Bug 1731603 - Home directories of user ods in softhsm and opendnssec conflict
Summary: Home directories of user ods in softhsm and opendnssec conflict
Keywords:
Status: NEW
Alias: None
Product: Fedora
Classification: Fedora
Component: opendnssec
Version: 31
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
Assignee: Paul Wouters
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2019-07-20 00:53 UTC by Mikhail Novosyolov
Modified: 2019-08-13 18:59 UTC (History)
2 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:


Attachments (Terms of Use)

Description Mikhail Novosyolov 2019-07-20 00:53:33 UTC
From softhsm.spec:

%pre
getent group ods >/dev/null || groupadd -r ods
getent passwd ods >/dev/null || \
    useradd -r -g ods -d %{_sharedstatedir}/softhsm -s /sbin/nologin \
    -c "softhsm private keys owner" ods
exit 0

From opendnssec.spec:
%pre
getent group ods >/dev/null || groupadd -r ods
getent passwd ods >/dev/null || \
useradd -r -g ods -d /etc/opendnssec -s /sbin/nologin \
-c "opendnssec daemon account" ods
exit 0

First it is "-d %{_sharedstatedir}/softhsm", then it is "-d /etc/opendnssec", I think it is incorrect.

I would suggest to migrate to systemd-sysusers and %sysusers_create_package in softhsm, make opendnssec "Requires(pre): softhsm" and so create a user and group in softhsm and reuse them in opendnssec, but I don't know which home directory will be correct.

Comment 1 Ben Cotton 2019-08-13 16:59:55 UTC
This bug appears to have been reported against 'rawhide' during the Fedora 31 development cycle.
Changing version to '31'.

Comment 2 Ben Cotton 2019-08-13 18:59:41 UTC
This bug appears to have been reported against 'rawhide' during the Fedora 31 development cycle.
Changing version to 31.


Note You need to log in before you can comment on or make changes to this bug.