From 7a1a1b4bdad94b9f506ae1590f7b71a155907c0f Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=C5=A0t=C4=9Bp=C3=A1n=20Tomsa?= Date: Fri, 3 Jan 2025 13:24:40 +0100 Subject: [PATCH] feat: Validate URLs MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit urlparse from Python stdlib doesn’t fail on an invalid URL. parse_url from urllib3 used by requests does though. Invalid base URL or proxy URL raises thus an uncaught exception. --- insights/client/connection.py | 42 +++++++++++++++++++++++++++-------- 1 file changed, 33 insertions(+), 9 deletions(-) diff --git a/insights/client/connection.py b/insights/client/connection.py index e878e6231..c87f5c415 100644 --- a/insights/client/connection.py +++ b/insights/client/connection.py @@ -4,6 +4,7 @@ from __future__ import print_function from __future__ import absolute_import import requests +import urllib3 import socket import os import six @@ -479,9 +480,15 @@ def _test_auth_config(self): return not errors - def _dump_urls(self): - base_parsed = urlparse(self.base_url) - if base_parsed.hostname.endswith("stage.redhat.com"): + def _test_url_config(self): + try: + base_parsed = urllib3.util.url.parse_url(self.base_url) + except urllib3.exceptions.LocationParseError: + base_parsed = None + + if not base_parsed: + hostname_desc = "invalid URL" + elif base_parsed.hostname.endswith("stage.redhat.com"): hostname_desc = "Red Hat Insights (staging)" elif base_parsed.hostname.endswith("redhat.com"): if self.config.verbose: @@ -499,14 +506,32 @@ def _dump_urls(self): logger.info(" Ping URL: %s", self.ping_url) + invalid_proxies = {} if self.proxies: for proxy_type, proxy_url in self.proxies.items(): - logger.info(" %s proxy: %s", proxy_type.upper(), proxy_url) + try: + urllib3.util.url.parse_url(proxy_url) + except urllib3.exceptions.LocationParseError: + invalid_proxies[proxy_type] = proxy_url + proxy_desc = " (invalid)" if proxy_type in invalid_proxies else "" + logger.info(" %s proxy: %s%s", proxy_type.upper(), proxy_url, proxy_desc) else: logger.info(" Proxy: not set") logger.info("") + if not base_parsed or invalid_proxies: + if not base_parsed: + logger.error("Invalid base URL: %s", self.base_url) + + for proxy_type, proxy_url in invalid_proxies.items(): + logger.error("Invalid %s proxy: %s", proxy_type.upper(), proxy_url) + + logger.error("") + return False + + return True + def _test_connection(self, url): parsed_url = urlparse(url) logger.error(" Could not resolve %s.", parsed_url.hostname) @@ -534,11 +559,10 @@ def test_connection(self, rc=0): """ Test connection to Red Hat """ - auth_config_ok = self._test_auth_config() - if not auth_config_ok: - return 1 - - self._dump_urls() + for config_test in [self._test_auth_config, self._test_url_config]: + config_ok = config_test() + if not config_ok: + return 1 logger.info("Running Connection Tests...") logger.info("")