imports/architectury-loom
1
0
Fork 0
mirror of https://github.com/architectury/architectury-loom.git synced 2026-04-02 21:47:42 -05:00
Code Issues Packages Projects Releases Wiki Activity

Disallow insecure protocols for downloads. (#784)

Browse Source
This commit is contained in:
modmuss50
2023-01-03 14:11:16 +00:00
committed by GitHub
parent 69d25b7f60
commit 912e54cd7a
4 changed files with 37 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
src/main/java/net/fabricmc/loom/util/download/DownloadBuilder.java
View File

@@ -45,6 +45,7 @@ public class DownloadBuilder {
private Duration maxAge = Duration.ZERO;
private DownloadProgressListener progressListener = DownloadProgressListener.NONE;
private int maxRetries = 3;
private boolean allowInsecureProtocol = false;
private DownloadBuilder(URI url) {
this.url = url;
@@ -94,7 +95,16 @@ public class DownloadBuilder {
return maxAge(ONE_DAY);
}
public DownloadBuilder allowInsecureProtocol() {
this.allowInsecureProtocol = true;
return this;
}
private Download build() {
if (!allowInsecureProtocol && !isSecureUrl(url)) {
throw new IllegalArgumentException("Cannot create download for url (%s) with insecure protocol".formatted(url.toString()));
}
return new Download(this.url, this.expectedHash, this.useEtag, this.forceDownload, this.offline, maxAge, progressListener);
}
@@ -145,6 +155,16 @@ public class DownloadBuilder {
throw new IllegalStateException();
}
// See comment on org.gradle.util.internal.GUtil.isSecureUrl
private static boolean isSecureUrl(URI url) {
if ("127.0.0.1".equals(url.getHost())) {
return true;
}
final String scheme = url.getScheme();
return !"http".equalsIgnoreCase(scheme);
}
@FunctionalInterface
private interface DownloadSupplier<T> {
T get() throws DownloadException;