You are viewing a plain text version of this content. The canonical link for it is here.
Posted to bugs@httpd.apache.org by bu...@apache.org on 2020/11/11 22:33:33 UTC
[Bug 64919] New: mod_proxy_fcgi fails to parse headers with a string
length over 8192
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
Bug ID: 64919
Summary: mod_proxy_fcgi fails to parse headers with a string
length over 8192
Product: Apache httpd-2
Version: 2.4.46
Hardware: PC
OS: Linux
Status: NEW
Severity: normal
Priority: P2
Component: mod_proxy_fcgi
Assignee: bugs@httpd.apache.org
Reporter: blocke@liquidweb.com
Target Milestone: ---
Created attachment 37560
--> https://bz.apache.org/bugzilla/attachment.cgi?id=37560&action=edit
A PHP script with a long header.
We've recently run into an issue on a live site running the magento shopping
cart software. With Magento there are cases where the headers have string
lengths longer than 8192 characters. These long headers are causing
mod_proxy_fcgi to fail parsing the headers.
Steps to Reproduce:
1.) Configure mod_proxy_fcgi to send php request to a local php-fpm service
2.) Create a php page with a header string longer than 8192 (example is
attached).
3.) Load the page.
Expected Outcome:
Page renders "this is a test, only a test"
Actual Outcome:
Page fails to load with ERR_INVALID_RESPONSE and the following error in
error_log:
[Mon Nov 09 20:56:23 2020] [proxy_fcgi:error] [pid 15169:tid 139991975950080]
[client 31.125.74.55:39714] Premature end of script headers: bh.php
[Mon Nov 09 20:56:23 2020] [proxy_fcgi:error] [pid 15169:tid 139991975950080]
[client 31.125.74.55:39714] AH01070: Error parsing script headers
[Mon Nov 09 20:56:23 2020] [proxy_fcgi:error] [pid 15169:tid 139991975950080]
(22)Invalid argument: [client 31.125.74.55:39714] AH01075: Error dispatching
request to :
We've found a work-around that involves changing the compile time limit
(increasing HUGE_STRING_LEN in httpd.h), but we don't assume that is the
recommended way to solve this issue.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
nico@achatpc.com changed:
What |Removed |Added
----------------------------------------------------------------------------
Severity|major |critical
Priority|P2 |P1
Version|2.4.46 |2.4.53
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
jkribeiro <me...@jeankribeiro.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |me@jeankribeiro.com
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string
length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
pauloehler01@gmail.com changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |pauloehler01@gmail.com
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
--- Comment #3 from nico@achatpc.com ---
Same issue on 2.4.53 version (ubuntu)
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
nico@achatpc.com changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |nico@achatpc.com
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
--- Comment #2 from nico@achatpc.com ---
Same issur on 2.4.23 version
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
--- Comment #4 from nico@achatpc.com ---
(In reply to nico from comment #2)
> Same issur on 2.4.23 version
Error on this comment. I mean 2.4.53 version
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
--- Comment #5 from azurit@pobox.sk ---
Still a problem on 2.4.53.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
--- Comment #1 from jkribeiro <me...@jeankribeiro.com> ---
From https://httpd.apache.org/docs/2.4/mod/mod_proxy.html
Parameter: responsefieldsize
Adjust the size of the proxy response field buffer. The buffer size should be
at least the size of the largest expected header size from a proxied response.
Setting the value to 0 will use the system default of 8192 bytes.
Available in Apache HTTP Server 2.4.34 and later.
I tried using the parameter like this:
<Proxy "fcgi://localhost/" responsefieldsize=16000>
</Proxy>
No success. Server version: Apache/2.4.51 ()
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string
length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
Chris Orlando <co...@nexcess.net> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |corlando@nexcess.net
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
--- Comment #8 from Jake Bell <da...@gmail.com> ---
Still happening in 2.4.54. Any update on when this might be fixed/changed to be
configurable?
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string
length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
Brandon Locke <bl...@liquidweb.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |blocke@liquidweb.com
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
--- Comment #10 from Christophe JAILLET <ch...@wanadoo.fr> ---
Hi,
I may have some time in the coming weeks to finish what I started long ago.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
--- Comment #9 from Ron E <ro...@questavolta.com> ---
Still happening in apache 2.4.57, it would be great to have at least some sort
of workaround for this that does not involve compiling from source or using a
different http daemon. Any news?
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string
length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
pauloehler01@gmail.com changed:
What |Removed |Added
----------------------------------------------------------------------------
Severity|normal |major
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
--- Comment #6 from Christophe JAILLET <ch...@wanadoo.fr> ---
I've a got a WIP that uses ap_varbuf instead of a fixed size 8192 bytes long
buffer when parsing fcgi script output.
I'll try to finish and test it.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
maikhundt@gmail.com changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |maikhundt@gmail.com
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 64919] mod_proxy_fcgi fails to parse headers with a string length over 8192
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=64919
--- Comment #7 from Hans Dampf <ko...@gmx.net> ---
Any news for this issue to make this value modifiable in a confile?
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org