From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-dev+bounces-79374-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by finch.gentoo.org (Postfix) with ESMTPS id C1863139085
	for <garchives@archives.gentoo.org>; Sat, 28 Jan 2017 20:34:20 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 913C4254073;
	Sat, 28 Jan 2017 20:34:03 +0000 (UTC)
Received: from mail-yw0-x242.google.com (mail-yw0-x242.google.com [IPv6:2607:f8b0:4002:c05::242])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id 3C19625406D
	for <gentoo-dev@lists.gentoo.org>; Sat, 28 Jan 2017 20:34:03 +0000 (UTC)
Received: by mail-yw0-x242.google.com with SMTP id u68so26934276ywg.0
        for <gentoo-dev@lists.gentoo.org>; Sat, 28 Jan 2017 12:34:03 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=mime-version:sender:in-reply-to:references:from:date:message-id
         :subject:to;
        bh=pJvUi0KVQNIngoHTPxCiC0uVFtlTtEz43+ID/VosdUY=;
        b=Kfw1EaUy99rHjlFaEck5Uz8HIwmbRWpqNn1GiH0j/rwD5aYXXv+XTHWeVTxlSibxO/
         GBQltV2kJZSwdyOV4eVhdtssxBMkpqwf2gHT4wPXDZ7M5wdJA6ARdwHdb4/0CXdEKO/e
         j6TtLOAKeeWBot8xhf75RsxlxSUbPcybiM4gjvB/2F6lbc4t1MDuHS71agoC2/BywAH9
         7eo+VwPCrk4Wv0lPzfRvGqzgftNl0Oc8ZSzbuuJD0uqs3ZmNyGfzeDm0ujbROLBdYW5p
         HuLymeqaonyPaPHQWpMJ3o21vYhalOsFtjALonqwrY+4zG2o5RtI135jOrRmS0y8Nzaq
         t2PQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:sender:in-reply-to:references:from
         :date:message-id:subject:to;
        bh=pJvUi0KVQNIngoHTPxCiC0uVFtlTtEz43+ID/VosdUY=;
        b=iIKQWO6SFDEi307pAojjBn5anEY+is6R8MoFGbGnn+OIS+w6I+28alsDT/P3Unn+7U
         ymSebHn2Uzxb00alf9DcmJ5ZS9PWETYo7G6Bj9cgIEdS266JMVKIhxO/SiPJgHFwC8Xw
         OB5OHlMivSwyTbz/gfstobvt/8Yex1GZHBov9XlfNo0pXFZLc0lapFFsMC6DJ5hs4hCp
         BmWe8txEGsTU1rujkxsoGBxTWQ/uUktSW1GbvHR2ZfxF3g3DOsyjzssyTApeV5RGQ1Ge
         +9mWI2c1WChdQEfQ2X/UD6haLgh7zuLy3dLGx2EHuqoH9GLRqrhmSSbkHg/rxy0585Lh
         AnGA==
X-Gm-Message-State: AIkVDXLDAc5qqKEsjdFuxZJAF9r8KlDUL6tP3f0wtM47DTozBAFLRI7wGZSSQxw+U2Dnlgt0bn8ElTTRS+19fg==
X-Received: by 10.13.222.193 with SMTP id h184mr10286568ywe.173.1485635642197;
 Sat, 28 Jan 2017 12:34:02 -0800 (PST)
Precedence: bulk
List-Post: <mailto:gentoo-dev@lists.gentoo.org>
List-Help: <mailto:gentoo-dev+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-dev+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-dev+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-dev.gentoo.org>
X-BeenThere: gentoo-dev@lists.gentoo.org
Reply-to: gentoo-dev@lists.gentoo.org
MIME-Version: 1.0
Sender: freemanrich@gmail.com
Received: by 10.13.239.193 with HTTP; Sat, 28 Jan 2017 12:34:01 -0800 (PST)
In-Reply-To: <20170128193256.5299c6be@symphony.aura-online.co.uk>
References: <9558d41c-17c0-4bbd-e2f8-02575c6d0ecd@gentoo.org>
 <CAGfcS_=biacBM0xsy0GX3_X0mOAd3BdgHDXYorSBkmwsoQ9sgQ@mail.gmail.com>
 <ee24eb83-4430-40ff-07d0-577bc188457d@gentoo.org> <CAGfcS_=V+xmBU+fFbMQBH39E9-y9CUaZt9Bok80Wg6_jboHcbQ@mail.gmail.com>
 <20170127183752.500f8910@patrickm> <588CDF61.7030902@adelielinux.org> <20170128193256.5299c6be@symphony.aura-online.co.uk>
From: Rich Freeman <rich0@gentoo.org>
Date: Sat, 28 Jan 2017 15:34:01 -0500
X-Google-Sender-Auth: 2Y8ezMIhm0k6oTwbrdiJMcORfAs
Message-ID: <CAGfcS_myWisSGFqJK9uSe3NJfabFq0eRX9bbp-+fCNvF4hoQDA@mail.gmail.com>
Subject: Re: [gentoo-dev] Requirements for UID/GID management
To: gentoo-dev <gentoo-dev@lists.gentoo.org>
Content-Type: text/plain; charset=UTF-8
X-Archives-Salt: 5e7b225c-7364-4825-b8d8-7dcd31ac816c
X-Archives-Hash: ecb0c53e14cd8070e6d768d24fc51f83

On Sat, Jan 28, 2017 at 2:32 PM, James Le Cuirot <chewi@gentoo.org> wrote:
> On Sat, 28 Jan 2017 12:13:53 -0600
> "A. Wilcox" <awilfox@adelielinux.org> wrote:
>
>> Having a file that user.eclass would use to map new users/groups to
>> IDs would be extremely beneficial to me.  I was thinking about diving
>> in to that some time later, after the GLEP 70 work I'm doing, but if
>> someone else wants to take it - please!  That would greatly ease the
>> pain of not only NFS, but swapping data disks around between different /
>> .
>>
>> Consider, for example, one of my use cases for this:  I have a
>> LibreSSL / that I use solely for testing ebuilds against it, and my
>> regular / with OpenSSL.  I share /home and /srv between these two, but
>> the apache, nginx, and charybdis users have different UIDs between
>> them.  Therefore I have to chown -R each time I test LibreSSL.
>>
>> I could use a different /home and /srv, or make two copies, but it's
>> much easier for me to test these apps having my entire normal
>> environment available to me.
>
> As mentioned in my other post, why are you not using idmapd? It's
> trivial to set up on top of NFSv4.

As far as I can tell there is no Gentoo-specific documentation for
doing this, and from what I have read setting up NFSv4 is a PITA
(perhaps that has changed in recent years).  There are also use cases
that don't involve NFS, such as containers.  From the docs I have
found on idmapd there wasn't actually a lot of detail, it wasn't clear
if it "just works" without any specific configuration, perhaps it
does.

In any case, would it be that hard to set reasonable defaults?

-- 
Rich