Code Review / AGL / meta-agl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 953167f) | patch
shadow: 'useradd' copies root's extended attributes
authorJosé Bollo <jose.bollo@iot.bzh>
Tue, 7 Mar 2017 16:30:18 +0000 (17:30 +0100)
committerStephane Desneux <stephane.desneux@iot.bzh>
Mon, 27 Mar 2017 13:33:40 +0000 (15:33 +0200)
commit91ee2f30326ae626b40f6a80dc47eac1085051b9
treec197a90e2e8f61491bf32ebe26fa1935b2e93286tree | snapshot
parent953167ff715a932338ce55c63b6115cb7352157fcommit | diff
shadow: 'useradd' copies root's extended attributes

The copy of extended attributes is interesting for
Smack systems because it allows to set the security
template of the user's home directories without
modifying the tools (useradd here). But the version
of useradd that copies the extended attributes doesn't
copy the extended attributes of the root. This can make
use of homes impossible! This patch corrects the issue
by copying the extended attributes of the root.

This includes 2 patches to implement the behaviour:
one for the target and one for the native.

The patch for the target was submitted upstream (see below)
The patch for the native couldn't be submitted upstream
because it applies on a patch specific to open-embedded
(that was refused upstream).

Upstream-Status: Submitted (http://lists.alioth.debian.org/pipermail/pkg-shadow-commits/2017-March/003804.html)

Change-Id: I7ced318a02206fd3f15a6995f59bb82b6c6453d5
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
Signed-off-by: Stephane Desneux <stephane.desneux@iot.bzh>
meta-app-framework/recipes-extended/shadow/files/0001-useradd-copy-extended-attributes-of-home-native.patch [new file with mode: 0644] blob
meta-app-framework/recipes-extended/shadow/files/0001-useradd-copy-extended-attributes-of-home.patch [new file with mode: 0644] blob
meta-app-framework/recipes-extended/shadow/shadow_%.bbappend [new file with mode: 0644] blob
meta-agl layer (core AGL)