tomcat請求引數問題解決: Invalid character found in the request target. The valid characters are defined in
阿新 • • 發佈:2018-11-09
背景:研發的同事在測試環境的tomcat發現了一個問題,
‘Note: further occurrences of HTTP header parsing errors will be logged at DEBUG level.’但是線上沒有任何問題。所以檢查生產環境發現了問題。
處理:生產環境使用的6版本tomcat,測試使用8版本tomcat
在網上查找了一圈,找到了一遍文章,所以記錄一下
錯誤還原:
今天升級tomcat7.0.84遇到一個問題:url請求中包含{}的都報錯:
二月 06, 2018 5:25:39 下午 org.apache.coyote.http11.AbstractHttp11Processor process 資訊: Error parsing HTTP request header Note: further occurrences of HTTP header parsing errors will be logged at DEBUG level. java.lang.IllegalArgumentException: Invalid character found in the request target. The valid characters are defined in RFC 7230 and RFC 3986 at org.apache.coyote.http11.InternalInputBuffer.parseRequestLine(InternalInputBuffer.java:192) at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1028) at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:637) at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:318) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) at java.lang.Thread.run(Thread.java:745)
前臺的請求及報錯如下:
Failed to load resource: the server responded with a status of 400 (Bad Request) http://localhost:8080/XXX/formshow/show.jsp?formId=1222&processFormType=CREATE&formUsage=INPUT&initData={%22flowId%22:%22180206172500073%22,%22flowTypeId%22:%228%22,%22flowType%22:%22WFM%22,%22processNameEn%22:%22com.inspur.plugins.ge.process.GenerateElectricity%22,%22processNameZh%22:%22GE%22,%22processPluginName%22:%22ge%22,%22formType%22:%22JSP%22,%22version%22:%221.1.1%22,%22jspformService%22:%22generateElectricityCreateJspFormService%22}
問題分析:
錯誤程式碼 400 請求引數有誤:
升級tomcat之後就出現了這個問題,Invalid character found in the request target. The valid characters are defined in RFC 7230 and RFC 3986,也就是說我們的請求中用了無效的字元。檢視RFC規範知,url中只允許包含英文字母(a-zA-Z)、數字(0-9)、-_.~四個特殊字元以及保留字元( ! * ’ ( ) ; : @ & = + $ , / ? # [ ] ) (26*2+10+4+18=84)這84個字元.而我們的請求中出現了{}大括號,所以tomcat報錯.
解決辦法(四種):
- 替換url請求。不用{}
- 對請求編碼解碼。 UrlDecode、UrlEncode
- 配置Tomcat對字元的支援 (見下文)
-
更換Tomcat版本 (注,Tomcat從 7.0.73, 8.0.39, 8.5.7 版本後添加了對Url的限制。)
-
配置tomcat支援|{}等字元的方法是:在 catalina.properties中新增 tomcat.util.http.parser.HttpParser.requestTargetAllow=|{} 但是隻支援7.0.76, 8.0.42, 8.5.12 之後的版本(這些版本之後支援設定上述屬性)
-
注,Tomcat從 7.0.73, 8.0.39, 8.5.7 版本後添加了對Url的限制。
-