Re: [squid-users] cache_peer and acl random problem

From: Amos Jeffries <squid3_at_treenet.co.nz>
Date: Fri, 30 Jul 2010 15:49:59 +1200

Jenny Lee wrote:
>
>
>>> Thanks for acl random. That is a true gem. I waited so long for it, but
>>> unfortunately you did not incorporate it to 3.1 so i went with 3.HEAD on
>> a
>>> production machine.
>> Ouch, sorry about that. At least it's beta in a few days.
>>
>> The lame excuse: I/we are trying to get 3.x into a predictable schedule
>> that works for both us few dev and yourselves the clients. That means some
>> pressure on feature porting to encourage more testing. 3.2 is only 6 months
>> off the desired yearly turnover. Fingers crossed the following ones will
>> close the gap even further.
>
> Thank you for all the effort you are putting in squid.
>
> Please consider a lean and mean version for a skinny squid. Some people have no interest in ecap, icap, xcap, adaptations, wwpwc2sp, 22s... I am lost!
>

I've propose it and been shot down a few times now.

At least I can point to a full disabling list. Look for test-suite/build
tests/layer-01-minimal.opts. Thats everything that can safely be turned
off. Though you may find some of them are wanted.

> Presently, I am running:
>
> ./configure \
> --build=x86_64-redhat-linux-gnu --host=x86_64-redhat-linux-gnu --target=x86_64-redhat-linux-gnu\
> --prefix=/$SQUID --bindir=/$SQUID --sbindir=/$SQUID --libexecdir=/$SQUID --datadir=/$SQUID --sysconfdir=/$SQUID \
> --libdir=/$SQUID --localstatedir=/$SQUID --mandir=/usr/share/man \
> --enable-useragent-log \
> --enable-underscores \
> --enable-referer_log \

All the special log types (useragent and referer logs) can be turned off
and replaced with a logformat entry in the config file.

underscores can be turned off. It enables a DNS violation which makes
Squid accept and lookup invalid domains like broken_host.example.com

> --enable-delay-pools \
> --enable-epoll \
> --enable-auth \

You should be able to omit the --enable-auth. It's there so people can
do a blanket --disable-auth (even though that does not completely cut
out all the code yet). The non-Basic auth types are explicitly disabled
individually below which is the way to go to have only one auth scheme
working.

> --enable-auth-basic="NCSA" \
> --enable-log-daemon-helpers \
> --enable-external-acl-helpers="none" \
> --with-large-files \
> --with-filedescriptors=32768 \
> --disable-carp \
> --disable-wccp \
> --disable-wccp2 \
> --disable-snmp \
> --disable-htcp \
> --disable-ident-lookups \
> --disable-unlinkd \
> --disable-translation \
> --disable-auto-locale \
> --disable-loadable-modules \
> --disable-esi \
> --disable-disk-io \
> --disable-eui \
> --disable-storeio \
> --disable-auth-ntlm \
> --disable-auth-negotiate \
> --disable-auth-digest \
> --disable-cache-digests \
> --disable-ipv6
>
>
> Is there anything else that needs to be omitted to make less code compiled into squid?

see the layer-001-minimal options.

>
> How to remove these cache digests?
>
> I removed from configure... I have "cache deny all" and I have "no digest" in parents... yet I get: "TCP_MISS:CD_SIBLING_HIT P3"
>

Looks like a bug. The code for CD_SIBLING_HIT including display is all
wrapped in the code removal macros.

  Can you please check your build include/autoconf.h for
USE_CACHE_DIGESTS and config.log for "cache-digests" and "cache_digests"
to see if there is anything helpful showing up?

Amos

-- 
Please be using
   Current Stable Squid 2.7.STABLE9 or 3.1.5
Received on Fri Jul 30 2010 - 03:50:16 MDT

This archive was generated by hypermail 2.2.0 : Fri Jul 30 2010 - 12:00:04 MDT