Details

    • Type: New Feature New Feature
    • Status: Closed
    • Priority: Major Major
    • Resolution: Won't Fix
    • Affects Version/s: None
    • Fix Version/s: None
    • Labels:
      None

      Description

      It is possible to create an infinite loop within an application if a wrapper is passed to its own ServletRequestWrapper.setRequest() method. The same problem can occur with ServletResponseWrapper and the HTTP variants.

      It would be helpful if the spec required that this was not permitted. The check should probably go further and check for loops (A wraps B wraps C wraps A).

        Activity

        markt_asf created issue -
        Rajiv Mordani made changes -
        Field Original Value New Value
        Assignee Shing Wai Chan [ swchan2 ]
        Hide
        Shing Wai Chan added a comment -

        The issue has been discussed in Servlet 3.1 expert group.
        Adding the check for infinite loop will help in debugging.
        The check should not be complicated or too costly as each corresponding vertex has only one outgoing edge and also in general there is not too many vertex in the corresponding graph.
        However, there is a concern that this will introduce an overhead in checking.
        So, the spec will not include this check in the spec.

        Show
        Shing Wai Chan added a comment - The issue has been discussed in Servlet 3.1 expert group. Adding the check for infinite loop will help in debugging. The check should not be complicated or too costly as each corresponding vertex has only one outgoing edge and also in general there is not too many vertex in the corresponding graph. However, there is a concern that this will introduce an overhead in checking. So, the spec will not include this check in the spec.
        Shing Wai Chan made changes -
        Status Open [ 1 ] Closed [ 6 ]
        Resolution Won't Fix [ 2 ]

          People

          • Assignee:
            Shing Wai Chan
            Reporter:
            markt_asf
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: