Bug ID 675326: TMM core with Modify Header with 'remove header' option

Last Modified: Jul 12, 2023

Affected Product(s):
BIG-IP APM(all modules)

Known Affected Versions:
13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3

Fixed In:
13.1.0, 13.0.1

Opened: Jul 24, 2017

Severity: 2-Critical

Related Article: K15530703

Symptoms

TMM core when Modify Header with 'remove header' option is used in policy before proxy select.

Impact

TMM cores because HTTP data is not available at this point and the headers cannot be modified. Traffic disrupted while tmm restarts.

Conditions

'Modify header' agent with 'remove header' option occurs before proxy select agent in per-request policy.

Workaround

Do not configure the per-request policy in such a way that the Modify Header agent is used before the Proxy Select agent. This is an invalid setup.

Fix Information

A conditional check has been added, and the following error will be logged instead of a TMM core if the invalid configuration is used for traffic: HTTP data unavailable due to SSL Bypass mode. HTTP Header Agent unable to modify header ([header name here]) with value ([header value here]). Error: (ERR_NOT_SUPPORTED).

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips