Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

upstream sent unexpected FastCGI record: 3 while reading response header from upstream client #411

Open
davesingh1 opened this issue Apr 4, 2022 · 3 comments
Open

upstream sent unexpected FastCGI record: 3 while reading response header from upstream client #411

davesingh1 opened this issue Apr 4, 2022 · 3 comments
Assignees
@jvoisin
Labels
question

Comments

@davesingh1
Copy link

davesingh1 commented Apr 4, 2022
edited by jvoisin
Loading

  • Regarding: Snuffleupagus
  • Situation: Upon activating Snuffleupagus where SELinux is enforced, all my laravel-based php applications show the following error coming from Snuffleupagus:
FastCGI sent in stderr: "PHP message: PHP Fatal error: [snuffleupagus][0.0.0.0][config][log] Invalid configuration file in Unknown on line 0" while reading response header from upstream
upstream sent unexpected FastCGI record: 3 while reading response header from upstream client:, server:, request: "GET / HTTP/2.0", upstream: "fastcgi://unix:/opt/alt/php-fpm74/usr/var/sockets/name.sock:", host: ""

Removing snuffleupagus reverts everything working.

Please advise what is wrong or how to make snuffleupagus work.
@jvoisin
Copy link
Owner

jvoisin commented Apr 7, 2022

It seems that you have an invalid configuration file. Care to share it here?

@jvoisin jvoisin self-assigned this Apr 7, 2022
@jvoisin jvoisin closed this as completed Apr 28, 2022
@jvoisin jvoisin added this to the 0.7.1 - Proboscidea milestone Apr 28, 2022
@davesingh1
Copy link
Author

cwp_php_defender_basic.rules.txt
Please find attached the basic rule set

@davesingh1 davesingh1 mentioned this issue May 22, 2022
Closed
@jvoisin jvoisin reopened this May 22, 2022
@jvoisin
Copy link
Owner

jvoisin commented May 22, 2022

You should have more logs above this error message indicating what went wrong, but from a cursory look:

  • sp.disable_xxe.enable(); is now sp.xxe_protection.enable();
  • you need to set sp.global.secret_key

@jvoisin jvoisin removed this from the 0.11.0 - Mastodon milestone Sep 6, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jvoisin jvoisin

Labels
question
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jvoisin @davesingh1