nixo
/
guix-devel
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

services: guix: Allocate build user UIDs in the system range. 

Until now we were allocating the UIDs of build users above 30000, which
is in "normal" user UID range.  This static allocation was unnecessary,
so this change lets the system allocate UIDs in the system range (below
1000).

* gnu/services/base.scm (guix-build-accounts): Remove #:first-uid, and
remove 'uid' field from 'user-account'.
This commit is contained in:
Ludovic Courtès 2019-03-10 23:32:18 +01:00
parent 45fef894eb
commit 309d87c3aa
No known key found for this signature in database
GPG Key ID: 090B11993D9AEBB5
1 changed files with 2 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
gnu/services/base.scm
View File

@ -1481,16 +1481,14 @@ pam-limits-entry specified in LIMITS via pam_limits.so."
(define* (guix-build-accounts count #:key (define* (guix-build-accounts count #:key
(group "guixbuild") (group "guixbuild")
(first-uid 30001)
(shadow shadow)) (shadow shadow))
"Return a list of COUNT user accounts for Guix build users, with UIDs "Return a list of COUNT user accounts for Guix build users with the given
starting at FIRST-UID, and under GID." GID."
(unfold (cut > <> count) (unfold (cut > <> count)
(lambda (n) (lambda (n)
(user-account (user-account
(name (format #f "guixbuilder~2,'0d" n)) (name (format #f "guixbuilder~2,'0d" n))
(system? #t) (system? #t)
(uid (+ first-uid n -1))
(group group) (group group)
;; guix-daemon expects GROUP to be listed as a ;; guix-daemon expects GROUP to be listed as a