On Wed, Nov 27, 2019 at 12:36 AM Julien Pivotto <[email protected]> wrote: > > On 27 Nov 00:31, Lukas Tribus wrote: > > Hello Julien, > > > > > > > > On Wed, Nov 27, 2019 at 12:21 AM Julien Pivotto <[email protected]> > > wrote: > > > Haproxy 2.1 blocks a response with PH-- if the response has a Host header. > > > > A Host header belongs to the request, not the response. Haproxy 2.1 is > > more strict in that regard. You can configure "option > > accept-invalid-http-response" to ignore it. > > > > That said, I'm not sure this was really the intention of the change in > > question (commit 531b83e03 "MINOR: h1: Reject requests if the > > authority does not match the header host"). Christopher? > > > > > > Lukas > > I tried this option after finding that commit, but it does not work. > > I know that that header belongs to requests normally but in this case we > have a backend that sends it in the response.
I just tried it, it does work, but it needs to be option accept-invalid-http-response not option accept-invalid-http-request as mentioned in the commit, because this is about the server response, not the client request. Lukas
