On 2016-07-29 17:39:01 -0400, Scott Kitterman wrote: > On Friday, July 29, 2016 02:27:47 AM Vincent Lefevre wrote: > > Package: postfix > > Version: 3.1.0-4 > > Severity: minor > > > > The cidr_table(5) man page contains: > > > > When a search string matches the specified network block, use > > the corresponding result value. Specify 0.0.0.0/0 to match every > > IPv4 address, and ::/0 to match every IPv6 address. > > > > An IPv4 network address is a sequence of four decimal octets > > separated by ".", and an IPv6 network address is a sequence of > > three to eight hexadecimal octet pairs separated by ":". > > > > but :: is not of the form: a sequence of three to eight hexadecimal > > octet pairs separated by ":". Is the standard "::" zero compression > > accepted (RFC 4291) more generally? > > > > Moreover, examples with IPv6 addresses could be added in Section > > "EXAMPLE SMTPD ACCESS MAP". > > I've reviewed the man page in question. I think you stopped just a little > too > soon: > > > Before comparisons are made, lookup keys and table entries > > are converted from string to binary. Therefore table entries > > will be matched regardless of redundant zero characters. > > I think that answers your question.
Not really. If I understand correctly, "redundant zero characters" means things like 1 vs 01 vs 001, etc. Note that in RFC 4291, "::" is *not* equivalent to ":0:", so that's beyond redundant zero characters. Zero compression is a specific rule for IPv6 addresses. Moreover, it seems that in RFC 4291, there are always 8 octet pairs (not 3 to 8), possibly implied by zero compression. Examples that are given in the RFC: 2001:0DB8:0000:CD30:0000:0000:0000:0000/60 2001:0DB8::CD30:0:0:0:0/60 2001:0DB8:0:CD30::/60 But if zero compression is allowed with 'three to eight hexadecimal octet pairs separated by ":"', this becomes completely unspecified. -- Vincent Lefèvre <vinc...@vinc17.net> - Web: <https://www.vinc17.net/> 100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/> Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)
