fix redis connections to ipv6 enabled servers (joeferner#512)

Author: sseide

CHANGELOG.md

@@ -5,6 +5,7 @@
 * update jsonwebtoken from 8.5.1 to 9.0.0 (fix CVE-2022-23529, CVE-2022-23541, CVE-2022-23539, CVE-2022-23540)
 * update json5 from 2.2.1 to 2.2.3 (fix CVE-2022-46175)
 #### Enhancements
+* allow using IPv6 addresses for Redis connection definitions. (except REDIS_HOSTS env var, here no IPv6 allowed, use host names instead) 
 * update dependencies yargs@17.6.2
 * update ioredis from 4.28.5 to 5.3.0
 

README.md

@@ -203,6 +203,9 @@ If remote redis server needs TLS write all connections into a config file instea
 of using `REDIS_HOSTS` (see [docs/connections.md](docs/connections.md) at the end 
 within the more complex examples).
 
+This environment variable `REDIS_HOSTS` does not support IPv6 addresses. It supports IPv4 or hostnames only due to ':' 
+used as separator within IPv6 addresses and this fields here.
+
 ### With docker-compose
 
 ```yml
@@ -275,6 +278,8 @@ known issues with Kubernetes:
 
 * using REDIS_HOSTS works only with a password-less redis db. You must specify REDIS_HOST on a password
   protected redis db
+* using REDIS_HOSTS does not work with IPv6 addresses. For connections to IPv6 addresses either use `REDIS_HOST` and `REDIS_PORT`
+  env var or a custom `config/local.json` configuration file mounted into the redis container.
 
 
 ## Helm chart

docs/connections.md

@@ -43,6 +43,7 @@ Parameter "host", "port" and all "sentinel*" should not be set.
 "host" and "port" are needed.
 Do not set "path" or one of the "sentinel*" parameter as they have precedence
 over "host" and "port"!
+"host" can be either an IPv4 address, IPv6 address or a hostname.
 
 ```json
 {
@@ -81,6 +82,9 @@ parsed as list of sentinels to connect:
  3. array of strings
  4. array of objects
 
+Attention - connecting to a Redis server via IPv6 the form with a list of objects must be used (last example). All other variants do not work due to ":"
+being part of the IPv6 address too.
+
 ```json
 {
   "connections": [
@@ -115,7 +119,8 @@ parsed as list of sentinels to connect:
       "label": "redis-sentinel-4",
       "sentinels": [
         { "host": "192.0.2.2", "port": 26379 },
-        { "host": "192.0.2.3", "port": 26379 }
+        { "host": "192.0.2.3", "port": 26379 },
+        { "host": "fd00:2::3", "port": 26379 }
       ],
       "sentinelName": "mymaster",
       "password": "<optional-redis-server-pw>",
@@ -143,19 +148,19 @@ configure them directly inside your own custom json config file.
 
 *The environment variables work for the docker image only, not for the stand-alone app!*
 
-| Name | Type | Default | Cli | Environment-Var (Docker only) | Description |
-|---|---|---|---|---|---|
-| path | string | '' | --redis-socket | REDIS_SOCKET | path to the redis server socket, e.g. '/var/run/redis/redis.sock' |
-| host | string | localhost | --redis-host | REDIS_HOST | hostname or ip address of redis server (standalone mode)|
-| port | number | 6379 | --redis-port | REDIS_PORT | port number where redis server listens (standalone mode) |
-| username | string | '' | --redis-username | REDIS_USERNAME | optional username of the redis server itself (socket, standalone, sentinel or cluster mode - supported since Redis 6.0) |
-| password | string | '' | --redis-password | REDIS_PASSWORD | optional password of the redis server itself (socket, standalone, sentinel or cluster mode) |
-| sentinels | string or list | '' | --sentinels | SENTINELS | string: comma separated list of sentinels with "host:port" (sentinel mode) or list of "host:port" strings |
-| sentinelName | string | 'mymaster' | --sentinel-name | SENTINEL_NAME | name of redis database group to connect to via sentinel. The default name of 'mymaster' can be change via global redis configuration value 'redis.defaultSentinelGroup' (sentinel mode) |
-| sentinelUsername | string |  | --sentinel-username | SENTINEL_USERNAME | optional username to connect to sentinels itself. This is not the username of the redis server (sentinel mode - supported since Redis 6.0) |
-| sentinelPassword | string |  | --sentinel-password | SENTINEL_PASSWORD | password to connect to sentinels itself. This is not the password of the redis server (sentinel mode) |
-| db | number | 0 | --redis-db | REDIS_DB | Number of database, starting with 0, max allowed db number is configured server-side (default 15) |
-| connectionName | string | '' | | | use special connection name at this redis client to identify it with redis "CLIENT LIST" command. If not set default connection name from config param `redis.connectionName` is used |
+| Name | Type | Default | Cli | Environment-Var (Docker only) | Description                                                                                                                                                                                                                                                                |
+|---|---|---|---|---|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
+| path | string | '' | --redis-socket | REDIS_SOCKET | path to the redis server socket, e.g. '/var/run/redis/redis.sock'                                                                                                                                                                                                          |
+| host | string | localhost | --redis-host | REDIS_HOST | hostname or ipv4/ipv6 address of redis server (standalone mode)                                                                                                                                                                                                            |
+| port | number | 6379 | --redis-port | REDIS_PORT | port number where redis server listens (standalone mode)                                                                                                                                                                                                                   |
+| username | string | '' | --redis-username | REDIS_USERNAME | optional username of the redis server itself (socket, standalone, sentinel or cluster mode - supported since Redis 6.0)                                                                                                                                                    |
+| password | string | '' | --redis-password | REDIS_PASSWORD | optional password of the redis server itself (socket, standalone, sentinel or cluster mode)                                                                                                                                                                                |
+| sentinels | string or list | '' | --sentinels | SENTINELS | string: comma separated list of sentinels with "host:port" (sentinel mode) or list of "host:port" strings                                                                                                                                                                  |
+| sentinelName | string | 'mymaster' | --sentinel-name | SENTINEL_NAME | name of redis database group to connect to via sentinel. The default name of 'mymaster' can be change via global redis configuration value 'redis.defaultSentinelGroup' (sentinel mode)                                                                                    |
+| sentinelUsername | string |  | --sentinel-username | SENTINEL_USERNAME | optional username to connect to sentinels itself. This is not the username of the redis server (sentinel mode - supported since Redis 6.0)                                                                                                                                 |
+| sentinelPassword | string |  | --sentinel-password | SENTINEL_PASSWORD | password to connect to sentinels itself. This is not the password of the redis server (sentinel mode)                                                                                                                                                                      |
+| db | number | 0 | --redis-db | REDIS_DB | Number of database, starting with 0, max allowed db number is configured server-side (default 15)                                                                                                                                                                          |
+| connectionName | string | '' | | | use special connection name at this redis client to identify it with redis "CLIENT LIST" command. If not set default connection name from config param `redis.connectionName` is used                                                                                      |
 | tls | boolean or object | false | --redis-tls | REDIS_TLS | set to true to enable TLS secured connections to the redis server, for more specific configurations (allowed algorithms, server certificate checks and so on) this parameter can be an object directly use at Node tls sockets (https://github.com/luin/ioredis#tls-options) |
 | label | string | '' | --redis-label | | display label to us to identify this connection within the Web-UI                                                                                                                                                                                                          |
 | optional | boolean | false | --redis-optional | REDIS_OPTIONAL | set to true to not auto-reconnect on connection lost. Reconnect will be done if data are fetch from UI on user request                                                                                                                                                     |

lib/util.js

@@ -319,7 +319,7 @@ function createRedisClient(clientConfig, callback) {
       port: clientConfig.port,
       host: clientConfig.host,
       path: clientConfig.path,
-      family: 4
+      family: 0
     });
     if (clientConfig.path) {
       // unix-socket: