From d4e6ab7ef785cdb6e4535aa9fc306159a9fdcebb Mon Sep 17 00:00:00 2001
From: Dmitry Aleksandrov <dmitry.aleksandrov@oracle.com>
Date: Fri, 30 Sep 2022 11:27:32 +0300
Subject: [PATCH 1/4] Default header size increased to 16K

---
 docs/config/io_helidon_webserver_SocketConfiguration.adoc  | 2 +-
 ...ver_SocketConfiguration_SocketConfigurationBuilder.adoc | 2 +-
 docs/config/io_helidon_webserver_WebServer.adoc            | 2 +-
 .../java/io/helidon/webserver/SocketConfiguration.java     | 7 ++++---
 4 files changed, 7 insertions(+), 6 deletions(-)

diff --git a/docs/config/io_helidon_webserver_SocketConfiguration.adoc b/docs/config/io_helidon_webserver_SocketConfiguration.adoc
index b84724aa634..b6dd1f4f3c6 100644
--- a/docs/config/io_helidon_webserver_SocketConfiguration.adoc
+++ b/docs/config/io_helidon_webserver_SocketConfiguration.adoc
@@ -62,7 +62,7 @@ Type: link:{javadoc-base-url}/io.helidon.webserver/io/helidon/webserver/SocketCo
 
  Default is `false`
 |`host` |string |{nbsp} |A helper method that just calls #bindAddress(String).
-|`max-header-size` |int |`8192` |Maximal number of bytes of all header values combined. When a bigger value is received, a
+|`max-header-size` |int |`16384` |Maximal number of bytes of all header values combined. When a bigger value is received, a
  io.helidon.common.http.Http.Status#BAD_REQUEST_400
  is returned.
 
diff --git a/docs/config/io_helidon_webserver_SocketConfiguration_SocketConfigurationBuilder.adoc b/docs/config/io_helidon_webserver_SocketConfiguration_SocketConfigurationBuilder.adoc
index f6ed302218f..e57afdafaec 100644
--- a/docs/config/io_helidon_webserver_SocketConfiguration_SocketConfigurationBuilder.adoc
+++ b/docs/config/io_helidon_webserver_SocketConfiguration_SocketConfigurationBuilder.adoc
@@ -53,7 +53,7 @@ Type: link:{javadoc-base-url}/io.helidon.webserver.SocketConfiguration/io/helido
 
  Default is `false`
 |`host` |string |{nbsp} |A helper method that just calls #bindAddress(String).
-|`max-header-size` |int |`8192` |Maximal number of bytes of all header values combined. When a bigger value is received, a
+|`max-header-size` |int |`16384` |Maximal number of bytes of all header values combined. When a bigger value is received, a
  io.helidon.common.http.Http.Status#BAD_REQUEST_400
  is returned.
 
diff --git a/docs/config/io_helidon_webserver_WebServer.adoc b/docs/config/io_helidon_webserver_WebServer.adoc
index b195d64e2d3..fe5ac64c18b 100644
--- a/docs/config/io_helidon_webserver_WebServer.adoc
+++ b/docs/config/io_helidon_webserver_WebServer.adoc
@@ -58,7 +58,7 @@ This is a standalone configuration type, prefix from configuration root: `server
  Default is `false`
 |`features.print-details` |boolean |`false` |Set to `true` to print detailed feature information on startup.
 |`host` |string |{nbsp} |A helper method that just calls #bindAddress(String).
-|`max-header-size` |int |`8192` |Maximal number of bytes of all header values combined. When a bigger value is received, a
+|`max-header-size` |int |`16384` |Maximal number of bytes of all header values combined. When a bigger value is received, a
  io.helidon.common.http.Http.Status#BAD_REQUEST_400
  is returned.
 
diff --git a/webserver/webserver/src/main/java/io/helidon/webserver/SocketConfiguration.java b/webserver/webserver/src/main/java/io/helidon/webserver/SocketConfiguration.java
index 7e3cfe62964..b455a80e077 100644
--- a/webserver/webserver/src/main/java/io/helidon/webserver/SocketConfiguration.java
+++ b/webserver/webserver/src/main/java/io/helidon/webserver/SocketConfiguration.java
@@ -363,12 +363,12 @@ default B tls(Supplier<WebServerTls> tlsConfig) {
          * {@link io.helidon.common.http.Http.Status#BAD_REQUEST_400}
          * is returned.
          * <p>
-         * Default is {@code 8192}
+         * Default is {@code 16384}
          *
          * @param size maximal number of bytes of combined header values
          * @return this builder
          */
-        @ConfiguredOption("8192")
+        @ConfiguredOption("16384")
         B maxHeaderSize(int size);
 
         /**
@@ -483,8 +483,9 @@ final class Builder implements SocketConfigurationBuilder<Builder>, io.helidon.c
         // methods with `name` are removed from server builder (for adding sockets)
         private String name = UNCONFIGURED_NAME;
         private boolean enabled = true;
+        // header size doubled comparing to default netty size
+        private int maxHeaderSize = 16384;
         // these values are as defined in Netty implementation
-        private int maxHeaderSize = 8192;
         private int maxInitialLineLength = 4096;
         private int maxChunkSize = 8192;
         private boolean validateHeaders = true;

From 647f9bcae1cfbebbdb97e3c2b307e4c51ef5d124 Mon Sep 17 00:00:00 2001
From: Dmitry Aleksandrov <dmitry.aleksandrov@oracle.com>
Date: Fri, 30 Sep 2022 12:24:47 +0300
Subject: [PATCH 2/4] Fix header tests.

---
 .../java/io/helidon/webserver/TestHttpParseFineTuning.java    | 4 ++--
 .../java/io/helidon/webserver/TestHttpParsingDefaults.java    | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParseFineTuning.java b/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParseFineTuning.java
index 69f3d7e3661..e5367443511 100644
--- a/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParseFineTuning.java
+++ b/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParseFineTuning.java
@@ -56,8 +56,8 @@ void testDefaults() {
         testHeader(client, 8000, true);
         testInitialLine(client, 10, true);
 
-        testHeader(client, 8900, false);
-        testHeader(client, 8900, false);
+        testHeader(client, 17000, false);
+        testHeader(client, 17000, false);
 
         // now test with big initial line
         testInitialLine(client, 5000, false);
diff --git a/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParsingDefaults.java b/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParsingDefaults.java
index 092bdf4b547..71322b6c316 100644
--- a/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParsingDefaults.java
+++ b/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParsingDefaults.java
@@ -74,8 +74,8 @@ void testOkHeader() {
 
     @Test
     void testLongHeader() {
-        testHeader(8900, false);
-        testHeader(8900, false);
+        testHeader(17000, false);
+        testHeader(17000, false);
     }
 
     @Test

From 2983d59094038402100b44ce7fd9799b4b61f434 Mon Sep 17 00:00:00 2001
From: Dmitry Aleksandrov <dmitry.aleksandrov@oracle.com>
Date: Fri, 30 Sep 2022 12:34:56 +0300
Subject: [PATCH 3/4] Fix header tests.

---
 .../test/java/io/helidon/webserver/TestHttpParseFineTuning.java | 2 +-
 .../test/java/io/helidon/webserver/TestHttpParsingDefaults.java | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParseFineTuning.java b/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParseFineTuning.java
index e5367443511..5b6c7724233 100644
--- a/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParseFineTuning.java
+++ b/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParseFineTuning.java
@@ -53,7 +53,7 @@ void testDefaults() {
                 .validateHeaders(false)
                 .build();
 
-        testHeader(client, 8000, true);
+        testHeader(client, 16000, true);
         testInitialLine(client, 10, true);
 
         testHeader(client, 17000, false);
diff --git a/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParsingDefaults.java b/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParsingDefaults.java
index 71322b6c316..e706d36e677 100644
--- a/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParsingDefaults.java
+++ b/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParsingDefaults.java
@@ -69,7 +69,7 @@ static void destroyClass() throws InterruptedException, ExecutionException, Time
 
     @Test
     void testOkHeader() {
-        testHeader(8000, true);
+        testHeader(16000, true);
     }
 
     @Test

From 3a16154829f6b285a97c82a02c8308cacb577666 Mon Sep 17 00:00:00 2001
From: Dmitry Aleksandrov <dmitry.aleksandrov@oracle.com>
Date: Fri, 30 Sep 2022 12:59:23 +0300
Subject: [PATCH 4/4] Checkstyle fix

---
 .../test/java/io/helidon/webserver/TestHttpParseFineTuning.java | 2 +-
 .../test/java/io/helidon/webserver/TestHttpParsingDefaults.java | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParseFineTuning.java b/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParseFineTuning.java
index 5b6c7724233..5fbce92e3d7 100644
--- a/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParseFineTuning.java
+++ b/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParseFineTuning.java
@@ -74,7 +74,7 @@ void testCustom() {
                 .host("localhost")
                 .routing(r -> r.any((req, res) -> res.send("any")))
                 .config(config)
-                .maxHeaderSize(9100)
+                .maxHeaderSize(16400)
                 .maxInitialLineLength(5100)
                 .build()
                 .start()
diff --git a/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParsingDefaults.java b/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParsingDefaults.java
index e706d36e677..d6fbe75cdb9 100644
--- a/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParsingDefaults.java
+++ b/webserver/webserver/src/test/java/io/helidon/webserver/TestHttpParsingDefaults.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2020 Oracle and/or its affiliates.
+ * Copyright (c) 2020, 2022 Oracle and/or its affiliates.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.