diff options
author | Jonathan Lebon <jonathan@jlebon.com> | 2019-12-12 16:40:33 -0500 |
---|---|---|
committer | Jonathan Lebon <jonathan@jlebon.com> | 2020-02-18 11:26:46 -0500 |
commit | 7085a50297955b037b6433821796f3f317c79126 (patch) | |
tree | 63d359b7bfaf33fb912fbbc591001b91297fce58 /src/libostree/ostree-repo-checkout.c | |
parent | b9a95afacc483606426e263032e2595e64705e94 (diff) | |
download | ostree-7085a50297955b037b6433821796f3f317c79126.tar.gz |
lib/repo: Create repo directories as 0775
For repo structure directories like `objects`, `refs`, etc... we should
be more permissive and let the system's `umask` narrow down the
permission bits as wanted.
This came up in a context where we want to be able to have read/write
access on an OSTree repo on NFS from two separate OpenShift apps by
using supplemental groups[1] so we don't require SCCs for running as the
same UID (supplemental groups are part of the default restricted SCC).
[1] https://docs.openshift.com/container-platform/3.11/install_config/persistent_storage/persistent_storage_nfs.html#nfs-supplemental-groups
Diffstat (limited to 'src/libostree/ostree-repo-checkout.c')
-rw-r--r-- | src/libostree/ostree-repo-checkout.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/src/libostree/ostree-repo-checkout.c b/src/libostree/ostree-repo-checkout.c index 8dd14640..dc36370f 100644 --- a/src/libostree/ostree-repo-checkout.c +++ b/src/libostree/ostree-repo-checkout.c @@ -92,8 +92,8 @@ checkout_object_for_uncompressed_cache (OstreeRepo *self, if (self->uncompressed_objects_dir_fd == -1) { - if (!glnx_shutil_mkdir_p_at (self->repo_dir_fd, "uncompressed-objects-cache", 0755, - cancellable, error)) + if (!glnx_shutil_mkdir_p_at (self->repo_dir_fd, "uncompressed-objects-cache", + DEFAULT_DIRECTORY_MODE, cancellable, error)) return FALSE; if (!glnx_opendirat (self->repo_dir_fd, "uncompressed-objects-cache", TRUE, &self->uncompressed_objects_dir_fd, |