NotificationsYou must be signed in to change notification settings
Fork9.7k
Star30.7k

Commitb8f4116

committed

security #cve-2024-50342 [HttpClient] Resolve hostnames in NoPrivateNetworkHttpClient (nicolas-grekas)

This PR was merged into the 5.4 branch.

2 parentscb19470 +b4bf5af commitb8f4116Copy full SHA for b8f4116

File tree

11 files changed

+83

-18

lines changed

src/Symfony
- Component/HttpClient
- Contracts/HttpClient
  - HttpClientInterface.php

11 files changed

+83

-18

lines changed

`‎src/Symfony/Component/HttpClient/HttpOptions.php‎`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -148,6 +148,8 @@ public function buffer(bool $buffer)`
`148`	`148`	`}`
`149`	`149`
`150`	`150`	`/**`
	`151`	`+ * @param callable(int, int, array, \Closure\|null=):void $callback`
	`152`	`+ *`
`151`	`153`	`* @return $this`
`152`	`154`	`*/`
`153`	`155`	`publicfunctionsetOnProgress(callable$callback)`

`‎src/Symfony/Component/HttpClient/NativeHttpClient.php‎`

Lines changed: 10 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -138,7 +138,15 @@ public function request(string $method, string $url, array $options = []): Respo`
`138`	`138`	`// Memoize the last progress to ease calling the callback periodically when no network transfer happens`
`139`	`139`	`$lastProgress = [0,0];`
`140`	`140`	`$maxDuration =0 <$options['max_duration'] ?$options['max_duration'] : \INF;`
`141`		`-$onProgress =staticfunction (...$progress)use ($onProgress, &$lastProgress, &$info,$maxDuration) {`
	`141`	`+$multi =$this->multi;`
	`142`	`+$resolve =staticfunction (string$host, ?string$ip =null)use ($multi): ?string {`
	`143`	`+if (null !==$ip) {`
	`144`	`+$multi->dnsCache[$host] =$ip;`
	`145`	`+ }`
	`146`	`+`
	`147`	`+return$multi->dnsCache[$host] ??null;`
	`148`	`+ };`
	`149`	`+$onProgress =staticfunction (...$progress)use ($onProgress, &$lastProgress, &$info,$maxDuration,$resolve) {`
`142`	`150`	`if ($info['total_time'] >=$maxDuration) {`
`143`	`151`	`thrownewTransportException(sprintf('Max duration was reached for "%s".',implode('',$info['url'])));`
`144`	`152`	`}`
`@@ -154,7 +162,7 @@ public function request(string $method, string $url, array $options = []): Respo`
`154`	`162`	`$lastProgress =$progress ?:$lastProgress;`
`155`	`163`	`}`
`156`	`164`
`157`		`-$onProgress($lastProgress[0],$lastProgress[1],$progressInfo);`
	`165`	`+$onProgress($lastProgress[0],$lastProgress[1],$progressInfo,$resolve);`
`158`	`166`	`};`
`159`	`167`	`}elseif (0 <$options['max_duration']) {`
`160`	`168`	`$maxDuration =$options['max_duration'];`

`‎src/Symfony/Component/HttpClient/NoPrivateNetworkHttpClient.php‎`

Lines changed: 15 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -80,11 +80,24 @@ public function request(string $method, string $url, array $options = []): Respo`
`80`	`80`	`$lastUrl ='';`
`81`	`81`	`$lastPrimaryIp ='';`
`82`	`82`
`83`		`-$options['on_progress'] =function (int$dlNow,int$dlSize,array$info)use ($onProgress,$subnets, &$lastUrl, &$lastPrimaryIp):void {`
	`83`	`+$options['on_progress'] =function (int$dlNow,int$dlSize,array$info, ?\Closure$resolve =null)use ($onProgress,$subnets, &$lastUrl, &$lastPrimaryIp):void {`
`84`	`84`	`if ($info['url'] !==$lastUrl) {`
`85`	`85`	`$host =trim(parse_url($info['url'],PHP_URL_HOST) ?:'','[]');`
	`86`	`+$resolve ??=staticfn () =>null;`
	`87`	`+`
	`88`	`+if (($ip =$host)`
	`89`	`+ && !filter_var($ip, \FILTER_VALIDATE_IP, \FILTER_FLAG_IPV6)`
	`90`	`+ && !filter_var($ip, \FILTER_VALIDATE_IP, \FILTER_FLAG_IPV4)`
	`91`	`+ && !$ip =$resolve($host)`
	`92`	`+ ) {`
	`93`	`+if ($ip = @(dns_get_record($host, \DNS_A)[0]['ip'] ??null)) {`
	`94`	`+$resolve($host,$ip);`
	`95`	`+ }elseif ($ip = @(dns_get_record($host, \DNS_AAAA)[0]['ipv6'] ??null)) {`
	`96`	`+$resolve($host,'['.$ip.']');`
	`97`	`+ }`
	`98`	`+ }`
`86`	`99`
`87`		`-if ($host && IpUtils::checkIp($host,$subnets ??self::PRIVATE_SUBNETS)) {`
	`100`	`+if ($ip && IpUtils::checkIp($ip,$subnets ??self::PRIVATE_SUBNETS)) {`
`88`	`101`	`thrownewTransportException(sprintf('Host "%s" is blocked for "%s".',$host,$info['url']));`
`89`	`102`	`}`
`90`	`103`

`‎src/Symfony/Component/HttpClient/Response/AmpResponse.php‎`

Lines changed: 9 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -89,10 +89,17 @@ public function __construct(AmpClientState $multi, Request $request, array $opti`
`89`	`89`	`$info['max_duration'] =$options['max_duration'];`
`90`	`90`	`$info['debug'] ='';`
`91`	`91`
	`92`	`+$resolve =staticfunction (string$host, ?string$ip =null)use ($multi): ?string {`
	`93`	`+if (null !==$ip) {`
	`94`	`+$multi->dnsCache[$host] =$ip;`
	`95`	`+ }`
	`96`	`+`
	`97`	`+return$multi->dnsCache[$host] ??null;`
	`98`	`+ };`
`92`	`99`	`$onProgress =$options['on_progress'] ??staticfunction () {};`
`93`		`-$onProgress =$this->onProgress =staticfunction ()use (&$info,$onProgress) {`
	`100`	`+$onProgress =$this->onProgress =staticfunction ()use (&$info,$onProgress,$resolve) {`
`94`	`101`	`$info['total_time'] =microtime(true) -$info['start_time'];`
`95`		`-$onProgress((int)$info['size_download'], ((int) (1 +$info['download_content_length']) ?:1) -1, (array)$info);`
	`102`	`+$onProgress((int)$info['size_download'], ((int) (1 +$info['download_content_length']) ?:1) -1, (array)$info,$resolve);`
`96`	`103`	`};`
`97`	`104`
`98`	`105`	`$pauseDeferred =newDeferred();`

`‎src/Symfony/Component/HttpClient/Response/AsyncContext.php‎`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -156,8 +156,8 @@ public function replaceRequest(string $method, string $url, array $options = [])`
`156`	`156`	`$this->info['previous_info'][] =$info =$this->response->getInfo();`
`157`	`157`	`if (null !==$onProgress =$options['on_progress'] ??null) {`
`158`	`158`	`$thisInfo = &$this->info;`
`159`		`-$options['on_progress'] =staticfunction (int$dlNow,int$dlSize,array$info)use (&$thisInfo,$onProgress) {`
`160`		`-$onProgress($dlNow,$dlSize,$thisInfo +$info);`
	`159`	`+$options['on_progress'] =staticfunction (int$dlNow,int$dlSize,array$info, ?\Closure$resolve =null)use (&$thisInfo,$onProgress) {`
	`160`	`+$onProgress($dlNow,$dlSize,$thisInfo +$info,$resolve);`
`161`	`161`	`};`
`162`	`162`	`}`
`163`	`163`	`if (0 < ($info['max_duration'] ??0) &&0 < ($info['total_time'] ??0)) {`

`‎src/Symfony/Component/HttpClient/Response/AsyncResponse.php‎`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -51,8 +51,8 @@ public function __construct(HttpClientInterface $client, string $method, string`
`51`	`51`
`52`	`52`	`if (null !==$onProgress =$options['on_progress'] ??null) {`
`53`	`53`	`$thisInfo = &$this->info;`
`54`		`-$options['on_progress'] =staticfunction (int$dlNow,int$dlSize,array$info)use (&$thisInfo,$onProgress) {`
`55`		`-$onProgress($dlNow,$dlSize,$thisInfo +$info);`
	`54`	`+$options['on_progress'] =staticfunction (int$dlNow,int$dlSize,array$info, ?\Closure$resolve =null)use (&$thisInfo,$onProgress) {`
	`55`	`+$onProgress($dlNow,$dlSize,$thisInfo +$info,$resolve);`
`56`	`56`	`};`
`57`	`57`	`}`
`58`	`58`	`$this->response =$client->request($method,$url, ['buffer' =>false] +$options);`

`‎src/Symfony/Component/HttpClient/Response/CurlResponse.php‎`

Lines changed: 9 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -115,13 +115,20 @@ public function __construct(CurlClientState $multi, $ch, ?array $options = null,`
`115`	`115`	`curl_pause($ch, \CURLPAUSE_CONT);`
`116`	`116`
`117`	`117`	`if ($onProgress =$options['on_progress']) {`
	`118`	`+$resolve =staticfunction (string$host, ?string$ip =null)use ($multi): ?string {`
	`119`	`+if (null !==$ip) {`
	`120`	`+$multi->dnsCache->hostnames[$host] =$ip;`
	`121`	`+ }`
	`122`	`+`
	`123`	`+return$multi->dnsCache->hostnames[$host] ??null;`
	`124`	`+ };`
`118`	`125`	`$url =isset($info['url']) ? ['url' =>$info['url']] : [];`
`119`	`126`	`curl_setopt($ch, \CURLOPT_NOPROGRESS,false);`
`120`		`-curl_setopt($ch, \CURLOPT_PROGRESSFUNCTION,staticfunction ($ch,$dlSize,$dlNow)use ($onProgress, &$info,$url,$multi,$debugBuffer) {`
	`127`	`+curl_setopt($ch, \CURLOPT_PROGRESSFUNCTION,staticfunction ($ch,$dlSize,$dlNow)use ($onProgress, &$info,$url,$multi,$debugBuffer,$resolve) {`
`121`	`128`	`try {`
`122`	`129`	`rewind($debugBuffer);`
`123`	`130`	`$debug = ['debug' =>stream_get_contents($debugBuffer)];`
`124`		`-$onProgress($dlNow,$dlSize,$url +curl_getinfo($ch) +$info +$debug);`
	`131`	`+$onProgress($dlNow,$dlSize,$url +curl_getinfo($ch) +$info +$debug,$resolve);`
`125`	`132`	`}catch (\Throwable$e) {`
`126`	`133`	`$multi->handlesActivity[(int)$ch][] =null;`
`127`	`134`	`$multi->handlesActivity[(int)$ch][] =$e;`

`‎src/Symfony/Component/HttpClient/Tests/HttpClientTestCase.php‎`

Lines changed: 23 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -16,6 +16,7 @@`
`16`	`16`	`useSymfony\Component\HttpClient\Exception\InvalidArgumentException;`
`17`	`17`	`useSymfony\Component\HttpClient\Exception\TransportException;`
`18`	`18`	`useSymfony\Component\HttpClient\Internal\ClientState;`
	`19`	`+useSymfony\Component\HttpClient\NoPrivateNetworkHttpClient;`
`19`	`20`	`useSymfony\Component\HttpClient\Response\StreamWrapper;`
`20`	`21`	`useSymfony\Component\Process\Exception\ProcessFailedException;`
`21`	`22`	`useSymfony\Component\Process\Process;`
`@@ -466,4 +467,26 @@ public function testMisspelledScheme()`
`466`	`467`
`467`	`468`	`$httpClient->request('GET','http:/localhost:8057/');`
`468`	`469`	`}`
	`470`	`+`
	`471`	`+publicfunctiontestNoPrivateNetwork()`
	`472`	`+ {`
	`473`	`+$client =$this->getHttpClient(__FUNCTION__);`
	`474`	`+$client =newNoPrivateNetworkHttpClient($client);`
	`475`	`+`
	`476`	`+$this->expectException(TransportException::class);`
	`477`	`+$this->expectExceptionMessage('Host "localhost" is blocked');`
	`478`	`+`
	`479`	`+$client->request('GET','http://localhost:8888');`
	`480`	`+ }`
	`481`	`+`
	`482`	`+publicfunctiontestNoPrivateNetworkWithResolve()`
	`483`	`+ {`
	`484`	`+$client =$this->getHttpClient(__FUNCTION__);`
	`485`	`+$client =newNoPrivateNetworkHttpClient($client);`
	`486`	`+`
	`487`	`+$this->expectException(TransportException::class);`
	`488`	`+$this->expectExceptionMessage('Host "symfony.com" is blocked');`
	`489`	`+`
	`490`	`+$client->request('GET','http://symfony.com', ['resolve' => ['symfony.com' =>'127.0.0.1']]);`
	`491`	`+ }`
`469`	`492`	`}`

`‎src/Symfony/Component/HttpClient/Tests/MockHttpClientTest.php‎`

Lines changed: 4 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -304,14 +304,17 @@ protected function getHttpClient(string $testCase): HttpClientInterface`
`304`	`304`
`305`	`305`	`switch ($testCase) {`
`306`	`306`	`default:`
`307`		`-returnnewMockHttpClient(function (string$method,string$url,array$options)use ($client) {`
	`307`	`+returnnewMockHttpClient(function (string$method,string$url,array$options)use ($client,$testCase) {`
`308`	`308`	`try {`
`309`	`309`	`// force the request to be completed so that we don't test side effects of the transport`
`310`	`310`	`$response =$client->request($method,$url, ['buffer' =>false] +$options);`
`311`	`311`	`$content =$response->getContent(false);`
`312`	`312`
`313`	`313`	`returnnewMockResponse($content,$response->getInfo());`
`314`	`314`	`}catch (\Throwable$e) {`
	`315`	`+if (str_starts_with($testCase,'testNoPrivateNetwork')) {`
	`316`	`+throw$e;`
	`317`	`+ }`
`315`	`318`	`$this->fail($e->getMessage());`
`316`	`319`	`}`
`317`	`320`	`});`

`‎src/Symfony/Component/HttpClient/TraceableHttpClient.php‎`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -58,11 +58,11 @@ public function request(string $method, string $url, array $options = []): Respo`
`58`	`58`	`$content =false;`
`59`	`59`	`}`
`60`	`60`
`61`		`-$options['on_progress'] =function (int$dlNow,int$dlSize,array$info)use (&$traceInfo,$onProgress) {`
	`61`	`+$options['on_progress'] =function (int$dlNow,int$dlSize,array$info, ?\Closure$resolve =null)use (&$traceInfo,$onProgress) {`
`62`	`62`	`$traceInfo =$info;`
`63`	`63`
`64`	`64`	`if (null !==$onProgress) {`
`65`		`-$onProgress($dlNow,$dlSize,$info);`
	`65`	`+$onProgress($dlNow,$dlSize,$info,$resolve);`
`66`	`66`	`}`
`67`	`67`	`};`
`68`	`68`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Commitb8f4116

File tree

11 files changed

11 files changed

`‎src/Symfony/Component/HttpClient/HttpOptions.php‎`

`‎src/Symfony/Component/HttpClient/NativeHttpClient.php‎`

`‎src/Symfony/Component/HttpClient/NoPrivateNetworkHttpClient.php‎`

`‎src/Symfony/Component/HttpClient/Response/AmpResponse.php‎`

`‎src/Symfony/Component/HttpClient/Response/AsyncContext.php‎`

`‎src/Symfony/Component/HttpClient/Response/AsyncResponse.php‎`

`‎src/Symfony/Component/HttpClient/Response/CurlResponse.php‎`

`‎src/Symfony/Component/HttpClient/Tests/HttpClientTestCase.php‎`

`‎src/Symfony/Component/HttpClient/Tests/MockHttpClientTest.php‎`

`‎src/Symfony/Component/HttpClient/TraceableHttpClient.php‎`

0 commit comments