Add new regex config parameter version to blacklisted files and excluded directories

[mmattel]

This PR is based on the work of @tdaget at PR #36331 (closed)
The referenced PR is now closed because of rebasing issues and CI will never get green there.
I improved the original work a bit.

Description

This PR enhances the existing config parameters blacklisted_files and excluded_directories by a new regex parameter version blacklisted_files_regex and excluded_directories_regex.

Related Issue

• No issue related

Motivation and Context

Sometimes it is necessary to exclude/blacklist files or directories to be written/renamed/scanned on a more complex parameter than a static version as we have right now. This PR allows eg. to prevent uploading Microsoft Outlook .pst files or creating / renaming / scanning directories based on a pattern defined by a regex. The existing parameters are not touched.

How Has This Been Tested?

Running local with various scenarios successfully.

Screenshots (if appropriate):

Types of changes

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Database schema changes (next release will require increase of minor version instead of patch)
• Breaking change (fix or feature that would cause existing functionality to change)
• Technical debt
• Tests only (no source changes)

Checklist:

• Code changes
• Unit tests added
• Acceptance tests added
• Documentation ticket raised: Not necessary as doc is part of config.sample.php
• Changelog item, see TEMPLATE

[codecov]

Codecov Report

Merging #36360 into master will increase coverage by <.01%.
The diff coverage is 77.27%.

@@             Coverage Diff              @@
##             master   #36360      +/-   ##
============================================
+ Coverage     64.68%   64.68%   +<.01%     
- Complexity    19106    19122      +16     
============================================
  Files          1269     1269              
  Lines         74728    74778      +50     
  Branches       1320     1320              
============================================
+ Hits          48337    48372      +35     
- Misses        26003    26018      +15     
  Partials        388      388

Flag	Coverage Δ	Complexity Δ
#javascript	54.12% <ø> (ø)	0 <ø> (ø)	⬇️
#phpunit	65.85% <77.27%> (ø)	19122 <11> (+16)	⬆️

Impacted Files	Coverage Δ	Complexity Δ
lib/private/Files/Filesystem.php	69.91% <77.27%> (+0.01%)	141 <11> (+16)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update a9413e4...339c2df. Read the comment docs.

[tdaget]

An error is located in each preg_match call, regex must be surrounded by \. Plus, as regex match is case insensitive an i must be added to the end of the string.

In lib/private/Files/Filesystem.php:
It might be: \preg_match('/'.$item.'/i', $path_part)

[tdaget]

You add a comment for regex variables :

• INFO: Compare pairs are converted to lowercase by default.

I'm ok for regular variables, for regex the comment might be adapted as things are not simple as a lowercase string.

Maybe :

• INFO: regex matching is forced case insensitive.

[mmattel]

@tdaget thanks for the comments, both fixed

[mmattel]

@phil-davis can you do me a favour and take a look why CI fails.
I have rebased on latest master (on and on...) and it never gets green.

[phil-davis]

The unit tests fail:

There were 3 failures:

1) Test\Files\FilesystemTest::testIsFileBlacklistedRegex with data set #6 ('/etc/dummy/machin.chose', array('.*\.pst$', '.*dummy.*', '^sample.*'), false)
Failed asserting that true matches expected false.

/drone/src/tests/lib/Files/FilesystemTest.php:299

2) Test\Files\FilesystemTest::testIsExcludedRegex with data set #8 ('/foo/_Thomas/Files', array('.*backup.*', 'Thomas.*'), false)
Failed asserting that true matches expected false.

/drone/src/tests/lib/Files/FilesystemTest.php:347

3) Test\Files\FilesystemTest::testIsExcludedRegex with data set #10 ('/foo/_ThomasFoo/Files', array('.*backup.*', 'Thomas.*'), false)
Failed asserting that true matches expected false.

/drone/src/tests/lib/Files/FilesystemTest.php:347

Run them yourself locally:
make test-php-unit NOCOVERAGE=true TEST_PHP_SUITE=tests/lib/Files/FilesystemTest.php
And then fix the code or the tests (whichever is wrong)

[mmattel]

Tests fixed (locally tested), rebased and pushed, CI is green 😄
@phil-davis can you do a review pls

[phil-davis]

Just nits about spelling etc.
Somebody in product management needs to decide if this feature should be added.

[mmattel]

@micbar @pmaier1 adding you according the suggestion of @phil-davis
This PR is a great and useful feature, adding good functionality, not breaking an exiting config.
Your review / approval is welcomed.

[phil-davis]

@micbar I have completed acceptance tests for this. The new regex features work.

Somebody could give a technical review of the source code changes.

@individual-it can do a review of the acceptance tests.

If this is approved, then we could also cherry-pick this back into release-10.4 branch so it can get released.

In making tests for the existing blacklist and excluded directories features, I discovered #36645 - in "old" "v1" chunking uploads the blocked uploads return a 507 (rather than 403). The uploads are blocked - so that existing issue is not so important. Similar behaviour happens in the new regex features.

[individual-it]

tests look good
we could move them all over to a separate feature file though

[phil-davis]

I created issue #36654 for the reorganisation of feature files, because that impacts more than just the scenarios in this PR

[phil-davis]

Rebased and resolved conflict

[karakayasemi]

We are using camel case in method names. I do not think we need an exception in here.

[karakayasemi]

please use camel case for variable names.

[karakayasemi]

To prevent code duplication, we can move these assignments to a private function. But, I am not sure is it worth. It is up to writer.

[karakayasemi]

This line is confusing, the last element of $path_parts is string, not an array. As far as understand, what is meant here, the last element of $path_parts should be holded on an array to easy comparison or I am misunderstanding.

[phil-davis]

I have rewritten the comment a bit. PR incoming.

[karakayasemi]

Should not this only apply to directories? As far as I see, we are also applying it to files.

[sharidas]

Couldn't we use $item[0] instead of calling substr. Guess accessing index directly, when we know is much faster?

[sharidas]

Same here? How about using $item[-1]

[sharidas]

Looks like we ar suppressing error using @. Any reason to add it here?

[sharidas]

How about writing it in a line say:
$exclude_folders = $exclude_folders_regex = $blacklist_files = blacklist_files_regex = $ed. Or any other suggestion?

[sharidas]

Would it be a bad idea to set blacklist_files to null in the beginning and then try to check if its non null here?

[sharidas]

Same here. Couldn't we assign blacklist_files_regex to null in the beginning of the method?

[sharidas]

Wouldn't it be better to set the exclude_folders to null in the beginning of the method?

[phil-davis]

Hmmm - I am not even sure why this test is here - there is already code above that always sets $exclude_folders - so the code inside this if will always be run.
I will remove the unneeded if in all 4 places.

[sharidas]

Wouldn't it be better to set the exclude_folders_regex to null in the beginning of the method?

[phil-davis]

See #36694 and #36695 for the changes to address the review comments