Http Request Smuggling in Django with Mutual Tls
Http Request Smuggling in Django with Mutual Tls — how this specific combination creates or exposes the vulnerability
HTTP Request Smuggling arises from discrepancies in how a server and a proxy (or load balancer) parse HTTP messages, commonly involving Transfer-Encoding and Content-Length headers. In a Django deployment that uses Mutual TLS (mTLS), the TLS layer is terminated at the frontend proxy or load balancer, and the proxy forwards the request to Django over an internal connection (often HTTP or a second TLS leg). mTLS ensures client certificates are validated, but it does not normalize message parsing between the proxy and Django. If the proxy and Django interpret Content-Length and Transfer-Encoding inconsistently, an attacker can craft a request that is interpreted differently at each hop, causing the request to be smuggled to the next tenant or backend.
With mTLS, the frontend proxy typically validates the client certificate and may rewrite or normalize headers before forwarding. However, if the proxy does not strictly enforce a single message parsing rule and forwards the raw headers to Django (which uses its own WSGI server parsing), discrepancies can be exploited. For example, a request with both Transfer-Encoding: chunked and Content-Length may be accepted by the proxy but handled differently by Django’s WSGI handler, allowing an attacker to inject a second request into the connection. This can lead to request confusion, where a request intended for one service is processed by another, bypassing expected routing or tenant isolation. The risk is not in mTLS itself but in the interaction between the mTLS-terminating proxy and Django’s message parsing when headers are ambiguous or not normalized consistently.
In practice, an attacker might send a request like one that includes a valid client certificate to satisfy mTLS, while also including smuggled header patterns. If the proxy terminates TLS and forwards the request to Django over an unencrypted or less strictly validated channel, Django may process the request without re-evaluating the proxy’s normalization decisions. Tools like middleBrick can detect such parsing ambiguities by checking for inconsistent handling of Content-Length and Transfer-Encoding across the deployment’s public surface. Because mTLS is often perceived as strong security, teams may overlook these parsing issues, assuming TLS alone prevents smuggling. However, without consistent header normalization and strict parsing at the application layer, the combination of mTLS and Django can still expose request smuggling.
Mutual Tls-Specific Remediation in Django — concrete code fixes
Remediation focuses on ensuring header parsing is deterministic and that Django does not trust ambiguous or duplicate headers introduced by proxies. When using mTLS, normalize and validate headers before they reach Django’s request handling. Configure your proxy to strip or resolve Content-Length and Transfer-Encoding conflicts before forwarding, and enforce strict parsing on the backend. In Django, avoid relying on raw headers that may differ between proxy and application; instead, use a WSGI middleware layer to normalize and validate the request before it reaches Django’s core.
Below are concrete code examples for a Django project using mTLS, including proxy header normalization and WSGI middleware to mitigate smuggling risks.
# settings.py: Define a list of trusted proxy IPs that terminate mTLS# settings.pyTRUSTED_PROXIES = ["10.0.0.1", # your mTLS-terminating proxy"10.0.0.2",]
# middleware.py: Normalize headers to prevent smuggling# middleware.pyimport refrom django.utils.deprecation import MiddlewareMixinclass RequestSmugglingMitigationMiddleware(MiddlewareMixin):def process_request(self, request):# Remove ambiguous or duplicate headers that could be smuggledif "HTTP_TRANSFER_ENCODING" in request.META:te = request.META["HTTP_TRANSFER_ENCODING"]# Reject if chunked is combined with Content-Lengthif re.search(r"chunked", te, flags=re.IGNORECASE) and "CONTENT_LENGTH" in request.META:# Log and raise a 400; or handle per policyfrom django.http import HttpResponseBadRequestreturn HttpResponseBadRequest("Invalid headers: Transfer-Encoding and Content-Length conflict")# Normalize Content-Length to a single integer valueif "CONTENT_LENGTH" in request.META:try:cl = int(request.META["CONTENT_LENGTH"])request.META["CONTENT_LENGTH"] = str(cl)except ValueError:return HttpResponseBadRequest("Invalid Content-Length")# Ensure mTLS client certificate info is present and valid (example metadata)if not hasattr(request, "client_cert"):# In production, validate that mTLS was enforced by the proxy# For example, check a trusted header like SSL_CLIENT_CERT set by the proxypassreturn None
# wsgi.py: Apply middleware and ensure header normalization at the WSGI layer# wsgi.pyimport osfrom django.core.wsgi import get_wsgi_applicationfrom .middleware import RequestSmugglingMitigationMiddlewareos.environ.setdefault("DJANGO_SETTINGS_MODULE", "myproject.settings")application = get_wsgi_application()application = RequestSmugglingMitigationMiddleware(application)
# Example of configuring your mTLS-terminating proxy (e.g., Nginx) to normalize headers before passing to Django# Nginx snippet (conceptual)server {listen 443 ssl;ssl_certificate /path/to/cert.pem;ssl_certificate_key /path/to/key.pem;ssl_client_certificate /path/to/ca.pem;ssl_verify_client on;location / {# Ensure only one Content-Length is forwardedif ($http_transfer_encoding ~ "chunked") {# Remove Transfer-Encoding to avoid ambiguityproxy_set_header Transfer-Encoding "";}proxy_set_header Content-Length $content_length;proxy_pass http://django_app;proxy_set_header X-Forwarded-Proto $scheme;}}
These examples demonstrate how to combine mTLS enforcement at the proxy with header normalization in Django middleware and WSGI to reduce the risk of request smuggling. middleBrick can scan your public endpoints to highlight inconsistencies in header handling and provide prioritized remediation steps.