[squid-users] sslcrtvalidator_program input not separated by "\1"?
Robert 'Bobby' Zenz
Robert.Zenz at bonsaimind.org
Tue Mar 25 12:38:39 UTC 2025
> I see that note in the documentation predates the protocol change to
> include size parameters.
>
> In modern Squid it only applies to the **response** from certificate
> generator/validator helpers back to Squid.
I sorta assumed such a thing, but wasn't sure.
> Your helper should do what the example 'fake' helper does;
> * read one '\n' terminated line of input.
> * parse the ( result SP size SP ) out of that first line
> * loop until more '\n' terminated lines have arrived providing a
> total of 'size' bytes worth of kv-pairs (aka "body").
> * ignore any garbage received on final \n terminated line (should
> only be a CRLF).
> * send reply followed by the '\1' character.
Thanks for the detailed explanation. I've changed my script accordingly
and now the interaction behaves as expected.
Thank you for the clarifications!
More information about the squid-users
mailing list