ERROR HTTPConnectionPool(host='localhost', port=8070): Max retries exceeded with url

Rohit Kumar

unread,

Aug 16, 2022, 8:31:04 AM8/16/22

to OWASP ZAP User Group

Hi, i am running below file from a docker image (created by me, manually), So i'm running a docker command like this

docker run -it --rm XXXXX/dast-scan scan_dast.py --app_url='https://www.hindustantimes.com/'

and that runs below script internally

/zap/zap-baseline.py -t https://www.hindustantimes.com/ -P 8070 -I -m 60 -T 60 -d -J scanreport_v2.json

I'm getting this error

ERROR HTTPConnectionPool(host='localhost', port=8070): Max retries exceeded with url: http://zap/JSON/spider/view/status/?scanId=0 (Caused by ProxyError('Cannot connect to proxy.', ConnectionResetError(104, 'Connection reset by peer')))

I was trying to find a solution and i noticed this stackoverflow post https://stackoverflow.com/questions/45023599/connecting-to-zap-proxy-docker-image-max-retries-exceeded-with-url-caused-by, however that solutions shows workaround for "zap.sh" not for /zap/zap-baseline.py can someone help me with this?

Simon Bennetts

unread,

Aug 16, 2022, 9:37:51 AM8/16/22

to OWASP ZAP User Group

Hiya,

Try to see if you can access the target using curl from the docker image: https://www.zaproxy.org/docs/docker/diagnosing-problems/#zap-cannot-connect-to-the-target

Cheers,

Simon

Rohit Kumar

unread,

Aug 16, 2022, 10:00:43 AM8/16/22

to OWASP ZAP User Group

Hi, yes curl is working, This issue isn't happening with all domains, this is happening only with some specific domains (Those domains which are huge / and spiders may take time to crawl). I got few more details from logs, i'm not sure if this will be helpful to you or not.

at org.parosproxy.paros.db.paros.ParosTableHistory.write(ParosTableHistory.java:429) ~[zap-2.11.1.jar:2.11.1]

... 8 more

Caused by: org.hsqldb.HsqlException: java.lang.OutOfMemoryError: Java heap space

at org.hsqldb.error.Error.error(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.result.Result.newErrorResult(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.StatementDMQL.execute(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.Session.executeCompiledStatement(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.Session.execute(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.jdbc.JDBCPreparedStatement.fetchResult(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.jdbc.JDBCPreparedStatement.executeUpdate(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.parosproxy.paros.db.paros.ParosTableHistory.write(ParosTableHistory.java:517) ~[zap-2.11.1.jar:2.11.1]

at org.parosproxy.paros.db.paros.ParosTableHistory.write(ParosTableHistory.java:429) ~[zap-2.11.1.jar:2.11.1]

... 8 more

Caused by: java.lang.OutOfMemoryError: Java heap space

at org.hsqldb.lib.DoubleIntIndex.<init>(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.lib.DoubleIntIndex.fastQuickSort(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.lib.DoubleIntIndex.compactLookupAsIntervals(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.persist.TableSpaceManagerBlocks.resetOldList(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.persist.TableSpaceManagerBlocks.getNewMainBlock(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.persist.TableSpaceManagerBlocks.getNewBlock(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.persist.TableSpaceManagerBlocks.getFilePosition(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.persist.RowStoreAVLDisk.add(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.persist.RowStoreAVLDisk.getNewCachedObject(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.Table.insertSingleRow(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.StatementDML.insertSingleRow(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.StatementInsert.getResult(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.StatementDMQL.execute(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.Session.executeCompiledStatement(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.Session.execute(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.jdbc.JDBCPreparedStatement.fetchResult(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.hsqldb.jdbc.JDBCPreparedStatement.executeUpdate(Unknown Source) ~[hsqldb-2.5.2.jar:2.5.2]

at org.parosproxy.paros.db.paros.ParosTableHistory.write(ParosTableHistory.java:517) ~[zap-2.11.1.jar:2.11.1]

at org.parosproxy.paros.db.paros.ParosTableHistory.write(ParosTableHistory.java:429) ~[zap-2.11.1.jar:2.11.1]

... 8 more

70829 [ZAP-SpiderThreadPool-0-thread-1] ERROR org.zaproxy.zap.ZAP.UncaughtExceptionLogger - Exception in thread "ZAP-SpiderThreadPool-0-thread-1"