Menu

#334 Cookies with double quote char in, badly translated to SCL

Behavioral
open-fixed
Daniel Sutcliffe
HTTP Capture (42)
5
2007-07-03
2007-07-03
Daniel Sutcliffe
No

Cookies that contain the double quote character are badly translated into SCL strings.

This problem actually affects more than just Cookies - it can occur in many strings taken from the HTTP and then appearing as strings in the created SCL. It is most easily reproduced using Cookies that already exist (static) in the browser though.

The created strings may be uncompilable or may just not be the string that the browser sent - indexing gets mixed up the translation and ~<22> effectively gets put in the wrong place in the created string.

Discussion

  • Daniel Sutcliffe

    Daniel Sutcliffe - 2007-07-03
    • summary: Cookies with double quote char in badly translated to SCL --> Cookies with double quote char in, badly translated to SCL
    • status: open --> open-accepted
     

  • Daniel Sutcliffe

    Daniel Sutcliffe - 2007-07-03

    Logged In: YES
    user_id=19748
    Originator: YES

    I have recoded the modifyStringAsScl routine so that it doesn't "get confused". The new algorithm should be considerably more efficient (doesn't copy strings around so much and works in a single pass), works (it fixes this bug), and also encodes the single quote character to ~<27> for completeness and to avoid any potential future issues.

     

  • Daniel Sutcliffe

    Daniel Sutcliffe - 2007-07-03
    • status: open-accepted --> open-fixed
     

  • Daniel Sutcliffe

    Daniel Sutcliffe - 2007-07-03

    Logged In: YES
    user_id=19748
    Originator: YES

    A fix for this issue has been merged into the CVS HEAD. It
    will become generally available in the OpenSTA 1.4.4 release.

    gwhttp.dll: 1.4.4.2
    OpenSTA: 1.4.4.4

     

Log in to post a comment.