[GH-ISSUE #1065] next/image: improve error message and support images.dangerouslyAllowLocalIP for private-IP rejections #232

New issue

Open

opened 2026-05-06 12:38:24 +02:00 by BreizhHardware · 0 comments

BreizhHardware commented 2026-05-06 12:38:24 +02:00

Owner

Copy link

Originally created by @github-actions[bot] on GitHub (May 5, 2026).
Original GitHub issue: https://github.com/cloudflare/vinext/issues/1065

Upstream change

Next.js commit 5452439f3db2a78967178ca4180b27fb48393a19 (PR #91686) updates the SSRF guard in fetchExternalImage to:

1. Log a clearer error when an upstream image hostname resolves to a private IP, including a hint about images.dangerouslyAllowLocalIP.
2. Document that dangerouslyAllowLocalIP may be needed when hosting in a VPC with split-horizon DNS, while warning about the SSRF risk.

Relevant change in packages/next/src/server/image-optimizer.ts:

   Log.error(
     'upstream image',
     href,
-    'resolved to private ip',
-    JSON.stringify(privateIps)
+    'hostname resolved to private IP',
+    JSON.stringify(privateIps),
+    'If this is expected and you understand SSRF risk, use images.dangerouslyAllowLocalIP = true to continue.'
   )
   throw new ImageError(400, '"url" parameter is not allowed')

A new unit test (test/unit/image-optimizer/fetch-external-image.test.ts) confirms:

• Private IP hostnames are rejected with 400 and a generic "url" parameter is not allowed message.
• dangerouslyAllowLocalIP: true allows the fetch to proceed.

Why this matters for vinext

vinext does not currently ship a full Next.js-compatible image optimizer (image handling on Cloudflare typically defers to Cloudflare Images / the platform). However, to the extent that vinext provides any next/image runtime or honors images.* config:

• The SSRF guard for upstream image fetches should be in place for parity.
• The images.dangerouslyAllowLocalIP config option (and its behavior) should be supported or explicitly documented as not applicable.
• Error messages emitted on rejection should match Next.js for ecosystem compatibility.

This is a low-priority parity item — most Cloudflare deployments will rely on the platform's image pipeline rather than vinext's own optimizer.

Action items

• Confirm vinext's current next/image story (built-in optimizer vs. delegate to platform).
• If vinext fetches external images at runtime, port the private-IP guard and the images.dangerouslyAllowLocalIP opt-out.
• Match the updated error/log message for ecosystem parity.
• Document the behavior in vinext docs (especially for VPC / split-horizon DNS scenarios).

References

• Commit: github.com/vercel/next.js@5452439f3d
• PR: https://github.com/vercel/next.js/pull/91686

Originally created by @github-actions[bot] on GitHub (May 5, 2026). Original GitHub issue: https://github.com/cloudflare/vinext/issues/1065 ## Upstream change Next.js commit [5452439f3db2a78967178ca4180b27fb48393a19](https://github.com/vercel/next.js/commit/5452439f3db2a78967178ca4180b27fb48393a19) (PR [#91686](https://github.com/vercel/next.js/pull/91686)) updates the SSRF guard in `fetchExternalImage` to: 1. Log a clearer error when an upstream image hostname resolves to a private IP, including a hint about `images.dangerouslyAllowLocalIP`. 2. Document that `dangerouslyAllowLocalIP` may be needed when hosting in a VPC with split-horizon DNS, while warning about the SSRF risk. Relevant change in `packages/next/src/server/image-optimizer.ts`: ```diff Log.error( 'upstream image', href, - 'resolved to private ip', - JSON.stringify(privateIps) + 'hostname resolved to private IP', + JSON.stringify(privateIps), + 'If this is expected and you understand SSRF risk, use images.dangerouslyAllowLocalIP = true to continue.' ) throw new ImageError(400, '"url" parameter is not allowed') ``` A new unit test (`test/unit/image-optimizer/fetch-external-image.test.ts`) confirms: - Private IP hostnames are rejected with `400` and a generic `"url" parameter is not allowed` message. - `dangerouslyAllowLocalIP: true` allows the fetch to proceed. ## Why this matters for vinext vinext does not currently ship a full Next.js-compatible image optimizer (image handling on Cloudflare typically defers to Cloudflare Images / the platform). However, to the extent that vinext provides any next/image runtime or honors `images.*` config: - The SSRF guard for upstream image fetches should be in place for parity. - The `images.dangerouslyAllowLocalIP` config option (and its behavior) should be supported or explicitly documented as not applicable. - Error messages emitted on rejection should match Next.js for ecosystem compatibility. This is a low-priority parity item — most Cloudflare deployments will rely on the platform's image pipeline rather than vinext's own optimizer. ## Action items - [ ] Confirm vinext's current next/image story (built-in optimizer vs. delegate to platform). - [ ] If vinext fetches external images at runtime, port the private-IP guard and the `images.dangerouslyAllowLocalIP` opt-out. - [ ] Match the updated error/log message for ecosystem parity. - [ ] Document the behavior in vinext docs (especially for VPC / split-horizon DNS scenarios). ## References - Commit: https://github.com/vercel/next.js/commit/5452439f3db2a78967178ca4180b27fb48393a19 - PR: https://github.com/vercel/next.js/pull/91686

BreizhHardware added the

nextjs-tracking

label 2026-05-06 12:38:24 +02:00

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

alt/prerender-rsc-sidechannel

codex/pages-router-suite-main

claude/dev-socket-emit-patch

james/wip-agent-test

codex/fix-wrangler-suspense-streaming

hrushikesh/add-semgrep-oss-workflow

fix/preload-link-header-uses-served-url

fix/isr-always-mark-dynamic-with-searchparams

fix/strip-set-cookie-from-app-route-isr-cache-clean

fix/app-pages-fallback-sees-middleware-overrides-v2

opencode/misty-river

opencode/calm-meadow

codex/pages-router-cjs-node-modules

codex/refresh-ai-docs-vp-vite8

fix/suspense-flash-navigation-639

fix/issue-589

fix/route-handler-dynamic-detection-v3

fix/route-handler-dynamic-detection-v2

fix/route-handler-dynamic-detection

opencode/quiet-nebula

fix/include-query-in-route-handler-isr-key

fix/block-dangerous-uri-schemes

fix/use-post-middleware-context-for-headers

opencode/playful-mountain

opencode/quiet-sailor

feat/payload-cms-fixture

feat/static-prerender-build

opencode/cosmic-knight

fix/isr-stream-tee-no-double-render

codex/wrangler-auth-ux

docs/update-contributing

improve/vitest-workspace-split

feat/auto-pr-review

docs/skills-field-learnings

feat/nuqs-e2e-clean

feat/next-font-implementation

fix/rsc-navigation-credentials

chonky-list

fix/cli-version

ci/commit-version-bump

ci/publish-chat-notification

opencode/mighty-mountain

fix/rsc-optimizedeps-react-server

v0.0.49

v0.0.48

v0.0.47

v0.0.46

v0.0.45

v0.0.44

v0.0.43

v0.0.42

v0.0.41

v0.0.40

v0.0.39

v0.0.38

v0.0.37

v0.0.36

v0.0.35

v0.0.34

v0.0.33

v0.0.32

v0.0.31

v0.0.30

v0.0.29

v0.0.28

v0.0.27

v0.0.26

v0.0.25

v0.0.24

v0.0.23

v0.0.22

v0.0.21

v0.0.20

v0.0.19

v0.0.18

v0.0.17

v0.0.16

v0.0.15

v0.0.14

v0.0.13

v0.0.12

v0.0.11

v0.0.10

v0.0.9

v0.0.8

v0.0.7

v0.0.6

Labels

Clear labels   

enhancement

  

enhancement

  

good first issue

  

help wanted

  

nextjs-tracking

  

nextjs-tracking

  

pull-request

Mirrored from GitHub Pull Request

No labels

enhancement

enhancement

good first issue

help wanted

nextjs-tracking

nextjs-tracking

pull-request

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/vinext#232

No description provided.