mirror/gitea
1
0
Fork 0
mirror of https://github.com/go-gitea/gitea.git synced 2024-05-11 05:55:29 +00:00
Code Issues Projects Releases Wiki Activity

Use hostmatcher to replace matchlist, improve security (#17605)

Browse Source 
Use hostmacher to replace matchlist.

And we introduce a better DialContext to do a full host/IP check, otherwise the attackers can still bypass the allow/block list by a 302 redirection.
This commit is contained in:
wxiaoguang
2021-11-20 17:34:05 +08:00
committed by GitHub
parent c96be0cd98
commit 013fb73068
33 changed files with 377 additions and 293 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
modules/lfs/client.go
View File

@ -7,6 +7,7 @@ package lfs
import (
"context"
"io"
"net/http"
"net/url"
)
@ -24,9 +25,9 @@ type Client interface {
}
// NewClient creates a LFS client
func NewClient(endpoint *url.URL, skipTLSVerify bool) Client {
func NewClient(endpoint *url.URL, httpTransport *http.Transport) Client {
if endpoint.Scheme == "file" {
return newFilesystemClient(endpoint)
}
return newHTTPClient(endpoint, skipTLSVerify)
return newHTTPClient(endpoint, httpTransport)
}