bug-wget
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug-wget] Possible Bug Discovered w/ https proxy

From: John Anderson
Subject: [Bug-wget] Possible Bug Discovered w/ https proxy
Date: Wed, 1 Dec 2010 11:30:15 -0700 
Wget Maintainers,



I may have discovered a bug that occurs when wget version 1.12  attempts to
use an https proxy.  It appears as though wget, even when told to use an
https proxy attempts to make a plaintext connection to the proxy server.





On the client host, I perform the following actions:



address@hidden johna]# export https_proxy="https://proxy:3128";

address@hidden johna]# wget --proxy 'https://ccbux2/index.html'

--2010-11-24 14:51:07--  https://ccbux2 /index.html

Resolving proxy... 192.168.10.144

Connecting to proxy|192.168.10.144|:3128... connected.

Failed reading proxy response: Connection reset by peer

Retrying.



--2010-11-24 14:51:08--  (try: 2)  https://ccbux2 /index.html

Connecting to proxy|192.168.10.144|:3128... connected.

Failed reading proxy response: Connection reset by peer

Retrying.



--2010-11-24 14:51:10--  (try: 3)  https://ccbux2 /index.html

Connecting to proxy|192.168.10.144|:3128... connected.

Failed reading proxy response: Connection reset by peer

Retrying.





The remote host is a squid proxy, in the logs I see this:



Squid logged event:

==> /var/squid/logs/cache.log <==

2010/11/24 13:18:59| clientNegotiateSSL: Error negotiating SSL connection on
FD 12: error:1407609B:SSL routines:SSL23_GET_CLIENT_HELLO:https proxy
request (1/-1)





Is this something I’m doing wrong, or does this appear to be reproducible in
wget-1.12.  Other pertinent info follows:



address@hidden johna]# wget --version

GNU Wget 1.12 built on linux-gnu.



+digest +ipv6 +nls +ntlm +opie +md5/openssl +https -gnutls +openssl

-iri



Wgetrc:

    /etc/wgetrc (system)

Locale: /usr/share/locale

Compile: gcc -DHAVE_CONFIG_H -DSYSTEM_WGETRC="/etc/wgetrc"

    -DLOCALEDIR="/usr/share/locale" -I. -I../lib

    -I/usr/kerberos/include -O2 -g -D_FORTIFY_SOURCE=2

    -fstack-protector

Link: gcc -O2 -g -D_FORTIFY_SOURCE=2 -fstack-protector -g -O1 -lssl -lcrypto

    -ldl -lz /usr/lib64/libssl.so /usr/lib64/libcrypto.so -ldl -lrt

    ftp-opie.o openssl.o http-ntlm.o gen-md5.o ../lib/libgnu.a



Copyright (C) 2009 Free Software Foundation, Inc.

License GPLv3+: GNU GPL version 3 or later

<http://www.gnu.org/licenses/gpl.html>.

This is free software: you are free to change and redistribute it.

There is NO WARRANTY, to the extent permitted by law.



Originally written by Hrvoje Niksic <address@hidden>.

Currently maintained by Micah Cowan <address@hidden>.

Please send bug reports and questions to <address@hidden>.

You have new mail in /var/spool/mail/root



address@hidden johna]# ldd /usr/bin/wget

        linux-vdso.so.1 =>  (0x0000672cfa45e000)

        libssl.so.7 => /lib64/libssl.so.7 (0x0000672cf9ff9000)

       libcrypto.so.7 => /lib64/libcrypto.so.7 (0x0000672cf9c82000)

        libdl.so.2 => /lib64/libdl.so.2 (0x0000672cf9a7e000)

        libz.so.1 => /usr/lib64/libz.so.1 (0x0000672cf986a000)

        librt.so.1 => /lib64/librt.so.1 (0x0000672cf9661000)

        libc.so.6 => /lib64/libc.so.6 (0x0000672cf9311000)

        libgssapi_krb5.so.2 => /usr/lib64/libgssapi_krb5.so.2
(0x0000672cf90e7000)

        libkrb5.so.3 => /usr/lib64/libkrb5.so.3 (0x0000672cf8e52000)

        libcom_err.so.2 => /lib64/libcom_err.so.2 (0x0000672cf8c50000)

        libk5crypto.so.3 => /usr/lib64/libk5crypto.so.3 (0x0000672cf8a2b000)

        libresolv.so.2 => /lib64/libresolv.so.2 (0x0000672cf8816000)

        /lib64/ld-linux-x86-64.so.2 (0x0000672cfa246000)

        libpthread.so.0 => /lib64/libpthread.so.0 (0x0000672cf85fc000)

        libkrb5support.so.0 => /usr/lib64/libkrb5support.so.0
(0x0000672cf83f5000)
reply via email to
[Prev in Thread] Current Thread [Next in Thread]