NOT sharing APCu cache with php-fpm #238
Comments
|
+1 |
|
A workaround is to use whatever differs between pools as the prefix for APCu keys and access apcu through helper methods, e.g. // Web server/application folder, possibly a symlink.
// Whether to include this depends on your deployment method.
$dir = realpath(__DIR__);
if (!$dir) {
throw new Error('Failed to find real path of __DIR__');
}
$key = $dir . '/' . getmyuid();
define('APCU_PREFIX', substr(base64_encode(sha1($key, true)), 8) . '#');
function apcu_wrapper_fetch($key, $success = null) {
return \apcu_fetch(\APCU_PREFIX . $key, $success);
}
// and so on |
|
Quite the security issue. Too bad because I really like the idea of APCu. Even though separating with a hashed key helps a bit, APCu being made to be fast makes it vulnerable to bruteforce. An option to force cache separation per vhost would be nice. |
|
It's unfortunate that the APCu PHP API is all global functions, rather than methods on an object, which could require some sort of key in its constructor to access different cache instances. But as it is, the better fix is correcting the fundamental design flaw of PHP-FPM sharing most of everything between completely unrelated workers. For example OPcache and many php.ini settings are also shared, which at the very least leaks file paths to other pools. One can separate all caches by running a separate php-fpm master instance per pool, for example by making an instantiated/templated systemd service to run php-fpm (e.g. |
Hi,
we installed apcu on a php-fpm based vhost environment. There is one daemon process running as root and several forks (pools) for every domain. Those pools are running under different usernames. While using apcu in this environment we realized that there is just one single apcu cache for all pools and all users. Is there any way to separate them so that every pool has its own cache?
Thanks!
The text was updated successfully, but these errors were encountered: