Merge pull request #18 from retr0reg/main

Security Enhancements in URL Handling
2025-01-20 03:36:30 +00:00 · 2024-03-10 13:34:06 +01:00 · 2024-03-10 13:34:06 +01:00 · 7e3757148a
commit 7e3757148a
parent 0bbd14e6a2 131d76cb36
1 changed files with 19 additions and 0 deletions
--- a/lollms/security.py
+++ b/lollms/security.py
@ -1,10 +1,13 @@
 from fastapi import HTTPException
 from ascii_colors import ASCIIColors
+from urllib.parse import urlparse
+import socket
 from pathlib import Path
 from typing import List
 import os
 import re

+
 def sanitize_path(path:str, allow_absolute_path:bool=False, error_text="Absolute database path detected", exception_text="Detected an attempt of path traversal. Are you kidding me?"):
    if path is None:
        return path
@ -58,6 +61,22 @@ def validate_path(path, allowed_paths:List[str|Path]):
    # If the path is not within any of the allowed paths, return False
    return False

+def is_allowed_url(url):
+    # Check if url is legit
+    parsed_url = urlparse(url)        
+    # Check if scheme is not http or https, return False
+    if parsed_url.scheme not in ['http', 'https']:
+        return False
+    
+    hostname = parsed_url.hostname
+    
+    try:
+        ip_address = socket.gethostbyname(hostname)
+    except socket.gaierror:
+        return False
+    
+    return not ip_address.startswith('127.') or ip_address.startswith('192.168.') or ip_address.startswith('10.') or ip_address.startswith('172.')
+

 if __name__=="__main__":
    sanitize_path_from_endpoint("main")