Bug 1852728
Summary: | Default 503 error page not conforming to RFCs 2616 and 7230 - CRLF | |||
---|---|---|---|---|
Product: | OpenShift Container Platform | Reporter: | Simon Krenger <skrenger> | |
Component: | Networking | Assignee: | Andrew McDermott <amcdermo> | |
Networking sub component: | router | QA Contact: | Arvind iyengar <aiyengar> | |
Status: | CLOSED ERRATA | Docs Contact: | ||
Severity: | medium | |||
Priority: | unspecified | CC: | aiyengar, amcdermo, aos-bugs, bbennett, erich, fkrohn, hongli, sgreene, skrenger, xtian | |
Version: | 3.11.0 | |||
Target Milestone: | --- | |||
Target Release: | 4.6.0 | |||
Hardware: | x86_64 | |||
OS: | Linux | |||
Whiteboard: | ||||
Fixed In Version: | Doc Type: | Bug Fix | ||
Doc Text: |
Cause:
HAProxy router 503 page contained LF line endings instead of CRLF endings.
Consequence:
Some Web Application Firewalls, etc. are unable to consume the 503 page from the router since it technically is not spec compliant.
Fix:
Change the line endings of the HAProxy router 503 page (whitespace only change)
Result:
HAProxy 503 page is now spec compliant.
|
Story Points: | --- | |
Clone Of: | ||||
: | 1881133 (view as bug list) | Environment: | ||
Last Closed: | 2020-10-27 16:10:31 UTC | Type: | Bug | |
Regression: | --- | Mount Type: | --- | |
Documentation: | --- | CRM: | ||
Verified Versions: | Category: | --- | ||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
Cloudforms Team: | --- | Target Upstream Version: | ||
Embargoed: | ||||
Bug Depends On: | ||||
Bug Blocks: | 1879120, 1881133 |
Description
Simon Krenger
2020-07-01 07:50:49 UTC
I’m adding UpcomingSprint, because I was occupied by fixing bugs with higher priority/severity, developing new features with higher priority, or developing new features to improve stability at a macro level. I will revisit this bug next sprint. I’m adding UpcomingSprint, because I was occupied by fixing bugs with higher priority/severity, developing new features with higher priority, or developing new features to improve stability at a macro level. I will revisit this bug next sprint. Target reset to 4.7 while investigation is either ongoing or not yet started. Will be considered for earlier release versions when diagnosed and resolved. this is related to https://issues.redhat.com/browse/RFE-140 This bug has been verified in "4.6.0-0.nightly-2020-09-12-230035" release. With this version, it is noted that the headers are now contains CR-LF linebreaks: ----- $ oc get clusterversion NAME VERSION AVAILABLE PROGRESSING SINCE STATUS version 4.6.0-0.nightly-2020-09-12-230035 True False 27h Cluster version is 4.6.0-0.nightly-2020-09-12-230035 sh-4.4$ haproxy -v HA-Proxy version 2.0.16 2020/07/17 - https://haproxy.org/ sh-4.4$ hexdump -C /var/lib/haproxy/conf/error-page-503.http | head -n3 00000000 48 54 54 50 2f 31 2e 30 20 35 30 33 20 53 65 72 |HTTP/1.0 503 Ser| 00000010 76 69 63 65 20 55 6e 61 76 61 69 6c 61 62 6c 65 |vice Unavailable| 00000020 0d 0a 50 72 61 67 6d 61 3a 20 6e 6f 2d 63 61 63 |..Pragma: no-cac| ------ Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (OpenShift Container Platform 4.6 GA Images), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2020:4196 |