Debian Bug report logs - #813854
squid: Please rebuild with '--enable-http-violations'

Package: squid; Maintainer for squid is Luigi Gangitano <luigi@debian.org>; Source for squid is src:squid (PTS, buildd, popcon).

Reported by: Kristijan Caprdja <caprdja@gmail.com>

Date: Fri, 5 Feb 2016 23:54:02 UTC

Severity: wishlist

Found in version squid3/3.5.12-1

Done: Amos Jeffries <squid3@treenet.co.nz>

Bug is archived. No further changes may be made.

Toggle useless messages

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to debian-bugs-dist@lists.debian.org, caprdja@gmail.com, Luigi Gangitano <luigi@debian.org>:
Bug#813854; Package squid. (Fri, 05 Feb 2016 23:54:06 GMT) (full text, mbox, link).

Acknowledgement sent to Kristijan Caprdja <caprdja@gmail.com>:
New Bug report received and forwarded. Copy sent to caprdja@gmail.com, Luigi Gangitano <luigi@debian.org>. (Fri, 05 Feb 2016 23:54:06 GMT) (full text, mbox, link).

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

Package: squid
Version: 3.5.12-1
Severity: wishlist

Dear Maintainer,


-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)

Kernel: Linux 4.2.0-1-686-pae (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

In order to remove specific headers from responses, squid must be 
built with '--enable-http-violations'.
This feature seems to have been built-in in the version 2 (present in wheezy). In the version 3 this is
a compile time option.
Please rebuild squid with this option enabled.

best regards,
  Kristijan Caprdja

Information forwarded to debian-bugs-dist@lists.debian.org, Luigi Gangitano <luigi@debian.org>:
Bug#813854; Package squid. (Mon, 08 Feb 2016 09:06:11 GMT) (full text, mbox, link).

Acknowledgement sent to Amos Jeffries <squid3@treenet.co.nz>:
Extra info received and forwarded to list. Copy sent to Luigi Gangitano <luigi@debian.org>. (Mon, 08 Feb 2016 09:06:12 GMT) (full text, mbox, link).

Message #10 received at 813854@bugs.debian.org (full text, mbox, reply):

On Sat, 06 Feb 2016 00:50:53 +0100 Kristijan Caprdja wrote:
>
> In order to remove specific headers from responses, squid must be
> built with '--enable-http-violations'.
> This feature seems to have been built-in in the version 2 (present in
wheezy). In the version 3 this is
> a compile time option.
> Please rebuild squid with this option enabled.

Squid already is:
 "configure:31445: HTTP violations support enabled: yes"

The compile-time option in Squid is to *disable* violations support if
wanted, and that is not used in the Debian builds.

If you are having trouble mangling HTTP headers the problem is
elsewhere. Some details about what you are actually trying to do and how
it is not working would be a help.

Amos

Information forwarded to debian-bugs-dist@lists.debian.org, Luigi Gangitano <luigi@debian.org>:
Bug#813854; Package squid. (Mon, 08 Feb 2016 21:33:10 GMT) (full text, mbox, link).

Acknowledgement sent to Kristijan Caprdja <ckristijan@gmail.com>:
Extra info received and forwarded to list. Copy sent to Luigi Gangitano <luigi@debian.org>. (Mon, 08 Feb 2016 21:33:10 GMT) (full text, mbox, link).

Message #15 received at 813854@bugs.debian.org (full text, mbox, reply):

[Message part 1 (text/plain, inline)]

Amos, your are right, this options is set per default!

I was trying to configure squid to change User-Agent string from http
headers using 'request_header_access' and 'request_header_replace'
configuration directives.

I got misled by squid documentation which claims that
'--enable-http-violations' is
a compile-time prerequisite in order to use these directives, see here:

http://www.squid-cache.org/Doc/config/request_header_access/
http://www.squid-cache.org/Doc/config/request_header_replace/
http://wiki.squid-cache.org/SquidFaq/ConfiguringSquid

Quote from the last link:
'Squid must be built with the --enable-http-violations configure option
before building.'

Output of 'squid -v' shows no '--enable-http-violations', which led me to
the conclusion that this option is not set per default.
So I recompiled my own squid packages with this option set (which then
appeared in the ouput of 'squid -v') and got it to work.

I should have tested with official debian packages before reporting this as
an issue.

Sorry for wasting your time!

ps. it seems that there is a configuration option named
'--disable-http-violations' that really disables all 'violating'
configuration directives

Thanks,
Kristijan Caprdja

[Message part 2 (text/html, inline)]

Reply sent to Amos Jeffries <squid3@treenet.co.nz>:
You have taken responsibility. (Tue, 16 Feb 2016 07:06:09 GMT) (full text, mbox, link).

Notification sent to Kristijan Caprdja <caprdja@gmail.com>:
Bug acknowledged by developer. (Tue, 16 Feb 2016 07:06:09 GMT) (full text, mbox, link).

Message #20 received at 813854-done@bugs.debian.org (full text, mbox, reply):

Closing.

Amos

Bug archived. Request was from Debbugs Internal Request <owner@bugs.debian.org> to internal_control@bugs.debian.org. (Tue, 15 Mar 2016 07:33:33 GMT) (full text, mbox, link).

Send a report that this bug log contains spam.

Debian bug tracking system administrator <owner@bugs.debian.org>. Last modified: Wed Jan 10 12:11:13 2018; Machine Name: beach

Debian Bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Debian Bug report logs - #813854 squid: Please rebuild with '--enable-http-violations'

Debian Bug report logs - #813854
squid: Please rebuild with '--enable-http-violations'