From patchwork Mon Jan 13 15:35:13 2020 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Norbert Lange X-Patchwork-Id: 1222180 Return-Path: X-Original-To: incoming-buildroot@patchwork.ozlabs.org Delivered-To: patchwork-incoming-buildroot@bilbo.ozlabs.org Authentication-Results: ozlabs.org; spf=pass (sender SPF authorized) smtp.mailfrom=busybox.net (client-ip=140.211.166.138; helo=whitealder.osuosl.org; envelope-from=buildroot-bounces@busybox.net; receiver=) Authentication-Results: ozlabs.org; dmarc=fail (p=none dis=none) header.from=gmail.com Authentication-Results: ozlabs.org; dkim=fail reason="signature verification failed" (2048-bit key; unprotected) header.d=gmail.com header.i=@gmail.com header.a=rsa-sha256 header.s=20161025 header.b=F7iL9+5E; dkim-atps=neutral Received: from whitealder.osuosl.org (smtp1.osuosl.org [140.211.166.138]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ozlabs.org (Postfix) with ESMTPS id 47xHjS2RNlz9sP6 for ; Tue, 14 Jan 2020 02:35:39 +1100 (AEDT) Received: from localhost (localhost [127.0.0.1]) by whitealder.osuosl.org (Postfix) with ESMTP id 6D66684FAE; Mon, 13 Jan 2020 15:35:36 +0000 (UTC) X-Virus-Scanned: amavisd-new at osuosl.org Received: from whitealder.osuosl.org ([127.0.0.1]) by localhost (.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oXO77Yror4ML; Mon, 13 Jan 2020 15:35:33 +0000 (UTC) Received: from ash.osuosl.org (ash.osuosl.org [140.211.166.34]) by whitealder.osuosl.org (Postfix) with ESMTP id 0B2D4842FC; Mon, 13 Jan 2020 15:35:33 +0000 (UTC) X-Original-To: buildroot@lists.busybox.net Delivered-To: buildroot@osuosl.org Received: from fraxinus.osuosl.org (smtp4.osuosl.org [140.211.166.137]) by ash.osuosl.org (Postfix) with ESMTP id 7E3BC1BF365 for ; Mon, 13 Jan 2020 15:35:31 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by fraxinus.osuosl.org (Postfix) with ESMTP id 7AF3B85184 for ; Mon, 13 Jan 2020 15:35:31 +0000 (UTC) X-Virus-Scanned: amavisd-new at osuosl.org Received: from fraxinus.osuosl.org ([127.0.0.1]) by localhost (.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PCwwSGm7_xYd for ; Mon, 13 Jan 2020 15:35:30 +0000 (UTC) X-Greylist: domain auto-whitelisted by SQLgrey-1.7.6 Received: from mail-wm1-f68.google.com (mail-wm1-f68.google.com [209.85.128.68]) by fraxinus.osuosl.org (Postfix) with ESMTPS id 7F315848C2 for ; Mon, 13 Jan 2020 15:35:30 +0000 (UTC) Received: by mail-wm1-f68.google.com with SMTP id a5so10203564wmb.0 for ; Mon, 13 Jan 2020 07:35:30 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:cc:subject:date:message-id:mime-version :content-transfer-encoding; bh=0Gs31Phr0vhhxyEPS/7snNNLelupn/0nmt/IA33kdxg=; b=F7iL9+5E7kabQohgMn7WReJc8tQ5A1IL1Yz0gza8qfS8FP4SAWewo1MjaKLgSB0ue/ TtPPxIlR+bwb+INeIqUXtqlByWW7UUOrJizqasWOsvLYIfKLxdQfRTYzo2XY/57uxGG4 xezPih6OGJI/lBVIJE2XZTkcckmtS8NKx3LYKEMQ0iFM8kbCFRrcGqnyl8P1WHM4O1hI rpIvtzCeCx8cukErYyiDgEl8BJxpgnHnyBVnvCR9UQHEACLSwPMj6+A4maQUwpfgj5XZ u3OpE1YIpdrLfajQ3pf1GB5s9W/+x/zLqRxr2GC3LLTjjkzWWhI1nE16w2Vkb5TPHJyL rFPA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:mime-version :content-transfer-encoding; bh=0Gs31Phr0vhhxyEPS/7snNNLelupn/0nmt/IA33kdxg=; b=JWnCK44aamQlCuLKinAPyb5iEEQzQAo5P8ZXt1utNgWS68WWTZu/I+CSPwQTAYl/vm vhshwLQNEAdgA8+CO60TUWU2h8/6BLxASBKZR82HTprneHmeVFzjXKpiVAxV0icYNZya DulddyBeQy09EHkNuBZWYj5MEXlzY5jR2zZCGRiyvf8nb8TvnHkiR1dEQ3O0GsPYO0FJ hTW79xaD4ckb0b94/qRsvTj2cMUDxGGe+YoQKLPDaJX7Ha5km4Ym0JG/jEcMtS13udPL aBwgtobyWMIlkeyCwrF0fGSAnz/R+7E/ecBk6+YN8o7BrNyCKrOOH+DzfsaPuz1c3hRI v6EA== X-Gm-Message-State: APjAAAWXNGLW0AEZU+cSmYh9olhSln+9HYPdhQwQQtKinQUPnR8PxhIT K79IXHPXdpCKCDs8/9KOHNQmYZMAY70= X-Google-Smtp-Source: APXvYqyzHcky3zhj2mRSOi6bO54QwIAYz+Z+iBuwAKZKIwVAvescLSv1Uop80v46HTdGG7GYsL9y5w== X-Received: by 2002:a7b:cc82:: with SMTP id p2mr21692469wma.159.1578929728573; Mon, 13 Jan 2020 07:35:28 -0800 (PST) Received: from lano-work.andritz.com ([80.120.136.76]) by smtp.gmail.com with ESMTPSA id c9sm14505199wmc.47.2020.01.13.07.35.27 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Mon, 13 Jan 2020 07:35:28 -0800 (PST) From: Norbert Lange To: buildroot@buildroot.org Date: Mon, 13 Jan 2020 16:35:13 +0100 Message-Id: <20200113153516.486106-1-nolange79@gmail.com> X-Mailer: git-send-email 2.24.1 MIME-Version: 1.0 Subject: [Buildroot] [PATCH 1/3] support/scripts/mkusers: allow option for system uid/gid X-BeenThere: buildroot@busybox.net X-Mailman-Version: 2.1.29 Precedence: list List-Id: Discussion and development of buildroot List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: Norbert Lange Errors-To: buildroot-bounces@busybox.net Sender: "buildroot" Extend the mkusers script to allow -2 for uid/gid. This value will take an identifier from the system range. Signed-off-by: Norbert Lange --- support/scripts/mkusers | 49 +++++++++++++++++++++++++++++------------ 1 file changed, 35 insertions(+), 14 deletions(-) diff --git a/support/scripts/mkusers b/support/scripts/mkusers index d00ba33823..1bf1336e48 100755 --- a/support/scripts/mkusers +++ b/support/scripts/mkusers @@ -8,6 +8,12 @@ MIN_UID=1000 MAX_UID=1999 MIN_GID=1000 MAX_GID=1999 +# use names from /etc/adduser.conf +FIRST_SYSTEM_UID=100 +LAST_SYSTEM_UID=999 +FIRST_SYSTEM_GID=100 +LAST_SYSTEM_GID=999 + # No more is configurable below this point #---------------------------------------------------------------------------- @@ -136,9 +142,9 @@ check_user_validity() { fail "invalid username '%s\n'" "${username}" fi - if [ ${gid} -lt -1 -o ${gid} -eq 0 ]; then + if [ ${gid} -lt -2 -o ${gid} -eq 0 ]; then fail "invalid gid '%d' for '%s'\n" ${gid} "${username}" - elif [ ${gid} -ne -1 ]; then + elif [ ${gid} -gt -1 ]; then # check the gid is not already used for another group if [ -n "${_group}" -a "${_group}" != "${group}" ]; then fail "gid '%d' for '%s' is already used by group '%s'\n" \ @@ -162,9 +168,9 @@ check_user_validity() { fi fi - if [ ${uid} -lt -1 -o ${uid} -eq 0 ]; then + if [ ${uid} -lt -2 -o ${uid} -eq 0 ]; then fail "invalid uid '%d' for '%s'\n" ${uid} "${username}" - elif [ ${uid} -ne -1 ]; then + elif [ ${uid} -gt -1 ]; then # check the uid is not already used for another user if [ -n "${_username}" -a "${_username}" != "${username}" ]; then fail "uid '%d' for '%s' already used by user '%s'\n" \ @@ -198,16 +204,18 @@ check_user_validity() { # - not already used by a group generate_gid() { local group="${1}" + local mingid="${2:-$MIN_UID}" + local maxgid="${3:-$MAX_UID}" local gid gid="$( get_gid "${group}" )" if [ -z "${gid}" ]; then - for(( gid=MIN_GID; gid<=MAX_GID; gid++ )); do + for(( gid=mingid; gid<=maxgid; gid++ )); do if [ -z "$( get_group "${gid}" )" ]; then break fi done - if [ ${gid} -gt ${MAX_GID} ]; then + if [ ${gid} -gt ${maxgid} ]; then fail "can not allocate a GID for group '%s'\n" "${group}" fi fi @@ -222,8 +230,13 @@ add_one_group() { local members # Generate a new GID if needed - if [ ${gid} -eq -1 ]; then - gid="$( generate_gid "${group}" )" + if [ ${gid} -le -1 ]; then + if [ ${gid} -eq -1 ]; then + gid="$( generate_gid "${group}" )" + else + gid="$( generate_gid "${group}" $FIRST_SYSTEM_GID $LAST_SYSTEM_GID )" + + fi fi members=$(get_members "$group") @@ -247,16 +260,19 @@ add_one_group() { # - not already used by a user generate_uid() { local username="${1}" + local minuid="${2:-$MIN_UID}" + local maxuid="${3:-$MAX_UID}" + local uid uid="$( get_uid "${username}" )" if [ -z "${uid}" ]; then - for(( uid=MIN_UID; uid<=MAX_UID; uid++ )); do + for(( uid=minuid; uid<=maxuid; uid++ )); do if [ -z "$( get_username "${uid}" )" ]; then break fi done - if [ ${uid} -gt ${MAX_UID} ]; then + if [ ${uid} -gt ${maxuid} ]; then fail "can not allocate a UID for user '%s'\n" "${username}" fi fi @@ -307,8 +323,13 @@ add_one_user() { check_user_validity "${username}" "${uid}" "${group}" "${gid}" # Generate a new UID if needed - if [ ${uid} -eq -1 ]; then - uid="$( generate_uid "${username}" )" + if [ ${uid} -le -1 ]; then + if [ ${uid} -eq -1 ]; then + uid="$( generate_uid "${username}" )" + else + uid="$( generate_uid "${username}" $FIRST_SYSTEM_UID $LAST_SYSTEM_UID )" + + fi fi # Remove any previous instance of this user @@ -399,7 +420,7 @@ main() { # Then, create all the main groups which gid *is* automatic for line in "${ENTRIES[@]}"; do read username uid group gid passwd home shell groups comment <<<"${line}" - [ ${gid} -eq -1 ] || continue # Non-automatic gid + [ ${gid} -le -1 ] || continue # Non-automatic gid add_one_group "${group}" "${gid}" done @@ -433,7 +454,7 @@ main() { for line in "${ENTRIES[@]}"; do read username uid group gid passwd home shell groups comment <<<"${line}" [ "${username}" != "-" ] || continue # Magic string to skip user creation - [ ${uid} -eq -1 ] || continue # Non-automatic uid + [ ${uid} -le -1 ] || continue # Non-automatic uid add_one_user "${username}" "${uid}" "${group}" "${gid}" "${passwd}" \ "${home}" "${shell}" "${groups}" "${comment}" done From patchwork Mon Jan 13 15:35:14 2020 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Norbert Lange X-Patchwork-Id: 1222181 Return-Path: X-Original-To: incoming-buildroot@patchwork.ozlabs.org Delivered-To: patchwork-incoming-buildroot@bilbo.ozlabs.org Authentication-Results: ozlabs.org; spf=pass (sender SPF authorized) smtp.mailfrom=busybox.net (client-ip=140.211.166.136; helo=silver.osuosl.org; envelope-from=buildroot-bounces@busybox.net; receiver=) Authentication-Results: ozlabs.org; dmarc=fail (p=none dis=none) header.from=gmail.com Authentication-Results: ozlabs.org; dkim=fail reason="signature verification failed" (2048-bit key; unprotected) header.d=gmail.com header.i=@gmail.com header.a=rsa-sha256 header.s=20161025 header.b=qdelfnFi; dkim-atps=neutral Received: from silver.osuosl.org (smtp3.osuosl.org [140.211.166.136]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ozlabs.org (Postfix) with ESMTPS id 47xHjc19F3z9sPn for ; Tue, 14 Jan 2020 02:35:48 +1100 (AEDT) Received: from localhost (localhost [127.0.0.1]) by silver.osuosl.org (Postfix) with ESMTP id 03BEB20433; Mon, 13 Jan 2020 15:35:43 +0000 (UTC) X-Virus-Scanned: amavisd-new at osuosl.org Received: from silver.osuosl.org ([127.0.0.1]) by localhost (.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hefHdltpGEBq; Mon, 13 Jan 2020 15:35:37 +0000 (UTC) Received: from ash.osuosl.org (ash.osuosl.org [140.211.166.34]) by silver.osuosl.org (Postfix) with ESMTP id 045692043B; Mon, 13 Jan 2020 15:35:37 +0000 (UTC) X-Original-To: buildroot@lists.busybox.net Delivered-To: buildroot@osuosl.org Received: from fraxinus.osuosl.org (smtp4.osuosl.org [140.211.166.137]) by ash.osuosl.org (Postfix) with ESMTP id EF9721BF365 for ; Mon, 13 Jan 2020 15:35:35 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by fraxinus.osuosl.org (Postfix) with ESMTP id EC66A85184 for ; Mon, 13 Jan 2020 15:35:35 +0000 (UTC) X-Virus-Scanned: amavisd-new at osuosl.org Received: from fraxinus.osuosl.org ([127.0.0.1]) by localhost (.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8nuJA6DPf1jL for ; Mon, 13 Jan 2020 15:35:35 +0000 (UTC) X-Greylist: domain auto-whitelisted by SQLgrey-1.7.6 Received: from mail-wr1-f44.google.com (mail-wr1-f44.google.com [209.85.221.44]) by fraxinus.osuosl.org (Postfix) with ESMTPS id A01FB855F6 for ; Mon, 13 Jan 2020 15:35:34 +0000 (UTC) Received: by mail-wr1-f44.google.com with SMTP id y17so9057282wrh.5 for ; Mon, 13 Jan 2020 07:35:34 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:cc:subject:date:message-id:in-reply-to:references :mime-version:content-transfer-encoding; bh=h4kSTKA96FpMI6af45gKU4YW1pGhCTAZqNJhmo9G94k=; b=qdelfnFiJ9gby+eqY1tfno875XMATFBbIfas6jbcvoaeuoHRKpJzhDIDYbt/DONstB N3+0zI0jGlF3y+pt9hsSNJ9Rut0zPxJmMEmMvwp6SOilkpPZFXg8yvPDiyy6MBmPwclR oLi7KAGlG+eF959K72CV6pcF8gOgvZG92HRYEIUhQbE1bRaFZCrFP8qEDZqFD3fGQJsy jdq6iM5i8m2+C9u7zpKS9DqqvfJox8+vSExw+Y09hkp8vWof5c52y+6q3RIldrWqZHBM HC6SWwSioylfZn0xyIkkh3ypdoGB7WCtZRIqILxuQf8zbnZHzLpTZoCN/f57If9BMWdC /Dbg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to :references:mime-version:content-transfer-encoding; bh=h4kSTKA96FpMI6af45gKU4YW1pGhCTAZqNJhmo9G94k=; b=DCnuiht7IPIu3d2QZROkqO6mqGX2e2akqrxLkX8stYzgaCRztCQc/SsBgIgPQjFFn0 BlzjnHHbyAIW5hkpCXl16AW/eU6vGmBImBE8ic1OMtQBYyZam9ghH7DTjh5YfKrM3xpy DmerYomph9NlL/uD1LhfBaj2G5yjx7LmJFodMhJb5xExCmriu8zyaBKAWef/IFNYjZy/ NLM0WiwhTyjgEllQLpToCy7i43b2ntLubNQmP2bVIpDC26vGwiSe/A8fbj8tFiB6tHwx MzcywgQZaN4OuQ06PeUU8kKqW5PuR2TBMK5WX+uw3eJqdxGxldspzvMsT3RXM9L2Ar8Q 9qnA== X-Gm-Message-State: APjAAAWlrXLz/kUVn8xEM4KPrAtoEheyARyCn+A1MuATEUGFT4bd3p8S xa9oZoZtostu+Rux4PjgXsw/+cXjQgw9gg== X-Google-Smtp-Source: APXvYqzTXn8pkElk7MVtLNYpqOnBkhU9+BNKq6mGEl75xRD9FAkQUual/7Uktp/FC0WVspwc0ZmTfw== X-Received: by 2002:adf:806e:: with SMTP id 101mr20112836wrk.300.1578929732500; Mon, 13 Jan 2020 07:35:32 -0800 (PST) Received: from lano-work.andritz.com ([80.120.136.76]) by smtp.gmail.com with ESMTPSA id c9sm14505199wmc.47.2020.01.13.07.35.31 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Mon, 13 Jan 2020 07:35:32 -0800 (PST) From: Norbert Lange To: buildroot@buildroot.org Date: Mon, 13 Jan 2020 16:35:14 +0100 Message-Id: <20200113153516.486106-2-nolange79@gmail.com> X-Mailer: git-send-email 2.24.1 In-Reply-To: <20200113153516.486106-1-nolange79@gmail.com> References: <20200113153516.486106-1-nolange79@gmail.com> MIME-Version: 1.0 Subject: [Buildroot] [PATCH 2/3] package/systemd: create system users X-BeenThere: buildroot@busybox.net X-Mailman-Version: 2.1.29 Precedence: list List-Id: Discussion and development of buildroot List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: Norbert Lange , "Yann E. MORIN" , Adam Duskett , Maxime Hadjinlian Errors-To: buildroot-bounces@busybox.net Sender: "buildroot" Signed-off-by: Norbert Lange --- package/systemd/allow-empty-hostname.patch | 58 ++++++++++++++++++++++ package/systemd/systemd.mk | 18 +++---- 2 files changed, 67 insertions(+), 9 deletions(-) create mode 100644 package/systemd/allow-empty-hostname.patch diff --git a/package/systemd/allow-empty-hostname.patch b/package/systemd/allow-empty-hostname.patch new file mode 100644 index 0000000000..43dff94eae --- /dev/null +++ b/package/systemd/allow-empty-hostname.patch @@ -0,0 +1,58 @@ +diff --git a/src/network/generator/network-generator.c b/src/network/generator/network-generator.c +index 81afa953076..bed1e42697c 100644 +--- a/src/network/generator/network-generator.c ++++ b/src/network/generator/network-generator.c +@@ -574,7 +574,7 @@ static int parse_netmask_or_prefixlen(int family, const char **value, unsigned c + + static int parse_cmdline_ip_address(Context *context, int family, const char *value) { + union in_addr_union addr = {}, peer = {}, gateway = {}; +- const char *hostname, *ifname, *dhcp_type, *dns, *p; ++ const char *hostname = NULL, *ifname, *dhcp_type, *dns, *p; + unsigned char prefixlen; + int r; + +@@ -599,9 +599,11 @@ static int parse_cmdline_ip_address(Context *context, int family, const char *va + if (!p) + return -EINVAL; + +- hostname = strndupa(value, p - value); +- if (!hostname_is_valid(hostname, false)) +- return -EINVAL; ++ if (p != value) { ++ hostname = strndupa(value, p - value); ++ if (!hostname_is_valid(hostname, false)) ++ return -EINVAL; ++ } + + value = p + 1; + +diff --git a/test/TEST-35-NETWORK-GENERATOR/test-03-issue-14319.expected/90-enp3s0.network b/test/TEST-35-NETWORK-GENERATOR/test-03-issue-14319.expected/90-enp3s0.network +new file mode 100644 +index 00000000000..28ccfdd9b00 +--- /dev/null ++++ b/test/TEST-35-NETWORK-GENERATOR/test-03-issue-14319.expected/90-enp3s0.network +@@ -0,0 +1,17 @@ ++# Automatically generated by systemd-network-generator ++ ++[Match] ++Name=enp3s0 ++ ++[Link] ++ ++[Network] ++DHCP=no ++ ++[DHCP] ++ ++[Address] ++Address=10.99.37.44/16 ++ ++[Route] ++Gateway=10.99.10.1 +diff --git a/test/TEST-35-NETWORK-GENERATOR/test-03-issue-14319.input b/test/TEST-35-NETWORK-GENERATOR/test-03-issue-14319.input +new file mode 100644 +index 00000000000..3be752067b8 +--- /dev/null ++++ b/test/TEST-35-NETWORK-GENERATOR/test-03-issue-14319.input +@@ -0,0 +1 @@ ++root=/dev/nfs nfsroot=10.99.37.240:/srv/netroot,v3,tcp ip=10.99.37.44::10.99.10.1:255.255.0.0::enp3s0:off diff --git a/package/systemd/systemd.mk b/package/systemd/systemd.mk index a3073f10a9..bce87951d2 100644 --- a/package/systemd/systemd.mk +++ b/package/systemd/systemd.mk @@ -181,7 +181,7 @@ endif ifeq ($(BR2_PACKAGE_SYSTEMD_JOURNAL_REMOTE),y) SYSTEMD_CONF_OPTS += -Dremote=true -SYSTEMD_REMOTE_USER = systemd-journal-remote -1 systemd-journal-remote -1 * /run/systemd - - systemd Journal Remote +SYSTEMD_REMOTE_USER = systemd-journal-remote -2 systemd-journal-remote -2 * /run/systemd - - systemd Journal Remote else SYSTEMD_CONF_OPTS += -Dremote=false endif @@ -305,7 +305,7 @@ endif ifeq ($(BR2_PACKAGE_SYSTEMD_COREDUMP),y) SYSTEMD_CONF_OPTS += -Dcoredump=true -SYSTEMD_COREDUMP_USER = systemd-coredump -1 systemd-coredump -1 * /run/systemd - - systemd core dump processing +SYSTEMD_COREDUMP_USER = systemd-coredump -2 systemd-coredump -2 * /run/systemd - - systemd core dump processing else SYSTEMD_CONF_OPTS += -Dcoredump=false endif @@ -325,7 +325,7 @@ endif ifeq ($(BR2_PACKAGE_SYSTEMD_NETWORKD),y) SYSTEMD_CONF_OPTS += -Dnetworkd=true -SYSTEMD_NETWORKD_USER = systemd-network -1 systemd-network -1 * /run/systemd - - systemd Network Management +SYSTEMD_NETWORKD_USER = systemd-network -2 systemd-network -2 * /run/systemd - - systemd Network Management SYSTEMD_NETWORKD_DHCP_IFACE = $(call qstrip,$(BR2_SYSTEM_DHCP)) ifneq ($(SYSTEMD_NETWORKD_DHCP_IFACE),) define SYSTEMD_INSTALL_NETWORK_CONFS @@ -344,14 +344,14 @@ define SYSTEMD_INSTALL_RESOLVCONF_HOOK $(TARGET_DIR)/etc/resolv.conf endef SYSTEMD_CONF_OPTS += -Dresolve=true -SYSTEMD_RESOLVED_USER = systemd-resolve -1 systemd-resolve -1 * /run/systemd - - systemd Resolver +SYSTEMD_RESOLVED_USER = systemd-resolve -2 systemd-resolve -2 * /run/systemd - - systemd Resolver else SYSTEMD_CONF_OPTS += -Dresolve=false endif ifeq ($(BR2_PACKAGE_SYSTEMD_TIMESYNCD),y) SYSTEMD_CONF_OPTS += -Dtimesyncd=true -SYSTEMD_TIMESYNCD_USER = systemd-timesync -1 systemd-timesync -1 * /run/systemd - - systemd Time Synchronization +SYSTEMD_TIMESYNCD_USER = systemd-timesync -2 systemd-timesync -2 * /run/systemd - - systemd Time Synchronization else SYSTEMD_CONF_OPTS += -Dtimesyncd=false endif @@ -420,10 +420,10 @@ define SYSTEMD_INSTALL_IMAGES_CMDS endef define SYSTEMD_USERS - - - input -1 * - - - Input device group - - - systemd-journal -1 * - - - Journal - - - render -1 * - - - DRI rendering nodes - - - kvm -1 * - - - kvm nodes + - - input -2 * - - - Input device group + - - systemd-journal -2 * - - - Journal + - - render -2 * - - - DRI rendering nodes + - - kvm -2 * - - - kvm nodes $(SYSTEMD_REMOTE_USER) $(SYSTEMD_COREDUMP_USER) $(SYSTEMD_NETWORKD_USER) From patchwork Mon Jan 13 15:35:15 2020 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Norbert Lange X-Patchwork-Id: 1222182 Return-Path: X-Original-To: incoming-buildroot@patchwork.ozlabs.org Delivered-To: patchwork-incoming-buildroot@bilbo.ozlabs.org Authentication-Results: ozlabs.org; spf=pass (sender SPF authorized) smtp.mailfrom=busybox.net (client-ip=140.211.166.136; helo=silver.osuosl.org; envelope-from=buildroot-bounces@busybox.net; receiver=) Authentication-Results: ozlabs.org; dmarc=fail (p=none dis=none) header.from=gmail.com Authentication-Results: ozlabs.org; dkim=fail reason="signature verification failed" (2048-bit key; unprotected) header.d=gmail.com header.i=@gmail.com header.a=rsa-sha256 header.s=20161025 header.b=Zu3oWZ9T; dkim-atps=neutral Received: from silver.osuosl.org (smtp3.osuosl.org [140.211.166.136]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ozlabs.org (Postfix) with ESMTPS id 47xHjd2v08z9sP6 for ; Tue, 14 Jan 2020 02:35:49 +1100 (AEDT) Received: from localhost (localhost [127.0.0.1]) by silver.osuosl.org (Postfix) with ESMTP id 2299320442; Mon, 13 Jan 2020 15:35:45 +0000 (UTC) X-Virus-Scanned: amavisd-new at osuosl.org Received: from silver.osuosl.org ([127.0.0.1]) by localhost (.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cBV7JHK+BQet; Mon, 13 Jan 2020 15:35:41 +0000 (UTC) Received: from ash.osuosl.org (ash.osuosl.org [140.211.166.34]) by silver.osuosl.org (Postfix) with ESMTP id 5B96B20431; Mon, 13 Jan 2020 15:35:39 +0000 (UTC) X-Original-To: buildroot@lists.busybox.net Delivered-To: buildroot@osuosl.org Received: from hemlock.osuosl.org (smtp2.osuosl.org [140.211.166.133]) by ash.osuosl.org (Postfix) with ESMTP id 651621BF365 for ; Mon, 13 Jan 2020 15:35:36 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by hemlock.osuosl.org (Postfix) with ESMTP id 61C3087327 for ; Mon, 13 Jan 2020 15:35:36 +0000 (UTC) X-Virus-Scanned: amavisd-new at osuosl.org Received: from hemlock.osuosl.org ([127.0.0.1]) by localhost (.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id v9hGwg-YNeCx for ; Mon, 13 Jan 2020 15:35:36 +0000 (UTC) X-Greylist: domain auto-whitelisted by SQLgrey-1.7.6 Received: from mail-wr1-f44.google.com (mail-wr1-f44.google.com [209.85.221.44]) by hemlock.osuosl.org (Postfix) with ESMTPS id B31D88731A for ; Mon, 13 Jan 2020 15:35:35 +0000 (UTC) Received: by mail-wr1-f44.google.com with SMTP id g17so9048238wro.2 for ; Mon, 13 Jan 2020 07:35:35 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:cc:subject:date:message-id:in-reply-to:references :mime-version:content-transfer-encoding; bh=fZfjndjYf7APhf9v4uq0ljtObxAhcNdiH4djYgAWY4o=; b=Zu3oWZ9TrSl1cKM2YyZvjYsovxHCl7R+ylCgrH81y1YZfBC+zb86/G0hlal6azFYxg ujIYGCrB3Ddq93uHBIMQFK+cwiYpwwE5ee40xA5alwzAMLvXEVBVVDp+mxqRW5etIBHr clfCkb5J7eRS4xz3sN0sHEPzvQVHUyGtiuTbSLzZXwhRSL+kBQT274yogj/D6mUtkzTX hxMeHgMxBpZtTtbH3vItXWL4Uvchfbk7csXRCKYq48pPZVE2X4aOcrMi3axEozTZfs6T 8YtE40wIvelYu8sM7kacXA4KrRVNOk7EnHCN7Hfp4750f3YTtoAnRNnSg3jz5dHWDBmA hjog== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to :references:mime-version:content-transfer-encoding; bh=fZfjndjYf7APhf9v4uq0ljtObxAhcNdiH4djYgAWY4o=; b=GJljw+gZ80B0Hx+kOm0Cpe/9Ci/Iucnoi71Xcw38NlDUZvZAEXlwIcO4GVSBv4eWDc b2rriPFgXnRt23s33k1fC7D1tM5RuVaSFR3NqFXNp1JAooDNMe03coyDs8g9Q3dNaaTd p+1IRyOM1T6Inirxx/Sgw3iyraxNxffThFYX+6LppylSeFssgBUUCwRAb5WQALUQC5bp /n2TIGoWCfBMjTz8WH38fH7J1opCcifPYluvsV+NSZxJV8dolXCOBy7h3hD65ftokB6p 4e2fxBkMPjSLK51m6Dws81PVkf/+GxCwPkHk0KuqrKtsysrxEOGxLvbpFPzWiQyWs4V7 il0A== X-Gm-Message-State: APjAAAUfXAzSBqrS8JH1QTj7tPaD8W0k/XyiD9pJHqwAqg7xR31skxh8 ZUGgCEubrcWkaKiqC7k3a6QAnwNrCb4= X-Google-Smtp-Source: APXvYqxIC+Xk4YTAOvZ0/+OrkvwnyjEmd16c49hzmJ/oHBajp5sS0HPEaj0Jwj0DrOX67jHCA3D1Pg== X-Received: by 2002:a5d:4805:: with SMTP id l5mr18728057wrq.3.1578929733811; Mon, 13 Jan 2020 07:35:33 -0800 (PST) Received: from lano-work.andritz.com ([80.120.136.76]) by smtp.gmail.com with ESMTPSA id c9sm14505199wmc.47.2020.01.13.07.35.33 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Mon, 13 Jan 2020 07:35:33 -0800 (PST) From: Norbert Lange To: buildroot@buildroot.org Date: Mon, 13 Jan 2020 16:35:15 +0100 Message-Id: <20200113153516.486106-3-nolange79@gmail.com> X-Mailer: git-send-email 2.24.1 In-Reply-To: <20200113153516.486106-1-nolange79@gmail.com> References: <20200113153516.486106-1-nolange79@gmail.com> MIME-Version: 1.0 Subject: [Buildroot] [PATCH 3/3] package/openssh: create system users X-BeenThere: buildroot@busybox.net X-Mailman-Version: 2.1.29 Precedence: list List-Id: Discussion and development of buildroot List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: Norbert Lange Errors-To: buildroot-bounces@busybox.net Sender: "buildroot" Signed-off-by: Norbert Lange --- package/openssh/openssh.mk | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/package/openssh/openssh.mk b/package/openssh/openssh.mk index 0411133bdc..6e29c3af7d 100644 --- a/package/openssh/openssh.mk +++ b/package/openssh/openssh.mk @@ -67,7 +67,7 @@ define OPENSSH_INSTALL_SYSTEMD_SYSUSERS endef else define OPENSSH_USERS - sshd -1 sshd -1 * /var/empty - - SSH drop priv user + sshd -2 sshd -2 * /var/empty - - SSH drop priv user endef endif