list members, i am running haproxy, and see some errors with requests. i am trying to understand why the errors are being thrown. haproxy version and error info below. i am thinking that the host header is being exposed outside the TLS encryption, but cannot be sure that is what is going on.
of note, the gnome weather extension runs into a similar issue. and the eclipse IDE, when trying to call out to the download site. where can i find more about what is going wrong with the requests and why haproxy is blocking them? if it matters, the calls are from apps to a http VIP in haproxy, load balancing to squid backends. # haproxy -v HA-Proxy version 2.1.11-9da7aab 2021/01/08 - https://haproxy.org/ Status: stable branch - will stop receiving fixes around Q1 2021. Known bugs: http://www.haproxy.org/bugs/bugs-2.1.11.html Running on: Linux 5.11.22-100.fc32.x86_64 #1 SMP Wed May 19 18:58:25 UTC 2021 x86_64 [28/Dec/2021:12:17:14.412] frontend proxy (#2): invalid request backend <NONE> (#-1), server <NONE> (#-1), event #154, src 192.168.1.90:44228 buffer starts at 0 (including 0 out), 16216 free, len 168, wraps at 16336, error at position 52 H1 connection flags 0x00000000, H1 stream flags 0x00000012 H1 msg state MSG_HDR_L2_LWS(24), H1 msg flags 0x00001410 H1 chunk len 0 bytes, H1 body len 0 bytes : 00000 CONNECT admin.fedoraproject.org:443 HTTP/1.1\r\n 00046 Host: admin.fedoraproject.org\r\n 00077 Accept-Encoding: gzip, deflate\r\n 00109 User-Agent: gnome-software/40.4\r\n 00142 Connection: Keep-Alive\r\n 00166 \r\n [28/Dec/2021:12:48:34.023] frontend proxy (#2): invalid request backend <NONE> (#-1), server <NONE> (#-1), event #166, src 192.168.1.90:44350 buffer starts at 0 (including 0 out), 16258 free, len 126, wraps at 16336, error at position 49 H1 connection flags 0x00000000, H1 stream flags 0x00000012 H1 msg state MSG_HDR_L2_LWS(24), H1 msg flags 0x00001410 H1 chunk len 0 bytes, H1 body len 0 bytes : 00000 CONNECT download.eclipse.org:443 HTTP/1.1\r\n 00043 Host: download.eclipse.org\r\n 00071 User-Agent: Apache-HttpClient/4.5.10 (Java/11.0.13)\r\n 00124 \r\n thanks in advance, brendan
