Skip to content

Commit

Permalink
Item2537: Race condition in updating htpasswd can cause truncated htp…
Browse files Browse the repository at this point in the history 
…asswd file

This should prevent the truncated htpasswd files we have seen on foswiki.org


git-svn-id: http://svn.foswiki.org/branches/Release01x00@5881 0b4bb1d4-4e5a-0410-9cc4-b2b747904278
  • Loading branch information
KennethLavrsen authored and KennethLavrsen committed Dec 29, 2009
1 parent 420ae00 commit 343d609
Showing 1 changed file with 46 additions and 12 deletions.
58 changes: 46 additions & 12 deletions core/lib/Foswiki/Users/HtPasswdUser.pm
View file
@@ -1,4 +1,5 @@
# See bottom of file for license and copyright information

=begin TML
---+ package Foswiki::Users::HtPasswdUser
Expand All @@ -16,6 +17,7 @@ use base 'Foswiki::Users::Password';
use strict;
use Assert;
use Error qw( :try );
use Fcntl qw( :DEFAULT :flock );

# 'Use locale' for internationalisation of Perl sorting in getTopicNames
# and other routines - main locale settings are done in Foswiki::setupLocale
Expand All @@ -40,8 +42,9 @@ sub new {
elsif ( $Foswiki::cfg{Htpasswd}{Encoding} eq 'sha1' ) {
require Digest::SHA;
}
elsif (( $Foswiki::cfg{Htpasswd}{Encoding} eq 'crypt-md5' ) &&
($Foswiki::cfg{DetailedOS} eq 'darwin')) {
elsif ( ( $Foswiki::cfg{Htpasswd}{Encoding} eq 'crypt-md5' )
&& ( $Foswiki::cfg{DetailedOS } eq 'darwin' ) )
{
print STDERR "ERROR: crypt-md5 FAILS on OSX (no fix in 2008)\n";
throw Error::Simple("ERROR: crypt-md5 FAILS on OSX (no fix in 2008)");
}
Expand Down Expand Up @@ -96,6 +99,28 @@ sub fetchUsers {
return new Foswiki::ListIterator( \@users );
}

# Lock the htpasswd semaphore file (create if it does not exist)
# Returns a file handle that you can later simply close with _unlockPasswdFile
sub _lockPasswdFile {
my $lockFileName = $Foswiki::cfg{WorkingDir} . '/htpasswd.lock';

sysopen(my $fh, $lockFileName, O_RDWR|O_CREAT, 0666)
|| throw Error::Simple(
$lockFileName .
' open or create password lock file failed -' .
'check access rights: ' . $! );
flock $fh, LOCK_EX;

return $fh;
}

# Unlock the semaphore file. You must pass the filehandle for the lock file
# which was returned by _lockPasswdFile
sub _unlockPasswdFile {
my $fh = shift;
close ($fh);
}

sub _readPasswd {
my $this = shift;
return $this->{passworddata} if ( defined( $this->{passworddata} ) );
Expand All @@ -104,27 +129,30 @@ sub _readPasswd {
if ( !-e $Foswiki::cfg{Htpasswd}{FileName} ) {
return $data;
}
open( IN_FILE, "<$Foswiki::cfg{Htpasswd}{FileName}" )
my $IN_FILE;
open( $IN_FILE, '<', "$Foswiki::cfg{Htpasswd}{FileName}" )
|| throw Error::Simple(
$Foswiki::cfg{Htpasswd}{FileName} . ' open failed: ' . $! );
my $line = '';
while ( defined( $line = <IN_FILE> ) ) {
while ( defined( $line = <$IN_FILE> ) ) {
if ( $Foswiki::cfg{Htpasswd}{Encoding} eq 'md5' ) { # htdigest format
if ( $line =~ /^(.*?):(.*?):(.*?)(?::(.*))?$/ ) {

# implicit untaint OK; data from htpasswd
$data->{$1}->{pass} = $3;
$data->{$1}->{emails} = $4 || '';
}
}
else { # htpasswd format
else { # htpasswd format
if ( $line =~ /^(.*?):(.*?)(?::(.*))?$/ ) {

# implicit untaint OK; data from htpasswd
$data->{$1}->{pass} = $2;
$data->{$1}->{emails} = $3 || '';
}
}
}
close(IN_FILE);
close($IN_FILE);
$this->{passworddata} = $data;
return $data;
}
Expand All @@ -140,7 +168,7 @@ sub _dumpPasswd {
. $db->{$_}->{pass} . ':'
. $db->{$_}->{emails} . "\n";
}
else { # htpasswd format
else { # htpasswd format
$s .=
$_ . ':' . $db->{$_}->{pass} . ':' . $db->{$_}->{emails} . "\n";
}
Expand All @@ -152,7 +180,7 @@ sub _savePasswd {
my $db = shift;

umask(077);
open( FILE, ">$Foswiki::cfg{Htpasswd}{FileName}" )
open( FILE, '>', "$Foswiki::cfg{Htpasswd}{FileName}" )
|| throw Error::Simple(
$Foswiki::cfg{Htpasswd}{FileName} . ' open failed: ' . $! );

Expand All @@ -166,8 +194,7 @@ sub encrypt {
$passwd ||= '';

if ( $Foswiki::cfg{Htpasswd}{Encoding} eq 'sha1' ) {
my $encodedPassword =
'{SHA}' . Digest::SHA::sha1_base64($passwd) . '=';
my $encodedPassword = '{SHA}' . Digest::SHA::sha1_base64($passwd) . '=';

# don't use chomp, it relies on $/
$encodedPassword =~ s/\s+$//;
Expand Down Expand Up @@ -254,7 +281,7 @@ sub fetchPass {

sub setPassword {
my ( $this, $login, $newUserPassword, $oldUserPassword ) = @_;
ASSERT( $login ) if DEBUG;
ASSERT( $login ) if DEBUG;
if ( defined($oldUserPassword) ) {
unless ( $oldUserPassword eq '1' ) {
return 0 unless $this->checkPassword( $login, $oldUserPassword );
Expand All @@ -266,16 +293,19 @@ sub setPassword {
}

try {
my $lockHandle = _lockPasswdFile;
my $db = $this->_readPasswd();
$db->{$login}->{pass} = $this->encrypt( $login, $newUserPassword, 1 );
$db->{$login}->{emails} ||= '';
_savePasswd($db);
_unlockPasswdFile( $lockHandle );
}
catch Error::Simple with {
my $e = shift;
$this->{error} = $!;
print STDERR "ERROR: failed to resetPassword - $! ($e)";
$this->{error} = 'unknown error in resetPassword' unless ($this->{error} && length($this->{error}));
$this->{error} = 'unknown error in resetPassword'
unless ( $this->{error} && length( $this->{error} ) );
return undef;
};

Expand All @@ -289,6 +319,7 @@ sub removeUser {
$this->{error} = undef;

try {
my $lockHandle = _lockPasswdFile;
my $db = $this->_readPasswd();
unless ( $db->{$login} ) {
$this->{error} = 'No such user ' . $login;
Expand All @@ -298,6 +329,7 @@ sub removeUser {
_savePasswd($db);
$result = 1;
}
_unlockPasswdFile( $lockHandle );
}
catch Error::Simple with {
$this->{error} = shift->{-text};
Expand Down Expand Up @@ -348,6 +380,7 @@ sub setEmails {
my $login = shift;
ASSERT($login) if DEBUG;

my $lockHandle = _lockPasswdFile;
my $db = $this->_readPasswd();
unless ( $db->{$login} ) {
$db->{$login}->{pass} = '';
Expand All @@ -362,6 +395,7 @@ sub setEmails {
$db->{$login}->{emails} = '';
}
_savePasswd($db);
_unlockPasswdFile( $lockHandle );
return 1;
}

Expand Down

0 comments on commit 343d609

Please sign in to comment.