Your message dated Thu, 20 Sep 2007 18:17:03 +0000 with message-id <[EMAIL PROTECTED]> and subject line Bug#329245: fixed in commons-httpclient 3.1-1 has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database)
--- Begin Message ---Package: libcommons-httpclient-java Version: 2.0.2-1 Severity: minor Tags: upstream The following bug is present in upstream, 2.0.2 and 3.0RC3, at least as far as I can tell by testing. The specification grammar for the Cookie and Cookie2 HTTP headers (specified by RFC 2109 section 4.3.4, and RFC 2965 section 3.3.4, respectively) require that the ordering of pairs is "Version, NAME, path, domain" (and, in RFC 2965, "port" after "domain"). However, HTTPClient produces a cookie string with the domain pair appearing before, rather than after, the path pair. The RFCs specifically *do not* use either the grammar or the clarifying text ("can occur in any order") that occurs in the sections that define the Set-Cookie and Set-Cookie2 headers (4.2.2 and 3.2.2, respectively). Since the sections in question do not, in fact, discuss the issue of pair ordering in Set-Cookie/Set-Cookie2 at all (other than in using a grammar that clearly expresses the requirement), and since the complimentary header explicitly permits them to occur in any order, it seems likely that HTTPClient is not the only client with this issue, and that most servers will accomodate this situation (in fact, for it to have gone unnoticed for this long, it seems likely that either I'm badly misreading the specification, or no major server has a problem coping with this). However, while I believe that should make this a 'minor' bug, I do consider it more than 'wishlist' - the early RFCs had strong reasons for establishing 'be conservative in what you send' as well as 'be liberal in what you accept', and fixing this seems likely to be fairly straightforward (though given the state of 3.0RC3, I would, I would expect it may well not show up until 3.0.1 or 3.1 or 4.0 or... whatever comes next). -- Joel Aelwyn <[EMAIL PROTECTED]> ,''`. : :' : `. `' `-
signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---Source: commons-httpclient Source-Version: 3.1-1 We believe that the bug you reported is fixed in the latest version of commons-httpclient, which is due to be installed in the Debian FTP archive: commons-httpclient_3.1-1.diff.gz to pool/main/c/commons-httpclient/commons-httpclient_3.1-1.diff.gz commons-httpclient_3.1-1.dsc to pool/main/c/commons-httpclient/commons-httpclient_3.1-1.dsc commons-httpclient_3.1.orig.tar.gz to pool/main/c/commons-httpclient/commons-httpclient_3.1.orig.tar.gz libcommons-httpclient-java-doc_3.1-1_all.deb to pool/main/c/commons-httpclient/libcommons-httpclient-java-doc_3.1-1_all.deb libcommons-httpclient-java_3.1-1_all.deb to pool/main/c/commons-httpclient/libcommons-httpclient-java_3.1-1_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Kumar Appaiah <[EMAIL PROTECTED]> (supplier of updated commons-httpclient package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Thu, 20 Sep 2007 20:14:02 +0530 Source: commons-httpclient Binary: libcommons-httpclient-java-doc libcommons-httpclient-java Architecture: source all Version: 3.1-1 Distribution: unstable Urgency: low Maintainer: Michael Koch <[EMAIL PROTECTED]> Changed-By: Kumar Appaiah <[EMAIL PROTECTED]> Description: libcommons-httpclient-java - A Java(TM) library for creating HTTP clients libcommons-httpclient-java-doc - Documentation for libcommons-httpclient-java Closes: 329245 Changes: commons-httpclient (3.1-1) unstable; urgency=low . * New upstream release. * Acknowledge NMU. Thanks to Michael Meskes for the upload. * debian/ant.properties: + Correct Java directory spelling. * debian/control: + Add Varun Hiremath and Kumar Appaiah to Uploaders. + Add XS-Vcs-Browser and XS-Vcs-Browser. + Move section of libcommons-httpclient-doc to doc. + Add Homepage Field. * debian/patches: + Remove 00b_build_xml_dont_copy_lib_dir.patch + Update patches/01_build_xml_version_jar.patch and patches/02_upstream_disable_examples_classes.patch for the new upstream version * debian/rules: + Remove dependence on package version; use DEB_UPSTREAM_VERSION for version * debian/libcommons-httpclient-java.install: + Not needed, since functionality written in debian.rules. * debian/watch + Update watch file to new upstream tarball directory. * debian/libcommons-httpclient-java.link: + Not needed, since functionality written in debian.rules. * Upstream has fixed some RFC violations. (Closes: #329245) * Remove .cvsignore files. Files: 73823e9b965714acee007940ca7b98c6 1115 libs optional commons-httpclient_3.1-1.dsc 2c9b0f83ed5890af02c0df1c1776f39b 1882664 libs optional commons-httpclient_3.1.orig.tar.gz 724b637ce8622297b5168b5847b46ced 7993 libs optional commons-httpclient_3.1-1.diff.gz ee0cee206e9908459780548e8d13282d 307712 libs optional libcommons-httpclient-java_3.1-1_all.deb 6fdf193eba7d766fb0f0769d38fca90b 1549346 doc optional libcommons-httpclient-java-doc_3.1-1_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFG8rU5WSOgCCdjSDsRAhvJAJ44VfIZDJOJZIrulGQPeU85dJ2EdgCfXuiV JC/H7TvLcYgOaAU5v+PTRFY= =gNeZ -----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________ pkg-java-maintainers mailing list [email protected] http://lists.alioth.debian.org/mailman/listinfo/pkg-java-maintainers
