Hello,
Istio Version : 1.7
I am trying to update max_request_headers_kb to 80 using below envoy filter:
I know the document from envoy says default limit is 60 kb but in code its hardcoded to 29 and max limit to 94.
// By default, Envoy will overwrite the header with the value specified in // server_name. ServerHeaderTransformation server_header_transformation = 34 [(validate.rules).enum = {defined_only: true}]; // The maximum request headers size for incoming connections. // If unconfigured, the default max request headers allowed is 60 KiB. // Requests that exceed this limit will receive a 431 response. // The max configurable limit is 96 KiB, based on current implementation // constraints. google.protobuf.UInt32Value max_request_headers_kb = 29 [(validate.rules).uint32 = {lte: 96 gt: 0}]; // The idle timeout for connections managed by the connection manager. The // idle timeout is defined as the period in which there are no active // requests. If not set, there is no idle timeout. When the idle timeout is // reached the connection will be closed. If the connection is an HTTP/2 // connection a drain sequence will occur prior to closing the connection. // This field is deprecated. Use :ref:`idle_timeout // <envoy_api_field_config.filter.network.http_connection_manager.v2.HttpConnectionManager.common_http_protocol_options>` // instead.
apiVersion: networking.istio.io/v1alpha3
applyTo: NETWORK_FILTER # http connection manager is a filter in Envoy
OR
apiVersion: networking.istio.io/v1alpha3
None worked.
Can someone suggest what am I doing wrong?
For 1.7, some of the fields have to be updated for envoy v3:
apiVersion: networking.istio.io/v1alpha3
kind: EnvoyFilter
metadata:
name: max-request-headers
namespace: istio-system
spec:
configPatches:
- applyTo: NETWORK_FILTER # http connection manager is a filter in Envoy
match:
context: ANY
listener:
filterChain:
filter:
name: "envoy.filters.network.http_connection_manager"
patch:
operation: MERGE
value:
typed_config:
"@type": "type.googleapis.com/envoy.extensions.filters.network.http_connection_manager.v3.HttpConnectionManager"
max_request_headers_kb: 90
Hello Ram,
No luck with above filter definition as well. Is this configuration is working for you?
Divyesh Bhatt
hello,
PS: i have a lua filter configured as HTTP_FILTER and patch INSERT_BEFORE → don’t know if the max_request_headers_kb (work) but is not set before reaching the filter or something like that, or if the config does not work at all
Thank you
No Luck… Have parked this for a while. Please let me know if you find any solution.
1 Like
I’m looking for a solution for this problem too…
its hardcoded to 29
29 is the protobud field number, not a default value.
1 Like
Any news on this item? Is there an issue opened for it?