Bug ID 1099765: Inconsistent behavior in violation detection with maximum parameter enforcement

Last Modified: Dec 14, 2023

Affected Product(s):
BIG-IP TMOS(all modules)

Known Affected Versions:
15.1.2, 15.1.2.1, 15.1.3, 15.1.3.1, 15.1.4, 15.1.4.1, 15.1.5, 15.1.5.1, 15.1.6, 15.1.6.1, 15.1.7, 15.1.8, 15.1.8.1, 15.1.8.2, 15.1.9, 15.1.9.1, 17.0.0, 17.0.0.1, 17.0.0.2

Fixed In:
17.1.1, 16.1.4, 15.1.10

Opened: Apr 18, 2022

Severity: 4-Minor

Symptoms

Request with JSON body with more than 600 parameters causes the event log to show incorrect violations.

Impact

No violation for passing maximum parameters given in event log, although the maximum number of allowed parameters was exceeded.

Conditions

-- 'Maximum params' configured to 600 in JSON profile -- 'Maximum array length' configured to 'Any' -- A request occurs that contains more than 600 parameters in the body in JSON format

Workaround

None

Fix Information

The violations VIOL_HTTP_PROTOCOL and VIOL_JSON_FORMAT are now recorded in the event log.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips