From ebf643aecea1b9ac3a26f11b19594a4ecc3aeeca Mon Sep 17 00:00:00 2001
From: willjasen <brandon@willjasen.com>
Date: Wed, 28 Jul 2021 19:07:41 -0400
Subject: [PATCH] added quotes for echo to sanitize input

---
 templates/ResilioSync.template | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/templates/ResilioSync.template b/templates/ResilioSync.template
index 2afeb2e..78f3d96 100644
--- a/templates/ResilioSync.template
+++ b/templates/ResilioSync.template
@@ -411,16 +411,16 @@
             "commands" : {
               "01-encrypt-volume" : {
                 "command" : { "Fn::Join" : ["", [
-                  "echo ",
+                  "echo \"",
                   { "Ref": "DiskEncryptionPassword" },
-                  " | cryptsetup luksFormat /dev/xvdf"
+                  "\" | cryptsetup luksFormat /dev/xvdf"
                 ]]}
               },
               "02-open-volume" : {
                 "command" : { "Fn::Join" : ["", [
-                  "echo ",
+                  "echo \"",
                   { "Ref": "DiskEncryptionPassword" },
-                  " | cryptsetup luksOpen /dev/xvdf storedev"
+                  "\" | cryptsetup luksOpen /dev/xvdf storedev"
                 ]]}
               },
               "03-format-volume" : {