system: install, hurd: Use 'setuid-programs'.

This is a followup to a7ac19851b. * gnu/system/install.scm (installation-os)[setuid-programs]: Use 'setuid-program'. * gnu/system/hurd.scm (%setuid-programs/hurd): Use 'file-like->setuid-program'.
2025-01-11 13:49:23 -05:00 · 2021-08-12 12:28:26 +02:00 · 2021-08-12 12:28:26 +02:00 · 8b9a5641bc
commit 8b9a5641bc
parent 2826f488e4
2 changed files with 14 additions and 10 deletions
--- a/gnu/system/hurd.scm
+++ b/gnu/system/hurd.scm
@ -1,5 +1,5 @@
 ;;; GNU Guix --- Functional package management for GNU
-;;; Copyright © 2020 Ludovic Courtès <ludo@gnu.org>
+;;; Copyright © 2020, 2021 Ludovic Courtès <ludo@gnu.org>
 ;;; Copyright © 2020 Jan (janneke) Nieuwenhuizen <janneke@gnu.org>
 ;;;
 ;;; This file is part of GNU Guix.
@ -39,6 +39,7 @@ (define-module (gnu system hurd)
  #:use-module (gnu services hurd)
  #:use-module (gnu services shepherd)
  #:use-module (gnu system)
+  #:use-module (gnu system setuid)
  #:use-module (gnu system shadow)
  #:use-module (gnu system vm)
  #:export (%base-packages/hurd
@ -92,14 +93,15 @@ (define %base-services/hurd

 (define %setuid-programs/hurd
  ;; Default set of setuid-root programs.
-  (list (file-append shadow "/bin/passwd")
-        (file-append shadow "/bin/sg")
-        (file-append shadow "/bin/su")
-        (file-append shadow "/bin/newgrp")
-        (file-append shadow "/bin/newuidmap")
-        (file-append shadow "/bin/newgidmap")
-        (file-append sudo "/bin/sudo")
-        (file-append sudo "/bin/sudoedit")))
+  (map file-like->setuid-program
+       (list (file-append shadow "/bin/passwd")
+             (file-append shadow "/bin/sg")
+             (file-append shadow "/bin/su")
+             (file-append shadow "/bin/newgrp")
+             (file-append shadow "/bin/newuidmap")
+             (file-append shadow "/bin/newgidmap")
+             (file-append sudo "/bin/sudo")
+             (file-append sudo "/bin/sudoedit"))))

 (define %hurd-default-operating-system
  (operating-system
--- a/gnu/system/install.scm
+++ b/gnu/system/install.scm
@ -25,6 +25,7 @@
 (define-module (gnu system install)
  #:use-module (gnu)
  #:use-module (gnu system)
+  #:use-module (gnu system setuid)
  #:use-module (gnu bootloader u-boot)
  #:use-module (guix gexp)
  #:use-module (guix store)
@ -502,7 +503,8 @@ (define installation-os

    ;; We don't need setuid programs, except for 'passwd', which can be handy
    ;; if one is to allow remote SSH login to the machine being installed.
-    (setuid-programs (list (file-append shadow "/bin/passwd")))
+    (setuid-programs (list (setuid-program
+                            (program (file-append shadow "/bin/passwd")))))

    (pam-services
     ;; Explicitly allow for empty passwords.