SNOW-1156046: Fix race condition with easy logging config (#1156)

sfc-gh-knozderko · sfc-gh-ext-simba-lf · web-flow · commit 393aad3cfa81 · 2025-04-28T14:55:24.000+02:00
Co-authored-by: sfc-gh-ext-simba-lf &lt;115584722+sfc-gh-ext-simba-lf@users.noreply.github.com&gt;
diff --git a/Snowflake.Data.Tests/Mock/MockUnixOperations.cs b/Snowflake.Data.Tests/Mock/MockUnixOperations.cs
@@ -16,7 +16,7 @@ public override bool CheckDirectoryHasAnyOfPermissions(string path, FileAccessPe
             return DirectoryPermissionsReturn;
         }
 
-        public override bool CheckFileHasAnyOfPermissions(string path, FileAccessPermissions permissions)
+        public override bool CheckFileHasAnyOfPermissions(FileAccessPermissions actualPermissions , FileAccessPermissions expectedPermissions)
         {
             return FilePermissionsReturn;
         }
diff --git a/Snowflake.Data.Tests/UnitTests/Configuration/EasyLoggingConfigFinderTest.cs b/Snowflake.Data.Tests/UnitTests/Configuration/EasyLoggingConfigFinderTest.cs
@@ -1,7 +1,5 @@
 using System;
 using System.IO;
-using System.Runtime.InteropServices;
-using Mono.Unix;
 using Moq;
 using NUnit.Framework;
 using Snowflake.Data.Configuration;
@@ -22,9 +20,6 @@ public class EasyLoggingConfigFinderTest
         [ThreadStatic]
         private static Mock<FileOperations> t_fileOperations;
 
-        [ThreadStatic]
-        private static Mock<UnixOperations> t_unixOperations;
-
         [ThreadStatic]
         private static Mock<EnvironmentOperations> t_environmentOperations;
 
@@ -35,9 +30,8 @@ public class EasyLoggingConfigFinderTest
         public void Setup()
         {
             t_fileOperations = new Mock<FileOperations>();
-            t_unixOperations = new Mock<UnixOperations>();
             t_environmentOperations = new Mock<EnvironmentOperations>();
-            t_finder = new EasyLoggingConfigFinder(t_fileOperations.Object, t_unixOperations.Object, t_environmentOperations.Object);
+            t_finder = new EasyLoggingConfigFinder(t_fileOperations.Object, t_environmentOperations.Object);
             MockHomeDirectory();
             MockExecutionDirectory();
         }
@@ -115,26 +109,6 @@ public void TestThatTakesFilePathFromHomeDirectoryWhenNoOtherWaysPossible()
             Assert.AreEqual(s_homeConfigFilePath, filePath);
         }
 
-        [Test]
-        public void TestThatConfigFileIsNotUsedIfOthersCanModifyTheConfigFile()
-        {
-            if (RuntimeInformation.IsOSPlatform(OSPlatform.Windows))
-            {
-                Assert.Ignore("skip test on Windows");
-            }
-
-            // arrange
-            MockFileOnHomePath();
-            MockHasFlagReturnsTrue();
-
-            // act
-            var thrown = Assert.Throws<Exception>(() => t_finder.FindConfigFilePath(null));
-
-            // assert
-            Assert.IsNotNull(thrown);
-            Assert.AreEqual(thrown.Message, $"Error due to other users having permission to modify the config file: {s_homeConfigFilePath}");
-        }
-
         [Test]
         public void TestThatReturnsNullIfNoWayOfGettingTheFile()
         {
@@ -188,14 +162,6 @@ public void TestThatDoesNotFailWhenHomeDirectoryDoesNotExist()
             t_environmentOperations.Verify(e => e.GetFolderPath(Environment.SpecialFolder.UserProfile), Times.Once);
         }
 
-        private static void MockHasFlagReturnsTrue()
-        {
-            t_unixOperations
-                .Setup(f => f.CheckFileHasAnyOfPermissions(s_homeConfigFilePath,
-                    It.Is<FileAccessPermissions>(p =>  p.Equals(FileAccessPermissions.GroupWrite | FileAccessPermissions.OtherWrite))))
-                .Returns(true);
-        }
-
         private static void MockHomeDirectory()
         {
             t_environmentOperations
diff --git a/Snowflake.Data.Tests/UnitTests/Configuration/EasyLoggingConfigParserTest.cs b/Snowflake.Data.Tests/UnitTests/Configuration/EasyLoggingConfigParserTest.cs
@@ -1,8 +1,11 @@
 using System;
 using System.Collections.Generic;
 using System.IO;
+using Mono.Unix;
+using Moq;
 using NUnit.Framework;
 using Snowflake.Data.Configuration;
+using Snowflake.Data.Core.Tools;
 using static Snowflake.Data.Tests.UnitTests.Configuration.EasyLoggingConfigGenerator;
 
 namespace Snowflake.Data.Tests.UnitTests.Configuration
@@ -89,7 +92,7 @@ public void TestThatFailsWhenTheFileDoesNotExist()
             
             // assert
             Assert.IsNotNull(thrown);
-            Assert.AreEqual("Finding easy logging configuration failed", thrown.Message);
+            Assert.IsTrue(thrown.Message.Contains("Finding easy logging configuration failed"));
         }
 
         [Test, TestCaseSource(nameof(WrongConfigFiles))]
@@ -102,7 +105,80 @@ public void TestThatFailsIfMissingOrInvalidRequiredFields(string filePath)
             var thrown = Assert.Throws<Exception>(() => parser.Parse(filePath));
             // assert
             Assert.IsNotNull(thrown);
-            Assert.IsTrue(thrown.Message == "Parsing easy logging configuration failed");
+            Assert.AreEqual(thrown.Message, "Parsing easy logging configuration failed");
+        }
+
+        [Test]
+        [Platform(Exclude = "Win")]
+        public void TestThatConfigFileIsNotUsedIfOthersCanModifyTheConfigFile()
+        {
+            // arrange
+            var unixOperations = new Mock<UnixOperations>();
+            var configFilePath = CreateConfigTempFile(s_workingDirectory, null);
+            var stream = new UnixFileInfo(configFilePath).OpenRead();
+            var parser = new EasyLoggingConfigParser(unixOperations.Object);
+            unixOperations
+                .Setup(u => u.CheckFileHasAnyOfPermissions(stream.FileAccessPermissions,
+                    It.Is<FileAccessPermissions>(p => p.Equals(FileAccessPermissions.GroupWrite | FileAccessPermissions.OtherWrite))))
+                .Returns(true);
+            unixOperations
+                .Setup(u => u.GetCurrentUserId())
+                .Returns(stream.OwnerUserId);
+            unixOperations
+                .Setup(u => u.GetCurrentGroupId())
+                .Returns(stream.OwnerGroupId);
+
+            // act
+            var thrown = Assert.Throws<Exception>(() => parser.Parse(configFilePath));
+
+            // assert
+            Assert.IsNotNull(thrown);
+            Assert.AreEqual(thrown.Message, "Finding easy logging configuration failed: Error due to other users having permission to modify the config file");
+        }
+
+        [Test]
+        [Platform(Exclude = "Win")]
+        public void TestThatConfigFileIsNotUsedIfUserDoesNotOwnConfigFile()
+        {
+            // arrange
+            var unixOperations = new Mock<UnixOperations>();
+            var configFilePath = CreateConfigTempFile(s_workingDirectory, null);
+            var stream = new UnixFileInfo(configFilePath).OpenRead();
+            var parser = new EasyLoggingConfigParser(unixOperations.Object);
+            unixOperations
+                .Setup(u => u.GetCurrentUserId())
+                .Returns(stream.OwnerUserId - 1);
+
+            // act
+            var thrown = Assert.Throws<Exception>(() => parser.Parse(configFilePath));
+
+            // assert
+            Assert.IsNotNull(thrown);
+            Assert.AreEqual(thrown.Message, "Finding easy logging configuration failed: Error due to user not having ownership of the config file");
+        }
+
+        [Test]
+        [Platform(Exclude = "Win")]
+        public void TestThatConfigFileIsNotUsedIfGroupDoesNotOwnConfigFile()
+        {
+            // arrange
+            var unixOperations = new Mock<UnixOperations>();
+            var configFilePath = CreateConfigTempFile(s_workingDirectory, null);
+            var stream = new UnixFileInfo(configFilePath).OpenRead();
+            var parser = new EasyLoggingConfigParser(unixOperations.Object);
+            unixOperations
+                .Setup(u => u.GetCurrentUserId())
+                .Returns(stream.OwnerUserId);
+            unixOperations
+                .Setup(u => u.GetCurrentGroupId())
+                .Returns(stream.OwnerGroupId - 1);
+
+            // act
+            var thrown = Assert.Throws<Exception>(() => parser.Parse(configFilePath));
+
+            // assert
+            Assert.IsNotNull(thrown);
+            Assert.AreEqual(thrown.Message, "Finding easy logging configuration failed: Error due to group not having ownership of the config file");
         }
 
         public static IEnumerable<string> ConfigFilesWithoutValues()
diff --git a/Snowflake.Data.Tests/UnitTests/Tools/FileOperationsTest.cs b/Snowflake.Data.Tests/UnitTests/Tools/FileOperationsTest.cs
@@ -155,11 +155,19 @@ public void TestFileIsNotSecureWhenNotOwnedByCurrentUser()
         {
             // arrange
             var absolutePath = Path.Combine(s_workingDirectory, s_fileName);
-            var mockUnixOperations = new MockUnixOperations{ CurrentUserId = 1, FileOwnerId = 2 };
-            var fileOps = new FileOperations(mockUnixOperations);
+            File.Create(absolutePath);
+            try
+            {
+                var mockUnixOperations = new MockUnixOperations { CurrentUserId = 1, FileOwnerId = 2 };
+                var fileOps = new FileOperations(mockUnixOperations);
 
-            // act and assert
-            Assert.IsFalse(fileOps.IsFileSafe(absolutePath));
+                // act and assert
+                Assert.IsFalse(fileOps.IsFileSafe(absolutePath));
+            }
+            finally
+            {
+                File.Delete(absolutePath);
+            }
         }
 
         [Test]
diff --git a/Snowflake.Data.Tests/UnitTests/Tools/UnixOperationsTest.cs b/Snowflake.Data.Tests/UnitTests/Tools/UnixOperationsTest.cs
@@ -50,9 +50,10 @@ public void TestDetectGroupOrOthersWritablePermissions(
             var readWriteUserPermissions = FileAccessPermissions.UserRead | FileAccessPermissions.UserWrite;
             var filePermissions = readWriteUserPermissions | groupOrOthersWritablePermissions | groupNotWritablePermissions | otherNotWritablePermissions;
             Syscall.chmod(filePath, (FilePermissions) filePermissions);
+            var fileInfo = new UnixFileInfo(filePath);
 
             // act
-            var result = s_unixOperations.CheckFileHasAnyOfPermissions(filePath, FileAccessPermissions.GroupWrite | FileAccessPermissions.OtherWrite);
+            var result = s_unixOperations.CheckFileHasAnyOfPermissions(fileInfo.FileAccessPermissions, FileAccessPermissions.GroupWrite | FileAccessPermissions.OtherWrite);
 
             // assert
             Assert.IsTrue(result);
@@ -68,9 +69,10 @@ public void TestDetectGroupOrOthersNotWritablePermissions(
             var filePath = CreateConfigTempFile(s_workingDirectory, "random text");
             var filePermissions = userPermissions | groupNotWritablePermissions | otherNotWritablePermissions;
             Syscall.chmod(filePath, (FilePermissions) filePermissions);
+            var fileInfo = new UnixFileInfo(filePath);
 
             // act
-            var result = s_unixOperations.CheckFileHasAnyOfPermissions(filePath, FileAccessPermissions.GroupWrite | FileAccessPermissions.OtherWrite);
+            var result = s_unixOperations.CheckFileHasAnyOfPermissions(fileInfo.FileAccessPermissions, FileAccessPermissions.GroupWrite | FileAccessPermissions.OtherWrite);
 
             // assert
             Assert.IsFalse(result);
@@ -158,7 +160,8 @@ public void TestCreateFileWithUserRwPermissions()
             s_unixOperations.CreateFileWithPermissions(filePath, FileAccessPermissions.UserRead | FileAccessPermissions.UserWrite);
 
             // assert
-            var result = s_unixOperations.CheckFileHasAnyOfPermissions(filePath, FileAccessPermissions.AllPermissions & ~(FileAccessPermissions.UserRead | FileAccessPermissions.UserWrite));
+            var fileInfo = new UnixFileInfo(filePath);
+            var result = s_unixOperations.CheckFileHasAnyOfPermissions(fileInfo.FileAccessPermissions, FileAccessPermissions.AllPermissions & ~(FileAccessPermissions.UserRead | FileAccessPermissions.UserWrite));
             Assert.IsFalse(result);
         }
 
@@ -173,7 +176,8 @@ public void TestCreateDirectoryWithUserRwxPermissions()
             s_unixOperations.CreateDirectoryWithPermissions(dirPath, FileAccessPermissions.UserReadWriteExecute);
 
             // assert
-            var result = s_unixOperations.CheckFileHasAnyOfPermissions(dirPath, FileAccessPermissions.AllPermissions & ~FileAccessPermissions.UserReadWriteExecute);
+            var dirInfo = new UnixDirectoryInfo(dirPath);
+            var result = s_unixOperations.CheckFileHasAnyOfPermissions(dirInfo.FileAccessPermissions, FileAccessPermissions.AllPermissions & ~FileAccessPermissions.UserReadWriteExecute);
             Assert.IsFalse(result);
         }
 
@@ -186,7 +190,8 @@ public void TestNestedDir()
             s_unixOperations.CreateDirectoryWithPermissions(dirPath, FileAccessPermissions.UserReadWriteExecute);
 
             // act
-            var result = s_unixOperations.CheckFileHasAnyOfPermissions(dirPath, FileAccessPermissions.AllPermissions & ~FileAccessPermissions.UserReadWriteExecute);
+            var dirInfo = new UnixDirectoryInfo(dirPath);
+            var result = s_unixOperations.CheckFileHasAnyOfPermissions(dirInfo.FileAccessPermissions, FileAccessPermissions.AllPermissions & ~FileAccessPermissions.UserReadWriteExecute);
 
             // assert
             Assert.IsFalse(result);
diff --git a/Snowflake.Data/Configuration/EasyLoggingConfigFinder.cs b/Snowflake.Data/Configuration/EasyLoggingConfigFinder.cs
@@ -1,7 +1,5 @@
 using System;
 using System.IO;
-using System.Runtime.InteropServices;
-using Mono.Unix;
 using Snowflake.Data.Core.Tools;
 using Snowflake.Data.Log;
 
@@ -15,15 +13,13 @@ internal class EasyLoggingConfigFinder
         internal const string ClientConfigEnvironmentName = "SF_CLIENT_CONFIG_FILE";
 
         private readonly FileOperations _fileOperations;
-        private readonly UnixOperations _unixOperations;
         private readonly EnvironmentOperations _environmentOperations;
         
-        public static readonly EasyLoggingConfigFinder Instance = new EasyLoggingConfigFinder(FileOperations.Instance, UnixOperations.Instance, EnvironmentOperations.Instance);
+        public static readonly EasyLoggingConfigFinder Instance = new EasyLoggingConfigFinder(FileOperations.Instance, EnvironmentOperations.Instance);
 
-        internal EasyLoggingConfigFinder(FileOperations fileOperations, UnixOperations unixFileOperations, EnvironmentOperations environmentOperations)
+        internal EasyLoggingConfigFinder(FileOperations fileOperations, EnvironmentOperations environmentOperations)
         {
             _fileOperations = fileOperations;
-            _unixOperations = unixFileOperations;
             _environmentOperations = environmentOperations;
         }
 
@@ -37,10 +33,6 @@ public virtual string FindConfigFilePath(string configFilePathFromConnectionStri
                               ?? GetFilePathEnvironmentVariable()
                               ?? GetFilePathFromDriverLocation()
                               ?? GetFilePathFromHomeDirectory();
-            if (configFilePath != null)
-            {
-                CheckIfValidPermissions(configFilePath);
-            }
             return configFilePath;
         }
         
@@ -96,19 +88,5 @@ private string OnlyIfFileExists(string filePath, string directoryDescription)
             }
             return null;
         }
-
-        private void CheckIfValidPermissions(string filePath)
-        {
-            if (RuntimeInformation.IsOSPlatform(OSPlatform.Windows))
-                return;
-
-            // Check if others have permissions to modify the file and fail if so
-            if (_unixOperations.CheckFileHasAnyOfPermissions(filePath, FileAccessPermissions.GroupWrite | FileAccessPermissions.OtherWrite))
-            {
-                var errorMessage = $"Error due to other users having permission to modify the config file: {filePath}";
-                s_logger.Error(errorMessage);
-                throw new Exception(errorMessage);
-            }
-        }
     }
 }
diff --git a/Snowflake.Data/Configuration/EasyLoggingConfigParser.cs b/Snowflake.Data/Configuration/EasyLoggingConfigParser.cs
@@ -1,10 +1,12 @@
 using System;
 using System.Collections.Generic;
-using System.IO;
 using System.Linq;
 using System.Reflection;
+using Mono.Unix;
+using System.Security;
 using Newtonsoft.Json;
 using Newtonsoft.Json.Linq;
+using Snowflake.Data.Core.Tools;
 using Snowflake.Data.Log;
 
 namespace Snowflake.Data.Configuration
@@ -13,7 +15,16 @@ internal class EasyLoggingConfigParser
     {
         private static readonly SFLogger s_logger = SFLoggerFactory.GetLogger<EasyLoggingConfigParser>();
 
-        public static readonly EasyLoggingConfigParser Instance = new EasyLoggingConfigParser();
+        private readonly UnixOperations _unixOperations;
+
+        public static readonly EasyLoggingConfigParser Instance = new EasyLoggingConfigParser(UnixOperations.Instance);
+
+        internal EasyLoggingConfigParser(UnixOperations unixOperations)
+        {
+            _unixOperations = unixOperations;
+        }
+
+        internal EasyLoggingConfigParser() : this(UnixOperations.Instance) { }
 
         public virtual ClientConfig Parse(string filePath)
         {
@@ -29,11 +40,11 @@ private string TryToReadFile(string filePath)
             }
             try
             {
-                return File.ReadAllText(filePath);
+                return FileOperations.Instance.ReadAllText(filePath, CheckIfValidPermissions);
             }
             catch (Exception e)
             {
-                var errorMessage = "Finding easy logging configuration failed";
+                var errorMessage = $"Finding easy logging configuration failed: {e.Message}";
                 s_logger.Error(errorMessage, e);
                 throw new Exception(errorMessage);
             }
@@ -76,5 +87,32 @@ private void CheckForUnknownFields(string fileContent)
                 .ToList()
                 .ForEach(unknownKey => s_logger.Warn($"Unknown field from config: {unknownKey.Name}"));
         }
+
+        private void CheckIfValidPermissions(UnixStream stream)
+        {
+            // Check user ownership of file
+            if (stream.OwnerUserId != _unixOperations.GetCurrentUserId())
+            {
+                var errorMessage = $"Error due to user not having ownership of the config file";
+                s_logger.Error(errorMessage);
+                throw new SecurityException(errorMessage);
+            }
+
+            // Check group ownership of file
+            if (stream.OwnerGroupId != _unixOperations.GetCurrentGroupId())
+            {
+                var errorMessage = $"Error due to group not having ownership of the config file";
+                s_logger.Error(errorMessage);
+                throw new SecurityException(errorMessage);
+            }
+
+            // Check if others have permissions to modify the file and fail if so
+            if (_unixOperations.CheckFileHasAnyOfPermissions(stream.FileAccessPermissions, FileAccessPermissions.GroupWrite | FileAccessPermissions.OtherWrite))
+            {
+                var errorMessage = $"Error due to other users having permission to modify the config file";
+                s_logger.Error(errorMessage);
+                throw new SecurityException(errorMessage);
+            }
+        }
     }
 }
diff --git a/Snowflake.Data/Core/Tools/FileOperations.cs b/Snowflake.Data/Core/Tools/FileOperations.cs
diff --git a/Snowflake.Data/Core/Tools/UnixOperations.cs b/Snowflake.Data/Core/Tools/UnixOperations.cs

Original file line number	Diff line number	Diff line change
`@@ -16,7 +16,7 @@ public override bool CheckDirectoryHasAnyOfPermissions(string path, FileAccessPe`
`16`	`16`	`return DirectoryPermissionsReturn;`
`17`	`17`	`}`
`18`	`18`
`19`		`- public override bool CheckFileHasAnyOfPermissions(string path, FileAccessPermissions permissions)`
	`19`	`+ public override bool CheckFileHasAnyOfPermissions(FileAccessPermissions actualPermissions , FileAccessPermissions expectedPermissions)`
`20`	`20`	`{`
`21`	`21`	`return FilePermissionsReturn;`
`22`	`22`	`}`