[isar-cip-core,1/1] create audit log folder with tmpfiles.d

Message ID	20240301093422.572373-1-felix.moessbauer@siemens.com (mailing list archive)
State	Accepted
Headers	show Return-Path: <ncaidin@linuxfoundation.org> ip: 185.136.65.227, mailfrom: fm-1321639-20240301093436629b77dea59bc66c00-cf_m0o@rts-flowmailer.siemens.com) From: Felix Moessbauer <felix.moessbauer@siemens.com> To: cip-dev@lists.cip-project.org Cc: jan.kiszka@siemens.com, Felix Moessbauer <felix.moessbauer@siemens.com>, Sai Sathujoda <Sai.Sathujoda@toshiba-tsip.com> Subject: [isar-cip-core][PATCH 1/1] create audit log folder with tmpfiles.d Date: Fri, 1 Mar 2024 10:34:22 +0100 Message-Id: <20240301093422.572373-1-felix.moessbauer@siemens.com> MIME-Version: 1.0 Feedback-ID: 519:519-1321639:519-21489:flowmailer Content-Transfer-Encoding: 8bit
Series	[isar-cip-core,1/1] create audit log folder with tmpfiles.d \| expand [isar-cip-core,1/1] create audit log folder with tmpfiles.d

Message ID

20240301093422.572373-1-felix.moessbauer@siemens.com (mailing list archive)

State

Accepted

Headers

From: Felix Moessbauer <felix.moessbauer@siemens.com>
To: cip-dev@lists.cip-project.org
Cc: jan.kiszka@siemens.com,
	Felix Moessbauer <felix.moessbauer@siemens.com>,
	Sai Sathujoda <Sai.Sathujoda@toshiba-tsip.com>
Subject: [isar-cip-core][PATCH 1/1] create audit log folder with tmpfiles.d
Date: Fri,  1 Mar 2024 10:34:22 +0100
Message-Id: <20240301093422.572373-1-felix.moessbauer@siemens.com>
MIME-Version: 1.0
Feedback-ID: 519:519-1321639:519-21489:flowmailer
Content-Transfer-Encoding: 8bit

Series

[isar-cip-core,1/1] create audit log folder with tmpfiles.d | expand

Commit Message

Felix Moessbauer March 1, 2024, 9:34 a.m. UTC

The current packaging of auditd is incompatible with an empty /var, as
the directory is created at install time. Until this is fixed upstream,
we add a tmpfiles.d entry to create the directory if it does not exist.

Fixes: #101
Reported-by: Sai Sathujoda <Sai.Sathujoda@toshiba-tsip.com>
Signed-off-by: Felix Moessbauer <felix.moessbauer@siemens.com>
---
 recipes-core/immutable-rootfs/files/immutable-rootfs.tmpfiles | 1 +
 1 file changed, 1 insertion(+)

Comments

Jan Kiszka March 5, 2024, 6:28 a.m. UTC | #1

On 01.03.24 10:34, Felix Moessbauer wrote:
> The current packaging of auditd is incompatible with an empty /var, as
> the directory is created at install time. Until this is fixed upstream,
> we add a tmpfiles.d entry to create the directory if it does not exist.
> 
> Fixes: #101
> Reported-by: Sai Sathujoda <Sai.Sathujoda@toshiba-tsip.com>
> Signed-off-by: Felix Moessbauer <felix.moessbauer@siemens.com>
> ---
>  recipes-core/immutable-rootfs/files/immutable-rootfs.tmpfiles | 1 +
>  1 file changed, 1 insertion(+)
> 
> diff --git a/recipes-core/immutable-rootfs/files/immutable-rootfs.tmpfiles b/recipes-core/immutable-rootfs/files/immutable-rootfs.tmpfiles
> index d180bc5..2f7c338 100644
> --- a/recipes-core/immutable-rootfs/files/immutable-rootfs.tmpfiles
> +++ b/recipes-core/immutable-rootfs/files/immutable-rootfs.tmpfiles
> @@ -1 +1,2 @@
>  L /var/lib/dpkg - - - - /usr/share/immutable-data/var/lib/dpkg
> +d /var/log/audit 0700 root adm -

Thanks, applied.

Jan

diff --git a/recipes-core/immutable-rootfs/files/immutable-rootfs.tmpfiles b/recipes-core/immutable-rootfs/files/immutable-rootfs.tmpfiles
index d180bc5..2f7c338 100644
--- a/recipes-core/immutable-rootfs/files/immutable-rootfs.tmpfiles
+++ b/recipes-core/immutable-rootfs/files/immutable-rootfs.tmpfiles
@@ -1 +1,2 @@ 
 L /var/lib/dpkg - - - - /usr/share/immutable-data/var/lib/dpkg
+d /var/log/audit 0700 root adm -

[isar-cip-core,1/1] create audit log folder with tmpfiles.d

Commit Message

Comments

Patch