[Bug 65851] DefaultServlet.checkIfNoneMatch return 400

bugzilla Wed, 16 Feb 2022 23:24:38 -0800

https://bz.apache.org/bugzilla/show_bug.cgi?id=65851


james <jamesx...@163.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Resolution|INVALID                     |FIXED

--- Comment #5 from james <jamesx...@163.com> ---
Thanks for reply, the application is causing the problem：

before xss filter:
If-None-Match: W/"30248-1644904299670" 

after xss filter:
If-None-Match: W/“30248-1644904299670“

Because " escape to “，HttpParser parse value is null, and response send error
400, but tomcat 8.5.57 don't send error,   8.5.73-75 send error.


            // Note: RFC 2616 allowed quoted string
            //       RFC 7232 does not allow " in the entity-tag
            String value = HttpParser.readQuotedString(input, true);

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[Bug 65851] DefaultServlet.checkIfNoneMatch return 400

Reply via email to