Add no-value key handling only for form body by gniadeck · Pull Request #13998 · netty/netty

gniadeck · 2024-04-23T13:28:05Z

Motivation:

This is a fix for issue #13981 that reports a changed behaviour of HttpPostStandardRequestDecoder after this PR - #13908

Because HttpPostStandardRequestDecoder changed the contract, some code implementations relying on certain parsing are failing

Modification:

This PR makes sure, that the edge case handling for form body happenes only when the content is in fact form body

Result:

Fixes #13981

Motivation: This is a fix for issue netty#13981 that reports a changed behaviour of HttpPostStandardRequestDecoder after this PR - netty#13908 Because HttpPostStandardRequestDecoder changed the contract, some code implementations relying on certain parsing are failing Modification: This PR makes sure, that the edge case handling for form data happenes only when the content is in fact form data Result: Fixes netty#13981

normanmaurer · 2024-04-27T19:19:32Z

@gniadeck thanks!

Motivation: This is a fix for issue #13981 that reports a changed behaviour of HttpPostStandardRequestDecoder after this PR - #13908 Because HttpPostStandardRequestDecoder changed the contract, some code implementations relying on certain parsing are failing Modification: This PR makes sure, that the edge case handling for form body happenes only when the content is in fact form body Result: Fixes #13981

### What changes were proposed in this pull request? The pr aims to upgrade `netty` from `4.1.109.Final` to `4.1.110.Final`. ### Why are the changes needed? - https://netty.io/news/2024/05/22/4-1-110-Final.html This version has brought some bug fixes and improvements, such as: Fix Zstd throws Exception on read-only volumes (netty/netty#13982) Add unix domain socket transport in netty 4.x via JDK16+ ([#13965](netty/netty#13965)) Backport #13075: Add the AdaptivePoolingAllocator ([#13976](netty/netty#13976)) Add no-value key handling only for form body ([#13998](netty/netty#13998)) Add support for specifying SecureRandom in SSLContext initialization ([#14058](netty/netty#14058)) - https://github.com/netty/netty/issues?q=milestone%3A4.1.110.Final+is%3Aclosed ### Does this PR introduce _any_ user-facing change? No. ### How was this patch tested? Pass GA. ### Was this patch authored or co-authored using generative AI tooling? No. Closes #46744 from panbingkun/SPARK-48420. Authored-by: panbingkun <panbingkun@baidu.com> Signed-off-by: yangjie01 <yangjie01@baidu.com>

yawkat · 2025-03-03T10:39:19Z

@gniadeck can I ask what the use case is, here? I'm working on rewriting the post body parsing ( netty-contrib/codec-multipart#25 ), so I'd like to understand whether I need to support non-standard parsing like this

yawkat · 2025-03-05T13:57:25Z

looking at the test for this PR, I'm not a big fan. It works by accident. Once your JSON has a = in it, it'll still be parsed as form data.

chrisvest · 2025-03-19T21:58:09Z

@gniadeck Can you take a look at Jonas' comments?

yawkat · 2025-03-19T22:00:29Z

We can probably leave it like this but I won't port this PR to contrib-multipart.

…

On Wed, Mar 19, 2025, 22:58 Chris Vest ***@***.***> wrote: @gniadeck <https://github.com/gniadeck> Can you take a look at Jonas' comments? — Reply to this email directly, view it on GitHub <#13998 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AASIZILA5X4A37WTNNJZTN32VHSATAVCNFSM6AAAAABYGVZCWOVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDOMZYGI2TKMJZGQ> . You are receiving this because you commented.Message ID: ***@***.***> [image: chrisvest]*chrisvest* left a comment (netty/netty#13998) <#13998 (comment)> @gniadeck <https://github.com/gniadeck> Can you take a look at Jonas' comments? — Reply to this email directly, view it on GitHub <#13998 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AASIZILA5X4A37WTNNJZTN32VHSATAVCNFSM6AAAAABYGVZCWOVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDOMZYGI2TKMJZGQ> . You are receiving this because you commented.Message ID: ***@***.***>

gniadeck · 2025-03-19T22:51:45Z

hi, sorry for taking long to response, and thanks for considering our use case in your contributions :)

this fix was added simply to narrow the scope of the fix for multipart form body, to apply it only if the request has appropriate header. As I wrote in the original issue, when the bug was introduced, the JSON body was parsed as a name of MemoryAttribute, causing contract from previous releases to be broken. This also meant, that basically every body that didn't contain = would be parsed as an argument name with empty value

#13981

results in:
[Mixed: {    "netty": "reproduction"}=] on 4.1.109.Final and 4.1.108.Final

but results in:
[] on 4.1.107.Final and 4.1.106.Final

You're right, that in the current implementation adding = to JSON will split it and add it as parameters, and I think we could potentially rely more on the headers to determine the actual content of the body, rather than infering it by the content itself, since as shown in this example, it can be pretty tricky. The main usage of such behaviour, would be to see if the incoming POST request should be parsed as a parameter based one, or JSON based one

yawkat · 2025-03-21T15:41:28Z

Yes, content sniffing is not the purpose of this class.

normanmaurer requested changes Apr 23, 2024

View reviewed changes

Comment thread .../src/test/java/io/netty/handler/codec/http/multipart/HttpPostStandardRequestDecoderTest.java Outdated

remove wildcard imports usage

c89b66d

gniadeck requested a review from normanmaurer April 23, 2024 14:10

fix checkstyle errors

94bd03a

normanmaurer requested changes Apr 27, 2024

View reviewed changes

Comment thread ...http/src/main/java/io/netty/handler/codec/http/multipart/HttpPostStandardRequestDecoder.java Outdated

Comment thread ...http/src/main/java/io/netty/handler/codec/http/multipart/HttpPostStandardRequestDecoder.java Outdated

Migrate to static constants

796848b

gniadeck requested a review from normanmaurer April 27, 2024 12:15

normanmaurer approved these changes Apr 27, 2024

View reviewed changes

normanmaurer merged commit a300058 into netty:4.1 Apr 27, 2024

normanmaurer added this to the 4.1.110.Final milestone Apr 27, 2024

panbingkun mentioned this pull request May 26, 2024

[SPARK-48420][BUILD] Upgrade netty to 4.1.110.Final apache/spark#46744

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Add no-value key handling only for form body#13998

Add no-value key handling only for form body#13998
normanmaurer merged 4 commits intonetty:4.1from
gniadeck:gniadeck/#13981-json-fix

gniadeck commented Apr 23, 2024

Uh oh!

Uh oh!

Uh oh!

Uh oh!

normanmaurer commented Apr 27, 2024

Uh oh!

yawkat commented Mar 3, 2025

Uh oh!

yawkat commented Mar 5, 2025

Uh oh!

chrisvest commented Mar 19, 2025

Uh oh!

yawkat commented Mar 19, 2025 via email

Uh oh!

gniadeck commented Mar 19, 2025

Uh oh!

yawkat commented Mar 21, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

Uh oh!

Conversation

gniadeck commented Apr 23, 2024

Uh oh!

Uh oh!

Uh oh!

Uh oh!

normanmaurer commented Apr 27, 2024

Uh oh!

yawkat commented Mar 3, 2025

Uh oh!

yawkat commented Mar 5, 2025

Uh oh!

chrisvest commented Mar 19, 2025

Uh oh!

yawkat commented Mar 19, 2025 via email

Uh oh!

gniadeck commented Mar 19, 2025

Uh oh!

yawkat commented Mar 21, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants