You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@tomcat.apache.org by bu...@apache.org on 2023/01/12 11:28:39 UTC

[Bug 66420] New: Change in Tomcat 9.0.69 has caused regression issue with httpClient 4.5.13

https://bz.apache.org/bugzilla/show_bug.cgi?id=66420

            Bug ID: 66420
           Summary: Change in Tomcat 9.0.69 has caused regression issue
                    with httpClient 4.5.13
           Product: Tomcat 9
           Version: 9.0.69
          Hardware: PC
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Catalina
          Assignee: dev@tomcat.apache.org
          Reporter: pratikkumar.kadhi@sailpoint.com
  Target Milestone: -----

As per changelog of 9.0.69, 
Correct the date format used with the expires attribute of HTTP cookies. A
single space rather than a single dash should be used to separate the day,
month and year components to be compliant with RFC 6265. (markt)

So Expiry date format is changed but now httpclient is rejecting this :

http.client.protocol.ResponseProcessCookies

2023-01-10T23:17:36,256  WARN ***Expires=Thu, 12 Jan 2023 07:17:36 GMT;
Secure". Invalid 'expires' attribute: Thu, 12 Jan 2023 07:17:36 GMT

and hence it is not putting in cookieStore which is causing issue in
regression. 

So need to have backward compatibility or updated httpClient jar. Current
httpclient is 4.5.13

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org

[Bug 66420] Change in Tomcat 9.0.69 has caused regression issue with httpClient 4.5.13

Posted by bu...@apache.org.

https://bz.apache.org/bugzilla/show_bug.cgi?id=66420

--- Comment #2 from Pratik Kadhi <pr...@sailpoint.com> ---
Issue is the change that has been done in coyote is not backward compatible.

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org

[Bug 66420] Change in Tomcat 9.0.69 has caused regression issue with httpClient 4.5.13

Posted by bu...@apache.org.

https://bz.apache.org/bugzilla/show_bug.cgi?id=66420

Pratik Kadhi <pr...@sailpoint.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 OS|                            |All
                 CC|                            |pratikkumar.kadhi@sailpoint
                   |                            |.com

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org

[Bug 66420] Change in Tomcat 9.0.69 has caused regression issue with httpClient 4.5.13

Posted by bu...@apache.org.

https://bz.apache.org/bugzilla/show_bug.cgi?id=66420

--- Comment #3 from Mark Thomas <ma...@apache.org> ---
No, the issue is that httpClient is not compliant with RFC 6265. If httpClient
was compatible with RFC 6265 it would have worked with both the old, broken
Tomcat behaviour and the current, correct behaviour.

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org

[Bug 66420] Change in Tomcat 9.0.69 has caused regression issue with httpClient 4.5.13

Posted by bu...@apache.org.

https://bz.apache.org/bugzilla/show_bug.cgi?id=66420

--- Comment #4 from Pratik Kadhi <pr...@sailpoint.com> ---
Ok thanks for your inputs. Will raise issue with httpclient.

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org

[Bug 66420] Change in Tomcat 9.0.69 has caused regression issue with httpClient 4.5.13

Posted by bu...@apache.org.

https://bz.apache.org/bugzilla/show_bug.cgi?id=66420

Mark Thomas <ma...@apache.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|---                         |INVALID

--- Comment #1 from Mark Thomas <ma...@apache.org> ---
You need to raise a bug in httpClient

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org