diff options
author | Ludovic Courtès <ludo@gnu.org> | 2014-04-30 22:17:56 +0200 |
---|---|---|
committer | Ludovic Courtès <ludo@gnu.org> | 2014-04-30 23:16:23 +0200 |
commit | 09e028f45feca1c415cd961ac5c79e5c7d5f3ae7 (patch) | |
tree | 1421bc9a02a703d0fef61fdf592c2a27c5487a16 /gnu/system | |
parent | d8a7a5bfd5ad8104fe9b1a0bf4ddd9b9e6f09d35 (diff) | |
download | gnu-guix-09e028f45feca1c415cd961ac5c79e5c7d5f3ae7.tar gnu-guix-09e028f45feca1c415cd961ac5c79e5c7d5f3ae7.tar.gz |
system: Add support for setuid binaries.
* gnu/system.scm (<operating-system>)[pam-services, setuid-programs]:
New fields.
(etc-directory)[bashrc]: Prepend /run/setuid-programs to $PATH.
(operating-system-etc-directory): Honor
'operating-system-pam-services'.
(%setuid-programs): New variable.
(operating-system-boot-script): Add (guix build utils) to the set of
imported modules. Call 'activate-setuid-programs' in boot script.
* gnu/system/linux.scm (base-pam-services): New procedure.
* guix/build/activation.scm (%setuid-directory): New variable.
(activate-setuid-programs): New procedure.
* build-aux/hydra/demo-os.scm: Add 'pam-services' field.
Diffstat (limited to 'gnu/system')
-rw-r--r-- | gnu/system/linux.scm | 11 |
1 files changed, 9 insertions, 2 deletions
diff --git a/gnu/system/linux.scm b/gnu/system/linux.scm index efe27c55c3..4030d8860e 100644 --- a/gnu/system/linux.scm +++ b/gnu/system/linux.scm @@ -29,8 +29,8 @@ #:export (pam-service pam-entry pam-services->directory - %pam-other-services - unix-pam-service)) + unix-pam-service + base-pam-services)) ;;; Commentary: ;;; @@ -152,4 +152,11 @@ should be the name of a file used as the message-of-the-day." (list #~(string-append "motd=" #$motd))))) (list unix)))))))) +(define* (base-pam-services #:key allow-empty-passwords?) + "Return the list of basic PAM services everyone would want." + (list %pam-other-services + (unix-pam-service "su" #:allow-empty-passwords? allow-empty-passwords?) + (unix-pam-service "passwd" + #:allow-empty-passwords? allow-empty-passwords?))) + ;;; linux.scm ends here |