Protect user db with flock

2025-08-03 17:44:49 +02:00 · 2019-08-01 19:39:25 +02:00 · 2019-08-01 19:39:25 +02:00 · 81e9c7dcff
commit 81e9c7dcff
parent d6861881ab
5 changed files with 68 additions and 38 deletions
--- a/target/bin/delmailuser
+++ b/target/bin/delmailuser
@ -33,25 +33,31 @@ shift $((OPTIND-1))
 [ -z "$@" ] && { usage; errex "No user specifed"; }
 [ -s "$DATABASE" ] || exit 0

-for USER in "$@"; do
-	#very simple plausibility check
-	[[ "$USER" != *"@"*"."* ]] && errex "No valid address: $USER"
-	MAILARR=(${USER//@/ })
-	# XXX $USER must not contain /s and other syntactic characters
-	USER=$(escape "$USER")
-	sed -i "/^"$USER"|/d" $DATABASE
-	[ $? != 0 ] && errex "$USER couldn't be deleted in $DATABASE. $?"
-	# Delete all aliases where the user is the only recipient( " $USER$" )
-	# Delete user only for all aliases that deliver to multiple recipients ( ",$USER" "$USER," )
-	sed -i -e "/ "$USER"$/d" \
-				 -e "s/,"$USER"//g" \
-				 -e "s/"$USER",//g" $ALIAS_DATABASE
-	[ $? = 0 ] && echo "$USER and potential aliases deleted." || errex "Aliases for $USER couldn't be deleted in $ALIAS_DATABASE. $?"
-	if [ "$MAILDEL" != "y" ]; then
-	  read -p "Do you want to delete the maildir as well(all mails will be removed)?(y/n) " MAILDEL
-		echo
-	fi
-	[ "$MAILDEL" != "y" ] && errex "Leaving the maildir untouched. If you want to delete it at a later point use \"sudo docker exec mail rm -R /var/mail/${MAILARR[1]}/${MAILARR[0]}\""
-	rm -r -f /var/mail/${MAILARR[1]}/${MAILARR[0]}
-	[ $? = 0 ] && echo "Maildir deleted." || errex "Maildir couldn't be deleted: $?"
-done
+# Protect config file with lock to avoid race conditions
+(
+  flock -e 200
+
+  for USER in "$@"; do
+    # very simple plausibility check
+    [[ "$USER" != *"@"*"."* ]] && errex "No valid address: $USER"
+    MAILARR=(${USER//@/ })
+    # XXX $USER must not contain /s and other syntactic characters
+    USER=$(escape "$USER")
+    sed -i "/^"$USER"|/d" $DATABASE
+    [ $? != 0 ] && errex "$USER couldn't be deleted in $DATABASE. $?"
+    # Delete all aliases where the user is the only recipient( " $USER$" )
+    # Delete user only for all aliases that deliver to multiple recipients ( ",$USER" "$USER," )
+    sed -i -e "/ "$USER"$/d" \
+        -e "s/,"$USER"//g" \
+        -e "s/"$USER",//g" $ALIAS_DATABASE
+    [ $? = 0 ] && echo "$USER and potential aliases deleted." || errex "Aliases for $USER couldn't be deleted in $ALIAS_DATABASE. $?"
+    if [ "$MAILDEL" != "y" ]; then
+      read -p "Do you want to delete the maildir as well(all mails will be removed)?(y/n) " MAILDEL
+      echo
+    fi
+    [ "$MAILDEL" != "y" ] && errex "Leaving the maildir untouched. If you want to delete it at a later point use \"sudo docker exec mail rm -R /var/mail/${MAILARR[1]}/${MAILARR[0]}\""
+    rm -r -f /var/mail/${MAILARR[1]}/${MAILARR[0]}
+    [ $? = 0 ] && echo "Maildir deleted." || errex "Maildir couldn't be deleted: $?"
+  done
+
+) 200<$DATABASE