Don't send body in HEAD response when using PipeWriter.Advance before headers flushed #59725
Conversation
BrennanConroy
added
feature-kestrel
area-networking
BrennanConroy
requested review from
halter73,
JamesNK and
mgravell
as code owners
| @@ -1471,7 +1534,7 @@ public async Task HeadResponseBodyNotWrittenWithSyncWrite() | |||
| await using (var server = new TestServer(async httpContext => | |||
| { | |||
| httpContext.Response.ContentLength = 12; | |||
| await httpContext.Response.BodyWriter.WriteAsync(new Memory<byte>(Encoding.ASCII.GetBytes("hello, world"), 0, 12)); | |||
| httpContext.Response.Body.Write(Encoding.ASCII.GetBytes("hello, world"), 0, 12); | |||
There was a problem hiding this comment.
#7110 removed the sync write which this test and HeadResponseBodyNotWrittenWithSyncWrite above were explicitly testing.
| } | ||
| } | ||
| } | ||
|
|
||
| [Fact] | ||
| public async Task HeadResponseBodyNotWrittenWithAsyncWrite() | ||
| public async Task HeadResponseHeadersWrittenWithAsyncWriteBeforeAppCompletes() |
There was a problem hiding this comment.
aspnet/KestrelHttpServer#1204 changed some of the HEAD response tests to only check the response headers are flushed and doesn't fully check that the body doesn't exist. So split the test into two for the flushed headers check, and the lack of body check.
dotnet-policy-service
bot
added
the
pending-ci-rerun
BrennanConroy
removed
the
pending-ci-rerun
|
|
||
| // Rough attempt at checking that a non-body response doesn't affect future body responses | ||
| [Fact] | ||
| public async Task GetRequestAfterHeadRequestWorks() |
There was a problem hiding this comment.
There was a bug in the PR where calling PipeWriter.WriteAsync went through a code path that didn't set _canWriteBody, and since we weren't resetting the value it could result in a normal request after a non-body request not writing the entire body. Fixed by both resetting the _canWriteBody value, and also changing how we set the _canWriteBody to work for all code paths.
src/Servers/Kestrel/Core/src/Internal/Http/Http1OutputProducer.cs
Outdated
Show resolved
Hide resolved
src/Servers/Kestrel/Core/src/Internal/Http/Http1OutputProducer.cs
Outdated
Show resolved
Hide resolved
I'm fine with changing the behavior here if we think it's better. Personally, unlike Content-Length, I don't see the value in sending the Transfer-Encoding header in response to a HEAD request, but it's more important to me that writing to the response Stream or BodyWriter behaves the same way. |
dotnet-policy-service
bot
added
the
pending-ci-rerun
BrennanConroy
removed
the
pending-ci-rerun
dotnet-policy-service
bot
added
the
pending-ci-rerun
There was a problem hiding this comment.
Thanks for adding the ResponseBodyMode. It's a lot easier to follow in my opinion than the two bools. I think an Uninitialized state could make things even easier to follow, and switch statements over nested if/else blocks could improve things even more, but these are all style preferences. The change functionally looks solid.
| @@ -1161,9 +1159,9 @@ private HttpResponseHeaders CreateResponseHeaders(bool appCompleted) | |||
| } | |||
|
|
|||
| // Set whether response can have body | |||
| _canWriteResponseBody = CanWriteResponseBody(); | |||
| _responseBodyMode = CanWriteResponseBody() ? ResponseBodyMode.ContentLength : ResponseBodyMode.Disabled; | |||
There was a problem hiding this comment.
This is why I suggested an Unitialized state. It seems wrong to have the mode be ContentLength both here and after calling Reset() when we could ultimately end up auto-chunking.
BrennanConroy
removed
the
pending-ci-rerun
Bug exposed/introduced by #8199
Fixes #59691
Reason this hasn't been found in the >5 years since the bug was introduced is that it requires using
PipeWriter.GetMemory(...)+PipeWriter.Advance(...)before flushing the headers and using a HEAD request at the same time. This is very uncommon except for in .NET 9 where we made writing JSON responses use thePipeWriterwhich uses theGetMemory+Advancepath.The fix is to pass the
canWriteBodyparameter toWriteDataWrittenBeforeHeadersand only copy the bytes from previousGetMemory+Advancecalls to the body ifcanWriteBodyis true.Edit: Removed
Transfer-Encoding: chunkedheader from non-body responses.One additional change we might want to consider here, is removing theTransfer-Encoding: chunkedheader from the HEAD response. We have TransferEncodingNotSetOnHeadResponse and ManuallySettingTransferEncodingThrowsForHeadResponse which show us explicitly not letting the transfer encoding exist on a HEAD response, however according to the RFC 7231 section 4.3.2And https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Transfer-EncodingBoth of which indicate it is perfectly fine to include the Transfer-Encoding header.Looking at the history of why we added this restriction to Kestrel, we find aspnet/KestrelHttpServer#952 which was about a browser request hanging when accessing an endpoint that responded with another non-body response in the form of a 304 and we just added the restriction to HEAD response as well since it is a non-body response.