router: fix a bug where internal redirect will hang up request or unexpected redirect#44154
Merged
wbpcode merged 4 commits intoenvoyproxy:mainfrom Apr 1, 2026
Merged
router: fix a bug where internal redirect will hang up request or unexpected redirect#44154wbpcode merged 4 commits intoenvoyproxy:mainfrom
wbpcode merged 4 commits intoenvoyproxy:mainfrom
Conversation
Signed-off-by: wbpcode/wangbaiping <wbphub@gmail.com>
Signed-off-by: wbpcode/wangbaiping <wbphub@gmail.com>
Signed-off-by: wbpcode/wangbaiping <wbphub@gmail.com>
Member
Author
|
This at least need to be back ported to 1.36 and 1.37. |
wbpcode
commented
Mar 28, 2026
Comment on lines
-2031
to
+2007
| if (downstream_end_stream_ && (!request_buffer_overflowed_ || !callbacks_->decodingBuffer()) && | ||
| location != nullptr && | ||
| if (downstream_end_stream_ && (!request_buffer_overflowed_) && location != nullptr && |
Member
Author
There was a problem hiding this comment.
The !request_buffer_overflowed_ || !callbacks_->decodingBuffer() will result in unexpected redirection because it's possible the the request has body but first chunk overflow and the decodingBuffer() still be nullptr.
wbpcode
commented
Mar 28, 2026
Comment on lines
-1452
to
-1457
| // Check if buffer overflow occurred and override error details accordingly | ||
| if (request_buffer_overflowed_) { | ||
| code = Http::Code::InsufficientStorage; | ||
| body = "exceeded request buffer limit while retrying upstream"; | ||
| details = StreamInfo::ResponseCodeDetails::get().RequestPayloadExceededRetryBufferLimit; | ||
| } |
Member
Author
There was a problem hiding this comment.
The buffer overflow will affect retry and redirection. But if upstream abort (reset, connection failure), we should expose the actual error from upstream to client. This is also introduced at #40254
wbpcode
commented
Mar 28, 2026
Comment on lines
-3338
to
-3347
| EXPECT_CALL(callbacks_.route_->route_entry_, requestBodyBufferLimit()).WillOnce(Return(10)); | ||
|
|
||
| NiceMock<Http::MockRequestEncoder> encoder1; | ||
| Http::ResponseDecoder* response_decoder = nullptr; | ||
| expectNewStreamWithImmediateEncoder(encoder1, &response_decoder, Http::Protocol::Http10); | ||
|
|
||
| Http::TestRequestHeaderMapImpl headers{ | ||
| {"x-envoy-retry-on", "5xx"}, {"x-envoy-internal", "true"}, {"myheader", "present"}}; | ||
| HttpTestUtility::addDefaultHeaders(headers); | ||
| router_->decodeHeaders(headers, false); |
Member
Author
There was a problem hiding this comment.
This PR also removed some repeated tests for buffer/retry.
Member
Author
|
/retest |
agrawroh
previously approved these changes
Mar 30, 2026
Member
agrawroh
left a comment
agrawroh
left a comment
There was a problem hiding this comment.
LGTM, Thank You for fixing it.
|
|
||
| // In production, the HCM recreateStream would have called this. | ||
| router_->onDestroy(); | ||
| EXPECT_FALSE(callbacks_.streamInfo().filterState()->hasDataWithName("num_internal_redirects")); |
Member
There was a problem hiding this comment.
Should we also verify that retry_or_shadow_abandoned gets incremented as we would increment that now per the new flow?
EXPECT_EQ(1U, cm_.thread_local_cluster_.cluster_.info_->stats_store_.counter("retry_or_shadow_abandoned").value());
EXPECT_EQ(1U, cm_.thread_local_cluster_.cluster_.info_->stats_store_.counter("upstream_internal_redirect_failed_total").value());| // request. | ||
| if (would_exceed_buffer && retry_enabled && !is_redirect_only && !request_buffer_overflowed_) { | ||
| // Handle buffer overflow. | ||
| if (buffering && would_exceed_buffer && !request_buffer_overflowed_) { |
Member
There was a problem hiding this comment.
I think we could just remove !request_buffer_overflowed_ from here as it's already covered as part of buffering?
| Http::ResponseDecoder* response_decoder = nullptr; | ||
| expectNewStreamWithImmediateEncoder(encoder1, &response_decoder, Http::Protocol::Http10); | ||
|
|
||
| // Enable redirects also. This feature will not be used but will affects buffer logic. |
Member
There was a problem hiding this comment.
Suggested change
| // Enable redirects also. This feature will not be used but will affects buffer logic. | |
| // Enable redirects also. This feature will not be used but will affect buffer logic. |
| Buffer::OwnedImpl body("t"); | ||
| router_->decodeData(body, false); | ||
| Buffer::OwnedImpl body2("t"); | ||
| // Ensure the second chunk also isn't buffered and triggers the retry logic again. |
Member
There was a problem hiding this comment.
Suggested change
| // Ensure the second chunk also isn't buffered and triggers the retry logic again. | |
| // Ensure the second chunk also isn't buffered and triggers the retry logic again. | |
| // Ensure subsequent chunks after overflow are also not buffered. |
Signed-off-by: wbpcode/wangbaiping <wbphub@gmail.com>
agrawroh
approved these changes
Mar 30, 2026
Member
Author
|
gently ping @yanavlasov |
Member
Author
|
Hah, I found @yanavlasov recently no activity on github. Let me ping @ggreenway |
mattklein123
approved these changes
Apr 1, 2026
Member
|
/backport |
wbpcode
added a commit
to wbpcode/envoy
that referenced
this pull request
Apr 7, 2026
wbpcode
added a commit
to wbpcode/envoy
that referenced
this pull request
Apr 7, 2026
wbpcode
added a commit
to wbpcode/envoy
that referenced
this pull request
Apr 7, 2026
…xpected redirect (envoyproxy#44154) Signed-off-by: wbpcode <wbphub@gmail.com>
wbpcode
added a commit
to wbpcode/envoy
that referenced
this pull request
Apr 7, 2026
…xpected redirect (envoyproxy#44154) Signed-off-by: wbpcode <wbphub@gmail.com>
jwendell
pushed a commit
that referenced
this pull request
Apr 7, 2026
…xpected redirect (#44154) (#44304) Commit Message: router: fix a bug where internal redirect will hang up request or unexpected redirect (#44154) Additional Description: Risk Level: Testing: Docs Changes: Release Notes: Platform Specific Features: [Optional Runtime guard:] [Optional Fixes #Issue] [Optional Fixes commit #PR or SHA] [Optional Deprecated:] [Optional [API Considerations](https://github.com/envoyproxy/envoy/blob/main/api/review_checklist.md):] Signed-off-by: wbpcode <wbphub@gmail.com>
jwendell
pushed a commit
that referenced
this pull request
Apr 7, 2026
…xpected redirect (#44154) (#44303) Commit Message: router: fix a bug where internal redirect will hang up request or unexpected redirect (#44154) Additional Description: Risk Level: Testing: Docs Changes: Release Notes: Platform Specific Features: [Optional Runtime guard:] [Optional Fixes #Issue] [Optional Fixes commit #PR or SHA] [Optional Deprecated:] [Optional [API Considerations](https://github.com/envoyproxy/envoy/blob/main/api/review_checklist.md):] Signed-off-by: wbpcode <wbphub@gmail.com>
nshipilov
pushed a commit
to nshipilov/envoy
that referenced
this pull request
Apr 13, 2026
…xpected redirect (envoyproxy#44154) Signed-off-by: Nick Shipilov <nick.shipilov.n@gmail.com>
krinkinmu
pushed a commit
to grnmeira/envoy
that referenced
this pull request
Apr 20, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
6 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Commit Message: router: fix a bug where internal redirect will hang up request or unexpected redirect
Additional Description:
To close #44114
The PR fixed some bugs that introduced in the #40254 and also other old bug existed for a while.
In previous implementation:
decodingBuffer()will always return nullptr. This will finally result in unexpected redirection becausedecodingBuffer() == nullptrbe used as a flag that could redirect.bufferingflag is not set correctly) and will hang up the request (because the readDisable(true) and TCP flow control) if the buffer is overflowed and the request is still not completed.bufferingflag will be false, so chunk X will be skipped correctly.bufferingflag will not be set correctly and result in problem.Risk Level: mid, core logic change.
Testing: unit.
Docs Changes: n/a.
Release Notes: added.
Platform Specific Features: n/a.