Saw the forum thread's subject [0] and was reminded of the issue with the LIO target provider recently [1].
Depending on feedback I might slowly be inclined to blindly untaint in run_command again? [0] https://forum.proxmox.com/threads/insecure-dependency-in-exec-during-osd-destroy.79574/ [1] https://lists.proxmox.com/pipermail/pve-devel/2020-October/045524.html Stoiko Ivanov (2): api2: osd destroy: fix error function api2: osd destroy: untaint device before pvremove PVE/API2/Ceph/OSD.pm | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) -- 2.20.1 _______________________________________________ pve-devel mailing list pve-devel@lists.proxmox.com https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
