services: guix: Allocate build user UIDs in the system range.

Until now we were allocating the UIDs of build users above 30000, which
is in "normal" user UID range.  This static allocation was unnecessary,
so this change lets the system allocate UIDs in the system range (below
1000).

* gnu/services/base.scm (guix-build-accounts): Remove #:first-uid, and
remove 'uid' field from 'user-account'.
This commit is contained in:
Ludovic Courtès 2019-03-10 23:32:18 +01:00
parent 45fef894eb
commit 309d87c3aa
No known key found for this signature in database
GPG key ID: 090B11993D9AEBB5

View file

@ -1481,16 +1481,14 @@ (define* (pam-limits-service #:optional (limits '()))
(define* (guix-build-accounts count #:key
(group "guixbuild")
(first-uid 30001)
(shadow shadow))
"Return a list of COUNT user accounts for Guix build users, with UIDs
starting at FIRST-UID, and under GID."
"Return a list of COUNT user accounts for Guix build users with the given
GID."
(unfold (cut > <> count)
(lambda (n)
(user-account
(name (format #f "guixbuilder~2,'0d" n))
(system? #t)
(uid (+ first-uid n -1))
(group group)
;; guix-daemon expects GROUP to be listed as a