Can't create test file #2554

New Issue

GiteaMirror · 2026-03-22T14:11:52-05:00

GiteaMirror commented

2026-03-22 14:11:52 -05:00

Originally created by @ThePlanplan on GitHub (Feb 23, 2026).

Pre-submission checklist

I have searched for existing open or closed issue reports with the same problem.

Description

I have a Debian install, that is working as root. After hardening systemd, with a new user, I'm stuck with the error "Could not init file handler: storage validation failed" :
Could not init file handler: storage validation failed: failed to create test file at /opt/vikunja/files/.vikunja-check-1771854780398630535: open /opt/vikunja/files/.vikunja-check-1771854780398630535: read-only file system\n[process uid=994 gid=992, dir owner uid=994 gid=992]

It look a bit like the error of some Docker rootless #2162

I checked all dirs permissions, everything is fine. Also, checked the systemd override file, I had to correct ExecStart being duplicated, it's starting but the test file error happen.

When executing vikunja doctor as my new "vikunja" user, everything is fine :

Vikunja Doctor
==============

System
  ✓ Version: v1.1.0
  ✓ Go: go1.25.7
  ✓ OS: linux/amd64
  ✓ User: vikunja (uid=994)
  ✓ Working directory: /home/debian
  ✓ User namespace: not active

Configuration
  ✓ Config file: /etc/vikunja/config.yml
  ✓ Public URL: https://redacted.com/
  ✓ JWT secret: configured (auto-generated)
  ✓ CORS origins: http://127.0.0.1:*
      http://localhost:*
      https://redacted.com

Database (sqlite)
  ✓ Connection: OK
  ✓ Server version: 3.51.1

Files (local)
  ✓ Path: /opt/vikunja/files
  ✓ Directory exists: yes
  ✓ Directory permissions: 0755
  ✓ Directory owner: vikunja:vikunja (uid=994, gid=992)
  ✓ Writable: yes
  ✓ Disk space: 9.6 GB available
  ✓ Stored files: 0 files, 0 B total

Mailer
  ✓ SMTP connection: OK (redacted.com:587)

All checks passed

Vikunja Version

Vikunja api version v1.1.0

Browser and version

No response

Can you reproduce the bug on the Vikunja demo site?

No

Screenshots

No response

Originally created by @ThePlanplan on GitHub (Feb 23, 2026). ### Pre-submission checklist - [x] I have searched for existing open or closed issue reports with the same problem. ### Description I have a Debian install, that is working as root. After hardening systemd, with a new user, I'm stuck with the error "Could not init file handler: storage validation failed" : `Could not init file handler: storage validation failed: failed to create test file at /opt/vikunja/files/.vikunja-check-1771854780398630535: open /opt/vikunja/files/.vikunja-check-1771854780398630535: read-only file system\n[process uid=994 gid=992, dir owner uid=994 gid=992]` It look a bit like the error of some Docker rootless #2162 I checked all dirs permissions, everything is fine. Also, checked the systemd override file, I had to correct ExecStart being duplicated, it's starting but the test file error happen. When executing vikunja doctor as my new "vikunja" user, everything is fine : ``` Vikunja Doctor ============== System ✓ Version: v1.1.0 ✓ Go: go1.25.7 ✓ OS: linux/amd64 ✓ User: vikunja (uid=994) ✓ Working directory: /home/debian ✓ User namespace: not active Configuration ✓ Config file: /etc/vikunja/config.yml ✓ Public URL: https://redacted.com/ ✓ JWT secret: configured (auto-generated) ✓ CORS origins: http://127.0.0.1:* http://localhost:* https://redacted.com Database (sqlite) ✓ Connection: OK ✓ Server version: 3.51.1 Files (local) ✓ Path: /opt/vikunja/files ✓ Directory exists: yes ✓ Directory permissions: 0755 ✓ Directory owner: vikunja:vikunja (uid=994, gid=992) ✓ Writable: yes ✓ Disk space: 9.6 GB available ✓ Stored files: 0 files, 0 B total Mailer ✓ SMTP connection: OK (redacted.com:587) All checks passed ``` ### Vikunja Version Vikunja api version v1.1.0 ### Browser and version _No response_ ### Can you reproduce the bug on the Vikunja demo site? No ### Screenshots _No response_

GiteaMirror closed this issue

2026-03-22 14:11:52 -05:00

GiteaMirror commented

2026-03-22 14:11:53 -05:00

@kolaente commented on GitHub (Feb 23, 2026):

This sounds like an issue caused by systemd hardening. When you run the doctor command, the hardening is not active because you're running the Vikunja binary directly, outside the systemd sandbox.

To fix this, you need to explicitly allow writes to your files directory in your systemd override. For example (curtsy of Claude):

[Service]
ReadWritePaths=/opt/vikunja/files

If your SQLite database is also stored outside the default paths, you may need to add that path too. You can apply this with:

You can check which protections are active with: systemd-analyze security vikunja.

@kolaente commented on GitHub (Feb 23, 2026): This sounds like an issue caused by systemd hardening. When you run the doctor command, the hardening is not active because you're running the Vikunja binary directly, outside the systemd sandbox. To fix this, you need to explicitly allow writes to your files directory in your systemd override. For example (curtsy of Claude): ``` [Service] ReadWritePaths=/opt/vikunja/files ``` If your SQLite database is also stored outside the default paths, you may need to add that path too. You can apply this with: You can check which protections are active with: `systemd-analyze security vikunja`.

GiteaMirror commented

2026-03-22 14:11:54 -05:00

@ThePlanplan commented on GitHub (Feb 24, 2026):

Yeah, I added all needed informations... but forgot to uncomment the top "database" in the config... 😕
Spending too much time on a ridiculous error...

Sorry for the false bug report.

@ThePlanplan commented on GitHub (Feb 24, 2026): Yeah, I added all needed informations... but forgot to uncomment the top "database" in the config... 😕 Spending too much time on a ridiculous error... Sorry for the false bug report.

GiteaMirror referenced this issue

2026-04-16 13:50:25 -05:00

[PR #2554] [MERGED] chore(frontend): deduplicate pnpm dependencies #5725

GiteaMirror referenced this issue

2026-04-20 18:10:22 -05:00

[PR #2554] [MERGED] chore(frontend): deduplicate pnpm dependencies #8359

GiteaMirror referenced this issue

2026-04-23 09:23:09 -05:00

[PR #2554] [MERGED] chore(frontend): deduplicate pnpm dependencies #10075

Sign in to join this conversation.

Branches Tags

main

renovate/dev-dependencies

feat-v2-foundation

dependabot/npm_and_yarn/frontend/axios-1.15.2

spike-huma-openapi3

claude/investigate-swagger3-support-nyyUa

feat-list-view-buckets

ci-mysql-8-test

codex/analyze-codebase-for-email-task-feature

feat-project-templates

csv-import-feature

claude/email-reply-comments-wpdcQ

fix-oidc-pkce-support

fix/overview-subtasks-expand

feat/bucket-select-task-detail

feat-soft-delete-projects

claude/review-bot-design-plan-cf5C3

claude/project-scoped-api-tokens-KTqR3

claude/explore-openclaw-integration-KQEzg

claude/project-scoped-api-tokens-yv5KS

fix-duplicate-close-button

feat-list-view-sorting

feat/official-vite-sentry-plugin

feat/highlight-overdue-tasks

feat/add-enter-key-form-submission-handling

feat/TipTap-nits

feat/update-caldavtimetotimestamp-parsing

feat-phosphor-icons

wip-plans

claude/investigate-issue-2173-llKme

fix-description-text-drag

feat-custom-keyboard-shortcuts

pr-1845-ci

codex/fix-drag-and-drop-behavior-inconsistency

copilot/add-clickable-labels-for-filtering

copilot/fix-issue-1786

playwright-migration

fix-kanban-repeating-wip

copilot/fix-1498

feature/replace-axios

codex/upgrade-to-tailwind-4.1.8-using-pnpm

codex/add-cypress-test-for-avatar-types

feature/biome

feature/oxc

codex/update-flexsearch-to-0.8.205

4r6ni9-codex/fix-deprecated-sass-@import-usage

codex/fix-deprecated-sass-@import-usage

codex/add-cypress-test-for-task-list-refresh-fix

codex/fix-quick-add-magic-not-adding-tasks

codex/fix-all-type-errors

codex/fix-mimetype-for-docs.json

feature/caldav-from-scratch

feature/gh-actions-hetzner

fix-ci

feat/new-logger

jyte-better-dev-config

feat/add-team-member-with-enter

fix/button-and-icon-types

fix/notifications-component-name-collision

feature/null-time

renovate/tailwindcss-4.x

feature/unplugin-vue-router

fix/deprecated-import

feature/zod-schema

renovate/golangci-golangci-lint-1.x

fix/tiptap-editor-reactive-destructuring

release/0.24

feat/improve-add-task

fix/saved-filter-search

feat/webp-and-avif-attachment-previews

feature/migrate-back-to-bulma

fix/sass-add-missing-list-import

feature/sticky-demo-bar

fix/gantt-view-switch

feature/typesense-position-join

feature/focus-visible

dependencies/golangci-lint

feature/better-filter-syntax

fix/tiptap-task-list

renovate/github.com-golang-jwt-jwt-v4-5.x

feature/hide-forbidden-related-tasks

renovate/golang-1.x

release/0.20

release/0.17

release/0.16

release/0.15

release/0.14

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/vikunja#2554