[jboss-jira] [JBoss JIRA] Created: (JBREM-809) Verify that the behavior of the HTTPUnMarshaller re stripping CR and LF characters is correct

Tue Sep 25 10:35:41 EDT 2007

Verify that the behavior of the HTTPUnMarshaller re stripping CR and LF characters is correct
---------------------------------------------------------------------------------------------

                 Key: JBREM-809
                 URL: http://jira.jboss.com/jira/browse/JBREM-809
             Project: JBoss Remoting
          Issue Type: Task
      Security Level: Public (Everyone can see)
          Components: marshall
    Affects Versions: 2.2.2.GA
            Reporter: Tom Fennelly
         Assigned To: Trustin Lee

At the moment, the HTTPUnMarshaller uses a BufferedReader to read a HTTP char stream.  This causes it to modify the message payload by removing the CR and LF characters.  This causes a problem for us on the ESB because it means that signature checks fail on signed SOAP messages since the sig was generated from the message containing the CR and LF chars.  It's even worse than that... it actually corrupts the signature within the message because the canonical form of the sig contains CRLF chars.

We got around this in the ESB (in the short term) by setting our own modified version of the HTTPUnMarshaller - one that doesn't use a BufferedReader.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira