lava-deployment-tool smashes ownership on the entire user homedir
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
LAVA Deployment Tool |
Fix Released
|
Critical
|
Matthew Hart |
Bug Description
http://
"sudo chown -R $LAVA_SYS_
In my case it's:
1) 250G (I first thought it install db or something, then switched to other tasks, then remembered in an hour when it still worked which raised alarm).
2) Contains carefully set ownership to allow daemons/cronjobs run, so lava-deployment
The above issues could happen to any other user of course. It's hard to tell where that line could come from, it appears to be cut&paste from earlier commit by "221.1.8 andy.doan", in another if branch, where it at least was latent. It doesn't make sense there still, so it's likely typo/thinko of "sudo chown $LAVA_SYS_USER $sshdir/.." (note: no -R), i.e. reassurance that path to ~/.ssh/ adheres to sshd constraints (that all/most intermediate components should be owned by the user).
Overall, following points should be observed when making any changes to lava-deployment
1. lava-deployment
2. Based on the above, lava-deployment
Please treat as critical.
Changed in lava-deployment-tool: | |
importance: | Undecided → Critical |
assignee: | nobody → Matthew Hart (matthew-hart) |
Changed in lava-deployment-tool: | |
status: | New → In Progress |
Changed in lava-deployment-tool: | |
status: | In Progress → Fix Released |
Hi Paul
I don't think I quite understand the issue fully, could you please add some details:
Do you mean l-d-t is overwriting permissions of your own personal home directory, or of the "lava-$instance" user that it has created, or a different lava instance user?
Were you deploying a new instance or upgrading an existing one? The change was done on the basis that the home folder which is being chown'd (/srv/lava/ instances/ $instance/ home) has just been created by l-d-t so should be empty, is that not the case?
Thanks.