Page MenuHomePhabricator
Create Task
Maniphest T272176

GpgCrypt::deleteHome outputs a warning on trying to delete home directory
Closed, ResolvedPublic
Actions

Description

When locally tallying an encrypted election, I found that the temporary directory storing keys etc didn't get deleted, and saw the following warnings:

Warning: unlink(/tmp/securepoll-81e957c77660234535e2a96a63886bf62a04b738/private-keys-v1.d): Is a directory [...]

Warning: rmdir(/tmp/securepoll-81e957c77660234535e2a96a63886bf62a04b738): Directory not empty [...]

GpgCrypt::deleteHome assumes that the temporary directory only contains files, and no directories:

/**
 * Delete the temporary home directory
 */
public function deleteHome() {
	if ( !$this->homeDir ) {
		return;
	}
	$dir = opendir( $this->homeDir );
	if ( !$dir ) {
		return;
	}
	// @codingStandardsIgnoreStart
	while ( false !== ( $file = readdir( $dir ) ) ) {
		// @codingStandardsIgnoreEnd
		if ( $file == '.' || $file == '..' ) {
			continue;
		}
		unlink( "$this->homeDir/$file" );
	}
	closedir( $dir );
	rmdir( $this->homeDir );
	$this->homeDir = false;
	$this->recipient = false;
}

I couldn't find similar errors on logstash over the last few months, so it may be that this assumption is correct for production (perhaps due to the particular gpg version?). However it would be useful if deleteHome could handle directories in the temporary directory.

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
GpgCrypt: Handle deleting directories within the home directorymediawiki/extensions/SecurePollmaster+15 -5
Customize query in gerrit

Event Timeline

Tchanders created this task.Jan 15 2021, 7:19 PM
Restricted Application added a project: Platform Engineering. · View Herald TranscriptJan 15 2021, 7:19 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
Tchanders updated the task description. (Show Details)Jan 15 2021, 7:24 PM
gerritbot added a comment.Jan 15 2021, 7:26 PM

Change 656494 had a related patch set uploaded (by Tchanders; owner: Tchanders):
[mediawiki/extensions/SecurePoll@master] GpgCrypt: Handle deleting directories within the home directory

https://gerrit.wikimedia.org/r/656494

gerritbot added a project: Patch-For-Review.Jan 15 2021, 7:26 PM
Tchanders added a subscriber: STran.Jan 15 2021, 7:27 PM
Niharika edited projects, added Anti-Harassment-Team (The Letter Song); removed Anti-Harassment-Team.Jan 15 2021, 8:22 PM
Niharika moved this task from Ready 🎬 (ONLY IF YOU HAVE NO MORE CODE TO REVIEW) to In Progress 💪 on the Anti-Harassment-Team (The Letter Song) board.
gerritbot added a comment.Jan 18 2021, 10:16 AM

Change 656494 merged by jenkins-bot:
[mediawiki/extensions/SecurePoll@master] GpgCrypt: Handle deleting directories within the home directory

https://gerrit.wikimedia.org/r/656494

STran moved this task from In Progress 💪 to Code Review 🔍 on the Anti-Harassment-Team (The Letter Song) board.Jan 18 2021, 10:17 AM
ReleaseTaggerBot added a project: MW-1.36-notes (1.36.0-wmf.27; 2021-01-19).Jan 18 2021, 11:00 AM
Maintenance_bot removed a project: Patch-For-Review.Jan 18 2021, 11:10 AM
Tchanders claimed this task.Jan 19 2021, 1:52 PM
Tchanders moved this task from Code Review 🔍 to Done: Q3 (2020-2021) on the Anti-Harassment-Team (The Letter Song) board.
AMooney subscribed.Jan 19 2021, 2:02 PM

@Tchanders can this be marked as resolved?

AMooney removed a project: Platform Engineering.Jan 19 2021, 2:03 PM
Tchanders added a subscriber: Niharika.Jan 19 2021, 2:21 PM

@AMooney We often leave this to @Niharika, but I expect so!

Niharika closed this task as Resolved.Jan 19 2021, 5:06 PM

Done. :)

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits