Version 3.2.2

danielhuesken · danielhuesken · commit 4b61d83a40dd · 2015-11-25T08:35:33.000+01:00
Fixed: Setting of S3 storage class STANDARD | STANDARD_IA | REDUCED_REDUNDANCY
Fixed: Potential security problems on log view and file download
diff --git a/.htaccess b/.htaccess
@@ -0,0 +1,4 @@
+<Files *.php>
+    order allow,deny
+    deny from all
+</Files>
diff --git a/backwpup.php b/backwpup.php
@@ -5,7 +5,7 @@
  * Description: WordPress Backup Plugin
  * Author: Inpsyde GmbH
  * Author URI: http://inpsyde.com
- * Version: 3.2.1
+ * Version: 3.2.2
  * Text Domain: backwpup
  * Domain Path: /languages/
  * Network: true
@@ -364,7 +364,7 @@ public static function get_registered_destinations() {
 									'needed' => array(
 										'php_version'	=> '5.3.3',
 										'functions'	=> array( 'curl_exec' ),
-										'classes'	=> array()
+										'classes'	=> array( 'XMLWriter' )
 									),
 									'autoload'	=> array( 	'Aws\\Common' => dirname( __FILE__ ) .'/vendor',
 															'Aws\\S3' => dirname( __FILE__ ) .'/vendor',
diff --git a/inc/class-destination-folder.php b/inc/class-destination-folder.php
@@ -73,9 +73,20 @@ public function edit_form_post_save( $jobid ) {
 	 */
 	public function file_delete( $jobdest, $backupfile ) {
 
-		if ( is_writeable( $backupfile ) && !is_dir( $backupfile ) && !is_link( $backupfile ) )
-			 unlink( $backupfile );
+		list( $jobid, $dest ) = explode( '_', $jobdest, 2 );
+
+		if ( empty( $jobid ) ) {
+			return;
+		}
+
+		$backup_dir = esc_attr( BackWPup_Option::get( (int)$jobid, 'backupdir' ) );
+		$backup_dir = BackWPup_File::get_absolute_path( $backup_dir );
+
+		$backupfile =  realpath( trailingslashit( $backup_dir ) . basename( $backupfile ) );
 
+		if ( $backupfile && is_writeable( $backupfile ) && !is_dir( $backupfile ) && !is_link( $backupfile ) ) {
+			 unlink( $backupfile );
+		}
 	}
 
 	/**
@@ -84,7 +95,13 @@ public function file_delete( $jobdest, $backupfile ) {
 	 */
 	public function file_download( $jobid, $get_file ) {
 
-		if ( is_readable( $get_file ) ) {
+		$backup_dir = esc_attr( BackWPup_Option::get( (int)$jobid, 'backupdir' ) );
+		$backup_dir = BackWPup_File::get_absolute_path( $backup_dir );
+
+		$get_file = realpath( trailingslashit( $backup_dir ) . basename( $get_file ) );
+
+		if ( $get_file && is_readable( $get_file ) ) {
+			while( @ob_end_clean() );
 			header( "Pragma: public" );
 			header( "Expires: 0" );
 			header( "Cache-Control: must-revalidate, post-check=0, pre-check=0" );
@@ -93,14 +110,12 @@ public function file_download( $jobid, $get_file ) {
 			header( "Content-Transfer-Encoding: binary" );
 			header( "Content-Length: " . filesize( $get_file ) );
 			@set_time_limit( 300 );
-			//chunked readfile
-			@ob_end_clean();
+			//chunked read file
 			$handle = fopen( $get_file, 'rb' );
 			if ( $handle ) {
 				while ( ! feof( $handle ) ) {
-					echo fread( $handle, 20482048 ); //2MB chunkes
-					@ob_flush();
-					@flush();
+					echo fread( $handle, 10241024 ); //chunks
+					flush();
 				}
 				fclose( $handle );
 			}
@@ -119,7 +134,7 @@ public function file_download( $jobid, $get_file ) {
 	 */
 	public function file_get_list( $jobdest ) {
 
-		list( $jobid, $dest ) = explode( '_', $jobdest );
+		list( $jobid, $dest ) = explode( '_', $jobdest, 2 );
 		$filecounter    = 0;
 		$files          = array();
 		$backup_folder  = BackWPup_Option::get( $jobid, 'backupdir' );
@@ -136,7 +151,7 @@ public function file_get_list( $jobdest ) {
 					$files[ $filecounter ][ 'downloadurl' ] = add_query_arg( array(
 																				  'page'   => 'backwpupbackups',
 																				  'action' => 'downloadfolder',
-																				  'file'   => $backup_folder . $file,
+																				  'file'   => $file,
 																				  'jobid'  => $jobid
 																			 ), network_admin_url( 'admin.php' ) );
 					$files[ $filecounter ][ 'filesize' ]    = filesize( $backup_folder . $file );
@@ -161,7 +176,7 @@ public function job_run_archive( BackWPup_Job$job_object ) {
 			BackWPup_Option::update( $job_object->job[ 'jobid' ], 'lastbackupdownloadurl', add_query_arg( array(
 																								  'page'   => 'backwpupbackups',
 																								  'action' => 'downloadfolder',
-																								  'file'   => $job_object->backup_folder . $job_object->backup_file,
+																								  'file'   => basename( $job_object->backup_file ),
 																								  'jobid'  => $job_object->job[ 'jobid' ]
 																							 ), network_admin_url( 'admin.php' ) ) );
 		//Delete old Backupfiles
diff --git a/inc/class-destination-s3-v1.php b/inc/class-destination-s3-v1.php
@@ -175,7 +175,7 @@ public function edit_tab( $jobid ) {
 				<th scope="row"><label for="ids3storageclass"><?php _e( 'Amazon: Storage Class', 'backwpup' ); ?></label></th>
 				<td>
 					<select name="s3storageclass" id="ids3storageclass" title="<?php _e( 'Amazon: Storage Class', 'backwpup' ); ?>">
-						<option value="" <?php selected( 'us-east-1', BackWPup_Option::get( $jobid, 's3storageclass' ), TRUE ) ?>><?php _e( 'Standard', 'backwpup' ); ?></option>
+						<option value="" <?php selected( '', BackWPup_Option::get( $jobid, 's3storageclass' ), TRUE ) ?>><?php _e( 'Standard', 'backwpup' ); ?></option>
 						<option value="STANDARD_IA" <?php selected( 'STANDARD_IA', BackWPup_Option::get( $jobid, 's3storageclass' ), TRUE ) ?>><?php _e( 'Standard-Infrequent Access', 'backwpup' ); ?></option>
 						<option value="REDUCED_REDUNDANCY" <?php selected( 'REDUCED_REDUNDANCY', BackWPup_Option::get( $jobid, 's3storageclass' ), TRUE ) ?>><?php _e( 'Reduced Redundancy', 'backwpup' ); ?></option>
 				</select>
diff --git a/inc/class-destination-s3.php b/inc/class-destination-s3.php
@@ -190,7 +190,7 @@ public function edit_tab( $jobid ) {
 				<th scope="row"><label for="ids3storageclass"><?php _e( 'Amazon: Storage Class', 'backwpup' ); ?></label></th>
 				<td>
 					<select name="s3storageclass" id="ids3storageclass" title="<?php _e( 'Amazon: Storage Class', 'backwpup' ); ?>">
-						<option value="" <?php selected( 'us-east-1', BackWPup_Option::get( $jobid, 's3storageclass' ), TRUE ) ?>><?php _e( 'Standard', 'backwpup' ); ?></option>
+						<option value="" <?php selected( '', BackWPup_Option::get( $jobid, 's3storageclass' ), TRUE ) ?>><?php _e( 'Standard', 'backwpup' ); ?></option>
 						<option value="STANDARD_IA" <?php selected( 'STANDARD_IA', BackWPup_Option::get( $jobid, 's3storageclass' ), TRUE ) ?>><?php _e( 'Standard-Infrequent Access', 'backwpup' ); ?></option>
 						<option value="REDUCED_REDUNDANCY" <?php selected( 'REDUCED_REDUNDANCY', BackWPup_Option::get( $jobid, 's3storageclass' ), TRUE ) ?>><?php _e( 'Reduced Redundancy', 'backwpup' ); ?></option>
 					</select>
@@ -416,10 +416,14 @@ public function job_run_archive( BackWPup_Job $job_object ) {
 				$create_args                 	= array();
 				$create_args[ 'Bucket' ] 	 	= $job_object->job[ 's3bucket' ];
 				$create_args[ 'ACL' ]        	= 'private';
-				if ( ! empty( $job_object->job[ 's3ssencrypt' ] ) )
-					$create_args[ 'ServerSideEncryption' ] = $job_object->job[ 's3ssencrypt' ]; //AES256
-				if ( ! empty( $job_object->job[ 's3storageclass' ] ) ) //REDUCED_REDUNDANCY
+				//encrxption
+				if ( ! empty( $job_object->job[ 's3ssencrypt' ] ) ) {
+					$create_args[ 'ServerSideEncryption' ] = $job_object->job[ 's3ssencrypt' ];
+				}
+				//Storage Class
+				if ( ! empty( $job_object->job[ 's3storageclass' ] ) ) {
 					$create_args[ 'StorageClass' ] = $job_object->job[ 's3storageclass' ];
+				}
 				$create_args[ 'Metadata' ]   	= array( 'BackupTime' => date( 'Y-m-d H:i:s', $job_object->start_time ) );
 
 				$create_args[ 'Body' ] 	  		= $up_file_handle;
@@ -444,10 +448,12 @@ public function job_run_archive( BackWPup_Job $job_object ) {
 											'Bucket' 		=> $job_object->job[ 's3bucket' ],
 											'ContentType' 	=> $job_object->get_mime_type( $job_object->backup_folder . $job_object->backup_file ),
 											'Key'			=> $job_object->job[ 's3dir' ] . $job_object->backup_file );
-							if ( !empty( $job_object->job[ 's3ssencrypt' ] ) )
+							if ( !empty( $job_object->job[ 's3ssencrypt' ] ) ) {
 								$args[ 'ServerSideEncryption' ] = $job_object->job[ 's3ssencrypt' ];
-							if ( !empty( $job_object->job[ 's3storageclass' ] ) )
-								$args[ 'StorageClass' ] = empty( $job_object->job[ 's3storageclass' ] ) ? 'STANDARD' : 'REDUCED_REDUNDANCY';
+							}
+							if ( !empty( $job_object->job[ 's3storageclass' ] ) ) {
+								$args[ 'StorageClass' ] = empty( $job_object->job[ 's3storageclass' ] ) ? '' : $job_object->job[ 's3storageclass' ];
+							}
 
 							$upload = $s3->createMultipartUpload( $args );
 
diff --git a/inc/class-job.php b/inc/class-job.php
@@ -1084,7 +1084,7 @@ public static function read_logheader( $logfile ) {
 		//get metadata of logfile
 		$metas = array();
 		if ( is_readable( $logfile ) ) {
-			if (  '.gz' == substr( $logfile, -3 )  )
+			if (  '.gz' == substr( $logfile, -3 ) )
 				$metas = (array)get_meta_tags( 'compress.zlib://' . $logfile );
 			else
 				$metas = (array)get_meta_tags( $logfile );
@@ -1094,8 +1094,7 @@ public static function read_logheader( $logfile ) {
 		foreach ( $usedmetas as $keyword => $field ) {
 			if ( isset( $metas[ $keyword ] ) ) {
 				$joddata[ $field ] = $metas[ $keyword ];
-			}
-			else {
+			} else {
 				$joddata[ $field ] = '';
 			}
 		}
diff --git a/inc/class-mysqldump.php b/inc/class-mysqldump.php
@@ -114,7 +114,7 @@ public function __construct( $args = array() ) {
 		if ( ! empty( $args[ 'dbcharset' ] ) && method_exists( $this->mysqli, 'set_charset' ) ) {
 			$res = $this->mysqli->set_charset( $args[ 'dbcharset' ] );
 			if ( ! $res ) {
-				throw new BackWPup_MySQLDump_Exception( sprintf( _x( 'Cannot set DB charset to %s','Database Charset', 'backwpup' ), $args[ 'dbcharset' ] ) );
+				throw new BackWPup_MySQLDump_Exception( sprintf( _x( 'Cannot set DB charset to %s error: %s','Database Charset', 'backwpup' ), $args[ 'dbcharset' ], $this->mysqli->error ) );
 			}
 		}
 
diff --git a/inc/class-page-backups.php b/inc/class-page-backups.php
@@ -309,10 +309,12 @@ function column_file( $item ) {
 		if ( ! empty( $item[ 'info' ] ) )
 			$r .= esc_attr( $item[ 'info' ] ) . '<br />';
 		$actions               = array();
-		if ( current_user_can( 'backwpup_backups_delete' ) )
+		if ( current_user_can( 'backwpup_backups_delete' ) ) {
 			$actions[ 'delete' ]   = "<a class=\"submitdelete\" href=\"" . wp_nonce_url( network_admin_url( 'admin.php' ) . '?page=backwpupbackups&action=delete&jobdest-top=' . $this->jobid . '_' . $this->dest . '&paged=' . $this->get_pagenum() . '&backupfiles[]=' . esc_attr( $item[ 'file' ] ), 'bulk-backups' ) . "\" onclick=\"if ( confirm('" . esc_js( __( "You are about to delete this backup archive. \n  'Cancel' to stop, 'OK' to delete.", "backwpup" ) ) . "') ) { return true;}return false;\">" . __( 'Delete', 'backwpup' ) . "</a>";
-		if ( current_user_can( 'backwpup_backups_download' ) && ! empty( $item[ 'downloadurl' ] ) )
-			$actions[ 'download' ] = "<a href=\"" . wp_nonce_url( $item[ 'downloadurl' ], 'download-backup' ) . "\">" . __( 'Download', 'backwpup' ) . "</a>";
+		}
+		if ( current_user_can( 'backwpup_backups_download' ) && ! empty( $item[ 'downloadurl' ] ) ) {
+			$actions[ 'download' ] = "<a href=\"" . wp_nonce_url( $item[ 'downloadurl' ], 'download-backup_' . $this->jobid ) . "\">" . __( 'Download', 'backwpup' ) . "</a>";
+		}
 		$r .= $this->row_actions( $actions );
 
 		return $r;
@@ -411,10 +413,10 @@ public static function load() {
 						if ( ! current_user_can( 'backwpup_backups_download' ) ) {
 							wp_die( __( 'Sorry, you don\'t have permissions to do that.', 'backwpup') );
 						}
-						check_admin_referer( 'download-backup' );
+						check_admin_referer( 'download-backup_' . $_GET[ 'jobid' ] );
 						/** @var BackWPup_Destinations $dest_class */
 						$dest_class = BackWPup::get_destination( $dest );
-						$dest_class->file_download( (int)$_GET[ 'jobid' ], $_GET[ 'file' ] );
+						$dest_class->file_download( (int)$_GET[ 'jobid' ], trim( $_GET[ 'file' ] ) );
 						die();
 					}
 				}
diff --git a/inc/class-page-backwpup.php b/inc/class-page-backwpup.php
@@ -315,7 +315,8 @@ private static function mb_last_logs() {
 						$alternate = FALSE;
 					}
 					echo '<td>' . sprintf( __( '%1$s at %2$s', 'backwpup' ), date_i18n( get_option( 'date_format' ) , $logdata[ 'logtime' ] ), date_i18n( get_option( 'time_format' ), $logdata[ 'logtime' ] ) ) . '</td>';
-					echo '<td><a class="thickbox" href="' . admin_url( 'admin-ajax.php' ) . '?&action=backwpup_view_log&logfile=' . basename( $logfile ) .'&_ajax_nonce=' . wp_create_nonce( 'view-logs' ) . '&amp;TB_iframe=true&amp;width=640&amp;height=440" title="' . esc_attr( basename( $logfile ) ) . '">' . $logdata[ 'name' ] . '</i></a></td>';
+					$log_name = str_replace( array( '.html', '.gz' ), '', basename( $logfile ) );
+					echo '<td><a class="thickbox" href="' . admin_url( 'admin-ajax.php' ) . '?&action=backwpup_view_log&log=' . $log_name .'&_ajax_nonce=' . wp_create_nonce( 'view-log_' . $log_name ) . '&amp;TB_iframe=true&amp;width=640&amp;height=440" title="' . esc_attr( basename( $logfile ) ) . '">' . $logdata[ 'name' ] . '</i></a></td>';
 					echo '<td>';
 					if ( $logdata[ 'errors' ] > 0 )
 						printf( '<span style="color:red;font-weight:bold;">' . _n( "%d ERROR", "%d ERRORS", $logdata[ 'errors' ], 'backwpup' ) . '</span><br />', $logdata[ 'errors' ] );
diff --git a/inc/class-page-jobs.php b/inc/class-page-jobs.php
@@ -182,9 +182,11 @@ function column_jobname( $item ) {
 		}
 		if ( current_user_can( 'backwpup_logs' ) && BackWPup_Option::get( $item, 'logfile' ) ) {
 			$logfile = basename( BackWPup_Option::get( $item, 'logfile' ) );
-			if ( is_object( $this->job_object ) && $this->job_object->job[ 'jobid' ] == $item )
-				$logfile = basename( $this->job_object->logfile );
-			$actions[ 'lastlog' ]   = '<a href="' . admin_url( 'admin-ajax.php' ) . '?&action=backwpup_view_log&logfile=' . $logfile .'&_ajax_nonce=' . wp_create_nonce( 'view-logs' ) . '&amp;TB_iframe=true&amp;width=640&amp;height=440\" title="' . esc_attr( $logfile ) . '" class="thickbox">' . __( 'Last log', 'backwpup' ) . '</a>';
+			if ( is_object( $this->job_object ) && $this->job_object->job[ 'jobid' ] == $item ) {
+			    $logfile = basename( $this->job_object->logfile );
+			}
+			$log_name = str_replace( array( '.html', '.gz' ), '', basename( $logfile ) );
+			$actions[ 'lastlog' ]   = '<a href="' . admin_url( 'admin-ajax.php' ) . '?&action=backwpup_view_log&log=' . $log_name .'&_ajax_nonce=' . wp_create_nonce( 'view-log_'. $log_name ) . '&amp;TB_iframe=true&amp;width=640&amp;height=440\" title="' . esc_attr( $logfile ) . '" class="thickbox">' . __( 'Last log', 'backwpup' ) . '</a>';
 		}
 		$actions = apply_filters( 'backwpup_page_jobs_actions', $actions, $item, FALSE );
 		$r .= '<div class="job-normal"' . $job_normal_hide . '>' . $this->row_actions( $actions ) . '</div>';
@@ -319,15 +321,19 @@ function column_last( $item ) {
 			$r .= __( 'not yet', 'backwpup' );
 		}
 		$r .= "<br /><span class=\"last-action-links\">";
-		if ( current_user_can( 'backwpup_backups_download' ) && BackWPup_Option::get( $item, 'lastbackupdownloadurl' ) ) {
-			$r .= "<a  href=\"" . wp_nonce_url( BackWPup_Option::get( $item, 'lastbackupdownloadurl' ), 'download-backup' ) . "\" title=\"" . esc_attr( __( 'Download last backup', 'backwpup' ) ) . "\">" . __( 'Download', 'backwpup' ) . "</a> | ";
+		if ( current_user_can( 'backwpup_backups_download' ) ) {
+		    $download_url = BackWPup_Option::get( $item, 'lastbackupdownloadurl' );
+            if ( ! empty( $download_url ) ) {
+			    $r .= "<a  href=\"" . wp_nonce_url( $download_url, 'download-backup_' . $item ). "\" title=\"" . esc_attr( __( 'Download last backup', 'backwpup' ) ) . "\">" . __( 'Download', 'backwpup' ) . "</a> | ";
+		    }
 		}
 		if ( current_user_can( 'backwpup_logs' ) && BackWPup_Option::get( $item, 'logfile' ) ) {
 			$logfile = basename( BackWPup_Option::get( $item, 'logfile' ) );
 			if ( is_object( $this->job_object ) && $this->job_object->job[ 'jobid' ] == $item ) {
 				$logfile = basename( $this->job_object->logfile );
 			}
-			$r .= '<a class="thickbox" href="' . admin_url( 'admin-ajax.php' ) . '?&action=backwpup_view_log&logfile=' . $logfile .'&_ajax_nonce=' . wp_create_nonce( 'view-logs' ) . '&amp;TB_iframe=true&amp;width=640&amp;height=440" title="' . esc_attr( $logfile ) . '">' . __( 'Log', 'backwpup' ) . '</a>';
+			$log_name = str_replace( array( '.html', '.gz' ), '', basename( $logfile ) );
+			$r .= '<a class="thickbox" href="' . admin_url( 'admin-ajax.php' ) . '?&action=backwpup_view_log&log=' . $log_name .'&_ajax_nonce=' . wp_create_nonce( 'view-log_' . $log_name ) . '&amp;TB_iframe=true&amp;width=640&amp;height=440" title="' . esc_attr( $logfile ) . '">' . __( 'Log', 'backwpup' ) . '</a>';
 
 		}
 		$r .= "</span>";
diff --git a/inc/class-page-logs.php b/inc/class-page-logs.php
diff --git a/languages/backwpup.pot b/languages/backwpup.pot
diff --git a/readme.txt b/readme.txt

Original file line number	Diff line number	Diff line change
`@@ -114,7 +114,7 @@ public function __construct( $args = array() ) {`
`114`	`114`	`if ( ! empty( $args[ 'dbcharset' ] ) && method_exists( $this->mysqli, 'set_charset' ) ) {`
`115`	`115`	`$res = $this->mysqli->set_charset( $args[ 'dbcharset' ] );`
`116`	`116`	`if ( ! $res ) {`
`117`		`- throw new BackWPup_MySQLDump_Exception( sprintf( _x( 'Cannot set DB charset to %s','Database Charset', 'backwpup' ), $args[ 'dbcharset' ] ) );`
	`117`	`+ throw new BackWPup_MySQLDump_Exception( sprintf( _x( 'Cannot set DB charset to %s error: %s','Database Charset', 'backwpup' ), $args[ 'dbcharset' ], $this->mysqli->error ) );`
`118`	`118`	`}`
`119`	`119`	`}`
`120`	`120`