Skip to content

[Reverted] Increase initial AMQP 0-9-1 connection frame size limit (backport #13542) (backport #13543) #13544

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Mar 16, 2025
Merged

[Reverted] Increase initial AMQP 0-9-1 connection frame size limit (backport #13542) (backport #13543) #13544

merged 1 commit into from
Mar 16, 2025

Conversation

mergify[bot]
Copy link

@mergify mergify bot commented Mar 16, 2025

Before the client authenticates, the standard
frame_max is not used. Instead, the initial limit uses a special constant.

This is fine for password or x.509 certificate-based authentication but not for some JWT tokens, which can vary in size, and take multiple kilobytes.

8 kB specifically is the default HTTP header length limit used by Nginx.
Sounds like this value was good enough for a lot of Bearer headers with JWT tokens.

Closes #13541.

This is an automatic backport of pull request #13542 done by [Mergify](https://mergify.com).
This is an automatic backport of pull request #13543 done by [Mergify](https://mergify.com).

@michaelklishin @mergify
Increase initial AMQP 0-9-1 connection frame size limit
2cff320 
Before the client authenticates, the standard
frame_max is not used. Instead, the limit is
a special constant.

This is fine for password or x.509 certificate-based
authentication but not for some JWT tokens,
which can vary in size, and take multiple
kilobytes.

8 kB specifically is the default HTTP header
length limit used by Nginx.
Sounds like this value was good enough
for a lot of Bearer headers with JWT tokens.

Closes #13541.

(cherry picked from commit b807887)
(cherry picked from commit 95d859d)
@michaelklishin michaelklishin added this to the 4.0.8 milestone Mar 16, 2025
@michaelklishin michaelklishin merged commit 5107667 into v4.0.x Mar 16, 2025
268 checks passed
@michaelklishin michaelklishin deleted the mergify/bp/v4.0.x/pr-13543 branch March 16, 2025 21:31
@michaelklishin michaelklishin removed this from the 4.0.8 milestone Mar 17, 2025
@michaelklishin michaelklishin changed the title Increase initial AMQP 0-9-1 connection frame size limit (backport #13542) (backport #13543) [Reverted] Increase initial AMQP 0-9-1 connection frame size limit (backport #13542) (backport #13543) Mar 17, 2025
michaelklishin added a commit that referenced this pull request Mar 17, 2025
@michaelklishin
Revert "Merge pull request #13544 from rabbitmq/mergify/bp/v4.0.x/pr-…
5a9007f 
…13543"

This reverts commit 5107667, reversing
changes made to 2154336.

We'll keep this change 4.1.0-specific because it can
affect a very small percentage of clients that override
frame_max to a value lower than 8192 bytes.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@michaelklishin