Use `hostmatcher` to replace `matchlist`, improve security (#17605)

Use hostmacher to replace matchlist. And we introduce a better DialContext to do a full host/IP check, otherwise the attackers can still bypass the allow/block list by a 302 redirection.
author: wxiaoguang <wxiaoguang@gmail.com> 2021-11-20 17:34:05 +0800
committer: GitHub <noreply@github.com> 2021-11-20 17:34:05 +0800
commit: 013fb73068281b45b33c72abaae0c42c8d79c499 (patch)
tree: 5cb710ea15a6f471648ecf19e2fdfab9804cb084 /models
parent: c96be0cd982255f20a3fe6ff4683115b8073e65e (diff)
download: gitea-013fb73068281b45b33c72abaae0c42c8d79c499.tar.gz
gitea-013fb73068281b45b33c72abaae0c42c8d79c499.zip
1 files changed, 0 insertions, 4 deletions
diff --git a/models/error.go b/models/error.go
index 862b5633ec..d0691c1c69 100644
--- a/models/error.go
+++ b/models/error.go
@@ -797,7 +797,6 @@ type ErrInvalidCloneAddr struct {
 	IsPermissionDenied bool
 	LocalPath          bool
 	NotResolvedIP      bool
-	PrivateNet         string
 }
 
 // IsErrInvalidCloneAddr checks if an error is a ErrInvalidCloneAddr.
@@ -810,9 +809,6 @@ func (err *ErrInvalidCloneAddr) Error() string {
 	if err.NotResolvedIP {
 		return fmt.Sprintf("migration/cloning from '%s' is not allowed: unknown hostname", err.Host)
 	}
-	if len(err.PrivateNet) != 0 {
-		return fmt.Sprintf("migration/cloning from '%s' is not allowed: the host resolve to a private ip address '%s'", err.Host, err.PrivateNet)
-	}
 	if err.IsInvalidPath {
 		return fmt.Sprintf("migration/cloning from '%s' is not allowed: the provided path is invalid", err.Host)
 	}
author	wxiaoguang <wxiaoguang@gmail.com>	2021-11-20 17:34:05 +0800
committer	GitHub <noreply@github.com>	2021-11-20 17:34:05 +0800
commit	013fb73068281b45b33c72abaae0c42c8d79c499 (patch)
tree	5cb710ea15a6f471648ecf19e2fdfab9804cb084 /models
parent	c96be0cd982255f20a3fe6ff4683115b8073e65e (diff)
download	gitea-013fb73068281b45b33c72abaae0c42c8d79c499.tar.gz gitea-013fb73068281b45b33c72abaae0c42c8d79c499.zip