init/tmpfiles.d/chromeos.conf - mirrors/cros/chromiumos/platform2 - Git at Google

 # Copyright 2021 The Chromium OS Authors. All rights reserved.
 # Use of this source code is governed by a BSD-style license that can be
 # found in the LICENSE file.

 # A tmpfile.d config for core system paths that are daemon independent and
 # do not fit well in daemon-specific configs.

 # Type  Path  Mode  User  Group  Age  Arguments

 # Startup.
 D!= /var/lock 0755 root root
 D!= /var/run 0755 root root

 # TODO(crbug.com/1179402) Move these to a cryptohome specific config.
 # These are redundant because of the bind mount to stateful, but the checks are
 # cheap so it is better to be safe.
 d= /home/chronos 0755 chronos chronos
 # /home/root must be sticky.
 D= /home/root 1751 root root
 D= /home/user 0755 root root
 R /home/chronos/u-????????????????????????????????????????
 D= /home/chronos/user 1755 chronos chronos

 d= /mnt/stateful_partition/home
 d= /mnt/stateful_partition/home/chronos 0755 root root
 d= /mnt/stateful_partition/home/root 1751 root root
 d= /mnt/stateful_partition/home/user 0755 root root
 d= /mnt/stateful_partition/unencrypted 0755 root root
 d= /mnt/stateful_partition/unencrypted/cache 0755 root root
 d= /mnt/stateful_partition/unencrypted/preserve 0775 root preserve

 d= /run/daemon-store 0755 root root

 # TODO(crbug.com/1179406) Move this to a powerd specific config.
 # Create a directory where PID files can be placed to override suspend and
 # shutdown (e.g. during firmware updates). This needs to happen early since
 # flashrom may run before the powerd job has started.
 d= /run/lock/power_override 1777 root root

 # Create a directory for mount-encrypted related logs and metrics.
 d= /run/mount_encrypted 0755 root root

 # Create a directory where we can keep persistent references to namespaces.
 d= /run/namespaces 0755 root root

 # Create a file where we can bind-mount the Chrome mount namespace.
 f+= /run/namespaces/mnt_chrome 0755 root root

 d= /var/cache 0755 root root
 d= /var/db 0755 root root
 # rsyslog needs to be able to create new logfiles, but not delete other logs.
 d= /var/log 1775 root syslog
 d= /var/log/metrics 0755 chronos chronos
 d= /var/spool 0755 root root
 d= /var/lib 0755 root root
 d= /var/lib/misc 0755 root root
 # /var/tmp must be world-writable and sticky.
 d= /var/tmp 1777 root root
	# Copyright 2021 The Chromium OS Authors. All rights reserved.
	# Use of this source code is governed by a BSD-style license that can be
	# found in the LICENSE file.

	# A tmpfile.d config for core system paths that are daemon independent and
	# do not fit well in daemon-specific configs.

	# Type Path Mode User Group Age Arguments

	# Startup.
	D!= /var/lock 0755 root root
	D!= /var/run 0755 root root

	# TODO(crbug.com/1179402) Move these to a cryptohome specific config.
	# These are redundant because of the bind mount to stateful, but the checks are
	# cheap so it is better to be safe.
	d= /home/chronos 0755 chronos chronos
	# /home/root must be sticky.
	D= /home/root 1751 root root
	D= /home/user 0755 root root
	R /home/chronos/u-????????????????????????????????????????
	D= /home/chronos/user 1755 chronos chronos

	d= /mnt/stateful_partition/home
	d= /mnt/stateful_partition/home/chronos 0755 root root
	d= /mnt/stateful_partition/home/root 1751 root root
	d= /mnt/stateful_partition/home/user 0755 root root
	d= /mnt/stateful_partition/unencrypted 0755 root root
	d= /mnt/stateful_partition/unencrypted/cache 0755 root root
	d= /mnt/stateful_partition/unencrypted/preserve 0775 root preserve

	d= /run/daemon-store 0755 root root

	# TODO(crbug.com/1179406) Move this to a powerd specific config.
	# Create a directory where PID files can be placed to override suspend and
	# shutdown (e.g. during firmware updates). This needs to happen early since
	# flashrom may run before the powerd job has started.
	d= /run/lock/power_override 1777 root root

	# Create a directory for mount-encrypted related logs and metrics.
	d= /run/mount_encrypted 0755 root root

	# Create a directory where we can keep persistent references to namespaces.
	d= /run/namespaces 0755 root root

	# Create a file where we can bind-mount the Chrome mount namespace.
	f+= /run/namespaces/mnt_chrome 0755 root root

	d= /var/cache 0755 root root
	d= /var/db 0755 root root
	# rsyslog needs to be able to create new logfiles, but not delete other logs.
	d= /var/log 1775 root syslog
	d= /var/log/metrics 0755 chronos chronos
	d= /var/spool 0755 root root
	d= /var/lib 0755 root root
	d= /var/lib/misc 0755 root root
	# /var/tmp must be world-writable and sticky.
	d= /var/tmp 1777 root root