[5.3] Refactor all instances of File::makesafe() to use framework (joomla#43359)

Hackwar · web-flow · commit a2a381a5b31c · 2024-10-06T19:39:06.000+02:00
* Refactor all occurences of File::makesafe() to use framework

* Updating joomla/filesystem to 3.0.2

* Update LocalAdapter.php
diff --git a/administrator/components/com_contenthistory/src/Helper/ContenthistoryHelper.php b/administrator/components/com_contenthistory/src/Helper/ContenthistoryHelper.php
@@ -11,12 +11,12 @@
 namespace Joomla\Component\Contenthistory\Administrator\Helper;
 
 use Joomla\CMS\Factory;
-use Joomla\CMS\Filesystem\File;
 use Joomla\CMS\Language\Text;
 use Joomla\CMS\Table\ContentHistory;
 use Joomla\CMS\Table\ContentType;
 use Joomla\CMS\Table\Table;
 use Joomla\Database\ParameterType;
+use Joomla\Filesystem\File;
 use Joomla\Filesystem\Folder;
 use Joomla\Filesystem\Path;
 
diff --git a/administrator/components/com_templates/src/Helper/TemplateHelper.php b/administrator/components/com_templates/src/Helper/TemplateHelper.php
@@ -12,8 +12,8 @@
 
 use Joomla\CMS\Component\ComponentHelper;
 use Joomla\CMS\Factory;
-use Joomla\CMS\Filesystem\File;
 use Joomla\CMS\Language\Text;
+use Joomla\Filesystem\File;
 
 // phpcs:disable PSR1.Files.SideEffects
 \defined('_JEXEC') or die;
diff --git a/administrator/components/com_templates/src/Model/TemplateModel.php b/administrator/components/com_templates/src/Model/TemplateModel.php
@@ -14,7 +14,6 @@
 use Joomla\CMS\Component\ComponentHelper;
 use Joomla\CMS\Date\Date;
 use Joomla\CMS\Factory;
-use Joomla\CMS\Filesystem\File;
 use Joomla\CMS\Form\Form;
 use Joomla\CMS\Image\Image;
 use Joomla\CMS\Language\Text;
@@ -24,6 +23,8 @@
 use Joomla\Component\Templates\Administrator\Helper\TemplateHelper;
 use Joomla\Component\Templates\Administrator\Helper\TemplatesHelper;
 use Joomla\Database\ParameterType;
+use Joomla\Filesystem\Exception\FilesystemException;
+use Joomla\Filesystem\File;
 use Joomla\Filesystem\Folder;
 use Joomla\Filesystem\Path;
 use Joomla\Utilities\ArrayHelper;
@@ -747,7 +748,10 @@ public function copy()
                     $dst = Path::clean($toPath . '/' . $folder . '/' . $languageFile);
 
                     if (is_file($src)) {
-                        File::copy($src, $dst);
+                        try {
+                            File::copy($src, $dst);
+                        } catch (FilesystemException $exception) {
+                        }
                     }
                 }
             }
@@ -811,7 +815,12 @@ protected function fixTemplateName()
 
         foreach ($files as $file) {
             $newFile = '/' . str_replace($oldName, $newName, basename($file));
-            $result  = File::move($file, \dirname($file) . $newFile) && $result;
+
+            try {
+                $result = File::move($file, \dirname($file) . $newFile) && $result;
+            } catch (FilesystemException $exception) {
+                $result = false;
+            }
         }
 
         // Edit XML file
@@ -826,7 +835,12 @@ protected function fixTemplateName()
             $pattern[] = '#<media(.*)' . $oldName . '(.*)>#';
             $replace[] = '<media${1}' . $newName . '${2}>';
             $contents  = preg_replace($pattern, $replace, $contents);
-            $result    = File::write($xmlFile, $contents) && $result;
+
+            try {
+                $result = File::write($xmlFile, $contents) && $result;
+            } catch (FilesystemException $exception) {
+                $result = false;
+            }
         }
 
         return $result;
@@ -998,9 +1012,9 @@ public function save($data)
             return false;
         }
 
-        $return = File::write($filePath, $data['source']);
-
-        if (!$return) {
+        try {
+            File::write($filePath, $data['source']);
+        } catch (FilesystemException $exception) {
             $app->enqueueMessage(Text::sprintf('COM_TEMPLATES_ERROR_FAILED_TO_SAVE_FILENAME', $fileName), 'error');
 
             return false;
@@ -1252,7 +1266,11 @@ public function createTemplateOverride($overridePath, $htmlPath)
                 $htmlFilePath = File::stripExt($htmlFilePath) . '-' . $today->format('Ymd-His') . '.' . File::getExt($htmlFilePath);
             }
 
-            $return = File::copy($file, $htmlFilePath, '', true);
+            try {
+                $return = File::copy($file, $htmlFilePath, '', true);
+            } catch (FilesystemException $exception) {
+                $return = false;
+            }
         }
 
         return $return;
@@ -1273,7 +1291,11 @@ public function deleteFile($file)
             $app      = Factory::getApplication();
             $filePath = $this->getBasePath() . urldecode(base64_decode($file));
 
-            $return = File::delete($filePath);
+            try {
+                $return = File::delete($filePath);
+            } catch (FilesystemException $exception) {
+                $return = false;
+            }
 
             if (!$return) {
                 $app->enqueueMessage(Text::_('COM_TEMPLATES_FILE_DELETE_ERROR'), 'error');
@@ -1356,7 +1378,9 @@ public function uploadFile($file, $location)
                 return false;
             }
 
-            if (!File::upload($file['tmp_name'], Path::clean($path . '/' . $location . '/' . $fileName))) {
+            try {
+                File::upload($file['tmp_name'], Path::clean($path . '/' . $location . '/' . $fileName));
+            } catch (FilesystemException $exception) {
                 $app->enqueueMessage(Text::_('COM_TEMPLATES_FILE_UPLOAD_ERROR'), 'error');
 
                 return false;
@@ -1697,11 +1721,15 @@ public function copyFile($newName, $location, $file)
                 return false;
             }
 
-            if (File::copy($path . $relPath, $newPath)) {
-                $app->enqueueMessage(Text::sprintf('COM_TEMPLATES_FILE_COPY_SUCCESS', $newName . '.' . $ext));
-
-                return true;
+            try {
+                File::copy($path . $relPath, $newPath);
+            } catch (FilesystemException $exception) {
+                return false;
             }
+
+            $app->enqueueMessage(Text::sprintf('COM_TEMPLATES_FILE_COPY_SUCCESS', $newName . '.' . $ext));
+
+            return true;
         }
 
         return false;
@@ -1908,7 +1936,9 @@ public function child()
         Folder::create($toPath . '/html');
 
         // Copy the template definition from the parent template
-        if (!File::copy($fromPath, $toPath . '/templateDetails.xml')) {
+        try {
+            File::copy($fromPath, $toPath . '/templateDetails.xml');
+        } catch (FilesystemException $exception) {
             return false;
         }
 
@@ -1989,9 +2019,9 @@ public function child()
         $dom->formatOutput       = true;
         $dom->loadXML($xml->asXML());
 
-        $result = File::write($xmlFile, $dom->saveXML());
-
-        if (!$result) {
+        try {
+            $result = File::write($xmlFile, $dom->saveXML());
+        } catch (FilesystemException $exception) {
             $app->enqueueMessage(Text::_('COM_TEMPLATES_ERROR_COULD_NOT_WRITE'), 'error');
 
             return false;
diff --git a/libraries/src/Helper/MediaHelper.php b/libraries/src/Helper/MediaHelper.php
@@ -12,10 +12,10 @@
 use enshrined\svgSanitize\Sanitizer;
 use Joomla\CMS\Component\ComponentHelper;
 use Joomla\CMS\Factory;
-use Joomla\CMS\Filesystem\File;
 use Joomla\CMS\Filter\InputFilter;
 use Joomla\CMS\Language\Text;
 use Joomla\CMS\Plugin\PluginHelper;
+use Joomla\Filesystem\File;
 use Joomla\Registry\Registry;
 
 // phpcs:disable PSR1.Files.SideEffects
diff --git a/plugins/filesystem/local/src/Adapter/LocalAdapter.php b/plugins/filesystem/local/src/Adapter/LocalAdapter.php
@@ -12,7 +12,6 @@
 
 use Joomla\CMS\Date\Date;
 use Joomla\CMS\Factory;
-use Joomla\CMS\Filesystem\File;
 use Joomla\CMS\Helper\MediaHelper;
 use Joomla\CMS\HTML\HTMLHelper;
 use Joomla\CMS\Image\Exception\UnparsableImageException;
@@ -25,6 +24,7 @@
 use Joomla\Component\Media\Administrator\Exception\FileNotFoundException;
 use Joomla\Component\Media\Administrator\Exception\InvalidPathException;
 use Joomla\Filesystem\Exception\FilesystemException;
+use Joomla\Filesystem\File;
 use Joomla\Filesystem\Folder;
 use Joomla\Filesystem\Path;
 
@@ -260,7 +260,10 @@ public function createFile(string $name, string $path, $data): string
 
         $this->checkContent($localPath, $data);
 
-        File::write($localPath, $data);
+        try {
+            File::write($localPath, $data);
+        } catch (FilesystemException $exception) {
+        }
 
         if ($this->thumbnails && MediaHelper::isImage(pathinfo($localPath)['basename'])) {
             $thumbnailPaths = $this->getLocalThumbnailPaths($localPath);
@@ -298,7 +301,10 @@ public function updateFile(string $name, string $path, $data)
 
         $this->checkContent($localPath, $data);
 
-        File::write($localPath, $data);
+        try {
+            File::write($localPath, $data);
+        } catch (FilesystemException $exception) {
+        }
 
         if ($this->thumbnails && MediaHelper::isImage(pathinfo($localPath)['basename'])) {
             $thumbnailPaths = $this->getLocalThumbnailPaths($localPath);
@@ -328,11 +334,15 @@ public function delete(string $path)
         $thumbnailPaths = $this->getLocalThumbnailPaths($localPath);
 
         if (is_file($localPath)) {
-            if ($this->thumbnails && !empty($thumbnailPaths['fs']) && is_file($thumbnailPaths['fs'])) {
-                File::delete($thumbnailPaths['fs']);
-            }
+            try {
+                if ($this->thumbnails && !empty($thumbnailPaths['fs']) && is_file($thumbnailPaths['fs'])) {
+                    File::delete($thumbnailPaths['fs']);
+                }
 
-            $success = File::delete($localPath);
+                $success = File::delete($localPath);
+            } catch (\Throwable $exception) {
+                throw new \Exception('Delete not possible!', 500, $exception);
+            }
         } else {
             if (!is_dir(Path::clean($localPath))) {
                 throw new FileNotFoundException();
@@ -525,7 +535,9 @@ private function copyFile(string $sourcePath, string $destinationPath, bool $for
             throw new \Exception(Text::_('COM_MEDIA_COPY_FILE_NOT_POSSIBLE_FILE_ALREADY_EXISTS'));
         }
 
-        if (!File::copy($sourcePath, $destinationPath)) {
+        try {
+            File::copy($sourcePath, $destinationPath);
+        } catch (FilesystemException $exception) {
             throw new \Exception(Text::_('COM_MEDIA_COPY_FILE_NOT_POSSIBLE'));
         }
     }
@@ -548,7 +560,11 @@ private function copyFolder(string $sourcePath, string $destinationPath, bool $f
             throw new \Exception(Text::_('COM_MEDIA_COPY_FOLDER_ALREADY_EXISTS'));
         }
 
-        if (is_file($destinationPath) && !File::delete($destinationPath)) {
+        try {
+            if (is_file($destinationPath)) {
+                File::delete($destinationPath);
+            }
+        } catch (FilesystemException $exception) {
             throw new \Exception(Text::_('COM_MEDIA_COPY_FOLDER_DESTINATION_CAN_NOT_DELETE'));
         }
 
@@ -634,7 +650,9 @@ private function moveFile(string $sourcePath, string $destinationPath, bool $for
             throw new \Exception(Text::_('COM_MEDIA_MOVE_FILE_ALREADY_EXISTS'));
         }
 
-        if (!File::move($sourcePath, $destinationPath)) {
+        try {
+            File::move($sourcePath, $destinationPath);
+        } catch (FilesystemException $exception) {
             throw new \Exception(Text::_('COM_MEDIA_MOVE_FILE_NOT_POSSIBLE'));
         }
     }
@@ -657,7 +675,11 @@ private function moveFolder(string $sourcePath, string $destinationPath, bool $f
             throw new \Exception(Text::_('COM_MEDIA_MOVE_FOLDER_ALREADY_EXISTS'));
         }
 
-        if (is_file($destinationPath) && !File::delete($destinationPath)) {
+        try {
+            if (is_file($destinationPath)) {
+                File::delete($destinationPath);
+            }
+        } catch (FilesystemException $exception) {
             throw new \Exception(Text::_('COM_MEDIA_MOVE_FOLDER_NOT_POSSIBLE'));
         }
 
@@ -828,13 +850,18 @@ private function checkContent(string $localPath, string $mediaContent)
         // @todo find a better way to check the input, by not writing the file to the disk
         $tmpFile = Path::clean(\dirname($localPath) . '/' . uniqid() . '.' . strtolower(File::getExt($name)));
 
-        if (!File::write($tmpFile, $mediaContent)) {
+        try {
+            File::write($tmpFile, $mediaContent);
+        } catch (FilesystemException $exception) {
             throw new \Exception(Text::_('JLIB_MEDIA_ERROR_UPLOAD_INPUT'), 500);
         }
 
         $can = $helper->canUpload(['name' => $name, 'size' => \strlen($mediaContent), 'tmp_name' => $tmpFile], 'com_media');
 
-        File::delete($tmpFile);
+        try {
+            File::delete($tmpFile);
+        } catch (FilesystemException $exception) {
+        }
 
         if (!$can) {
             throw new \Exception(Text::_('JLIB_MEDIA_ERROR_UPLOAD_INPUT'), 403);
