rpms / openstack-swift

Clone
Source Code
GIT

Blame 0003-Set-permissions-on-generated-ring-files.patch

el6 el6-grizzly el6-havana el6-icehouse f13 f14 f15 f16 f17 f18 f19 f20 f21 f22 f23 main rawhide
  1.   8bb9a306e6290d1a7cf0347e8cf1f83635bb8506
  2.   0003-Set-permissions-on-generated-ring-files.patch
Blob History Raw
2faabce 
From 755b27e59818d3d123dfc4300e528d92f8b5d904 Mon Sep 17 00:00:00 2001
2faabce 
From: James Page <james.page@ubuntu.com>
2faabce 
Date: Sat, 5 Apr 2014 09:38:12 +0100
2faabce 
Subject: [PATCH] Set permissions on generated ring files
2faabce
2faabce 
The use of NamedTemporaryFile creates rings with permissions 0600;
2faabce 
however most installs probably generate the rings as root but the
2faabce 
swift-proxy runs as user swift.
2faabce
2faabce 
Set the permissions on the generated ring to 0644 prior to rename so
2faabce 
that the swift user can read the rings.
2faabce
2faabce 
Change-Id: Ia511931f471c5c9840012c3a75b89c1f35b1b245
2faabce 
Closes-Bug: #1302700
2faabce 
---
Pete Zaitcev 8bb9a30 
 swift/common/ring/ring.py          |  1 +
Pete Zaitcev 8bb9a30 
 test/unit/common/ring/test_ring.py | 10 ++++++++++
Pete Zaitcev 8bb9a30 
 2 files changed, 11 insertions(+)
2faabce
2faabce 
diff --git a/swift/common/ring/ring.py b/swift/common/ring/ring.py
2faabce 
index 5b31528..a1f9024 100644
2faabce 
--- a/swift/common/ring/ring.py
2faabce 
+++ b/swift/common/ring/ring.py
2faabce 
@@ -120,6 +120,7 @@ class RingData(object):
2faabce 
         tempf.flush()
2faabce 
         os.fsync(tempf.fileno())
2faabce 
         tempf.close()
2faabce 
+        os.chmod(tempf.name, 0o644)
2faabce 
         os.rename(tempf.name, filename)
2faabce
2faabce 
     def to_dict(self):
2faabce 
diff --git a/test/unit/common/ring/test_ring.py b/test/unit/common/ring/test_ring.py
2faabce 
index 04eb1b7..1892d19 100644
2faabce 
--- a/test/unit/common/ring/test_ring.py
2faabce 
+++ b/test/unit/common/ring/test_ring.py
2faabce 
@@ -18,6 +18,7 @@ import cPickle as pickle
2faabce 
 import os
2faabce 
 import sys
2faabce 
 import unittest
2faabce 
+import stat
2faabce 
 from contextlib import closing
2faabce 
 from gzip import GzipFile
2faabce 
 from tempfile import mkdtemp
2faabce 
@@ -98,6 +99,15 @@ class TestRingData(unittest.TestCase):
2faabce 
             with open(ring_fname2) as ring2:
2faabce 
                 self.assertEqual(ring1.read(), ring2.read())
2faabce
2faabce 
+    def test_permissions(self):
2faabce 
+        ring_fname = os.path.join(self.testdir, 'stat.ring.gz')
2faabce 
+        rd = ring.RingData(
2faabce 
+            [array.array('H', [0, 1, 0, 1]), array.array('H', [0, 1, 0, 1])],
2faabce 
+            [{'id': 0, 'zone': 0}, {'id': 1, 'zone': 1}], 30)
2faabce 
+        rd.save(ring_fname)
2faabce 
+        self.assertEqual(oct(stat.S_IMODE(os.stat(ring_fname).st_mode)),
2faabce 
+                         '0644')
2faabce 
+
2faabce
2faabce 
 class TestRing(unittest.TestCase):
2faabce
Powered by Pagure 5.14.1
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.