From: Yann E. MORIN <yann.morin.1998@free.fr>
To: buildroot@busybox.net
Subject: [Buildroot] [PATCH v2] package/openssh: Add sysusers.d snippet
Date: Sun, 16 Dec 2018 14:45:02 +0100 [thread overview]
Message-ID: <20181216134502.GB2384@scaer> (raw)
In-Reply-To: <20180216181016.8747-1-chris.lesiak@licor.com>
Chris, All,
Sorry for thr huge delay in replying to this patch of your...
On 2018-02-16 12:10 -0600, Chris Lesiak spake thusly:
> Signed-off-by: Chris Lesiak <chris.lesiak@licor.com>
> diff --git a/package/openssh/openssh.mk b/package/openssh/openssh.mk
> index 6b7ac22c19..5d099ceb13 100644
> --- a/package/openssh/openssh.mk
> +++ b/package/openssh/openssh.mk
> @@ -60,12 +60,20 @@ else
> OPENSSH_CONF_OPTS += --without-selinux
> endif
>
> +ifeq ($(BR2_PACKAGE_SYSTEMD_SYSUSERS),y)
> +define OPENSSH_INSTALL_SYSTEMD_SYSUSERS
> + $(INSTALL) -m 0644 -D package/openssh/sshd_sysusers.conf \
> + $(TARGET_DIR)/usr/lib/sysusers.d/sshd.conf
> +endef
> +endif
> +
> define OPENSSH_INSTALL_INIT_SYSTEMD
> $(INSTALL) -D -m 644 package/openssh/sshd.service \
> $(TARGET_DIR)/usr/lib/systemd/system/sshd.service
> mkdir -p $(TARGET_DIR)/etc/systemd/system/multi-user.target.wants
> ln -fs ../../../../usr/lib/systemd/system/sshd.service \
> $(TARGET_DIR)/etc/systemd/system/multi-user.target.wants/sshd.service
> + $(OPENSSH_INSTALL_SYSTEMD_SYSUSERS)
> endef
>
> define OPENSSH_INSTALL_INIT_SYSV
> diff --git a/package/openssh/sshd_sysusers.conf b/package/openssh/sshd_sysusers.conf
> new file mode 100644
> index 0000000000..3ea46f65c6
> --- /dev/null
> +++ b/package/openssh/sshd_sysusers.conf
> @@ -0,0 +1,5 @@
> +# sysusers.d snippet for creating the sshd system user automatically
> +# at boot on systemd-based systems that ship with an unpopulated
> +# /etc. See sysusers.d(5) for details.
No need for this boilerplate (which ends up being much bigger than the
actual content...)
> +u sshd - "Privilege-separated SSH"
We've discussed this a bit with Thomas, and there is one thing that we
did not like much, is that it is not integrated nicely in the existing
users support in Buildroot.
Shouldn't we have a generic mechanism, that takes all the FOO_USERS, and
turns them into sysusers.d(%) entries? Maybe something like:
define SYSTEMD_SYSUSERS
mkdir -p $(TARGET_DIR)/usr/lib/sysusers.d/
echo "$(PACKAGES_USERS)" \
|while read user uid group gid passwd home shell groups comment; do
printf "u %s %s %s\n" "${user}" "${uid}" "${comment}"
done >$(TARGET_DIR)/usr/lib/sysusers.d/buildroot.conf
# And similarly for groups...
endef
SYSTEMD_POST_TARGET_FINALIZE_HOOKS = SYSTEMD_SYSUSERS
Regards,
Yann E. MORIN.
--
.-----------------.--------------------.------------------.--------------------.
| Yann E. MORIN | Real-Time Embedded | /"\ ASCII RIBBON | Erics' conspiracy: |
| +33 662 376 056 | Software Designer | \ / CAMPAIGN | ___ |
| +33 223 225 172 `------------.-------: X AGAINST | \e/ There is no |
| http://ymorin.is-a-geek.org/ | _/*\_ | / \ HTML MAIL | v conspiracy. |
'------------------------------^-------^------------------^--------------------'
next prev parent reply other threads:[~2018-12-16 13:45 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-01-23 23:22 [Buildroot] [PATCH] package/openssh: Add sysusers.d snippet Chris Lesiak
2018-02-06 15:10 ` Samuel Martin
2018-02-16 18:10 ` [Buildroot] [PATCH v2] " Chris Lesiak
2018-12-16 13:45 ` Yann E. MORIN [this message]
2018-12-17 15:07 ` Chris Lesiak
2018-12-17 18:13 ` Yann E. MORIN
2018-12-17 21:24 ` Chris Lesiak
2018-12-17 22:59 ` Arnout Vandecappelle
2018-12-18 7:49 ` Thomas Petazzoni
2018-12-18 14:14 ` Chris Lesiak
2018-12-18 14:32 ` Arnout Vandecappelle
2018-12-18 17:03 ` Chris Lesiak
2019-02-06 13:13 ` Arnout Vandecappelle
2018-12-18 20:01 ` Yann E. MORIN
2018-12-18 19:59 ` Yann E. MORIN
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20181216134502.GB2384@scaer \
--to=yann.morin.1998@free.fr \
--cc=buildroot@busybox.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox