Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 7.1.0.DR13
Affects Version/s: 7.0.5.CR1, 7.1.0.DR11
Component/s: Undertow
Labels:
None

CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Target Release:

7.1.0.GA

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Setting max-header-size on a http2-enabled https listener doesn't restrict header size.

For example with following listener configuration:

<http-listener name="default" socket-binding="http" redirect-socket="https" enable-http2="true" ma    x-header-size="200"/>
<https-listener name="https" socket-binding="https" security-realm="ApplicationRealm" enable-http2="true" max-header-size="200"/>

calling curl -i -k -H "header1:long_long_value" http://localhost:8080 fails as expected, but
curl -i -k -H "header1:long_long_value" --http2 https://localhost:8443 returns 200

clones

UNDERTOW-986 HTTP2 listener doesn't respect MAX_HEADER_SIZE setting

Resolved

is cloned by

JBEAP-8788 (7.0.z) UNDERTOW-986 - HTTP2 listener doesn't respect MAX_HEADER_SIZE setting

Closed

is incorporated by

JBEAP-8874 (7.1.0) Upgrade to WildFly Core to 3.0.0.Beta6

Closed

Assignee:: Stuart Douglas

Reporter:: Radim Hatlapatka (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2017/02/10 4:34 AM

Updated:: 2024/09/02 4:42 PM

Resolved:: 2017/02/27 5:06 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates