mirror of
https://github.com/morgan9e/systemd
synced 2026-04-15 00:47:10 +09:00
69c9629da7
Background: Fedora/RHEL are switching to sysusers.d metadata for creation of users and groups for system users defined by packages (https://fedoraproject.org/wiki/Changes/RPMSuportForSystemdSysusers). Packages carry sysusers files. During package installation, rpm calls an program to execute on this config. This program may either be /usr/lib/rpm/sysusers.sh which calls useradd/groupadd, or /usr/bin/systemd-sysusers. To match the functionality provided by useradd/groupadd from the shadow-utils project, systemd-sysusers must emit audit events so that it provides a drop-in replacement. systemd-sysuers will emit audit events AUDIT_ADD_USER/AUDIT_ADD_GROUP when adding users and groups. The operation "names" are copied from shadow-utils, so the format of the events that is generated on success should be identical. On failure, things are more complicated. We write the whole file at once, once, so we first generate "success" messages for each entry, then we try to write the files, and if things fail, we generate failure messages to all entries that we failed to write.