From: Daan De Meyer Date: Thu, 13 Mar 2025 14:27:03 +0000 (+0100) Subject: mkosi: Create testuser at runtime X-Git-Tag: v258-rc1~1049^2~1 X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=a8a44b7ce57cd2ceaa9283ee0ba8bbdd225b95b3;p=thirdparty%2Fsystemd.git mkosi: Create testuser at runtime Now that we have userdb credentials, let's ship testuser as a userdb credential instead of including it in the image. --- diff --git a/mkosi.credentials/userdb.group.testuser b/mkosi.credentials/userdb.group.testuser new file mode 100644 index 00000000000..39e441fe7c5 --- /dev/null +++ b/mkosi.credentials/userdb.group.testuser @@ -0,0 +1,5 @@ +{ + "groupName": "testuser", + "gid": 4711, + "disposition": "regular" +} diff --git a/mkosi.credentials/userdb.user.testuser b/mkosi.credentials/userdb.user.testuser new file mode 100644 index 00000000000..6a2ce883241 --- /dev/null +++ b/mkosi.credentials/userdb.user.testuser @@ -0,0 +1,14 @@ +{ + "userName": "testuser", + "uid": 4711, + "disposition": "regular", + "enforcePasswordPolicy": false, + "memberOf": [ + "wheel", + "systemd-journal" + ], + "shell": "/bin/bash", + "privileged": { + "hashedPassword": ["$1$kqp7NF1f$tNnQcshPX53CSfRKTQD0R1"] + } +} diff --git a/mkosi.extra/usr/lib/tmpfiles.d/testuser.conf b/mkosi.extra/usr/lib/tmpfiles.d/testuser.conf deleted file mode 100644 index 7113177f4de..00000000000 --- a/mkosi.extra/usr/lib/tmpfiles.d/testuser.conf +++ /dev/null @@ -1,3 +0,0 @@ -# SPDX-License-Identifier: LGPL-2.1-or-later - -z! /home/testuser 700 testuser testuser diff --git a/mkosi.postinst.chroot b/mkosi.postinst.chroot index 693514b3130..914502a4736 100755 --- a/mkosi.postinst.chroot +++ b/mkosi.postinst.chroot @@ -5,14 +5,6 @@ set -o nounset find "$BUILDDIR" \( -name "*.rpm" -o -name "*.deb" -o -name "*.pkg.tar" -o -name systemd.raw \) -exec cp -t "$OUTPUTDIR" {} \; -useradd \ - --uid 4711 \ - --user-group \ - --create-home \ - --password "$(openssl passwd -1 testuser)" \ - --shell /bin/bash \ - testuser - if command -v authselect >/dev/null; then # authselect 1.5.0 renamed the minimal profile to the local profile without keeping backwards compat so # let's use the new name if it exists.