2270150 – To mitigate security risks Red Hat introduced 1 GB LimitRequestBody default size in RHEL 9.1 and broken Horizon image upload

Bug 2270150 - To mitigate security risks Red Hat introduced 1 GB LimitRequestBody default size in RHEL 9.1 and broken Horizon image upload

Summary: To mitigate security risks Red Hat introduced 1 GB LimitRequestBody default s...

Keywords:
Status:	CLOSED DUPLICATE of bug 2252736
Alias:	None
Product:	Red Hat OpenStack
Classification:	Red Hat
Component:	puppet-horizon
Sub Component:
Version:	17.1 (Wallaby)
Hardware:	All
OS:	All
Priority:	medium
Severity:	high
Target Milestone:	---
Target Release:	---
Assignee:	Radomir Dopieralski
QA Contact:	ikanias
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2024-03-18 16:04 UTC by Alex Stupnikov
Modified:	2024-06-11 15:34 UTC (History)
CC List:	5 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2024-06-11 15:34:55 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	OSP-31636	None	None	None	2024-03-18 16:05:17 UTC
Red Hat Knowledge Base (Article)	6975397	None	None	None	2024-03-18 16:05:13 UTC
Red Hat Knowledge Base (Solution)	7049165	None	None	None	2024-03-18 16:04:57 UTC

Description Alex Stupnikov 2024-03-18 16:04:07 UTC

Description of problem:
RHEL engineering introduced default 1GB limit for LimitRequestBody starting with RHEL 9.1 https://access.redhat.com/articles/6975397. This change broken upload process for huge images via Horizon: upload fails with "413 Request Entity Too Large" error.

It is possible to use definitions like [1] to work around this problem, but for some reason it introduces 15-horizon_vhost.conf instead of 10-horizon_vhost.conf and breaks healthchecks https://bugzilla.redhat.com/show_bug.cgi?id=2252718#c1.

As a result, we need a solid fix here because more customers are migrating to RHOSP 17.1 and many of them are actually using Horizon to upload images.

[1]
parameter_defaults:
  HorizonVhostExtraParams:
    limitreqbody: 10737418240
    add_listen: true
    priority: 10
    access_log_format: '%a %l %u %t \"%r\" %>s %b \"%%{}{Referer}i\" \"%%{}{User-Agent}i\"'
    options: ['FollowSymLinks','MultiViews']

Version-Release number of selected component (if applicable):
RHOSP 17

How reproducible:
"413 Request Entity Too Large" error is returned when trying to upload big images. 


Actual results:
Impossible to upload huge images via Horizon

Expected results:
Possible to upload huge images via Horizon

Comment 1 Alex Stupnikov 2024-03-18 16:05:39 UTC

Related documentation bug: https://bugzilla.redhat.com/show_bug.cgi?id=2252718

Comment 4 Radomir Dopieralski 2024-06-11 15:34:55 UTC


*** This bug has been marked as a duplicate of bug 2252736 ***

Note You need to log in before you can comment on or make changes to this bug.