[systemd-bugs] [Bug 70866] New: [systemd-journald][208] User in systemd-journal group can't access journal if it's in volatile storage only

bugzilla-daemon at freedesktop.org bugzilla-daemon at freedesktop.org
Fri Oct 25 18:11:48 CEST 2013 

https://bugs.freedesktop.org/show_bug.cgi?id=70866

          Priority: medium
            Bug ID: 70866
          Assignee: systemd-bugs at lists.freedesktop.org
           Summary: [systemd-journald][208] User in systemd-journal group
                    can't access journal if it's in volatile storage only
        QA Contact: systemd-bugs at lists.freedesktop.org
          Severity: minor
    Classification: Unclassified
                OS: Linux (All)
          Reporter: reztho at archlinux.us
          Hardware: Other
            Status: NEW
           Version: unspecified
         Component: general
           Product: systemd

In the man page of journalctl, we can see this:
"All users are granted access to their private per-user journals. However, by
default, only root and users who are members of the "systemd-journal" group get
access to the system journal and the journals of other users."

But this only applies as long as the journal uses the persistent storage. Users
can't access the journal when only using the volatile storage: the journal file
in /run/log/journal/%m/system.journal is owned by root.root.

Steps to reproduce:
1. gpasswd -a user systemd-journald
2. Edit the file /etc/systemd/journald.conf and change the storage line to:
Storage=volatile
3. Reboot, login as user and run journalctl:
No journal files were found

Workaround, thanks to alxchk from the official systemd IRC channel:
1. Add these lines to
/etc/systemd/system/systemd-journald.service.d/fixperms.conf
[Service]
ExecStartPre=/usr/bin/systemd-tmpfiles --create --prefix=/run/log

2. Add this line to /etc/tmpfiles.d/journald_fixperms.conf:
d /run/log/journal 2755 root systemd-journal - -

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freedesktop.org/archives/systemd-bugs/attachments/20131025/cde876f0/attachment.html>

More information about the systemd-bugs mailing list