You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@tomcat.apache.org by bu...@apache.org on 2009/12/01 21:02:30 UTC

DO NOT REPLY [Bug 48322] New: Reading a cookie with an apostrophe in the value is truncated in Tomcat 6.0.20 and 6.0.18

https://issues.apache.org/bugzilla/show_bug.cgi?id=48322

           Summary: Reading a cookie with an apostrophe in the value is
                    truncated in Tomcat 6.0.20 and 6.0.18
           Product: Tomcat 6
           Version: 6.0.20
          Platform: PC
        OS/Version: Linux
            Status: NEW
          Severity: regression
          Priority: P2
         Component: Catalina
        AssignedTo: dev@tomcat.apache.org
        ReportedBy: robert@cosmicrealms.com


Created an attachment (id=24654)
 --> (https://issues.apache.org/bugzilla/attachment.cgi?id=24654)
Simple JSP that reproduces the issue

If you set a cookie in a JSP that has an apostrophe in the value, reading that
cookie in subsequent loads truncates at the apostrophe.

Reading the cookie fails even if the cookie was set client side or was
pre-existing.

I've attached a very simple testcase.jsp page

Visit the page more than once.

What you see in 6.0.14:
Server side cookie value [test'ing] 

What you see in 6.0.18 and 6.0.20:
Server side cookie value [test]


In all three tested tomcat versions, if you view your cookies in your browser,
you'll correctly see it has been set to "test'ing"

Likewise if you inspect the HTTP headers being returned you correctly see:
Set-Cookie: testcookie=test'ing



Something changed after 6.0.14 that causes cookies with apostrophes when read
server side to be truncated.

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org

DO NOT REPLY [Bug 48322] Reading a cookie with an apostrophe in the value is truncated in Tomcat 6.0.20 and 6.0.18

Posted by bu...@apache.org.

https://issues.apache.org/bugzilla/show_bug.cgi?id=48322

--- Comment #1 from Mark Thomas <ma...@apache.org> 2009-12-01 12:12:55 GMT ---
This has already been fixed in trunk and proposed for 6.0.x and 5.5.x

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org

DO NOT REPLY [Bug 48322] Reading a cookie with an apostrophe in the value is truncated in Tomcat 6.0.20 and 6.0.18

Posted by bu...@apache.org.

https://issues.apache.org/bugzilla/show_bug.cgi?id=48322

--- Comment #4 from Konstantin Kolinko <kn...@gmail.com> 2010-03-04 20:48:57 UTC ---
Fixed in 5.5, will be in 5.5.29 onwards.

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org

DO NOT REPLY [Bug 48322] Reading a cookie with an apostrophe in the value is truncated in Tomcat 6.0.20 and 6.0.18

Posted by bu...@apache.org.

https://issues.apache.org/bugzilla/show_bug.cgi?id=48322

Robert Schultz <ro...@cosmicrealms.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|                            |FIXED

--- Comment #3 from Robert Schultz <ro...@cosmicrealms.com> 2010-02-05 06:32:36 UTC ---
Using Tomcat 6.0.24 the testcase I attached passes.

Fixed.

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org

DO NOT REPLY [Bug 48322] Reading a cookie with an apostrophe in the value is truncated in Tomcat 6.0.20 and 6.0.18

Posted by bu...@apache.org.

https://issues.apache.org/bugzilla/show_bug.cgi?id=48322

Mark Thomas <ma...@apache.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
          Component|Catalina                    |Catalina
            Version|6.0.20                      |5.5.28
            Product|Tomcat 6                    |Tomcat 5
   Target Milestone|default                     |---

--- Comment #2 from Mark Thomas <ma...@apache.org> 2009-12-15 10:53:12 GMT ---
This has been fixed in 6.0.x and will be included in 6.0.21 onwards.

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org