Open_basedir issue with woocommerce gift certificates plugin

strarsis · December 5, 2022, 6:40pm

The plugin doesn’t have a filter for the temp folder / temp file paths?

The PHP open_basedir config is set by a jinja template (Trellis ansible):

roots/trellis/blob/v1.18.0/roles/wordpress-setup/templates/php-fpm.conf.j2#L18


      
          group = {{ web_group }}
          pm = dynamic
          pm.max_children = {{ php_fpm_pm_max_children }}
          pm.start_servers = {{ php_fpm_pm_start_servers }}
          pm.min_spare_servers = {{ php_fpm_pm_min_spare_servers }}
          pm.max_spare_servers = {{ php_fpm_pm_max_spare_servers }}
          pm.max_requests = {{ php_fpm_pm_max_requests }}
          chdir = {{ www_root }}/
          php_flag[log_errors] = on
          php_flag[display_errors] = {{ php_display_errors }}
          php_admin_value[open_basedir] = {{ www_root }}/:/tmp
          {% if memcached_sessions %}
          php_value[session.save_handler] = memcached
          php_value[session.save_path] = "{{ memcached_listen_ip }}:{{ memcached_port }}"
          {% endif %}

You would have to override it so you can specify your own open_basedir values,
e.g.:

php_admin_value[open_basedir] = {{ php_open_basedir }}

And then set the php_open_basedir variable as with other variables, e.g. to
{{ www_root }}/:/tmp:/extra-path-the-plugin-is-hardcoded-to-use/
(The path delimiter/separator in POSIX/Linux/(here) is :).