Nicolas Graves <ngraves@HIDDEN>
to control <at> debbugs.gnu.org.
Full text available.
Received: (at 51785) by debbugs.gnu.org; 13 Nov 2021 22:49:22 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Sat Nov 13 17:49:22 2021
Received: from localhost ([127.0.0.1]:48366 helo=debbugs.gnu.org)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
id 1mm1pn-0005j0-D6
for submit <at> debbugs.gnu.org; Sat, 13 Nov 2021 17:49:22 -0500
Received: from 13.mo584.mail-out.ovh.net ([178.33.251.8]:58319)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <ngraves@HIDDEN>) id 1mm0Ct-00032B-N5
for 51785 <at> debbugs.gnu.org; Sat, 13 Nov 2021 16:05:05 -0500
Received: from player797.ha.ovh.net (unknown [10.108.1.112])
by mo584.mail-out.ovh.net (Postfix) with ESMTP id 260CD22340
for <51785 <at> debbugs.gnu.org>; Sat, 13 Nov 2021 21:05:02 +0000 (UTC)
Received: from ngraves.fr (201.238.0.109.rev.sfr.net [109.0.238.201])
(Authenticated sender: ngraves@HIDDEN)
by player797.ha.ovh.net (Postfix) with ESMTPSA id 7F790202A2EE3;
Sat, 13 Nov 2021 21:04:59 +0000 (UTC)
Authentication-Results: garm.ovh; auth=pass
(GARM-100R003fc396292-6c68-4678-83e0-e38d309f6faa,
65E45D71A6384DFBD99378824CE1DC8C6FBF2CD1) smtp.auth=ngraves@HIDDEN
X-OVh-ClientIp: 109.0.238.201
User-agent: mu4e 1.6.9; emacs 28.0.50
From: Nicolas Graves <ngraves@HIDDEN>
To: 51785 <at> debbugs.gnu.org
Subject: pam-gnupg
Date: Sat, 13 Nov 2021 21:11:58 +0100
Message-ID: <87tugfdax1.fsf@HIDDEN>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="=-=-="
X-Ovh-Tracer-Id: 2917488137135645207
X-VR-SPAMSTATE: OK
X-VR-SPAMSCORE: 0
X-VR-SPAMCAUSE: gggruggvucftvghtrhhoucdtuddrgedvuddrvdehgddugeehucetufdoteggodetrfdotffvucfrrhhofhhilhgvmecuqfggjfdpvefjgfevmfevgfenuceurghilhhouhhtmecuhedttdenucenucfjughrpegfhffvufffkfggtgesmhdtreertdertdenucfhrhhomheppfhitgholhgrshcuifhrrghvvghsuceonhhgrhgrvhgvshesnhhgrhgrvhgvshdrfhhrqeenucggtffrrghtthgvrhhnpefhheffleffhfeugfeltdelieeuhfeutdevgeefjeefudeileehgfevheefudehueenucffohhmrghinhepghhithhhuhgsrdgtohhmnecukfhppedtrddtrddtrddtpddutdelrddtrddvfeekrddvtddunecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmohguvgepshhmthhpohhuthdphhgvlhhopehplhgrhigvrhejleejrdhhrgdrohhvhhdrnhgvthdpihhnvghtpedtrddtrddtrddtpdhmrghilhhfrhhomhepnhhgrhgrvhgvshesnhhgrhgrvhgvshdrfhhrpdhrtghpthhtohephedujeekheesuggvsggsuhhgshdrghhnuhdrohhrgh
X-Spam-Score: -0.0 (/)
X-Debbugs-Envelope-To: 51785
X-Mailman-Approved-At: Sat, 13 Nov 2021 17:49:19 -0500
Cc: Josselin Poiret <dev@HIDDEN>, Tobias Geerinckx-Rice <me@HIDDEN>
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -1.0 (-)
--=-=-=
Content-Type: text/plain
Thanks for your answers Josselin and Tobias,
(For the record, I just pinned all the commits from other channels in my
channels.scm and pulled guix with guix pull --allow-downgrades
--disable-authentication)
I finally managed to get the pam module to work but it eventually raised
more questions than expected.
Basically now the module starts well, but my shepherd service gpg-agent
doesn't (I guess because pam starts it, and that shepherd can't take
over). It's fine for the purpose I was installing pam-gnupg for (having
direct access to password-store passwords after login), but hinders the
rest of related activities (e.g. signing commits).
Above this question, I was wondering about the order of pam-modules
startup. A look at the manual pages and the examples for modules show a
clear hierarchy for at least a few modules (pam_unix > pam_loginuid >
pam_elogind > pam_gnupg for instance), which is not respected in guix's
implementation (pam_elogind > pam_loginuid > pam_gnupg > pam_unix).
Although it seems to work, is it normal / purposeful / without
consequences ?
If no, as a solution, maybe implementing a hierarchy might help. For
instance, something like :
1) Base modules (pam_unix, pam_env, pam_loginuid)
2) Modules added elsewhere with pam-root-service (pam_elogind, graphical
login managers modules)
3) Other modules (pam_gnupg, pam_motd...)
The last question I have is about the configuration of pam_gnupg. On the
official repo (https://github.com/cruegge/pam-gnupg), it seems that
there is a recommended configuration (e.g. setting the priority as
optional), which is once again not respected in the actual
configuration. I did add the few lines to address this (but is there a
reason why that is not the case ?)
I'm willing to help make these changes if useful and on the right track,
but I don't have much experience with guile.
Cheers,
Nicolas
--=-=-=
Content-Type: text/x-patch; charset=utf-8
Content-Disposition: inline;
filename=0001-PATCH-gnu-add-pam-gnupg-to-login-service.patch
Content-Transfer-Encoding: quoted-printable
Content-Description: pam-gnupg-1
From dce83f5aeb2e7468a3d457f3d59c8851ac11a897 Mon Sep 17 00:00:00 2001
From: Nicolas Graves <ngraves@HIDDEN>
Date: Sat, 13 Nov 2021 13:11:54 +0100
Subject: [PATCH 1/3] [PATCH] gnu : add pam-gnupg to login service
---
gnu/services/base.scm | 8 ++++++--
1 file changed, 6 insertions(+), 2 deletions(-)
diff --git a/gnu/services/base.scm b/gnu/services/base.scm
index 50865055fe..b95fd9a4ff 100644
--- a/gnu/services/base.scm
+++ b/gnu/services/base.scm
@@ -16,6 +16,7 @@
;;; Copyright =C2=A9 2021 qblade <qblade@HIDDEN>
;;; Copyright =C2=A9 2021 Hui Lu <luhuins@HIDDEN>
;;; Copyright =C2=A9 2021 Maxim Cournoyer <maxim.cournoyer@HIDDEN>
+;;; Copyright =C2=A9 2021 Nicolas Graves <ngraves@HIDDEN>
;;;
;;; This file is part of GNU Guix.
;;;
@@ -743,7 +744,9 @@ (define-record-type* <login-configuration>
;; Allow empty passwords by default so that first-time users can log in =
when
;; the 'root' account has just been created.
(allow-empty-passwords? login-configuration-allow-empty-passwords?
- (default #t))) ;Boolean
+ (default #t)) ;Boolean
+ (gnupg? login-configuration-gnupg?
+ (default #f))) ;Boolean
=20
(define (login-pam-service config)
"Return the list of PAM service needed for CONF."
@@ -753,7 +756,8 @@ (define (login-pam-service config)
#:allow-empty-passwords?
(login-configuration-allow-empty-passwords? conf=
ig)
#:motd
- (login-configuration-motd config))))
+ (login-configuration-motd config)
+ #:gnupg? (login-configuration-gnupg? config))))
=20
(define login-service-type
(service-type (name 'login)
--=20
2.33.1
--=-=-=
Content-Type: text/x-patch
Content-Disposition: inline;
filename=0002-Trying-to-fix-pam-gnupg-configuration.patch
Content-Description: pam-gnupg-2
From 525d70b93b6c6b78a3ced92f72e264b4be1ed3de Mon Sep 17 00:00:00 2001
From: Nicolas Graves <ngraves@HIDDEN>
Date: Sat, 13 Nov 2021 20:09:02 +0100
Subject: [PATCH 2/3] Trying to fix pam-gnupg configuration.
---
gnu/system/pam.scm | 10 ++++++----
1 file changed, 6 insertions(+), 4 deletions(-)
diff --git a/gnu/system/pam.scm b/gnu/system/pam.scm
index a31daada59..d6d02e59f5 100644
--- a/gnu/system/pam.scm
+++ b/gnu/system/pam.scm
@@ -235,8 +235,9 @@ (module "pam_unix.so")
unix))
(if gnupg?
(list (pam-entry
- (control "required")
- (module (file-append pam-gnupg "/lib/security/pam_gnupg.so"))))
+ (control "optional")
+ (module (file-append pam-gnupg "/lib/security/pam_gnupg.so"))
+ (arguments '("store-only"))))
'())))
(password (list (pam-entry
(control "required")
@@ -255,12 +256,13 @@ (module "pam_motd.so")
(control "required")
(module "pam_loginuid.so")))
'())
+ ,env ,unix
,@(if gnupg?
(list (pam-entry
- (control "required")
+ (control "optional")
(module (file-append pam-gnupg "/lib/security/pam_gnupg.so"))))
'())
- ,env ,unix))))))
+ ))))))
(define (rootok-pam-service command)
"Return a PAM service for COMMAND such that 'root' does not need to
--
2.33.1
--=-=-=
Content-Type: text/x-patch
Content-Disposition: inline;
filename=0003-Moving-parts-of-pam-configuration-for-better-complia.patch
Content-Description: pam-gnupg-3
From 9bb9620620d4e132d0d422bda7a57d2c0dfee28c Mon Sep 17 00:00:00 2001
From: Nicolas Graves <ngraves@HIDDEN>
Date: Sat, 13 Nov 2021 21:48:16 +0100
Subject: [PATCH 3/3] Moving parts of pam configuration for better compliance.
---
gnu/system/pam.scm | 14 +++++++-------
1 file changed, 7 insertions(+), 7 deletions(-)
diff --git a/gnu/system/pam.scm b/gnu/system/pam.scm
index d6d02e59f5..0f0b09e347 100644
--- a/gnu/system/pam.scm
+++ b/gnu/system/pam.scm
@@ -244,19 +244,19 @@ (module (file-append pam-gnupg "/lib/security/pam_gnupg.so"))
(module "pam_unix.so")
;; Store SHA-512 encrypted passwords in /etc/shadow.
(arguments '("sha512" "shadow")))))
- (session `(,@(if motd
+ (session `(,env ,unix
+ ,@(if login-uid?
+ (list (pam-entry ;to fill in /proc/self/loginuid
+ (control "required")
+ (module "pam_loginuid.so")))
+ '())
+ ,@(if motd
(list (pam-entry
(control "optional")
(module "pam_motd.so")
(arguments
(list #~(string-append "motd=" #$motd)))))
'())
- ,@(if login-uid?
- (list (pam-entry ;to fill in /proc/self/loginuid
- (control "required")
- (module "pam_loginuid.so")))
- '())
- ,env ,unix
,@(if gnupg?
(list (pam-entry
(control "optional")
--
2.33.1
--=-=-=--
guix-patches@HIDDEN:bug#51785; Package guix-patches.
Full text available.Received: (at 51785) by debbugs.gnu.org; 12 Nov 2021 12:52:08 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Fri Nov 12 07:52:08 2021 Received: from localhost ([127.0.0.1]:43684 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mlW2K-0007R0-Dv for submit <at> debbugs.gnu.org; Fri, 12 Nov 2021 07:52:08 -0500 Received: from tobias.gr ([80.241.217.52]:42746) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <me@HIDDEN>) id 1mlW2E-0007QV-QO for 51785 <at> debbugs.gnu.org; Fri, 12 Nov 2021 07:52:07 -0500 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; s=2018; bh=HaHxG06DA1KOe HQ6HRxo3Z4S5jDc84P/YxTgWK8b+Ic=; h=references:in-reply-to:subject:cc: to:from:date; d=tobias.gr; b=E2itSWpJ5lhBNbn7Z0VUB9jJdSmFjqkv6eYYa7to/ Np+j49hrJ6ivfuZkuxrs0nfvyWVTWI4tcxcTDDrsOkKoO60ST6R9bTrhu4t8ubThhjRMDO wLKrnaX3wuLUSDLidB/KPyFXeGSjVgldhKslJoxYOgizjgot8hNShSuKyyLTbMZAzgNdDq F6ah+97u1PWbT+lm6MlrYPuHU6QGHoUyVvfffIrCAAVDoQuKbxjXZD3oZml3bm1fAgoIas yN5c3XJXOZ/m4NSuQTIPXE2473Xox8Img/ol0PUImhqyZMZQU4Lh4VTRjj7FlDIcZ9sNPN Ij7wttyqjMFn8tMeESFlQ== Received: by submission.tobias.gr (OpenSMTPD) with ESMTP id 3630cc31; Fri, 12 Nov 2021 12:51:59 +0000 (UTC) MIME-Version: 1.0 Date: Fri, 12 Nov 2021 13:51:59 +0100 From: Tobias Geerinckx-Rice <me@HIDDEN> To: Nicolas Graves <ngraves@HIDDEN> Subject: Re: [bug#51785] pam-gnupg In-Reply-To: <87czn53ijd.fsf@HIDDEN> References: <87czn53ijd.fsf@HIDDEN> Message-ID: <35313aaf61a42f0c333cab6b300e6bc0@HIDDEN> Content-Type: text/plain; charset=US-ASCII; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Score: -0.0 (/) X-Debbugs-Envelope-To: 51785 Cc: 51785 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -1.0 (-) Nicolas, On 2021-11-12 8:45, Nicolas Graves via Guix-patches via wrote: > So I'm trying to test the patch, have downloaded guix source code, > added > it in a new branch, updated my channels, used guix shell for setting > the > environment, but now I get the following error when I try to pull to > test my version : > > guix pull: erreur : Erreur Git : cannot locate remote-tracking branch > 'origin/keyring' Guix authentication code expects a local 'keyring' branch, similar to how you currently have a local 'master' branch tracking the upstream 'master' branch (which by default is called 'origin/master'). If you haven't changed the default 'origin' name you should be able to simply $ git checkout origin/keyring # creates local tracking branch as side effect $ git checkout master # to 'switch back' and be on your merry way. Replace 'origin/' if you have. (This is from memory; apologies for possible typos/thinkos.) Kind regards, T G-R Sent from a Web browser. Excuse or enjoy my brevity.
guix-patches@HIDDEN:bug#51785; Package guix-patches.
Full text available.
Received: (at submit) by debbugs.gnu.org; 12 Nov 2021 09:16:18 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Fri Nov 12 04:16:18 2021
Received: from localhost ([127.0.0.1]:43436 helo=debbugs.gnu.org)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
id 1mlSfQ-0005fH-Ol
for submit <at> debbugs.gnu.org; Fri, 12 Nov 2021 04:16:18 -0500
Received: from lists.gnu.org ([209.51.188.17]:35336)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <ngraves@HIDDEN>) id 1mlRZd-0005ip-FY
for submit <at> debbugs.gnu.org; Fri, 12 Nov 2021 03:06:16 -0500
Received: from eggs.gnu.org ([209.51.188.92]:58374)
by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
(Exim 4.90_1) (envelope-from <ngraves@HIDDEN>)
id 1mlRZd-0004ZH-3z
for guix-patches@HIDDEN; Fri, 12 Nov 2021 03:06:13 -0500
Received: from 4.mo583.mail-out.ovh.net ([178.33.111.247]:57175)
by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
(Exim 4.90_1) (envelope-from <ngraves@HIDDEN>)
id 1mlRZa-0008MB-GE
for guix-patches@HIDDEN; Fri, 12 Nov 2021 03:06:12 -0500
Received: from player774.ha.ovh.net (unknown [10.108.20.161])
by mo583.mail-out.ovh.net (Postfix) with ESMTP id 1EB3722CF7
for <guix-patches@HIDDEN>; Fri, 12 Nov 2021 08:06:00 +0000 (UTC)
Received: from ngraves.fr (201.238.0.109.rev.sfr.net [109.0.238.201])
(Authenticated sender: ngraves@HIDDEN)
by player774.ha.ovh.net (Postfix) with ESMTPSA id 8996F2448DB79
for <guix-patches@HIDDEN>; Fri, 12 Nov 2021 08:05:59 +0000 (UTC)
Authentication-Results: garm.ovh; auth=pass
(GARM-106R006641d904f-8fe6-402f-9c02-c2da628cc504,
DAD1F27CF900FAED80F31A30957AD9B4DED822F4) smtp.auth=ngraves@HIDDEN
X-OVh-ClientIp: 109.0.238.201
User-agent: mu4e 1.6.9; emacs 28.0.50
From: Nicolas Graves <ngraves@HIDDEN>
To: guix-patches@HIDDEN
Subject: pam-gnupg
Date: Fri, 12 Nov 2021 08:45:09 +0100
Message-ID: <87czn53ijd.fsf@HIDDEN>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="=-=-="
X-Ovh-Tracer-Id: 2334834934061720314
X-VR-SPAMSTATE: OK
X-VR-SPAMSCORE: 0
X-VR-SPAMCAUSE: gggruggvucftvghtrhhoucdtuddrgedvuddrvddvgdduudeiucetufdoteggodetrfdotffvucfrrhhofhhilhgvmecuqfggjfdpvefjgfevmfevgfenuceurghilhhouhhtmecuhedttdenucenucfjughrpegfhffvufffkfggtgesmhdtreertdertdenucfhrhhomheppfhitgholhgrshcuifhrrghvvghsuceonhhgrhgrvhgvshesnhhgrhgrvhgvshdrfhhrqeenucggtffrrghtthgvrhhnpeefveduledtjeeiiefhiedugfegvdeggffhieegtedukeetkeejveegfeevleefhfenucffohhmrghinhepghhnuhdrohhrghenucfkpheptddrtddrtddrtddpuddtledrtddrvdefkedrvddtudenucevlhhushhtvghrufhiiigvpedtnecurfgrrhgrmhepmhhouggvpehsmhhtphhouhhtpdhhvghlohepphhlrgihvghrjeejgedrhhgrrdhovhhhrdhnvghtpdhinhgvtheptddrtddrtddrtddpmhgrihhlfhhrohhmpehnghhrrghvvghssehnghhrrghvvghsrdhfrhdprhgtphhtthhopehguhhigidqphgrthgthhgvshesghhnuhdrohhrgh
Received-SPF: pass client-ip=178.33.111.247; envelope-from=ngraves@HIDDEN;
helo=4.mo583.mail-out.ovh.net
X-Spam_score_int: -18
X-Spam_score: -1.9
X-Spam_bar: -
X-Spam_report: (-1.9 / 5.0 requ) BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001,
RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001,
SPF_PASS=-0.001 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-Spam-Score: -1.3 (-)
X-Debbugs-Envelope-To: submit
X-Mailman-Approved-At: Fri, 12 Nov 2021 04:16:15 -0500
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -2.3 (--)
--=-=-=
Content-Type: text/plain
Hi !
I'm still discovering / experimenting with guix thanks to the videos of
David Wilson. Sorry if it's not the appropriate place to discuss this.
I'm trying to add pam-gnupg without having a graphical login manager.
I figured out it should really be as simple as the few lines I added in
the attached patch, since the feature has already been implemented for a
few graphical login managers.
It has been done here : https://issues.guix.gnu.org/47364
So I'm trying to test the patch, have downloaded guix source code, added
it in a new branch, updated my channels, used guix shell for setting the
environment, but now I get the following error when I try to pull to
test my version :
guix pull: erreur : Erreur Git : cannot locate remote-tracking branch
'origin/keyring'
The patch is straightforward, might not need much testing, but if
needed, I would be glad to received some smart advice :)
Thanks in advance, thanks for the outstanding work on Guix !
Nicolas
--=-=-=
Content-Type: text/x-patch
Content-Disposition: attachment;
filename=0001-Adding-gnupg-to-pam-login-service.patch
From d8d3d8d7614d443dea805b46589f9b16f8558de2 Mon Sep 17 00:00:00 2001
From: Nicolas Graves <ngraves@HIDDEN>
Date: Fri, 12 Nov 2021 00:39:13 +0100
Subject: [PATCH] Adding gnupg to pam-login-service.
---
gnu/services/base.scm | 7 +++++--
1 file changed, 5 insertions(+), 2 deletions(-)
diff --git a/gnu/services/base.scm b/gnu/services/base.scm
index 50865055fe..887213c52e 100644
--- a/gnu/services/base.scm
+++ b/gnu/services/base.scm
@@ -743,7 +743,9 @@ (define-record-type* <login-configuration>
;; Allow empty passwords by default so that first-time users can log in when
;; the 'root' account has just been created.
(allow-empty-passwords? login-configuration-allow-empty-passwords?
- (default #t))) ;Boolean
+ (default #t)) ;Boolean
+ (gnupg? login-configuration-gnupg?
+ (default #f))) ;Boolean
(define (login-pam-service config)
"Return the list of PAM service needed for CONF."
@@ -753,7 +755,8 @@ (define (login-pam-service config)
#:allow-empty-passwords?
(login-configuration-allow-empty-passwords? config)
#:motd
- (login-configuration-motd config))))
+ (login-configuration-motd config)
+ #:gnupg? (login-configuration-gnupg? config))))
(define login-service-type
(service-type (name 'login)
--
2.33.1
--=-=-=--
Nicolas Graves <ngraves@HIDDEN>:guix-patches@HIDDEN.
Full text available.guix-patches@HIDDEN:bug#51785; Package guix-patches.
Full text available.
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997 nCipher Corporation Ltd,
1994-97 Ian Jackson.