Time based constraints must prevail over size et al
constraints applied for logs of containerized services.
Time based constraints are needed in order to abide
GDPR requirements.
Depending on FS type, Linux may not allow system operators
to access files creation time attribute (see the Birth
attribute shown as '-' by the stat -c %w command).
This is work-arouned by alternative strict time-based rules
defined in the postrotate script, which purges files in
/var/log/containers and ensures GDPR compliant system
configuration, limited to the containerized services logs.
Extended management of life time of journald and /var/log
files residing on bare metal hosts, should be done in
follow up patches.
Reviewed: https:/ /review. openstack. org/569154 /git.openstack. org/cgit/ openstack/ tripleo- heat-templates/ commit/ ?id=62cdc3949f7 33b726fc1e25708 b755e1a21dd9f7
Committed: https:/
Submitter: Zuul
Branch: master
commit 62cdc3949f733b7 26fc1e25708b755 e1a21dd9f7
Author: Bogdan Dobrelya <email address hidden>
Date: Thu May 17 17:16:29 2018 +0200
Allow custom time constraints to rotate logs
Time based constraints must prevail over size et al
constraints applied for logs of containerized services.
Time based constraints are needed in order to abide
GDPR requirements.
Depending on FS type, Linux may not allow system operators log/containers and ensures GDPR compliant system
to access files creation time attribute (see the Birth
attribute shown as '-' by the stat -c %w command).
This is work-arouned by alternative strict time-based rules
defined in the postrotate script, which purges files in
/var/
configuration, limited to the containerized services logs.
Extended management of life time of journald and /var/log
files residing on bare metal hosts, should be done in
follow up patches.
Partial-bug: #1771543
Change-Id: I6f2f98aba103f8 3a4f64a435077f4 de33f9692c0 3bc9cd39f1c2efa a80b56bd45e
Depends-On: Id8e4717a5ecda5
Signed-off-by: Bogdan Dobrelya <email address hidden>