jeans/LibreELEC.tv
jeans/LibreELEC.tv
1
0
Fork 0
mirror of https://github.com/LibreELEC/LibreELEC.tv.git synced 2025-07-30 06:06:43 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #2299 from MilhouseVH/le90_fix_shadow

Browse Source 
/etc/shadow: fix file permissions
This commit is contained in:
Christian Hewitt 2017-12-08 09:14:32 +04:00 committed by GitHub
commit 4b79f70f29
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
6 changed files with 56 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
config/functions
View File

@ -365,19 +365,20 @@ add_user() {
# Usage: add_user "username" "password" "userid" "groupid" "description" "home" "shell" # Usage: add_user "username" "password" "userid" "groupid" "description" "home" "shell"
mkdir -p ${INSTALL}/etc mkdir -p ${INSTALL}/etc
touch ${INSTALL}/etc/passwd touch ${INSTALL}/etc/passwd
if [ -z "`grep "$1:" ${INSTALL}/etc/passwd`" ]; then if ! grep -q "^$1:" ${INSTALL}/etc/passwd; then
echo "$1:x:$3:$4:$5:$6:$7" >> ${INSTALL}/etc/passwd echo "$1:x:$3:$4:$5:$6:$7" >> ${INSTALL}/etc/passwd
fi fi
touch ${INSTALL}/usr/config/shadow mkdir -p ${INSTALL}/usr/cache
ln -sf /storage/.config/shadow ${INSTALL}/etc/shadow touch ${INSTALL}/usr/cache/shadow
ln -sf /storage/.cache/shadow ${INSTALL}/etc/shadow
PASSWORD="$2" PASSWORD="$2"
if [ "$PASSWORD" = "x" ]; then if [ "$PASSWORD" = "x" ]; then
PASSWORD="*" PASSWORD="*"
fi fi
if [ -z "`grep "$1:" ${INSTALL}/usr/config/shadow`" ]; then if ! grep -q "^$1:" ${INSTALL}/usr/cache/shadow; then
echo "$1:$PASSWORD:::::::" >> ${INSTALL}/usr/config/shadow echo "$1:$PASSWORD:::::::" >> ${INSTALL}/usr/cache/shadow
fi fi
} }

2
packages/sysutils/busybox/package.mk
View File

@ -196,7 +196,7 @@ post_install() {
ROOT_PWD="`$TOOLCHAIN/bin/cryptpw -m sha512 $ROOT_PASSWORD`" ROOT_PWD="`$TOOLCHAIN/bin/cryptpw -m sha512 $ROOT_PASSWORD`"
echo "chmod 4755 $INSTALL/usr/bin/busybox" >> $FAKEROOT_SCRIPT echo "chmod 4755 $INSTALL/usr/bin/busybox" >> $FAKEROOT_SCRIPT
echo "chmod 000 $INSTALL/etc/shadow" >> $FAKEROOT_SCRIPT echo "chmod 000 $INSTALL/usr/cache/shadow" >> $FAKEROOT_SCRIPT
add_user root "$ROOT_PWD" 0 0 "Root User" "/storage" "/bin/sh" add_user root "$ROOT_PWD" 0 0 "Root User" "/storage" "/bin/sh"
add_group root 0 add_group root 0

2
packages/sysutils/systemd/package.mk
View File

@ -202,6 +202,7 @@ post_makeinstall_target() {
mkdir -p $INSTALL/usr/bin mkdir -p $INSTALL/usr/bin
cp $PKG_DIR/scripts/systemd-machine-id-setup $INSTALL/usr/bin cp $PKG_DIR/scripts/systemd-machine-id-setup $INSTALL/usr/bin
cp $PKG_DIR/scripts/userconfig-setup $INSTALL/usr/bin cp $PKG_DIR/scripts/userconfig-setup $INSTALL/usr/bin
cp $PKG_DIR/scripts/usercache-setup $INSTALL/usr/bin
mkdir -p $INSTALL/usr/sbin mkdir -p $INSTALL/usr/sbin
cp $PKG_DIR/scripts/kernel-overlays-setup $INSTALL/usr/sbin cp $PKG_DIR/scripts/kernel-overlays-setup $INSTALL/usr/sbin
@ -255,6 +256,7 @@ post_install() {
enable_service machine-id.service enable_service machine-id.service
enable_service debugconfig.service enable_service debugconfig.service
enable_service userconfig.service enable_service userconfig.service
enable_service usercache.service
enable_service kernel-overlays.service enable_service kernel-overlays.service
enable_service hwdb.service enable_service hwdb.service
} }

33
packages/sysutils/systemd/scripts/usercache-setup Executable file
View File

@ -0,0 +1,33 @@
#!/bin/sh
################################################################################
# This file is part of LibreELEC - https://libreelec.tv
# Copyright (C) 2017-present Team LibreELEC
#
# LibreELEC is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 2 of the License, or
# (at your option) any later version.
#
# LibreELEC is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with LibreELEC. If not, see <http://www.gnu.org/licenses/>.
################################################################################
# Copy cache files, but don't overwrite
false | cp -iRp /usr/cache/* /storage/.cache/ &>/dev/null
# Merge default and custom shadow file details
if [ -f /storage/.cache/shadow -a -f /usr/cache/shadow ]; then
# Get existing root details (possibly user defined)
userroot="$(grep "^root:" /storage/.cache/shadow)"
# Overwrite users shadow file with default details, but replacing root with any existing value
[ -n "${userroot}" ] && sed -e "s ^root:.* ${userroot} " /usr/cache/shadow >/storage/.cache/shadow
# Make sure we have the correct permission
chmod 000 /storage/.cache/shadow
fi

4
packages/sysutils/systemd/scripts/userconfig-setup
View File

@ -1,7 +1,7 @@
#!/bin/sh #!/bin/sh
################################################################################ ################################################################################
# This file is part of LibreELEC - http://www.libreelec.tv # This file is part of LibreELEC - https://libreelec.tv
# Copyright (C) 2017 Team LibreELEC # Copyright (C) 2017-present Team LibreELEC
# #
# LibreELEC is free software: you can redistribute it and/or modify # LibreELEC is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by # it under the terms of the GNU General Public License as published by

12
packages/sysutils/systemd/system.d/usercache.service Normal file
View File

@ -0,0 +1,12 @@
[Unit]
Description=Setup User cache dir
DefaultDependencies=no
After=systemd-tmpfiles-setup.service
[Service]
Type=oneshot
ExecStart=/usr/bin/usercache-setup
RemainAfterExit=yes
[Install]
WantedBy=sysinit.target