search

fluent / fluent-package-builder

td-agent (Fluentd) Building and Packaging System
Apache License 2.0
22 stars 23 forks source link

rpm: do not delete system account #598

Closed kenhys closed 8 months ago

kenhys commented 8 months ago

In the previous versions (5.0.0, 5.0.1), when fluent-package was removed, system account (user and group are intended to be removed)

But there is a case that it fails to remove fluentd group because of compatible GID is assigned for td-agent and fluentd when fluent-package was introduced with upgrading from td-agent v4.

Removing fluentd user... userdel: group fluentd is the primary group of another user and is not removed. Removing fluentd group... groupdel: cannot remove the primary group of user 'td-agent' Removing td-agent user... userdel: td-agent mail spool (/var/spool/mail/td-agent) not found userdel: td-agent home directory (/var/lib/td-agent) not found

This is a bug of fluent-package apparently.

This kind of inconsistency causes maintainer script error when reinstalling td-agent or fluent-package again.

And moreover, if system account (user and group) was removed completely, there is a case that no user can access generated logs when user re-installed td-agent or fluent-package. (mismatch of UID/GID which is newly created)

This case also should be considered. (Keep system account after removing package)