Update version to 1.0.3 and enhance BackupService and ChunkedBackupService with improved password handling through escaping mechanisms for secure configuration file generation.

Author: dgtlss

composer.json

@@ -3,7 +3,7 @@
     "description": "A Laravel package for backing up databases and files to external sources with notifications",
     "type": "library",
     "license": "MIT",
-    "version": "1.0.2",
+    "version": "1.0.3",
     "authors": [{
         "name": "Nathan Langer",
         "email": "nathanlanger@googlemail.com"

src/Services/BackupService.php

@@ -484,13 +484,18 @@ protected function startMysqlDumpProcess(array $config, string $dumpPath)
     protected function startPostgresDumpProcess(array $config, string $dumpPath)
     {
         $pgpassFile = tempnam(sys_get_temp_dir(), 'pgpass_');
+        $escape = function ($value) {
+            $value = (string) $value;
+            // Escape backslashes and colons for .pgpass format
+            return str_replace(['\\', ':'], ['\\\\', '\\:'], $value);
+        };
         $pgpassContent = sprintf(
             "%s:%s:%s:%s:%s\n",
-            $config['host'],
-            $config['port'] ?? 5432,
-            $config['database'],
-            $config['username'],
-            $config['password']
+            $escape($config['host']),
+            $escape($config['port'] ?? 5432),
+            $escape($config['database']),
+            $escape($config['username']),
+            $escape($config['password'])
         );
 
         file_put_contents($pgpassFile, $pgpassContent);
@@ -695,13 +700,18 @@ protected function createPostgresDump(array $config, string $dumpPath): void
     {
         // Create temporary .pgpass file for secure password handling
         $pgpassFile = tempnam(sys_get_temp_dir(), 'pgpass_');
+        $escape = function ($value) {
+            $value = (string) $value;
+            // Escape backslashes and colons for .pgpass format
+            return str_replace(['\\', ':'], ['\\\\', '\\:'], $value);
+        };
         $pgpassContent = sprintf(
             "%s:%s:%s:%s:%s\n",
-            $config['host'],
-            $config['port'] ?? 5432,
-            $config['database'],
-            $config['username'],
-            $config['password']
+            $escape($config['host']),
+            $escape($config['port'] ?? 5432),
+            $escape($config['database']),
+            $escape($config['username']),
+            $escape($config['password'])
         );
 
         file_put_contents($pgpassFile, $pgpassContent);

src/Services/ChunkedBackupService.php

@@ -204,13 +204,25 @@ protected function streamMysqlToChunks(array $config, string $connection, string
     {
         // Create a temporary config file for secure password handling
         $configFile = tempnam(sys_get_temp_dir(), 'mysql_config_');
+        $escape = function ($value) {
+            $value = (string) $value;
+            $value = str_replace(["\\", "\n", "\r", '"'], ["\\\\", "\\n", "\\r", '\\"'], $value);
+            return '"' . $value . '"';
+        };
         $configContent = sprintf(
-            "[mysqldump]\nuser=%s\npassword=%s\nhost=%s\nport=%s\n",
-            $config['username'],
-            $config['password'],
-            $config['host'],
-            $config['port'] ?? 3306
+            "[mysqldump]\nuser=%s\npassword=%s\n",
+            $escape($config['username'] ?? ''),
+            $escape($config['password'] ?? '')
         );
+        if (!empty($config['unix_socket'])) {
+            $configContent .= 'socket=' . $escape($config['unix_socket']) . "\n";
+        } else {
+            $configContent .= sprintf(
+                "host=%s\nport=%s\n",
+                $escape($config['host'] ?? 'localhost'),
+                $escape($config['port'] ?? 3306)
+            );
+        }
         file_put_contents($configFile, $configContent);
         chmod($configFile, 0600);