summaryrefslogtreecommitdiffstats
path: root/lib/private
diff options
context:
space:
mode:
authorCôme Chilliet <91878298+come-nc@users.noreply.github.com>2022-09-15 15:00:40 +0200
committerGitHub <noreply@github.com>2022-09-15 15:00:40 +0200
commit1013c3bf66803fd262fa2c82f5633af61305a151 (patch)
tree558b56f8b9bd0a14b5dd334f606dd669d5a4f493 /lib/private
parentc0c31bdc454bbf7cea9c807f9d300848ab4ab9a6 (diff)
parent807c53b2abde4331e717abf574fe13f802c5b79a (diff)
downloadnextcloud-server-1013c3bf66803fd262fa2c82f5633af61305a151.tar.gz
nextcloud-server-1013c3bf66803fd262fa2c82f5633af61305a151.zip
Merge pull request #34009 from andrey-utkin/safe-config-update
Make config file saving safe against write failures
Diffstat (limited to 'lib/private')
-rw-r--r--lib/private/Config.php54
1 files changed, 29 insertions, 25 deletions
diff --git a/lib/private/Config.php b/lib/private/Config.php
index ba3b8c6fe4d..e338d3f2332 100644
--- a/lib/private/Config.php
+++ b/lib/private/Config.php
@@ -224,11 +224,6 @@ class Config {
continue;
}
- // Try to acquire a file lock
- if (!flock($filePointer, LOCK_SH)) {
- throw new \Exception(sprintf('Could not acquire a shared lock on the config file %s', $file));
- }
-
unset($CONFIG);
include $file;
if (!defined('PHPUNIT_RUN') && headers_sent()) {
@@ -244,7 +239,6 @@ class Config {
}
// Close the file pointer and release the lock
- flock($filePointer, LOCK_UN);
fclose($filePointer);
}
@@ -256,8 +250,7 @@ class Config {
*
* Saves the config to the config file.
*
- * @throws HintException If the config file cannot be written to
- * @throws \Exception If no file lock can be acquired
+ * @throws HintException If the config file cannot be written to, etc
*/
private function writeData() {
$this->checkReadOnly();
@@ -272,30 +265,41 @@ class Config {
$content .= var_export($this->cache, true);
$content .= ";\n";
- touch($this->configFilePath);
- $filePointer = fopen($this->configFilePath, 'r+');
-
- // Prevent others not to read the config
- chmod($this->configFilePath, 0640);
+ // tmpfile must be in the same filesystem for the rename() to be atomic
+ $tmpfile = tempnam(dirname($this->configFilePath), 'config.php.tmp.');
+ // dirname check is for PHP's fallback quirk
+ if (!$tmpfile || dirname($tmpfile) != dirname($this->configFilePath)) {
+ if ($tmpfile) {
+ unlink($tmpfile);
+ }
+ throw new HintException(
+ "Can't create temporary file in config directory!",
+ 'This can usually be fixed by giving the webserver write access to the config directory.');
+ }
- // File does not exist, this can happen when doing a fresh install
+ chmod($tmpfile, 0640);
+ $filePointer = fopen($tmpfile, 'w');
if (!is_resource($filePointer)) {
throw new HintException(
- "Can't write into config directory!",
- 'This can usually be fixed by giving the webserver write access to the config directory.');
+ "Failed to open temporary file in config directory for writing",
+ 'Please report this to Nextcloud developers.');
}
- // Try to acquire a file lock
- if (!flock($filePointer, LOCK_EX)) {
- throw new \Exception(sprintf('Could not acquire an exclusive lock on the config file %s', $this->configFilePath));
+ $write_ok = fwrite($filePointer, $content);
+ $close_ok = fclose($filePointer);
+ if (!$write_ok || !$close_ok) {
+ unlink($tmpfile);
+ throw new HintException(
+ "Failed to save temporary file in config directory",
+ 'Please report this to Nextcloud developers.');
}
- // Write the config and release the lock
- ftruncate($filePointer, 0);
- fwrite($filePointer, $content);
- fflush($filePointer);
- flock($filePointer, LOCK_UN);
- fclose($filePointer);
+ if (!rename($tmpfile, $this->configFilePath)) {
+ unlink($tmpfile);
+ throw new HintException(
+ "Failed to replace the config file with the new copy",
+ 'Please report this to Nextcloud developers.');
+ }
if (function_exists('opcache_invalidate')) {
@opcache_invalidate($this->configFilePath, true);