6 2

[alpine-devel] messagebus uid/gid and binaries

Details
Message ID
<20140110152150.GH2755@127.0.0.1>
Sender timestamp
1389367310
DKIM signature
missing
Download raw message
Hi,

background: alpine-mini-2.7.3-x86_64.iso fresh hd install using:
http://wiki.alpinelinux.org/wiki/Install_to_disk

is there any reason for having a lot of binaries owned by the messagebus
user, or is a bug (in the build system maybe)?

# find /var /usr /sbin /lib -user messagebus -ls :
  8065   40 -rwxr-xr-x   1 messagebus messagebus    38176 Oct 30 09:32 /usr/sbin/chroot
  8067    8 -rwxr-xr-x   1 messagebus messagebus     5720 Oct 30 09:32 /usr/libexec/coreutils/libstdbuf.so
  8068   68 -rwxr-xr-x   1 messagebus messagebus    69312 Oct 30 09:32 /usr/bin/tail
  8125   88 -rwxr-xr-x   1 messagebus messagebus    89296 Oct 30 09:32 /usr/bin/factor
  8130   64 -rwxr-xr-x   1 messagebus messagebus    65088 Oct 30 09:32 /usr/bin/chcon
  8088   40 -rwxr-xr-x   1 messagebus messagebus    40336 Oct 30 09:32 /usr/bin/pinky
  8124   48 -rwxr-xr-x   1 messagebus messagebus    48560 Oct 30 09:32 /usr/bin/readlink
  8122  116 -rwxr-xr-x   1 messagebus messagebus   117216 Oct 30 09:32 /usr/bin/du
  8101   44 -rwxr-xr-x   1 messagebus messagebus    44352 Oct 30 09:32 /usr/bin/head
  8102   40 -rwxr-xr-x   1 messagebus messagebus    40320 Oct 30 09:32 /usr/bin/comm
  8073   96 -rwxr-xr-x   1 messagebus messagebus    97616 Oct 30 09:32 /usr/bin/tac
  8127   36 -rwxr-xr-x   1 messagebus messagebus    35936 Oct 30 09:32 /usr/bin/dirname
  8085   48 -rwxr-xr-x   1 messagebus messagebus    48528 Oct 30 09:32 /usr/bin/tr
  8104   68 -rwxr-xr-x   1 messagebus messagebus    69536 Oct 30 09:32 /usr/bin/numfmt
  8109   44 -rwxr-xr-x   1 messagebus messagebus    41584 Oct 30 09:32 /usr/bin/fmt
  8107   44 -rwxr-xr-x   1 messagebus messagebus    44528 Oct 30 09:32 /usr/bin/wc
  8078   52 -rwxr-xr-x   1 messagebus messagebus    49280 Oct 30 09:32 /usr/bin/cut
  8126  120 -rwxr-xr-x   1 messagebus messagebus   120456 Oct 30 09:32 /usr/bin/install
  8072   36 -rwxr-xr-x   1 messagebus messagebus    33728 Oct 30 09:32 /usr/bin/unlink
  8108   40 -rwxr-xr-x   1 messagebus messagebus    36960 Oct 30 09:32 /usr/bin/fold
  8071   36 -rwxr-xr-x   1 messagebus messagebus    35952 Oct 30 09:32 /usr/bin/users
  8091   48 -rwxr-xr-x   1 messagebus messagebus    45072 Oct 30 09:32 /usr/bin/uniq
  8136   52 -rwxr-xr-x   1 messagebus messagebus    52512 Oct 30 09:32 /usr/bin/truncate
  8098   36 -rwxr-xr-x   1 messagebus messagebus    33936 Oct 30 09:32 /usr/bin/whoami
  8123   40 -rwxr-xr-x   1 messagebus messagebus    40032 Oct 30 09:32 /usr/bin/tsort
  8105  120 -rwxr-xr-x   1 messagebus messagebus   122848 Oct 30 09:32 /usr/bin/ptx
  8090   48 -rwxr-xr-x   1 messagebus messagebus    48512 Oct 30 09:32 /usr/bin/sha1sum
  8111   36 -rwxr-xr-x   1 messagebus messagebus    36160 Oct 30 09:32 /usr/bin/tee
  8077   36 -rwxr-xr-x   1 messagebus messagebus    35952 Oct 30 09:32 /usr/bin/pathchk
  8079   36 -rwxr-xr-x   1 messagebus messagebus    36304 Oct 30 09:32 /usr/bin/paste
  8118   64 -rwxr-xr-x   1 messagebus messagebus    62320 Oct 30 09:32 /usr/bin/realpath
  8117   36 -rwxr-xr-x   1 messagebus messagebus    33616 Oct 30 09:32 /usr/bin/hostid
  8112   36 -rwxr-xr-x   1 messagebus messagebus    36744 Oct 30 09:32 /usr/bin/test
  8070   56 -rwxr-xr-x   1 messagebus messagebus    54192 Oct 30 09:32 /usr/bin/sha256sum
  8075   44 -rwxr-xr-x   1 messagebus messagebus    44416 Oct 30 09:32 /usr/bin/md5sum
  8081   36 -rwxr-xr-x   1 messagebus messagebus    36000 Oct 30 09:32 /usr/bin/basename
  8100   68 -rwxr-xr-x   1 messagebus messagebus    65872 Oct 30 09:32 /usr/bin/stdbuf
  8129   36 -rwxr-xr-x   1 messagebus messagebus    33728 Oct 30 09:32 /usr/bin/yes
  8103   72 -rwxr-xr-x   1 messagebus messagebus    69712 Oct 30 09:32 /usr/bin/od
  8138   40 -rwxr-xr-x   1 messagebus messagebus    37248 Oct 30 09:32 /usr/bin/cksum
  8106  100 -rwxr-xr-x   1 messagebus messagebus   102048 Oct 30 09:32 /usr/bin/nl
  8133   36 -rwxr-xr-x   1 messagebus messagebus    35984 Oct 30 09:32 /usr/bin/nproc
  8132   40 -rwxr-xr-x   1 messagebus messagebus    37200 Oct 30 09:32 /usr/bin/nohup
  8119   36 -rwxr-xr-x   1 messagebus messagebus    35968 Oct 30 09:32 /usr/bin/mkfifo
  8080   68 -rwxr-xr-x   1 messagebus messagebus    66536 Oct 30 09:32 /usr/bin/split
  8135  104 -rwxr-xr-x   1 messagebus messagebus   104400 Oct 30 09:32 /usr/bin/sort
  8095   36 -rwxr-xr-x   1 messagebus messagebus    36048 Oct 30 09:32 /usr/bin/runcon
  8097  124 -rwxr-xr-x   1 messagebus messagebus   125472 Oct 30 09:32 /usr/bin/vdir
  8092  124 -rwxr-xr-x   1 messagebus messagebus   125472 Oct 30 09:32 /usr/bin/dir
  8083   68 -rwxr-xr-x   1 messagebus messagebus    65568 Oct 30 09:32 /usr/bin/pr
  8120   40 -rwxr-xr-x   1 messagebus messagebus    39912 Oct 30 09:32 /usr/bin/[
  8086   48 -rwxr-xr-x   1 messagebus messagebus    48432 Oct 30 09:32 /usr/bin/join
  8094   36 -rwxr-xr-x   1 messagebus messagebus    33712 Oct 30 09:32 /usr/bin/logname
  8082   36 -rwxr-xr-x   1 messagebus messagebus    36016 Oct 30 09:32 /usr/bin/env
  8114   40 -rwxr-xr-x   1 messagebus messagebus    40272 Oct 30 09:32 /usr/bin/id
  8134  108 -rwxr-xr-x   1 messagebus messagebus   110112 Oct 30 09:32 /usr/bin/csplit
  8084   36 -rwxr-xr-x   1 messagebus messagebus    36000 Oct 30 09:32 /usr/bin/groups
  8110   56 -rwxr-xr-x   1 messagebus messagebus    57008 Oct 30 09:32 /usr/bin/who
  8121   44 -rwxr-xr-x   1 messagebus messagebus    41072 Oct 30 09:32 /usr/bin/sum
  8116   56 -rwxr-xr-x   1 messagebus messagebus    56880 Oct 30 09:32 /usr/bin/shred
  8087  104 -rwxr-xr-x   1 messagebus messagebus   102688 Oct 30 09:32 /usr/bin/expr
  8089   52 -rwxr-xr-x   1 messagebus messagebus    52640 Oct 30 09:32 /usr/bin/seq
  8096   36 -rwxr-xr-x   1 messagebus messagebus    33872 Oct 30 09:32 /usr/bin/link
  8093   48 -rwxr-xr-x   1 messagebus messagebus    45296 Oct 30 09:32 /usr/bin/dircolors
  8113   52 -rwxr-xr-x   1 messagebus messagebus    49832 Oct 30 09:32 /usr/bin/printf
  8115   40 -rwxr-xr-x   1 messagebus messagebus    37008 Oct 30 09:32 /usr/bin/unexpand
  8074   52 -rwxr-xr-x   1 messagebus messagebus    52976 Oct 30 09:32 /usr/bin/shuf
  8069   36 -rwxr-xr-x   1 messagebus messagebus    36528 Oct 30 09:32 /usr/bin/expand
  8131   60 -rwxr-xr-x   1 messagebus messagebus    60800 Oct 30 09:32 /usr/bin/sha384sum
  8076   36 -rwxr-xr-x   1 messagebus messagebus    33600 Oct 30 09:32 /usr/bin/tty
  8137   56 -rwxr-xr-x   1 messagebus messagebus    54192 Oct 30 09:32 /usr/bin/sha224sum
  8099   60 -rwxr-xr-x   1 messagebus messagebus    60800 Oct 30 09:32 /usr/bin/sha512sum
  8128   56 -rwxr-xr-x   1 messagebus messagebus    55816 Oct 30 09:32 /usr/bin/timeout
  5188   24 -rw-r--r--   1 messagebus messagebus    21327 Oct 31 13:45 /lib/libattr.so.1.1.0


apart from this, maybe is better to use the reserved "system" uid/gid with the
-S flag in the adduser command?
http://git.alpinelinux.org/cgit/aports/commit/?id=5a7acc3218ecf44b19312ba9b5d4962828e9ec97

# id messagebus
uid=1000(messagebus) gid=1000(messagebus) groups=1000(messagebus)

thnx,
I.


---
Unsubscribe:  alpine-devel+unsubscribe@lists.alpinelinux.org
Help:         alpine-devel+help@lists.alpinelinux.org
---
Details
Message ID
<20140110153053.GI2755@127.0.0.1>
In-Reply-To
<20140110152150.GH2755@127.0.0.1> (view parent)
Sender timestamp
1389367853
DKIM signature
missing
Download raw message
On Fri, Jan 10, 2014 at 04:21:50PM +0100, lists@cioccolatai.it wrote:

> is there any reason for having a lot of binaries owned by the messagebus
> user, or is a bug (in the build system maybe)?
> 
> # find /var /usr /sbin /lib -user messagebus -ls :

(ops, in /bin too)

thnx,
I.


---
Unsubscribe:  alpine-devel+unsubscribe@lists.alpinelinux.org
Help:         alpine-devel+help@lists.alpinelinux.org
---
Details
Message ID
<20140110154433.GJ2755@127.0.0.1>
In-Reply-To
<20140110152150.GH2755@127.0.0.1> (view parent)
Sender timestamp
1389368673
DKIM signature
missing
Download raw message
On Fri, Jan 10, 2014 at 04:21:50PM +0100, lists@cioccolatai.it wrote:

> is there any reason for having a lot of binaries owned by the messagebus
> user, or is a bug (in the build system maybe)?
> 
> # find /var /usr /sbin /lib -user messagebus -ls :
>   8065   40 -rwxr-xr-x   1 messagebus messagebus    38176 Oct 30 09:32 /usr/sbin/chroot
>   8067    8 -rwxr-xr-x   1 messagebus messagebus     5720 Oct 30 09:32 /usr/libexec/coreutils/libstdbuf.so
[..]

> apart from this, maybe is better to use the reserved "system" uid/gid with the
> -S flag in the adduser command?
> http://git.alpinelinux.org/cgit/aports/commit/?id=5a7acc3218ecf44b19312ba9b5d4962828e9ec97
> 
> # id messagebus
> uid=1000(messagebus) gid=1000(messagebus) groups=1000(messagebus)

Well, last message <g> 

Maybe the two things aren't related (I got uid 1000 for dbus after
install, and the packages are owned by uid 1000 for another reason - I
don't known at all the alpine build system).

thnx again,
K.


---
Unsubscribe:  alpine-devel+unsubscribe@lists.alpinelinux.org
Help:         alpine-devel+help@lists.alpinelinux.org
---
Details
Message ID
<20140113150325.GA2419@127.0.0.1>
In-Reply-To
<20140110154433.GJ2755@127.0.0.1> (view parent)
Sender timestamp
1389625405
DKIM signature
missing
Download raw message
On Fri, Jan 10, 2014 at 04:44:33PM +0100, lists@cioccolatai.it wrote:

> > # find /var /usr /sbin /lib -user messagebus -ls :
> >   8065   40 -rwxr-xr-x   1 messagebus messagebus    38176 Oct 30 09:32 /usr/sbin/chroot
> >   8067    8 -rwxr-xr-x   1 messagebus messagebus     5720 Oct 30 09:32 /usr/libexec/coreutils/libstdbuf.so
> [..]
> 
> > apart from this, maybe is better to use the reserved "system" uid/gid with the
> > -S flag in the adduser command?
> > http://git.alpinelinux.org/cgit/aports/commit/?id=5a7acc3218ecf44b19312ba9b5d4962828e9ec97
> > 
> > # id messagebus
> > uid=1000(messagebus) gid=1000(messagebus) groups=1000(messagebus)

Sorry for the noise, I confirm that the two things are unrelated:

1) some binaries are installed with owner uid/gid 1000 (maybe a
bug/misconfig in the build system?)

2) dbus installation script creates an ordinary user (which by default
get uid 1000 if you don't have any other regular user), not a system one

should I file two bug reports in the tracker?

as a note, by default the last system gid defined in the default
/etc/groups is users (gid 100) which doesn't have a corrisponding uid
100 in /etc/passwd; any adduser -S creates a "desync" between passwd and
groups (uid 100 gid 101, etc.) which is of course not a bug/problem, but
is ..  "ugly" ..

ciao,
I.


---
Unsubscribe:  alpine-devel+unsubscribe@lists.alpinelinux.org
Help:         alpine-devel+help@lists.alpinelinux.org
---
Natanael Copa
Details
Message ID
<20140113163015.0a635406@ncopa-desktop.alpinelinux.org>
In-Reply-To
<20140110152150.GH2755@127.0.0.1> (view parent)
Sender timestamp
1389627015
DKIM signature
missing
Download raw message
On Fri, 10 Jan 2014 16:21:50 +0100
lists@cioccolatai.it wrote:

> Hi,
> 
> background: alpine-mini-2.7.3-x86_64.iso fresh hd install using:
> http://wiki.alpinelinux.org/wiki/Install_to_disk
> 
> is there any reason for having a lot of binaries owned by the messagebus
> user, or is a bug (in the build system maybe)?

This looks like a broken fakeroot. I wonder why/when that happened.
Also wonder what packages are affected.


> 
> # find /var /usr /sbin /lib -user messagebus -ls :
>   8065   40 -rwxr-xr-x   1 messagebus messagebus    38176 Oct 30 09:32 /usr/sbin/chroot
...

 
> apart from this, maybe is better to use the reserved "system" uid/gid with the
> -S flag in the adduser command?
> http://git.alpinelinux.org/cgit/aports/commit/?id=5a7acc3218ecf44b19312ba9b5d4962828e9ec97
> 
> # id messagebus
> uid=1000(messagebus) gid=1000(messagebus) groups=1000(messagebus)
> 
> thnx,
> I.

You are right. Will look into that. Thanks!

-nc


---
Unsubscribe:  alpine-devel+unsubscribe@lists.alpinelinux.org
Help:         alpine-devel+help@lists.alpinelinux.org
---
Natanael Copa
Details
Message ID
<20140113170754.2998d479@ncopa-desktop.alpinelinux.org>
In-Reply-To
<20140113150325.GA2419@127.0.0.1> (view parent)
Sender timestamp
1389629274
DKIM signature
missing
Download raw message
On Mon, 13 Jan 2014 16:03:25 +0100
lists@cioccolatai.it wrote:

> On Fri, Jan 10, 2014 at 04:44:33PM +0100, lists@cioccolatai.it wrote:
> 
> > > # find /var /usr /sbin /lib -user messagebus -ls :
> > >   8065   40 -rwxr-xr-x   1 messagebus messagebus    38176 Oct 30 09:32 /usr/sbin/chroot
> > >   8067    8 -rwxr-xr-x   1 messagebus messagebus     5720 Oct 30 09:32 /usr/libexec/coreutils/libstdbuf.so
> > [..]
> > 
> > > apart from this, maybe is better to use the reserved "system" uid/gid with the
> > > -S flag in the adduser command?
> > > http://git.alpinelinux.org/cgit/aports/commit/?id=5a7acc3218ecf44b19312ba9b5d4962828e9ec97
> > > 
> > > # id messagebus
> > > uid=1000(messagebus) gid=1000(messagebus) groups=1000(messagebus)
> 
> Sorry for the noise, I confirm that the two things are unrelated:
> 
> 1) some binaries are installed with owner uid/gid 1000 (maybe a
> bug/misconfig in the build system?)

likely bug. yes.

> 
> 2) dbus installation script creates an ordinary user (which by default
> get uid 1000 if you don't have any other regular user), not a system one

i fixed that in edge, but we might want fix it in v2.7 too.
 
> should I file two bug reports in the tracker?

That would be nice yes. Thanks!


> 
> as a note, by default the last system gid defined in the default
> /etc/groups is users (gid 100) which doesn't have a corrisponding uid
> 100 in /etc/passwd; any adduser -S creates a "desync" between passwd and
> groups (uid 100 gid 101, etc.) which is of course not a bug/problem, but
> is ..  "ugly" ..

Dont much we can do about that i think.

Thanks!

-nc


---
Unsubscribe:  alpine-devel+unsubscribe@lists.alpinelinux.org
Help:         alpine-devel+help@lists.alpinelinux.org
---
Natanael Copa
Details
Message ID
<20140113170812.5b7b44cb@ncopa-desktop.alpinelinux.org>
In-Reply-To
<20140110152150.GH2755@127.0.0.1> (view parent)
Sender timestamp
1389629292
DKIM signature
missing
Download raw message
On Fri, 10 Jan 2014 16:21:50 +0100
lists@cioccolatai.it wrote:

> Hi,
> 
> background: alpine-mini-2.7.3-x86_64.iso fresh hd install using:
> http://wiki.alpinelinux.org/wiki/Install_to_disk
> 
> is there any reason for having a lot of binaries owned by the messagebus
> user, or is a bug (in the build system maybe)?
> 
> # find /var /usr /sbin /lib -user messagebus -ls :
>   8065   40 -rwxr-xr-x   1 messagebus messagebus    38176 Oct 30 09:32 /usr/sbin/chroot
>   8067    8 -rwxr-xr-x   1 messagebus messagebus     5720 Oct 30 09:32 /usr/libexec/coreutils/libstdbuf.so

The exact list of affected packages:
attr-2.4.47-r2.apk
attr-dev-2.4.47-r2.apk
attr-doc-2.4.47-r2.apk
coreutils-8.21-r4.apk
libattr-2.4.47-r2.apk
ruby-doc-2.0.0_p353-r0.apk
shorewall-4.5.21.3-r0.apk
shorewall-doc-4.5.21.3-r0.apk
shorewall6-4.5.21.3-r0.apk
shorewall6-doc-4.5.21.3-r0.apk
xfsprogs-3.1.11-r0.apk
xfsprogs-dev-3.1.11-r0.apk
xfsprogs-doc-3.1.11-r0.apk


-nc


---
Unsubscribe:  alpine-devel+unsubscribe@lists.alpinelinux.org
Help:         alpine-devel+help@lists.alpinelinux.org
---