From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 8EA081384B4 for ; Tue, 15 Dec 2015 05:13:48 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id E25A421C0AC; Tue, 15 Dec 2015 05:13:40 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id E906D21C037 for ; Tue, 15 Dec 2015 05:13:39 +0000 (UTC) Received: from vapier.lan (localhost [127.0.0.1]) by smtp.gentoo.org (Postfix) with SMTP id 46FBC3405CF for ; Tue, 15 Dec 2015 05:13:35 +0000 (UTC) Date: Tue, 15 Dec 2015 00:13:34 -0500 From: Mike Frysinger To: gentoo-dev@lists.gentoo.org Subject: Re: [gentoo-dev] Use GLEP27! Message-ID: <20151215051334.GL11489@vapier.lan> Mail-Followup-To: gentoo-dev@lists.gentoo.org References: <22c8fc780e34e11cc460dcadda4202b4@omrb.pnpi.spb.ru> <22127.9478.374651.767331@a1i15.kph.uni-mainz.de> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="jb2K77FXt9dSeH4m" Content-Disposition: inline In-Reply-To: <22127.9478.374651.767331@a1i15.kph.uni-mainz.de> X-Archives-Salt: 75670ece-0c29-4150-b79f-d1ed90db5634 X-Archives-Hash: ea0fce06bb9e41bab178b2be13c4ee77 --jb2K77FXt9dSeH4m Content-Type: text/plain; charset=utf-8 Content-Disposition: inline On 14 Dec 2015 21:22, Ulrich Mueller wrote: > The spec seems incomplete. I cannot find a description of the user and > group files' format. (But in fact, there is a standard format which > suggests itself, namely that of the passwd(5) and group(5) files.) i recall going with xml at the time, but i can't find reference to it. > Also having whole directory trees seems wasteful and doesn't fit so > well into the existing design of profiles. It might be simpler to put > "user" (or "passwd") and "group" files directly in the profile. > (If directories are really needed, we could use the scheme foreseen > in [1] for package.* and use.* files.) we implemented this GLEP in Chromium OS and have been using it for a while: https://chromium.googlesource.com/chromiumos/overlays/eclass-overlay/+/master having a directory of files is way more user friendly imo and allows for a format that is easier to read. /etc/passwd and /etc/group format are not that easy to scan and aren't portable. > Also a mechanism how a subprofile could undefine a user or group > defined in its parent seems to be missing. what exactly do you mean by that ? you want to make it so attempts to use the account yield an undefined error ? or you want to have it so a child can revert back to an earlier definition ? -mike --jb2K77FXt9dSeH4m Content-Type: application/pgp-signature; name="signature.asc" Content-Description: Digital signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJWb6F+AAoJEEFjO5/oN/WBPpgQAKCVD8L+Ca5JFRuZ+BHEPM4f w4gagDnM0mCwwHb9WQ3nnCsJkmsHty7WCOG91iOYxkHZUwKkcqH2QVRXvApPWfMU Z9E5749GWl0I00jsYR+Yjn5wmp3jn32EIMlz321J/7RSONcftykdcpLI/Snhg5KL DFcaqXev9kes5i06uB47xU5eeCISsrgchSVXCtS75ANsnioBmMS0W3SfDpoRTfWf PIZ25xyjdK4Tn9NaFk9ZNIcz85ZKd/uQZf4ST1/AzNWuZ+yZ384vVAuTtZ171ctu yfysSMXPZX7v6HTq7/WHBXO+NDM+dkM7ChGuGQXnl8L8Bwd1o6x2VUiGEiMbgldg DW7HFhsyZA6MmIBibt1vtdoTg8izYUKtd/2bfX4xwQCEbvDFQV7g4TY7O1zhj9pe EBOhSD+vTGj80em+tHE8yUF0Js1O7a1/TSIY+VRfL7VACxaFrvMDcf5D+xfvOFwD lVEW4TbQuy9X2tTheW3mJh95ac5QPi9Q6Rnb2N/DFXPXv6fpaG+X4PgwAud26d+g /HuM2hzAabr2xVfl0o/UoujRJEXr/WJbnRyQN8DqjMDBDKRX7Dc2Ov8UMz2aHeDB Z4zsHTH1/KcUT2SiNwJv0qKZ8FDCJndlBFOL0THXazTniy3haeydTFYZWpyGm7+A 71wctT+S+pRXvNZLiZGG =R0x9 -----END PGP SIGNATURE----- --jb2K77FXt9dSeH4m--