Skip to content
代码片段 群组 项目
选择Git版本
  • master 受保护
  • 17-8-stable-ee 受保护
  • 17-9-stable-ee 受保护
  • 17-7-stable-ee 受保护
  • 17-10-stable-ee 受保护
  • task-17
  • fix-epic-milestone-settings-graphql
  • main-jh 默认 受保护
  • pre-main-jh 受保护
  • fix/epic-milestone-setting-feature-is-broken
  • 17-10-stable-jh-prepare
  • 4745-developerquan-xian-yong-hu-chuang-jian-bao-hu-fen-zhi-xu-qiu
  • fix-pre-main-jh-pipeline-2025-03-14
  • 17-9-stable-jh 受保护
  • 17-8-stable-jh 受保护
  • 17-7-stable-jh 受保护
  • 17-5-stable-ee 受保护
  • try-to-fix-workhorse-test
  • test-for-17-9-jh
  • 17-6-stable-ee 受保护
  • test-zhiyuan 受保护
  • v17.10.0-ee 受保护
  • v17.10.0-rc42-ee 受保护
  • v17.9.2-jh 受保护
  • v17.8.5-jh 受保护
  • v17.7.7-jh 受保护
  • v17.7.7-ee 受保护
  • v17.8.5-ee 受保护
  • v17.9.2-ee 受保护
  • v17.9.1-jh 受保护
  • v17.8.4-jh 受保护
  • v17.7.6-jh 受保护
  • v17.7.6-ee 受保护
  • v17.8.4-ee 受保护
  • v17.9.1-ee 受保护
  • v17.9.0-jh 受保护
  • v17.9.0-jh-test 受保护
  • v17.7.5-jh 受保护
  • v17.8.3-jh 受保护
  • v17.8.3-ee 受保护
40 个结果
按作者搜索
  • 任何作者
  • Ai Dai Ai Dai Ai-Dai
  • Alex Ju Alex Ju alexju
  • Baodong Baodong icbd
  • Chenglin Tian Chenglin Tian cltian
  • CodeRider Agent CodeRider Agent CODERIDER_AGENT
  • **** project_13953_bot_df982ce93895e0e366a34e2e3858940e
  • Daheng Gao Daheng
  • Engineer@GitLab gitlab-eng
  • Ethan zhang Ethan zhang Ethan
  • Gavin Wang Gavin Wang gavin
  • GitLab CN Bot GitLab CN Bot gitlab-cn-bot
  • GitLab Qa-bot GitLab Qa-bot gitlab-qa
  • Helencsc Deng Helencsc Deng Helencsc
  • **** project_13953_bot_555a187ee866adfe24ab4ea2989f0344
  • JeeJee Kwan JeeJee Kwan jeejeekwan
  • Jett Liu Jett Liu JettLiu
  • JiHu Release Tools Bot JiHu Release Tools Bot jihu-release-tools-bot
  • Jiahong Deng Jiahong Deng dexterdeng
  • Jiaxin Qi Jiaxin Qi chih
  • JihuLab Reporter jihulab-com-reporter
20 名作者
该项目从 https://gitlab.com/gitlab-org/gitlab.git 镜像。 拉取镜像更新于
  1. 3月 09, 2021
  3. 3月 05, 2021
  5. 3月 03, 2021
  7. 3月 02, 2021
  9. 2月 17, 2021
  11. 2月 16, 2021
  13. 2月 10, 2021
  15. 1月 21, 2021
  17. 1月 19, 2021
  19. 1月 11, 2021
  21. 1月 06, 2021
  23. 12月 09, 2020
  25. 11月 27, 2020
  27. 11月 26, 2020
  29. 11月 20, 2020
  31. 11月 13, 2020
  33. 11月 03, 2020
  35. 10月 22, 2020
  37. 10月 15, 2020
  39. 10月 02, 2020
  41. 10月 01, 2020
  43. 9月 28, 2020
  45. 9月 21, 2020
  47. 9月 05, 2020
  49. 9月 03, 2020
  51. 9月 01, 2020
  53. 8月 21, 2020
  55. 8月 20, 2020
  57. 8月 13, 2020
  59. 8月 11, 2020
  61. 7月 16, 2020
  63. 6月 18, 2020
  65. 6月 04, 2020
  67. 6月 02, 2020
  69. 5月 28, 2020
  71. 5月 26, 2020
  73. 5月 22, 2020
  75. 5月 08, 2020
  77. 4月 11, 2020
    • Stan Hu's avatar
      Prevent filename bypass on artifact upload · 96857bf2
      Stan Hu 创作于 
      The attack is outlined in
https://gitlab.com/gitlab-org/gitlab/-/issues/213139. It exploits the
fact that the artifacts endpoint reads `file.path` directly using
`UploadedFile.from_params`.

`file.path` can be given by the user and pass through workhorse. As
such, it's an untrusted source and could contain the path of any file in
`Dir.tmpdir`. This results in creating a `Ci::JobArtifact` pointing to
an arbitrary temporary file.

To counter this, this commit relies on the fact that the upload endpoint
deals with a multipart upload. This type of uploads are handled by
`Gitlab::Middleware::Multipart` which will read the upload file from a
trusted source (the workhorse JWT token) and build a `UploadedFile`
object out of it. Thus, in the Grape endpoint, we can simply read the
param directly and validate that it's an `UploadedFile`.
      96857bf2
  79. 4月 06, 2020