feat: Do not change permissions on existing data directory #48
Conversation
snap/hooks/install
Outdated
| mkdir -p $CONF | ||
|
|
||
| # If we just created the directory, we set up permissions | ||
| if [ stat -c '%u' "$DATA" == 0 -o ! -d "$DATA" ]; then |
There was a problem hiding this comment.
- how can
! -d "$DATA"ever evaluate toTruegiven$DATAwas potentially created right before? - we could perhaps defer the creation of
$DATAand simplify the condition with:
if [ ! -d "${f}" ]; then
mkdir -p "${DATA}"
chmod -R 770 "${SNAP_COMMON}"
chmod 750 "${DATA}"
fi
There was a problem hiding this comment.
Indeed I don't think -d "$DATA" can be false here indeed.
The important check here is stat -c '%u' "$DATA" == 0 to check the owner.
If root is the owner, we should update the permissions, otherwise it means we are installing on existing data and we should not change this.
| # If we just created the directory, we set up permissions | ||
| if [ stat -c '%u' "$DATA" == 0 -o ! -d "$DATA" ]; then | ||
| chmod -R 770 "${SNAP_COMMON}" | ||
| chmod 750 "${DATA}" |
There was a problem hiding this comment.
Should this be recursive?
There was a problem hiding this comment.
No, as there will be no data in here in case we just created the directory, and we enter this block only if that's the case.
For a bit more exaplanation, there will be a complementary code on the charm side when attaching a storage to grant the right permissions to the attached storage, like they did in kafka operator.
snap/hooks/install
Outdated
| fi | ||
|
|
||
| # If we just created the directory, we set up permissions | ||
| if [ stat -c '%u' "$LOGS" == 0 -o ! -d "$LOGS" ]; then |
There was a problem hiding this comment.
same comment as above
There was a problem hiding this comment.
Same answer as above :)
Gu1nness
deleted the
DPE-5227-mongo-db-vm-re-enable-storage-reuse-tests-unit-volume-from-same-cluster
branch
$DATAdirectory already existing, the former version would break when trying to change the permissions of$DATA.