I did this
#!/bin/bash
curl -v -x http://proxy-webserver:80 http://website1:8090 --next -x http://proxy-webserver:80 http://website2
I expected the following
> Host: website1:8090
...
> Host: website2
What actually happened
When re-using a connection with an HTTP Proxy, curl will re-use the port number in the HOST header of website1 when requesting website2.
> Host: website1:8090
...
> Host: website2:8090
Full anonymised log: We use an internal proxy server, we did not share the proxy server that we used nor the destination endpoints of the example. Let me know if this is a hurdle:
* Rebuilt URL to: http://website1:8090/
* Trying 10.76.31.109...
* Connected to proxy-webserver (10.76.31.109) port 80 (#0)
> GET http://website1:8090/ HTTP/1.1
> Host: website1:8090
> User-Agent: curl/7.47.0
> Accept: */*
> Proxy-Connection: Keep-Alive
>
< HTTP/1.1 200 OK
< Server: nginx
< Date: Tue, 12 Sep 2017 21:56:24 GMT
< Content-Type: text/plain; charset=UTF-8
< Content-Length: 86
< Connection: keep-alive
< Etag: "fa2d1f611c1047c6564784dab407bfa88e7da3bb"
<
* Connection #0 to host proxy-webserver left intact
Hello, world!
* Rebuilt URL to: http://website2/
* Found bundle for host website2: 0x55ca17c02190 [can pipeline]
* Re-using existing connection! (#0) with proxy proxy-webserver
* Connected to proxy-webserver (10.76.31.109) port 80 (#0)
> GET http://website2/ HTTP/1.1
> Host: website2:8090 # This is incorrect
> User-Agent: curl/7.47.0
> Accept: */*
> Proxy-Connection: Keep-Alive
>
< HTTP/1.1 502 Bad Gateway
< Server: nginx
< Date: Tue, 12 Sep 2017 21:56:34 GMT
< Content-Type: text/html
< Content-Length: 166
< Connection: keep-alive
<
Proxy server returns error
* Connection #0 to host proxy-webserver left intact
curl/libcurl version
curl 7.47.0 (x86_64-pc-linux-gnu) libcurl/7.47.0 GnuTLS/3.4.10 zlib/1.2.8 libidn/1.32 librtmp/2.3
Protocols: dict file ftp ftps gopher http https imap imaps ldap ldaps pop3 pop3s rtmp rtsp smb smbs smtp smtps telnet tftp
Features: AsynchDNS IDN IPv6 Largefile GSS-API Kerberos SPNEGO NTLM NTLM_WB SSL libz TLS-SRP UnixSockets
I've verified that the latest version of curl master is also affected (7.56.0-DEV).
Further notes
I've proposed a workaround here, though this is not ideal we would like to re-use proxy connections while specifying a different port.
#1886
Disabling connection re-use is a workaround for this issue.
I did this
I expected the following
What actually happened
When re-using a connection with an HTTP Proxy, curl will re-use the port number in the
HOSTheader ofwebsite1when requestingwebsite2.Full anonymised log: We use an internal proxy server, we did not share the proxy server that we used nor the destination endpoints of the example. Let me know if this is a hurdle:
curl/libcurl version
I've verified that the latest version of curl master is also affected (7.56.0-DEV).
Further notes
I've proposed a workaround here, though this is not ideal we would like to re-use proxy connections while specifying a different port.
#1886
Disabling connection re-use is a workaround for this issue.