From db924a5a174f49d689c23dc57b193609a23f47a7 Mon Sep 17 00:00:00 2001
From: xZero707
Date: Wed, 17 Jun 2020 01:37:45 +0200
Subject: [PATCH] Disable WordPress core updates
---
Dockerfile | 1 +
rootfs/etc/cont-init.d/10-init-wordpress | 13 +-
rootfs/etc/wp-mods/wp-admin/update-core.php | 924 ++++++++++++++++++++
3 files changed, 935 insertions(+), 3 deletions(-)
create mode 100644 rootfs/etc/wp-mods/wp-admin/update-core.php
diff --git a/Dockerfile b/Dockerfile
index ce9b86e..ebd02cc 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -48,5 +48,6 @@ RUN echo "* * * * * /usr/local/bin/php /var/www/${WEB_ROOT}/wp-cron.php" >> /etc
VOLUME ["/var/www/${WEB_ROOT}", "/var/www/${WEB_ROOT}/wp-content"]
ENV S6_BEHAVIOUR_IF_STAGE2_FAILS 2
+ENV ENFORCE_DISABLE_WP_UPDATES true
EXPOSE 80/TCP
\ No newline at end of file
diff --git a/rootfs/etc/cont-init.d/10-init-wordpress b/rootfs/etc/cont-init.d/10-init-wordpress
index 6133487..a75e4a7 100644
--- a/rootfs/etc/cont-init.d/10-init-wordpress
+++ b/rootfs/etc/cont-init.d/10-init-wordpress
@@ -1,6 +1,8 @@
#!/usr/bin/with-contenv bash
set -e
+DISABLE_WP_UPDATES="${ENFORCE_DISABLE_WP_UPDATES:-true}"
+
# Designed to replace original, overcomplicated entrypoint script from official wordpress docker repository
# Why not use already available tools instead?!
@@ -9,11 +11,16 @@ function wp() {
/usr/local/bin/wp --allow-root "$@"
}
-echo "> Verifying 'Wordpress ${WP_VERSION}' installation..."
+echo "> Verifying 'WordPress ${WP_VERSION}' installation..."
if wp core version;
then
- echo "> Found 'Wordpress ${WP_VERSION}'"
+ echo "> Identified 'WordPress ${WP_VERSION}'"
else
- echo "> Downloading 'Wordpress ${WP_VERSION}'..."
+ echo "> Downloading 'WordPress ${WP_VERSION}'..."
wp core download --locale="${WP_LOCALE}" --version="${WP_VERSION}"
+
+ if [ "${DISABLE_WP_UPDATES}" != "false" ]; then
+ echo "> Disabling WordPress updates..."
+ cp "/etc/wp-mods" "/var/www/html" -r -T
+ fi
fi
\ No newline at end of file
diff --git a/rootfs/etc/wp-mods/wp-admin/update-core.php b/rootfs/etc/wp-mods/wp-admin/update-core.php
new file mode 100644
index 0000000..b239054
--- /dev/null
+++ b/rootfs/etc/wp-mods/wp-admin/update-core.php
@@ -0,0 +1,924 @@
+%s', $update->current, $update->locale );
+
+ if ( 'en_US' === $update->locale && 'en_US' === get_locale() ) {
+ $version_string = $update->current;
+ } elseif ( 'en_US' === $update->locale && $update->packages->partial && $wp_version == $update->partial_version ) {
+ $updates = get_core_updates();
+ if ( $updates && 1 == count( $updates ) ) {
+ // If the only available update is a partial builds, it doesn't need a language-specific version string.
+ $version_string = $update->current;
+ }
+ }
+
+ $current = false;
+ if ( ! isset( $update->response ) || 'latest' === $update->response ) {
+ $current = true;
+ }
+ $submit = __( 'Update Now' );
+ $form_action = 'update-core.php?action=do-core-upgrade';
+ $php_version = phpversion();
+ $mysql_version = $wpdb->db_version();
+ $show_buttons = true;
+ if ( 'development' === $update->response ) {
+ $message = __( 'You are using a development version of WordPress. You can update to the latest nightly build automatically:' );
+ } else {
+ if ( $current ) {
+ /* translators: %s: WordPress version. */
+ $message = sprintf( __( 'If you need to re-install version %s, you can do so here:' ), $version_string );
+ $submit = __( 'Re-install Now' );
+ $form_action = 'update-core.php?action=do-core-reinstall';
+ } else {
+ $php_compat = version_compare( $php_version, $update->php_version, '>=' );
+ if ( file_exists( WP_CONTENT_DIR . '/db.php' ) && empty( $wpdb->is_mysql ) ) {
+ $mysql_compat = true;
+ } else {
+ $mysql_compat = version_compare( $mysql_version, $update->mysql_version, '>=' );
+ }
+
+ $version_url = sprintf(
+ /* translators: %s: WordPress version. */
+ esc_url( __( 'https://wordpress.org/support/wordpress-version/version-%s/' ) ),
+ sanitize_title( $update->current )
+ );
+
+ $php_update_message = '
' . sprintf(
+ /* translators: %s: URL to Update PHP page. */
+ __( 'Learn more about updating PHP .' ),
+ esc_url( wp_get_update_php_url() )
+ );
+
+ $annotation = wp_get_update_php_annotation();
+ if ( $annotation ) {
+ $php_update_message .= '
' . $annotation . ' ';
+ }
+
+ if ( ! $mysql_compat && ! $php_compat ) {
+ $message = sprintf(
+ /* translators: 1: URL to WordPress release notes, 2: WordPress version number, 3: Minimum required PHP version number, 4: Minimum required MySQL version number, 5: Current PHP version number, 6: Current MySQL version number. */
+ __( 'You cannot update because WordPress %2$s requires PHP version %3$s or higher and MySQL version %4$s or higher. You are running PHP version %5$s and MySQL version %6$s.' ),
+ $version_url,
+ $update->current,
+ $update->php_version,
+ $update->mysql_version,
+ $php_version,
+ $mysql_version
+ ) . $php_update_message;
+ } elseif ( ! $php_compat ) {
+ $message = sprintf(
+ /* translators: 1: URL to WordPress release notes, 2: WordPress version number, 3: Minimum required PHP version number, 4: Current PHP version number. */
+ __( 'You cannot update because WordPress %2$s requires PHP version %3$s or higher. You are running version %4$s.' ),
+ $version_url,
+ $update->current,
+ $update->php_version,
+ $php_version
+ ) . $php_update_message;
+ } elseif ( ! $mysql_compat ) {
+ $message = sprintf(
+ /* translators: 1: URL to WordPress release notes, 2: WordPress version number, 3: Minimum required MySQL version number, 4: Current MySQL version number. */
+ __( 'You cannot update because WordPress %2$s requires MySQL version %3$s or higher. You are running version %4$s.' ),
+ $version_url,
+ $update->current,
+ $update->mysql_version,
+ $mysql_version
+ );
+ } else {
+ $message = sprintf(
+ /* translators: 1: URL to WordPress release notes, 2: WordPress version number including locale if necessary. */
+ __( 'You can update to WordPress %2$s automatically:' ),
+ $version_url,
+ $version_string
+ );
+ }
+ if ( ! $mysql_compat || ! $php_compat ) {
+ $show_buttons = false;
+ }
+ }
+ }
+
+ echo '
';
+ echo $message;
+ echo '
';
+ echo '';
+
+}
+
+/**
+ * Display dismissed updates.
+ *
+ * @since 2.7.0
+ */
+function dismissed_updates() {
+ $dismissed = get_core_updates(
+ array(
+ 'dismissed' => true,
+ 'available' => false,
+ )
+ );
+ if ( $dismissed ) {
+
+ $show_text = esc_js( __( 'Show hidden updates' ) );
+ $hide_text = esc_js( __( 'Hide hidden updates' ) );
+ ?>
+
+ ' . __( 'Show hidden updates' ) . ' ';
+ echo '';
+ foreach ( (array) $dismissed as $update ) {
+ echo '';
+ list_core_update( $update );
+ echo ' ';
+ }
+ echo ' ';
+ }
+}
+
+/**
+ * Display upgrade WordPress for downloading latest or upgrading automatically form.
+ *
+ * @since 2.7.0
+ *
+ * @global string $required_php_version The required PHP version string.
+ * @global string $required_mysql_version The required MySQL version string.
+ */
+function core_upgrade_preamble() {
+ global $required_php_version, $required_mysql_version;
+
+ $wp_version = get_bloginfo( 'version' );
+ $updates = get_core_updates();
+
+ if ( ! isset( $updates[0]->response ) || 'latest' === $updates[0]->response ) {
+ echo '';
+ _e( 'You have the latest version of WordPress.' );
+
+ if ( wp_http_supports( array( 'ssl' ) ) ) {
+ require_once ABSPATH . 'wp-admin/includes/class-wp-upgrader.php';
+ $upgrader = new WP_Automatic_Updater;
+ $future_minor_update = (object) array(
+ 'current' => $wp_version . '.1.next.minor',
+ 'version' => $wp_version . '.1.next.minor',
+ 'php_version' => $required_php_version,
+ 'mysql_version' => $required_mysql_version,
+ );
+ $should_auto_update = $upgrader->should_update( 'core', $future_minor_update, ABSPATH );
+ if ( $should_auto_update ) {
+ echo ' ' . __( 'Future security updates will be applied automatically.' );
+ }
+ }
+ echo ' ';
+ }
+
+ if ( isset( $updates[0]->version ) && version_compare( $updates[0]->version, $wp_version, '>' ) ) {
+ echo '';
+
+ echo '';
+ _e( 'An updated version of WordPress is available.' );
+ echo ' ';
+ }
+
+ if ( isset( $updates[0] ) && 'development' === $updates[0]->response ) {
+ require_once ABSPATH . 'wp-admin/includes/class-wp-upgrader.php';
+ $upgrader = new WP_Automatic_Updater;
+ if ( wp_http_supports( 'ssl' ) && $upgrader->should_update( 'core', $updates[0], ABSPATH ) ) {
+ echo '';
+ echo '' . __( 'BETA TESTERS:' ) . ' ' . __( 'This site is set up to install updates of future beta versions automatically.' );
+ echo '
';
+ }
+ }
+
+ echo '';
+ foreach ( (array) $updates as $update ) {
+ echo '';
+ list_core_update( $update );
+ echo ' ';
+ }
+ echo ' ';
+ // Don't show the maintenance mode notice when we are only showing a single re-install option.
+ if ( $updates && ( count( $updates ) > 1 || 'latest' !== $updates[0]->response ) ) {
+ echo '' . __( 'While your site is being updated, it will be in maintenance mode. As soon as your updates are complete, your site will return to normal.' ) . '
';
+ } elseif ( ! $updates ) {
+ list( $normalized_version ) = explode( '-', $wp_version );
+ echo '' . sprintf(
+ /* translators: 1: URL to About screen, 2: WordPress version. */
+ __( 'Learn more about WordPress %2$s .' ),
+ esc_url( self_admin_url( 'about.php' ) ),
+ $normalized_version
+ ) . '
';
+ }
+ dismissed_updates();
+}
+
+/**
+ * Display the upgrade plugins form.
+ *
+ * @since 2.9.0
+ */
+function list_plugin_updates() {
+ $wp_version = get_bloginfo( 'version' );
+ $cur_wp_version = preg_replace( '/-.*$/', '', $wp_version );
+
+ require_once ABSPATH . 'wp-admin/includes/plugin-install.php';
+ $plugins = get_plugin_updates();
+ if ( empty( $plugins ) ) {
+ echo '' . __( 'Plugins' ) . ' ';
+ echo '' . __( 'Your plugins are all up to date.' ) . '
';
+ return;
+ }
+ $form_action = 'update-core.php?action=do-plugin-upgrade';
+
+ $core_updates = get_core_updates();
+ if ( ! isset( $core_updates[0]->response ) || 'latest' === $core_updates[0]->response || 'development' === $core_updates[0]->response || version_compare( $core_updates[0]->current, $cur_wp_version, '=' ) ) {
+ $core_update_version = false;
+ } else {
+ $core_update_version = $core_updates[0]->current;
+ }
+ ?>
+
+
+
+ ' . __( 'Themes' ) . '';
+ echo '' . __( 'Your themes are all up to date.' ) . '
';
+ return;
+ }
+
+ $form_action = 'update-core.php?action=do-theme-upgrade';
+ ?>
+
+
+
+ Please Note: Any customizations you have made to theme files will be lost. Please consider using child themes for modifications.' ),
+ __( 'https://developer.wordpress.org/themes/advanced-topics/child-themes/' )
+ );
+ ?>
+
+
+ ' . __( 'Translations' ) . '';
+ echo '' . __( 'Your translations are all up to date.' ) . '
';
+ }
+ return;
+ }
+
+ $form_action = 'update-core.php?action=do-translation-upgrade';
+ ?>
+
+
+ new_files ) && ! $update->new_files;
+
+ ?>
+
+
+ ';
+ return;
+ }
+
+ if ( ! WP_Filesystem( $credentials, ABSPATH, $allow_relaxed_file_ownership ) ) {
+ // Failed to connect. Error and request again.
+ request_filesystem_credentials( $url, '', true, ABSPATH, array( 'version', 'locale' ), $allow_relaxed_file_ownership );
+ echo '';
+ return;
+ }
+
+ if ( $wp_filesystem->errors->has_errors() ) {
+ foreach ( $wp_filesystem->errors->get_error_messages() as $message ) {
+ show_message( $message );
+ }
+ echo '';
+ return;
+ }
+
+ if ( $reinstall ) {
+ $update->response = 'reinstall';
+ }
+
+ add_filter( 'update_feedback', 'show_message' );
+
+ $upgrader = new Core_Upgrader();
+ $result = $upgrader->upgrade(
+ $update,
+ array(
+ 'allow_relaxed_file_ownership' => $allow_relaxed_file_ownership,
+ )
+ );
+
+ if ( is_wp_error( $result ) ) {
+ show_message( $result );
+ if ( 'up_to_date' != $result->get_error_code() && 'locked' != $result->get_error_code() ) {
+ show_message( __( 'Installation Failed' ) );
+ }
+ echo '';
+ return;
+ }
+
+ show_message( __( 'WordPress updated successfully' ) );
+ show_message(
+ '' . sprintf(
+ /* translators: 1: WordPress version, 2: URL to About screen. */
+ __( 'Welcome to WordPress %1$s. You will be redirected to the About WordPress screen. If not, click here .' ),
+ $result,
+ esc_url( self_admin_url( 'about.php?updated' ) )
+ ) . ' '
+ );
+ show_message(
+ '' . sprintf(
+ /* translators: 1: WordPress version, 2: URL to About screen. */
+ __( 'Welcome to WordPress %1$s. Learn more .' ),
+ $result,
+ esc_url( self_admin_url( 'about.php?updated' ) )
+ ) . ' '
+ );
+ ?>
+
+
+ ' . __( 'On this screen, you can update to the latest version of WordPress, as well as update your themes, plugins, and translations from the WordPress.org repositories.' ) . '';
+$updates_overview .= '' . __( 'If an update is available, you᾿ll see a notification appear in the Toolbar and navigation menu.' ) . ' ' . __( 'Keeping your site updated is important for security. It also makes the internet a safer place for you and your readers.' ) . '
';
+
+get_current_screen()->add_help_tab(
+ array(
+ 'id' => 'overview',
+ 'title' => __( 'Overview' ),
+ 'content' => $updates_overview,
+ )
+);
+
+$updates_howto = '' . __( 'WordPress — Updating your WordPress installation is a simple one-click procedure: just click on the “Update Now” button when you are notified that a new version is available.' ) . ' ' . __( 'In most cases, WordPress will automatically apply maintenance and security updates in the background for you.' ) . '
';
+$updates_howto .= '' . __( 'Themes and Plugins — To update individual themes or plugins from this screen, use the checkboxes to make your selection, then click on the appropriate “Update” button . To update all of your themes or plugins at once, you can check the box at the top of the section to select all before clicking the update button.' ) . '
';
+
+if ( 'en_US' !== get_locale() ) {
+ $updates_howto .= '' . __( 'Translations — The files translating WordPress into your language are updated for you whenever any other updates occur. But if these files are out of date, you can click the “Update Translations” button.' ) . '
';
+}
+
+get_current_screen()->add_help_tab(
+ array(
+ 'id' => 'how-to-update',
+ 'title' => __( 'How to Update' ),
+ 'content' => $updates_howto,
+ )
+);
+
+get_current_screen()->set_help_sidebar(
+ '' . __( 'For more information:' ) . '
' .
+ '' . __( 'Documentation on Updating WordPress ' ) . '
' .
+ '' . __( 'Support ' ) . '
'
+);
+
+if ( 'upgrade-core' == $action ) {
+ // Force a update check when requested.
+ $force_check = ! empty( $_GET['force-check'] );
+ wp_version_check( array(), $force_check );
+
+ require_once ABSPATH . 'wp-admin/admin-header.php';
+ ?>
+
+
+
';
+ if ( 'themes' === $upgrade_error ) {
+ _e( 'Please select one or more themes to update.' );
+ } else {
+ _e( 'Please select one or more plugins to update.' );
+ }
+ echo '
';
+ }
+
+ $last_update_check = false;
+ $current = get_site_transient( 'update_core' );
+
+ if ( $current && isset( $current->last_checked ) ) {
+ $last_update_check = $current->last_checked + get_option( 'gmt_offset' ) * HOUR_IN_SECONDS;
+ }
+
+ echo '';
+ /* translators: 1: Date, 2: Time. */
+ printf( __( 'Last checked on %1$s at %2$s.' ), date_i18n( __( 'F j, Y' ), $last_update_check ), date_i18n( __( 'g:i a' ), $last_update_check ) );
+ echo ' ' . __( 'Check Again' ) . ' ';
+ echo '
';
+
+ if ( current_user_can( 'update_core' ) ) {
+ core_upgrade_preamble();
+ }
+ if ( current_user_can( 'update_plugins' ) ) {
+ list_plugin_updates();
+ }
+ if ( current_user_can( 'update_themes' ) ) {
+ list_theme_updates();
+ }
+ if ( current_user_can( 'update_languages' ) ) {
+ list_translation_updates();
+ }
+
+ /**
+ * Fires after the core, plugin, and theme update tables.
+ *
+ * @since 2.9.0
+ */
+ do_action( 'core_upgrade_preamble' );
+ echo '';
+
+ wp_localize_script(
+ 'updates',
+ '_wpUpdatesItemCounts',
+ array(
+ 'totals' => wp_get_update_data(),
+ )
+ );
+
+ require_once ABSPATH . 'wp-admin/admin-footer.php';
+
+} elseif ( 'do-core-upgrade' == $action || 'do-core-reinstall' == $action ) {
+ wp_die(
+ __( 'Sorry, you are not allowed to update this site.' ) .
+ ' Click here to learn why.'
+ );
+
+ require_once ABSPATH . 'wp-admin/admin-footer.php';
+
+} elseif ( 'do-plugin-upgrade' == $action ) {
+
+ if ( ! current_user_can( 'update_plugins' ) ) {
+ wp_die( __( 'Sorry, you are not allowed to update this site.' ) );
+ }
+
+ check_admin_referer( 'upgrade-core' );
+
+ if ( isset( $_GET['plugins'] ) ) {
+ $plugins = explode( ',', $_GET['plugins'] );
+ } elseif ( isset( $_POST['checked'] ) ) {
+ $plugins = (array) $_POST['checked'];
+ } else {
+ wp_redirect( admin_url( 'update-core.php' ) );
+ exit;
+ }
+
+ $url = 'update.php?action=update-selected&plugins=' . urlencode( implode( ',', $plugins ) );
+ $url = wp_nonce_url( $url, 'bulk-update-plugins' );
+
+ $title = __( 'Update Plugins' );
+
+ require_once ABSPATH . 'wp-admin/admin-header.php';
+ echo '';
+ echo '
' . __( 'Update Plugins' ) . ' ';
+ echo '';
+ echo '';
+
+ wp_localize_script(
+ 'updates',
+ '_wpUpdatesItemCounts',
+ array(
+ 'totals' => wp_get_update_data(),
+ )
+ );
+
+ require_once ABSPATH . 'wp-admin/admin-footer.php';
+
+} elseif ( 'do-theme-upgrade' == $action ) {
+
+ if ( ! current_user_can( 'update_themes' ) ) {
+ wp_die( __( 'Sorry, you are not allowed to update this site.' ) );
+ }
+
+ check_admin_referer( 'upgrade-core' );
+
+ if ( isset( $_GET['themes'] ) ) {
+ $themes = explode( ',', $_GET['themes'] );
+ } elseif ( isset( $_POST['checked'] ) ) {
+ $themes = (array) $_POST['checked'];
+ } else {
+ wp_redirect( admin_url( 'update-core.php' ) );
+ exit;
+ }
+
+ $url = 'update.php?action=update-selected-themes&themes=' . urlencode( implode( ',', $themes ) );
+ $url = wp_nonce_url( $url, 'bulk-update-themes' );
+
+ $title = __( 'Update Themes' );
+
+ require_once ABSPATH . 'wp-admin/admin-header.php';
+ ?>
+
+
+
+
+ wp_get_update_data(),
+ )
+ );
+
+ require_once ABSPATH . 'wp-admin/admin-footer.php';
+
+} elseif ( 'do-translation-upgrade' == $action ) {
+
+ if ( ! current_user_can( 'update_languages' ) ) {
+ wp_die( __( 'Sorry, you are not allowed to update this site.' ) );
+ }
+
+ check_admin_referer( 'upgrade-translations' );
+
+ require_once ABSPATH . 'wp-admin/admin-header.php';
+ require_once ABSPATH . 'wp-admin/includes/class-wp-upgrader.php';
+
+ $url = 'update-core.php?action=do-translation-upgrade';
+ $nonce = 'upgrade-translations';
+ $title = __( 'Update Translations' );
+ $context = WP_LANG_DIR;
+
+ $upgrader = new Language_Pack_Upgrader( new Language_Pack_Upgrader_Skin( compact( 'url', 'nonce', 'title', 'context' ) ) );
+ $result = $upgrader->bulk_upgrade();
+
+ wp_localize_script(
+ 'updates',
+ '_wpUpdatesItemCounts',
+ array(
+ 'totals' => wp_get_update_data(),
+ )
+ );
+
+ require_once ABSPATH . 'wp-admin/admin-footer.php';
+
+} else {
+ /**
+ * Fires for each custom update action on the WordPress Updates screen.
+ *
+ * The dynamic portion of the hook name, `$action`, refers to the
+ * passed update action. The hook fires in lieu of all available
+ * default update actions.
+ *
+ * @since 3.2.0
+ */
+ do_action( "update-core-custom_{$action}" ); // phpcs:ignore WordPress.NamingConventions.ValidHookName.UseUnderscores
+}