Set root user's shell and password with custom /etc/passwd and /etc/shadow

Correct shadow file permissions from build.sh.

Set root user's shell and password with custom /etc/passwd and /etc/shadow
66895375 · nl6720 · 12b02406 · 66895375 · 66895375 · 66895375
Unverified Commit 66895375 authored 4 years ago by nl6720
--- a/configs/baseline/airootfs/etc/shadow
+++ b/configs/baseline/airootfs/etc/shadow
+root::14871::::::
--- a/configs/baseline/build.sh
+++ b/configs/baseline/build.sh
@@ -38,6 +38,16 @@ make_setup_mkinitcpio() {
        -r 'mkinitcpio -c /etc/mkinitcpio-archiso.conf -k /boot/vmlinuz-linux -g /boot/archiso.img' run
 }

+# Prepare working directory and copy custom airootfs files (airootfs)
+make_custom_airootfs() {
+    local _airootfs="${work_dir}/airootfs"
+
+    if [[ -d "${script_path}/airootfs" ]]; then
+        cp -af --no-preserve=ownership -- "${script_path}/airootfs/." "${_airootfs}"
+        [[ -e "${_airootfs}/etc/shadow" ]] && chmod -f 0400 -- "${_airootfs}/etc/shadow"
+    fi
+}
+
 # Prepare ${install_dir}/boot/
 make_boot() {
    mkdir -p "${work_dir}/iso/${install_dir}/boot/${arch}"
@@ -80,6 +90,7 @@ make_iso() {

 run_once make_basefs
 run_once make_setup_mkinitcpio
+run_once make_custom_airootfs
 run_once make_boot
 run_once make_syslinux
 run_once make_isolinux

--- a/configs/releng/airootfs/etc/passwd
+++ b/configs/releng/airootfs/etc/passwd
+root:x:0:0:root:/root:/usr/bin/zsh
--- a/configs/releng/airootfs/etc/shadow
+++ b/configs/releng/airootfs/etc/shadow
+root::14871::::::
--- a/configs/releng/airootfs/root/customize_airootfs.sh
+++ b/configs/releng/airootfs/root/customize_airootfs.sh
@@ -5,10 +5,7 @@ set -e -u
 sed -i 's/#\(en_US\.UTF-8\)/\1/' /etc/locale.gen
 locale-gen

-usermod -s /usr/bin/zsh root
 cp -aT /etc/skel/ /root/
-# unset the root password
-passwd -d root

 sed -i 's/#\(PermitRootLogin \).\+/\1yes/' /etc/ssh/sshd_config
 sed -i "s/#Server/Server/g" /etc/pacman.d/mirrorlist
--- a/configs/releng/build.sh
+++ b/configs/releng/build.sh
@@ -125,7 +125,8 @@ make_customize_airootfs() {
    fi
    rm "${work_dir}/x86_64/airootfs/root/customize_airootfs.sh"

-    chmod -f 750 "${work_dir}/x86_64/airootfs/root"
+    [[ -e "${work_dir}/x86_64/airootfs/etc/shadow" ]] && chmod -f 0400 -- "${work_dir}/x86_64/airootfs/etc/shadow"
+    [[ -e "${work_dir}/x86_64/airootfs/root" ]] && chmod -f 0750 -- "${work_dir}/x86_64/airootfs/root"
 }

 # Prepare kernel/initramfs ${install_dir}/boot/