[squid-users] Missing cache files
Amos Jeffries
squid3 at treenet.co.nz
Mon Dec 19 13:30:38 UTC 2016
On 20/12/2016 2:06 a.m., Eliezer Croitoru wrote:
> Did you noticed these errors:
> FATAL: The ssl_crtd helpers are crashing too rapidly, need help!
>
Unfortunately that helper does not have much debug to figure out why its
crashing. There are a couple of bug reports open about this crashing,
but only after its been running a while in some past execution.
The current workaround seems to be erasing the cert DB it uses and
re-generating it. Any help debugging that would be very welcome.
> Squid Cache (Version 3.5.23): Terminated abnormally.
> CPU Usage: 63.837 seconds = 28.308 user + 35.529 sys
> Maximum Resident Size: 171488 KB
> Page faults with physical i/o: 154
> 2016/12/18 17:25:05| Set Current Directory to /opt/squid-3.5/var/logs/
> 2016/12/18 17:25:06| Starting Squid Cache version 3.5.23 for i386-unknown-freebsd9.3...
> 2016/12/18 17:25:06| Service Name: squid
> 2016/12/18 17:25:06| Process ID 2943
> 2016/12/18 17:25:06| Process Roles: master worker
> 2016/12/18 17:25:06| NOTICE: Could not increase the number of filedescriptors
> 2016/12/18 17:25:06| With 32768 file descriptors available
> 2016/12/18 17:25:06| Initializing IP Cache...
> 2016/12/18 17:25:06| DNS Socket created at [::], FD 10
> 2016/12/18 17:25:06| DNS Socket created at 0.0.0.0, FD 11
> 2016/12/18 17:25:06| Adding domain crownkenya.com from /etc/resolv.conf
> 2016/12/18 17:25:06| Adding nameserver 192.168.55.254 from /etc/resolv.conf
> 2016/12/18 17:25:06| helperOpenServers: Starting 5/15 'ssl_crtd' processes
> 2016/12/18 17:25:06| WARNING: no_suid: setuid(0): (1) Operation not permitted
> 2016/12/18 17:25:06| WARNING: no_suid: setuid(0): (1) Operation not permitted
> 2016/12/18 17:25:06| WARNING: no_suid: setuid(0): (1) Operation not permitted
> 2016/12/18 17:25:06| WARNING: no_suid: setuid(0): (1) Operation not permitted
> 2016/12/18 17:25:06| WARNING: no_suid: setuid(0): (1) Operation not permitted
> 2016/12/18 17:25:06| helperOpenServers: Starting 5/10 'perl' processes
> 2016/12/18 17:25:06| WARNING: no_suid: setuid(0): (1) Operation not permitted
> 2016/12/18 17:25:06| WARNING: no_suid: setuid(0): (1) Operation not permitted
> 2016/12/18 17:25:06| WARNING: no_suid: setuid(0): (1) Operation not permitted
> 2016/12/18 17:25:06| WARNING: no_suid: setuid(0): (1) Operation not permitted
> 2016/12/18 17:25:06| WARNING: no_suid: setuid(0): (1) Operation not permitted
> 2016/12/18 17:25:11| Logfile: opening log stdio:/opt/squid-3.5/var/logs/access.log
>
> ????
> And it's good to know you are running FreeBSD 9.3...(32 bit..)
>
> You need to fix the issues with the helpers before anything else since these are blockers for squid to operate right.
> The missing file is a side effect which happens at almost the same time.
> I would have started with looking at the lines:
> sslcrtd_program /opt/squid-3.5/libexec/ssl_crtd -s /opt/squid-3.5/ssl_db -M 4MB
> store_id_program /usr/local/bin/perl /opt/squid-3.5/scripts/store-id.pl
>
> And see what is causing this operation is not permitted.
That is a known bug on BSD. The child process fork()'d to run the helper
already has been down-privileged by Squid. On BSD systems that means the
test to see if it is still root fails - unfortunately loudly.
Amos
More information about the squid-users
mailing list