Running arbitrary commands in AWS::CloudFormation::Init is broken
Bug #1492367 reported by
Zane Bitter
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
heat-cfntools |
Fix Released
|
Critical
|
Anant Patil |
Bug Description
In heat-cfntools 1.4.0, the fix for bug 1312246 breaks the "commands" section in of AWS::CloudForma
Changed in heat-cfntools: | |
assignee: | nobody → Anant Patil (ananta) |
Changed in heat-cfntools: | |
status: | Triaged → Fix Committed |
Changed in heat-cfntools: | |
milestone: | none → v1.4.1 |
Changed in heat-cfntools: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Note that when the command is supplied by the user as a list rather than a string, we *should* to pass it directly to execvp(). Currently we are doing some (bad) escaping, converting it to a string, then splitting it on whitespace and passing it to execvp(). Previously we were doing the bad escaping and passing it to the shell, which was not much better.