I'm resending this once. It was my first message to the bug-wget mailing list once I got some issues that were causing my mail to bounce from the list, and I'm not sure this message made it to the list. If anyone on the list gets this, please reply just so I know I can send to the list.
Thanks, John A. ---------- Forwarded message ---------- From: John Anderson <[email protected]> Date: Wed, Dec 1, 2010 at 11:30 AM Subject: Possible Bug Discovered w/ https proxy To: [email protected] Wget Maintainers, I may have discovered a bug that occurs when wget version 1.12 attempts to use an https proxy. It appears as though wget, even when told to use an https proxy attempts to make a plaintext connection to the proxy server. On the client host, I perform the following actions: [r...@host johna]# export https_proxy="https://proxy:3128"; [r...@host johna]# wget --proxy 'https://ccbux2/index.html' --2010-11-24 14:51:07-- https://ccbux2 /index.html Resolving proxy... 192.168.10.144 Connecting to proxy|192.168.10.144|:3128... connected. Failed reading proxy response: Connection reset by peer Retrying. --2010-11-24 14:51:08-- (try: 2) https://ccbux2 /index.html Connecting to proxy|192.168.10.144|:3128... connected. Failed reading proxy response: Connection reset by peer Retrying. --2010-11-24 14:51:10-- (try: 3) https://ccbux2 /index.html Connecting to proxy|192.168.10.144|:3128... connected. Failed reading proxy response: Connection reset by peer Retrying. The remote host is a squid proxy, in the logs I see this: Squid logged event: ==> /var/squid/logs/cache.log <== 2010/11/24 13:18:59| clientNegotiateSSL: Error negotiating SSL connection on FD 12: error:1407609B:SSL routines:SSL23_GET_CLIENT_HELLO:https proxy request (1/-1) Is this something I’m doing wrong, or does this appear to be reproducible in wget-1.12. Other pertinent info follows: [r...@host johna]# wget --version GNU Wget 1.12 built on linux-gnu. +digest +ipv6 +nls +ntlm +opie +md5/openssl +https -gnutls +openssl -iri Wgetrc: /etc/wgetrc (system) Locale: /usr/share/locale Compile: gcc -DHAVE_CONFIG_H -DSYSTEM_WGETRC="/etc/wgetrc" -DLOCALEDIR="/usr/share/locale" -I. -I../lib -I/usr/kerberos/include -O2 -g -D_FORTIFY_SOURCE=2 -fstack-protector Link: gcc -O2 -g -D_FORTIFY_SOURCE=2 -fstack-protector -g -O1 -lssl -lcrypto -ldl -lz /usr/lib64/libssl.so /usr/lib64/libcrypto.so -ldl -lrt ftp-opie.o openssl.o http-ntlm.o gen-md5.o ../lib/libgnu.a Copyright (C) 2009 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later <http://www.gnu.org/licenses/gpl.html>. This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Originally written by Hrvoje Niksic <[email protected]>. Currently maintained by Micah Cowan <[email protected]>. Please send bug reports and questions to <[email protected]>. You have new mail in /var/spool/mail/root [r...@host johna]# ldd /usr/bin/wget linux-vdso.so.1 => (0x0000672cfa45e000) libssl.so.7 => /lib64/libssl.so.7 (0x0000672cf9ff9000) libcrypto.so.7 => /lib64/libcrypto.so.7 (0x0000672cf9c82000) libdl.so.2 => /lib64/libdl.so.2 (0x0000672cf9a7e000) libz.so.1 => /usr/lib64/libz.so.1 (0x0000672cf986a000) librt.so.1 => /lib64/librt.so.1 (0x0000672cf9661000) libc.so.6 => /lib64/libc.so.6 (0x0000672cf9311000) libgssapi_krb5.so.2 => /usr/lib64/libgssapi_krb5.so.2 (0x0000672cf90e7000) libkrb5.so.3 => /usr/lib64/libkrb5.so.3 (0x0000672cf8e52000) libcom_err.so.2 => /lib64/libcom_err.so.2 (0x0000672cf8c50000) libk5crypto.so.3 => /usr/lib64/libk5crypto.so.3 (0x0000672cf8a2b000) libresolv.so.2 => /lib64/libresolv.so.2 (0x0000672cf8816000) /lib64/ld-linux-x86-64.so.2 (0x0000672cfa246000) libpthread.so.0 => /lib64/libpthread.so.0 (0x0000672cf85fc000) libkrb5support.so.0 => /usr/lib64/libkrb5support.so.0 (0x0000672cf83f5000)
