From: Lennart Poettering Date: Fri, 16 Sep 2022 13:59:05 +0000 (+0100) Subject: man: document new : modified for uid/gid/access mode in tmpfiles.d X-Git-Tag: v252-rc1~100^2~3 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=fdc4b8b1e067d7fded000e0056b3c02a9c7ac5a2;p=thirdparty%2Fsystemd.git man: document new : modified for uid/gid/access mode in tmpfiles.d --- diff --git a/man/tmpfiles.d.xml b/man/tmpfiles.d.xml index 15785d1bf2a..4ede01c82d7 100644 --- a/man/tmpfiles.d.xml +++ b/man/tmpfiles.d.xml @@ -531,27 +531,24 @@ w- /proc/sys/vm/swappiness - - - - 10 Mode - The file access mode to use when creating this file or - directory. If omitted or when set to -, the - default is used: 0755 for directories, 0644 for all other file - objects. For z, Z lines, - if omitted or when set to -, the file access - mode will not be modified. This parameter is ignored for - x, r, - R, L, t, - and a lines. - - Optionally, if prefixed with ~, the - access mode is masked based on the already set access bits for - existing file or directories: if the existing file has all - executable bits unset, all executable bits are removed from the - new access mode, too. Similarly, if all read bits are removed - from the old access mode, they will be removed from the new - access mode too, and if all write bits are removed, they will be - removed from the new access mode too. In addition, the - sticky/SUID/SGID bit is removed unless applied to a - directory. This functionality is particularly useful in - conjunction with Z. + The file access mode to use when creating this file or directory. If omitted or when set to + -, the default is used: 0755 for directories, 0644 for all other file objects. For + z, Z lines, if omitted or when set to -, the + file access mode will not be modified. This parameter is ignored for x, + r, R, L, t, and + a lines. + + Optionally, if prefixed with ~, the access mode is masked based on the already + set access bits for existing file or directories: if the existing file has all executable bits unset, + all executable bits are removed from the new access mode, too. Similarly, if all read bits are removed + from the old access mode, they will be removed from the new access mode too, and if all write bits are + removed, they will be removed from the new access mode too. In addition, the sticky/SUID/SGID bit is + removed unless applied to a directory. This functionality is particularly useful in conjunction with + Z. + + Optionally, if prefixed with :, the configured access mode is only used when + creating new inodes. If the inode the line refers to already exists, its access mode is left in place + unmodified. @@ -571,6 +568,10 @@ w- /proc/sys/vm/swappiness - - - - 10 url="https://systemd.io/UIDS-GIDS/#notes-on-resolvability-of-user-and-group-names">Notes on Resolvability of User and Group Names for more information on requirements on system user/group definitions. + + Optionally, if prefixed with :, the configured user/group information is only + used when creating new inodes. If the inode the line refers to already exists, its user/group is left + in place unmodified.