fix: skip chmod on existing directories in SaveUploadedFile

SaveUploadedFile called os.Chmod on the target directory even if it already existed. This breaks when saving to system directories like /tmp where the process lacks permission to chmod. Now only newly created directories get chmod'd. Existing directories are left as-is, which is the correct behavior since the caller should not modify permissions of directories they don't own. Fixes #4622
2026-04-29 23:23:18 +08:00 · 2026-04-15 20:02:50 +02:00 · 2026-04-15 20:02:50 +02:00 · 6cfac86ae7
commit 6cfac86ae7
parent d3ffc99852
2 changed files with 22 additions and 9 deletions
--- a/context.go
+++ b/context.go
@ -715,6 +715,11 @@ func (c *Context) MultipartForm() (*multipart.Form, error) {
 	return c.Request.MultipartForm, err
 }

+func dirExists(path string) bool {
+	info, err := os.Stat(path)
+	return err == nil && info.IsDir()
+}
+
 // SaveUploadedFile uploads the form file to specific dst.
 func (c *Context) SaveUploadedFile(file *multipart.FileHeader, dst string, perm ...fs.FileMode) error {
 	src, err := file.Open()
@ -728,11 +733,16 @@ func (c *Context) SaveUploadedFile(file *multipart.FileHeader, dst string, perm
 		mode = perm[0]
 	}
 	dir := filepath.Dir(dst)
+	dirExisted := dirExists(dir)
 	if err = os.MkdirAll(dir, mode); err != nil {
 		return err
 	}
-	if err = os.Chmod(dir, mode); err != nil {
-		return err
+	// Only chmod newly created directories. Attempting to chmod
+	// pre-existing directories (e.g. /tmp) may fail with EPERM.
+	if !dirExisted {
+		if err = os.Chmod(dir, mode); err != nil {
+			return err
+		}
 	}

 	out, err := os.Create(dst)
--- a/context_test.go
+++ b/context_test.go
@ -20,6 +20,7 @@ import (
 	"os"
 	"path/filepath"
 	"reflect"
+	"runtime"
 	"strconv"
 	"strings"
 	"sync"
@ -247,13 +248,15 @@ func TestSaveUploadedFileWithPermission(t *testing.T) {
 	require.NoError(t, err)
 	assert.Equal(t, "permission_test", f.Filename)
 	var mode fs.FileMode = 0o755
-	require.NoError(t, c.SaveUploadedFile(f, "permission_test", mode))
-	t.Cleanup(func() {
-		assert.NoError(t, os.Remove("permission_test"))
-	})
-	info, err := os.Stat(filepath.Dir("permission_test"))
-	require.NoError(t, err)
-	assert.Equal(t, info.Mode().Perm(), mode)
+	tmpDir := t.TempDir()
+	newSubDir := filepath.Join(tmpDir, "newdir")
+	dst := filepath.Join(newSubDir, "permission_test")
+	require.NoError(t, c.SaveUploadedFile(f, dst, mode))
+	if runtime.GOOS != "windows" {
+		info, err := os.Stat(newSubDir)
+		require.NoError(t, err)
+		assert.Equal(t, mode, info.Mode().Perm())
+	}
 }

 func TestSaveUploadedFileWithPermissionFailed(t *testing.T) {