shadow: Fix new{u,g}idmap user namespace support

**Summary** /usr/bin/new{g,u}idmap were not being set setuid for some reason, which broke boulder's use of user namespaces. Add verbose chmod command to the recipe that shows the change at the end of the build. **Test Plan** Build shadow, check that the installed /usr/bin/new{g,u}idmap are setuid, successfully build a recipe with boulder. Signed-off-by: Rune Morling <ermo@serpentos.com>
2025-04-25 20:30:37 +03:00 · 2024-11-23 13:51:22 +01:00 · 2024-11-23 13:51:22 +01:00 · 1ae901f33d
commit 1ae901f33d
parent ca60032a74
3 changed files with 13 additions and 8 deletions
--- a/common/CI/config.yaml
+++ b/common/CI/config.yaml
@ -20,6 +20,7 @@ static_libs:
    - ocaml
    - qt5-tools
    - rocm-llvm
+    - shadow
    - vlc
  # These files are allowed as static libraries:
  allowed_files:
--- a/packages/s/shadow/package.yml
+++ b/packages/s/shadow/package.yml
@ -1,6 +1,6 @@
 name       : shadow
 version    : 4.15.3
-release    : 36
+release    : 37
 source     :
    - https://github.com/shadow-maint/shadow/releases/download/4.15.3/shadow-4.15.3.tar.xz : fd22f56f29395bdb72028d01ca6d44c0fa02ca3c2b1d6e8a4c6c115249301242
 license    : BSD-3-Clause
@ -105,5 +105,9 @@ install    : |
    # Cleanup
    find $installdir -type d -empty -print -delete

+    # Without setuid on /usr/bin/new{u,g}idmap, user namespaces do not work
+    # (this breaks e.g. boulder)
+    chmod -c u+s $installdir/usr/bin/new{u,g}idmap
+
 ## TODO:
 # - Stateless /etc/skel
--- a/packages/s/shadow/pspec_x86_64.xml
+++ b/packages/s/shadow/pspec_x86_64.xml
@ -3,8 +3,8 @@
        <Name>shadow</Name>
        <Homepage>https://github.com/shadow-maint/shadow</Homepage>
        <Packager>
-            <Name>Reilly Brogan</Name>
-            <Email>solus@reillybrogan.com</Email>
+            <Name>Rune Morling</Name>
+            <Email>ermo@serpentos.com</Email>
        </Packager>
        <License>BSD-3-Clause</License>
        <PartOf>system.base</PartOf>
@ -421,7 +421,7 @@
 </Description>
        <PartOf>programming.devel</PartOf>
        <RuntimeDependencies>
-            <Dependency release="36">shadow</Dependency>
+            <Dependency release="37">shadow</Dependency>
        </RuntimeDependencies>
        <Files>
            <Path fileType="header">/usr/include/shadow/subid.h</Path>
@ -432,12 +432,12 @@
        </Files>
    </Package>
    <History>
-        <Update release="36">
-            <Date>2024-07-02</Date>
+        <Update release="37">
+            <Date>2024-11-23</Date>
            <Version>4.15.3</Version>
            <Comment>Packaging update</Comment>
-            <Name>Reilly Brogan</Name>
-            <Email>solus@reillybrogan.com</Email>
+            <Name>Rune Morling</Name>
+            <Email>ermo@serpentos.com</Email>
        </Update>
    </History>
 </PISI>