[prev in list] [next in list] [prev in thread] [next in thread]
List: apache-httpd-users
Subject: [users@httpd] mod_proxy_ajp - Bad request for one specific request
From: Olga Vingurt <olga.vingurt () gmail ! com>
Date: 2018-04-25 16:24:55
Message-ID: CAOkHHZ+3zuvWmmmGjDaGEsJefWcoAikxLUxasJETsrAFyeV0HQ () mail ! gmail ! com
[Download RAW message or body]
Hi,
We're using Apache 2.4.20 on Windows. Apache configured to proxy requests
to Tomcat (8.5.16) using AJP.
Relevant configuration from httpd.conf:
##############################
<VirtualHost *:443>
SSLEngine On
SSLProxyEngine On
.............
RewriteEngine on
RewriteCond %{HTTP:X-custom-header} ^someheader.*
RewriteCond %{SSL:SSL_CLIENT_VERIFY} ^SUCCESS$
RewriteRule ^/(.*) ajp://127.0.0.1:8009/$1 [P]
ProxyPassReverse / ajp://127.0.0.1:8009/
Header set Server ""
......
</VirtualHost>
##############################
Relevant configuration from server.xml:
#############################
<Connector port="8009" address="127.0.0.1" protocol="AJP/1.3"/>
#############################
In some rare cases which we fail to reproduce consistently one specific
request if always rejected with HTTP error code 400 Bad Request and the
following error is logged in Apache error log:
##############################
BufferOverflowException 4 2337
ajp_marshal_into_msgb: *Error appending the SSL certificates*
ajp_send_header: ajp_marshal_into_msgb failed
... request failed to (null) (*)
################################
Another requests with the same configuration pass without any problem. The
problematic request is not big and headers are the same as headers for
another requests.
Should we increase ProxyIOBufferSize or is there any different workaround?
Thanks!
[Attachment #3 (text/html)]
<div dir="ltr">Hi,<div><br></div><div>We're using Apache 2.4.20 on Windows. \
Apache configured to proxy requests to Tomcat (8.5.16) using \
AJP.</div><div><br></div><div>Relevant configuration from \
httpd.conf:</div><div>##############################</div><div><div><VirtualHost \
*:443></div><div> SSLEngine On</div><div> SSLProxyEngine On </div><div> \
.............</div><div> RewriteEngine on</div><div> RewriteCond \
%{HTTP:X-custom-header} ^someheader.*</div><div> RewriteCond \
%{SSL:SSL_CLIENT_VERIFY} ^SUCCESS$</div><div> RewriteRule ^/(.*) ajp://<a \
href="http://127.0.0.1:8009/$1" target="_blank">127.0.0.1:8009/$1</a> [P]</div><div> \
ProxyPassReverse / ajp://<a href="http://127.0.0.1:8009/" \
target="_blank">127.0.0.1:8009/</a></div><div> Header set Server \
""</div><div> \
......</div><div></VirtualHost></div></div><div>##############################</div><div><br></div><div>Relevant \
configuration from server.xml:</div><div>#############################</div><div><Connector \
port="8009" address="127.0.0.1" \
protocol="AJP/1.3"/><br></div><div>#############################</div><div><br></div><div>In \
some rare cases which we fail to reproduce consistently one specific request if \
always rejected with HTTP error code 400 Bad Request and the following error is \
logged in Apache error \
log:</div><div>##############################</div><div><div>BufferOverflowException \
4 2337</div><div>ajp_marshal_into_msgb: <b>Error appending the SSL \
certificates</b></div><div>ajp_send_header: ajp_marshal_into_msgb \
failed</div><div>... request failed to (null) \
(*)</div></div><div>##############################<wbr>##</div><div><br></div><div>Another \
requests with the same configuration pass without any problem. The problematic \
request is not big and headers are the same as headers for another \
requests.</div><div><br></div><div>Should we increase ProxyIOBufferSize or is there \
any different workaround?</div><div><br></div><div>Thanks!</div><div><br></div><div><br></div><div><br></div><div><br></div></div>
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic