[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: A corner case of broken reproducibility

From: Ludovic Courtès
Subject: Re: A corner case of broken reproducibility
Date: Thu, 02 Jun 2022 16:13:25 +0200
User-agent: Gnus/5.13 (Gnus v5.13) Emacs/28.1 (gnu/linux)


Maxime Devos <> skribis:

>> (gnu build accounts) is stateful in that it makes sure UIDs aren’t
>> reused.  (This is roughly the same algorithm as used by Shadow.)
> It doesn't?  AFAICT it only takes /etc/passwd and /etc/groups in
> account and there was some bug report reusing uids in system accounts
> after removing a service (something about tor and gdm?), adding another
> service and re-adding the original service or something like that.

I’m not sure what the conclusion of those bug reports were, but (gnu
build accounts) doesn’t reuse UIDs: you can see that in
‘user+group-databases’, which reads the initial /etc/{passwd,group}, and
passes them to ‘allocate-passwd’ and ‘allocate-group’, which “reserve”
those initial UIDs/GIDs.

This is exercised in tests/accounts.scm (search for “no reuse”).

There could be bugs of course, but in that case we should fix them.  :-)


reply via email to

[Prev in Thread] Current Thread [Next in Thread]