|
||
|
||
|
||
|
||
|
||
|
||
|
||
lslebodn commented 5 years ago | ||
|
||
|
||
|
||
|
||
lslebodn commented 5 years ago The documentation for systemd does not say anything about read-only /var $SYSTEMD_OFFLINE=[0|1] — if set to 1, then systemctl will refrain from talking to PID 1; this has the same effect as the historical detection of chroot(). Setting this variable to 0 instead has a similar effect as SYSTEMD_IGNORE_CHROOT=1; i.e. tools will try to communicate with PID 1 even if a chroot() environment is detected. You almost certainly want to set this to 1 if you maintain a package build system or similar and are trying to use a modern container system and not plain chroot(). So relying on undefined behavior is not ideal. There might be use-cases for | ||
|
||
|
||
|
||
|
||
|
||
lslebodn commented 5 years ago Is there another variable created by rpm-ostree which says that /var/ is read-only? Slightly off-topic How does installation of packages works with read-only | ||
|
||
|
||
|
||
|
||
|
||
|
||
Today running rpm-ostree compose tree
results in a big spam
of warnings like:
⠙ Running pre scripts... openssh openssh.prein: (Fri Feb 15 15:50:41:748148 2019) [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb] openssh.prein: Could not open available domains openssh.prein: groupadd.rpmostreesave: sss_cache exited with status 5 openssh.prein: groupadd.rpmostreesave: Failed to flush the sssd cache. openssh.prein: (Fri Feb 15 15:50:41:774909 2019) [sss_cache] [confdb_init] (0x0010): Unable to open config database [/var/lib/sss/db/config.ldb] openssh.prein: Could not open available domains openssh.prein: groupadd.rpmostreesave: sss_cache exited with status 5
This is because rpm-ostree doesn't want scripts writing into /var
;
it's system-administrator managed state.
Really, SSSD should probably be silently ignoring system users.
But let's just silently do nothing if we're running offline, as
there won't be a sssd running.
But the issue is not with not-running sssd but with read-only filesystem for
/var/lib/sss/db