> the opt-in we want anyway
major nak from me. this can't be opt-in. Can you explain the concern?
> from the discussion we had the outcome was that tmpfiles can only create directories > and set ownership
that's not true
> apparmor confinement no symlink magic will help
I'm not thinking of symlinks, and any apparmor changes needed would be the same for /run storage or tmpfiles approach
> the opt-in we want anyway
major nak from me. this can't be opt-in. Can you explain the concern?
> from the discussion we had the outcome was that tmpfiles can only create directories
> and set ownership
that's not true
> apparmor confinement no symlink magic will help
I'm not thinking of symlinks, and any apparmor changes needed would be the same for /run storage or tmpfiles approach