Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Change file permissions on instances #3715

Open
wants to merge 3 commits into
base: main
Choose a base branch
from
Open

Change file permissions on instances #3715

wants to merge 3 commits into from
+90 −4

Conversation

Sploder12
Copy link
Contributor

@Sploder12 Sploder12 commented Oct 4, 2024
edited
Loading

This PR changes file permissions on instance images and their cloud-init.iso files to be read/write only by root. Previously the files could be read by all.

MULTI-1403

@Sploder12 Sploder12 marked this pull request as draft October 4, 2024 19:31
@ricab ricab added this to the 1.15.0 milestone Oct 7, 2024
@Sploder12 Sploder12 marked this pull request as ready for review October 21, 2024 13:22
@codecov Codecov
Copy link

codecov bot commented Oct 21, 2024
edited
Loading

Codecov Report

Attention: Patch coverage is 76.47059% with 4 lines in your changes missing coverage. Please review.

Project coverage is 88.86%. Comparing base (439285b) to head (b209ce1).
Report is 41 commits behind head on main.

Files with missing lines Patch % Lines
src/daemon/default_vm_image_vault.cpp 50.00% 2 Missing ⚠️
src/utils/vm_image_vault_utils.cpp 50.00% 2 Missing ⚠️
Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #3715   +/-   ##
=======================================
  Coverage   88.85%   88.86%           
=======================================
  Files         256      256           
  Lines       14557    14593   +36     
=======================================
+ Hits        12935    12968   +33     
- Misses       1622     1625    +3

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@Sploder12 Sploder12 force-pushed the change-permissions-on-instances branch from 5a257a8 to 1e245a5 Compare November 13, 2024 17:53
levkropp
levkropp requested changes Nov 26, 2024
View reviewed changes
Copy link
Contributor

@levkropp levkropp left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good, it seems that codecov wants to see test coverage for some lines:

  • if (!MP_PLATFORM.set_root_as_owner(path)) in write_to
  • extract_image doesn't seem to have tests for it at all?

@Sploder12 Sploder12 marked this pull request as draft November 26, 2024 21:19
@Sploder12 Sploder12 marked this pull request as ready for review November 26, 2024 21:42
@Sploder12
Copy link
Contributor Author

I have decided that the vm_image_vault tests are out of the scope of this PR. This is because writing tests would require a significant refactor of unrelated code (see 1653 in Jira).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@levkropp levkropp levkropp requested changes

Requested changes must be addressed to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
1.15.0
Development

Successfully merging this pull request may close these issues.
3 participants
@Sploder12 @levkropp @ricab