:: [devuan-dev] bug#883: marked as don…
Startseite
Nachricht löschen
Nachricht beantworten
Autor: Devuan bug Tracking System
Datum:  
To: Mark Hindley
Betreff: [devuan-dev] bug#883: marked as done (/usr/lib/rsyslog/rsyslog-rotate: Questionable use of invoke-rc.d)
Your message dated Sun, 6 Apr 2025 09:37:14 +0100
with message-id <Z_I9OoxRWQWrCk8F@???>
and subject line Re: bug#881: invoke-rc.d: Policy layer may override runlevel constraint
has caused the Devuan bug report #881,
regarding /usr/lib/rsyslog/rsyslog-rotate: Questionable use of invoke-rc.d
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@???
immediately.)


--
881: https://bugs.devuan.org/cgi/bugreport.cgi?bug=881
Devuan Bug Tracking System
Contact owner@??? with problems
Package: rsyslog
Version: 8.2302.0-1+deb12u1devuan1

/usr/lib/rsyslog/rsyslog-rotate uses invoke-rc.d to notify rsyslog to
reopen logs but it doesn't work when using
policy-rcd-declarative-deny-all so shouldn't the logrotate
configuration snippet use rather 'service' ?

Regards,
Opty
Opty,

Thanks,

On Thu, Apr 03, 2025 at 01:16:40PM +0200, Opty wrote:
> > That isn't conventional Debian practice.
>
> I could continue using the policy layer unmodified, selectively allow
> what I need (extra work) and keep denied the rest
>
> -or-
>
> modify invoke-rc.d or rather policy-rc.d to check
> $DPKG_MAINTSCRIPT_NAME (to detect preinst, postinst, prerm or postrm
> script), crosscheck $DPKG_MAINTSCRIPT_PACKAGE vs. $INITSCRIPTID
> (substring of each other) to allow calling other scripts and
> eventually do nothing, maybe ask the administrator.
>
> Both seem unintentional error- or side-effect-prone.
>
> I could also just modify invoke-rc.d to skip the querypolicy call in
> case of K link.


I find it hard to see an actionable bug here. I think invoke-rc.d and
policy-rcd-declarative* are behaving as advertised. Your requirements appear
different to what policy-rcd-declarative-deny-all provides. So, as Simon
suggested, you need to write your own policy script to meet your requirements.

Therefore I will close this.

If you think I have missed something, please feel free to reopen.

Thanks

Mark