orchestra squid config should not deny apt packages

Bug #927750 reported by Scott Moser
This bug affects 2 people
Affects Status Importance Assigned to Milestone
orchestra (Ubuntu)
Fix Released
Andres Rodriguez

Bug Description

current orchestra squid configuration has:
 | acl PACKAGES url_regex \/Packages(|\.bz2|\.gz)$
 | cache deny PACKAGES
 | acl SOURCES url_regex \/Sources(|\.bz2|\.gz)$
 | cache deny SOURCES
 | acl RELEASE url_regex \/Release(|\.gpg)$
 | cache deny RELEASE

That means that those files are *never* cached, meaning each client request guarantees a non-local network operation.

Currently, amd64 'apt-get update' would report:
  Fetched 22.2 MB in 35s (618 kB/s)
So, thats 22MB that will never be cached.

The suggested fix is to use 'refresh_pattern' instead of deny, with a basic diff then looking something like:

--- squid.conf.old 2012-02-06 17:27:15.630780844 +0000
+++ squid.conf 2012-02-06 17:27:23.990783380 +0000
@@ -38,16 +38,12 @@
 icp_port 0
 hierarchy_stoplist cgi-bin ?
 access_log /var/log/squid3/access.log squid
+refresh_pattern \/(Packages|Sources)(|\.bz2|\.gz)$ 0 0% 0
+refresh_pattern \/Release(|\.gpg)$ 0 0% 0
 refresh_pattern ^ftp: 1440 20% 10080
 refresh_pattern ^gopher: 1440 0% 1440
 refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
 refresh_pattern . 0 20% 4320
-acl PACKAGES url_regex \/Packages(|\.bz2|\.gz)$
-cache deny PACKAGES
-acl SOURCES url_regex \/Sources(|\.bz2|\.gz)$
-cache deny SOURCES
-acl RELEASE url_regex \/Release(|\.gpg)$
-cache deny RELEASE
 hosts_file /etc/hosts
 coredump_dir /var/spool/squid3
 maximum_object_size 750 MB

for reference, conversation on this topic was in IRC at http://irclogs.ubuntu.com/2012/02/06/%23ubuntu-server.html#t16:57

Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in orchestra (Ubuntu):
status: New → Confirmed
Changed in orchestra (Ubuntu):
status: Confirmed → Fix Committed
assignee: nobody → Andres Rodriguez (andreserl)
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package orchestra - 2.28-0ubuntu1

orchestra (2.28-0ubuntu1) precise; urgency=low

  [ Marc Cluet ]
  * debian/control:
    - Remove monitoring package
    - Remove explicit byobu declaration

  [ Andres Rodriguez ]
  * Create 'default' system for enlistment (LP: #898840)
  * Do not deny apt Packages. Thanks to Scott Moser (LP: #927750)
  * debian/ubuntu-orchestra-provisioning-server.postrm: Remove not only on
    'purge' but in 'remove' to not break apache. (LP: #929368)
 -- Andres Rodriguez <email address hidden> Fri, 10 Feb 2012 11:37:00 -0500

Changed in orchestra (Ubuntu):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.