github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-08-06 18:54:06 +00:00
Code Issues Projects Releases Wiki Activity

Merge pull request #129214 from tallclair/kubelet-state-perms

Browse Source 
Change default filestore permissions to 0700
This commit is contained in:
Kubernetes Prow Robot 2024-12-14 01:52:25 +01:00 committed by GitHub
commit ae14ca981e
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
pkg/kubelet/util/store/filestore.go
View File

@ -28,6 +28,9 @@ import (
const (
// Name prefix for the temporary files.
tmpPrefix = "."
// The default permission bits to set on the filestore directory.
directoryPerm = 0700
)
// FileStore is an implementation of the Store interface which stores data in files.
@ -41,7 +44,7 @@ type FileStore struct {
// NewFileStore returns an instance of FileStore.
func NewFileStore(path string, fs utilfs.Filesystem) (Store, error) {
if err := fs.MkdirAll(path, 0755); err != nil {
if err := fs.MkdirAll(path, directoryPerm); err != nil {
return nil, err
}
return &FileStore{directoryPath: path, filesystem: fs}, nil
@ -52,7 +55,7 @@ func (f *FileStore) Write(key string, data []byte) error {
if err := ValidateKey(key); err != nil {
return err
}
if err := f.filesystem.MkdirAll(f.directoryPath, 0755); err != nil {
if err := f.filesystem.MkdirAll(f.directoryPath, directoryPerm); err != nil {
return err
}