[NXDRIVE-1766] Fix extensions local server to listen on localhost - Nuxeo Issue Tracker

XML

Word

Printable

Details

Type: Bug
Status: Resolved
Priority: Minor
Resolution: Fixed
Affects Version/s: 4.1.0
Fix Version/s: 4.1.4
Component/s: OS Integration

Tags:
- Security
- SupCom
- nxDrive
Backlog priority:
300
Sprint:
nxDrive 11.1.15
Story Points:
1

Description

Issue

It is currently listening on 0.0.0.0, which is bad as it opens the computer to external attacks.

The current implementation is:

self.host = "localhost"
self.port = 10650
# ...
self.listen(QHostAddress(self.host), self.port)

And it turns out that QHostAddress does not do any DNS lookup:

>>> from PyQt5.QtNetwork import QHostAddress
>>> QHostAddress("localhost").toString()
''
>>> QHostAddress("localhost").toIPv4Address()
0

>>> a = QHostAddress()
>>> a.setAddress("localhost")
False
>>> a.setAddress("127.0.0.1")
True

So Qt listens on any interfaces by default, 0.0.0.0.

Fix

Resolve the address first:

>>> from PyQt5.QtNetwork import QHostInfo
>>> info = QHostInfo().fromName("localhost")
>>> for a in info.addresses():
...     print(a.toString())
... 
127.0.0.1
::1

And use the IPv4 by default.

Attachments

Issue Links

is caused by

NXDRIVE-1467 Implement FS decorator on Windows

Resolved

is related to

NXDRIVE-2408 [macOS] Cannot start the extensions server

Open

Activity

People

Assignee:

Mickaël Schoentgen

Reporter:

Mickaël Schoentgen

Participants:

Jenkins, Mickaël Schoentgen

Votes:

0 Vote for this issue

Watchers:

2 Start watching this issue

Dates

Created:

2019-07-15 16:04

Updated:

2020-11-26 11:24

Resolved:

2019-08-01 13:13

Time Tracking

Estimated:

Not Specified

Remaining:

Logged: