18| WARNING: no_suid: setuid(0): (1) Operation
> not permitted 2015/01/20 20:00:18| WARNING: no_suid: setuid(0): (1)
> Operation not permitted 2015/01/20 20:00:18| WARNING: no_suid:
> setuid(0): (1) Operation not permitted 2015/01/20 20:00:18|
> WARNING: no_suid: setuid(0): (1) Operation not permitted 2015/01/20
> 20:00:18| WARNING: no_suid: setuid(0): (1) Operation not permitted 
> 2015/01/20 20:00:18| WARNING: no_suid: setuid(0): (1) Operation
> not permitted 2015/01/20 20:00:18| WARNING: no_suid: setuid(0): (1)
> Operation not permitted 2015/01/20 20:00:18| WARNING: no_suid:
> setuid(0): (1) Operation not permitted 2015/01/20 20:00:18|
> WARNING: no_suid: setuid(0): (1) Operation not permitted 2015/01/20
> 20:00:18| WARNING: no_suid: setuid(0): (1) Operation not permitted 
> 2015/01/20 20:00:18| WARNING: no_suid: setuid(0): (1) Operation
> not permitted 2015/01/20 20:00:18| WARNING: no_suid: setuid(0): (1)
> Operation not permitted 2015/01/20 20:00:18| WARNING: no_suid:
> setuid(0): (1) Operation not permitted 2015/01/20 20:00:18|
> WARNING: no_suid: setuid(0): (1) Operation not permitted 2015/01/20
> 20:00:18| WARNING: no_suid: setuid(0): (1) Operation not permitted

Not to worry about. An artifact of how Squid runs helpers vs BSD
default permissions for fork()ed processes. Squid is just unable to
drop root permissions silently (for now) because the OS already did it.

> 2015/01/20 20:00:18| Logfile: opening log 
> stdio:/usr/local/squid/logs/access.log
> 
> 
> But then I have no joy because of "2015/01/20 20:03:55| WARNING:
> Forwarding loop detected for:.."
> 
> I am almost thinking FreeBSD 9.3 would be better... I haven't seen
> so much grief.

I am beginning to wonder if the PF version may has changed in FreeBSD.

In OpenBSD (4.6 IIRC) PF went from a version where rdr-to rules worked
to one where only divert-to would work reliably and rdr-to only
sometimes. It may be that the changover has finally hit FreeBSD.

> ADDENDUM: When compiled with --enable-ipf-transparent, it fails to
> compile as follows:
> 

As Yuri said, PF --enable-pf-transparent (no 'I') or IPFW
- --enable-ipfw-transparent (note the 'W') for FreeBSD.

Amos
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (MingW32)

iQEcBAEBAgAGBQJUvqNzAAoJELJo5wb/XPRjywsH/RY9myLQSx/FaQf6gmWykbd7
/bNXzg0JxoiUar56gYseUk6yEp9YhtSpAFEFnVaen7ee/4xNW7o8Tv7R0gTrcqWy
lTUFtuPRyP3EQ7tsYNjLgF2dYYX4Eb1E1zDVCmdUHtvG/d7YTnC9LgLYrNqgF9v6
Bgck0S2aC2Q4vdsn34LsjbgKmtnpqr+47I4Eco5TfyHZvsCHp2EUb0RwgA/hus8E
Q0x6Jnmv1idIywsuLXhCbPtsriWXJf38cDtOs6UNFmAo0fr762oBH94i2xXIDb1Y
8qZzOGS09G93qWn027UZmqWHlcH8p3c0fo17LqXekcrBGW2gxd82+ABvbH6JZBk=
=tAVB
-----END PGP SIGNATURE-----

More information about the squid-users mailing list