[JBoss JIRA] Created: (JBAS-5810) StringIndexOutOfBoundsException in JvmRouteValve when JSESSIONID is passed without jvmRoute
12:22 p.m.
StringIndexOutOfBoundsException in JvmRouteValve when JSESSIONID is passed without
jvmRoute
-------------------------------------------------------------------------------------------
Key: JBAS-5810
URL: https://jira.jboss.org/jira/browse/JBAS-5810
Project: JBoss Application Server
Issue Type: Bug
Security Level: Public (Everyone can see)
Components: Web (Tomcat) service
Affects Versions: JBossAS-4.2.3.GA
Reporter: Takayoshi Kimura
Assignee: Takayoshi Kimura
To reproduce, run the following command for clustered web application *twice*.
curl -v --cookie JSESSIONID=aaaaa http://localhost:8080/test/index.jsp
This problem doesn't exist in JBoss 5, it has been fixed within r63817 commit.
ERROR [CoyoteAdapter] An exception or error occurred in the container during the request
processing
java.lang.StringIndexOutOfBoundsException: String index out of range: -1
at java.lang.String.substring(String.java:1768)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.handleJvmRoute(JvmRouteValve.java:172)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.checkJvmRoute(JvmRouteValve.java:112)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.invoke(JvmRouteValve.java:81)
at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:104)
at
org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:157)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:241)
at org.apache.coyote.ajp.AjpProcessor.process(AjpProcessor.java:437)
at
org.apache.coyote.ajp.AjpProtocol$AjpConnectionHandler.process(AjpProtocol.java:381)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:595)
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
4:57 p.m.
New subject: [JBoss JIRA] Commented: (JBAS-5810) StringIndexOutOfBoundsException in JvmRouteValve when JSESSIONID is passed without jvmRoute
[
https://jira.jboss.org/jira/browse/JBAS-5810?page=com.atlassian.jira.plug...
]
Brian Stansberry commented on JBAS-5810:
----------------------------------------
Thanks, Takayoshi.
You probably already know this, but FYI the best place to add a test for this condition is
in org.jboss.test.cluster.test.JvmRouteValveUnitTestCase. In AS trunk it's
org.jboss.test.cluster.defaultcfg.simpleweb.test.JvmRouteValveUnitTestCase. If you add a
test to Branch_4_2, can you port it to trunk as well, please?
StringIndexOutOfBoundsException in JvmRouteValve when JSESSIONID is
passed without jvmRoute
-------------------------------------------------------------------------------------------
Key: JBAS-5810
URL: https://jira.jboss.org/jira/browse/JBAS-5810
Project: JBoss Application Server
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Web (Tomcat) service
Affects Versions: JBossAS-4.2.3.GA
Reporter: Takayoshi Kimura
Assignee: Takayoshi Kimura
To reproduce, run the following command for clustered web application *twice*.
curl -v --cookie JSESSIONID=aaaaa http://localhost:8080/test/index.jsp
This problem doesn't exist in JBoss 5, it has been fixed within r63817 commit.
ERROR [CoyoteAdapter] An exception or error occurred in the container during the request
processing
java.lang.StringIndexOutOfBoundsException: String index out of range: -1
at java.lang.String.substring(String.java:1768)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.handleJvmRoute(JvmRouteValve.java:172)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.checkJvmRoute(JvmRouteValve.java:112)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.invoke(JvmRouteValve.java:81)
at
org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:104)
at
org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:157)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:241)
at org.apache.coyote.ajp.AjpProcessor.process(AjpProcessor.java:437)
at
org.apache.coyote.ajp.AjpProtocol$AjpConnectionHandler.process(AjpProtocol.java:381)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:595)
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
10:18 a.m.
New subject: [JBoss JIRA] Updated: (JBAS-5810) StringIndexOutOfBoundsException in JvmRouteValve when JSESSIONID is passed without jvmRoute
[
https://jira.jboss.org/jira/browse/JBAS-5810?page=com.atlassian.jira.plug...
]
Takayoshi Kimura updated JBAS-5810:
-----------------------------------
Workaround Description:
There are 3 workarounds:
1. Set Connector.emptySessionPath=false in jboss-web.deployer/server.xml. The
emptySessionPath is required for JBoss Portal cross context session function, but if you
are not using JBoss Portal, it's safe to turn off.
2. Set UseJK=false in jboss-web.deployer/META-INF/jboss-service.xml. It disables sticky
session function completely.
3. Use custom valve like this:
public class FixSessionIdValve extends ValveBase {
public void invoke(Request request, Response response)
throws IOException, ServletException {
String requestedSessionId = request.getRequestedSessionId();
if (requestedSessionId != null &&
requestedSessionId.indexOf(".") < 0) {
request.setRequestedSessionId(null);
}
getNext().invoke(request, response);
}
}
Workaround: [Workaround Exists]
StringIndexOutOfBoundsException in JvmRouteValve when JSESSIONID is
passed without jvmRoute
-------------------------------------------------------------------------------------------
Key: JBAS-5810
URL: https://jira.jboss.org/jira/browse/JBAS-5810
Project: JBoss Application Server
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Web (Tomcat) service
Affects Versions: JBossAS-4.2.3.GA
Reporter: Takayoshi Kimura
Assignee: Takayoshi Kimura
To reproduce, run the following command for clustered web application *twice*.
curl -v --cookie JSESSIONID=aaaaa http://localhost:8080/test/index.jsp
This problem doesn't exist in JBoss 5, it has been fixed within r63817 commit.
ERROR [CoyoteAdapter] An exception or error occurred in the container during the request
processing
java.lang.StringIndexOutOfBoundsException: String index out of range: -1
at java.lang.String.substring(String.java:1768)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.handleJvmRoute(JvmRouteValve.java:172)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.checkJvmRoute(JvmRouteValve.java:112)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.invoke(JvmRouteValve.java:81)
at
org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:104)
at
org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:157)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:241)
at org.apache.coyote.ajp.AjpProcessor.process(AjpProcessor.java:437)
at
org.apache.coyote.ajp.AjpProtocol$AjpConnectionHandler.process(AjpProtocol.java:381)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:595)
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
10:19 a.m.
New subject: [JBoss JIRA] Commented: (JBAS-5810) StringIndexOutOfBoundsException in JvmRouteValve when JSESSIONID is passed without jvmRoute
[
https://jira.jboss.org/jira/browse/JBAS-5810?page=com.atlassian.jira.plug...
]
Takayoshi Kimura commented on JBAS-5810:
----------------------------------------
Sure, will do!
StringIndexOutOfBoundsException in JvmRouteValve when JSESSIONID is
passed without jvmRoute
-------------------------------------------------------------------------------------------
Key: JBAS-5810
URL: https://jira.jboss.org/jira/browse/JBAS-5810
Project: JBoss Application Server
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Web (Tomcat) service
Affects Versions: JBossAS-4.2.3.GA
Reporter: Takayoshi Kimura
Assignee: Takayoshi Kimura
To reproduce, run the following command for clustered web application *twice*.
curl -v --cookie JSESSIONID=aaaaa http://localhost:8080/test/index.jsp
This problem doesn't exist in JBoss 5, it has been fixed within r63817 commit.
ERROR [CoyoteAdapter] An exception or error occurred in the container during the request
processing
java.lang.StringIndexOutOfBoundsException: String index out of range: -1
at java.lang.String.substring(String.java:1768)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.handleJvmRoute(JvmRouteValve.java:172)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.checkJvmRoute(JvmRouteValve.java:112)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.invoke(JvmRouteValve.java:81)
at
org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:104)
at
org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:157)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:241)
at org.apache.coyote.ajp.AjpProcessor.process(AjpProcessor.java:437)
at
org.apache.coyote.ajp.AjpProtocol$AjpConnectionHandler.process(AjpProtocol.java:381)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:595)
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
6:50 p.m.
New subject: [JBoss JIRA] Commented: (JBAS-5810) StringIndexOutOfBoundsException in JvmRouteValve when JSESSIONID is passed without jvmRoute
[
https://jira.jboss.org/jira/browse/JBAS-5810?page=com.atlassian.jira.plug...
]
Takayoshi Kimura commented on JBAS-5810:
----------------------------------------
This issue typically happens when we have clustered application and non-clustered (or
application server other than JBoss) with same frontend server such like Apache. A
JSESSIONID with path="/" which doesn't have jvmRoute valve issued by
non-clustered application, then switch to clustered application, the JvmRouteValve
receives JSESSIONID without jvmRoute value.
StringIndexOutOfBoundsException in JvmRouteValve when JSESSIONID is
passed without jvmRoute
-------------------------------------------------------------------------------------------
Key: JBAS-5810
URL: https://jira.jboss.org/jira/browse/JBAS-5810
Project: JBoss Application Server
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Web (Tomcat) service
Affects Versions: JBossAS-4.2.3.GA
Reporter: Takayoshi Kimura
Assignee: Takayoshi Kimura
To reproduce, run the following command for clustered web application *twice*.
curl -v --cookie JSESSIONID=aaaaa http://localhost:8080/test/index.jsp
This problem doesn't exist in JBoss 5, it has been fixed within r63817 commit.
ERROR [CoyoteAdapter] An exception or error occurred in the container during the request
processing
java.lang.StringIndexOutOfBoundsException: String index out of range: -1
at java.lang.String.substring(String.java:1768)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.handleJvmRoute(JvmRouteValve.java:172)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.checkJvmRoute(JvmRouteValve.java:112)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.invoke(JvmRouteValve.java:81)
at
org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:104)
at
org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:157)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:241)
at org.apache.coyote.ajp.AjpProcessor.process(AjpProcessor.java:437)
at
org.apache.coyote.ajp.AjpProtocol$AjpConnectionHandler.process(AjpProtocol.java:381)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:595)
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
4:48 a.m.
New subject: [JBoss JIRA] Resolved: (JBAS-5810) StringIndexOutOfBoundsException in JvmRouteValve when JSESSIONID is passed without jvmRoute
[
https://jira.jboss.org/jira/browse/JBAS-5810?page=com.atlassian.jira.plug...
]
Takayoshi Kimura resolved JBAS-5810.
------------------------------------
Resolution: Done
Fixed and added testcase in Branch_4_2, and port testcase to trunk as well.
StringIndexOutOfBoundsException in JvmRouteValve when JSESSIONID is
passed without jvmRoute
-------------------------------------------------------------------------------------------
Key: JBAS-5810
URL: https://jira.jboss.org/jira/browse/JBAS-5810
Project: JBoss Application Server
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Web (Tomcat) service
Affects Versions: JBossAS-4.2.3.GA
Reporter: Takayoshi Kimura
Assignee: Takayoshi Kimura
To reproduce, run the following command for clustered web application *twice*.
curl -v --cookie JSESSIONID=aaaaa http://localhost:8080/test/index.jsp
This problem doesn't exist in JBoss 5, it has been fixed within r63817 commit.
ERROR [CoyoteAdapter] An exception or error occurred in the container during the request
processing
java.lang.StringIndexOutOfBoundsException: String index out of range: -1
at java.lang.String.substring(String.java:1768)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.handleJvmRoute(JvmRouteValve.java:172)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.checkJvmRoute(JvmRouteValve.java:112)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.invoke(JvmRouteValve.java:81)
at
org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:104)
at
org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:157)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:241)
at org.apache.coyote.ajp.AjpProcessor.process(AjpProcessor.java:437)
at
org.apache.coyote.ajp.AjpProtocol$AjpConnectionHandler.process(AjpProtocol.java:381)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:595)
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
4:55 a.m.
New subject: [JBoss JIRA] Updated: (JBAS-5810) StringIndexOutOfBoundsException in JvmRouteValve when JSESSIONID is passed without jvmRoute
[
https://jira.jboss.org/jira/browse/JBAS-5810?page=com.atlassian.jira.plug...
]
Takayoshi Kimura updated JBAS-5810:
-----------------------------------
Fix Version/s: JBossAS-4.2.4.GA
StringIndexOutOfBoundsException in JvmRouteValve when JSESSIONID is
passed without jvmRoute
-------------------------------------------------------------------------------------------
Key: JBAS-5810
URL: https://jira.jboss.org/jira/browse/JBAS-5810
Project: JBoss Application Server
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Web (Tomcat) service
Affects Versions: JBossAS-4.2.3.GA
Reporter: Takayoshi Kimura
Assignee: Takayoshi Kimura
Fix For: JBossAS-4.2.4.GA
To reproduce, run the following command for clustered web application *twice*.
curl -v --cookie JSESSIONID=aaaaa http://localhost:8080/test/index.jsp
This problem doesn't exist in JBoss 5, it has been fixed within r63817 commit.
ERROR [CoyoteAdapter] An exception or error occurred in the container during the request
processing
java.lang.StringIndexOutOfBoundsException: String index out of range: -1
at java.lang.String.substring(String.java:1768)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.handleJvmRoute(JvmRouteValve.java:172)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.checkJvmRoute(JvmRouteValve.java:112)
at
org.jboss.web.tomcat.service.session.JvmRouteValve.invoke(JvmRouteValve.java:81)
at
org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:104)
at
org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:157)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:241)
at org.apache.coyote.ajp.AjpProcessor.process(AjpProcessor.java:437)
at
org.apache.coyote.ajp.AjpProtocol$AjpConnectionHandler.process(AjpProtocol.java:381)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:595)
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
6004
days inactive
6024
days old
6 comments
2 participants
participants (2)
-
Brian Stansberry (JIRA) -
Takayoshi Kimura (JIRA)