[bug#48729] [PATCH v5 25/25] services: Add bitmask-service-type.

guix-patches

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug#48729] [PATCH v5 25/25] services: Add bitmask-service-type.

From:	Raghav Gururajan
Subject:	[bug#48729] [PATCH v5 25/25] services: Add bitmask-service-type.
Date:	Tue, 22 Jun 2021 00:25:15 -0400

Hi Maxime!

Is there any specific reason that bitmask must be added to the profile?
On a multi-user system, not all users might be interested in bitmask,
and do not need it in their "PATH".

I prefer only adding packages that are explicitely in the ‘packages’
field of 'operating-system' to the system profile.

One possible reason could be that the polkit policy whitelists a few
binaries, say, /gnu/store/aaa-bitmask/sbin/stuff, so
"pkexec stuff" (equivalent to "pkexec /gnu/store/aaa-bitmask/sbin/stuff")
doesn't require special permissions or a password of any kind.

However, if the user has a slightly different version of bitmask
in their profile, then the store path will be different
(/gnu/store/bbb-bitmask/sbin/stuff), then "pkexec stuff" will try
to use the not-authorised version, which will require passwords
or such.

Yes, that's the reason I am adding it to the profile.

I thought of patching the policy file to refer to/run/current-system/profile/sbin/bitmask-root, but that would alsorequire bitmask to be in system profile.

Btw, the upstream is planning on removing dependency on polkit. Whenthey get there, I'll remove this service-type.

(TODO to self: modify "pkexec" to support an --action-id argument,
in order to avoid store paths ...)


Yeah, good idea.

Regards,
RG.

OpenPGP_signature
Description: OpenPGP digital signature

[Prev in Thread]

Current Thread

[Next in Thread]

[bug#48729] [PATCH v5 16/25] gnu: Add go-github-com-mufti1-interconv., (continued)
- [bug#48729] [PATCH v5 16/25] gnu: Add go-github-com-mufti1-interconv., Raghav Gururajan, 2021/06/18
- [bug#48729] [PATCH v5 17/25] gnu: Add go-github-com-aead-chacha20., Raghav Gururajan, 2021/06/18
- [bug#48729] [PATCH v5 19/25] gnu: Add go-github-com-shadowsocks-go-shadowsocks2., Raghav Gururajan, 2021/06/18
- [bug#48729] [PATCH v5 15/25] gnu: Add go-github-com-opentracing-opentracing-go., Raghav Gururajan, 2021/06/18
- [bug#48729] [PATCH v5 20/25] gnu: Add go-github-com-kataras-pio., Raghav Gururajan, 2021/06/18
- [bug#48729] [PATCH v5 22/25] gnu: Add go-github-com-operatorfoundation-shapeshifter-transports., Raghav Gururajan, 2021/06/18
- [bug#48729] [PATCH v5 23/25] gnu: Add go-0xacab-org-leap-shapeshifter., Raghav Gururajan, 2021/06/18
- [bug#48729] [PATCH v5 21/25] gnu: Add go-github-com-kataras-golog., Raghav Gururajan, 2021/06/18
- [bug#48729] [PATCH v5 25/25] services: Add bitmask-service-type., Raghav Gururajan, 2021/06/18
  - [bug#48729] [PATCH v5 25/25] services: Add bitmask-service-type., Maxime Devos, 2021/06/18
    - [bug#48729] [PATCH v5 25/25] services: Add bitmask-service-type., Raghav Gururajan <=
- [bug#48729] [PATCH v5 24/25] gnu: Add bitmask., Raghav Gururajan, 2021/06/18
  - [bug#48729] [PATCH v5 24/25] gnu: Add bitmask., Maxime Devos, 2021/06/18
    - [bug#48729] [PATCH v5 24/25] gnu: Add bitmask., Raghav Gururajan, 2021/06/20
  - [bug#48729] [PATCH v5 24/25] gnu: Add bitmask., Maxime Devos, 2021/06/18
    - [bug#48729] [PATCH v5 24/25] gnu: Add bitmask., Raghav Gururajan, 2021/06/20
    - [bug#48729] [PATCH v5 24/25] gnu: Add bitmask., Maxime Devos, 2021/06/20
    - [bug#48729] [PATCH v5 24/25] gnu: Add bitmask., Raghav Gururajan, 2021/06/22
    - [bug#48729] [PATCH v5 24/25] gnu: Add bitmask., Maxime Devos, 2021/06/20
    - [bug#48729] [PATCH v5 24/25] gnu: Add bitmask., Raghav Gururajan, 2021/06/22

Prev by Date: [bug#49019] [PATCH 0/1] gnu: Add gccgo-10.
Next by Date: [bug#48729] [PATCH v6 02/25] gnu: Add go-github-com-dchest-siphash.
Previous by thread: [bug#48729] [PATCH v5 25/25] services: Add bitmask-service-type.
Next by thread: [bug#48729] [PATCH v5 24/25] gnu: Add bitmask.
Index(es):
- Date
- Thread