diff options
| author | Peter Marko <peter.marko@siemens.com> | 2023-02-24 14:53:09 +0100 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2023-03-14 17:47:40 +0000 |
| commit | 2c4fd25010c520930076e2821503ff2d1f28d5d9 (patch) | |
| tree | 2afeac26992245e1e9269ea592d2fa1c7de31fde | |
| parent | e3f24d438b19a0c52d6e081b4441ea46b3a33e7e (diff) | |
| download | poky-2c4fd25010c520930076e2821503ff2d1f28d5d9.tar.gz | |
systemd: add group sgx to udev package
>From NEWS for v250:
* Device nodes for the Software Guard eXtension enclaves (sgx_vepc) are
now also owned by the system group "sgx".
>From NEWS for v248:
* Intel SGX enclave device nodes (which expose a security feature of
newer Intel CPUs) will now be owned by a new system group "sgx".
Fixes following journal error entry during startup:
/lib/udev/rules.d/50-udev-default.rules:43 Unknown group 'sgx', ignoring
This is seen already on kirkstone.
(From OE-Core rev: 46334b526678ebfc8ef9cb184886eba47797eb6e)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit bab455cd9b1b82e778f8523a767eb281edf6689e)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
| -rw-r--r-- | meta-selftest/files/static-group | 1 | ||||
| -rw-r--r-- | meta/recipes-core/systemd/systemd_251.8.bb | 2 |
2 files changed, 2 insertions, 1 deletions
diff --git a/meta-selftest/files/static-group b/meta-selftest/files/static-group index b13dde3218..cbec6f1377 100644 --- a/meta-selftest/files/static-group +++ b/meta-selftest/files/static-group | |||
| @@ -24,3 +24,4 @@ weston-launch:x:524: | |||
| 24 | weston:x:525: | 24 | weston:x:525: |
| 25 | wayland:x:526: | 25 | wayland:x:526: |
| 26 | render:x:527: | 26 | render:x:527: |
| 27 | sgx:x:528: | ||
diff --git a/meta/recipes-core/systemd/systemd_251.8.bb b/meta/recipes-core/systemd/systemd_251.8.bb index 8f2fb90455..3c87e71485 100644 --- a/meta/recipes-core/systemd/systemd_251.8.bb +++ b/meta/recipes-core/systemd/systemd_251.8.bb | |||
| @@ -401,7 +401,7 @@ USERADD_PACKAGES = "${PN} ${PN}-extra-utils \ | |||
| 401 | ${@bb.utils.contains('PACKAGECONFIG', 'journal-upload', '${PN}-journal-upload', '', d)} \ | 401 | ${@bb.utils.contains('PACKAGECONFIG', 'journal-upload', '${PN}-journal-upload', '', d)} \ |
| 402 | " | 402 | " |
| 403 | GROUPADD_PARAM:${PN} = "-r systemd-journal;" | 403 | GROUPADD_PARAM:${PN} = "-r systemd-journal;" |
| 404 | GROUPADD_PARAM:udev = "-r render" | 404 | GROUPADD_PARAM:udev = "-r render;-r sgx;" |
| 405 | GROUPADD_PARAM:${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'polkit_hostnamed_fallback', '-r systemd-hostname;', '', d)}" | 405 | GROUPADD_PARAM:${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'polkit_hostnamed_fallback', '-r systemd-hostname;', '', d)}" |
| 406 | USERADD_PARAM:${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'coredump', '--system -d / -M --shell /sbin/nologin systemd-coredump;', '', d)}" | 406 | USERADD_PARAM:${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'coredump', '--system -d / -M --shell /sbin/nologin systemd-coredump;', '', d)}" |
| 407 | USERADD_PARAM:${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'networkd', '--system -d / -M --shell /sbin/nologin systemd-network;', '', d)}" | 407 | USERADD_PARAM:${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'networkd', '--system -d / -M --shell /sbin/nologin systemd-network;', '', d)}" |