Bug 1680022 - squid can't display download/upload packet size for HTTPS sites
Summary: squid can't display download/upload packet size for HTTPS sites
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: squid
Version: 7.6
Hardware: x86_64
OS: Linux
unspecified
medium
Target Milestone: rc
: ---
Assignee: Luboš Uhliarik ✈
QA Contact: Branislav Náter
URL:
Whiteboard:
Depends On:
Blocks: 1716962
TreeView+ depends on / blocked
 
Reported: 2019-02-22 14:55 UTC by Ramesh Sahoo
Modified: 2020-03-31 19:48 UTC (History)
3 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2020-03-31 19:47:57 UTC
Target Upstream Version:


Attachments (Terms of Use)


Links
System ID Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2020:1068 None None None 2020-03-31 19:48:15 UTC

Description Ramesh Sahoo 2019-02-22 14:55:51 UTC
Description of problem:
squid-3.5.20-12.el7_6.1.x86_64 can't display download/upload packet size for HTTPS sites. 

I download a 1 GB size file from google drive two times but the packet size is not proper. 

1550846724.464   8647 192.168.5.1 TCP_TUNNEL/200 4582292 CONNECT www.googleapis.com:443 - HIER_DIRECT/216.58.196.170 -
1550846747.446   8341 192.168.5.1 TCP_TUNNEL/200 4583273 CONNECT www.googleapis.com:443 - HIER_DIRECT/216.58.196.170 -


Version-Release number of selected component (if applicable):
squid-3.5.20-12.el7_6.1.x86_64

How reproducible:

# grep -v "^#" /etc/squid/squid.conf|grep -v "^$"
acl localnet src 10.0.0.0/8	# RFC1918 possible internal network
acl localnet src 172.16.0.0/12	# RFC1918 possible internal network
acl localnet src 192.168.0.0/16	# RFC1918 possible internal network
acl localnet src fc00::/7       # RFC 4193 local private network range
acl localnet src fe80::/10      # RFC 4291 link-local (directly plugged) machines
acl mylocal src 127.0.0.1/32 192.168.5.6/32
acl SSL_ports port 443
acl Safe_ports port 80		# http
acl Safe_ports port 21		# ftp
acl Safe_ports port 443		# https
acl Safe_ports port 70		# gopher
acl Safe_ports port 210		# wais
acl Safe_ports port 1025-65535	# unregistered ports
acl Safe_ports port 280		# http-mgmt
acl Safe_ports port 488		# gss-http
acl Safe_ports port 591		# filemaker
acl Safe_ports port 777		# multiling http
acl CONNECT method CONNECT
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost manager
http_access allow localnet manager
http_access deny manager
http_port 3128 
http_access allow localnet
http_access allow localhost
http_access deny all
coredump_dir /var/spool/squid
refresh_pattern ^ftp:		1440	20%	10080
refresh_pattern ^gopher:	1440	0%	1440
refresh_pattern -i (/cgi-bin/|\?) 0	0%	0
refresh_pattern .		0	20%	4320

Additional info:
https://bugs.squid-cache.org/show_bug.cgi?id=4653

Comment 14 errata-xmlrpc 2020-03-31 19:47:57 UTC
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2020:1068


Note You need to log in before you can comment on or make changes to this bug.