What were you trying to do that didn't work?

I was installing keylime in a Container file and deployed a system update with bootc.

After the update, I have noticed that /var/lib/keylime does not exist.

This should be fixed in the keylime package per

https://issues.redhat.com/browse/BIFROST-618?focusedId=26492119&page=com.atlassian.jira.plugin.system.issuetabpanels%3Acomment-tabpanel#comment-26492119

The biggest issue is that there is an existing keylime content in /var/lib/keylime directory that should be deployed on the system but it is not due to how bootc handles /var during an update.

More details are available at https://bootc-dev.github.io/bootc/filesystem.html#var

What is the impact of this issue to you?

keylime doesn't work after an installation

Please provide the package NVR for which the bug is seen:

     keylime-7.3.0-13.el9_3

How reproducible is this bug?:

always

Steps to reproduce

1.  prepare a Containerfile for a test system in image mode
2.  build the image and deploy an update
3. notice that /var/lib/keylime is not present

Expected results

/var/lib/keylime is present with all the respective content inside and is owned by keylime user

Actual results

/var/lib/keylime is not present