Make maximum header size configurable (#7336)

TheMarex · Copilot · web-flow · commit e248005d8570 · 2026-01-27T22:36:56.000+01:00
* Make maximum header size configurable

* Add changelog entry

* Update src/tools/routed.cpp

Co-authored-by: Copilot &lt;175728472+Copilot@users.noreply.github.com&gt;

* Update src/server/connection.cpp

Co-authored-by: Copilot &lt;175728472+Copilot@users.noreply.github.com&gt;

* Update include/server/connection.hpp

Co-authored-by: Copilot &lt;175728472+Copilot@users.noreply.github.com&gt;

* Update heuristic calculation for feedback

* Add unit tests for header size calculation

---------

Co-authored-by: Copilot &lt;175728472+Copilot@users.noreply.github.com&gt;
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -14,6 +14,7 @@
       - FIXED: Work around compilation error due to a false-positive of array-bounds check in sol2 [#7317](https://github.com/Project-OSRM/osrm-backend/pull/7317)
       - FIXED: Fix compilation with gcc >14 in release with LTO. [#7268](https://github.com/Project-OSRM/osrm-backend/issues/7268)
     - Misc:
+      - ADDED: `--max-header-size` to override the (automatically) configured maximum header size for osrm-routed [#7336](https://github.com/Project-OSRM/osrm-backend/pull/7336)
       - CHANGED: Use boost::beast instead of own HTTP code for osrm-routed [#7328](https://github.com/Project-OSRM/osrm-backend/pull/7328)
       - ADDED: `SHM_LOCK_DIR` environment variable for shared memory lock file directory [#7312](https://github.com/Project-OSRM/osrm-backend/pull/7312)
       - FIXED: Fix JSON rendering of large OSM IDs (avoids scientific notation) and handle NaN/Infinity gracefully [#7016](https://github.com/Project-OSRM/osrm-backend/issues/7016)
diff --git a/include/server/connection.hpp b/include/server/connection.hpp
@@ -26,6 +26,7 @@ class Connection : public std::enable_shared_from_this<Connection>
   public:
     explicit Connection(boost::asio::ip::tcp::socket socket,
                         RequestHandler &handler,
+                        unsigned max_header_size,
                         short keepalive_timeout);
 
     Connection(const Connection &) = delete;
@@ -58,6 +59,7 @@ class Connection : public std::enable_shared_from_this<Connection>
 
     RequestHandler &request_handler_;
 
+    unsigned max_header_size_;
     short keepalive_timeout_;
     short processed_requests_ = 0;
 };
diff --git a/include/server/header_size.hpp b/include/server/header_size.hpp
@@ -0,0 +1,59 @@
+/*
+
+Copyright (c) 2026, Project OSRM contributors
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without modification,
+are permitted provided that the following conditions are met:
+
+Redistributions of source code must retain the above copyright notice, this list
+of conditions and the following disclaimer.
+Redistributions in binary form must reproduce the above copyright notice, this
+list of conditions and the following disclaimer in the documentation and/or
+other materials provided with the distribution.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR
+ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
+(INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON
+ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+*/
+
+#ifndef SERVER_HEADER_SIZE_HPP
+#define SERVER_HEADER_SIZE_HPP
+
+#include "engine/engine_config.hpp"
+
+#include <algorithm>
+
+namespace osrm::server
+{
+
+inline unsigned deriveMaxHeaderSize(const engine::EngineConfig &config)
+{
+    constexpr unsigned MIN_HEADER_SIZE = 8 * 1024;
+
+    int max_coordinates = 0;
+    max_coordinates = std::max(max_coordinates, config.max_locations_trip);
+    max_coordinates = std::max(max_coordinates, config.max_locations_viaroute);
+    max_coordinates = std::max(max_coordinates, config.max_locations_distance_table);
+    max_coordinates = std::max(max_coordinates, config.max_locations_map_matching);
+
+    // We estimate the maximum GET line length in bytes:
+    // coordinates          | (2-3 (major) + 1 (dot) + 6 (decimals)) * 2 + 1 semi-colon = 21 chars
+    // sources/destinations | 4 (digits) + 1 semi-colon = 5 chars
+    // approaches           | 12 (chars) + 1 semi-colon = 13 chars
+    // radius               | 3 (digits) + 1 semi-colon = 4 chars
+    // Total of 47 chars and we add a generous 1024 chars for the request line
+    return std::max(MIN_HEADER_SIZE, 48 * static_cast<unsigned>(max_coordinates) + 1024u);
+}
+
+} // namespace osrm::server
+
+#endif // SERVER_HEADER_SIZE_HPP
diff --git a/include/server/server.hpp b/include/server/server.hpp
@@ -33,20 +33,24 @@ class Server : public std::enable_shared_from_this<Server>
     static std::shared_ptr<Server> CreateServer(std::string &ip_address,
                                                 int ip_port,
                                                 unsigned requested_num_threads,
-                                                short keepalive_timeout)
+                                                short keepalive_timeout,
+                                                unsigned max_header_size)
     {
         util::Log() << "HTTP/1.1 server using Boost.Beast, compression by zlib " << zlibVersion();
         const unsigned hardware_threads = std::max(1u, std::thread::hardware_concurrency());
         const unsigned real_num_threads = std::min(hardware_threads, requested_num_threads);
-        return std::make_shared<Server>(ip_address, ip_port, real_num_threads, keepalive_timeout);
+        return std::make_shared<Server>(
+            ip_address, ip_port, real_num_threads, keepalive_timeout, max_header_size);
     }
 
     explicit Server(const std::string &address,
                     const int port,
                     const unsigned thread_pool_size,
-                    const short keepalive_timeout)
+                    const short keepalive_timeout,
+                    const unsigned max_header_size)
         : thread_pool_size(thread_pool_size), keepalive_timeout(keepalive_timeout),
-          io_context(thread_pool_size), acceptor(boost::asio::make_strand(io_context))
+          max_header_size(max_header_size), io_context(thread_pool_size),
+          acceptor(boost::asio::make_strand(io_context))
     {
         boost::beast::error_code ec;
 
@@ -175,8 +179,8 @@ class Server : public std::enable_shared_from_this<Server>
         if (!ec)
         {
             // Create the connection and start it
-            auto connection =
-                std::make_shared<Connection>(std::move(socket), request_handler, keepalive_timeout);
+            auto connection = std::make_shared<Connection>(
+                std::move(socket), request_handler, max_header_size, keepalive_timeout);
 
             connection->start();
         }
@@ -195,6 +199,7 @@ class Server : public std::enable_shared_from_this<Server>
     RequestHandler request_handler;
     unsigned thread_pool_size;
     short keepalive_timeout;
+    unsigned max_header_size;
     boost::asio::io_context io_context;
     boost::asio::ip::tcp::acceptor acceptor;
 };
diff --git a/src/server/connection.cpp b/src/server/connection.cpp
@@ -13,15 +13,17 @@
 namespace osrm::server
 {
 
-// Max bytes for request line + headers
-static constexpr std::uint32_t REQUEST_HEADER_LIMIT = 64 * 1024;
 static constexpr short KEEPALIVE_MAX_REQUESTS = 512;
 
 namespace bhttp = boost::beast::http;
 using tcp = boost::asio::ip::tcp;
 
-Connection::Connection(tcp::socket socket, RequestHandler &handler, short keepalive_timeout)
-    : stream_(std::move(socket)), request_handler_(handler), keepalive_timeout_(keepalive_timeout)
+Connection::Connection(tcp::socket socket,
+                       RequestHandler &handler,
+                       unsigned max_header_size,
+                       short keepalive_timeout)
+    : stream_(std::move(socket)), request_handler_(handler), max_header_size_(max_header_size),
+      keepalive_timeout_(keepalive_timeout)
 {
     stream_.expires_after(std::chrono::seconds(keepalive_timeout_));
 }
@@ -38,7 +40,9 @@ void Connection::handle_read()
 
     request_ = {};
     parser_.emplace();
-    parser_->header_limit(REQUEST_HEADER_LIMIT);
+    // Note: The name is a bit of a misnomer, this includes the size of the GET request line.
+    // Some people parse huge GET requests for table requests, we need to make this configurable.
+    parser_->header_limit(max_header_size_);
 
     stream_.expires_after(std::chrono::seconds(keepalive_timeout_));
 
diff --git a/src/tools/routed.cpp b/src/tools/routed.cpp
@@ -1,3 +1,4 @@
+#include "server/header_size.hpp"
 #include "server/server.hpp"
 #include "util/exception_utils.hpp"
 #include "util/log.hpp"
@@ -108,7 +109,8 @@ inline unsigned generateServerProgramOptions(const int argc,
                                              bool &trial,
                                              EngineConfig &config,
                                              int &requested_thread_num,
-                                             short &keepalive_timeout)
+                                             short &keepalive_timeout,
+                                             unsigned &max_header_size)
 {
     using boost::program_options::value;
     using std::filesystem::path;
@@ -187,7 +189,11 @@ inline unsigned generateServerProgramOptions(const int argc,
          "Max. radius size supported in map matching query. Default: unlimited.") //
         ("default-radius",
          value<double>(&config.default_radius)->default_value(-1.0),
-         "Default radius size for queries. Default: unlimited.");
+         "Default radius size for queries. Default: unlimited.")(
+            "max-header-size",
+            value<unsigned>(&max_header_size)->default_value(0),
+            "Maximum size of the HTTP headers (including GET request line). Default: auto (based "
+            "on maximum coordinates).");
 
     // hidden options, will be allowed on command line, but will not be shown to the user
     boost::program_options::options_description hidden_options("Hidden options");
@@ -237,6 +243,11 @@ inline unsigned generateServerProgramOptions(const int argc,
 
     boost::program_options::notify(option_variables);
 
+    if (max_header_size == 0)
+    {
+        max_header_size = server::deriveMaxHeaderSize(config);
+    }
+
     if (!config.use_shared_memory && option_variables.count("base"))
     {
         return INIT_OK_START_ENGINE;
@@ -271,6 +282,8 @@ try
 
     int requested_thread_num = 1;
     short keepalive_timeout = 5;
+    // Size of 0 means: Determine automatically based on coordinate limits.
+    unsigned max_header_size = 0;
     const unsigned init_result = generateServerProgramOptions(argc,
                                                               argv,
                                                               base_path,
@@ -279,7 +292,8 @@ try
                                                               trial_run,
                                                               config,
                                                               requested_thread_num,
-                                                              keepalive_timeout);
+                                                              keepalive_timeout,
+                                                              max_header_size);
     if (init_result == INIT_OK_DO_NOT_START_ENGINE)
     {
         return EXIT_SUCCESS;
@@ -320,6 +334,7 @@ try
     util::Log() << "IP address: " << ip_address;
     util::Log() << "IP port: " << ip_port;
     util::Log() << "Keepalive timeout: " << keepalive_timeout;
+    util::Log() << "Maximum header size: " << max_header_size;
 
 #ifndef _WIN32
     int sig = 0;
@@ -332,8 +347,8 @@ try
 #endif
 
     auto service_handler = std::make_unique<server::ServiceHandler>(config);
-    auto routing_server =
-        server::Server::CreateServer(ip_address, ip_port, requested_thread_num, keepalive_timeout);
+    auto routing_server = server::Server::CreateServer(
+        ip_address, ip_port, requested_thread_num, keepalive_timeout, max_header_size);
 
     routing_server->RegisterServiceHandler(std::move(service_handler));
 
diff --git a/unit_tests/server/header_size.cpp b/unit_tests/server/header_size.cpp
@@ -0,0 +1,112 @@
+#include "server/header_size.hpp"
+
+#include <boost/test/test_tools.hpp>
+#include <boost/test/unit_test.hpp>
+
+#include <string>
+
+std::string generateWorstCaseRequest(unsigned num_coordinates)
+{
+    if (num_coordinates == 0)
+        return "/table/v1/driving/";
+
+    std::string request;
+    request.reserve(50 * num_coordinates);
+    request += "/table/v1/driving/";
+
+    // 1. Coordinates: (2-3 (major) + 1 (dot) + 6 (decimals)) * 2 = 20 chars per coordinate
+    for (unsigned i = 0; i < num_coordinates; ++i)
+    {
+        request += "179.123456,89.123456";
+        if (i < num_coordinates - 1)
+            request += ";";
+    }
+
+    request += "?";
+
+    // 2. Radiuses: 3 digits
+    request += "radiuses=";
+    for (unsigned i = 0; i < num_coordinates; ++i)
+    {
+        request += "999";
+        if (i < num_coordinates - 1)
+            request += ";";
+    }
+    request += "&";
+
+    // 3. Sources and Destinations: 4 digits
+    std::string sources_str = "sources=";
+    std::string destinations_str = "destinations=";
+    std::string index_str = "";
+    for (unsigned i = 0; i < num_coordinates; ++i)
+    {
+        index_str += "9999";
+        if (i < num_coordinates - 1)
+        {
+            index_str += ";";
+        }
+    }
+    request += sources_str + index_str + "&" + destinations_str + index_str + "&";
+
+    // 4. Approaches: "unrestricted" has 12 chars
+    request += "approaches=";
+    for (unsigned i = 0; i < num_coordinates; ++i)
+    {
+        request += "unrestricted";
+        if (i < num_coordinates - 1)
+            request += ";";
+    }
+
+    return request;
+}
+
+BOOST_AUTO_TEST_SUITE(header_size)
+
+using namespace osrm;
+using namespace osrm::server;
+using namespace osrm::engine;
+
+BOOST_AUTO_TEST_CASE(minimum_header_size)
+{
+    EngineConfig config;
+    config.max_locations_trip = 0;
+    config.max_locations_viaroute = 0;
+    config.max_locations_distance_table = 0;
+    config.max_locations_map_matching = 0;
+
+    unsigned result = deriveMaxHeaderSize(config);
+    BOOST_CHECK_EQUAL(result, 8 * 1024);
+}
+
+BOOST_AUTO_TEST_CASE(negative_values_treated_as_zero)
+{
+    // Test with default EngineConfig values (all -1 for default)
+    EngineConfig config;
+
+    unsigned result = deriveMaxHeaderSize(config);
+    BOOST_CHECK_EQUAL(result, 8 * 1024);
+}
+
+BOOST_AUTO_TEST_CASE(calculation_formula_verification)
+{
+    auto run_test_for_n_coordinates = [](unsigned num_coords)
+    {
+        EngineConfig config;
+        config.max_locations_trip = num_coords;
+        config.max_locations_viaroute = num_coords;
+        config.max_locations_distance_table = num_coords;
+        config.max_locations_map_matching = num_coords;
+
+        unsigned calculated_size = deriveMaxHeaderSize(config);
+        std::string worst_case_request = generateWorstCaseRequest(num_coords);
+
+        BOOST_CHECK_GT(calculated_size, worst_case_request.length());
+    };
+
+    run_test_for_n_coordinates(10);
+    run_test_for_n_coordinates(100);
+    run_test_for_n_coordinates(1000);
+    run_test_for_n_coordinates(10000);
+}
+
+BOOST_AUTO_TEST_SUITE_END()
