Salastil/odysseus
1
0
Fork 0
mirror of https://github.com/pewdiepie-archdaemon/odysseus.git synced 2026-06-28 23:52:09 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
e018c7cf6cf5e14035d7862442adfa3439f5e8ea
odysseus/tests/test_gallery_endpoint_ssrf.py
T
Tal.Yuan 8066a8e0cd refactor(routes): move gallery domain into routes/gallery subpackage (#4903) 
Move the gallery route domain into routes/gallery/ while preserving backward-compatible legacy import shims.

- app imports the canonical gallery route module
- canonical gallery route code imports canonical gallery helpers
- legacy gallery route/helper paths remain compatibility aliases
- add shim regression coverage for module identity and monkeypatch behavior
- repoint gallery source-introspection tests to the canonical paths

No intended behavior change.
2026-06-28 10:40:34 +01:00

45 lines
1.9 KiB
Python
Raw Blame History

"""Regression: the gallery image-edit proxies must validate a client-supplied
``_endpoint`` through ``check_outbound_url`` before fetching it server-side.
``POST /api/image/harmonize`` and ``POST /api/image/inpaint`` accept an
``_endpoint`` field in the request body and then issue outbound httpx POSTs to
it. With no validation this is a server-side request forgery primitive: a caller
can point ``_endpoint`` at ``http://169.254.169.254/`` (cloud instance metadata)
or at internal/loopback services the server can reach but the caller cannot.
The analogous user-supplied endpoint in ``routes/embedding_routes.py`` already
goes through ``check_outbound_url``; these two routes were missing the same
guard. This test pins the guard in place and confirms the validator rejects the
metadata range.
"""
import ast
from pathlib import Path
SRC = Path(__file__).resolve().parent.parent / "routes" / "gallery" / "gallery_routes.py"
def _function_source(src_text: str, func_name: str) -> str:
tree = ast.parse(src_text)
for node in ast.walk(tree):
if isinstance(node, (ast.FunctionDef, ast.AsyncFunctionDef)) and node.name == func_name:
return ast.get_source_segment(src_text, node)
raise AssertionError(f"{func_name} not found in {SRC}")
def test_endpoint_validated_before_fetch():
src = SRC.read_text()
for func in ("harmonize_image", "inpaint_proxy"):
body = _function_source(src, func)
assert "check_outbound_url" in body, (
f"{func} must validate the client-supplied _endpoint via "
"check_outbound_url before issuing an outbound request"
)
def test_url_safety_blocks_metadata_endpoint():
# The guard is only as strong as the checker: confirm the link-local cloud
# metadata address is rejected even with private IPs otherwise allowed.
from src.url_safety import check_outbound_url
ok, _ = check_outbound_url("http://169.254.169.254/latest/meta-data")
assert ok is False
Reference in New Issue View Git Blame Copy Permalink