Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

org.apache.httpcomponents:httpclient:4.5.7 breaks fetching S3 objects with consecutive slashes in the key #1919

Closed
akhaku opened this issue Feb 20, 2019 · 22 comments
Closed

org.apache.httpcomponents:httpclient:4.5.7 breaks fetching S3 objects with consecutive slashes in the key #1919

akhaku opened this issue Feb 20, 2019 · 22 comments
Labels
dependencies This issue is a problem in a dependency.

Comments

@akhaku
Copy link

akhaku commented Feb 20, 2019
edited

org.apache.httpcomponents:httpclient:4.5.7 made a change[1] to url rewriting (used when executing a request) where it normalizes the provided urls by removing empty path segments (effectively collapsing consecutive slashes into a single slash).

S3 supports objects with consecutive slashes, but because of this behaviour change in httpclient, you can no longer fetch those objects with the AWS SDK, since the url httpclient makes a request to is different. On a side note, the manifestation of this issue is a signature mismatch, since the signature calculated by the SDK uses double slashes but when httpclient hits the path without double slashes, the calculated signature is different.

It looks like there's some debate on it now and they're actually working on making normalization optional[2], so once that's released we can update the RequestConfig[3] to disable normalization and revert to the previous behaviour[3].

Example stack trace showing the code path to slash collapsing:

rewriteURI:158, URIUtils (org.apache.http.client.utils)
rewriteURIForRoute:231, URIUtils (org.apache.http.client.utils)
rewriteRequestURI:95, ProtocolExec (org.apache.http.impl.execchain)
execute:132, ProtocolExec (org.apache.http.impl.execchain)
doExecute:185, InternalHttpClient (org.apache.http.impl.client)
execute:83, CloseableHttpClient (org.apache.http.impl.client)
execute:56, CloseableHttpClient (org.apache.http.impl.client)
execute:72, SdkHttpClient (com.amazonaws.http.apache.client.impl)
executeOneRequest:1285, AmazonHttpClient$RequestExecutor (com.amazonaws.http)
executeHelper:1101, AmazonHttpClient$RequestExecutor (com.amazonaws.http)
doExecute:758, AmazonHttpClient$RequestExecutor (com.amazonaws.http)
executeWithTimer:732, AmazonHttpClient$RequestExecutor (com.amazonaws.http)
execute:714, AmazonHttpClient$RequestExecutor (com.amazonaws.http)
access$500:674, AmazonHttpClient$RequestExecutor (com.amazonaws.http)
execute:656, AmazonHttpClient$RequestExecutionBuilderImpl (com.amazonaws.http)
execute:520, AmazonHttpClient (com.amazonaws.http)
invoke:4705, AmazonS3Client (com.amazonaws.services.s3)
invoke:4652, AmazonS3Client (com.amazonaws.services.s3)
getObject:1457, AmazonS3Client (com.amazonaws.services.s3)
getObject:1316, AmazonS3Client (com.amazonaws.services.s3)

1: https://issues.apache.org/jira/browse/HTTPCLIENT-1960, apache/httpcomponents-client@8c04c6a
2: https://issues.apache.org/jira/browse/HTTPCLIENT-1968, apache/httpcomponents-client@4093a30
3: https://github.com/aws/aws-sdk-java/blob/1.11.502/aws-java-sdk-core/src/main/java/com/amazonaws/http/AmazonHttpClient.java#L1282
@debora-ito
Copy link
Member

@akhaku Thank you for the detailed report!

Using org.apache.httpcomponents:httpclient:4.5.7 indeed removed one of the two consecutive slashes in my tests.

Based on the resolution of [2] https://issues.apache.org/jira/browse/HTTPCLIENT-1968, we'll keep an eye on the next httpclient release to see what is the new behaviour of the fix. I'll keep this issue open in the meantime.

@debora-ito debora-ito added the dependencies This issue is a problem in a dependency. label Feb 22, 2019
@debora-ito debora-ito mentioned this issue Feb 22, 2019
Closed
@valters
Copy link

valters commented Mar 11, 2019

I am seeing this issue ("AmazonS3Exception: The request signature we calculated does not match the signature you provided.") on S3 key that contains "+" character (that seems the only thing out of ordinary) - like "2019/a+b/item". Could it be related? The regression is caused by upgrading to Spring Boot 2.1.3 which brings in (version manages) httpclient:jar:4.5.7 (from 4.5.6).

@debora-ito
Copy link
Member

debora-ito commented Mar 22, 2019
edited

@valters yes, it looks like keys containing special characters like + were also affected by 4.5.7. We are investigating the whole impact.

This was referenced Mar 22, 2019
Closed
Closed
Closed
@zoewangg zoewangg mentioned this issue Apr 2, 2019
Closed
This was referenced Apr 3, 2019
Closed
Closed
akhaku added a commit to akhaku/aws-sdk-java that referenced this issue Apr 7, 2019
@akhaku
Don't allow httpclient to normalize URIs aws#1919
3e97632
@akhaku akhaku mentioned this issue Apr 7, 2019
Closed
@debora-ito debora-ito mentioned this issue Apr 9, 2019
Closed
@CatalinaMoisuc
Copy link

CatalinaMoisuc commented Apr 12, 2019
edited

The problem persists with org.apache.httpcomponents:httpclient#4.5.8

@akhaku
Copy link
Author

akhaku commented Apr 13, 2019

Indeed - #1966 will fix it, just waiting for them to take a look.

akhaku added a commit to akhaku/aws-sdk-java that referenced this issue Apr 23, 2019
@akhaku
Don't allow httpclient to normalize URIs aws#1919
3edaee8
varunnvs92 added a commit to aws/aws-sdk-java-v2 that referenced this issue Apr 23, 2019
@varunnvs92
Disable Apache normalization to handle breaking change introduced in …
26bd29e 
…v4.5.7

See aws/aws-sdk-java#1919 for more details.
@varunnvs92 varunnvs92 mentioned this issue Apr 23, 2019
Merged
@swetavkamal
Copy link

This error also comes up while we we call getBootstrapBrokers on AWS MSK(managed streaming kafka).
This error comes up with httpclient 5.5.7 and above while works fine for 5.5.6 or lower.

@varunnvs92 varunnvs92 mentioned this issue Apr 24, 2019
Merged
@debora-ito
Copy link
Member

Status update:

We opened a ticket with Apache asking to change the normalization default value to false to reduce the impact on the SDK, but they won't make the change.

Then, while working on the solution, @varunnvs92 found a bug in httpclient 4.5.8 in the URIBuilder#isPathEmpty method.

This bug was fixed and merged, but now the solution on the SDK side is blocked by the next release of httpclient.

We are actively working to fix this. Thank you for your patience.

@debora-ito debora-ito mentioned this issue May 3, 2019
Closed
@cmuchinsky cmuchinsky mentioned this issue Jun 25, 2019
Closed
@debora-ito debora-ito mentioned this issue Jun 25, 2019
Closed
akhaku added a commit to akhaku/aws-sdk-java that referenced this issue Jul 2, 2019
@akhaku
Don't allow httpclient to normalize URIs aws#1919
fe86fc5
akhaku added a commit to akhaku/aws-sdk-java that referenced this issue Jul 2, 2019
@akhaku
Don't allow httpclient to normalize URIs aws#1919
7842379
zoewangg pushed a commit to aws/aws-sdk-java-v2 that referenced this issue Jul 2, 2019
@varunnvs92 @zoewangg
Disable Apache normalization to handle breaking change introduced in …
c729205 
…v4.5.7

See aws/aws-sdk-java#1919 for more details.
zoewangg pushed a commit to aws/aws-sdk-java-v2 that referenced this issue Jul 2, 2019
@varunnvs92 @zoewangg
Disable Apache normalization to handle breaking change introduced in …
2a30333 
…v4.5.7

See aws/aws-sdk-java#1919 for more details.
@debora-ito debora-ito mentioned this issue Jul 9, 2019
Closed
@adam-lin-dragon adam-lin-dragon mentioned this issue Nov 29, 2019
Closed
r-uchida13 added a commit to r-uchida13/aws-glue-samples that referenced this issue Dec 18, 2019
@r-uchida13
[fix] httpclient:4.5.7 breaks fetching S3 aws/aws-sdk-java#1919
40b3f43
@r-uchida13 r-uchida13 mentioned this issue Dec 20, 2019
Closed
@rhymed-l rhymed-l mentioned this issue Dec 20, 2019
Closed
@kkonstantine kkonstantine mentioned this issue Mar 8, 2020
Merged
@guykhazma guykhazma mentioned this issue Mar 26, 2020
Closed
@marcomarasca marcomarasca mentioned this issue Mar 31, 2020
Merged
@ursNiemi
Copy link

ursNiemi commented May 28, 2020
edited

What is the last version of AWS SDK that does not have this issue? I have a setup, where upgrading Apache httpclient is not possible, but downgrading AWS SDK is.

@debora-ito
Copy link
Member

debora-ito commented May 28, 2020
edited

@ursNiemi What version of httpclient are you using? If you're using httpclient-4.5.9 or newer, it will work with SDK version 1.11.596 or newer.

And just to be clear, the issue was not in SDK but in the changed behavior in Apache httpclient-4.5.7.

@debora-ito debora-ito mentioned this issue May 29, 2020
Closed
@pradeepgv42 pradeepgv42 mentioned this issue Jun 24, 2020
Closed
@victorsilva-silva victorsilva-silva mentioned this issue Jul 28, 2020
Closed
@miloradtrninic miloradtrninic mentioned this issue Jul 30, 2020
Closed
@subhamsriv subhamsriv mentioned this issue Aug 17, 2020
Closed
@GreenHorse GreenHorse mentioned this issue Aug 25, 2020
Open
@nikitakakra nikitakakra mentioned this issue Sep 10, 2020
Closed
mfussenegger added a commit to crate/crate that referenced this issue Sep 14, 2020
@mfussenegger
Update httpclient and httpcore
c7734e9 
Saw the following error in some logs:

    Sep 10, 2020 3:19:25 PM com.amazonaws.http.apache.utils.ApacheUtils noSuchMethodThrownByNormalizeUriInvoker
    WARNING: NoSuchMethodException was thrown when disabling normalizeUri. This indicates you are using an old version (< 4.5.8) of Apache http client. It is recommended to use http client version >= 4.5.9 to avoid the breaking change introduced in apache client 4.5.7 and the latency in exception handling. See aws/aws-sdk-java#1919 for more information
mergify bot pushed a commit to crate/crate that referenced this issue Sep 14, 2020
@mfussenegger @mergify
Update httpclient and httpcore
27f4df7 
Saw the following error in some logs:

    Sep 10, 2020 3:19:25 PM com.amazonaws.http.apache.utils.ApacheUtils noSuchMethodThrownByNormalizeUriInvoker
    WARNING: NoSuchMethodException was thrown when disabling normalizeUri. This indicates you are using an old version (< 4.5.8) of Apache http client. It is recommended to use http client version >= 4.5.9 to avoid the breaking change introduced in apache client 4.5.7 and the latency in exception handling. See aws/aws-sdk-java#1919 for more information
@cmoine cmoine mentioned this issue Oct 13, 2020
Closed
Closed
@debora-ito debora-ito mentioned this issue Mar 6, 2021
Closed
@aldy120 aldy120 mentioned this issue Jul 24, 2021
Open
vindeolal added a commit to avniproject/avni-server that referenced this issue Aug 23, 2021
@vindeolal
|#0 update org.apache.httpcomponents version
fb040d1 
aws/aws-sdk-java#1919
@elefeint elefeint mentioned this issue Aug 9, 2022
Closed
@twr twr mentioned this issue Oct 11, 2022
Closed
@andresaaap andresaaap mentioned this issue Mar 7, 2023
Closed
deckeraa added a commit to deckeraa/video-note-taker that referenced this issue Jun 19, 2023
@deckeraa
Bump clj-http version to avoid the following error: WARNING: NoSuchMe…
161492b 
…thodException was thrown when disabling normalizeUri. This indicates you are using an old version (< 4.5.8) of Apache http client. It is recommended to use http client version >= 4.5.9 to avoid the breaking change introduced in apache client 4.5.7 and the latency in exception handling. See aws/aws-sdk-java#1919 for more information
@julienrf julienrf mentioned this issue Apr 18, 2024
Merged
@pdbossman pdbossman mentioned this issue Apr 19, 2024
Open
@pdbossman pdbossman mentioned this issue May 1, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
dependencies This issue is a problem in a dependency.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests