[Bug 893797] New: systemd PrivateTmp is broken, systemd-tmpfiles will delete too many files
https://bugzilla.novell.com/show_bug.cgi?id=893797 https://bugzilla.novell.com/show_bug.cgi?id=893797#c0 Summary: systemd PrivateTmp is broken, systemd-tmpfiles will delete too many files Classification: openSUSE Product: openSUSE 13.1 Version: Final Platform: Other OS/Version: openSUSE 13.1 Status: NEW Severity: Critical Priority: P5 - None Component: Basesystem AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: richard@nod.at QAContact: qa-bugs@suse.de Found By: --- Blocker: --- Created an attachment (id=603870) --> (http://bugzilla.novell.com/attachment.cgi?id=603870) fix User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:30.0) Gecko/20100101 Firefox/30.0 Due to a bug in systemd-tmpfiles the PrivateTmp feature of systemd is dangerous and broken. many services on OpenSUSE have it enabled by default. systemd-tmpfiles will spuriously delete all files in the private /tmp mount of each service. i.e. for apache2 all your sessions are gone once a day. It is especially nasty if mod_passenger is used, mod_passenger has in /tmp many temporary files needed by the ruby runtime. Once a day all your Rails applications will die until you restart apache2. The bug is caused because systemd-tmpfiles misinterprets the X rule. On OpenSUSE /usr/lib/tmpfiles.d/tmp.conf contains: d /tmp 1777 root root - d /var/tmp 1777 root root - ...such that no files in /tmp/ and /var/tmp are deleted the age is not set (thus "-"). The next lines are: x /tmp/systemd-private-* x /var/tmp/systemd-private-* X /tmp/systemd-private-*/tmp X /var/tmp/systemd-private-*/tmp Now the X rule inherits the age value from the upper directory items. /tmp has no age set but the age value is uninitialized and 0. --> Every file older than 0 in /tmp/systemd-private-*/tmp and /var/tmp/systemd-private-*/tmp will be deleted. Not nice... I sent already a fix to systemd folks: http://lists.freedesktop.org/archives/systemd-devel/2014-August/022666.html This issue is especially nasty if you mount something important below /tmp/. Thanks, //richard Reproducible: Always Steps to Reproduce: 1. 2. 3. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=893797
https://bugzilla.novell.com/show_bug.cgi?id=893797#c1
--- Comment #1 from Richard Weinberger
https://bugzilla.novell.com/show_bug.cgi?id=893797
https://bugzilla.novell.com/show_bug.cgi?id=893797#c
Bernhard Wiedemann
https://bugzilla.novell.com/show_bug.cgi?id=893797
https://bugzilla.novell.com/show_bug.cgi?id=893797#c2
Dr. Werner Fink
https://bugzilla.novell.com/show_bug.cgi?id=893797
https://bugzilla.novell.com/show_bug.cgi?id=893797#c3
--- Comment #3 from Richard Weinberger
http://bugzilla.novell.com/show_bug.cgi?id=893797
Marcos Mello
Patch is now mainline: http://cgit.freedesktop.org/systemd/systemd/commit/ ?id=9ed2a35e93f4a9e82585f860f54cdcbbdf3e1f86
Please apply it to openSUSE's systemd and serve an update.
And now in v208-stable branch: http://cgit.freedesktop.org/systemd/systemd-stable/commit/?h=v208-stable&id=b66559b11f192ee2b4f8e1d7acbe667bb75b77fd -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=893797
Swamp Workflow Management
http://bugzilla.novell.com/show_bug.cgi?id=893797
Swamp Workflow Management
http://bugzilla.novell.com/show_bug.cgi?id=893797
Swamp Workflow Management
http://bugzilla.novell.com/show_bug.cgi?id=893797
Swamp Workflow Management
http://bugzilla.novell.com/show_bug.cgi?id=893797
http://bugzilla.novell.com/show_bug.cgi?id=893797#c9
--- Comment #9 from Swamp Workflow Management
participants (1)
-
bugzilla_noreply@novell.com