PQ74488,5.0,5.0.1:HTTP Transport does not accept
multi-line headers
Downloadable files
Abstract
Request for HTTP Transport does not accept multi-line
headers.
Download Description
Users Affected: WebSphere Application Server users of the internal
HTTP Transport.
Problem Description: If the internal HTTP Transport encounters a header
that continues onto a second line, it will return an error, http response
400.
Problem Summary:
Although the HTTP protocol allows header fields to span multiple lines,
the internal HTTP Transport can not handle this and instead returns an
error to the client. HttpRequest.readHeaders expects to find a header
field name on each new line and when it doesn't, it assumes a bad header
instead of checking for a continuation line.
Problem Conclusion: The process that reads the headers has been changed to
check for a leading space on a header line and when finding one will will
handle it as a continuation of the current header.
After applying this fix, WebSphere Application Server was able to parse
multi-line headers to the HTTP Transports and the error was
corrected.
Prerequisites
The Updateinstalled tool is required to install this fix.