[HttpKernel] HttpCache\Store does not return response body correctly #37174
Comments
|
I have the same issue after upgrade to Symfony 4.4.9. Only once get correct response and then save in cache file path instead of content. Method |
|
/cc @mpdude maybe? |
|
I've tried the following script on 5b719d1: <?php
use Symfony\Component\HttpClient\CachingHttpClient;
use Symfony\Component\HttpClient\HttpClient;
use Symfony\Component\HttpKernel\HttpCache\Store;
require('vendor/autoload.php');
$httpClient = new CachingHttpClient(HttpClient::create(), new Store('store'));
$response1 = $httpClient->request('GET', 'http://httpbin.org/cache/90');
$response2 = $httpClient->request('GET', 'http://httpbin.org/cache/90');
print $response1->getContent() . PHP_EOL;
print "---" . PHP_EOL;
print $response2->getContent() . PHP_EOL;I get the same output above and below the Also, @sgehrig can you confirm that? Also, just to gather additional data: Can you show us the response headers you get from upstream? |
|
I have this issue with |
|
Yes, after downgrade to 4.4.8 problem is gone and page work correct. |
|
I only use HttpCache as reverse proxy. |
|
@zdebol and you probably cleared the cache after the update? |
|
Yes. |
|
Please try to run the application from https://github.com/webfactory/symfony-http-caching-demo/tree/symfony-issue-37174 (use that branch please!). Run Does that work? |
|
No, does not work. Is ok for 30sec. After max age expire in place where be Today is ... appear path to file. |
sgehrig
changed the title
|
@mpdude So, I'm still not 100% sure how I reproduced the issue but it seems to happen when a cached response becomes invalid or (less likely) it's related to revalidation. In the application we're setting up the http client like this: app.idp.jwks_http_cache_store:
class: Symfony\Component\HttpKernel\HttpCache\Store
arguments:
$root: '%app.jwks_http_cache_store_dir%'
app.idp.jwks_http_client:
class: Symfony\Component\HttpClient\CachingHttpClient
arguments:
$store: '@app.idp.jwks_http_cache_store'
$defaultOptions:
base_uri: '%env(APP_IDP_URL)%'
verify_host: false
verify_peer: false
headers:
'X-Client': 'Application'
'User-Agent': 'Application'
max_duration: 1.5
timeout: 1.0
allow_reload: true
allow_revalidate: trueThe response we get on an empty cache looks like this: [
0 =>
[
0 =>
[
'host' =>
[
0 => '10.0.2.2:4432',
],
'user-agent' =>
[
0 => 'Symfony',
1 => 'Application',
],
'accept' =>
[
0 => 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8',
1 => '*/*',
],
'accept-language' =>
[
0 => 'en-us,en;q=0.5',
],
'accept-charset' =>
[
0 => 'ISO-8859-1,utf-8;q=0.7,*;q=0.7',
],
'x-client' =>
[
0 => 'Application',
],
],
1 =>
[
'server' =>
[
0 => 'nginx/1.14.0 (Ubuntu)',
],
'content-type' =>
[
0 => 'application/jwk-set+json',
],
'cache-control' =>
[
0 => 'max-age=3600, public, s-maxage=3600',
],
'date' =>
[
0 => 'Wed, 10 Jun 2020 04:53:01 GMT',
],
'etag' =>
[
0 => '"9cf06121c3cb4175724181b98a2e750ab75ebbed"',
],
'last-modified' =>
[
0 => 'Wed, 04 Mar 2020 11:52:55 GMT',
],
'x-debug-token' =>
[
0 => '...',
],
'x-debug-token-link' =>
[
0 => 'https://10.0.2.2:4432/_profiler/...',
],
'x-robots-tag' =>
[
0 => 'noindex',
],
'x-content-digest' =>
[
0 => 'enfa6d30ccf08a1f7c08d0fe1e23d674b9386618de5abacca270840dbd655fcc48',
],
'content-length' =>
[
0 => 483,
],
'X-Status' =>
[
0 => 200,
],
],
],
]And the body yields the expected JWK set: {"keys":[{"kty":"RSA","n":"upIOqCpx03yqmYQ1Hv7DKiYijSta_uLdOM0Yc7uE5sAVS73t4Olv3WwDgN7ZEYKfQt9NLzFUGrxA6NQqNK3tePdPiYo8guX9T0OwPvtyVMCRR6OGZ0NC9uTrNKkeGnI3pKxjfQ6igicyIwJEXwxNeCPs9F9GYLrk8tM3ZNKV7lY-eOKyxjif1aTWyj5zwsZzo7xyNRFDcmLVPHvyVsli2J-mQFZ_bCdY3mQyBASHLPdykyH24Sz8ObDQzgfcU5bh2uMp0SaeB7m3m6riyVgZavtex6-U9iCYRy3kAgaEmyqAZ7bf1XXZ4NM2MhsubHU56ob1LrRLmFBDjoIr0OI3cQ","e":"AQAB","alg":"RS256","use":"sig","kid":"3ed8d6d1b51c7af5cb4b7fe23834acd5b2d643685ce1060b36a22462c2d50fea"}]}When the cache entry is invalidated I found the following files in the cache directory. [
0 =>
[
0 =>
[
'host' =>
[
0 => '10.0.2.2:4432',
],
'user-agent' =>
[
0 => 'Symfony',
1 => 'Application',
],
'accept' =>
[
0 => 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8',
1 => '*/*',
],
'accept-language' =>
[
0 => 'en-us,en;q=0.5',
],
'accept-charset' =>
[
0 => 'ISO-8859-1,utf-8;q=0.7,*;q=0.7',
],
'x-client' =>
[
0 => 'Application',
],
],
1 =>
[
'server' =>
[
0 => 'nginx/1.14.0 (Ubuntu)',
],
'content-type' =>
[
0 => 'application/jwk-set+json',
],
'cache-control' =>
[
0 => 'max-age=3600, public, s-maxage=3600',
],
'etag' =>
[
0 => '"9cf06121c3cb4175724181b98a2e750ab75ebbed"',
],
'last-modified' =>
[
0 => 'Wed, 04 Mar 2020 11:52:55 GMT',
],
'x-debug-token' =>
[
0 => '26fb39',
],
'x-debug-token-link' =>
[
0 => 'https://10.0.2.2:4432/_profiler/26fb39',
],
'x-robots-tag' =>
[
0 => 'noindex',
],
'x-content-digest' =>
[
0 => 'en3785f7245b2c14984ad3689c2608861a102e9545c07630fe366416cdfbc674c1',
],
'content-length' =>
[
0 => 100,
],
'x-body-file' =>
[
0 => '/dev/shm/app/cache/dev/http/en/70/74/0edad0d2a9927c454a236d798b7e64d9af6a61c5699e0f50ffbf1bb6aeb6',
],
'date' =>
[
0 => 'Wed, 10 Jun 2020 05:10:14 GMT',
],
'X-Status' =>
[
0 => 200,
],
],
],
]And the response body file contains And yes, we're on Symfony 4.4.9 components. And that's the raw HTTP response we get from the requested URL: |
|
#37182 might be a fix. I believe both situations reported here ( |
…sponse body correctly (mpdude) This PR was squashed before being merged into the 3.4 branch. Discussion ---------- [HttpKernel] Fix regression where Store does not return response body correctly | Q | A | ------------- | --- | Branch? | 3.4 | Bug fix? | yes | New feature? | no | Deprecations? | no | Tickets | Fix #37174 | License | MIT | Doc PR | Since #36833, the `Store` no longer uses or trusts the `X-Content-Digest` header present on a response, since that may come (in the case of using `CachingHttpClient`) from upstream HTTP sources. Instead, the `X-Content-Digest` is re-computed every time a response is written by the `Store`. Additionally, the `Store` is implemented in a way that when restoring responses, it does _not_ actually load the response body, but just keeps the file path to the content on disk in another internal header called `X-Body-File`. It is up to others (`HttpCache`, for example) to actually load the content from there. For reasons I could not determine, the file path is also set as the response body. When the `HttpCache` performs revalidations, it may happen that it wants the `Store` to persist a previously restored response. In that case, the `Store` fails to honor its own `X-Body-File` header. Instead, it would compute (since #36833) the `X-Content-Digest`, which now is a hash of the cache file path. So, we end up with a response that still carries `X-Body-File` for the original, correct response. Since the `HttpCache` honors this value, we don't immediately notice that. But inside the `Store`, the request is now associated with the _new_ (bogus) content entry. It takes another round of looking up the content in the `Store` to now get a response where the `X-Body-File` _also_ points to the wrong content entry. Although I feel a bit uncomfortable with trusting headers that seemingly need to be evaluated in different classes and may come from elsewhere, my suggestion is to skip the write inside `Store` if `X-Body-File` and `X-Content-Digest` are both present and consistent with each other. Additionally, a `file_exists` check could be added to provide additional assertions, at the cost of accessing the filesystem. Commits ------- 176e769 [HttpKernel] Fix regression where Store does not return response body correctly
|
@sgehrig if you can confirm the fix works for you, you could close this issue. |
|
@mpdude Just updates to Symfony 4.4.10 and the problem seems to be solved. Thanks for your quick action! |
Symfony version(s) affected: 4.4.* / 5.0.* / 5.1.* (probably others)
Description
While using
Symfony\Component\HttpClient\CachingHttpClientwith aSymfony\Component\HttpKernel\HttpCache\Storewe found that responses returned from the cache did not yield the correct response bodies.I checked the source and found the following snippet:
symfony/src/Symfony/Component/HttpKernel/HttpCache/Store.php
Lines 153 to 155 in 749380a
This seems rather odd to me because after executing
$body = $this->getPath($headers['x-content-digest'][0])$bodycontains the path to the cached response body file and not the cached response body itself. But$body(containing the path and not the response body) is then fed intoSymfony\Component\HttpKernel\HttpCache\Store::restoreResponse()where it's used to populate theSymfony\Component\HttpFoundation\Responsecontent. So the returned response contains the path to the cached response body file in its body instead of the actual response content.How to reproduce
Just use a
Symfony\Component\HttpClient\CachingHttpClientconfigured with aSymfony\Component\HttpKernel\HttpCache\Storeand fetch the same HTTP resource twice.Possible Solution
I might be wrong, but to me it looks like there's a
file_get_contents()missing.The text was updated successfully, but these errors were encountered: