Bug 41926 - Timeout, Unavailable. Rev proxy "proxyremote" https via a http proxy...was Bug 19188
Summary: Timeout, Unavailable. Rev proxy "proxyremote" https via a http proxy...was Bu...
Status: RESOLVED DUPLICATE of bug 19188
Alias: None
Product: Apache httpd-2
Classification: Unclassified
Component: mod_proxy (show other bugs)
Version: 2.2.4
Hardware: Sun Solaris
: P2 normal (vote)
Target Milestone: ---
Assignee: Apache HTTPD Bugs Mailing List
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2007-03-21 20:49 UTC by Greg Kaloutsis
Modified: 2007-06-28 00:19 UTC (History)
0 users


Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Greg Kaloutsis 2007-03-21 20:49:35 UTC 
Setup:
Client-->----https://internal.domA.com---->--ApacheRevProxy
ApacheRevProxy-->----http via squid cache---->--external https web site

ApacheRevProxy doing URL rewrite to https://external.domB.com
ApacheRevProxy fetching URL via SquidCache


Under Bug: 19188 there was a patch posted to get around this issue.
http://issues.apache.org/bugzilla/attachment.cgi?id=11552

This patch works well; under 2.0.48, but is not applicable to the current 2.2
stream.

Is it possible to get the patch changed to apply to 2.2 or current issue address
please? 

Below are the current configs and debug from output.
Apache sends back to the client:
     Service Temporarily Unavailable



Rev Proxy Virtual Host Config:
------------------------------
    ProxyRequests Off
    ServerName internal.domA.com:443
    SSLProxyEngine on
    RewriteEngine on
    SetOutputFilter  proxy-html
    ProxyHTMLExtended On
    RequestHeader unset accept-encoding
    RequestHeader set Referer https://external.domB.com/
    ProxyPass /  https://external.domB.com/
    ProxyPassReverseCookieDomain internal.domA.com external.domB.com
    ProxyHTMLURLMap https://external.domB.com          https://internal.domA.com/
    <Location />
        ProxyPassReverse  https://external.domB.com/
        SetOutputFilter  proxy-html
        ProxyHTMLExtended On
        ProxyHTMLURLMap /  /
        RequestHeader unset accept-encoding
    </Location>
    ProxyRemote * http://squid.cache.server:8080
------------------------------

Debug Logs:
-----------
[Thu Mar 22 13:15:48 2007] [info] Initial (No.1) HTTPS request received for
child 0 (server internal.domA.com:443)
[Thu Mar 22 13:15:48 2007] [debug] mod_proxy_http.c(54): proxy: HTTP:
canonicalising URL //external.domB.com/
[Thu Mar 22 13:15:48 2007] [debug] proxy_util.c(1378): [client 192.168.100.219]
proxy: https: found worker https://external.domB.com/ for
https://external.domB.com/, referer: https://external.domB.com/
[Thu Mar 22 13:15:48 2007] [debug] mod_proxy.c(754): Trying to run
scheme_handler against proxy
[Thu Mar 22 13:15:48 2007] [debug] mod_proxy_http.c(1662): proxy: HTTP: serving
URL https://external.domB.com/
[Thu Mar 22 13:15:48 2007] [debug] proxy_util.c(1739): proxy: HTTPS: retrying
the worker for (external.domB.com)
[Thu Mar 22 13:15:48 2007] [debug] proxy_util.c(1745): proxy: HTTPS: worker for
(external.domB.com) has been marked for retry
[Thu Mar 22 13:15:48 2007] [debug] proxy_util.c(1798): proxy: HTTPS: has
acquired connection for (external.domB.com)
[Thu Mar 22 13:15:48 2007] [debug] proxy_util.c(1859): proxy: connecting
https://external.domB.com/ to external.domB.com:443
[Thu Mar 22 13:15:48 2007] [debug] proxy_util.c(1955): proxy: connected
https://external.domB.com/ to squid.cache.server:8080
[Thu Mar 22 13:15:48 2007] [debug] proxy_util.c(2050): proxy: HTTPS: fam 2
socket created to connect to external.domB.com
[Thu Mar 22 13:15:48 2007] [debug] proxy_util.c(2146): proxy: HTTPS: connection
complete to squid.cache.server:8080 (squid.cache.server)
[Thu Mar 22 13:15:48 2007] [info] [client squid.cache.server] Connection to
child 0 established (server internal.domA.com:443)
[Thu Mar 22 13:15:48 2007] [info] Seeding PRNG with 0 bytes of entropy
[Thu Mar 22 13:15:48 2007] [debug] ssl_engine_kernel.c(1752): OpenSSL:
Handshake: start
[Thu Mar 22 13:15:48 2007] [debug] ssl_engine_kernel.c(1760): OpenSSL: Loop:
before/connect initialization
[Thu Mar 22 13:15:48 2007] [debug] ssl_engine_kernel.c(1760): OpenSSL: Loop:
SSLv2/v3 write client hello A
[Thu Mar 22 13:20:48 2007] [debug] ssl_engine_io.c(1786): OpenSSL: I/O error, 7
bytes expected to read on BIO#805b98 [mem: 911d60]
[Thu Mar 22 13:20:48 2007] [debug] ssl_engine_kernel.c(1789): OpenSSL: Exit:
error in SSLv2/v3 read server hello A
[Thu Mar 22 13:20:48 2007] [info] [client squid.cache.server] SSL Proxy connect
failed
[Thu Mar 22 13:20:48 2007] [info] [client squid.cache.server] Connection closed
to child 0 with abortive shutdown (server internal.domA.com:443)
[Thu Mar 22 13:20:48 2007] [error] (502)Unknown error: proxy: pass request body
failed to squid.cache.server:8080 (squid.cache.server)
[Thu Mar 22 13:20:48 2007] [error] (502)Unknown error: proxy: pass request body
failed to squid.cache.server:8080 (squid.cache.server) from 192.168.100.219 ()
[Thu Mar 22 13:20:48 2007] [debug] proxy_util.c(1816): proxy: HTTPS: has
released connection for (external.domB.com)
[Thu Mar 22 13:20:48 2007] [debug] mod_proxy.c(777): Running scheme https
handler (attempt 0)
[Thu Mar 22 13:20:48 2007] [debug] mod_proxy_http.c(1662): proxy: HTTP: serving
URL https://external.domB.com/
[Thu Mar 22 13:20:48 2007] [debug] proxy_util.c(1798): proxy: HTTPS: has
acquired connection for (external.domB.com)
[Thu Mar 22 13:20:48 2007] [debug] proxy_util.c(1859): proxy: connecting
https://external.domB.com/ to external.domB.com:443
[Thu Mar 22 13:20:48 2007] [debug] proxy_util.c(1955): proxy: connected / to
external.domB.com:443
[Thu Mar 22 13:20:48 2007] [debug] proxy_util.c(2050): proxy: HTTPS: fam 2
socket created to connect to external.domB.com
[Thu Mar 22 13:24:32 2007] [error] (145)Connection timed out: proxy: HTTPS:
attempt to connect to 203.203.100.15:443 (external.domB.com) failed
[Thu Mar 22 13:24:32 2007] [error] ap_proxy_connect_backend disabling worker for
(external.domB.com)
[Thu Mar 22 13:24:32 2007] [debug] proxy_util.c(1816): proxy: HTTPS: has
released connection for (external.domB.com)
Comment 1 jfclere 2007-06-28 00:19:21 UTC 

*** This bug has been marked as a duplicate of 19188 ***