diff options
| author | Vincent Petry <pvince81@owncloud.com> | 2015-08-30 16:21:55 +0200 |
|---|---|---|
| committer | Vincent Petry <pvince81@owncloud.com> | 2015-08-30 18:04:18 +0200 |
| commit | 2b08659f7d18d458339bcd89687469d8926f4941 (patch) | |
| tree | ad1ddb3aac8d8d3bb5eff26d65ea4a2eab35dfc1 /lib/private/updater.php | |
| parent | 045f8cc97101521cafd664faf7b8f24ea9e88451 (diff) | |
| download | nextcloud-server-2b08659f7d18d458339bcd89687469d8926f4941.tar.gz nextcloud-server-2b08659f7d18d458339bcd89687469d8926f4941.zip | |
Restrict upgrades to explicit allowed version
version.php now contains the previous ownCloud version from which
upgrades are allowed. Any other upgrades will show a message that the
upgrade/downgrade is not supported.
Diffstat (limited to 'lib/private/updater.php')
| -rw-r--r-- | lib/private/updater.php | 40 |
1 files changed, 34 insertions, 6 deletions
diff --git a/lib/private/updater.php b/lib/private/updater.php index f73fa8ff655..0f9ecfe93de 100644 --- a/lib/private/updater.php +++ b/lib/private/updater.php @@ -212,19 +212,46 @@ class Updater extends BasicEmitter { } /** + * Return version from which this version is allowed to upgrade from + * + * @return string allowed previous version + */ + private function getAllowedPreviousVersion() { + // this should really be a JSON file + require \OC::$SERVERROOT . '/version.php'; + return implode('.', $OC_VersionCanBeUpgradedFrom); + } + + /** * Whether an upgrade to a specified version is possible * @param string $oldVersion * @param string $newVersion + * @param string $allowedPreviousVersion * @return bool */ - public function isUpgradePossible($oldVersion, $newVersion) { + public function isUpgradePossible($oldVersion, $newVersion, $allowedPreviousVersion) { + // downgrade is never allowed + if (version_compare($oldVersion, $newVersion, '>')) { + return false; + } + $oldVersion = explode('.', $oldVersion); $newVersion = explode('.', $newVersion); - if($newVersion[0] > ($oldVersion[0] + 1) || $oldVersion[0] > $newVersion[0]) { - return false; + while (count($oldVersion) > 2) { + array_pop($oldVersion); + } + + while (count($newVersion) > 2) { + array_pop($newVersion); } - return true; + + $oldVersion = implode('.', $oldVersion); + $newVersion = implode('.', $newVersion); + + // either we're updating from an allowed version or the current version + return (version_compare($allowedPreviousVersion, $oldVersion) === 0 + || version_compare($newVersion, $oldVersion) === 0); } /** @@ -259,8 +286,9 @@ class Updater extends BasicEmitter { */ private function doUpgrade($currentVersion, $installedVersion) { // Stop update if the update is over several major versions - if (!self::isUpgradePossible($installedVersion, $currentVersion)) { - throw new \Exception('Updates between multiple major versions are unsupported.'); + $allowedPreviousVersion = $this->getAllowedPreviousVersion(); + if (!self::isUpgradePossible($installedVersion, $currentVersion, $allowedPreviousVersion)) { + throw new \Exception('Updates between multiple major versions and downgrades are unsupported.'); } // Update .htaccess files |