New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
don't allow upload/creation of .part files #7496
Comments
Hello everyone, I and some guys from raul hacker club (raulhc.cc) were looking at some tasks to help owncloud and we found this task interesting. Is @PVince81 still working on this? Can we propose some patch to this issue? Initially we tried to reproduce the problem, but when we uploaded some file through webdav we received a error message at the client side (I/O error on the server). From the server side, we found the following on apache logs: PHP Fatal error: Call to a member function getEtag() on a non-object in /app/owncloud/lib/private/connector/sabre/file.php on line 153 Please let we know if we can help on this task. Regards, Italo |
@italovalcy feel free to take over. Trouble is that I was stuck with unwanted side-effects. Here is the WIP PR #7514 (comment). Alternatively if you're looking for simpler tasks to start with, check out issues with the "Junior Job" tag. |
This won't be fully fixable as long as OC 7 is supported due to federation, see #7514 (comment) for an explanation. Moving to 9.0 to keep it in sight. |
Since OC 7 will still be around when OC 9 is out, moving to 9.1. See #7514 (comment) for the explanation why. |
CC @cmonteroluque |
thanks @PVince81 |
#7496 Don`t allow upload of files with extension .part
This fix is incomplete, part file upload is still possible with Webdav on v10.0.2. On v10.0.3 another bug prevents it, but we need this fix this correctly. Reopening. |
@IljaN please have a look |
also please add integration tests to make sure we can't:
|
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs. |
we use the file extension .part for uploading large files. Therefore we ignore .part files and don't expose them in the web ui or to a webdav client.
Our sync client, correctly doesn't upload .part files. Also direct webdav uploads refuse to upload .part files. But it is possible to:
This will result in files on the server which are no longer accessible by the user. All this operation should be blocked.
@nickvergessen maybe you want to have a look at it if you have some time? Thanks!
cc @PVince81
The text was updated successfully, but these errors were encountered: