PHP is_writable()函数始终为可写目录返回false [英] PHP is_writable() function always returns false for a writable directory
问题描述
我正在尝试在Red Hat 7 Amazon EC2实例(ami-8cff51fb)中安装基于PHP的软件包。已使用yum在其上安装了Apache 2.4.6和PHP 5.4.16。安装失败,因为它说一个特定目录必须可由具有0755或0775权限的Web服务器写入。
I'm trying to install a PHP-based software package in a Red Hat 7 Amazon EC2 instance (ami-8cff51fb) that has had Apache 2.4.6 and PHP 5.4.16 installed on it using yum. The installation fails because it says a particular directory needs to be writable by the webserver with 0755 or 0775 permissions.
该目录具有0775权限,其中 root:apache
所有权。我已经验证了apache用户正在运行httpd进程,并且apache用户是apache组的成员。
The directory in question has 0775 permissions with root:apache
ownership. I have verified that the httpd process is being run by the apache user and that the apache user is a member of the apache group.
如果我编辑 / etc / passwd
暂时给apache用户一个登录shell,然后 su
到该帐户,我可以手动创建文件目录中使用 touch
命令的apache用户。
If I edit /etc/passwd
to temporarily give the apache user a login shell and then su
to that account, I am able to manually create files as the apache user within the directory using the touch
command.
我查看了安装程序脚本的源代码并确定失败了,因为PHP的 is_writable()
函数针对该目录返回了false。我创建了一个单独的测试PHP脚本来隔离和验证所看到的行为:
I took a look at the source code of the installer script and identified that it's failing because PHP's is_writable()
function is returning false for the directory in question. I created a separate test PHP script to isolate and verify the behaviour I'm seeing:
<?php
$dir = '/var/www/html/limesurvey/tmp';
if (is_writable($dir)) {
echo $dir, ' is writable';
} else {
echo $dir, ' is NOT writable';
}
?>
这将输出不可写消息。如果我将上面的 $ dir
更改为 / tmp
,则它会正确输出 / tmp
是可写的。
This outputs the NOT writable message. If I change $dir
above to be /tmp
then it correctly outputs that /tmp
is writable.
如果我将目录权限更改为0777和/或将所有权更改为 apache:apache
,PHP仍然报告该目录不可写。我什至尝试创建一个具有相同权限和所有权的 / test
目录,而我的测试脚本仍将其报告为不可写。
If I change the directory permissions to 0777 and/or change the ownership to apache:apache
then PHP still reports that the directory isn't writable. I even tried creating a /test
directory set up with the same permissions and ownership and my test script still reports it as not writable.
我真的很茫然地解释这种行为,所以欢迎提出任何想法!
I'm really at a loss as to explain this behaviour, so any ideas would be welcome!
预先感谢。
/ var / www / html / limesurvey
的目录列表如下。根据Lime Survey的 tmp 和 upload
目录具有0775权限.org / Installation>安装说明。 test.php
是我上面提到的测试脚本。
The directory listing for /var/www/html/limesurvey
is given below. The tmp
and upload
directories have 0775 permissions as per Lime Survey's installation instructions. test.php
is my test script mentioned above.
[ec2-user@ip-xx-x-x-xxx limesurvey]$ pwd
/var/www/html/limesurvey
[ec2-user@ip-xx-x-x-xxx limesurvey]$ ls -al
total 80
drwxr-xr-x. 20 root apache 4096 Mar 30 11:25 .
drwxr-xr-x. 3 root root 23 Mar 25 14:41 ..
drwxr-xr-x. 2 root apache 38 Mar 10 12:56 admin
drwxr-xr-x. 16 root apache 4096 Mar 10 12:56 application
drwxr-xr-x. 3 root apache 4096 Mar 10 12:56 docs
drwxr-xr-x. 2 root apache 4096 Mar 10 12:56 fonts
drwxr-xr-x. 19 root apache 4096 Mar 10 12:56 framework
-rw-r--r--. 1 root apache 429 Mar 10 12:56 .gitattributes
-rw-r--r--. 1 root apache 399 Mar 10 12:56 .gitignore
-rw-r--r--. 1 root apache 296 Mar 10 12:56 .htaccess
drwxr-xr-x. 4 root apache 4096 Mar 10 12:56 images
-rw-r--r--. 1 root apache 6652 Mar 10 12:56 index.php
drwxr-xr-x. 5 root apache 39 Mar 10 12:56 installer
drwxr-xr-x. 89 root apache 4096 Mar 10 12:56 locale
drwxrwxr-x. 2 root apache 39 Mar 25 14:41 logs
drwxr-xr-x. 4 root apache 49 Mar 10 12:56 plugins
-rw-r--r--. 1 root apache 61 Mar 10 12:56 README
drwxr-xr-x. 4 root apache 4096 Mar 10 12:56 scripts
-rw-r--r--. 1 root apache 380 Mar 10 12:56 .scrutinizer.yml
drwxr-xr-x. 5 root apache 4096 Mar 10 12:56 styles
drwxr-xr-x. 5 root apache 4096 Mar 10 12:56 styles-public
drwxr-xr-x. 12 root apache 4096 Mar 10 12:56 templates
-rw-r--r--. 1 root apache 159 Mar 30 11:11 test.php
drwxr-xr-x. 3 root apache 20 Mar 10 12:56 themes
drwxr-xr-x. 26 root apache 4096 Mar 10 12:56 third_party
drwxrwxr-x. 5 root apache 80 Mar 26 13:45 tmp
drwxrwxr-x. 6 root apache 79 Mar 10 12:57 upload
运行 namei -l / var / www / html / limesurvey / tmp
给出:
[ec2-user@ip-x-x-x-xxx ~]$ namei -l /var/www/html/limesurvey/tmp
f: /var/www/html/limesurvey/tmp
drwxr-xr-x root root /
drwxr-xr-x root root var
drwxr-xr-x root root www
drwxr-xr-x root root html
drwxr-xr-x root apache limesurvey
drwxrwxr-x root apache tmp
推荐答案
经过反复的挠头之后SELinux阻止了目录的写入。我发现好解释发生什么情况的教程。我可以通过运行以下命令来修复它:
After much head-scratching, it transpired that SELinux was preventing the directory from being written to. I found a good tutorial that explains what's going on. I was able to fix it by running this command:
sudo chcon -R -t httpd_sys_rw_content_t tmp
这篇关于PHP is_writable()函数始终为可写目录返回false的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!