Crystal: [RFC] Add File instance chmod/chown
Proposal:
File.open(...) do |file|
file.chown(uid, gid) # Matches existing `File.chown` arguments.
file.chmod(perm) # Matches existing `File.chmod` arguments.
end
didactic-drunk
All 13 comments
File instances are only meant to be used as an IO. I'd very much prefer to keep all other operations as class methods (or ideally even move them to a separate namespace combined with the sister methods from Dir). They would just be aliases, and I don't see a particularly relevant use case for instance methods. Since the OS APIs are based on paths there's not even any benefit for reusing a file handle.
File#delete is the only exception to this and it was probably a mistake to add this in the process of removing Tempfile (#6485). I'd rather remove that than add others.
straight-shoota
on 28 Apr 2020
Since the OS APIs are based on paths.
Incorrect. I was suggeting use of fchmod and fchown.
there's not even any benefit.
Incorrect. Attempting to do file operations by path as root in non-root owned directories creates race conditions which this issue closes.
It's also slightly faster with some network file systems.
didactic-drunk
on 28 Apr 2020
Race-free file system handling is a tricky subject, we should try and support the OS-provided functions for doing this.
RX14
on 28 Apr 2020
On windows there is SetNamedSecurityInfo (chown) and SetSecurityInfo (fchown, takes a handle)
RX14
on 28 Apr 2020
One 馃憤 up and one 馃憥 . Where does that leave this?
didactic-drunk
on 12 May 2020
One 馃憤 up and one 馃憥 . Where does that leave this?
If only everything was that simple :(
https://mobile.twitter.com/waj/status/1250486551898918914
oprypin
on 12 May 2020
Sure, go ahead if you wan to implement this 馃憤
straight-shoota
on 12 May 2020
It is a good idea, but not on the existing File (which is an IO).
I would like to have OOP for file system interactions, like in Java or C#.
The only place I see is introducing System::File:
file = System::File:new "my_file"
file.chmod 750
file.chown 0, 0
And even having an overload System::File#chown(user : System::User, group : System::Group)
j8r
on 12 May 2020
I think the whole idea was to use the fd, not the path. @didactic-drunk can you describe the race condition? I'm not aware of that issue.
waj
on 12 May 2020
Right @waj .
What is the main advantage @didactic-drunk , performance?
j8r
on 13 May 2020
Example 1: Privileged (re)placement of user files with races.
File.open "path/to/file", Create|Exclusive|SymNoFollow do |file|
...
end
File.chown "path/to/file", ...
File.chmod "path/to/file", ...
# In another process
mv path path.renamed
mkdir -p path/to
ln -s /etc/sudoers path/to/file
ln /home/not/my/file path/to/file # Or
Example 2: Privileged (re)placement of user files without races.
File.open "path/to/file", Create|Exclusive|SymNoFollow do |file|
file.chown ...
file.chmod ...
end
# No race conditions available except for the initial opening of "path/to/file"
It's also a little faster.
didactic-drunk
on 13 May 2020
@didactic-drunk shouldn't you use File#flock_exclusive in this case? (Why isn't there a single method accepting a bit mask as in Ruby by the way?)
dannote
on 6 Jun 2020
Flock only does advisory locking, doesn't stop bad actors, any program (mv) not using flock or directory renames.
didactic-drunk
on 6 Jun 2020
Related issues
RX14
路
3Comments
nabeelomer
路
3Comments
oprypin
路
3Comments
will
路
3Comments
pbrusco
路
3Comments
Most helpful comment
Example 1: Privileged (re)placement of user files with races.
Example 2: Privileged (re)placement of user files without races.
It's also a little faster.