From: sgn <sgn@users.noreply.github.com>
To: ml@inbox.vuxu.org
Subject: Re: [PR PATCH] [Closed]: xbps-triggers:system-accounts: use grep to check for user/group existent
Date: Thu, 10 Sep 2020 16:01:49 +0200 [thread overview]
Message-ID: <20200910140149.9Y0b9Pq_o9YboKnqoNBpummD9ikHRb6NDTp2O4UZnRk@z> (raw)
In-Reply-To: <gh-mailinglist-notifications-41a7ca26-5023-4802-975b-f1789d68868e-void-packages-24754@inbox.vuxu.org>
[-- Attachment #1: Type: text/plain, Size: 1601 bytes --]
There's a closed pull request on the void-packages repository
xbps-triggers:system-accounts: use grep to check for user/group existent
https://github.com/void-linux/void-packages/pull/24754
Description:
In `system-accounts` triggers, we're using `getent(1)` to check whether
the username or group in question is existed before doing the heavy
lifting.
However, `getent(1)` will check the database in host system instead of our
rootfs, and by `PATH` manipulation logic, we prefer to use `usr/bin/getent`
inside our rootfs instead of host `getent(1)`.
This is usually not a problem since we mostly run `xbps-triggers` in
a real system instead of running from foreign system.
Except for `base-files` packages, which used to not have group `kvm`
pre-allocated. Thus, requires running this trigger, and lead to all sort
of problems:
- If host system is a musl-based linux system, with gcompat installed,
and we're bootstrapping a glibc one, `getent(1)` will be executable,
however, when `getent(1)` attempt to `dlopen(3)` other libraries,
it'll run into failure.
- If host system doesn't have `kvm` group pre-allocated (bootstrapping
from foreign distro), we attempt to run `groupadd(1)` on such system,
thus failing with EPERM.
If we run into one of those cases, `xbps-reconfigure(1)` will stop
configuring `base-files`, not running `base-files`' `INSTALL` and leave
the system in half-baked state, without some requires files and
directories.
Switch to `grep(1)` to check for username and group existence,
since `passwd(5)` and `group(5)` is well-documented.
prev parent reply other threads:[~2020-09-10 14:01 UTC|newest]
Thread overview: 18+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-09-08 0:40 [PR PATCH] " sgn
2020-09-08 1:29 ` ericonr
2020-09-08 12:04 ` sgn
2020-09-09 1:07 ` [PR PATCH] [Updated] " sgn
2020-09-09 14:04 ` sgn
2020-09-10 0:37 ` ahesford
2020-09-10 0:57 ` sgn
2020-09-10 1:03 ` [PR PATCH] [Updated] " sgn
2020-09-10 1:17 ` ahesford
2020-09-10 6:54 ` the-maldridge
2020-09-10 7:04 ` ericonr
2020-09-10 7:09 ` ericonr
2020-09-10 13:06 ` sgn
2020-09-10 13:48 ` ahesford
2020-09-10 13:53 ` sgn
2020-09-10 13:57 ` ericonr
2020-09-10 14:01 ` sgn
2020-09-10 14:01 ` sgn [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20200910140149.9Y0b9Pq_o9YboKnqoNBpummD9ikHRb6NDTp2O4UZnRk@z \
--to=sgn@users.noreply.github.com \
--cc=ml@inbox.vuxu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).