#851 URL with IPv6 address can't be accessed

version 3.0.19
pending
Fabian Keil
5
2012-02-13
2012-01-30
zooloo
No

My test set has eth0/1 interfaces configured on different IPv6 subnets
Test client uses curl to access IPv6 in different from it's own subnet trough proxy.

When trying to access URL like https:://[fc00:1:2::5:6:b]:8443/testsrv/index.php

All addresses and URLs - are my local internal use services, but it seems like problem is not related to exact service or privoxy configuration

[root@sh5 ~]# curl -v -g -k "https://[fc00:1:2::5:6:b]:8443/enterprise/control/agent.php"
* About to connect() to proxy 105.168.1.1 port 8008
* Trying 105.168.1.1... connected
* Connected to 105.168.1.1 (105.168.1.1) port 8008
* Establish HTTP proxy tunnel to fc00:1:2::5:6:b:8443
> CONNECT fc00:1:2::5:6:b:8443 HTTP/1.0
> Host: fc00:1:2::5:6:b:8443
> User-Agent: curl/7.15.5 (x86_64-redhat-linux-gnu) libcurl/7.15.5 OpenSSL/0.9.8b zlib/1.2.3 libidn/0.6.5
> Proxy-Connection: Keep-Alive
>
< HTTP/1.0 404 No such domain
< Content-Length: 7377
< Content-Type: text/html
< Cache-Control: no-cache
< Date: Mon, 30 Jan 2012 11:06:06 GMT
< Last-Modified: Wed, 08 Jun 1955 12:00:00 GMT
< Expires: Sat, 17 Jun 2000 12:00:00 GMT
< Pragma: no-cache
< Connection: close
<
* Received HTTP code 404 from proxy after CONNECT
* Closing connection #0
curl: (56) Received HTTP code 404 from proxy after CONNECT

I'm using:

curl --version
curl 7.15.5 (x86_64-redhat-linux-gnu) libcurl/7.15.5 OpenSSL/0.9.8b zlib/1.2.3 libidn/0.6.5
Protocols: tftp ftp telnet dict ldap http file https ftps
Features: GSS-Negotiate IDN IPv6 Largefile NTLM SSL libz

Discussion

1 2 3 > >> (Page 1 of 3)
  • zooloo
    zooloo
    2012-01-30

    privoxy config

     
    Attachments
  • zooloo
    zooloo
    2012-01-30

     
    Attachments
  • zooloo
    zooloo
    2012-01-30

    • labels: 414490 --> debian specific
     
  • zooloo
    zooloo
    2012-01-30

    Looks privoxy resolve IPv6 address like it was domain name. Anyway it looks weird.

     
  • zooloo
    zooloo
    2012-01-30

    Forgotten log file

     
    Attachments
  • Fabian Keil
    Fabian Keil
    2012-01-30

    • assigned_to: nobody --> fabiankeil
    • status: open --> pending
     
  • Fabian Keil
    Fabian Keil
    2012-01-30

    Thanks a lot for the report.

    I confirmed that Privoxy doesn't properly deal with the request, but with FEATURE_IPV6_SUPPORT the error message I get is "HTTP/1.1 503 Connect failed". This difference might be due to GNU libc vs. FreeBSD's libc.

    While testing this, I also found a related bug with CONNECT requests to ::1.

    Potential fixes (only briefly tested) for both issues are attached, please given them a try.

     
  • zooloo
    zooloo
    2012-01-31

    I don't know if this is a false alarm but seems curl is the one who makes troubles
    I've added bug to curl branch
    https://sourceforge.net/tracker/?func=detail&aid=3482093&group_id=976&atid=100976

    And I wander if there is need to make any fixes for case when CONNECT request is in wrong format (e.g. check for multiple ':' symbols in host name without any '[ ]' symbols in case of wrong IPv6 address)

     
  • zooloo
    zooloo
    2012-01-31

    • status: pending --> open
     
1 2 3 > >> (Page 1 of 3)