feat: validate url

msslulu · msslulu · commit 222c5729877d · 2026-04-29T06:38:49.000-07:00
diff --git a/base/src/main/java/com/tinyengine/it/mcp/tools/GitFileReaderService.java b/base/src/main/java/com/tinyengine/it/mcp/tools/GitFileReaderService.java
@@ -8,6 +8,7 @@
 import com.tinyengine.it.common.utils.JsonUtils;
 import com.tinyengine.it.mapper.ComponentLibraryMapper;
 import com.tinyengine.it.mapper.ComponentMapper;
+import com.tinyengine.it.mcp.utils.UrlValidateUtil;
 import com.tinyengine.it.model.dto.*;
 import com.tinyengine.it.model.entity.Component;
 import com.tinyengine.it.model.entity.ComponentLibrary;
@@ -36,10 +37,13 @@
 import java.time.LocalDateTime;
 import java.util.*;
 
-
+/**
+ * GitFileReaderService
+ */
 @Service
 public class GitFileReaderService {
 
+
 	private static final Logger log = LoggerFactory.getLogger(GitFileReaderService.class);
 
 	private static final int CONNECT_TIMEOUT = 30000;
@@ -48,11 +52,20 @@ public class GitFileReaderService {
 	private  ComponentLibraryMapper componentLibraryMapper;
 	@Autowired
 	private ComponentMapper baseMapper;
+	@Autowired
+	private UrlValidateUtil urlValidateUtil;
 
+	/**
+	 * Reads the content of a file from a given URL, validates its JSON structure,
+	 * and processes the data to create or update components and component libraries.
+	 *
+	 * @param url The URL of the file to be read.
+	 * @return A JSON string representing the result of the operation, or an error message if the process fails.
+	 */
 	@Tool(name="bundle_create",description = "给定的 文件URL 读取内容.")
 	public String readFileFromRepo(String url) {
 		try {
-
+			urlValidateUtil.validateFinalUrl(url);
 			log.info("准备从  URL  {} 中读取文件内容", url);
 
 			//1.从给定的  URL 读取内容
@@ -67,13 +80,12 @@ public String readFileFromRepo(String url) {
 			}
 			String fileName = Path.of(path).getFileName().toString();
 			String jsonContent = new String(fileBytes, StandardCharsets.UTF_8);
-			boolean validJson = isValidJson(jsonContent);
+			String jsonString = removeBOM(jsonContent);
+			boolean validJson = isValidJson(jsonString);
 			if(!validJson) {
-				log.error("从 URL  {} 中读取的内容不是有效的 JSON: {}", url, jsonContent);
+				log.error("从 URL  {} 中读取的内容不是有效的 JSON: {}", url, jsonString);
 				return "Error: 读取的内容不是有效的 JSON";
 			}
-
-			String jsonString = removeBOM(jsonContent);
 			Map<String, Object> jsonData =
 				JsonUtils.MAPPER.readValue(jsonString, new TypeReference<Map<String, Object>>() {
 				});
@@ -89,6 +101,9 @@ public String readFileFromRepo(String url) {
 				data = (Map<String, Object>) dataObj;
 			}
 			BundleDto bundleDto = BeanUtil.mapToBean(data, BundleDto.class, true);
+			if(bundleDto == null || bundleDto.getMaterials() == null) {
+				throw new Exception("bundle.json 解析失败，缺少 materials 字段");
+			}
 			Result<BundleResultDto> bundleResultDtoResult = parseBundle(bundleDto);
 			log.info("从 URL  {} 中读取文件 '{}' 的内容并解析完成", url, path);
 			log.info("组件列表: {}", bundleResultDtoResult.getData().getComponentList());
@@ -303,12 +318,14 @@ private List<Component> buildComponentList(BundleDto bundleDto, List<Map<String,
 	}
 
 	public Result<BundleResultDto> parseBundle(BundleDto bundleDto) {
+
 		List<Map<String, Object>> components = bundleDto.getMaterials().getComponents();
-		List<Child> snippets = bundleDto.getMaterials().getSnippets();
 
 		if (components == null || components.isEmpty()) {
 			return Result.failed(ExceptionEnum.CM009);
 		}
+		List<Child> snippets = bundleDto.getMaterials().getSnippets();
+
 		List<Component> componentList = buildComponentList(bundleDto, components, snippets);
 		List<Map<String, Object>> packages = bundleDto.getMaterials().getPackages();
 
diff --git a/base/src/main/java/com/tinyengine/it/mcp/utils/UrlValidateUtil.java b/base/src/main/java/com/tinyengine/it/mcp/utils/UrlValidateUtil.java
@@ -0,0 +1,148 @@
+package com.tinyengine.it.mcp.utils;
+
+import com.tinyengine.it.common.exception.ServiceException;
+import com.tinyengine.it.config.OpenAIConfig;
+import org.springframework.stereotype.Component;
+
+import java.net.*;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Set;
+@Component
+public class UrlValidateUtil {
+	private static final Set<String> LOOPBACK_HOSTS = Set.of("localhost", "127.0.0.1", "::1", "[::1]");
+	private final OpenAIConfig config;
+
+	public UrlValidateUtil(OpenAIConfig config) {
+		this.config = config;
+	}
+
+
+	public void validateFinalUrl(String finalUrl) {
+		URI uri;
+		try {
+			uri = new URI(finalUrl);
+		} catch (URISyntaxException e) {
+			throw new ServiceException("400", "Invalid baseUrl format");
+		}
+
+		String host = uri.getHost();
+		if (host == null || host.isEmpty()) {
+			throw new ServiceException("400", "Invalid baseUrl: missing host");
+		}
+
+		boolean isLoopback = LOOPBACK_HOSTS.contains(host.toLowerCase());
+
+		List<String> allowedHosts = config.getAllowedHosts();
+
+		if (allowedHosts == null || allowedHosts.isEmpty()) {
+			if (!config.isAllowAnyHost()) {
+				throw new ServiceException("500", "No AI allowed hosts configured");
+			}
+
+			enforceHttpsAndIpCheck(uri, host);
+			return;
+		}
+
+		boolean matched = allowedHosts.stream()
+			.anyMatch(allowed -> allowed.equalsIgnoreCase(host));
+		if (!matched) {
+			throw new ServiceException("400",
+				"Host not allowed: " + host + ". Allowed hosts: " + allowedHosts);
+		}
+
+		if (isLoopback) {
+			return;
+		}
+
+		enforceHttpsAndIpCheck(uri, host);
+	}
+
+	void enforceHttpsAndIpCheck(URI uri, String host) {
+		String scheme = uri.getScheme();
+		if (scheme == null || !"https".equalsIgnoreCase(scheme)) {
+			throw new ServiceException("400", "Only HTTPS protocol is allowed for custom baseUrl");
+		}
+
+		try {
+			InetAddress[] addresses = resolveHostAddresses(host);
+			boolean hasBlockedAddress = Arrays.stream(addresses).anyMatch(this::isBlockedAddress);
+			if (hasBlockedAddress) {
+				throw new ServiceException("400", "Internal network addresses are not allowed");
+			}
+		} catch (UnknownHostException e) {
+			throw new ServiceException("400", "Unable to resolve host: " + host);
+		}
+	}
+
+	InetAddress[] resolveHostAddresses(String host) throws UnknownHostException {
+		return InetAddress.getAllByName(host);
+	}
+
+	boolean isBlockedAddress(InetAddress address) {
+		if (address.isLoopbackAddress()
+			|| address.isSiteLocalAddress()
+			|| address.isLinkLocalAddress()
+			|| address.isAnyLocalAddress()
+			|| address.isMulticastAddress()) {
+			return true;
+		}
+
+		if (address instanceof Inet4Address) {
+			return isBlockedIpv4((Inet4Address) address);
+		}
+		if (address instanceof Inet6Address) {
+			return isBlockedIpv6((Inet6Address) address);
+		}
+		return false;
+	}
+
+	private boolean isBlockedIpv4(Inet4Address address) {
+		byte[] octets = address.getAddress();
+		int first = octets[0] & 0xFF;
+		int second = octets[1] & 0xFF;
+		int third = octets[2] & 0xFF;
+
+		if (first == 0) {
+			return true;
+		}
+		if (first == 100 && second >= 64 && second <= 127) {
+			return true;
+		}
+		if (first == 192 && second == 0 && third == 0) {
+			return true;
+		}
+		if (first == 192 && second == 0 && third == 2) {
+			return true;
+		}
+		if (first == 198 && (second == 18 || second == 19)) {
+			return true;
+		}
+		if (first == 198 && second == 51 && third == 100) {
+			return true;
+		}
+		if (first == 203 && second == 0 && third == 113) {
+			return true;
+		}
+		return first >= 240;
+	}
+
+	private boolean isBlockedIpv6(Inet6Address address) {
+		byte[] octets = address.getAddress();
+		int first = octets[0] & 0xFF;
+		int second = octets[1] & 0xFF;
+
+		if ((first & 0xFE) == 0xFC) {
+			return true;
+		}
+		if (first == 0x20 && second == 0x01) {
+			int third = octets[2] & 0xFF;
+			int fourth = octets[3] & 0xFF;
+			if (third == 0x0D && fourth == 0xB8) {
+				return true;
+			}
+		}
+		return first == 0xFF;
+	}
+
+}
