alhudz opened a new pull request, #477:
URL: https://github.com/apache/commons-fileupload/pull/477
Port of #475 to `1.x`, as requested there. Same change as merged on
`master`, adapted to `RFC2231Utility`.
Repro: `RFC2231Utility.decodeText("UTF-8''report%3")` (a truncated RFC 5987
percent escape, reachable via `filename*`).
Expected: rejected, the same as `%GG` or a non-ASCII byte already are.
Actual: returns `report`; `fromHex` treats a `%` with fewer than two
following characters as end-of-input and drops the truncated escape.
Fix: throw `IllegalArgumentException`, matching the other malformed-input
paths in `fromHex`. Covered by a new case in `RFC2231UtilityTestCase`; full
suite passes on `1.x` (86 tests, 0 failures).
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]