From: "Puustinen, Ismo" <ismo.puustinen@intel.com>
To: "stephano.cetola@linux.intel.com" <stephano.cetola@linux.intel.com>
Cc: "openembedded-core@lists.openembedded.org"
<openembedded-core@lists.openembedded.org>
Subject: Re: [PATCH v2 0/2] Create systemd users at build time
Date: Thu, 12 May 2016 11:17:30 +0000 [thread overview]
Message-ID: <1463051851.16808.27.camel@intel.com> (raw)
In-Reply-To: <20160511190439.GA54030@ctaylor1-mobl3.amr.corp.intel.com>
On Wed, 2016-05-11 at 12:04 -0700, Stephano Cetola wrote:
> > I think this is a valuable feature. However, have you considered
> > adding
> > the "m" and "r" options too? I think that at least "m" would be
> > worthwhile to implement, since it's important to be able to add
> > users
> > to different groups for privilege management.
>
> I added "--system" to both useradd and groupadd, and I believe that
> is
> the same as "-r". Please correct me if I am wrong there.
>
> I do not see how the "-m" option would help with groups. I thought
> that
> simply added a skeleton home directory. Could you give me an example?
I mean that when you parse the sysusers.d configuration file
in create_systemd_sysusers() function, you only parse the lines
starting with 'u' and 'g'. You are skipping 'm' and 'r'. See:
https://www.freedesktop.org/software/systemd/man/sysusers.d.html
What I'm after is a generic mechanism for reading all sysusers.d/
configuration files during image creation and creating the necessary
users and groups during that time. You could also separate mechanism
and policy, meaning that the list of files to parse could come from
outside of the create_systemd_sysusers() function.
Ismo
next prev parent reply other threads:[~2016-05-12 11:17 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-05-09 23:42 [PATCH v2 0/2] Create systemd users at build time Stephano Cetola
2016-05-09 23:42 ` [PATCH v2 1/2] systemd: add sysusers config option to defaults Stephano Cetola
2016-05-09 23:50 ` Khem Raj
2016-05-10 0:24 ` Stephano Cetola
2016-05-09 23:42 ` [PATCH v2 2/2] systemd: add users/groups at build rather than runtime Stephano Cetola
2016-05-09 23:49 ` Khem Raj
2016-05-10 0:55 ` Stephano Cetola
2016-05-10 0:58 ` Khem Raj
2016-05-11 10:46 ` [PATCH v2 0/2] Create systemd users at build time Puustinen, Ismo
2016-05-11 19:04 ` Stephano Cetola
2016-05-12 11:17 ` Puustinen, Ismo [this message]
2016-05-12 15:30 ` Stephano Cetola
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1463051851.16808.27.camel@intel.com \
--to=ismo.puustinen@intel.com \
--cc=openembedded-core@lists.openembedded.org \
--cc=stephano.cetola@linux.intel.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox