[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: A corner case of broken reproducibility
From: |
Ludovic Courtès |
Subject: |
Re: A corner case of broken reproducibility |
Date: |
Thu, 02 Jun 2022 16:13:25 +0200 |
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/28.1 (gnu/linux) |
Hi,
Maxime Devos <maximedevos@telenet.be> skribis:
>> (gnu build accounts) is stateful in that it makes sure UIDs aren’t
>> reused. (This is roughly the same algorithm as used by Shadow.)
>
> It doesn't? AFAICT it only takes /etc/passwd and /etc/groups in
> account and there was some bug report reusing uids in system accounts
> after removing a service (something about tor and gdm?), adding another
> service and re-adding the original service or something like that.
I’m not sure what the conclusion of those bug reports were, but (gnu
build accounts) doesn’t reuse UIDs: you can see that in
‘user+group-databases’, which reads the initial /etc/{passwd,group}, and
passes them to ‘allocate-passwd’ and ‘allocate-group’, which “reserve”
those initial UIDs/GIDs.
This is exercised in tests/accounts.scm (search for “no reuse”).
There could be bugs of course, but in that case we should fix them. :-)
Ludo’.