From gmb at ecs.soton.ac.uk Thu Aug 14 15:51:04 2025 From: gmb at ecs.soton.ac.uk (Graeme Bragg) Date: Thu, 14 Aug 2025 15:51:04 +0100 Subject: [Pkg-shadow-devel] Bug#1111083: passwd: Trixie build missing "groupmems" Message-ID: <175518306470.11573.5849608735616622488.reportbug@charun.ecs.soton.ac.uk> Package: passwd Version: 1:4.17.4-2 Severity: normal X-Debbugs-Cc: gmb at ecs.soton.ac.uk Dear Maintainer, The build of the passwd package for Trixie is missing the groupmems binary. The absence of this binary removes a standard method of retrieving group membership. -- System Information: Debian Release: 13.0 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 6.12.41+deb13-amd64 (SMP w/16 CPU threads; PREEMPT) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), LANGUAGE=en_GB:en Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages passwd depends on: ii base-passwd 3.6.7 ii libacl1 2.3.2-2+b1 ii libattr1 1:2.5.2-3 ii libaudit1 1:4.0.2-2+b2 ii libbsd0 0.12.2-2 ii libc6 2.41-12 ii libcrypt1 1:4.4.38-1 ii libpam-modules 1.7.0-5 ii libpam0g 1.7.0-5 ii libselinux1 3.8.1-1 ii libsemanage2 3.8.1-1 ii login.defs 1:4.17.4-2 Versions of packages passwd recommends: ii sensible-utils 0.0.25 passwd suggests no packages. -- no debconf information From owner at bugs.debian.org Thu Aug 14 17:03:02 2025 From: owner at bugs.debian.org (Debian Bug Tracking System) Date: Thu, 14 Aug 2025 16:03:02 +0000 Subject: [Pkg-shadow-devel] Processed: Re: Bug#1111083: passwd: Trixie build missing "groupmems" References: <175518306470.11573.5849608735616622488.reportbug@charun.ecs.soton.ac.uk> Message-ID: Processing control commands: > tags -1 = wontfix Bug #1111083 [passwd] passwd: Trixie build missing "groupmems" Added tag(s) wontfix. -- 1111083: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1111083 Debian Bug Tracking System Contact owner at bugs.debian.org with problems From zeha at debian.org Thu Aug 14 17:00:35 2025 From: zeha at debian.org (Chris Hofstaedtler) Date: Thu, 14 Aug 2025 18:00:35 +0200 Subject: [Pkg-shadow-devel] Bug#1111083: passwd: Trixie build missing "groupmems" In-Reply-To: <175518306470.11573.5849608735616622488.reportbug@charun.ecs.soton.ac.uk> References: <175518306470.11573.5849608735616622488.reportbug@charun.ecs.soton.ac.uk> <175518306470.11573.5849608735616622488.reportbug@charun.ecs.soton.ac.uk> Message-ID: Control: tags -1 = wontfix On Thu, Aug 14, 2025 at 03:51:04PM +0100, Graeme Bragg wrote: > The build of the passwd package for Trixie is missing the groupmems binary. > The absence of this binary removes a standard method of retrieving group membership. groupmems was rmeoved from the Debian build because Debian was in the minority share of distros still shipping it. If you just want to query group membership, id(1) is a better interface (or directly use the query APIs from your favorite programming language). Chris From gitlab at salsa.debian.org Thu Aug 14 17:59:42 2025 From: gitlab at salsa.debian.org (Marc Haber (@zugschlus)) Date: Thu, 14 Aug 2025 16:59:42 +0000 Subject: [Pkg-shadow-devel] [Git][debian/adduser][master] move PATH initialization very early in program Message-ID: <689e15fee4740_41bd882544841a5@godard.mail> Marc Haber pushed to branch master at Debian / adduser Commits: c6e23b61 by Marc Haber at 2025-08-14T18:59:36+02:00 move PATH initialization very early in program This allows early actions like reading the config file to produce logging without causing taint errors. This solves the issue reported in MR 106, but in a different way. Thanks: Luca Boccassi - - - - - 2 changed files: - adduser - deluser Changes: ===================================== adduser ===================================== @@ -46,6 +46,14 @@ my $version = "DVERSION"; my $encode_loaded; my $codeset; +# explicitly set PATH, because super (1) cleans up the path and makes adduser unusable; +# this is also a good idea for sudo (which doesn't clean up) +$ENV{"PATH"}="/bin:/usr/bin:/sbin:/usr/sbin"; +$ENV{"IFS"}=" \t\n"; +$ENV{"ENV"}=undef; +$ENV{"BASH_ENV"}=undef; +$ENV{"CDPATH"}=undef; + BEGIN { local $ENV{PERL_DL_NONLAZY}=1; eval { @@ -216,14 +224,6 @@ log_trace("special_home %s", decode($charset, $special_home)); preseed_config(\@defaults,\%config); -# explicitly set PATH, because super (1) cleans up the path and makes adduser unusable; -# this is also a good idea for sudo (which doesn't clean up) -$ENV{"PATH"}="/bin:/usr/bin:/sbin:/usr/sbin"; -$ENV{"IFS"}=" \t\n"; -$ENV{"ENV"}=undef; -$ENV{"BASH_ENV"}=undef; -$ENV{"CDPATH"}=undef; - # everyone can issue "--help" and "--version", but only root can go on if( $> != 0) { log_fatal( mtx("Only root may add a user or group to the system.") ); ===================================== deluser ===================================== @@ -42,6 +42,14 @@ my $codeset; my $install_more_packages; +# explicitly set PATH, because super (1) cleans up the path and makes deluser unusable; +# this is also a good idea for sudo (which doesn't clean up) +$ENV{"PATH"}="/bin:/usr/bin:/sbin:/usr/sbin"; +$ENV{"IFS"}=" \t\n"; +$ENV{"ENV"}=undef; +$ENV{"BASH_ENV"}=undef; +$ENV{"CDPATH"}=undef; + BEGIN { local $ENV{PERL_DL_NONLAZY}=1; eval { @@ -157,14 +165,6 @@ set_msglevel( $stderrmsglevel, $stdoutmsglevel, $logmsglevel ); preseed_config (\@defaults,\%config); -# explicitly set PATH, because super (1) cleans up the path and makes deluser unusable; -# this is also a good idea for sudo (which doesn't clean up) -$ENV{"PATH"}="/bin:/usr/bin:/sbin:/usr/sbin"; -$ENV{"IFS"}=" \t\n"; -$ENV{"ENV"}=undef; -$ENV{"BASH_ENV"}=undef; -$ENV{"CDPATH"}=undef; - # everyone can issue "--help" and "--version", but only root can go on if( $> != 0) { log_fatal( mtx("Only root may remove a user or group from the system.") ); View it on GitLab: https://salsa.debian.org/debian/adduser/-/commit/c6e23b61befe5200ef5becaba9383be437b6828a -- View it on GitLab: https://salsa.debian.org/debian/adduser/-/commit/c6e23b61befe5200ef5becaba9383be437b6828a You're receiving this email because of your account on salsa.debian.org. -------------- next part -------------- An HTML attachment was scrubbed... URL: From gitlab at salsa.debian.org Thu Aug 14 20:08:46 2025 From: gitlab at salsa.debian.org (Marc Haber (@zugschlus)) Date: Thu, 14 Aug 2025 19:08:46 +0000 Subject: [Pkg-shadow-devel] [Git][debian/adduser][master] Some minor messages' fixes. Message-ID: <689e343e9178f_41b80ee4525331@godard.mail> Marc Haber pushed to branch master at Debian / adduser Commits: c4df5eb7 by Alexander Golubev at 2025-08-14T21:04:50+03:00 Some minor messages' fixes. - - - - - 2 changed files: - adduser - deluser Changes: ===================================== adduser ===================================== @@ -1345,8 +1345,8 @@ sub sanitize_name { log_trace("sanitize name %s called. name_regex_var %s, name_regex %s, Now testing all numeric. ", $name, $name_regex_var, $name_regex); if ($name =~ qr/^-?[\d]+$/) { # this check cannot be turned off - log_err( mtx("To avoid ambiguity with numerical UIDs, usernames which - resemble numbers or negative numbers are not allowed.") ); + log_err( mtx("To avoid ambiguity with numerical UIDs, usernames which" . + "resemble numbers or negative numbers are not allowed.") ); exit( RET_INVALID_CHARS_IN_NAME ); } @@ -1367,10 +1367,10 @@ sub sanitize_name { log_trace("sanitize_name testing %s against insane chars %s", $name, def_min_regex); if ($name !~ def_min_regex) { # this check cannot be turned off - log_err( mtx("To avoid problems, the username must not start with a - dash, plus sign, or tilde, and it must not contain any of the - following: colon, comma, slash, or any whitespace characters - including spaces, tabs, and newlines.") ); + log_err( mtx("To avoid problems, the username must not start with a" . + "dash, plus sign, or tilde, and it must not contain any of the" . + "following: colon, comma, slash, or any whitespace characters" . + "including spaces, tabs, and newlines.") ); exit( RET_INVALID_CHARS_IN_NAME ); } @@ -1382,22 +1382,22 @@ sub sanitize_name { log_trace("sanitize_name checking %s ieee_regex %s", $name, def_ieee_name_regex); if ($name !~ def_ieee_name_regex && $name_check_level < 2) { - log_err( mtx("To avoid problems, the username should consist only of - letters, digits, underscores, periods, at signs and dashes, and - not start with a dash (as defined by IEEE Std 1003.1-2001). For - compatibility with Samba machine accounts, \$ is also supported - at the end of the username. (Use the `--allow-all-names' option - to bypass this restriction.)") ); + log_err( mtx("To avoid problems, the username should consist only of" . + "letters, digits, underscores, periods, at signs and dashes, and" . + "not start with a dash (as defined by IEEE Std 1003.1-2001). For" . + "compatibility with Samba machine accounts, \$ is also supported" . + "at the end of the username. (Use the `--allow-all-names' option" . + "to bypass this restriction.)") ); exit( RET_INVALID_CHARS_IN_NAME ); } if ($name_check_level) { log_info( mtx("Allowing use of questionable username.") ); } else { - log_err( mtx("Please enter a username matching the regular expression - configured via the %s configuration variable. Use the - `--allow-bad-names' option to relax this check or reconfigure - %s in configuration."), $name_regex_var, $name_regex_var ); + log_err( mtx("Please enter a username matching the regular expression" . + "configured via the %s configuration variable. Use the" . + "`--allow-bad-names' option to relax this check or reconfigure" . + "%s in configuration."), $name_regex_var, $name_regex_var ); exit( RET_INVALID_CHARS_IN_NAME ); } ===================================== deluser ===================================== @@ -299,7 +299,7 @@ if($action eq "deluser") { # Warn in any case if you want to remove the root account if ((defined($pw_uid)) && ($pw_uid == 0) && (!defined($no_preserve_root))) { - log_fatal( mtx("WARNING: You are just about to delete the root account (uid 0). Usually this is never required as it may render the whole system unusable. If you really want this, call deluser with parameter --no-preserve-root. Stopping now without having performed any action") ); + log_fatal( mtx("WARNING: You are just about to delete the root account (uid 0). Usually this is never required as it may render the whole system unusable. If you really want this, call deluser with parameter --no-preserve-root. Stopping now without having performed any action.") ); exit( RET_DONT_REMOVE_ROOT ); } @@ -430,10 +430,10 @@ if($action eq "deluser") { } } else { if ($config{'system'}) { - log_info( mtx("`%s' not executed. Skipping crontab removal. Package `cron' required."), + log_info( mtx("`%s' is not executable. Skipping crontab removal. Package `cron' required."), '/usr/bin/crontab' ); } else { - log_warn( mtx("`%s' not executed. Skipping crontab removal. Package `cron' required."), + log_warn( mtx("`%s' is not executable. Skipping crontab removal. Package `cron' required."), '/usr/bin/crontab' ); } } View it on GitLab: https://salsa.debian.org/debian/adduser/-/commit/c4df5eb760b6be76c4d7ac50b7fa13243795cc34 -- View it on GitLab: https://salsa.debian.org/debian/adduser/-/commit/c4df5eb760b6be76c4d7ac50b7fa13243795cc34 You're receiving this email because of your account on salsa.debian.org. -------------- next part -------------- An HTML attachment was scrubbed... URL: