Description of problem: HAProxy's default request buffer configuration only allows 8192 bytes for headers in incoming requests. This limit is too low. haproxy-config.template does not specify tune.bufsize or tune.maxrewrite. The default value for tune.bufsize is 16384 bytes. The default value for tune.maxrewrite is half of tune.bufsize. Incoming request headers are limited to the difference, tune.bufsize - tune.maxrewrite, thus 8192 bytes, by default. Version-Release number of selected component (if applicable): 3.5.0.14 Steps to reproduce: The problem can be demonstrated with the following command: curl "http://${some_route}/" -H "X-Foo: $(perl -e 'print "x"x8192')" Actual results: HAProxy responds with "400 Bad request". Expected results: HAProxy should return a 200 response. Additional information: PR: https://github.com/openshift/online/pull/1144
This is fixed in 3.5.0.15-2, which has been deployed to free-int.
Verified in the online free int environment, when try to access a route with long header: curl "http://${some_route}/" -H "X-Foo: $(perl -e 'print "x"x8192')" -I curl "http://${some_route}/" -H "X-Foo: $(perl -e 'print "x"x20000')" -I We can get the 200 OK response.