Bug 2275408
Summary: | pmlogger.service fails to start with missing /var/log directories | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Martin Pitt <mpitt> |
Component: | pcp | Assignee: | Nathan Scott <nathans> |
Status: | ASSIGNED --- | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | medium | Docs Contact: | |
Priority: | unspecified | ||
Version: | 39 | CC: | agerstmayr, jkurik, lchilton, nathans, sfeifer |
Target Milestone: | --- | Keywords: | Regression |
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Linux | ||
URL: | https://cockpit-logs.us-east-1.linodeobjects.com/pull-0-18ec3fa7-20240417-012533-fedora-39-updates-testing/log.html | ||
Whiteboard: | CockpitTest | ||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | Type: | --- | |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Martin Pitt
2024-04-17 05:44:56 UTC
| rm -rf /var/log/pcp/pmlogger Hmm? That directory is an installed part of the pcp rpm, we can't just blow it away and expect everything to be fine. It did work previously, but that was just good fortune thanks to optimistically helpful PCP start scripts. Unfortunately, for security reasons (CVE-2023-6917) we are no longer are able to be quite so helpful anymore. We probably want something more like this in Cockpit CI: rm -rf /var/log/pcp/pmlogger/* I guess? Or use "find | xargs rm" or something more along those lines. Yes, that's what I did in https://github.com/cockpit-project/cockpit/pull/20328 and this isn't major/critical, but more like minor. But I still consider it a good behaviour of services to be able to deal with a completely empty /var/log (or /var/tmp/ etc.). That's why systemd-tmpfiles exists, to support a "system reset". pcp already makes extensive usage of that, so it'd be really nice to add the log directories there as well. +1 ... I'll add it to the to-do list, thanks Martin. Today I just realized this is an issue with PCP container. Before it was possible to map /var/log/pcp to a PCP container at once. i.e.: "-v /var/tmp/pcp-log:/var/log/pcp" Now it is necessary to map every sub-directory in /var/log/pcp explicitly.i.e. "-v /var/tmp/pcp-log/pmcd:/var/log/pcp/pmcd -v /var/tmp/pcp-log/pmfind:/var/log/pcp/pmfind -v /var/tmp/pcp-log/pmie:/var/log/pcp/pmie -v /var/tmp/pcp-log/pmlogger:/var/log/pcp/pmlogger -v /var/tmp/pcp-log/pmproxy:/var/log/pcp/pmproxy" This can be seen as an regression. | This can be seen as an regression. Chatting to Jan last night, he tried it out and found the tmpfiles.d entries solve this. Fixed upstream by commit below: commit 80609476a0357f7f7d1479439967c7bdaaaa0a54 Author: Nathan Scott <nathans> Date: Tue Apr 23 16:48:43 2024 +1000 tmpfiles.d: extend the tmpfiles.d directory set to logdirs Resolves Fedora BZ #2275408 |