Commit 7f6ceded authored by Frédéric Dalleau's avatar Frédéric Dalleau

Allow systemd-logind to write shutdown files in /run

The current `shutdown` command implemented in `systemctl` asks
`systemd-logind` to shutdown. `systemd-logind` is prevented by
apparmor to shutdown: The AppArmor profile does not allowing creation
of `nologin`, `utmp` and `scheduled` files.
When `systemd-logind` fails, `systemctl` writes a warning message in
the console, and uses a fallback code to shutdown.
This patch allows `systemd-logind` to create those files for a clean
shutdown.

Apertis: https://phabricator.apertis.org/T4570Signed-off-by: 's avatarFrédéric Dalleau <frederic.dalleau@collabora.com>
parent ac41b669
......@@ -53,6 +53,11 @@
/run/systemd/seats/{,*} rw,
/run/systemd/sessions/{,*} rw,
/run/systemd/users/{,*} rw,
/run/nologin rw,
"/run/.#nologin*" rw,
/run/utmp rwk,
/run/systemd/shutdown/scheduled rw,
"/run/systemd/shutdown/.#scheduled*" rw,
/run/udev/** r,
/run/user/*/ w,
/var/lib/systemd/linger/{,**} r,
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment