[ODE-590] Deployment Web Service generates ClassCastException in the presence of carriage return on SOAPBody - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 1.2
Fix Version/s: 1.3.2
Component/s: Deployment
Labels:
None

Description

In DeploymentWebService following line is used to get the package element of the SOAPBody.

OMElement zipPart = (OMElement) namePart.getNextOMSibling();

This code is vulnerable if a carriage return is present after the <name> tag before <package> tag in the SOAPBody. This happens because of the behaviour of Axiom. Axiom creates an OMText node for the carriage return. So when getNextOMSibling() is called instead of <package> element OMText is selected. But since the OMText cannot be cast to OMElement a ClassCastException occurs. This can be avoided by obtaining zipart OMElement with a call to getChild() or any related method which returns an OMElement reference.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

ODE590.patch
21/Apr/09 07:07
1 kB
Buddhika Chamith De Alwis

Activity

People

Assignee:: Unassigned

Reporter:: Buddhika Chamith De Alwis

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 21/Apr/09 04:12

Updated:: 24/Apr/09 00:54

Resolved:: 22/Apr/09 17:43