Slop/activitypub-federation-rust
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add to_canonical() for ip check (#160)

Browse source
This commit is contained in:
Nutomic 2026-02-04 11:05:59 +00:00 committed by GitHub
parent 11f95ff384
commit f60afae428
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 4 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
src/config.rs
View file

@ -187,10 +187,12 @@ impl<T: Clone> FederationConfig<T> {
// Resolve domain and see if it points to private IP
// TODO: Use is_global() once stabilized
// https://doc.rust-lang.org/std/net/enum.IpAddr.html#method.is_global
let mut ips = lookup_host((domain.to_owned(), 80)).await?;
let mut ips = lookup_host((domain.to_owned(), 80))
.await?
.map(|s| s.ip().to_canonical());
let allow_local = std::env::var("DANGER_FEDERATION_ALLOW_LOCAL_IP").is_ok();
let invalid_ip = !allow_local
&& ips.any(|addr| match addr.ip() {
&& ips.any(|ip| match ip {
IpAddr::V4(addr) => {
addr.is_private()
|| addr.is_link_local()