From patchwork Fri Sep 22 09:10:01 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Uladzimir Bely X-Patchwork-Id: 3113 Return-Path: Received: from shymkent.ilbers.de ([unix socket]) by shymkent (Cyrus 2.5.10-Debian-2.5.10-3+deb9u2) with LMTPA; Fri, 22 Sep 2023 11:10:32 +0200 X-Sieve: CMU Sieve 2.4 Received: from mail-lf1-f60.google.com (mail-lf1-f60.google.com [209.85.167.60]) by shymkent.ilbers.de (8.15.2/8.15.2/Debian-8+deb9u1) with ESMTPS id 38M9AU0f032104 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Fri, 22 Sep 2023 11:10:31 +0200 Received: by mail-lf1-f60.google.com with SMTP id 2adb3069b0e04-502b134fd49sf531957e87.0 for ; Fri, 22 Sep 2023 02:10:31 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1695373825; cv=pass; d=google.com; s=arc-20160816; b=WIr188w6m1Cx1xAE0TI0/7mwb49azgwuMZTa6FLNsmZnT4EBOdjj9h7jY0gFyQOHuV aIpX5drKr+qVxm6xLGPvoXvv5aZBb6bizZlOMZizM7Jb/nIrFEkTVKU1MemODfC393wa nZZ/xP21ZhApJsWXFLdpNh5WATeOah5OLAdRI2Nk2LjYiHj687bIZkwUjpoLYga0cITi 6Ye9ajNQXiy+kxtmYyNiemN7F/VvmwnEdGht9u9/GNIYE2yeTm9c1oxincp9tOyVml8+ qGaBNU1yX/cTJKl3JJbbBChOtnxTFh+GMxt2RA2XUPzwANN5d/bzc/E5qMP/ci+YA9FE p0wQ== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:mime-version:references:in-reply-to :message-id:date:subject:to:from:sender:dkim-signature; bh=NF4I+qZHzU+bR19L40PaTx8cKp/aS1xVZ5ZdEB6wZvo=; fh=7tclEdh7YbwSQowgJ6LNq720O7H5HTEaqj22NJWRE2E=; b=T9Jjpd2XLmfR4z5LBrg9madKozS2kb9vh+JOpnUmptfh8p1VDovdLZTUlWEy4jHUCK iUChDv1IA6HQnyPbNgKJxMbO0BJ6dW1mpCk7XWfeqjUyXpjuDArXY+X4V/AaQP2YN4UJ B/yrKOCOHGPny2DguwtI/7XhThUQDNVbwGYFhbrCT44Ahf4NbmWKg2EG4feHz/A2z1Ye 1IMOfXIbVqcst/EYT2UanFTlAw3v5vd+Mh+0nrlUe5r9vxyEFtFAHc7qJbtcWHw4GkKM UC/M51Yw/vZvSV4ApkVNwjLtpDLbt9a/2XXB6hp7BxE3gcC9gceqyz9VrYtSOqU2/Byw p/Gg== ARC-Authentication-Results: i=2; gmr-mx.google.com; spf=pass (google.com: domain of ubely@ilbers.de designates 85.214.156.166 as permitted sender) smtp.mailfrom=ubely@ilbers.de DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlegroups.com; s=20230601; t=1695373825; x=1695978625; darn=isar-build.org; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:x-original-authentication-results :x-original-sender:mime-version:references:in-reply-to:message-id :date:subject:to:from:sender:from:to:cc:subject:date:message-id :reply-to; bh=NF4I+qZHzU+bR19L40PaTx8cKp/aS1xVZ5ZdEB6wZvo=; b=hb667bsg3p3dNPf6jQPPj6sjeZldYET7VNn7yQlz9GQSYEwSGL4bwREZ257DzojGFr 4l19W589cbwB5dhuP4RybpRORQ8vizjGhDaVsw4I9m3b2NRGDXibO5uWfFdj6aQ0l3r/ qkkwBD1bPA/zU7dMgGOlh1Zd67Zmi9JK5cDMCGSFxogujbLKKfbMRJ8r3bNyRn76+qo9 sBU9H2ywUtreFgQEtQghPQcQjds/aCxh6DorVYY/cVZBsLROnkQnRNetxf9WNXC+h4NP VJs1ujmo2ELZCed6N1i5gIGpYDa6M50ilsriBw5wApVuQDBYR+MOSBgvUAHKIaUAx9uT y2Ag== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1695373825; x=1695978625; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :x-spam-checked-in-group:list-id:mailing-list:precedence :x-original-authentication-results:x-original-sender:mime-version :references:in-reply-to:message-id:date:subject:to:from:x-beenthere :x-gm-message-state:sender:from:to:cc:subject:date:message-id :reply-to; bh=NF4I+qZHzU+bR19L40PaTx8cKp/aS1xVZ5ZdEB6wZvo=; b=aZaXpPWi4aoUfNoatxemQWYHHr9xRg4M/Tzu1Mm/n7+ddUNJ9WLeAinahJJIwVqlKw BiOfxvrXp0ndUWHPznh6SK1M4suM2m4M9Dsrlm9eWmRCdAJY+RtR1esTM5zcszd2wznB RKKt3uFNoYGyLlUEgg5x1FKkXdHgdPj1W4r+yLuqtrVK8w+UZ6ETGvJ9LER8Q634tAq9 u/ZXX2o9DQJej7+HvIAVjgU3MITD5j/prPz9Nu6NW2NzCQb21GK/BjwpyzilY69PA34l 1qyE3NiniU6ma321wZfuGp+d7jOZA8HoMdehzvb8hnK3OzWs6TrcYiInBWLCJy10/4zO V5bA== Sender: isar-users@googlegroups.com X-Gm-Message-State: AOJu0Yw2fY95jBWFr4SBLXW6GIbKtiWwSc+ji5Nqi2/cnOELvIQcBFx+ 8vYJZxfrk+wYnJqfCSr1zbg= X-Google-Smtp-Source: AGHT+IH66uwXIfc5gXjhcOoDeF8bM9ZR7cWrXD3fZd5xaDftjciCGo8eGo8w2MKTuK0hICvkHP4b9g== X-Received: by 2002:ac2:52b6:0:b0:502:d90a:b265 with SMTP id r22-20020ac252b6000000b00502d90ab265mr5920285lfm.1.1695373825255; Fri, 22 Sep 2023 02:10:25 -0700 (PDT) X-BeenThere: isar-users@googlegroups.com Received: by 2002:aa7:d3c1:0:b0:532:c9b6:5c15 with SMTP id o1-20020aa7d3c1000000b00532c9b65c15ls837569edr.1.-pod-prod-07-eu; Fri, 22 Sep 2023 02:10:23 -0700 (PDT) X-Received: by 2002:a17:906:1da:b0:9ae:4eb9:e09b with SMTP id 26-20020a17090601da00b009ae4eb9e09bmr6643882ejj.27.1695373823254; Fri, 22 Sep 2023 02:10:23 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1695373823; cv=none; d=google.com; s=arc-20160816; b=kH92isZWfn6IPCqKFp6xeFpA7JEAT0/YS5KiRzuSErwh/H/5GIbKf6LqhePa48x6zd 2pUXhXHn+UHBfJZfeypcCr+jhQa/eE7zqMPjPtHoeBdkKnxiCzNbMSinvV5jwCDrpbM0 ZZ6F07Rmjqkf+5XnW4tmByCCBCVgT/GQHeXYVDzodNK4GLzdB9/Lc3P3Z/1+7P9b0QWK S76qQOkWJO8pVgQRzwJz6SiIJ9Y2LEB7kvKxJF121cw8LShCYzpuX+nZC8lFaUKLG0mZ XsIbp7IiL3LBWMHXDNyrRo1UwsvckMezf1gaYzhhM3bqDu45EkJYvEX4ORK7ztP9xAni /vTA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:to:from; bh=Of34GLEisqVs1Gf7Oj9I31/KGjYNFq6H/6KSRFxcUJo=; fh=7tclEdh7YbwSQowgJ6LNq720O7H5HTEaqj22NJWRE2E=; b=GpK0cnBP8g7RD4YmJvLpQd1Ubuw5lS9aS3LSmZ0wA1WVj31qlOOhMeCzaBUy2pdPto NgOcwsr8Kv5JhxO9oREZSAF+0jTN+LFrBf2Rh/y3K8qA6GfXWISx8TdZ8P4VDPuFU99L LyGC5FXA1rIGzOmo6tDPQYb1EW9GW7Wc7/uYt0DT2TkmEYw9Wbf0QQHgoisV+zG7DXRD sFnjdlGERgTyjH9MlJEHrj9E2EJBJ1DvUCmJOeB4Z09FGN8lOAHd6UiyLzptTeyLCN3F jfM8FeuXPEBdSYLLPfmQJCPE/ozR/ogygTwbD9ZbIVtvxYtrHO9VHtkzpgJpFmboZGd9 GMcw== ARC-Authentication-Results: i=1; gmr-mx.google.com; spf=pass (google.com: domain of ubely@ilbers.de designates 85.214.156.166 as permitted sender) smtp.mailfrom=ubely@ilbers.de Received: from shymkent.ilbers.de (shymkent.ilbers.de. [85.214.156.166]) by gmr-mx.google.com with ESMTPS id jz8-20020a17090775e800b009ae3e884341si317081ejc.0.2023.09.22.02.10.23 for (version=TLS1_2 cipher=ECDHE-ECDSA-CHACHA20-POLY1305 bits=256/256); Fri, 22 Sep 2023 02:10:23 -0700 (PDT) Received-SPF: pass (google.com: domain of ubely@ilbers.de designates 85.214.156.166 as permitted sender) client-ip=85.214.156.166; Received: from baighyz.m.ilbers.de (host-80-81-17-52.static.customer.m-online.net [80.81.17.52]) (authenticated bits=0) by shymkent.ilbers.de (8.15.2/8.15.2/Debian-8+deb9u1) with ESMTPSA id 38M9A3ZE031991 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Fri, 22 Sep 2023 11:10:22 +0200 From: Uladzimir Bely To: isar-users@googlegroups.com Subject: [PATCH v4 11/13] kas: Add options to activate predefined users Date: Fri, 22 Sep 2023 11:10:01 +0200 Message-Id: <20230922091003.20763-12-ubely@ilbers.de> X-Mailer: git-send-email 2.20.1 In-Reply-To: <20230922091003.20763-1-ubely@ilbers.de> References: <20230922091003.20763-1-ubely@ilbers.de> MIME-Version: 1.0 X-Spam-Status: No, score=-0.9 required=5.0 tests=DKIMWL_WL_MED,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_EF,HEADER_FROM_DIFFERENT_DOMAINS, MAILING_LIST_MULTI,RCVD_IN_MSPIKE_H2,SPF_PASS autolearn=unavailable autolearn_force=no version=3.4.2 X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on shymkent.ilbers.de X-Original-Sender: ubely@ilbers.de X-Original-Authentication-Results: gmr-mx.google.com; spf=pass (google.com: domain of ubely@ilbers.de designates 85.214.156.166 as permitted sender) smtp.mailfrom=ubely@ilbers.de Precedence: list Mailing-list: list isar-users@googlegroups.com; contact isar-users+owners@googlegroups.com List-ID: X-Spam-Checked-In-Group: isar-users@googlegroups.com X-Google-Group-Id: 914930254986 List-Post: , List-Help: , List-Archive: , List-Unsubscribe: , X-getmail-retrieved-from-mailbox: =?utf-8?q?INBOX?= This allows to enable 'root' and 'isar' users and set their passwords. Signed-off-by: Uladzimir Bely --- kas/opt/Kconfig | 40 ++++++++++++++++++++++++++++++++++++++++ kas/opt/user-isar.yaml | 19 +++++++++++++++++++ kas/opt/user-root.yaml | 11 +++++++++++ 3 files changed, 70 insertions(+) create mode 100644 kas/opt/user-isar.yaml create mode 100644 kas/opt/user-root.yaml diff --git a/kas/opt/Kconfig b/kas/opt/Kconfig index 328ac5e6..87fef870 100644 --- a/kas/opt/Kconfig +++ b/kas/opt/Kconfig @@ -42,6 +42,46 @@ config KAS_INCLUDE_MIRROR_UBUNTU endmenu +menu "User management" + +config USER_ROOT + bool "Activate 'root' user" + help + Enables root user. + +config KAS_USER_ROOT_PASSWORD + string "Password for 'root' user" + default "root" + depends on USER_ROOT + help + Set password for 'root' user. + +config KAS_INCLUDE_USER_ROOT + string + default "kas/opt/user-root.yaml" + depends on USER_ROOT + + +config USER_ISAR + bool "Activate 'isar' user" + default y + help + Enables `isar` user. + +config KAS_USER_ISAR_PASSWORD + string "Password for 'isar' user" + default "isar" + depends on USER_ISAR + help + Set password for 'isar' user. + +config KAS_INCLUDE_USER_ISAR + string + default "kas/opt/user-isar.yaml" + depends on USER_ISAR + +endmenu + config KAS_IMAGE_FSTYPES string "Additional image fstypes" default "" diff --git a/kas/opt/user-isar.yaml b/kas/opt/user-isar.yaml new file mode 100644 index 00000000..67611a40 --- /dev/null +++ b/kas/opt/user-isar.yaml @@ -0,0 +1,19 @@ +# This software is a part of ISAR. +# Copyright (C) 2023 ilbers GmbH + +header: + version: 14 + +local_conf_header: + user-isar: | + GROUPS += "isar" + GROUP_isar[flags] = "system" + + USERS += "isar" + USER_isar[gid] = "isar" + USER_isar[home] = "/var/lib/isar" + USER_isar[comment] = "My isar user" + USER_isar[flags] = "system create-home" + + USER_isar[password] = "${KAS_USER_ISAR_PASSWORD}" + USER_isar[flags] += "clear-text-password" diff --git a/kas/opt/user-root.yaml b/kas/opt/user-root.yaml new file mode 100644 index 00000000..65428e24 --- /dev/null +++ b/kas/opt/user-root.yaml @@ -0,0 +1,11 @@ +# This software is a part of ISAR. +# Copyright (C) 2023 ilbers GmbH + +header: + version: 14 + +local_conf_header: + user-root: | + USERS += "root" + USER_root[password] ??= "${KAS_USER_ROOT_PASSWORD}" + USER_root[flags] += "clear-text-password"