Always resolve localhost to loopback address

This always resolves "localhost" to a loopback address which has security benefits such as preventing a malicious dns server redirecting local connections and allows software to assume it is a secure hostname. This is being adopted by web browsers: - https://w3c.github.io/webappsec-secure-contexts/ - https://groups.google.com/a/chromium.org/forum/#!msg/blink-dev/RC9dSw-O3fE/E3_0XaT0BAAJ - 8da2a80724 - https://bugs.webkit.org/show_bug.cgi?id=171934 - https://tools.ietf.org/html/draft-west-let-localhost-be-localhost-06
2025-08-02 07:23:41 +02:00 · 2019-02-05 08:53:44 -05:00
parent 01acb8907f
commit ea99872e45
3 changed files with 257 additions and 5 deletions
--- a/gio/tests/mock-resolver.c
+++ b/gio/tests/mock-resolver.c
@@ -112,6 +112,12 @@ do_lookup_by_name (GTask         *task,
      else
        g_task_return_pointer (task, g_list_copy_deep (self->ipv6_results, copy_object, NULL), NULL);
    }
+  else if (flags == G_RESOLVER_NAME_LOOKUP_FLAGS_DEFAULT)
+    {
+      /* This is only the minimal implementation needed for some tests */
+      g_assert (self->ipv4_error == NULL && self->ipv6_error == NULL && self->ipv6_results == NULL);
+      g_task_return_pointer (task, g_list_copy_deep (self->ipv4_results, copy_object, NULL), NULL);
+    }
  else
    g_assert_not_reached ();
 }
@@ -130,6 +136,22 @@ lookup_by_name_with_flags_async (GResolver                *resolver,
  g_object_unref (task);
 }

+static GList *
+lookup_by_name (GResolver    *resolver,
+                const gchar  *hostname,
+                GCancellable *cancellable,
+                GError       **error)
+{
+  GList *result = NULL;
+  GTask *task = g_task_new (resolver, cancellable, NULL, NULL);
+  g_task_set_task_data (task, GUINT_TO_POINTER (G_RESOLVER_NAME_LOOKUP_FLAGS_DEFAULT), NULL);
+  g_task_run_in_thread_sync (task, do_lookup_by_name);
+  result = g_task_propagate_pointer (task, error);
+  g_object_unref (task);
+  return result;
+}
+
+
 static GList *
 lookup_by_name_with_flags_finish (GResolver     *resolver,
                                  GAsyncResult  *result,
@@ -160,6 +182,7 @@ mock_resolver_class_init (MockResolverClass *klass)
  GObjectClass *object_class = G_OBJECT_CLASS (klass);
  resolver_class->lookup_by_name_with_flags_async  = lookup_by_name_with_flags_async;
  resolver_class->lookup_by_name_with_flags_finish = lookup_by_name_with_flags_finish;
+  resolver_class->lookup_by_name = lookup_by_name;
  object_class->finalize = mock_resolver_finalize;
 }