summaryrefslogtreecommitdiffstats
path: root/lib
diff options
context:
space:
mode:
authorVincent Petry <pvince81@owncloud.com>2015-08-30 16:21:55 +0200
committerVincent Petry <pvince81@owncloud.com>2015-08-30 18:04:18 +0200
commit2b08659f7d18d458339bcd89687469d8926f4941 (patch)
treead1ddb3aac8d8d3bb5eff26d65ea4a2eab35dfc1 /lib
parent045f8cc97101521cafd664faf7b8f24ea9e88451 (diff)
downloadnextcloud-server-2b08659f7d18d458339bcd89687469d8926f4941.tar.gz
nextcloud-server-2b08659f7d18d458339bcd89687469d8926f4941.zip
Restrict upgrades to explicit allowed version
version.php now contains the previous ownCloud version from which upgrades are allowed. Any other upgrades will show a message that the upgrade/downgrade is not supported.
Diffstat (limited to 'lib')
-rw-r--r--lib/private/updater.php40
1 files changed, 34 insertions, 6 deletions
diff --git a/lib/private/updater.php b/lib/private/updater.php
index f73fa8ff655..0f9ecfe93de 100644
--- a/lib/private/updater.php
+++ b/lib/private/updater.php
@@ -212,19 +212,46 @@ class Updater extends BasicEmitter {
}
/**
+ * Return version from which this version is allowed to upgrade from
+ *
+ * @return string allowed previous version
+ */
+ private function getAllowedPreviousVersion() {
+ // this should really be a JSON file
+ require \OC::$SERVERROOT . '/version.php';
+ return implode('.', $OC_VersionCanBeUpgradedFrom);
+ }
+
+ /**
* Whether an upgrade to a specified version is possible
* @param string $oldVersion
* @param string $newVersion
+ * @param string $allowedPreviousVersion
* @return bool
*/
- public function isUpgradePossible($oldVersion, $newVersion) {
+ public function isUpgradePossible($oldVersion, $newVersion, $allowedPreviousVersion) {
+ // downgrade is never allowed
+ if (version_compare($oldVersion, $newVersion, '>')) {
+ return false;
+ }
+
$oldVersion = explode('.', $oldVersion);
$newVersion = explode('.', $newVersion);
- if($newVersion[0] > ($oldVersion[0] + 1) || $oldVersion[0] > $newVersion[0]) {
- return false;
+ while (count($oldVersion) > 2) {
+ array_pop($oldVersion);
+ }
+
+ while (count($newVersion) > 2) {
+ array_pop($newVersion);
}
- return true;
+
+ $oldVersion = implode('.', $oldVersion);
+ $newVersion = implode('.', $newVersion);
+
+ // either we're updating from an allowed version or the current version
+ return (version_compare($allowedPreviousVersion, $oldVersion) === 0
+ || version_compare($newVersion, $oldVersion) === 0);
}
/**
@@ -259,8 +286,9 @@ class Updater extends BasicEmitter {
*/
private function doUpgrade($currentVersion, $installedVersion) {
// Stop update if the update is over several major versions
- if (!self::isUpgradePossible($installedVersion, $currentVersion)) {
- throw new \Exception('Updates between multiple major versions are unsupported.');
+ $allowedPreviousVersion = $this->getAllowedPreviousVersion();
+ if (!self::isUpgradePossible($installedVersion, $currentVersion, $allowedPreviousVersion)) {
+ throw new \Exception('Updates between multiple major versions and downgrades are unsupported.');
}
// Update .htaccess files