]>
Commit | Line | Data |
---|---|---|
34c8deaa LP |
1 | # This file is part of systemd. |
2 | # | |
3 | # systemd is free software; you can redistribute it and/or modify it | |
5430f7f2 LP |
4 | # under the terms of the GNU Lesser General Public License as published by |
5 | # the Free Software Foundation; either version 2.1 of the License, or | |
34c8deaa LP |
6 | # (at your option) any later version. |
7 | ||
b0734b23 LP |
8 | # See tmpfiles.d(5) for details |
9 | ||
6fc27667 | 10 | d /run/user 0755 root root - |
d924a938 | 11 | {% if ENABLE_UTMP %} |
c4708f13 | 12 | F! /run/utmp 0664 root utmp - |
d924a938 | 13 | {% endif %} |
e1ab9912 | 14 | |
0e456f97 | 15 | d /run/systemd/ask-password 0755 root root - |
034a2a52 LP |
16 | d /run/systemd/seats 0755 root root - |
17 | d /run/systemd/sessions 0755 root root - | |
18 | d /run/systemd/users 0755 root root - | |
1ee306e1 | 19 | d /run/systemd/machines 0755 root root - |
04ebb595 | 20 | d /run/systemd/shutdown 0755 root root - |
61beaf81 | 21 | |
13ba92e0 LP |
22 | d /run/log 0755 root root - |
23 | ||
e73a03e0 | 24 | z /run/log/journal 2755 root systemd-journal - - |
176f2acf | 25 | Z /run/log/journal/%m ~2750 root systemd-journal - - |
d924a938 ZJS |
26 | {% if HAVE_ACL %} |
27 | {% if ENABLE_ADM_GROUP and ENABLE_WHEEL_GROUP %} | |
fb38a7be | 28 | a+ /run/log/journal - - - - d:group::r-x,d:group:adm:r-x,d:group:wheel:r-x,group::r-x,group:adm:r-x,group:wheel:r-x |
0f5a4f9c | 29 | a+ /run/log/journal/%m - - - - d:group:adm:r-x,d:group:wheel:r-x,group:adm:r-x,group:wheel:r-x |
d428dd6a | 30 | a+ /run/log/journal/%m/*.journal* - - - - group:adm:r--,group:wheel:r-- |
d924a938 | 31 | {% elif ENABLE_ADM_GROUP %} |
fb38a7be | 32 | a+ /run/log/journal - - - - d:group::r-x,d:group:adm:r-x,group::r-x,group:adm:r-x |
0f5a4f9c | 33 | a+ /run/log/journal/%m - - - - d:group:adm:r-x,group:adm:r-x |
d428dd6a | 34 | a+ /run/log/journal/%m/*.journal* - - - - group:adm:r-- |
d924a938 | 35 | {% elif ENABLE_WHEEL_GROUP %} |
fb38a7be | 36 | a+ /run/log/journal - - - - d:group::r-x,d:group:wheel:r-x,group::r-x,group:wheel:r-x |
0f5a4f9c | 37 | a+ /run/log/journal/%m - - - - d:group:wheel:r-x,group:wheel:r-x |
d428dd6a | 38 | a+ /run/log/journal/%m/*.journal* - - - - group:wheel:r-- |
d924a938 ZJS |
39 | {% endif %} |
40 | {% endif %} | |
176f2acf LP |
41 | |
42 | z /var/log/journal 2755 root systemd-journal - - | |
43 | z /var/log/journal/%m 2755 root systemd-journal - - | |
afae249e | 44 | z /var/log/journal/%m/system.journal 0640 root systemd-journal - - |
d924a938 ZJS |
45 | {% if HAVE_ACL %} |
46 | {% if ENABLE_ADM_GROUP and ENABLE_WHEEL_GROUP %} | |
0f5a4f9c LP |
47 | a+ /var/log/journal - - - - d:group::r-x,d:group:adm:r-x,d:group:wheel:r-x,group::r-x,group:adm:r-x,group:wheel:r-x |
48 | a+ /var/log/journal/%m - - - - d:group:adm:r-x,d:group:wheel:r-x,group:adm:r-x,group:wheel:r-x | |
afae249e | 49 | a+ /var/log/journal/%m/system.journal - - - - group:adm:r--,group:wheel:r-- |
d924a938 | 50 | {% elif ENABLE_ADM_GROUP %} |
0f5a4f9c LP |
51 | a+ /var/log/journal - - - - d:group::r-x,d:group:adm:r-x,group::r-x,group:adm:r-x |
52 | a+ /var/log/journal/%m - - - - d:group:adm:r-x,group:adm:r-x | |
2a998ffa | 53 | a+ /var/log/journal/%m/system.journal - - - - group:adm:r-- |
d924a938 | 54 | {% elif ENABLE_WHEEL_GROUP %} |
0f5a4f9c LP |
55 | a+ /var/log/journal - - - - d:group::r-x,d:group:wheel:r-x,group::r-x,group:wheel:r-x |
56 | a+ /var/log/journal/%m - - - - d:group:wheel:r-x,group:wheel:r-x | |
7178cd76 | 57 | a+ /var/log/journal/%m/system.journal - - - - group:wheel:r-- |
d924a938 ZJS |
58 | {% endif %} |
59 | {% endif %} | |
a45e6ef3 LP |
60 | |
61 | d /var/lib/systemd 0755 root root - | |
f8d67130 | 62 | d /var/lib/systemd/coredump 0755 root root 2w |
9c0c6701 DDM |
63 | # Files and directories in /var/lib/systemd/ephemeral-trees are locked by pid 1 to prevent tmpfiles from |
64 | # removing them, and tmpfiles is told to clean up anything in /var/lib/systemd/ephemeral-trees that isn't | |
65 | # locked unconditionally. | |
66 | d /var/lib/systemd/ephemeral-trees 0755 root root 0 | |
a78388e1 LP |
67 | |
68 | d /var/lib/private 0700 root root - | |
69 | d /var/log/private 0700 root root - | |
70 | d /var/cache/private 0700 root root - | |
f51b49c6 LP |
71 | |
72 | {% if ENABLE_EFI %} | |
27435a2c | 73 | # Copy sd-stub provided PCR signature and public key file from initrd into /run/, so that it will survive the initrd stage |
f51b49c6 LP |
74 | C /run/systemd/tpm2-pcr-signature.json 0444 root root - /.extra/tpm2-pcr-signature.json |
75 | C /run/systemd/tpm2-pcr-public-key.pem 0444 root root - /.extra/tpm2-pcr-public-key.pem | |
76 | {% endif %} |