[
https://issues.apache.org/jira/browse/MINIFICPP-1379?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Adam Debreceni updated MINIFICPP-1379:
--------------------------------------
Description:
The sscanf-based uuid parsing allows uuids in otherwise invalid formats:
// longer than the format (dropping the extra)
00000000-0000-0000-0000-123456789abcfffff
// containing non-hex characters as the last character (discarding 'Z' and
yielding 11 as the last byte)
00000000-0000-0000-0000-123456789abZ
// extra hyphens in the middle of uuid (parsed as negative then converted to
unsigned)
00000000-00-c0-0000-0000-123456789abc
was:
The sscanf-based uuid parsing allows uuids in otherwise invalid formats:
// longer than the format (dropping the extra)
00000000-0000-0000-0000-123456789abcfffff
// containing "invalid" characters as the last character (discarding 'Z' and
yielding 11 as the last byte)
00000000-0000-0000-0000-123456789abZ
// extra hyphens in the middle of uuid (parsed as negative then converted to
unsigned)
00000000-00-c0-0000-0000-123456789abc
> Fix UUID parsing
> ----------------
>
> Key: MINIFICPP-1379
> URL: https://issues.apache.org/jira/browse/MINIFICPP-1379
> Project: Apache NiFi MiNiFi C++
> Issue Type: Bug
> Reporter: Adam Debreceni
> Priority: Major
>
> The sscanf-based uuid parsing allows uuids in otherwise invalid formats:
> // longer than the format (dropping the extra)
> 00000000-0000-0000-0000-123456789abcfffff
> // containing non-hex characters as the last character (discarding 'Z' and
> yielding 11 as the last byte)
> 00000000-0000-0000-0000-123456789abZ
> // extra hyphens in the middle of uuid (parsed as negative then converted to
> unsigned)
> 00000000-00-c0-0000-0000-123456789abc
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
