[Bug 66642] New: If apache is acting as a reverse proxy, and the downstream service it's proxying for returns a malformed response, apache returns 200, I would expect apache to either handle that badly and just crash, or at least return a 500.

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=66642

            Bug ID: 66642
           Summary: If apache is acting as a reverse proxy, and the
                    downstream service it's proxying for returns a
                    malformed response, apache returns 200, I would expect
                    apache to either handle that badly and just crash, or
                    at least return a 500.
           Product: Apache httpd-2
           Version: 2.4-HEAD
          Hardware: PC
                OS: Mac OS X 10.1
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Core
          Assignee: bugs@httpd.apache.org
          Reporter: hmshashank2...@gmail.com
  Target Milestone: ---

I have a sample python app running as docker container and configured with
apache2.4 and openssl (python-server.py):
This is a good-response:
```
curl -ik --cert '<your cert>'  https://<app-host-name>/good  --resolve
<app-host-name>:443:<ip>

HTTP/1.1 404 Not Found
Date: Fri, 14 Apr 2023 08:06:14 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/3.0.7+
Transfer-Encoding: chunked

This is the good page.%
```
This is a bad-response:
```
curl -ik --cert '<your cert>'  https://<app-host-name>/bad  --resolve
<app-host-name>:443:<ip>

HTTP/1.1 200 OK
Date: Fri, 14 Apr 2023 08:18:02 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/3.0.7+
Transfer-Encoding: chunked

HTTP/1.0 b'404 Not Found'
This is the bad page.%
```
This is malformed response since it contains b' in the response body.

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org