Inspector stores ramdisk logs in /var/log/ironic-inspector/ramdisk by default, so this directory (and its parent) should be present and have appropriate ACL.
I think we just need to cherry-pick this downstream: https://github.com/openstack-packages/ironic-inspector/commit/c941186021c666147a6849b7c62650f0bd2f9f74
Verified: Environment: openstack-ironic-inspector-2.2.4-1.el7ost.noarch As listed below, the directory exists and has the proper acls: [stack@instack ~]$ ls -laZ /var/log/ironic-inspector/ramdisk drwxr-xr-x. ironic-inspector ironic-inspector system_u:object_r:var_log_t:s0 . drwxr-xr-x. root root system_u:object_r:var_log_t:s0 ..
I'm working on the logging improvements for ironic-inspector, and it occurred to me that we need to put logs to /var/log/ironic-inspector, meaning that it should also be owned by ironic-inspector. Mike, could you check this please?
[stack@instack ~]$ stat /var/log/ironic-inspector/ File: ‘/var/log/ironic-inspector/’ Size: 4096 Blocks: 8 IO Block: 4096 directory Device: 801h/2049d Inode: 525767 Links: 3 Access: (0755/drwxr-xr-x) Uid: ( 995/ironic-inspector) Gid: ( 992/ironic-inspector) [stack@instack ~]$ stat /var/log/ironic-inspector/ramdisk/ File: ‘/var/log/ironic-inspector/ramdisk/’ Size: 4096 Blocks: 8 IO Block: 4096 directory Device: 801h/2049d Inode: 525768 Links: 2 Access: (0755/drwxr-xr-x) Uid: ( 995/ironic-inspector) Gid: ( 992/ironic-inspector)
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHEA-2016-0604.html