Illegal argument. Can't execute in the current context

Question

Hello all,&nbsp;
&nbsp;We are wanting to apply the "Secure" attribute to just the ASP.Net session identifer via an iRule.  We came up with the code below and it "appears" to work but I have the following error in the F5 GUI logs.&nbsp;
&nbsp;TCL error: Prod_SessionCookie_Secure - Illegal argument. Can't execute in the current context. (line 1) invoked from within "HTTP::cookie exists "ASP.NET_SessionId""&nbsp;&nbsp; 
when HTTP_RESPONSE {
 if { [HTTP::cookie exists "ASP.NET_SessionId"] } { 
      HTTP::cookie secure "ASP.NET_SessionId" enable
    } 
 }&nbsp;
&nbsp;Any thoughts or suggestions?&nbsp;
&nbsp;Thanks,
&nbsp;Bob

hooleylist · Answer

Hi Bob, 
&nbsp;  
&nbsp; That's an odd one.  I can't think of any scenarios where the HTTP::cookie commands should be invalid in HTTP_RESPONSE. 
&nbsp;  
&nbsp; Is the error in the Local Traffic (/var/log/tlm) log?  Does it occur on every response?  Which LTM version are you running? 
&nbsp;  
&nbsp; Aaron

turo · Answer

Aaron, 
&nbsp;  
&nbsp; We have the exact same problem after upgrading from 9.3.1 to 9.4.8. 
&nbsp; We have multiple iRules assigned to one VS. Two of the irules have same event when HTTP_RESPONSE checking if certain HTTP cookie exists. 
&nbsp; For time to time we see the following errors in the ltm logs: 
&nbsp;  
&nbsp; tmm tmm[2209]: 01220001:3: TCL error: rule_JSESSIONID  - Illegal argument. Can't execute in the current context. (line 1)     invoked from within "HTTP::cookie exists JSESSIONID" 
&nbsp;  
&nbsp; any ideas what has changed from 9.3.1? 
&nbsp;  
&nbsp; -turo &nbsp;

hooleylist · Answer

Hi Turo, 
&nbsp;  
&nbsp; I'm not sure what would have changed in 9.4.x to cause this.  I'd suggest opening a case with F5 Support to see if they can find something. 
&nbsp;  
&nbsp; Aaron

turo · Answer

Aaron, 
&nbsp;  
&nbsp; We will do that. Just tried if this is know issue. 
&nbsp;  
&nbsp; Thanks, 
&nbsp; -turo

Forum Discussion

Illegal argument. Can't execute in the current context

4 Replies

Recent Discussions

F5Access | MacOS Sonoma

enable tls1.2 on management interface on F5 ltm running version 10.x

[ASM] - what is "Browser Challenge file" ?

SMS server with BIGIP

F5 terminal - help to run commands - disk space full

Related Content

Passing Arguments to iCall Scripts

F5 Partners join F5 executives at our Partner Connect event

Oracle WebLogic Deserialization Remote Code Execution

Logging/Audit Binary Execution?

ImageTragick - ImageMagick Remote Code Execution Vulnerability