From debbugs-submit-bounces@debbugs.gnu.org Tue Aug 30 12:53:48 2022 Received: (at submit) by debbugs.gnu.org; 30 Aug 2022 16:53:48 +0000 Received: from localhost ([127.0.0.1]:37342 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1oT4Ul-0008IZ-SA for submit@debbugs.gnu.org; Tue, 30 Aug 2022 12:53:48 -0400 Received: from lists.gnu.org ([209.51.188.17]:50876) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1oT4Ui-0008IP-0P for submit@debbugs.gnu.org; Tue, 30 Aug 2022 12:53:46 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:34284) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1oT4Uh-0006UL-PI for bug-guix@gnu.org; Tue, 30 Aug 2022 12:53:43 -0400 Received: from mail-lj1-x22e.google.com ([2a00:1450:4864:20::22e]:33387) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1oT4Uf-0008RI-1d for bug-guix@gnu.org; Tue, 30 Aug 2022 12:53:43 -0400 Received: by mail-lj1-x22e.google.com with SMTP id y10so8870524ljq.0 for ; Tue, 30 Aug 2022 09:53:40 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=worcester-edu.20210112.gappssmtp.com; s=20210112; h=to:subject:message-id:date:from:mime-version:from:to:cc; bh=4mzlPDEYnWDJUzeN3KXGljXTGJR9lBOmaz1nLHkcku0=; b=0qqpqU6elFN0q/KVo1Yu4HE1bOZMGIf9oO1DWqs+wB1ciQFgFNg+LMr5LQAYFG4CT+ Kh8ldnFQ+iE6qj7wBQUQp6X7NSnhO92mlgb67F4maC1awSMQLDUUwFGmjCh+S07XVCsl rVgoOdQ2eVQWOW7gOYaSrHc0CNq9m9l97Adi8HWliWg8XvaM3ByX2cGMkfGreAf5PxBL uOq/3DGN0WxoFUppAFPn+lXYG5ribBzm9nfmG8uH9CYAVJs0xULeujev+UYCyVSvEwxG /xx4Zha6Sfo5DC6e2ubAsN4I6ukSJYzKCi6VaQ2LKAyw8zQjgzZFmrCCYn8DT5JOPgT8 cH1Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=to:subject:message-id:date:from:mime-version:x-gm-message-state :from:to:cc; bh=4mzlPDEYnWDJUzeN3KXGljXTGJR9lBOmaz1nLHkcku0=; b=C2Wj6cLdi/oEFJdOEGS734VB003Dg7tkg6jArca0xaHls1zYdI6LP4oqiaXZdJhlu2 qGRal3T9g4neaaUgqtNqoRteXtz7iQQ3DCMYWinTO1yWNOaGLGPwxJQ8FiiHau+4w3aU Xz97O8bQDnnGO8nR37U0N2o5h/ilaYVdvKZqmwBPHElm9pFtWLbDNHHR+zvv78SUbdL1 DpGSyT1gQiN8rMNsXY9wvaLUNVB76z4rCOSJWYDjhn70Y9NnmF8cIQQga94rURhKkDmt swUDLQtw5Ffx47WUoymd0HD1kh7p/vAVfASrownipvTEkBTGK6G27OVNVqF2ai9eJdiL P2Gw== X-Gm-Message-State: ACgBeo3cLeHq1eSvhJHcQVCxPLXqrtJBEONsaTpUSg/tRiqkQkmQ2L1L oxSb/q5LNV/UGAfwoJKste1Nl0d3u48VMdJbYuuYXuEKi74nnDCJ X-Google-Smtp-Source: AA6agR69BtGfHVzE+EFNKyx9jm59utVV26bbwirBhWIGs8aMcT444xUK8Ro2sHzx44zJ1TxDNKyGzfD6Sccxhr9bCm4= X-Received: by 2002:a05:651c:158c:b0:250:a23d:2701 with SMTP id h12-20020a05651c158c00b00250a23d2701mr7985759ljq.475.1661878417663; Tue, 30 Aug 2022 09:53:37 -0700 (PDT) MIME-Version: 1.0 From: "Thompson, David" Date: Tue, 30 Aug 2022 12:53:26 -0400 Message-ID: Subject: should allow for customizing home directory permission bits To: bug-guix@gnu.org Content-Type: multipart/alternative; boundary="000000000000bec68805e7783865" Received-SPF: pass client-ip=2a00:1450:4864:20::22e; envelope-from=dthompson2@worcester.edu; helo=mail-lj1-x22e.google.com X-Spam_score_int: -18 X-Spam_score: -1.9 X-Spam_bar: - X-Spam_report: (-1.9 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01 autolearn=ham autolearn_force=no X-Spam_action: no action X-Spam-Score: -1.3 (-) X-Debbugs-Envelope-To: submit X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -2.3 (--) --000000000000bec68805e7783865 Content-Type: text/plain; charset="UTF-8" Hi Guix, Issue 56444 (https://issues.guix.gnu.org/56444) was caused by the activate-users+groups procedure in (gnu build activation) unconditionally setting all user home directory permission bits to 700. The fix for that bug was to set the bits for a particular user to 750 in a service activation script. The fix is quite imperfect, however, because during system reconfiguration the bits are temporarily reset back to 700 by activate-users+groups, breaking Guix's promise of atomicity. The proper fix would be to add something like a 'home-directory-permission-bits' field to , which defaults to 700, and have activate-users+groups use that value. This way, there will no longer be an unknown amount of time where the bits are reset and potentially breaking some service during that time. It seems that there is already some support for implementing such a change and I am happy to do the work, but I wanted to ask: Are there any gotchas or issues I should be aware of? It seems straightforward to me but I haven't made modifications to the system code in years. I don't want to be the reason 'guix system reconfigure' fails for someone. :) Thanks, - Dave --000000000000bec68805e7783865 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Hi Guix,

Issue 56444 (https://issues.guix.gnu.org/564= 44) was caused by the activate-users+groups procedure in (gnu build act= ivation) unconditionally setting all user home directory permission bits to= 700. The fix for that bug was to set the bits for a particular user to 750= in a service activation script.=C2=A0 The fix is quite imperfect, however,= because during system reconfiguration the bits are temporarily reset back = to 700 by activate-users+groups, breaking Guix's promise of atomicity.= =C2=A0 The proper fix would be to add something like a 'home-directory-= permission-bits' field to <user-account>, which defaults to 700, = and have activate-users+groups use that value.=C2=A0 This way, there will n= o longer be an unknown amount of time where the bits are reset and potentia= lly breaking some service during that time.

It see= ms that there is already some support for implementing such a change and I = am happy to do the work, but I wanted to ask: Are there any gotchas or issu= es I should be aware of?=C2=A0 It seems straightforward to me but I haven&#= 39;t made modifications to the system code in years. I don't want to be= the reason 'guix system reconfigure' fails for someone. :)

Thanks,

- Dave
--000000000000bec68805e7783865-- From debbugs-submit-bounces@debbugs.gnu.org Sat Jan 14 12:21:35 2023 Received: (at 57493) by debbugs.gnu.org; 14 Jan 2023 17:21:35 +0000 Received: from localhost ([127.0.0.1]:55473 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1pGkDm-0003kU-LH for submit@debbugs.gnu.org; Sat, 14 Jan 2023 12:21:35 -0500 Received: from mail-qk1-f178.google.com ([209.85.222.178]:41923) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1pGkDj-0003kG-Tl for 57493@debbugs.gnu.org; Sat, 14 Jan 2023 12:21:33 -0500 Received: by mail-qk1-f178.google.com with SMTP id h8so12320359qkk.8 for <57493@debbugs.gnu.org>; Sat, 14 Jan 2023 09:21:31 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=worcester-edu.20210112.gappssmtp.com; s=20210112; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=1Og8mhKl0sqppq/dJW9u9RY4CK0+qurbHkDIX14vHBU=; b=asZe+0W5pBK+KuXbho0knO61LO3WSORPraStjaqh86PwdOeMVlTPrEWV+DfYMcFwW+ 0Ip+TL9BptHTjlgbDF2E4f3F6e3NmQuK89iHgVWeirehIkFrQcRLvNRw0JK8TXeIU/pz 6exyDNph9askADN9YwolVm0TtcTrYMq4aev2A7Au6UQj3idkgszEfqRz8SaKX51/jTZB zucB8URm0qYF6YnNLQz4mmcCQFWulcnqmvpKeGFR7UDyPjyEJZzu30NFbN2yfD9pqTeZ fd3y7Uv5CatJ/n8EfM7Bi6Vnxzdk8krNB+NIovkuBpztaBmRFMkqUBx1smqReYcJaANW DfdQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=1Og8mhKl0sqppq/dJW9u9RY4CK0+qurbHkDIX14vHBU=; b=XaeZartWHvYlkgheUU6Ts3PBT4b5kmUkHgARwRPQhLLIXsn+x1TVV1sNv2zvd/yz8D cOmobCt0EZrUdRDHmdBNcK5xH33QfOLSb+IRWAlpIg1Lb50IRROZvQZA1uCGIbu3WOAR CHmY/fYYwkecmdNal9moOmKfTp0i1CMWrBic/TXHpcZlntIsUcBwgB/GDq9wFoS+mPZ/ 4QrO6vQ+EdUisa79D1fBO1mUtcgZFrbRxur1xYnObG6NKwtaFa7kbyvYmLhh12bcSw/E 14Fowwy4H76nOoJ//rpyE5S+Csdn53+1Lf6bGxpMkvATDaQDzPqj9SYXLR7D/weHGcYP XX0A== X-Gm-Message-State: AFqh2krdgLzpb97b4dCotMGJW3ZAOCFU6/IE/VcBM+R2QuJRZUABulOM Vsug12mZinQ65mjqwcTKjJfZS0FGDR/4CfkgkCQr8mSMCOHbcA== X-Google-Smtp-Source: AMrXdXvgFCXPe/aYSzmaJAb+kA8fzDDlKVJLZqi10KSqcV1sKTCZHlNRQXFlszIunQoOEWzc89bcI2QBwZ3JCktZdz4= X-Received: by 2002:a05:620a:21c2:b0:6fe:d745:5ee8 with SMTP id h2-20020a05620a21c200b006fed7455ee8mr5632630qka.387.1673716885765; Sat, 14 Jan 2023 09:21:25 -0800 (PST) MIME-Version: 1.0 References: In-Reply-To: From: "Thompson, David" Date: Sat, 14 Jan 2023 12:21:14 -0500 Message-ID: Subject: Re: bug#57493: should allow for customizing home directory permission bits To: 57493@debbugs.gnu.org Content-Type: multipart/mixed; boundary="0000000000006f135e05f23c94c1" X-Spam-Score: -0.0 (/) X-Debbugs-Envelope-To: 57493 X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) --0000000000006f135e05f23c94c1 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable On Tue, Aug 30, 2022 at 1:10 PM Thompson, David wrote: > > Hi Guix, > > Issue 56444 (https://issues.guix.gnu.org/56444) was caused by the activat= e-users+groups procedure in (gnu build activation) unconditionally setting = all user home directory permission bits to 700. The fix for that bug was to= set the bits for a particular user to 750 in a service activation script. = The fix is quite imperfect, however, because during system reconfiguration= the bits are temporarily reset back to 700 by activate-users+groups, break= ing Guix's promise of atomicity. The proper fix would be to add something = like a 'home-directory-permission-bits' field to , which defa= ults to 700, and have activate-users+groups use that value. This way, ther= e will no longer be an unknown amount of time where the bits are reset and = potentially breaking some service during that time. FInally got around to writing a patch for this! - Dave --0000000000006f135e05f23c94c1 Content-Type: text/x-patch; charset="US-ASCII"; name="0001-gnu-system-Add-home-directory-permissions-field-to-u.patch" Content-Disposition: attachment; filename="0001-gnu-system-Add-home-directory-permissions-field-to-u.patch" Content-Transfer-Encoding: base64 Content-ID: X-Attachment-Id: f_lcw7r2ei0 RnJvbSAwMTNhZDUyNDk3MWRjNmVhODEwZmUzYjkyMDQyYzAzOWNlY2QyZjhhIE1vbiBTZXAgMTcg MDA6MDA6MDAgMjAwMQpGcm9tOiBEYXZpZCBUaG9tcHNvbiA8ZHRob21wc29uMkB3b3JjZXN0ZXIu ZWR1PgpEYXRlOiBTYXQsIDE0IEphbiAyMDIzIDEwOjUzOjE2IC0wNTAwClN1YmplY3Q6IFtQQVRD SCAxLzJdIGdudTogc3lzdGVtOiBBZGQgaG9tZS1kaXJlY3RvcnktcGVybWlzc2lvbnMgZmllbGQg dG8KIDx1c2VyLWFjY291bnQ+LgoKKiBnbnUvc3lzdGVtL2FjY291bnRzLnNjbSAoPHVzZXItYWNj b3VudD4pW2hvbWUtZGlyZWN0b3J5LXBlcm1pc3Npb25zXTogTmV3CmZpZWxkLgoodXNlci1hY2Nv dW50LWhvbWUtZGlyZWN0b3J5LXBlcm1pc3Npb25zKTogTmV3IGFjY2Vzc29yLgoqIGdudS9idWls ZC9hY3RpdmF0aW9uLnNjbSAoYWN0aXZhdGUtdXNlcnMrZ3JvdXBzKTogVXNlIGhvbWUgZGlyZWN0 b3J5CnBlcm1pc3Npb24gYml0cyBmcm9tIHRoZSB1c2VyIGFjY291bnQgb2JqZWN0LgoqIGRvYy9n dWl4LnRleGkgKFVzZXIgQWNjb3VudHMpOiBEb2N1bWVudCBuZXcgZmllbGQuCi0tLQogZG9jL2d1 aXgudGV4aSAgICAgICAgICAgIHwgNCArKysrCiBnbnUvYnVpbGQvYWN0aXZhdGlvbi5zY20gfCA2 ICsrKy0tLQogZ251L3N5c3RlbS9hY2NvdW50cy5zY20gIHwgMyArKysKIDMgZmlsZXMgY2hhbmdl ZCwgMTAgaW5zZXJ0aW9ucygrKSwgMyBkZWxldGlvbnMoLSkKCmRpZmYgLS1naXQgYS9kb2MvZ3Vp eC50ZXhpIGIvZG9jL2d1aXgudGV4aQppbmRleCBjMDdlYzg5YjJmLi41MjU0OGMzZGZhIDEwMDY0 NAotLS0gYS9kb2MvZ3VpeC50ZXhpCisrKyBiL2RvYy9ndWl4LnRleGkKQEAgLTE3MzM3LDYgKzE3 MzM3LDEwIEBAIGFkbWluaXN0cmF0b3IncyBjaG9pY2U7IHJlY29uZmlndXJpbmcgZG9lcyBAZW1w aHtub3R9IGNoYW5nZSB0aGVpciBuYW1lLgogQGl0ZW0gQGNvZGV7aG9tZS1kaXJlY3Rvcnl9CiBU aGlzIGlzIHRoZSBuYW1lIG9mIHRoZSBob21lIGRpcmVjdG9yeSBmb3IgdGhlIGFjY291bnQuCiAK K0BpdGVtIEBjb2Rle2hvbWUtZGlyZWN0b3J5LXBlcm1pc3Npb25zfSAoZGVmYXVsdDogQGNvZGV7 I283MDB9KQorVGhlIHBlcm1pc3Npb24gYml0cyBmb3IgdGhlIGhvbWUgZGlyZWN0b3J5LiAgQnkg ZGVmYXVsdCwgZnVsbCBhY2Nlc3MgaXMKK2dyYW50ZWQgdG8gdGhlIHVzZXIgYWNjb3VudCBhbmQg YWxsIG90aGVyIGFjY2VzcyBpcyBkZW5pZWQuCisKIEBpdGVtIEBjb2Rle2NyZWF0ZS1ob21lLWRp cmVjdG9yeT99IChkZWZhdWx0OiBAY29kZXsjdH0pCiBJbmRpY2F0ZXMgd2hldGhlciB0aGUgaG9t ZSBkaXJlY3Rvcnkgb2YgdGhpcyBhY2NvdW50IHNob3VsZCBiZSBjcmVhdGVkCiBpZiBpdCBkb2Vz IG5vdCBleGlzdCB5ZXQuCmRpZmYgLS1naXQgYS9nbnUvYnVpbGQvYWN0aXZhdGlvbi5zY20gYi9n bnUvYnVpbGQvYWN0aXZhdGlvbi5zY20KaW5kZXggZWVhMjIzMzU2My4uZmQwNDNjYTEzMSAxMDA2 NDQKLS0tIGEvZ251L2J1aWxkL2FjdGl2YXRpb24uc2NtCisrKyBiL2dudS9idWlsZC9hY3RpdmF0 aW9uLnNjbQpAQCAtMTYyLDE0ICsxNjIsMTQgQEAgKGRlZmluZSAoYWN0aXZhdGUtdXNlcnMrZ3Jv dXBzIHVzZXJzIGdyb3VwcykKIGdyb3VwIHJlY29yZHMpIGFyZSBhbGwgYXZhaWxhYmxlLiIKICAg KGRlZmluZSAobWFrZS1ob21lLWRpcmVjdG9yeSB1c2VyKQogICAgIChsZXQgKChob21lICh1c2Vy LWFjY291bnQtaG9tZS1kaXJlY3RvcnkgdXNlcikpCisgICAgICAgICAgKGhvbWUtcGVybWlzc2lv bnMgKHVzZXItYWNjb3VudC1ob21lLWRpcmVjdG9yeS1wZXJtaXNzaW9ucyB1c2VyKSkKICAgICAg ICAgICAocHdkICAoZ2V0cHduYW0gKHVzZXItYWNjb3VudC1uYW1lIHVzZXIpKSkpCiAgICAgICAo bWtkaXItcCBob21lKQogCiAgICAgICA7OyBBbHdheXMgc2V0IG93bmVyc2hpcCBhbmQgcGVybWlz c2lvbnMgZm9yIGhvbWUgZGlyZWN0b3JpZXMgb2Ygc3lzdGVtCi0gICAgICA7OyBhY2NvdW50cy4g IElmIGEgc2VydmljZSBuZWVkcyBsb29zZXIgcGVybWlzc2lvbnMgb24gaXRzIGhvbWUKLSAgICAg IDs7IGRpcmVjdG9yaWVzLCBpdCBjYW4gYWx3YXlzIGNobW9kIGl0IGluIGFuIGFjdGl2YXRpb24g c25pcHBldC4KKyAgICAgIDs7IGFjY291bnRzLgogICAgICAgKGNob3duIGhvbWUgKHBhc3N3ZDp1 aWQgcHdkKSAocGFzc3dkOmdpZCBwd2QpKQotICAgICAgKGNobW9kIGhvbWUgI283MDApKSkKKyAg ICAgIChjaG1vZCBob21lIGhvbWUtcGVybWlzc2lvbnMpKSkKIAogICAoZGVmaW5lIHN5c3RlbS1h Y2NvdW50cwogICAgIChmaWx0ZXIgKGxhbWJkYSAodXNlcikKZGlmZiAtLWdpdCBhL2dudS9zeXN0 ZW0vYWNjb3VudHMuc2NtIGIvZ251L3N5c3RlbS9hY2NvdW50cy5zY20KaW5kZXggNTg2Y2ZmMTg0 Mi4uZGQ2OTMwYzYxOSAxMDA2NDQKLS0tIGEvZ251L3N5c3RlbS9hY2NvdW50cy5zY20KKysrIGIv Z251L3N5c3RlbS9hY2NvdW50cy5zY20KQEAgLTI4LDYgKzI4LDcgQEAgKGRlZmluZS1tb2R1bGUg KGdudSBzeXN0ZW0gYWNjb3VudHMpCiAgICAgICAgICAgICB1c2VyLWFjY291bnQtc3VwcGxlbWVu dGFyeS1ncm91cHMKICAgICAgICAgICAgIHVzZXItYWNjb3VudC1jb21tZW50CiAgICAgICAgICAg ICB1c2VyLWFjY291bnQtaG9tZS1kaXJlY3RvcnkKKyAgICAgICAgICAgIHVzZXItYWNjb3VudC1o b21lLWRpcmVjdG9yeS1wZXJtaXNzaW9ucwogICAgICAgICAgICAgdXNlci1hY2NvdW50LWNyZWF0 ZS1ob21lLWRpcmVjdG9yeT8KICAgICAgICAgICAgIHVzZXItYWNjb3VudC1zaGVsbAogICAgICAg ICAgICAgdXNlci1hY2NvdW50LXN5c3RlbT8KQEAgLTY5LDYgKzcwLDggQEAgKGRlZmluZS1yZWNv cmQtdHlwZSogPHVzZXItYWNjb3VudD4KICAgKGNvbW1lbnQgICAgICAgIHVzZXItYWNjb3VudC1j b21tZW50IChkZWZhdWx0ICIiKSkKICAgKGhvbWUtZGlyZWN0b3J5IHVzZXItYWNjb3VudC1ob21l LWRpcmVjdG9yeSAodGh1bmtlZCkKICAgICAgICAgICAgICAgICAgIChkZWZhdWx0IChkZWZhdWx0 LWhvbWUtZGlyZWN0b3J5IHRoaXMtcmVjb3JkKSkpCisgIChob21lLWRpcmVjdG9yeS1wZXJtaXNz aW9ucyB1c2VyLWFjY291bnQtaG9tZS1kaXJlY3RvcnktcGVybWlzc2lvbnMKKyAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgIChkZWZhdWx0ICNvNzAwKSkKICAgKGNyZWF0ZS1ob21lLWRpcmVj dG9yeT8gdXNlci1hY2NvdW50LWNyZWF0ZS1ob21lLWRpcmVjdG9yeT8gO0Jvb2xlYW4KICAgICAg ICAgICAgICAgICAgICAgICAgICAgKGRlZmF1bHQgI3QpKQogICAoc2hlbGwgICAgICAgICAgdXNl ci1hY2NvdW50LXNoZWxsICAgICAgICAgICAgICA7IGdleHAKLS0gCjIuMzguMQoK --0000000000006f135e05f23c94c1-- From debbugs-submit-bounces@debbugs.gnu.org Sun Jan 15 07:25:53 2023 Received: (at 57493) by debbugs.gnu.org; 15 Jan 2023 12:25:53 +0000 Received: from localhost ([127.0.0.1]:56344 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1pH25A-0002PC-NG for submit@debbugs.gnu.org; Sun, 15 Jan 2023 07:25:52 -0500 Received: from mail-ej1-f66.google.com ([209.85.218.66]:33557) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1pH259-0002Oy-3G for 57493@debbugs.gnu.org; Sun, 15 Jan 2023 07:25:52 -0500 Received: by mail-ej1-f66.google.com with SMTP id u9so62229547ejo.0 for <57493@debbugs.gnu.org>; Sun, 15 Jan 2023 04:25:51 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:user-agent:content-transfer-encoding:references :in-reply-to:date:to:from:subject:message-id:from:to:cc:subject:date :message-id:reply-to; bh=c2Z6LQqLzritzom2r+sHb/P81UC1SIM3VrnVRJORR8w=; b=Uz+AJyoUMedJ5RbXSUclnrkssCOdEzgkRX023SZ0Q6crAHJ8x/C/0pkV1ZWOgyYvhw 0qr+89/Re9Yy12ctZuxcNDet/JQ+QQvJgDZBn8kihSE0o9VixpjQOAk8NeuIbHFTjXM0 UPuK7sq48O7WzJZhF1TqTlxPdNEbgxPwkxa0ccWna9W90iLJRf0NZvKrjvK5E7PeE0OC Ns3MLbCaAsciLeIEerpQgk3wXqTXH7JJVB5ba/CeGUrzp/4O3pODOZ4mBi2xXUeWwLEN rNLNYWL2xHV2x44r4psm0xhgs4dp9JvJ7aBe40xdhjU3SoQXlJu76uTkI04ZAi+jDOxz Tp3Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=mime-version:user-agent:content-transfer-encoding:references :in-reply-to:date:to:from:subject:message-id:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=c2Z6LQqLzritzom2r+sHb/P81UC1SIM3VrnVRJORR8w=; b=klIQtf9equXuNEGXJbzdDavDc3b8WSrIpcp8Gy/V65k8PPtuUns3qkLakpHkzRPq4U O/4Z1wXuzGmXvQgHt2Fd8+9FJpXVebgGqQ/pDfZbM99hKltD5gEr0qd1Rwp/hlxXBIFx EiQizpgsIg0j+p6zV0VIt5wIL/tA8MzlwFvn4gg71l2EZ0wUrr4a2YDTPitLLRUmpdcm +LT+IH8dblIqLqBhJQVhBN8MTcWXodHVOpU7BQhjZSb4Ir5jvNRhmeCIAQvPM89i1FAQ 1EUpOKnlYqhWhAw6QfbOQqPzUUD+NvSWnvH21abP0zaIqSUyzrcxbsKQgbBSwkDUcDDN rXxw== X-Gm-Message-State: AFqh2kr8QRPIN1aIrerZpQkl6gT8/GvRpAG1i8oPPhAXsj/vOq1KNCiR ydOpO809gzwfLhP7ifCIsV4= X-Google-Smtp-Source: AMrXdXsz37lRqrb012km0Md00Vs1XUYnrqyuxBEU+W/YNvWNDjgBtliOrHs3ltfBNfoSyPXcG9TH3A== X-Received: by 2002:a17:906:7743:b0:855:d58e:59 with SMTP id o3-20020a170906774300b00855d58e0059mr9005094ejn.75.1673785545021; Sun, 15 Jan 2023 04:25:45 -0800 (PST) Received: from lumine.fritz.box (85-127-52-93.dsl.dynamic.surfer.at. [85.127.52.93]) by smtp.gmail.com with ESMTPSA id 10-20020a170906210a00b007c0f2d051f4sm10608717ejt.203.2023.01.15.04.25.44 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sun, 15 Jan 2023 04:25:44 -0800 (PST) Message-ID: <57225ca8a73aa945f445bb7be6336b576d3ae471.camel@gmail.com> Subject: Re: bug#57493: should allow for customizing home directory permission bits From: Liliana Marie Prikler To: "Thompson, David" , 57493@debbugs.gnu.org Date: Sun, 15 Jan 2023 13:25:43 +0100 In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable User-Agent: Evolution 3.46.0 MIME-Version: 1.0 X-Spam-Score: 1.3 (+) X-Spam-Report: Spam detection software, running on the system "debbugs.gnu.org", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: * gnu/system/accounts.scm > ()[home-directory-permissions]: New > field. > (user-account-home-directory-permissions): New accessor. > * gnu/build/activation.scm (activate-users+groups): [...] Content analysis details: (1.3 points, 10.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (liliana.prikler[at]gmail.com) 1.3 RCVD_IN_VALIDITY_RPBL RBL: Relay in Validity RPBL, https://senderscore.org/blocklistlookup/ [209.85.218.66 listed in bl.score.senderscore.com] 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record 0.0 RCVD_IN_MSPIKE_H3 RBL: Good reputation (+3) [209.85.218.66 listed in wl.mailspike.net] -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at https://www.dnswl.org/, no trust [209.85.218.66 listed in list.dnswl.org] -0.0 SPF_PASS SPF: sender matches SPF record 0.0 RCVD_IN_MSPIKE_WL Mailspike good senders X-Debbugs-Envelope-To: 57493 X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 0.3 (/) * gnu/system/accounts.scm > ()[home-directory-permissions]: New > field. > (user-account-home-directory-permissions): New accessor. > * gnu/build/activation.scm (activate-users+groups): Use home > directory > permission bits from the user account object. > * doc/guix.texi (User Accounts): Document new field. LGTM. The header says this is part 1/2. Is that correct or did you just invoke git format-patch wrong? Cheers From debbugs-submit-bounces@debbugs.gnu.org Sun Jan 15 18:39:25 2023 Received: (at 57493) by debbugs.gnu.org; 15 Jan 2023 23:39:25 +0000 Received: from localhost ([127.0.0.1]:59909 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1pHCay-0001gZ-RE for submit@debbugs.gnu.org; Sun, 15 Jan 2023 18:39:25 -0500 Received: from mail-qv1-f41.google.com ([209.85.219.41]:40574) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1pHCaw-0001gM-QH for 57493@debbugs.gnu.org; Sun, 15 Jan 2023 18:39:23 -0500 Received: by mail-qv1-f41.google.com with SMTP id h10so18642748qvq.7 for <57493@debbugs.gnu.org>; Sun, 15 Jan 2023 15:39:22 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=worcester-edu.20210112.gappssmtp.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=Zh9ETkj7xD9OZj09+TWCOG+ynag42QtpxNrg6rFs67E=; b=jQWdUuEppZMKfWVMn3o8kxZ6YNz8ClzDPTxp1D0JkQ9Xmt5F8GgHLmm2j8TdiEpBhy z1wnOC6wHTGlMGDaIU5v3zraFfRpUR0SxYm1W6x/5xYhqm5PT9aMJolbNbVj3YD1hGGj uWsx2hIFPJNL+vg5IgA5lYuSkZ7tz+WzwOG0TF+6lIwdK+C7SC4GngqKOWWP4GQKjPv3 8G93iHVwaLc50OgtnjZ+8EeDa58Lth4Xz6b2dMX1q1untox5KQhPKDuACKK4Y9D2oqBt GE1XEbKiZuzbGhNbLS+QmFga35ZRoWT61n/YZxaxuKT6QB4dDCA/oS4RHs1knVxeO37f NLCQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=Zh9ETkj7xD9OZj09+TWCOG+ynag42QtpxNrg6rFs67E=; b=rPWliueMvSmwe1KGoGPhFVx8oOa6HdVNneoATK/6i4ui8JTWeFmy73DYcYBtx/7bcF CnvBshJ97Ta8uXFhjHga2JpC4DmcIqdFOYIDAekRQmjDrmbBWTTVM/eoWkYU23HygO2S jQ8k8DedgI+SjfZ3Igwz8KXWlR1T5uqM/8AwAoyzenS/c65PK8ufL3UNEaoKyfUv5Pt7 I1V74EYfkfG05BcUo3F2nhOvCkHOPTuQweKLWZv292xylLPqZNyRJgSRDkrqkLWbQ32H LDwOv0vsMOFKfWGzoVvEvjryRNqnKCDO2LIR4B79Ab9fx97PYJvHA5/NuQQUDPeSPxDT xLQQ== X-Gm-Message-State: AFqh2kpkKdzR1ao6jA+Tf4NQqjU6nM8dCEmJ8yoapdhvHNn9EMGMt/Ca 18MnCuMQ/ZhxSccjObdCloZdgPWXzskDHbTmqVeUBg== X-Google-Smtp-Source: AMrXdXvPt9vwzH49xjzKU2RPXvei2CcOK38VAQ0ctAJ9knJtNxudrVLQBTlt77a14UocaLUD2J/KyOEVctYvR1SU9Y8= X-Received: by 2002:ad4:5229:0:b0:4b4:39c:bbf3 with SMTP id r9-20020ad45229000000b004b4039cbbf3mr5634924qvq.47.1673825957155; Sun, 15 Jan 2023 15:39:17 -0800 (PST) MIME-Version: 1.0 References: <57225ca8a73aa945f445bb7be6336b576d3ae471.camel@gmail.com> In-Reply-To: <57225ca8a73aa945f445bb7be6336b576d3ae471.camel@gmail.com> From: "Thompson, David" Date: Sun, 15 Jan 2023 18:39:04 -0500 Message-ID: Subject: Re: [EXT] Re: bug#57493: should allow for customizing home directory permission bits To: Liliana Marie Prikler Content-Type: text/plain; charset="UTF-8" X-Spam-Score: -0.0 (/) X-Debbugs-Envelope-To: 57493 Cc: 57493@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) Hi Liliana, On Sun, Jan 15, 2023 at 7:25 AM Liliana Marie Prikler wrote: > > * gnu/system/accounts.scm > > ()[home-directory-permissions]: New > > field. > > (user-account-home-directory-permissions): New accessor. > > * gnu/build/activation.scm (activate-users+groups): Use home > > directory > > permission bits from the user account object. > > * doc/guix.texi (User Accounts): Document new field. > LGTM. > > The header says this is part 1/2. Is that correct or did you just > invoke git format-patch wrong? Oops, that's my bad! I forgot that the patch file header would say that. There's a second patch that changes the Gitolite service to use this new field, which is the service that sparked the need for this additional flexibility, but I was going to leave that out for now and maybe just push directly as it's a 2 line change and the gitolite system test passes. So, please disregard that 1/2 thing! Thanks for checking! - Dave From debbugs-submit-bounces@debbugs.gnu.org Fri Aug 25 12:32:35 2023 Received: (at 57493-done) by debbugs.gnu.org; 25 Aug 2023 16:32:35 +0000 Received: from localhost ([127.0.0.1]:41141 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1qZZje-0000Vb-N2 for submit@debbugs.gnu.org; Fri, 25 Aug 2023 12:32:34 -0400 Received: from jpoiret.xyz ([206.189.101.64]:58934) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1qZZjd-0000VT-61 for 57493-done@debbugs.gnu.org; Fri, 25 Aug 2023 12:32:33 -0400 Received: from authenticated-user (jpoiret.xyz [206.189.101.64]) by jpoiret.xyz (Postfix) with ESMTPA id ADD1F185182; Fri, 25 Aug 2023 16:32:27 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jpoiret.xyz; s=dkim; t=1692981147; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=lFanylDsCgLVK/L+2bzLalyQZgtHQRlt1ag+dSzBauA=; b=D6smesGfBpd/UXoovGb1BmoVv0tOjGZ79Mi4UAw5YJyquulA79wi9W4mOA2lOopDTNOxVS 5q6rfCrHW8O1vFOZnh5suWJ0Dki+CBzIFMEX7R+B8tjhuUrfHOOsCpsfLPnrX45zGio/CA rQZDjbElQcshoE8D7+oneLSHTbkmQ85a0/G6kXNzkRUSKs20j+asLL6nkObvR3AK0CTmXG SRMkrsTz9l9Cj8u4AGv2igZ1pvYUg7Bmd/PuTqzMwgRpUI1m5Uczrwguf/Ne+jd8/ozsQ+ eXkpWOzHvpkRJ66bTF1dcKAHQW0n1kd2elMBQr7s+GgOeAuK2ZiQKbU2rAEJwg== From: Josselin Poiret To: "Thompson, David" , Liliana Marie Prikler Subject: Re: bug#57493: [EXT] Re: bug#57493: should allow for customizing home directory permission bits In-Reply-To: References: <57225ca8a73aa945f445bb7be6336b576d3ae471.camel@gmail.com> Date: Fri, 25 Aug 2023 18:32:24 +0200 Message-ID: <87ledzt753.fsf@jpoiret.xyz> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" X-Spamd-Bar: / Authentication-Results: jpoiret.xyz; auth=pass smtp.auth=jpoiret@jpoiret.xyz smtp.mailfrom=dev@jpoiret.xyz X-Spam-Score: -0.0 (/) X-Debbugs-Envelope-To: 57493-done Cc: 57493-done@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) --=-=-= Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi Dave, Pushed as e9a5eebc785cb843034b38c5c5a6dd10904bdf2a. Thanks for your contribution! Closing. Best, =2D-=20 Josselin Poiret --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQHEBAEBCgAuFiEEOSSM2EHGPMM23K8vUF5AuRYXGooFAmTo15gQHGRldkBqcG9p cmV0Lnh5egAKCRBQXkC5FhcainPGC/4w2c1I4pEnA44uqvdx2XcgxtOr06skDcUY f61wOFR2AgArYZVT4S2RiCGw0pf27X/PaqhIfCHohKlGY8C8YnKUQ69UbbBRRyM5 RxA4CI4gqtdW7lEvirSP5MjrX1s05KY2HqIcblcGDOJREe/b+zX4+HEiqHRIAPrE gN7jTsFRMYLtSl761pY2GpVXr+opI7MrBbIojRuxkC4QnJIFdOURgTx2WQ2c7JtH 9OoKBLsvuxM1G4q9vuDByorkvG0XEo+21H8XlzG0oXUYSQx/C+gqRobU0vRLD4DV nmZwNX2N0RfAnk3jMo/OYhrakEHs363We0ALsaTdQV5lqN7egrXwHOO8cDF80m5q Dq2fbgCI4xb5UHYN79maxhsNTqvRMrwHDM827/FMR1LjD7/Ok87imZ6d+Xckludx gLTZGiAw908yVCh2SOXRhWQfX6oUiY0ua83kLyidwew9/DzaDz30Fr+3zzWODB82 sQF8ak8LcbwWRHttSGYc5helX6x867k= =Gm6l -----END PGP SIGNATURE----- --=-=-=-- From unknown Sat Jul 12 06:33:02 2025 Received: (at fakecontrol) by fakecontrolmessage; To: internal_control@debbugs.gnu.org From: Debbugs Internal Request Subject: Internal Control Message-Id: bug archived. Date: Sat, 23 Sep 2023 11:24:14 +0000 User-Agent: Fakemail v42.6.9 # This is a fake control message. # # The action: # bug archived. thanks # This fakemail brought to you by your local debbugs # administrator