Browse code
Merge "Log all input/output in rootwrap calls"
Jenkins authored on 2015/07/09 08:58:44Showing 1 changed files
| ... | ... |
@@ -212,6 +212,15 @@ is_package_installed sudo || install_package sudo |
| 212 | 212 |
sudo grep -q "^#includedir.*/etc/sudoers.d" /etc/sudoers || |
| 213 | 213 |
echo "#includedir /etc/sudoers.d" | sudo tee -a /etc/sudoers |
| 214 | 214 |
|
| 215 |
+# Conditionally setup detailed logging for sudo |
|
| 216 |
+if [[ -n "$LOG_SUDO" ]]; then |
|
| 217 |
+ TEMPFILE=`mktemp` |
|
| 218 |
+ echo "Defaults log_output" > $TEMPFILE |
|
| 219 |
+ chmod 0440 $TEMPFILE |
|
| 220 |
+ sudo chown root:root $TEMPFILE |
|
| 221 |
+ sudo mv $TEMPFILE /etc/sudoers.d/00_logging |
|
| 222 |
+fi |
|
| 223 |
+ |
|
| 215 | 224 |
# Set up DevStack sudoers |
| 216 | 225 |
TEMPFILE=`mktemp` |
| 217 | 226 |
echo "$STACK_USER ALL=(root) NOPASSWD:ALL" >$TEMPFILE |