Code Review
/
ta
/
infra-ansible.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
review
|
tree
raw
|
inline
| side by side
FIX: More security hardening
[ta/infra-ansible.git]
/
roles
/
partfs_rootdisk
/
scripts
/
vol_mgmt.sh
diff --git
a/roles/partfs_rootdisk/scripts/vol_mgmt.sh
b/roles/partfs_rootdisk/scripts/vol_mgmt.sh
index
85214fe
..
940b965
100755
(executable)
--- a/
roles/partfs_rootdisk/scripts/vol_mgmt.sh
+++ b/
roles/partfs_rootdisk/scripts/vol_mgmt.sh
@@
-54,6
+54,9
@@
if [ ! -d $evac_dir ];then
mkdir -p "$evac_dir"
fi
mkdir -p "$evac_dir"
fi
+# mirror the permissions of the existing directory
+oPerm=`stat -c '%a' ${evac_dir}`
+
if [ ! -b $mount_vol_dev ];then
echo "Provided volume $mount_vol_dev is not a block device!!"
exit 1
if [ ! -b $mount_vol_dev ];then
echo "Provided volume $mount_vol_dev is not a block device!!"
exit 1
@@
-115,6
+118,7
@@
rm -rf ${evac_dir}/*
mount $evac_dir
chown ${owner}:${group} ${evac_dir}
mount $evac_dir
chown ${owner}:${group} ${evac_dir}
+chmod ${oPerm} ${evac_dir}
cp -rpf $tmp_dir/* ${evac_dir}/
rm -rf $tmp_dir
cp -rpf $tmp_dir/* ${evac_dir}/
rm -rf $tmp_dir