Bug ID 1538241: HTTP may not forward POST with large headers and parking HTTP_REQUEST_RELEASE iRule

Last Modified: Dec 11, 2024

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
16.0.0, 16.0.0.1, 16.0.1, 16.0.1.1, 16.0.1.2, 16.1.0, 16.1.1, 16.1.2, 16.1.2.1, 16.1.2.2, 16.1.3, 16.1.3.1, 16.1.3.2, 16.1.3.3, 16.1.3.4, 16.1.3.5, 16.1.4, 16.1.4.1, 16.1.4.2, 16.1.4.3, 16.1.5, 16.1.5.1, 17.0.0, 17.0.0.1, 17.0.0.2, 17.1.0, 17.1.0.1, 17.1.0.2, 17.1.0.3, 17.1.1, 17.1.1.1, 17.1.1.2, 17.1.1.3, 17.1.1.4

Fixed In:
17.1.2

Opened: Feb 15, 2024

Severity: 3-Major

Symptoms

The request is not immediately forwarded to the server. It may be forwarded if the server closes the connection.

Impact

HTTP POST request is not forwarded to the server side within 60 seconds, resulting in connection issues.

Conditions

Under certain scenarios, the HTTP virtual server with the below iRule attached may not forward HTTP POST requests with large headers: HTTP_REQUEST_RELEASE { HTTP::header replace Authorization [string repeat x 4096] after 1 }

Workaround

A possible workaround is to move the processing from HTTP_REQUEST_RELEASE to HTTP_REQUEST_SEND. Note: However, this workaround can be highly dependent on what actions are performed in the iRules involved.

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips