Page MenuHomePhabricator
Differential D19998

Set MYSQLI_OPT_LOCAL_INFILE (which appears to have no effect) and raise unusual query errors more clearly
ClosedPublic
Actions

Authored by epriestley on Jan 18 2019, 4:37 PM.
Tags
None
Referenced Files
Unknown Object (File)
Mon, Dec 30, 5:46 AM
Unknown Object (File)
Sun, Dec 29, 3:01 PM
Unknown Object (File)
Sun, Dec 29, 11:20 AM
Unknown Object (File)
Tue, Dec 17, 9:01 AM
Unknown Object (File)
Wed, Dec 11, 12:43 PM
Unknown Object (File)
Dec 8 2024, 6:23 PM
Unknown Object (File)
Dec 7 2024, 3:31 PM
Unknown Object (File)
Dec 2 2024, 12:10 PM
View All Files
Subscribers
None

Details

Reviewers
amckinley
Maniphest Tasks
T13238: Disallow MYSQLI_OPT_LOCAL_INFILE
Commits
rPHU8a9f4b1f806e: (stable) Promote 2019 Week 3
rPHU92413d0303ab: Set MYSQLI_OPT_LOCAL_INFILE (which appears to have no effect) and raise unusual…
Summary

Ref T13238. See PHI1014. To attempt to defuse attacks based on "LOAD DATA INFILE LOCAL", set MYSQLI_OPT_LOCAL_INFILE. This option is documented as disabling local file loads.

This doesn't actually work for me: I can still "LOAD DATA INFILE LOCAL" with this option set. However, it probably can't hurt? I'll dig into this a bit more before I land this change, I suspect this option must work sometimes and maybe it's just detecting that my client and server are both the same host or something. (Some amount of digging at least suggests this might be a simple bug where mysqli. allow_local_infile is overwriting the options() call.)

Separately, capture and raise errors from mysqli->query() which do not set the connection error code more accurately. Before this change, trying "LOAD DATA INFILE LOCAL" with "mysqli.allow_local_infile = 0" raised Error #0: .

Now, it raises EXCEPTION: (AphrontQueryException) #777777: mysqli::query(): LOAD DATA LOCAL INFILE forbidden.

Test Plan
  • Tried to "LOAD DATA INFILE LOCAL" with and without this option set.
    • Both of them worked fine. This isn't great.
  • Hit "forbidden" error before and after change, got much clearer guidance after change.

Diff Detail

Event Timeline

epriestley created this revision.Jan 18 2019, 4:37 PM
Harbormaster completed remote builds in B21590: Diff 47738.Jan 18 2019, 4:38 PM
epriestley requested review of this revision.Jan 18 2019, 4:38 PM
epriestley mentioned this in T13238: Disallow MYSQLI_OPT_LOCAL_INFILE.Jan 18 2019, 4:48 PM
epriestley updated this revision to Diff 47739.Jan 18 2019, 5:08 PM
  • I don't think MYSQLI_OPT_LOCAL_INFILE ever does anything, anywhere, ever.
  • Since I think I have a plausible explanation that this is a simple bug (value gets overwritten by config value) with at least a tiny bit of supporting evidence, and it's reasonable to imagine it may be fixed in some future version of PHP/MySQLi, leave the call in anyway.
  • Just document what's going on here more clearly.
Harbormaster completed remote builds in B21591: Diff 47739.Jan 18 2019, 5:09 PM
epriestley edited the summary of this revision. (Show Details)Jan 18 2019, 5:10 PM
epriestley updated this revision to Diff 47742.Jan 18 2019, 6:00 PM
  • Wordsmithing, the query is "LOCAL INFILE", not "INFILE LOCAL".
Harbormaster completed remote builds in B21594: Diff 47742.Jan 18 2019, 6:01 PM
amckinley accepted this revision.Jan 19 2019, 12:58 AM
This revision is now accepted and ready to land.Jan 19 2019, 12:58 AM
Closed by commit rPHU92413d0303ab: Set MYSQLI_OPT_LOCAL_INFILE (which appears to have no effect) and raise unusual… (authored by epriestley). · Explain WhyJan 19 2019, 3:49 AM
This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

PathSize
src/
aphront/
storage/
connection/
mysql/
43 lines

Diff 47742

View Options

src/aphront/storage/connection/mysql/AphrontMySQLiDatabaseConnection.php

Loading...
Phabricator · Built by Phacility