You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@commons.apache.org by "Sebb (JIRA)" <ji...@apache.org> on 2017/02/14 21:28:41 UTC

[jira] [Resolved] (VALIDATOR-419) Invalid IPv6 addresses that are IPv4-mapped pass InetAddressValidator validation

     [ https://issues.apache.org/jira/browse/VALIDATOR-419?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Sebb resolved VALIDATOR-419.
----------------------------
       Resolution: Fixed
    Fix Version/s: 1.6

URL: http://svn.apache.org/viewvc?rev=1783032&view=rev
Log:
VALIDATOR-419 Invalid IPv6 addresses that are IPv4-mapped pass InetAddressValidator validation

Modified:
    commons/proper/validator/trunk/RELEASE-NOTES.txt
    commons/proper/validator/trunk/src/changes/changes.xml
    commons/proper/validator/trunk/src/main/java/org/apache/commons/validator/routines/InetAddressValidator.java
    commons/proper/validator/trunk/src/test/java/org/apache/commons/validator/routines/InetAddressValidatorTest.java


> Invalid IPv6 addresses that are IPv4-mapped pass InetAddressValidator validation
> --------------------------------------------------------------------------------
>
>                 Key: VALIDATOR-419
>                 URL: https://issues.apache.org/jira/browse/VALIDATOR-419
>             Project: Commons Validator
>          Issue Type: Bug
>          Components: Routines
>    Affects Versions: 1.5.1
>            Reporter: Denis Iskhakov
>            Priority: Minor
>             Fix For: 1.6
>
>
> 1) {{InetAddressValidator.getInstance().isValidInet6Address(String inet6Address)}} returns {{true}} for value {{0::ffff:192.168.1.1:192.168.1.1}}
> I believe this is due to wrong comparison operand in line #166 of InetAddressValidator: 
> {code}
> if (index > octets.length - 1 || index > 6) {  // CHECKSTYLE IGNORE MagicNumber
>     // IPV4 occupies last two octets
>     return false;
> }
> {code} 
> {{index > octets.length - 1}} expression will never be true inside cycle {code}for (int index = 0; index < octets.length; index++){code}
> 2) According to https://tools.ietf.org/html/rfc4291 IPv6 address that is IPv4-mapped must start with five zero octets followed by one {{ffff}} octet. Current implementation of InetAddressValidator does not check this. E.g. {{1::2:192.168.1.1}} is considered valid.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)