[systemd-devel] sysusers and login.defs checks
Lennart Poettering
lennart at poettering.net
Tue Jul 22 04:10:58 PDT 2014
On Mon, 21.07.14 23:44, Colin Guthrie (gmane at colin.guthr.ie) wrote:
>
> 'Twas brillig, and Lennart Poettering at 21/07/14 23:28 did gyre and gimble:
> > On Mon, 21.07.14 15:43, Lennart Poettering (lennart at poettering.net) wrote:
> >
> >>> While I appreciate sysusers is intended primarily for bootstrapping
> >>> /etc, I guess the general consensus is to move package pre/post scripts
> >>> over to use sysusers instead anyway. Thus the tool should really check
> >>> /etc/login.defs at runtime if it's present before falling back to its
> >>> defaults. Those defaults could be set from a compile time check of
> >>> login.defs too.
> >>
> >> I am pretty strongly against this. Making this administrator
> >> configurable apepars very wrong, this really should be a decision for
> >> the distribution vendor, and that's it. We shouldn't design a system
> >> that comes to completely different results if you boot it up with and
> >> without /etc populated...
> >
> > Here's another idea: maybe we can bind this to the "users" group. Many
> > distributions (not all...) have this group and add regular users to
> > it. Maybe that's what we should use on top of the numeric UID boundary
> > check: if some user is either >= 1000 or is a member of the "users"
> > group we will consider him or her a regular user instead of a system
> > user. In many cases this should magically make things work. And even where
> > this isn't sufficient we at least have a nice solution to tell people:
> > make your user a member of "users" and it will properly be recognised as
> > regular user.
> >
> > Happy to add a patch for this!
>
> And I guess this heuristic would be easy enough to add to
> accountsservice too.
>
> I guess it's OK to do this kind of user lookup stuff from the journal
> code (i.e. server_fix_perms())?
Hmm, yuck. Actually it is really difficult....
It's not OK to do NSS calls from journald, as that might cause
communication with local daemons which in turn want to log, which might
result in a cyclic dep and hence a deadlock.
So if this is implemented, then we'd have to read the auxiliary group
list from the sending process (via /proc/$PID/status) directly, so that
we don't have to involve NSS.... This is awfully racy however.
Bummer, not sure if we can save this idea...
Lennart
--
Lennart Poettering, Red Hat
More information about the systemd-devel
mailing list