diff options
| author | Peter Marko <peter.marko@siemens.com> | 2023-02-24 14:53:09 +0100 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2023-03-20 17:20:44 +0000 |
| commit | 3a3b0c66e19670d0f5a76db197d10536cc5cca19 (patch) | |
| tree | f12d8f4d7abd021cdff511c22b65b0a05eeab361 | |
| parent | c008ab33954d98361385795cfc494221f231d176 (diff) | |
| download | poky-3a3b0c66e19670d0f5a76db197d10536cc5cca19.tar.gz | |
systemd: add group sgx to udev package
>From NEWS for v250:
* Device nodes for the Software Guard eXtension enclaves (sgx_vepc) are
now also owned by the system group "sgx".
>From NEWS for v248:
* Intel SGX enclave device nodes (which expose a security feature of
newer Intel CPUs) will now be owned by a new system group "sgx".
Fixes following journal error entry during startup:
/lib/udev/rules.d/50-udev-default.rules:43 Unknown group 'sgx', ignoring
This is seen already on kirkstone.
(From OE-Core rev: 3fd47697df858d4093d9cb4c6a378fc07aa4d064)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit bab455cd9b1b82e778f8523a767eb281edf6689e)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
| -rw-r--r-- | meta-selftest/files/static-group | 1 | ||||
| -rw-r--r-- | meta/recipes-core/systemd/systemd_250.5.bb | 2 |
2 files changed, 2 insertions, 1 deletions
diff --git a/meta-selftest/files/static-group b/meta-selftest/files/static-group index b13dde3218..cbec6f1377 100644 --- a/meta-selftest/files/static-group +++ b/meta-selftest/files/static-group | |||
| @@ -24,3 +24,4 @@ weston-launch:x:524: | |||
| 24 | weston:x:525: | 24 | weston:x:525: |
| 25 | wayland:x:526: | 25 | wayland:x:526: |
| 26 | render:x:527: | 26 | render:x:527: |
| 27 | sgx:x:528: | ||
diff --git a/meta/recipes-core/systemd/systemd_250.5.bb b/meta/recipes-core/systemd/systemd_250.5.bb index 7df7bca4cc..ef524e0e3d 100644 --- a/meta/recipes-core/systemd/systemd_250.5.bb +++ b/meta/recipes-core/systemd/systemd_250.5.bb | |||
| @@ -397,7 +397,7 @@ USERADD_PACKAGES = "${PN} ${PN}-extra-utils \ | |||
| 397 | ${@bb.utils.contains('PACKAGECONFIG', 'journal-upload', '${PN}-journal-upload', '', d)} \ | 397 | ${@bb.utils.contains('PACKAGECONFIG', 'journal-upload', '${PN}-journal-upload', '', d)} \ |
| 398 | " | 398 | " |
| 399 | GROUPADD_PARAM:${PN} = "-r systemd-journal;" | 399 | GROUPADD_PARAM:${PN} = "-r systemd-journal;" |
| 400 | GROUPADD_PARAM:udev = "-r render" | 400 | GROUPADD_PARAM:udev = "-r render;-r sgx;" |
| 401 | GROUPADD_PARAM:${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'polkit_hostnamed_fallback', '-r systemd-hostname;', '', d)}" | 401 | GROUPADD_PARAM:${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'polkit_hostnamed_fallback', '-r systemd-hostname;', '', d)}" |
| 402 | USERADD_PARAM:${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'coredump', '--system -d / -M --shell /sbin/nologin systemd-coredump;', '', d)}" | 402 | USERADD_PARAM:${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'coredump', '--system -d / -M --shell /sbin/nologin systemd-coredump;', '', d)}" |
| 403 | USERADD_PARAM:${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'networkd', '--system -d / -M --shell /sbin/nologin systemd-network;', '', d)}" | 403 | USERADD_PARAM:${PN} += "${@bb.utils.contains('PACKAGECONFIG', 'networkd', '--system -d / -M --shell /sbin/nologin systemd-network;', '', d)}" |