systemd-tmpfile
Michael Biebl
biebl at debian.org
Sun Oct 12 13:48:38 BST 2014
[CCing you, since I don't know if you're subscribed]
Hi
Am 12.10.2014 um 14:09 schrieb Russell Coker:
> Below is part of the dmesg output on a SE Linux server and ls output showing
> what it matches to. Why is systemd-tmpfile trying to do a chmod type operation
> on directories such as /var?
[..]
> root at sexen:~# ls -lid /var
> 257 drwxr-xr-x. 1 root root 90 Apr 29 21:34 /var
> root at sexen:~# ls -lid /var/log
> 822 drwxr-xr-x. 1 root root 2040 Oct 1 06:25 /var/log
> root at sexen:~# ls -lid /var/cache
> 274 drwxr-xr-x. 1 root root 108 May 20 15:08 /var/cache
> root at sexen:~# ls -lid /var/lib
> 270 drwxr-xr-x. 1 root root 566 Oct 12 20:49 /var/lib
See /usr/lib/tmpfiles.d/var.conf
d /var 0755 - - -
d /var/log 0755 - - -
d /var/cache 0755 - - -
d /var/lib 0755 - - -
d /var/spool 0755 - - -
This tmpfile is supposed to populate /var with the basic directories on
a stateless system [1].
I'm not versed in reading the selinux/audit output, so I'm not sure
what's going on here. But if systemd-tmpfiles does indeed run chmod on
an existing directory which already has the right permissions, then this
sounds like a valid bug to me.
Michael
[1] http://0pointer.net/blog/projects/stateless.html
--
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-systemd-maintainers/attachments/20141012/9d964ae3/attachment-0002.sig>
More information about the Pkg-systemd-maintainers
mailing list