From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp0 ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms11 with LMTPS id SLPvAKqL8F+VQgAA0tVLHw (envelope-from ) for ; Sat, 02 Jan 2021 15:05:14 +0000 Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp0 with LMTPS id 4HsvOKmL8F/mXgAA1q6Kng (envelope-from ) for ; Sat, 02 Jan 2021 15:05:13 +0000 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 6CF6A94043B for ; Sat, 2 Jan 2021 15:05:13 +0000 (UTC) Received: from localhost ([::1]:52248 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1kviSt-00023Q-WF for larch@yhetil.org; Sat, 02 Jan 2021 10:05:12 -0500 Received: from eggs.gnu.org ([2001:470:142:3::10]:42808) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1kviSk-00022l-Ry for bug-guix@gnu.org; Sat, 02 Jan 2021 10:05:02 -0500 Received: from debbugs.gnu.org ([209.51.188.43]:48844) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1kviSk-00039C-L2 for bug-guix@gnu.org; Sat, 02 Jan 2021 10:05:02 -0500 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1kviSk-0001Co-Ek for bug-guix@gnu.org; Sat, 02 Jan 2021 10:05:02 -0500 X-Loop: help-debbugs@gnu.org Subject: bug#45571: Support stable uids and gids for all accounts Resent-From: Danny Milosavljevic Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Sat, 02 Jan 2021 15:05:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 45571 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Leo Prikler , 45571@debbugs.gnu.org Received: via spool by 45571-submit@debbugs.gnu.org id=B45571.16095998604554 (code B ref 45571); Sat, 02 Jan 2021 15:05:02 +0000 Received: (at 45571) by debbugs.gnu.org; 2 Jan 2021 15:04:20 +0000 Received: from localhost ([127.0.0.1]:60387 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kviS4-0001BO-CL for submit@debbugs.gnu.org; Sat, 02 Jan 2021 10:04:20 -0500 Received: from dd26836.kasserver.com ([85.13.145.193]:52548) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kviS3-0001BG-6z for 45571@debbugs.gnu.org; Sat, 02 Jan 2021 10:04:19 -0500 Received: from localhost (80-110-127-104.cgn.dynamic.surfer.at [80.110.127.104]) by dd26836.kasserver.com (Postfix) with ESMTPSA id DB048336389B; Sat, 2 Jan 2021 16:04:17 +0100 (CET) Date: Sat, 2 Jan 2021 16:04:15 +0100 From: Danny Milosavljevic Message-ID: <20210102160415.30fcb7e8@scratchpost.org> In-Reply-To: <58174c197a7b42b29927c492d25e28c684d199ea.camel@student.tugraz.at> References: <20210101184838.21869359@scratchpost.org> <2f2fd3d66066b23f31f7db465aea65478ef81e87.camel@student.tugraz.at> <20210101212242.00252cac@scratchpost.org> <58174c197a7b42b29927c492d25e28c684d199ea.camel@student.tugraz.at> X-Mailer: Claws Mail 3.17.8 (GTK+ 2.24.32; x86_64-pc-linux-gnu) MIME-Version: 1.0 Content-Type: multipart/signed; boundary="Sig_/NZW2313x+dvhmIrRptc8mQU"; protocol="application/pgp-signature"; micalg=pgp-sha512 X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: bug-guix@gnu.org List-Id: Bug reports for GNU Guix List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-guix-bounces+larch=yhetil.org@gnu.org Sender: "bug-Guix" X-Migadu-Flow: FLOW_IN X-Migadu-Spam-Score: -2.43 Authentication-Results: aspmx1.migadu.com; dkim=none; dmarc=none; spf=pass (aspmx1.migadu.com: domain of bug-guix-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=bug-guix-bounces@gnu.org X-Migadu-Queue-Id: 6CF6A94043B X-Spam-Score: -2.43 X-Migadu-Scanner: scn1.migadu.com X-TUID: lw5g3bCwcIjD --Sig_/NZW2313x+dvhmIrRptc8mQU Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable Hi Leo, > > Considering the goal of Guix, it's weird that with Guix, one needs to > > store&restore /etc/passwd at all. It's state, but not very useful > > one. > > I mean that's how it is right now--but it's still weird. > > With /etc/shadow maybe there's a slightly better case, but note that > > the key > > to find stuff in /etc/shadow can't be the uid--the uid isn't even in > > there! =20 > AFAIU yes, it's state, but not one that Guix can simply do away with.=20 It's easily possible to recreate /etc/passwd from scratch if the uids are always specified in s and thus /etc/passwd would not need to be persistent state anymore. Right now everything from /etc/passwd except the uid and the comment is already specified in . So Guix can indeed simply do away with the persistent state of /etc/passwd--that's why I suggested specifying the uids in the first place. (By now I don't think that's the best way to make UIDs stable, but it's factually incorrect to assert that Guix can't simply do away with that persistent state specifically. It can.) > There is not yet a syntax for keeping secrets, which would be needed to > fully populate /etc from config.scm. Perhaps we'll get there some day. /etc/passwd does not contain secrets. Neither does /etc/group. And /etc/shadow doesn't contain uids. So there is no conflict. --Sig_/NZW2313x+dvhmIrRptc8mQU Content-Type: application/pgp-signature Content-Description: OpenPGP digital signature -----BEGIN PGP SIGNATURE----- iQEzBAEBCgAdFiEEds7GsXJ0tGXALbPZ5xo1VCwwuqUFAl/wi28ACgkQ5xo1VCww uqW8Uwf+OF0uHzOoKtVm4ZVuoAzXUetEX4xil+pfwjtQc/k0oAmCNzgXFYasASVs cM7reZLqix/lWXk6FmIgMYdvgF6M9SS78aTjCWVcHTJtVuc55XrPIRVtn/P2fPwK sVd3+DkpGN7LXsIJm9DsISU9W4vNMlwgiXLpG4rUqldwwSPmrjfvfpTwMpfuBnRO Uc227svfgQS77AYk06SjyMo1JMQisrSE2x5CzkFs2a+0ceV+jy3Js8xSMXSo67RM 1L7KxGsWgeJKM87/EPP0gzuHFxJIylGysqpChLqEXtX1vIKez6I56OhuRuziodG2 9ewAyJU4vdcNCUbRTHdTGNz1b3G6qA== =IHzF -----END PGP SIGNATURE----- --Sig_/NZW2313x+dvhmIrRptc8mQU--