Closed
Bug 252050
Opened 21 years ago
Closed 21 years ago
make nsSafeFileOutputStream follow target symlinks
Categories
(Core :: Networking: File, defect)
Core
Networking: File
Tracking
()
RESOLVED
FIXED
People
(Reporter: dwitte, Assigned: dwitte)
Details
(Keywords: fixed-aviary1.0)
Attachments
(1 file, 1 obsolete file)
|
2.85 KB,
patch
|
Biesinger
:
review+
darin.moz
:
superreview+
|
Details | Diff | Splinter Review |
see e.g. bug 206567. there are consumers that save profile files, where the user
might want that file to live somewhere else... so they make the profile file a
symlink. we should follow that symlink when overwriting the target, so that we
don't irritate the user by clobbering their symlink.
we get another nice advantage by following symlinks too - when we move the
tempfile over the target, the move should be atomic, which is safer. (otherwise,
we might be moving a file across filesystems, which might make it less safe.)
patch coming up, with code mostly stolen from timeless ;)
|
Assignee | |
Comment 1•21 years ago
|
||
|
|
Assignee | |
Comment 2•21 years ago
|
||
Comment on attachment 153622 [details] [diff] [review]
v1
timeless, since you're familiar with this... would you mind taking a look? thx!
Attachment #153622 -
Flags: review?(timeless)
Attachment #153622 -
Flags: review?(timeless) → review+
|
|
Assignee | |
Updated•21 years ago
|
Attachment #153622 -
Flags: superreview?(darin)
|
||
Comment 3•21 years ago
|
||
Comment on attachment 153622 [details] [diff] [review]
v1
>--- nsFileStreams.cpp 2004-07-18 20:14:14.317769240 -0700
>- nsCOMPtr<nsIFile> tempResult;
>- rv = file->Clone(getter_AddRefs(tempResult));
>+ // follow symlinks, for two reasons:
>+ // 1) if a user has deliberately set up a profile file as a symlink, we honor it
>+ // 2) to make the MoveToNative() in Finish() an atomic operation (which may not
>+ // be the case if moving across directories on different filesystems).
>+ nsCOMPtr<nsIFile> tempResult = do_CreateInstance("@mozilla.org/file/local;1", &rv);
>+ if (NS_SUCCEEDED(rv)) {
>+ nsCOMPtr<nsILocalFile> tempLocal = do_QueryInterface(tempResult);
>+ tempLocal->SetFollowLinks(PR_TRUE);
>+ nsCOMPtr<nsILocalFile> fileLocal = do_QueryInterface(file, &rv);
>+ if (NS_SUCCEEDED(rv))
>+ rv = tempLocal->InitWithFile(fileLocal);
>+ }
>+ // XP_UNIX ignores SetFollowLinks(), so we have to normalize.
>+ if (NS_SUCCEEDED(rv))
>+ rv = tempResult->Normalize();
hmm... why not do this:
nsCOMPtr<nsIFile> tempResult;
rv = file->Clone(getter_AddRefs(tempResult));
// follow symlinks, for two reasons:
// 1) if a user has deliberately set up a profile file as a symlink, we
honor it
// 2) to make the MoveToNative() in Finish() an atomic operation (which may
not
// be the case if moving across directories on different filesystems).
if (NS_SUCCEEDED(rv)) {
nsCOMPtr<nsILocalFile> tempLocal = do_QueryInterface(tempResult);
if (tempLocal)
tempLocal->SetFollowLinks(PR_TRUE);
// XP_UNIX ignores SetFollowLinks(), so we have to normalize.
rv = tempResult->Normalize();
}
i.e., why do you need to call InitWithFile? what's wrong with Clone?
|
|
Assignee | |
Comment 4•21 years ago
|
||
http://lxr.mozilla.org/mozilla/source/xpcom/io/nsILocalFile.idl#102
that claims that one can only SetFollowLinks() on an nsILocalFile that hasn't
been initialized. hence the CreateInstance() and post-links Init(). does Clone()
not constitute "initing the file"?
|
|
||
Comment 5•21 years ago
|
||
/me grumbles about nsI*File documentation not corresponding to implementations
(reality). i'm not sure why dougt thought SetFollowLinks couldn't be called
after a local file is initialized. that seems silly to me given that we do
indeed seem to support it: by setting a dirty bit that forces us to re-resolve
the target path when needed (XP_WIN case) or by simply re-computing the target
path directly from SetFollowLinks (XP_MACOSX case). hmm... i think we should
fix the documentation ;-)
|
|
Assignee | |
Updated•21 years ago
|
Attachment #153622 -
Flags: superreview?(darin)
|
|
Assignee | |
Comment 6•21 years ago
|
||
ah, neat. in that case, here's your suggestion, and a simple doc change for
nsILocalFile. does this look better?
Attachment #153622 -
Attachment is obsolete: true
|
|
Assignee | |
Updated•21 years ago
|
Attachment #154229 -
Flags: superreview?(darin)
speaking of sillyness, are we guaranteed that someone won't return
NS_ERROR_NOT_IMPLEMENTED for normalize if they honor setfollowlinks? :)
|
|
Assignee | |
Updated•21 years ago
|
Keywords: fixed-aviary1.0
|
|
||
Comment 8•21 years ago
|
||
Comment on attachment 154229 [details] [diff] [review]
v2
sr=darin
Current implementations of nsIFile::normalize either do something or return
NS_OK. They don't return NS_ERROR_NOT_IMPLEMENTED. It seems reasonable to
return NS_OK in the no-op case since there are no required side-effects. In
other words, the documentation is the existing implementation :-/
Attachment #154229 -
Flags: superreview?(darin) → superreview+
|
|
Assignee | |
Updated•21 years ago
|
Attachment #154229 -
Flags: review?(timeless)
|
|
Assignee | |
Comment 9•21 years ago
|
||
Comment on attachment 154229 [details] [diff] [review]
v2
kicking to biesi, coz he likes this stuff ;)
Attachment #154229 -
Flags: review?(timeless) → review?(cbiesinger)
|
||
Comment 10•21 years ago
|
||
Comment on attachment 154229 [details] [diff] [review]
v2
+ rv = tempResult->Normalize();
do you care whether this fails?
Attachment #154229 -
Flags: review?(cbiesinger) → review+
|
|
Assignee | |
Comment 11•21 years ago
|
||
>do you care whether this fails?
probably not... i removed the rv check.
fixed-on-trunk (the rv check is still in aviary, but i'm not going to bother
fixing that.)
|
|
Assignee | |
Updated•21 years ago
|
Status: NEW → RESOLVED
Closed: 21 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•