2018-02-08 10:11:59 |
Nick Groenen |
bug |
|
|
added bug |
2018-03-31 16:01:24 |
Seyeong Kim |
bug watch added |
|
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=894510 |
|
2018-03-31 16:01:24 |
Seyeong Kim |
bug task added |
|
systemd |
|
2018-03-31 16:01:36 |
Seyeong Kim |
affects |
systemd |
debhelper |
|
2018-03-31 16:08:02 |
Seyeong Kim |
bug task added |
|
debhelper (Ubuntu) |
|
2018-03-31 16:08:22 |
Seyeong Kim |
tags |
|
sts |
|
2018-04-02 22:42:05 |
Bug Watch Updater |
debhelper: status |
Unknown |
New |
|
2018-04-09 14:54:39 |
Dimitri John Ledkov |
bug task added |
|
rsyslog (Ubuntu) |
|
2018-04-23 01:18:05 |
Seyeong Kim |
bug task deleted |
systemd (Ubuntu) |
|
|
2018-04-23 01:18:12 |
Seyeong Kim |
bug task deleted |
rsyslog (Ubuntu) |
|
|
2018-04-24 20:26:37 |
Brian Murray |
tags |
sts |
sts xenial |
|
2018-04-24 20:27:14 |
Brian Murray |
debhelper (Ubuntu): importance |
Undecided |
High |
|
2018-05-12 20:35:00 |
Bug Watch Updater |
debhelper: status |
New |
Fix Committed |
|
2018-05-21 06:42:01 |
Seyeong Kim |
description |
Upgrading or reinstalling the systemd package when using rsyslogd results in bad permissions (0755 instead of 0775) being set on /var/log/. As a consequence of this, rsyslogd can no longer create new files within this directory, resulting in lost log messages.
The default configuration of rsyslogd provided by Ubuntu runs the daemon as syslog:syslog and sets ownership of /var/log to syslog:adm with mode 0775.
Systemd's default tmpfiles configuration sets /var/log to 0755 in /usr/lib/tmpfiles.d/var.conf, however this is overridden in /usr/lib/tmpfiles.d/00rsyslog.conf which is provided by package rsyslog.
It looks as though an upgrade of the systemd package fails to take /usr/lib/tmpfiles.d/00rsyslog.conf into account, as demonstrated below. This results in /var/log receiving mode 0755 instead of the expected 0775:
nick @ log2.be1.ams1:~ $ lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 16.04.3 LTS
Release: 16.04
Codename: xenial
nick @ log2.be1.ams1:~ $ apt policy systemd
systemd:
Installed: 229-4ubuntu21.1
Candidate: 229-4ubuntu21.1
Version table:
*** 229-4ubuntu21.1 500
500 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 Packages
500 http://security.ubuntu.com/ubuntu xenial-security/main amd64 Packages
100 /var/lib/dpkg/status
229-4ubuntu4 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
nick @ log2.be1.ams1:~ $ apt policy rsyslog
rsyslog:
Installed: 8.16.0-1ubuntu3
Candidate: 8.16.0-1ubuntu3
Version table:
*** 8.16.0-1ubuntu3 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
100 /var/lib/dpkg/status
nick @ log2.be1.ams1:~ $ grep -F /var/log /usr/lib/tmpfiles.d/var.conf
d /var/log 0755 - - -
f /var/log/wtmp 0664 root utmp -
f /var/log/btmp 0600 root utmp -
nick @ log2.be1.ams1:~ $ cat /usr/lib/tmpfiles.d/00rsyslog.conf
# Override systemd's default tmpfiles.d/var.conf to make /var/log writable by
# the syslog group, so that rsyslog can run as user.
# See tmpfiles.d(5) for details.
# Type Path Mode UID GID Age Argument
d /var/log 0775 root syslog -
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxrwxr-x 8 root syslog 4096 Feb 7 13:45 /var/log
nick @ log2.be1.ams1:~ $ sudo apt install --reinstall systemd
Reading package lists... Done
Building dependency tree
Reading state information... Done
0 upgraded, 0 newly installed, 1 reinstalled, 0 to remove and 7 not upgraded.
Need to get 3,634 kB of archives.
After this operation, 0 B of additional disk space will be used.
Get:1 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 systemd amd64 229-4ubuntu21.1 [3,634 kB]
Fetched 3,634 kB in 0s (24.3 MB/s)
(Reading database ... 86614 files and directories currently installed.)
Preparing to unpack .../systemd_229-4ubuntu21.1_amd64.deb ...
Unpacking systemd (229-4ubuntu21.1) over (229-4ubuntu21.1) ...
Processing triggers for dbus (1.10.6-1ubuntu3.3) ...
Processing triggers for ureadahead (0.100.0-19) ...
Processing triggers for man-db (2.7.5-1) ...
Setting up systemd (229-4ubuntu21.1) ...
addgroup: The group `systemd-journal' already exists as a system group. Exiting.
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxr-xr-x 8 root syslog 4096 Feb 7 13:45 /var/log |
[Impact]
/var/log's Permission is going back to 755
after upgrading systemd
if there are rsyslog's configuration on /var/lib/tmpfiles.d/
[Test Case]
1. deploy 16.04 vm
2. check ll /var (775)
3. apt install --reinstall systemd
4. check ll /var (755)
[Regression Potential]
This changes debhelper's override process. so if the other pkgs are using same technic like rsyslog pkg do, It should be changed like rsyslog
[Others]
For this issue, need to fix below pkgs
debhelper
systemd ( rebuilding with new debhelper is needed )
rsyslog ( 00rsyslog.conf to var.conf and location should be /etc/tmpfiles.d )
[Original description]
Upgrading or reinstalling the systemd package when using rsyslogd results in bad permissions (0755 instead of 0775) being set on /var/log/. As a consequence of this, rsyslogd can no longer create new files within this directory, resulting in lost log messages.
The default configuration of rsyslogd provided by Ubuntu runs the daemon as syslog:syslog and sets ownership of /var/log to syslog:adm with mode 0775.
Systemd's default tmpfiles configuration sets /var/log to 0755 in /usr/lib/tmpfiles.d/var.conf, however this is overridden in /usr/lib/tmpfiles.d/00rsyslog.conf which is provided by package rsyslog.
It looks as though an upgrade of the systemd package fails to take /usr/lib/tmpfiles.d/00rsyslog.conf into account, as demonstrated below. This results in /var/log receiving mode 0755 instead of the expected 0775:
nick @ log2.be1.ams1:~ $ lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 16.04.3 LTS
Release: 16.04
Codename: xenial
nick @ log2.be1.ams1:~ $ apt policy systemd
systemd:
Installed: 229-4ubuntu21.1
Candidate: 229-4ubuntu21.1
Version table:
*** 229-4ubuntu21.1 500
500 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 Packages
500 http://security.ubuntu.com/ubuntu xenial-security/main amd64 Packages
100 /var/lib/dpkg/status
229-4ubuntu4 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
nick @ log2.be1.ams1:~ $ apt policy rsyslog
rsyslog:
Installed: 8.16.0-1ubuntu3
Candidate: 8.16.0-1ubuntu3
Version table:
*** 8.16.0-1ubuntu3 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
100 /var/lib/dpkg/status
nick @ log2.be1.ams1:~ $ grep -F /var/log /usr/lib/tmpfiles.d/var.conf
d /var/log 0755 - - -
f /var/log/wtmp 0664 root utmp -
f /var/log/btmp 0600 root utmp -
nick @ log2.be1.ams1:~ $ cat /usr/lib/tmpfiles.d/00rsyslog.conf
# Override systemd's default tmpfiles.d/var.conf to make /var/log writable by
# the syslog group, so that rsyslog can run as user.
# See tmpfiles.d(5) for details.
# Type Path Mode UID GID Age Argument
d /var/log 0775 root syslog -
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxrwxr-x 8 root syslog 4096 Feb 7 13:45 /var/log
nick @ log2.be1.ams1:~ $ sudo apt install --reinstall systemd
Reading package lists... Done
Building dependency tree
Reading state information... Done
0 upgraded, 0 newly installed, 1 reinstalled, 0 to remove and 7 not upgraded.
Need to get 3,634 kB of archives.
After this operation, 0 B of additional disk space will be used.
Get:1 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 systemd amd64 229-4ubuntu21.1 [3,634 kB]
Fetched 3,634 kB in 0s (24.3 MB/s)
(Reading database ... 86614 files and directories currently installed.)
Preparing to unpack .../systemd_229-4ubuntu21.1_amd64.deb ...
Unpacking systemd (229-4ubuntu21.1) over (229-4ubuntu21.1) ...
Processing triggers for dbus (1.10.6-1ubuntu3.3) ...
Processing triggers for ureadahead (0.100.0-19) ...
Processing triggers for man-db (2.7.5-1) ...
Setting up systemd (229-4ubuntu21.1) ...
addgroup: The group `systemd-journal' already exists as a system group. Exiting.
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxr-xr-x 8 root syslog 4096 Feb 7 13:45 /var/log |
|
2018-05-21 10:04:00 |
Seyeong Kim |
description |
[Impact]
/var/log's Permission is going back to 755
after upgrading systemd
if there are rsyslog's configuration on /var/lib/tmpfiles.d/
[Test Case]
1. deploy 16.04 vm
2. check ll /var (775)
3. apt install --reinstall systemd
4. check ll /var (755)
[Regression Potential]
This changes debhelper's override process. so if the other pkgs are using same technic like rsyslog pkg do, It should be changed like rsyslog
[Others]
For this issue, need to fix below pkgs
debhelper
systemd ( rebuilding with new debhelper is needed )
rsyslog ( 00rsyslog.conf to var.conf and location should be /etc/tmpfiles.d )
[Original description]
Upgrading or reinstalling the systemd package when using rsyslogd results in bad permissions (0755 instead of 0775) being set on /var/log/. As a consequence of this, rsyslogd can no longer create new files within this directory, resulting in lost log messages.
The default configuration of rsyslogd provided by Ubuntu runs the daemon as syslog:syslog and sets ownership of /var/log to syslog:adm with mode 0775.
Systemd's default tmpfiles configuration sets /var/log to 0755 in /usr/lib/tmpfiles.d/var.conf, however this is overridden in /usr/lib/tmpfiles.d/00rsyslog.conf which is provided by package rsyslog.
It looks as though an upgrade of the systemd package fails to take /usr/lib/tmpfiles.d/00rsyslog.conf into account, as demonstrated below. This results in /var/log receiving mode 0755 instead of the expected 0775:
nick @ log2.be1.ams1:~ $ lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 16.04.3 LTS
Release: 16.04
Codename: xenial
nick @ log2.be1.ams1:~ $ apt policy systemd
systemd:
Installed: 229-4ubuntu21.1
Candidate: 229-4ubuntu21.1
Version table:
*** 229-4ubuntu21.1 500
500 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 Packages
500 http://security.ubuntu.com/ubuntu xenial-security/main amd64 Packages
100 /var/lib/dpkg/status
229-4ubuntu4 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
nick @ log2.be1.ams1:~ $ apt policy rsyslog
rsyslog:
Installed: 8.16.0-1ubuntu3
Candidate: 8.16.0-1ubuntu3
Version table:
*** 8.16.0-1ubuntu3 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
100 /var/lib/dpkg/status
nick @ log2.be1.ams1:~ $ grep -F /var/log /usr/lib/tmpfiles.d/var.conf
d /var/log 0755 - - -
f /var/log/wtmp 0664 root utmp -
f /var/log/btmp 0600 root utmp -
nick @ log2.be1.ams1:~ $ cat /usr/lib/tmpfiles.d/00rsyslog.conf
# Override systemd's default tmpfiles.d/var.conf to make /var/log writable by
# the syslog group, so that rsyslog can run as user.
# See tmpfiles.d(5) for details.
# Type Path Mode UID GID Age Argument
d /var/log 0775 root syslog -
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxrwxr-x 8 root syslog 4096 Feb 7 13:45 /var/log
nick @ log2.be1.ams1:~ $ sudo apt install --reinstall systemd
Reading package lists... Done
Building dependency tree
Reading state information... Done
0 upgraded, 0 newly installed, 1 reinstalled, 0 to remove and 7 not upgraded.
Need to get 3,634 kB of archives.
After this operation, 0 B of additional disk space will be used.
Get:1 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 systemd amd64 229-4ubuntu21.1 [3,634 kB]
Fetched 3,634 kB in 0s (24.3 MB/s)
(Reading database ... 86614 files and directories currently installed.)
Preparing to unpack .../systemd_229-4ubuntu21.1_amd64.deb ...
Unpacking systemd (229-4ubuntu21.1) over (229-4ubuntu21.1) ...
Processing triggers for dbus (1.10.6-1ubuntu3.3) ...
Processing triggers for ureadahead (0.100.0-19) ...
Processing triggers for man-db (2.7.5-1) ...
Setting up systemd (229-4ubuntu21.1) ...
addgroup: The group `systemd-journal' already exists as a system group. Exiting.
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxr-xr-x 8 root syslog 4096 Feb 7 13:45 /var/log |
[Impact]
/var/log's Permission is going back to 755
after upgrading systemd
if there are rsyslog's configuration on /var/lib/tmpfiles.d/
[Test Case]
1. deploy 16.04 vm
2. check ll /var (775)
3. apt install --reinstall systemd
4. check ll /var (755)
[Regression Potential]
This changes debhelper's override process. so if the other pkgs are using same technic like rsyslog pkg do, It should be changed like rsyslog
[Others]
For this issue, need to fix below pkgs
debhelper
systemd ( rebuilding with new debhelper is needed )
rsyslog ( 00rsyslog.conf to var.conf and location should be /etc/tmpfiles.d, to support override supported by debhelper )
[Original description]
Upgrading or reinstalling the systemd package when using rsyslogd results in bad permissions (0755 instead of 0775) being set on /var/log/. As a consequence of this, rsyslogd can no longer create new files within this directory, resulting in lost log messages.
The default configuration of rsyslogd provided by Ubuntu runs the daemon as syslog:syslog and sets ownership of /var/log to syslog:adm with mode 0775.
Systemd's default tmpfiles configuration sets /var/log to 0755 in /usr/lib/tmpfiles.d/var.conf, however this is overridden in /usr/lib/tmpfiles.d/00rsyslog.conf which is provided by package rsyslog.
It looks as though an upgrade of the systemd package fails to take /usr/lib/tmpfiles.d/00rsyslog.conf into account, as demonstrated below. This results in /var/log receiving mode 0755 instead of the expected 0775:
nick @ log2.be1.ams1:~ $ lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 16.04.3 LTS
Release: 16.04
Codename: xenial
nick @ log2.be1.ams1:~ $ apt policy systemd
systemd:
Installed: 229-4ubuntu21.1
Candidate: 229-4ubuntu21.1
Version table:
*** 229-4ubuntu21.1 500
500 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 Packages
500 http://security.ubuntu.com/ubuntu xenial-security/main amd64 Packages
100 /var/lib/dpkg/status
229-4ubuntu4 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
nick @ log2.be1.ams1:~ $ apt policy rsyslog
rsyslog:
Installed: 8.16.0-1ubuntu3
Candidate: 8.16.0-1ubuntu3
Version table:
*** 8.16.0-1ubuntu3 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
100 /var/lib/dpkg/status
nick @ log2.be1.ams1:~ $ grep -F /var/log /usr/lib/tmpfiles.d/var.conf
d /var/log 0755 - - -
f /var/log/wtmp 0664 root utmp -
f /var/log/btmp 0600 root utmp -
nick @ log2.be1.ams1:~ $ cat /usr/lib/tmpfiles.d/00rsyslog.conf
# Override systemd's default tmpfiles.d/var.conf to make /var/log writable by
# the syslog group, so that rsyslog can run as user.
# See tmpfiles.d(5) for details.
# Type Path Mode UID GID Age Argument
d /var/log 0775 root syslog -
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxrwxr-x 8 root syslog 4096 Feb 7 13:45 /var/log
nick @ log2.be1.ams1:~ $ sudo apt install --reinstall systemd
Reading package lists... Done
Building dependency tree
Reading state information... Done
0 upgraded, 0 newly installed, 1 reinstalled, 0 to remove and 7 not upgraded.
Need to get 3,634 kB of archives.
After this operation, 0 B of additional disk space will be used.
Get:1 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 systemd amd64 229-4ubuntu21.1 [3,634 kB]
Fetched 3,634 kB in 0s (24.3 MB/s)
(Reading database ... 86614 files and directories currently installed.)
Preparing to unpack .../systemd_229-4ubuntu21.1_amd64.deb ...
Unpacking systemd (229-4ubuntu21.1) over (229-4ubuntu21.1) ...
Processing triggers for dbus (1.10.6-1ubuntu3.3) ...
Processing triggers for ureadahead (0.100.0-19) ...
Processing triggers for man-db (2.7.5-1) ...
Setting up systemd (229-4ubuntu21.1) ...
addgroup: The group `systemd-journal' already exists as a system group. Exiting.
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxr-xr-x 8 root syslog 4096 Feb 7 13:45 /var/log |
|
2018-05-21 21:05:26 |
Bug Watch Updater |
debhelper: status |
Fix Committed |
Fix Released |
|
2018-05-25 05:27:58 |
Seyeong Kim |
tags |
sts xenial |
sts sts-sru-needed xenial |
|
2018-05-25 05:28:15 |
Seyeong Kim |
attachment added |
|
lp1748147_xenial.debdiff https://bugs.launchpad.net/debhelper/+bug/1748147/+attachment/5144099/+files/lp1748147_xenial.debdiff |
|
2018-05-25 05:28:30 |
Seyeong Kim |
debhelper (Ubuntu): assignee |
|
Seyeong Kim (xtrusia) |
|
2018-05-25 05:28:58 |
Seyeong Kim |
description |
[Impact]
/var/log's Permission is going back to 755
after upgrading systemd
if there are rsyslog's configuration on /var/lib/tmpfiles.d/
[Test Case]
1. deploy 16.04 vm
2. check ll /var (775)
3. apt install --reinstall systemd
4. check ll /var (755)
[Regression Potential]
This changes debhelper's override process. so if the other pkgs are using same technic like rsyslog pkg do, It should be changed like rsyslog
[Others]
For this issue, need to fix below pkgs
debhelper
systemd ( rebuilding with new debhelper is needed )
rsyslog ( 00rsyslog.conf to var.conf and location should be /etc/tmpfiles.d, to support override supported by debhelper )
[Original description]
Upgrading or reinstalling the systemd package when using rsyslogd results in bad permissions (0755 instead of 0775) being set on /var/log/. As a consequence of this, rsyslogd can no longer create new files within this directory, resulting in lost log messages.
The default configuration of rsyslogd provided by Ubuntu runs the daemon as syslog:syslog and sets ownership of /var/log to syslog:adm with mode 0775.
Systemd's default tmpfiles configuration sets /var/log to 0755 in /usr/lib/tmpfiles.d/var.conf, however this is overridden in /usr/lib/tmpfiles.d/00rsyslog.conf which is provided by package rsyslog.
It looks as though an upgrade of the systemd package fails to take /usr/lib/tmpfiles.d/00rsyslog.conf into account, as demonstrated below. This results in /var/log receiving mode 0755 instead of the expected 0775:
nick @ log2.be1.ams1:~ $ lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 16.04.3 LTS
Release: 16.04
Codename: xenial
nick @ log2.be1.ams1:~ $ apt policy systemd
systemd:
Installed: 229-4ubuntu21.1
Candidate: 229-4ubuntu21.1
Version table:
*** 229-4ubuntu21.1 500
500 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 Packages
500 http://security.ubuntu.com/ubuntu xenial-security/main amd64 Packages
100 /var/lib/dpkg/status
229-4ubuntu4 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
nick @ log2.be1.ams1:~ $ apt policy rsyslog
rsyslog:
Installed: 8.16.0-1ubuntu3
Candidate: 8.16.0-1ubuntu3
Version table:
*** 8.16.0-1ubuntu3 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
100 /var/lib/dpkg/status
nick @ log2.be1.ams1:~ $ grep -F /var/log /usr/lib/tmpfiles.d/var.conf
d /var/log 0755 - - -
f /var/log/wtmp 0664 root utmp -
f /var/log/btmp 0600 root utmp -
nick @ log2.be1.ams1:~ $ cat /usr/lib/tmpfiles.d/00rsyslog.conf
# Override systemd's default tmpfiles.d/var.conf to make /var/log writable by
# the syslog group, so that rsyslog can run as user.
# See tmpfiles.d(5) for details.
# Type Path Mode UID GID Age Argument
d /var/log 0775 root syslog -
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxrwxr-x 8 root syslog 4096 Feb 7 13:45 /var/log
nick @ log2.be1.ams1:~ $ sudo apt install --reinstall systemd
Reading package lists... Done
Building dependency tree
Reading state information... Done
0 upgraded, 0 newly installed, 1 reinstalled, 0 to remove and 7 not upgraded.
Need to get 3,634 kB of archives.
After this operation, 0 B of additional disk space will be used.
Get:1 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 systemd amd64 229-4ubuntu21.1 [3,634 kB]
Fetched 3,634 kB in 0s (24.3 MB/s)
(Reading database ... 86614 files and directories currently installed.)
Preparing to unpack .../systemd_229-4ubuntu21.1_amd64.deb ...
Unpacking systemd (229-4ubuntu21.1) over (229-4ubuntu21.1) ...
Processing triggers for dbus (1.10.6-1ubuntu3.3) ...
Processing triggers for ureadahead (0.100.0-19) ...
Processing triggers for man-db (2.7.5-1) ...
Setting up systemd (229-4ubuntu21.1) ...
addgroup: The group `systemd-journal' already exists as a system group. Exiting.
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxr-xr-x 8 root syslog 4096 Feb 7 13:45 /var/log |
[Impact]
/var/log's Permission is going back to 755
after upgrading systemd
if there are rsyslog's configuration on /var/lib/tmpfiles.d/
Affected X, A, B, C
[Test Case]
1. deploy 16.04 vm
2. check ll /var (775)
3. apt install --reinstall systemd
4. check ll /var (755)
[Regression Potential]
This changes debhelper's override process. so if the other pkgs are using same technic like rsyslog pkg do, It should be changed like rsyslog
[Others]
For this issue, need to fix below pkgs
debhelper
systemd ( rebuilding with new debhelper is needed )
rsyslog ( 00rsyslog.conf to var.conf and location should be /etc/tmpfiles.d, to support override supported by debhelper )
[Original description]
Upgrading or reinstalling the systemd package when using rsyslogd results in bad permissions (0755 instead of 0775) being set on /var/log/. As a consequence of this, rsyslogd can no longer create new files within this directory, resulting in lost log messages.
The default configuration of rsyslogd provided by Ubuntu runs the daemon as syslog:syslog and sets ownership of /var/log to syslog:adm with mode 0775.
Systemd's default tmpfiles configuration sets /var/log to 0755 in /usr/lib/tmpfiles.d/var.conf, however this is overridden in /usr/lib/tmpfiles.d/00rsyslog.conf which is provided by package rsyslog.
It looks as though an upgrade of the systemd package fails to take /usr/lib/tmpfiles.d/00rsyslog.conf into account, as demonstrated below. This results in /var/log receiving mode 0755 instead of the expected 0775:
nick @ log2.be1.ams1:~ $ lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 16.04.3 LTS
Release: 16.04
Codename: xenial
nick @ log2.be1.ams1:~ $ apt policy systemd
systemd:
Installed: 229-4ubuntu21.1
Candidate: 229-4ubuntu21.1
Version table:
*** 229-4ubuntu21.1 500
500 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 Packages
500 http://security.ubuntu.com/ubuntu xenial-security/main amd64 Packages
100 /var/lib/dpkg/status
229-4ubuntu4 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
nick @ log2.be1.ams1:~ $ apt policy rsyslog
rsyslog:
Installed: 8.16.0-1ubuntu3
Candidate: 8.16.0-1ubuntu3
Version table:
*** 8.16.0-1ubuntu3 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
100 /var/lib/dpkg/status
nick @ log2.be1.ams1:~ $ grep -F /var/log /usr/lib/tmpfiles.d/var.conf
d /var/log 0755 - - -
f /var/log/wtmp 0664 root utmp -
f /var/log/btmp 0600 root utmp -
nick @ log2.be1.ams1:~ $ cat /usr/lib/tmpfiles.d/00rsyslog.conf
# Override systemd's default tmpfiles.d/var.conf to make /var/log writable by
# the syslog group, so that rsyslog can run as user.
# See tmpfiles.d(5) for details.
# Type Path Mode UID GID Age Argument
d /var/log 0775 root syslog -
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxrwxr-x 8 root syslog 4096 Feb 7 13:45 /var/log
nick @ log2.be1.ams1:~ $ sudo apt install --reinstall systemd
Reading package lists... Done
Building dependency tree
Reading state information... Done
0 upgraded, 0 newly installed, 1 reinstalled, 0 to remove and 7 not upgraded.
Need to get 3,634 kB of archives.
After this operation, 0 B of additional disk space will be used.
Get:1 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 systemd amd64 229-4ubuntu21.1 [3,634 kB]
Fetched 3,634 kB in 0s (24.3 MB/s)
(Reading database ... 86614 files and directories currently installed.)
Preparing to unpack .../systemd_229-4ubuntu21.1_amd64.deb ...
Unpacking systemd (229-4ubuntu21.1) over (229-4ubuntu21.1) ...
Processing triggers for dbus (1.10.6-1ubuntu3.3) ...
Processing triggers for ureadahead (0.100.0-19) ...
Processing triggers for man-db (2.7.5-1) ...
Setting up systemd (229-4ubuntu21.1) ...
addgroup: The group `systemd-journal' already exists as a system group. Exiting.
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxr-xr-x 8 root syslog 4096 Feb 7 13:45 /var/log |
|
2018-05-25 05:29:11 |
Seyeong Kim |
attachment added |
|
lp1748147_artful.debdiff https://bugs.launchpad.net/debhelper/+bug/1748147/+attachment/5144100/+files/lp1748147_artful.debdiff |
|
2018-05-25 05:29:25 |
Seyeong Kim |
attachment added |
|
lp1748147_bionic.debdiff https://bugs.launchpad.net/debhelper/+bug/1748147/+attachment/5144101/+files/lp1748147_bionic.debdiff |
|
2018-05-25 05:29:39 |
Seyeong Kim |
attachment added |
|
lp1748147_cosmic.debdiff https://bugs.launchpad.net/debhelper/+bug/1748147/+attachment/5144102/+files/lp1748147_cosmic.debdiff |
|
2018-05-25 05:42:28 |
Seyeong Kim |
bug |
|
|
added subscriber SRU Developers |
2018-05-25 06:27:47 |
Seyeong Kim |
summary |
Upgrading systemd sets incorrect permissions on /var/log/ |
[SRU] debhelper support override from /etc/tmpfiles.d for systemd |
|
2018-05-25 06:59:52 |
Seyeong Kim |
description |
[Impact]
/var/log's Permission is going back to 755
after upgrading systemd
if there are rsyslog's configuration on /var/lib/tmpfiles.d/
Affected X, A, B, C
[Test Case]
1. deploy 16.04 vm
2. check ll /var (775)
3. apt install --reinstall systemd
4. check ll /var (755)
[Regression Potential]
This changes debhelper's override process. so if the other pkgs are using same technic like rsyslog pkg do, It should be changed like rsyslog
[Others]
For this issue, need to fix below pkgs
debhelper
systemd ( rebuilding with new debhelper is needed )
rsyslog ( 00rsyslog.conf to var.conf and location should be /etc/tmpfiles.d, to support override supported by debhelper )
[Original description]
Upgrading or reinstalling the systemd package when using rsyslogd results in bad permissions (0755 instead of 0775) being set on /var/log/. As a consequence of this, rsyslogd can no longer create new files within this directory, resulting in lost log messages.
The default configuration of rsyslogd provided by Ubuntu runs the daemon as syslog:syslog and sets ownership of /var/log to syslog:adm with mode 0775.
Systemd's default tmpfiles configuration sets /var/log to 0755 in /usr/lib/tmpfiles.d/var.conf, however this is overridden in /usr/lib/tmpfiles.d/00rsyslog.conf which is provided by package rsyslog.
It looks as though an upgrade of the systemd package fails to take /usr/lib/tmpfiles.d/00rsyslog.conf into account, as demonstrated below. This results in /var/log receiving mode 0755 instead of the expected 0775:
nick @ log2.be1.ams1:~ $ lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 16.04.3 LTS
Release: 16.04
Codename: xenial
nick @ log2.be1.ams1:~ $ apt policy systemd
systemd:
Installed: 229-4ubuntu21.1
Candidate: 229-4ubuntu21.1
Version table:
*** 229-4ubuntu21.1 500
500 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 Packages
500 http://security.ubuntu.com/ubuntu xenial-security/main amd64 Packages
100 /var/lib/dpkg/status
229-4ubuntu4 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
nick @ log2.be1.ams1:~ $ apt policy rsyslog
rsyslog:
Installed: 8.16.0-1ubuntu3
Candidate: 8.16.0-1ubuntu3
Version table:
*** 8.16.0-1ubuntu3 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
100 /var/lib/dpkg/status
nick @ log2.be1.ams1:~ $ grep -F /var/log /usr/lib/tmpfiles.d/var.conf
d /var/log 0755 - - -
f /var/log/wtmp 0664 root utmp -
f /var/log/btmp 0600 root utmp -
nick @ log2.be1.ams1:~ $ cat /usr/lib/tmpfiles.d/00rsyslog.conf
# Override systemd's default tmpfiles.d/var.conf to make /var/log writable by
# the syslog group, so that rsyslog can run as user.
# See tmpfiles.d(5) for details.
# Type Path Mode UID GID Age Argument
d /var/log 0775 root syslog -
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxrwxr-x 8 root syslog 4096 Feb 7 13:45 /var/log
nick @ log2.be1.ams1:~ $ sudo apt install --reinstall systemd
Reading package lists... Done
Building dependency tree
Reading state information... Done
0 upgraded, 0 newly installed, 1 reinstalled, 0 to remove and 7 not upgraded.
Need to get 3,634 kB of archives.
After this operation, 0 B of additional disk space will be used.
Get:1 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 systemd amd64 229-4ubuntu21.1 [3,634 kB]
Fetched 3,634 kB in 0s (24.3 MB/s)
(Reading database ... 86614 files and directories currently installed.)
Preparing to unpack .../systemd_229-4ubuntu21.1_amd64.deb ...
Unpacking systemd (229-4ubuntu21.1) over (229-4ubuntu21.1) ...
Processing triggers for dbus (1.10.6-1ubuntu3.3) ...
Processing triggers for ureadahead (0.100.0-19) ...
Processing triggers for man-db (2.7.5-1) ...
Setting up systemd (229-4ubuntu21.1) ...
addgroup: The group `systemd-journal' already exists as a system group. Exiting.
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxr-xr-x 8 root syslog 4096 Feb 7 13:45 /var/log |
[Impact]
/var/log's Permission is going back to 755
after upgrading systemd
if there are rsyslog's configuration on /var/lib/tmpfiles.d/
Affected X, A, B, C
This is because rsyslog's pkg has 00rsyslog.conf and copied it on /var/lib/tmpfiles.d/ when it is installing.
after upgrading systemd, systemd only refresh it's own tmpfiles so disappear conf for 00rsyslog.conf ( it doesn't remove file itself )
so, systemd-tmpfiles --create /var/lib/tmpfiles.d/00rsyslog.conf back permission to 775
[Test Case]
1. deploy 16.04 vm
2. check ll /var (775)
3. apt install --reinstall systemd
4. check ll /var (755)
[Regression Potential]
This fix changes debhelper's override process by using absolute path to filename. so if the other pkgs using debhelper e.g systemd are there, It should be re-build with new debhelper after patching. also, pkg like rsyslog which is using systemd's tmpfile system need to be changed to use /etc/tmpfiles.d/[SAME_FILENAME_IN_VAR_LIB_TMPFILES.D_FOR_OVERRIDING] instead of 00rsyslog.conf.
[Others]
For this issue, need to fix below pkgs
debhelper
systemd ( rebuilding with new debhelper is needed )
rsyslog ( 00rsyslog.conf to var.conf and location should be /etc/tmpfiles.d, to support override supported by debhelper )
[Original description]
Upgrading or reinstalling the systemd package when using rsyslogd results in bad permissions (0755 instead of 0775) being set on /var/log/. As a consequence of this, rsyslogd can no longer create new files within this directory, resulting in lost log messages.
The default configuration of rsyslogd provided by Ubuntu runs the daemon as syslog:syslog and sets ownership of /var/log to syslog:adm with mode 0775.
Systemd's default tmpfiles configuration sets /var/log to 0755 in /usr/lib/tmpfiles.d/var.conf, however this is overridden in /usr/lib/tmpfiles.d/00rsyslog.conf which is provided by package rsyslog.
It looks as though an upgrade of the systemd package fails to take /usr/lib/tmpfiles.d/00rsyslog.conf into account, as demonstrated below. This results in /var/log receiving mode 0755 instead of the expected 0775:
nick @ log2.be1.ams1:~ $ lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 16.04.3 LTS
Release: 16.04
Codename: xenial
nick @ log2.be1.ams1:~ $ apt policy systemd
systemd:
Installed: 229-4ubuntu21.1
Candidate: 229-4ubuntu21.1
Version table:
*** 229-4ubuntu21.1 500
500 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 Packages
500 http://security.ubuntu.com/ubuntu xenial-security/main amd64 Packages
100 /var/lib/dpkg/status
229-4ubuntu4 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
nick @ log2.be1.ams1:~ $ apt policy rsyslog
rsyslog:
Installed: 8.16.0-1ubuntu3
Candidate: 8.16.0-1ubuntu3
Version table:
*** 8.16.0-1ubuntu3 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
100 /var/lib/dpkg/status
nick @ log2.be1.ams1:~ $ grep -F /var/log /usr/lib/tmpfiles.d/var.conf
d /var/log 0755 - - -
f /var/log/wtmp 0664 root utmp -
f /var/log/btmp 0600 root utmp -
nick @ log2.be1.ams1:~ $ cat /usr/lib/tmpfiles.d/00rsyslog.conf
# Override systemd's default tmpfiles.d/var.conf to make /var/log writable by
# the syslog group, so that rsyslog can run as user.
# See tmpfiles.d(5) for details.
# Type Path Mode UID GID Age Argument
d /var/log 0775 root syslog -
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxrwxr-x 8 root syslog 4096 Feb 7 13:45 /var/log
nick @ log2.be1.ams1:~ $ sudo apt install --reinstall systemd
Reading package lists... Done
Building dependency tree
Reading state information... Done
0 upgraded, 0 newly installed, 1 reinstalled, 0 to remove and 7 not upgraded.
Need to get 3,634 kB of archives.
After this operation, 0 B of additional disk space will be used.
Get:1 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 systemd amd64 229-4ubuntu21.1 [3,634 kB]
Fetched 3,634 kB in 0s (24.3 MB/s)
(Reading database ... 86614 files and directories currently installed.)
Preparing to unpack .../systemd_229-4ubuntu21.1_amd64.deb ...
Unpacking systemd (229-4ubuntu21.1) over (229-4ubuntu21.1) ...
Processing triggers for dbus (1.10.6-1ubuntu3.3) ...
Processing triggers for ureadahead (0.100.0-19) ...
Processing triggers for man-db (2.7.5-1) ...
Setting up systemd (229-4ubuntu21.1) ...
addgroup: The group `systemd-journal' already exists as a system group. Exiting.
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxr-xr-x 8 root syslog 4096 Feb 7 13:45 /var/log |
|
2018-05-25 08:23:30 |
Ubuntu Foundations Team Bug Bot |
tags |
sts sts-sru-needed xenial |
patch sts sts-sru-needed xenial |
|
2018-05-25 08:23:38 |
Ubuntu Foundations Team Bug Bot |
bug |
|
|
added subscriber Ubuntu Sponsors Team |
2018-05-29 05:55:07 |
Seyeong Kim |
removed subscriber SRU Developers |
|
|
|
2018-05-29 05:55:38 |
Seyeong Kim |
bug |
|
|
added subscriber Ubuntu SRU developers |
2018-05-29 10:52:35 |
Eric Desrochers |
bug |
|
|
added subscriber STS Sponsors |
2018-05-29 12:06:44 |
Eric Desrochers |
debhelper (Ubuntu): status |
New |
In Progress |
|
2018-05-29 13:32:34 |
Eric Desrochers |
nominated for series |
|
Ubuntu Bionic |
|
2018-05-29 13:32:34 |
Eric Desrochers |
bug task added |
|
debhelper (Ubuntu Bionic) |
|
2018-05-29 13:32:34 |
Eric Desrochers |
nominated for series |
|
Ubuntu Artful |
|
2018-05-29 13:32:34 |
Eric Desrochers |
bug task added |
|
debhelper (Ubuntu Artful) |
|
2018-05-29 13:32:34 |
Eric Desrochers |
nominated for series |
|
Ubuntu Xenial |
|
2018-05-29 13:32:34 |
Eric Desrochers |
bug task added |
|
debhelper (Ubuntu Xenial) |
|
2018-05-29 13:32:42 |
Eric Desrochers |
debhelper (Ubuntu Xenial): status |
New |
In Progress |
|
2018-05-29 13:32:44 |
Eric Desrochers |
debhelper (Ubuntu Artful): status |
New |
In Progress |
|
2018-05-29 13:32:47 |
Eric Desrochers |
debhelper (Ubuntu Bionic): status |
New |
In Progress |
|
2018-05-29 13:32:55 |
Eric Desrochers |
debhelper (Ubuntu Xenial): assignee |
|
Seyeong Kim (xtrusia) |
|
2018-05-29 13:33:03 |
Eric Desrochers |
debhelper (Ubuntu Artful): assignee |
|
Seyeong Kim (xtrusia) |
|
2018-05-29 13:33:11 |
Eric Desrochers |
debhelper (Ubuntu Bionic): assignee |
|
Seyeong Kim (xtrusia) |
|
2018-05-29 13:36:25 |
Eric Desrochers |
debhelper (Ubuntu Xenial): importance |
Undecided |
Medium |
|
2018-05-29 13:36:26 |
Eric Desrochers |
debhelper (Ubuntu Artful): importance |
Undecided |
Medium |
|
2018-05-29 13:36:28 |
Eric Desrochers |
debhelper (Ubuntu Bionic): importance |
Undecided |
Medium |
|
2018-05-29 19:33:55 |
Eric Desrochers |
debhelper (Ubuntu Bionic): status |
In Progress |
Fix Committed |
|
2018-05-29 19:34:00 |
Eric Desrochers |
debhelper (Ubuntu Bionic): status |
Fix Committed |
In Progress |
|
2018-05-29 19:34:03 |
Eric Desrochers |
debhelper (Ubuntu): status |
In Progress |
Fix Committed |
|
2018-05-30 08:56:44 |
Seyeong Kim |
attachment added |
|
lp1748147_xenial_v2.debdiff https://bugs.launchpad.net/debhelper/+bug/1748147/+attachment/5146377/+files/lp1748147_xenial_v2.debdiff |
|
2018-05-30 08:57:01 |
Seyeong Kim |
attachment added |
|
lp1748147_artful_v2.debdiff https://bugs.launchpad.net/debhelper/+bug/1748147/+attachment/5146378/+files/lp1748147_artful_v2.debdiff |
|
2018-05-30 08:57:17 |
Seyeong Kim |
attachment added |
|
lp1748147_bionic_v2.debdiff https://bugs.launchpad.net/debhelper/+bug/1748147/+attachment/5146379/+files/lp1748147_bionic_v2.debdiff |
|
2018-05-31 00:29:07 |
Eric Desrochers |
removed subscriber Ubuntu SRU developers |
|
|
|
2018-06-04 14:37:07 |
Launchpad Janitor |
debhelper (Ubuntu): status |
Fix Committed |
Fix Released |
|
2018-06-04 15:46:55 |
Eric Desrochers |
removed subscriber STS Sponsors |
|
|
|
2018-06-04 15:46:59 |
Eric Desrochers |
bug |
|
|
added subscriber Eric Desrochers |
2018-06-05 03:01:23 |
Seyeong Kim |
description |
[Impact]
/var/log's Permission is going back to 755
after upgrading systemd
if there are rsyslog's configuration on /var/lib/tmpfiles.d/
Affected X, A, B, C
This is because rsyslog's pkg has 00rsyslog.conf and copied it on /var/lib/tmpfiles.d/ when it is installing.
after upgrading systemd, systemd only refresh it's own tmpfiles so disappear conf for 00rsyslog.conf ( it doesn't remove file itself )
so, systemd-tmpfiles --create /var/lib/tmpfiles.d/00rsyslog.conf back permission to 775
[Test Case]
1. deploy 16.04 vm
2. check ll /var (775)
3. apt install --reinstall systemd
4. check ll /var (755)
[Regression Potential]
This fix changes debhelper's override process by using absolute path to filename. so if the other pkgs using debhelper e.g systemd are there, It should be re-build with new debhelper after patching. also, pkg like rsyslog which is using systemd's tmpfile system need to be changed to use /etc/tmpfiles.d/[SAME_FILENAME_IN_VAR_LIB_TMPFILES.D_FOR_OVERRIDING] instead of 00rsyslog.conf.
[Others]
For this issue, need to fix below pkgs
debhelper
systemd ( rebuilding with new debhelper is needed )
rsyslog ( 00rsyslog.conf to var.conf and location should be /etc/tmpfiles.d, to support override supported by debhelper )
[Original description]
Upgrading or reinstalling the systemd package when using rsyslogd results in bad permissions (0755 instead of 0775) being set on /var/log/. As a consequence of this, rsyslogd can no longer create new files within this directory, resulting in lost log messages.
The default configuration of rsyslogd provided by Ubuntu runs the daemon as syslog:syslog and sets ownership of /var/log to syslog:adm with mode 0775.
Systemd's default tmpfiles configuration sets /var/log to 0755 in /usr/lib/tmpfiles.d/var.conf, however this is overridden in /usr/lib/tmpfiles.d/00rsyslog.conf which is provided by package rsyslog.
It looks as though an upgrade of the systemd package fails to take /usr/lib/tmpfiles.d/00rsyslog.conf into account, as demonstrated below. This results in /var/log receiving mode 0755 instead of the expected 0775:
nick @ log2.be1.ams1:~ $ lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 16.04.3 LTS
Release: 16.04
Codename: xenial
nick @ log2.be1.ams1:~ $ apt policy systemd
systemd:
Installed: 229-4ubuntu21.1
Candidate: 229-4ubuntu21.1
Version table:
*** 229-4ubuntu21.1 500
500 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 Packages
500 http://security.ubuntu.com/ubuntu xenial-security/main amd64 Packages
100 /var/lib/dpkg/status
229-4ubuntu4 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
nick @ log2.be1.ams1:~ $ apt policy rsyslog
rsyslog:
Installed: 8.16.0-1ubuntu3
Candidate: 8.16.0-1ubuntu3
Version table:
*** 8.16.0-1ubuntu3 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
100 /var/lib/dpkg/status
nick @ log2.be1.ams1:~ $ grep -F /var/log /usr/lib/tmpfiles.d/var.conf
d /var/log 0755 - - -
f /var/log/wtmp 0664 root utmp -
f /var/log/btmp 0600 root utmp -
nick @ log2.be1.ams1:~ $ cat /usr/lib/tmpfiles.d/00rsyslog.conf
# Override systemd's default tmpfiles.d/var.conf to make /var/log writable by
# the syslog group, so that rsyslog can run as user.
# See tmpfiles.d(5) for details.
# Type Path Mode UID GID Age Argument
d /var/log 0775 root syslog -
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxrwxr-x 8 root syslog 4096 Feb 7 13:45 /var/log
nick @ log2.be1.ams1:~ $ sudo apt install --reinstall systemd
Reading package lists... Done
Building dependency tree
Reading state information... Done
0 upgraded, 0 newly installed, 1 reinstalled, 0 to remove and 7 not upgraded.
Need to get 3,634 kB of archives.
After this operation, 0 B of additional disk space will be used.
Get:1 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 systemd amd64 229-4ubuntu21.1 [3,634 kB]
Fetched 3,634 kB in 0s (24.3 MB/s)
(Reading database ... 86614 files and directories currently installed.)
Preparing to unpack .../systemd_229-4ubuntu21.1_amd64.deb ...
Unpacking systemd (229-4ubuntu21.1) over (229-4ubuntu21.1) ...
Processing triggers for dbus (1.10.6-1ubuntu3.3) ...
Processing triggers for ureadahead (0.100.0-19) ...
Processing triggers for man-db (2.7.5-1) ...
Setting up systemd (229-4ubuntu21.1) ...
addgroup: The group `systemd-journal' already exists as a system group. Exiting.
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxr-xr-x 8 root syslog 4096 Feb 7 13:45 /var/log |
[Impact]
/var/log's Permission is going back to 755
after upgrading systemd
if there are rsyslog's configuration on /var/lib/tmpfiles.d/
Affected X, A, B, C
This is because rsyslog's pkg has 00rsyslog.conf and copied it on /var/lib/tmpfiles.d/ when it is installing.
after upgrading systemd, systemd only refresh it's own tmpfiles so disappear conf for 00rsyslog.conf ( it doesn't remove file itself )
so, systemd-tmpfiles --create /var/lib/tmpfiles.d/00rsyslog.conf back permission to 775
[Test Case]
1. deploy 16.04 vm
2. check ll /var (775)
3. apt install --reinstall systemd
4. check ll /var (755)
[Regression Potential]
This fix changes debhelper's override process by using absolute path to filename. so if the other pkgs using debhelper e.g systemd are there, It should be re-build with new debhelper after patching in theory, now only systemd is affected. but building is not affected. also, pkg like rsyslog which is using systemd's tmpfile system need to be changed to use /etc/tmpfiles.d/[SAME_FILENAME_IN_VAR_LIB_TMPFILES.D_FOR_OVERRIDING] instead of 00rsyslog.conf.
[Others]
For this issue, need to fix below pkgs
debhelper
systemd ( rebuilding with new debhelper is needed )
rsyslog ( 00rsyslog.conf to var.conf and location should be /etc/tmpfiles.d, to support override supported by debhelper )
[Original description]
Upgrading or reinstalling the systemd package when using rsyslogd results in bad permissions (0755 instead of 0775) being set on /var/log/. As a consequence of this, rsyslogd can no longer create new files within this directory, resulting in lost log messages.
The default configuration of rsyslogd provided by Ubuntu runs the daemon as syslog:syslog and sets ownership of /var/log to syslog:adm with mode 0775.
Systemd's default tmpfiles configuration sets /var/log to 0755 in /usr/lib/tmpfiles.d/var.conf, however this is overridden in /usr/lib/tmpfiles.d/00rsyslog.conf which is provided by package rsyslog.
It looks as though an upgrade of the systemd package fails to take /usr/lib/tmpfiles.d/00rsyslog.conf into account, as demonstrated below. This results in /var/log receiving mode 0755 instead of the expected 0775:
nick @ log2.be1.ams1:~ $ lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 16.04.3 LTS
Release: 16.04
Codename: xenial
nick @ log2.be1.ams1:~ $ apt policy systemd
systemd:
Installed: 229-4ubuntu21.1
Candidate: 229-4ubuntu21.1
Version table:
*** 229-4ubuntu21.1 500
500 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 Packages
500 http://security.ubuntu.com/ubuntu xenial-security/main amd64 Packages
100 /var/lib/dpkg/status
229-4ubuntu4 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
nick @ log2.be1.ams1:~ $ apt policy rsyslog
rsyslog:
Installed: 8.16.0-1ubuntu3
Candidate: 8.16.0-1ubuntu3
Version table:
*** 8.16.0-1ubuntu3 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
100 /var/lib/dpkg/status
nick @ log2.be1.ams1:~ $ grep -F /var/log /usr/lib/tmpfiles.d/var.conf
d /var/log 0755 - - -
f /var/log/wtmp 0664 root utmp -
f /var/log/btmp 0600 root utmp -
nick @ log2.be1.ams1:~ $ cat /usr/lib/tmpfiles.d/00rsyslog.conf
# Override systemd's default tmpfiles.d/var.conf to make /var/log writable by
# the syslog group, so that rsyslog can run as user.
# See tmpfiles.d(5) for details.
# Type Path Mode UID GID Age Argument
d /var/log 0775 root syslog -
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxrwxr-x 8 root syslog 4096 Feb 7 13:45 /var/log
nick @ log2.be1.ams1:~ $ sudo apt install --reinstall systemd
Reading package lists... Done
Building dependency tree
Reading state information... Done
0 upgraded, 0 newly installed, 1 reinstalled, 0 to remove and 7 not upgraded.
Need to get 3,634 kB of archives.
After this operation, 0 B of additional disk space will be used.
Get:1 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 systemd amd64 229-4ubuntu21.1 [3,634 kB]
Fetched 3,634 kB in 0s (24.3 MB/s)
(Reading database ... 86614 files and directories currently installed.)
Preparing to unpack .../systemd_229-4ubuntu21.1_amd64.deb ...
Unpacking systemd (229-4ubuntu21.1) over (229-4ubuntu21.1) ...
Processing triggers for dbus (1.10.6-1ubuntu3.3) ...
Processing triggers for ureadahead (0.100.0-19) ...
Processing triggers for man-db (2.7.5-1) ...
Setting up systemd (229-4ubuntu21.1) ...
addgroup: The group `systemd-journal' already exists as a system group. Exiting.
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxr-xr-x 8 root syslog 4096 Feb 7 13:45 /var/log |
|
2018-06-06 11:59:18 |
Robie Basak |
bug |
|
|
added subscriber Robie Basak |
2018-06-07 01:06:17 |
Dimitri John Ledkov |
bug task added |
|
systemd (Ubuntu) |
|
2018-06-07 01:06:41 |
Dimitri John Ledkov |
systemd (Ubuntu): assignee |
|
Dimitri John Ledkov (xnox) |
|
2018-06-07 01:07:18 |
Dimitri John Ledkov |
systemd (Ubuntu): status |
New |
Confirmed |
|
2018-06-07 01:07:49 |
Dimitri John Ledkov |
bug task added |
|
rsyslog (Ubuntu) |
|
2018-06-14 22:55:31 |
Launchpad Janitor |
rsyslog (Ubuntu): status |
New |
Confirmed |
|
2018-06-14 22:55:31 |
Launchpad Janitor |
rsyslog (Ubuntu Xenial): status |
New |
Confirmed |
|
2018-06-14 22:55:31 |
Launchpad Janitor |
systemd (Ubuntu Xenial): status |
New |
Confirmed |
|
2018-06-14 22:55:31 |
Launchpad Janitor |
rsyslog (Ubuntu Artful): status |
New |
Confirmed |
|
2018-06-14 22:55:31 |
Launchpad Janitor |
systemd (Ubuntu Artful): status |
New |
Confirmed |
|
2018-06-14 22:55:31 |
Launchpad Janitor |
rsyslog (Ubuntu Bionic): status |
New |
Confirmed |
|
2018-06-14 22:55:31 |
Launchpad Janitor |
systemd (Ubuntu Bionic): status |
New |
Confirmed |
|
2018-06-15 09:40:25 |
George Alton |
bug |
|
|
added subscriber George Alton |
2018-06-21 13:35:14 |
Dimitri John Ledkov |
rsyslog (Ubuntu): status |
Confirmed |
Invalid |
|
2018-06-21 13:35:25 |
Dimitri John Ledkov |
rsyslog (Ubuntu Xenial): status |
Confirmed |
Invalid |
|
2018-06-21 13:35:37 |
Dimitri John Ledkov |
rsyslog (Ubuntu Artful): status |
Confirmed |
Invalid |
|
2018-06-21 13:35:46 |
Dimitri John Ledkov |
rsyslog (Ubuntu Bionic): status |
Confirmed |
Invalid |
|
2018-06-21 13:36:09 |
Dimitri John Ledkov |
systemd (Ubuntu): status |
Confirmed |
Fix Committed |
|
2018-06-21 13:39:22 |
Dimitri John Ledkov |
attachment added |
|
lp1748147.diff https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1748147/+attachment/5155096/+files/lp1748147.diff |
|
2018-06-21 13:39:47 |
Dimitri John Ledkov |
debhelper (Ubuntu Bionic): status |
In Progress |
Won't Fix |
|
2018-06-21 13:39:47 |
Dimitri John Ledkov |
debhelper (Ubuntu Bionic): assignee |
Seyeong Kim (xtrusia) |
|
|
2018-06-21 13:39:55 |
Dimitri John Ledkov |
debhelper (Ubuntu Artful): status |
In Progress |
Won't Fix |
|
2018-06-21 13:39:55 |
Dimitri John Ledkov |
debhelper (Ubuntu Artful): assignee |
Seyeong Kim (xtrusia) |
|
|
2018-06-21 13:40:05 |
Dimitri John Ledkov |
debhelper (Ubuntu Xenial): status |
In Progress |
Won't Fix |
|
2018-06-21 13:40:05 |
Dimitri John Ledkov |
debhelper (Ubuntu Xenial): assignee |
Seyeong Kim (xtrusia) |
|
|
2018-07-03 06:57:07 |
Steve Langasek |
systemd (Ubuntu Bionic): status |
Confirmed |
Fix Committed |
|
2018-07-03 06:57:10 |
Steve Langasek |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
2018-07-03 06:57:12 |
Steve Langasek |
bug |
|
|
added subscriber SRU Verification |
2018-07-03 06:57:17 |
Steve Langasek |
tags |
patch sts sts-sru-needed xenial |
patch sts sts-sru-needed verification-needed verification-needed-bionic xenial |
|
2018-07-03 08:10:45 |
Sebastien Bacher |
removed subscriber Ubuntu Sponsors Team |
|
|
|
2018-07-09 17:13:35 |
Nivedita Singhvi |
bug |
|
|
added subscriber Nivedita Singhvi |
2018-07-09 17:22:44 |
Nivedita Singhvi |
tags |
patch sts sts-sru-needed verification-needed verification-needed-bionic xenial |
patch sts sts-sru-needed verification-done-bionic verification-needed xenial |
|
2018-07-17 15:48:45 |
Dimitri John Ledkov |
tags |
patch sts sts-sru-needed verification-done-bionic verification-needed xenial |
patch sts sts-sru-needed verification-done verification-done-bionic xenial |
|
2018-07-19 12:13:45 |
Launchpad Janitor |
systemd (Ubuntu Bionic): status |
Fix Committed |
Fix Released |
|
2018-07-19 12:14:01 |
Łukasz Zemczak |
removed subscriber Ubuntu Stable Release Updates Team |
|
|
|
2018-08-28 00:32:43 |
Launchpad Janitor |
systemd (Ubuntu): status |
Fix Committed |
Fix Released |
|
2018-10-01 13:58:54 |
Dan Streetman |
systemd (Ubuntu Artful): status |
Confirmed |
Won't Fix |
|
2018-10-06 12:22:16 |
Francis Ginther |
tags |
patch sts sts-sru-needed verification-done verification-done-bionic xenial |
id-5bb78e0e0301523fc02398fc patch sts sts-sru-needed verification-done verification-done-bionic xenial |
|
2018-10-08 15:01:59 |
Dimitri John Ledkov |
description |
[Impact]
/var/log's Permission is going back to 755
after upgrading systemd
if there are rsyslog's configuration on /var/lib/tmpfiles.d/
Affected X, A, B, C
This is because rsyslog's pkg has 00rsyslog.conf and copied it on /var/lib/tmpfiles.d/ when it is installing.
after upgrading systemd, systemd only refresh it's own tmpfiles so disappear conf for 00rsyslog.conf ( it doesn't remove file itself )
so, systemd-tmpfiles --create /var/lib/tmpfiles.d/00rsyslog.conf back permission to 775
[Test Case]
1. deploy 16.04 vm
2. check ll /var (775)
3. apt install --reinstall systemd
4. check ll /var (755)
[Regression Potential]
This fix changes debhelper's override process by using absolute path to filename. so if the other pkgs using debhelper e.g systemd are there, It should be re-build with new debhelper after patching in theory, now only systemd is affected. but building is not affected. also, pkg like rsyslog which is using systemd's tmpfile system need to be changed to use /etc/tmpfiles.d/[SAME_FILENAME_IN_VAR_LIB_TMPFILES.D_FOR_OVERRIDING] instead of 00rsyslog.conf.
[Others]
For this issue, need to fix below pkgs
debhelper
systemd ( rebuilding with new debhelper is needed )
rsyslog ( 00rsyslog.conf to var.conf and location should be /etc/tmpfiles.d, to support override supported by debhelper )
[Original description]
Upgrading or reinstalling the systemd package when using rsyslogd results in bad permissions (0755 instead of 0775) being set on /var/log/. As a consequence of this, rsyslogd can no longer create new files within this directory, resulting in lost log messages.
The default configuration of rsyslogd provided by Ubuntu runs the daemon as syslog:syslog and sets ownership of /var/log to syslog:adm with mode 0775.
Systemd's default tmpfiles configuration sets /var/log to 0755 in /usr/lib/tmpfiles.d/var.conf, however this is overridden in /usr/lib/tmpfiles.d/00rsyslog.conf which is provided by package rsyslog.
It looks as though an upgrade of the systemd package fails to take /usr/lib/tmpfiles.d/00rsyslog.conf into account, as demonstrated below. This results in /var/log receiving mode 0755 instead of the expected 0775:
nick @ log2.be1.ams1:~ $ lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 16.04.3 LTS
Release: 16.04
Codename: xenial
nick @ log2.be1.ams1:~ $ apt policy systemd
systemd:
Installed: 229-4ubuntu21.1
Candidate: 229-4ubuntu21.1
Version table:
*** 229-4ubuntu21.1 500
500 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 Packages
500 http://security.ubuntu.com/ubuntu xenial-security/main amd64 Packages
100 /var/lib/dpkg/status
229-4ubuntu4 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
nick @ log2.be1.ams1:~ $ apt policy rsyslog
rsyslog:
Installed: 8.16.0-1ubuntu3
Candidate: 8.16.0-1ubuntu3
Version table:
*** 8.16.0-1ubuntu3 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
100 /var/lib/dpkg/status
nick @ log2.be1.ams1:~ $ grep -F /var/log /usr/lib/tmpfiles.d/var.conf
d /var/log 0755 - - -
f /var/log/wtmp 0664 root utmp -
f /var/log/btmp 0600 root utmp -
nick @ log2.be1.ams1:~ $ cat /usr/lib/tmpfiles.d/00rsyslog.conf
# Override systemd's default tmpfiles.d/var.conf to make /var/log writable by
# the syslog group, so that rsyslog can run as user.
# See tmpfiles.d(5) for details.
# Type Path Mode UID GID Age Argument
d /var/log 0775 root syslog -
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxrwxr-x 8 root syslog 4096 Feb 7 13:45 /var/log
nick @ log2.be1.ams1:~ $ sudo apt install --reinstall systemd
Reading package lists... Done
Building dependency tree
Reading state information... Done
0 upgraded, 0 newly installed, 1 reinstalled, 0 to remove and 7 not upgraded.
Need to get 3,634 kB of archives.
After this operation, 0 B of additional disk space will be used.
Get:1 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64 systemd amd64 229-4ubuntu21.1 [3,634 kB]
Fetched 3,634 kB in 0s (24.3 MB/s)
(Reading database ... 86614 files and directories currently installed.)
Preparing to unpack .../systemd_229-4ubuntu21.1_amd64.deb ...
Unpacking systemd (229-4ubuntu21.1) over (229-4ubuntu21.1) ...
Processing triggers for dbus (1.10.6-1ubuntu3.3) ...
Processing triggers for ureadahead (0.100.0-19) ...
Processing triggers for man-db (2.7.5-1) ...
Setting up systemd (229-4ubuntu21.1) ...
addgroup: The group `systemd-journal' already exists as a system group. Exiting.
nick @ log2.be1.ams1:~ $ ls -ld /var/log
drwxr-xr-x 8 root syslog 4096 Feb 7 13:45 /var/log |
[Impact]
/var/log's Permission is going back to 755 after upgrading systemd
if rsyslog is installed (default)
[Resolution]
Ensure that dh_installinit does not "helpfully" generate partial systemd-tmpfiles snippets in systemd package postinst.
Ensure that a generic systemd-tmpfiles call is done in systemd postinst, which takes into account /all/ configurations, not just some.
[Test Case]
1. Launch xenila container
2. ls -latr /var
3. apt install --reinstall systemd
4. ls -latr /var
The ownership, group and permissions for /var/log should remain the same. |
|
2018-10-08 15:04:40 |
Dimitri John Ledkov |
description |
[Impact]
/var/log's Permission is going back to 755 after upgrading systemd
if rsyslog is installed (default)
[Resolution]
Ensure that dh_installinit does not "helpfully" generate partial systemd-tmpfiles snippets in systemd package postinst.
Ensure that a generic systemd-tmpfiles call is done in systemd postinst, which takes into account /all/ configurations, not just some.
[Test Case]
1. Launch xenila container
2. ls -latr /var
3. apt install --reinstall systemd
4. ls -latr /var
The ownership, group and permissions for /var/log should remain the same. |
[Impact]
/var/log's Permission is going back to 755 after upgrading systemd
if rsyslog is installed (default)
[Resolution]
Ensure that dh_installinit does not "helpfully" generate partial systemd-tmpfiles snippets in systemd package postinst.
Ensure that a generic systemd-tmpfiles call is done in systemd postinst, which takes into account /all/ configurations, not just some.
[Regression Potential]
* This fix was already tested in bionic and works well there.
* Bad autogenerated calls to systemd-tmpfiles are removed from systemd postinst, and replaced by a call that takes all configs into account, thus this is a very safe thing to do - and simply repeats what is done on boot, thus is as safe as it gets.
[Test Case]
1. Launch xenila container
2. ls -latr /var
3. apt install --reinstall systemd
4. ls -latr /var
The ownership, group and permissions for /var/log should remain the same. |
|
2018-10-08 15:04:53 |
Dimitri John Ledkov |
systemd (Ubuntu Xenial): status |
Confirmed |
In Progress |
|
2018-10-10 15:49:20 |
Robie Basak |
systemd (Ubuntu Xenial): status |
In Progress |
Fix Committed |
|
2018-10-10 15:49:25 |
Robie Basak |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
2018-10-10 15:49:30 |
Robie Basak |
tags |
id-5bb78e0e0301523fc02398fc patch sts sts-sru-needed verification-done verification-done-bionic xenial |
id-5bb78e0e0301523fc02398fc patch sts sts-sru-needed verification-done-bionic verification-needed verification-needed-xenial xenial |
|
2018-10-11 19:13:35 |
David Coronel |
bug |
|
|
added subscriber David Coronel |
2018-10-15 17:30:28 |
Dan Streetman |
tags |
id-5bb78e0e0301523fc02398fc patch sts sts-sru-needed verification-done-bionic verification-needed verification-needed-xenial xenial |
id-5bb78e0e0301523fc02398fc patch sts sts-sru-needed verification-done verification-done-bionic verification-done-xenial xenial |
|
2018-10-15 17:30:44 |
Dan Streetman |
tags |
id-5bb78e0e0301523fc02398fc patch sts sts-sru-needed verification-done verification-done-bionic verification-done-xenial xenial |
id-5bb78e0e0301523fc02398fc patch sts verification-done verification-done-bionic verification-done-xenial xenial |
|
2018-10-24 19:44:13 |
Launchpad Janitor |
systemd (Ubuntu Xenial): status |
Fix Committed |
Fix Released |
|