[OS] Fix for XXE in netconf drivers xml utils Change-Id: Ie38901decb59712c7cf6c717f42bbb746c1e1921

commit: af1fa39a53c0016e92c1de246807879c16f507d6 [log] [tgz]
author: Andrea Campanella <andrea@opennetworking.org> Tue Jun 26 11:16:51 2018 +0200
committer: Andrea Campanella <andrea@opennetworking.org> Tue Jun 26 09:46:49 2018 +0000
tree: 6413b0786c771f77d1d971b139eea44aa55d280f
parent: 021d2eb175b8e46d4690cd9e1243301ddd903bcc [diff] [blame]
diff --git a/cli/src/main/java/org/onosproject/cli/net/DeviceSetControllersCommand.java b/cli/src/main/java/org/onosproject/cli/net/DeviceSetControllersCommand.java
index af66ae0..e8d3201 100644
--- a/cli/src/main/java/org/onosproject/cli/net/DeviceSetControllersCommand.java
+++ b/cli/src/main/java/org/onosproject/cli/net/DeviceSetControllersCommand.java

@@ -64,8 +64,19 @@
     @Override
     protected void execute() {
 
-        Arrays.asList(controllersListStrings).forEach(
-                cInfoString -> controllers.add(parseCInfoString(cInfoString)));
+        if (controllersListStrings == null && !removeCont && !removeAll) {
+            print("No controller are given, skipping.");
+            return;
+        }
+        if (controllersListStrings != null) {
+            Arrays.asList(controllersListStrings).forEach(
+                    cInfoString -> {
+                        ControllerInfo controllerInfo = parseCInfoString(cInfoString);
+                        if (controllerInfo != null) {
+                            controllers.add(controllerInfo);
+                        }
+                    });
+        }
         DriverService service = get(DriverService.class);
         deviceId = DeviceId.deviceId(uri);
         DriverHandler h = service.createHandler(deviceId);
@@ -118,15 +129,24 @@
                 return null;
             }
 
-            String[] data = config[0].split(":");
-            String type = data[0];
-            IpAddress ip = IpAddress.valueOf(data[1]);
-            int port = Integer.parseInt(data[2]);
-
-            return new ControllerInfo(ip, port, type, annotation);
+            return getControllerInfo(annotation, config[0]);
         } else {
-            print(config[0]);
-            return new ControllerInfo(config[0]);
+            return getControllerInfo(null, config[0]);
         }
     }
+
+    private ControllerInfo getControllerInfo(Annotations annotation, String s) {
+        String[] data = s.split(":");
+        if (data.length != 3) {
+            print("Wrong format of the controller %s, should be in the format <protocol>:<ip>:<port>", s);
+            return null;
+        }
+        String type = data[0];
+        IpAddress ip = IpAddress.valueOf(data[1]);
+        int port = Integer.parseInt(data[2]);
+        if (annotation != null) {
+            return new ControllerInfo(ip, port, type, annotation);
+        }
+        return new ControllerInfo(ip, port, type);
+    }
 }
commit	af1fa39a53c0016e92c1de246807879c16f507d6	[log] [tgz]
author	Andrea Campanella <andrea@opennetworking.org>	Tue Jun 26 11:16:51 2018 +0200
committer	Andrea Campanella <andrea@opennetworking.org>	Tue Jun 26 09:46:49 2018 +0000
tree	6413b0786c771f77d1d971b139eea44aa55d280f
parent	021d2eb175b8e46d4690cd9e1243301ddd903bcc [diff] [blame]