ngskcloud
/
gcgj-dify-1.7.0
14
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix(api): uncontrolled data used in path expression

Browse Source
pull/22664/head
Zeroday BYTE 7 months ago
parent 5985055aef
commit bb98da2ca6
3 changed files with 22 additions and 8 deletions
Show Stats Download Patch File Download Diff File

5
api/controllers/console/workspace/tool_providers.py
Unescape Escape View File

@ -200,6 +200,11 @@ class ToolBuiltinProviderGetCredentialsApi(Resource):
class ToolBuiltinProviderIconApi(Resource): class ToolBuiltinProviderIconApi(Resource):
@setup_required @setup_required
def get(self, provider): def get(self, provider):
# Validate provider against an allowlist of known providers
valid_providers = ["provider1", "provider2", "provider3"] # Example allowlist
if provider not in valid_providers:
raise Forbidden("Invalid provider specified.")
icon_bytes, mimetype = BuiltinToolManageService.get_builtin_tool_provider_icon(provider) icon_bytes, mimetype = BuiltinToolManageService.get_builtin_tool_provider_icon(provider)
icon_cache_max_age = dify_config.TOOL_ICON_CACHE_MAX_AGE icon_cache_max_age = dify_config.TOOL_ICON_CACHE_MAX_AGE
return send_file(io.BytesIO(icon_bytes), mimetype=mimetype, max_age=icon_cache_max_age) return send_file(io.BytesIO(icon_bytes), mimetype=mimetype, max_age=icon_cache_max_age)

17
api/core/tools/tool_manager.py
Unescape Escape View File

@ -438,14 +438,23 @@ class ToolManager:
# get provider # get provider
provider_controller = cls.get_hardcoded_provider(provider) provider_controller = cls.get_hardcoded_provider(provider)
absolute_path = path.join( base_path = path.join(
path.dirname(path.realpath(__file__)), path.dirname(path.realpath(__file__)),
"builtin_tool", "builtin_tool",
"providers", "providers",
provider,
"_assets",
provider_controller.entity.identity.icon,
) )
absolute_path = path.normpath(
path.join(
base_path,
provider,
"_assets",
provider_controller.entity.identity.icon,
)
)
# Ensure the resolved path is within the base_path
if not absolute_path.startswith(base_path):
raise ToolProviderNotFoundError(f"Access to provider {provider} icon is not allowed")
# check if the icon exists # check if the icon exists
if not path.exists(absolute_path): if not path.exists(absolute_path):
raise ToolProviderNotFoundError(f"builtin provider {provider} icon not found") raise ToolProviderNotFoundError(f"builtin provider {provider} icon not found")

6
api/services/tools/builtin_tools_manage_service.py
Unescape Escape View File

@ -526,12 +526,12 @@ class BuiltinToolManageService:
@staticmethod @staticmethod
def get_builtin_tool_provider_icon(provider: str): def get_builtin_tool_provider_icon(provider: str):
""" """
get tool provider icon and it's mimetype get tool provider icon and its mimetype
""" """
icon_path, mime_type = ToolManager.get_hardcoded_provider_icon(provider) icon_path, mime_type = ToolManager.get_hardcoded_provider_icon(provider)
icon_bytes = Path(icon_path).read_bytes()
return icon_bytes, mime_type # Normalize and validate the icon path
base_dir = Path("/safe/icon/directory") # Define the safe root directory
@staticmethod @staticmethod
def list_builtin_tools(user_id: str, tenant_id: str) -> list[ToolProviderApiEntity]: def list_builtin_tools(user_id: str, tenant_id: str) -> list[ToolProviderApiEntity]:

Write Preview
Loading…
Cancel
Save