Re: APT do not work with Squid as a proxy because of pipelining default

To: Bjon Mork <bjorn@mork.no>
Cc: debian-devel@lists.debian.org
Subject: Re: APT do not work with Squid as a proxy because of pipelining default
From: Goswin von Brederlow <goswin-v-b@web.de>
Date: Wed, 19 May 2010 18:32:57 +0200
Message-id: <[🔎] 87r5l7ua12.fsf@frosties.localdomain>
In-reply-to: <[🔎] 87r5l83tsv.fsf@nemi.mork.no> ("Bjorn Mork"'s message of "Wed, 19 May 2010 15:28:00 +0200")
References: <eL13Q-1VN-1@gated-at.bofh.it> <eL2CC-4ij-15@gated-at.bofh.it> <eLgmf-7BR-11@gated-at.bofh.it> <eLiR4-2Tj-5@gated-at.bofh.it> <eLkpQ-5eC-7@gated-at.bofh.it> <[🔎] 4BF31D2E.7020209@rilynn.me.uk> <[🔎] 2flpr0sjvpa.fsf@login1.uio.no> <[🔎] 87vdak5lkg.fsf@nemi.mork.no> <[🔎] 20100519124134.GC20104@madism.org> <[🔎] 87r5l83tsv.fsf@nemi.mork.no>

BjÃ¸rn Mork <bjorn@mork.no> writes:

> Pierre Habouzit <madcoder@madism.org> writes:
>> On Wed, May 19, 2010 at 10:42:55AM +0200, BjÃ¸rn Mork wrote:
>>
>>> 2) http proxy servers cannot always process pipelined requests due to
>>>    the complexity this adds (complexity is always bad for security), and
>>
>> This is bullshit. It's *VERY* easy to "support" pipelining: parse one
>> request at a time, and until you're done with a given request, you just
>> stop to watch the socket/file-descriptor for reading (IOW you let the
>> consecutive request live in the kernel buffers).

Or user space buffers. You would not want to parse the requests by using
read(fd, buf, 1).

> Yeah, you make it sound easy.  I'm sure those writing proxy servers are
> just stupid.
>
>
> BjÃ¸rn

It is that easy. For a proxy call it de-pipeline-isation. In a proxy
this behaviour would destroy the benefit of pipelining. But not the data.

The hard part is writing the proxy so that it still pipelines the
requests to the server. There you get the increased complexity for
security and bandwith limiting. But that is not required for HTTP/1.1
conformance and an actually working setup.

MfG
        Goswin

Reply to:

References:
- Re: APT do not work with Squid as a proxy because of pipelining default
  - From: Roger Lynn <Roger@rilynn.me.uk>
- Re: APT do not work with Squid as a proxy because of pipelining default
  - From: Petter Reinholdtsen <pere@hungry.com>
- Re: APT do not work with Squid as a proxy because of pipelining default
  - From: Bjørn Mork <bjorn@mork.no>
- Re: APT do not work with Squid as a proxy because of pipelining default
  - From: Pierre Habouzit <madcoder@madism.org>
- Re: APT do not work with Squid as a proxy because of pipelining default
  - From: Bjørn Mork <bjorn@mork.no>

Prev by Date: Re: APT do not work with Squid as a proxy because of pipelining default
Next by Date: Re: SRWare Iron: Chromium without the data-mining
Previous by thread: Re: APT do not work with Squid as a proxy because of pipelining default
Next by thread: Re: APT do not work with Squid as a proxy because of pipelining default
Index(es):
- Date
- Thread