[squid-users] SSL-BUMP and Dynamic SSL certs

From: Bijoy Lobo <bijoy.lobo_at_paladion.net>
Date: Tue, 10 Apr 2012 15:22:43 +0530

I have configured SSL-BUMP and Dynamic SSL creation. However, my first
attempt to facebook (https) shows up properly, when i try my second
attempt, the entire css is messed up and the page is shown inline

Here is my squid config

http_port 3128 ssl-bump generate-host-certificates=on
dynamic_cert_mem_cache_size=10MB cert=/root/cert/bijoy.com.pem
sslcrtd_program /usr/lib/squid3/ssl_crtd -s /var/lib/ssl_db -M 100MB
sslcrtd_children 32

Here are my log errors
/var/log/squid3/cache.log

-----BEGIN SSL SESSION PARAMETERS-----
MGQCAQECAgMBBAIAhAQABDD6oYtJ/i1VXPXTpE7aYKM0u6e6nkRGN0f+jc/DChLX
Brxmu05B0Nqy5MOaPLz2h9ShBgIET4OG36IEAgIBLKQCBACmEQQPaWQuZ29vZ2xl
LmNvLmlu
-----END SSL SESSION PARAMETERS-----
2012/04/10 06:35:03| WARNING: ssl_crtd #1 (FD 14) exited
2012/04/10 06:35:03| client_side.cc(3410) sslCrtdHandleReply:
"ssl_crtd" helper return <NULL> reply
(ssl_crtd): Cannot add certificate to db.

/var/syslog

Apr 10 06:33:08 UTM squid[2496]: Squid Parent: child process 2498 started
Apr 10 06:37:28 UTM (squid): The ssl_crtd helpers are crashing too
rapidly, need help!
Apr 10 06:37:28 UTM squid[2496]: Squid Parent: child process 2498
exited with status 1
Received on Tue Apr 10 2012 - 09:52:50 MDT

This archive was generated by hypermail 2.2.0 : Tue Apr 10 2012 - 12:00:02 MDT