From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 205B1139085 for ; Sun, 29 Jan 2017 17:23:02 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id C66A414504; Sun, 29 Jan 2017 17:16:55 +0000 (UTC) Received: from mail.wilcox-tech.com (mail.foxkit.us [45.32.83.9]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 56DAF143E0 for ; Sun, 29 Jan 2017 17:16:55 +0000 (UTC) Received: (qmail 2172 invoked from network); 29 Jan 2017 17:16:50 -0000 Received: from ip68-13-242-69.ok.ok.cox.net (HELO ?10.1.1.57?) (awilcox@wilcox-tech.com@68.13.242.69) by mail.foxkit.us with ESMTPA; 29 Jan 2017 17:16:50 -0000 From: "A. Wilcox" Subject: Re: [gentoo-dev] Requirements for UID/GID management To: gentoo-dev@lists.gentoo.org References: <9558d41c-17c0-4bbd-e2f8-02575c6d0ecd@gentoo.org> <20170127183752.500f8910@patrickm> <588CDF61.7030902@adelielinux.org> <20170128193256.5299c6be@symphony.aura-online.co.uk> Organization: =?UTF-8?Q?Ad=c3=a9lie_Linux?= Message-ID: <588E2382.6060203@adelielinux.org> Date: Sun, 29 Jan 2017 11:16:50 -0600 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.5.0 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 In-Reply-To: <20170128193256.5299c6be@symphony.aura-online.co.uk> Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: 8bit X-Archives-Salt: 9552bfd3-3571-4099-98b2-0c9a993ef4ac X-Archives-Hash: 2be6cc9a74090d834902203a3a557ea9 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 28/01/17 13:32, James Le Cuirot wrote: > On Sat, 28 Jan 2017 12:13:53 -0600 "A. Wilcox" > wrote: > >> Having a file that user.eclass would use to map new users/groups >> to IDs would be extremely beneficial to me. I was thinking about >> diving in to that some time later, after the GLEP 70 work I'm >> doing, but if someone else wants to take it - please! That would >> greatly ease the pain of not only NFS, but swapping data disks >> around between different / . >> >> Consider, for example, one of my use cases for this: I have a >> LibreSSL / that I use solely for testing ebuilds against it, and >> my regular / with OpenSSL. I share /home and /srv between these >> two, but the apache, nginx, and charybdis users have different >> UIDs between them. Therefore I have to chown -R each time I test >> LibreSSL. >> >> I could use a different /home and /srv, or make two copies, but >> it's much easier for me to test these apps having my entire >> normal environment available to me. > > As mentioned in my other post, why are you not using idmapd? It's > trivial to set up on top of NFSv4. > I think you have missed the point. This is not on a network and this has nothing to do with NFS of any version. This is two LVM volumes, /dev/ciall/libressl and /dev/ciall/root, mounting /dev/ciall/home and /dev/ciall/srv where they belong. The kernel is started with different root=, or sometimes I just bind mount and chroot if I want to run both at the same time. Nothing to do with networking, just two parallel Gentoo installs on the same machine that can't agree worth a darn on UIDs/GIDs. I like the pre_pkg_setup idea spouted elsewhere in this thread and will likely start using this myself until Gentoo figures out how to guarantee stability with UIDs. Regards, - --arw - -- A. Wilcox (awilfox) Project Lead, Adélie Linux http://adelielinux.org -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJYjiOAAAoJEMspy1GSK50UWrAQAIq0fz+oxA2SWCEBNdKKZgRN gNJOcnEj9lWSiE4bXA4C4diFj38GD5HhTK6awwNjEJ2e3S/+IvJvy97RcUjzpP09 iE+77p3YyZeVxywONJ+BK0gSWc3pJrYzzZWMmHMhIhA5TW78OPKFgP4q+FT8Ruwu TdYL4/cH6shcELacsgLq+0fBxgT8xkl5LA0OWdW5g2lVFzcnZ7sM/qX7WMlksaVY o4fPBc10hNwrAW5HsSBOw6tZsf+8CtaBaYVub1DfgWSLxmE70+9pX+4VCObvuc9m CZ1u3tvcus7xBbpIDxD9M6yC7Jkj250Gr0IAJol2y8JJY5EyCu/iNtUbHT3lgb+F qRKLbMDp91F9jzHmup04UuJdVkcDaxA4nfb7RWGOnH4U5BmmCdHkxUMtSA2vPNAh 9m7dwn+Yb6OjHKvB/gswbRfT4vV6bn0a07/J72GBgoWvEvGZ/rj9mO5O7gu/k9eQ zXc3eSWWmi6S3FtDHKNP7U+CrBGOu6DN79GGDO4zzGpl8aWGFm8ol3qW5jtWKdsP y0K1n2erH1Xfj5CoXzcbm3s7EQxiB3hEHlfv2gYYMrZZuqKgrVXQ5krvNApbsiQo dVmGOugfIUnVcv/o6rpwtCzNnyGahq6PISkJbRwzh3irA7fsZjYYZITnN6Ba0jIU EVO3/JgkJDAvyn+ZWQ8O =aaA7 -----END PGP SIGNATURE-----