Mantis Bugtracker
  

Viewing Issue Simple Details Jump to Notes ] View Advanced ] Issue History ] Print ]
ID Category Severity Reproducibility Date Submitted Last Update
0003008 [Resin] minor always 10-17-08 09:14 03-25-09 11:39
Reporter ferg View Status public  
Assigned To ferg
Priority normal Resolution fixed  
Status closed   Product Version
Summary 0003008: errorManager with bad request
Description (rep by Vinod Mehra)

For a URL like: http://localhost:8080/% [^] we get this:
 
The URL contains escaped bytes unsupported by the UTF-8 encoding.
 
[show] The URL contains escaped bytes unsupported by the UTF-8 encoding.
 
com.caucho.server.dispatch.BadRequestException: The URL contains escaped
bytes unsupported by the UTF-8 encoding.
                at com.caucho.server.dispatch.InvocationDecoder.normalizeUriEscape(InvocationDecoder.java:448)
                at com.caucho.server.dispatch.InvocationDecoder.splitQueryAndUnescape(InvocationDecoder.java:191)
                at com.caucho.server.http.HttpRequest.handleRequest(HttpRequest.java:249)
                at com.caucho.server.port.TcpConnection.run(TcpConnection.java:678)
                at com.caucho.util.ThreadPool$Item.runTasks(ThreadPool.java:721)
                at com.caucho.util.ThreadPool$Item.run(ThreadPool.java:643)
                at java.lang.Thread.run(Thread.java:595)
 
Only concern (minor) with this is that the stack trace shows up to the end user and exposes (to hackers) the fact that we are using resin.
 
Error page manager doesn't kick in so early so I think exception pages won't work. Is there a way to suppress this?
 
Additional Information
Attached Files

- Relationships

- Notes
(0003925)
ferg
03-25-09 11:39

server/12o3
 

- Issue History
Date Modified Username Field Change
10-17-08 09:14 ferg New Issue
03-25-09 11:39 ferg Note Added: 0003925
03-25-09 11:39 ferg Assigned To  => ferg
03-25-09 11:39 ferg Status new => closed
03-25-09 11:39 ferg Resolution open => fixed
03-25-09 11:39 ferg Fixed in Version  => 4.0.0


Mantis 1.0.0rc3[^]
Copyright © 2000 - 2005 Mantis Group
28 total queries executed.
25 unique queries executed.
Powered by Mantis Bugtracker