http: clear hop by hop TE header #30535
Conversation
alyssawilk
force-pushed
the
te
branch
2 times, most recently
from
4ff13c1
to
5958a8e
Compare
Signed-off-by: Alyssa Wilk <alyssar@chromium.org>
| @@ -1375,8 +1377,9 @@ TEST_P(HeaderIntegrationTest, TestTeHeaderPassthrough) { | |||
| }); | |||
| } | |||
|
|
|||
| // Validates TE header is stripped if it contains an unsupported value | |||
| // Validates TE header was stripped if it contains an unsupported value | |||
There was a problem hiding this comment.
nit: Your call, but I'd be inclined to use the present tense here as it's describing what the test is going to do, not what it has done. But totally your call.
| @@ -1341,8 +1341,10 @@ TEST_P(HeaderIntegrationTest, PathWithEscapedSlashesRedirected) { | |||
| }); | |||
| } | |||
|
|
|||
| // Validates TE header is forwarded if it contains a supported value | |||
| // Validates TE header was forwarded if it contains a supported value | |||
| // It is now treated as the hop by hop header it is. | |||
There was a problem hiding this comment.
Should we remove this comment? I'm not sure that I understand why it's here?
| - area: http | ||
| change: | | ||
| Sanitize the hop by hop TE header from downstream request headers. This change can be temporarily reverted | ||
| by setting ``envoy.reloadable_features.sanitize_te`` to false. |
There was a problem hiding this comment.
Does this flag sanitize the TE header, or does it remove it?
| default_request_headers_.setTE("gzip"); | ||
| } else { | ||
| return; | ||
| } |
There was a problem hiding this comment.
nit: Early return:
if (downstreamProtocol() != Http::CodecType::HTTP1) {
return;
}
default_request_headers_.setTE("gzip");
Optionally put this early return at the top of the test to make it clear that it's H1-specific.
|
Since Envoy 1.29 I get Removing the TE isn't the solution. We should replace it by |
|
So thankfully this is runtime guarded so you should be able to reinstate prior behavior with a config change. I think if you want the envoy-upstream hop to support trailers you should just add request headers "te: trailers" to the outgoing request. |
If you are meaning unconditionally, that seems a bit simplistic. That ignores whether the originating client supports trailers. From RFC 7230 §4.1.2:
"any downstream clients" being the important part. So you'd want to make it conditional based on the originating request. |
Oh, interesting. Yes, I think that's a good point. Envoy itself is able to process trailers and pass them along, but it's only "safe" to do that in the case where Envoy knows that the downstream client is able to process trailers. The client, of course, indicates this by sending "trailers" in te. Does that sound right? |
Official grpc library does not allow empty TE header. This causes an issue when proxying requests through Envoy which currently deletes the TE header since #30535. I opened a related MR on the grpc library to allow this header to be empty as the HTTP/2 RFC allows it but it might cause issues with other libraries. Risk Level: medium (behavioral change) Testing: modified an existing test Docs Changes: n/a Release Notes: inline Platform Specific Features: Runtime guard: keep the previous one Signed-off-by: Nathanael DEMACON <ndemacon@scaleway.com>
) Official grpc library does not allow empty TE header. This causes an issue when proxying requests through Envoy which currently deletes the TE header since envoyproxy#30535. I opened a related MR on the grpc library to allow this header to be empty as the HTTP/2 RFC allows it but it might cause issues with other libraries. Risk Level: medium (behavioral change) Testing: modified an existing test Docs Changes: n/a Release Notes: inline Platform Specific Features: Runtime guard: keep the previous one Signed-off-by: Nathanael DEMACON <ndemacon@scaleway.com>
) Official grpc library does not allow empty TE header. This causes an issue when proxying requests through Envoy which currently deletes the TE header since envoyproxy#30535. I opened a related MR on the grpc library to allow this header to be empty as the HTTP/2 RFC allows it but it might cause issues with other libraries. Risk Level: medium (behavioral change) Testing: modified an existing test Docs Changes: n/a Release Notes: inline Platform Specific Features: Runtime guard: keep the previous one Signed-off-by: Nathanael DEMACON <ndemacon@scaleway.com>
) Official grpc library does not allow empty TE header. This causes an issue when proxying requests through Envoy which currently deletes the TE header since envoyproxy#30535. I opened a related MR on the grpc library to allow this header to be empty as the HTTP/2 RFC allows it but it might cause issues with other libraries. Risk Level: medium (behavioral change) Testing: modified an existing test Docs Changes: n/a Release Notes: inline Platform Specific Features: Runtime guard: keep the previous one Signed-off-by: Nathanael DEMACON <ndemacon@scaleway.com> Signed-off-by: Ryan Northey <ryan@synca.io>
) (#33018) Official grpc library does not allow empty TE header. This causes an issue when proxying requests through Envoy which currently deletes the TE header since #30535. I opened a related MR on the grpc library to allow this header to be empty as the HTTP/2 RFC allows it but it might cause issues with other libraries. Risk Level: medium (behavioral change) Testing: modified an existing test Docs Changes: n/a Release Notes: inline Platform Specific Features: Runtime guard: keep the previous one Signed-off-by: Nathanael DEMACON <ndemacon@scaleway.com> Signed-off-by: Ryan Northey <ryan@synca.io> Co-authored-by: Nathanael Demacon <nathanael.dmc@outlook.fr>
Changes Envoy to clear TE header by default, as it is a hop by hop header and should not be forwarded on.
Risk Level: medium (behavioral change)
Testing: new e2e test
Docs Changes: n/a
Release Notes: inline.
[Optional Runtime guard:] yes.
Fixes #30362