mirror of
https://github.com/systemd/systemd.git
synced 2024-11-01 17:51:22 +03:00
c9c4899f44
Closes #18669. This creates a "well known" for sgx_enclave ownership. By doing this here we avoid the risk that various projects making use of the device will provide similar-but-slightly-incompatible installation instructions, in particular using different group names. ACLs are actually a better approach to grant access to users, but not in all cases, so we want to provide a standard group anyway. Mode is 0o660, not 0o666 because this is very new code and distributions are likely to not want to give full access to all users. This might change in the future, but being conservative is a good default in the beginning. Rules for /dev/sgx_provision will be provided by libsg-ae-pce: https://github.com/intel/linux-sgx/issues/678.
40 lines
1.2 KiB
Plaintext
40 lines
1.2 KiB
Plaintext
# This file is part of systemd.
|
|
#
|
|
# systemd is free software; you can redistribute it and/or modify it
|
|
# under the terms of the GNU Lesser General Public License as published by
|
|
# the Free Software Foundation; either version 2.1 of the License, or
|
|
# (at your option) any later version.
|
|
|
|
# The superuser
|
|
u root 0 "Super User" /root
|
|
|
|
# The nobody user for NFS file systems
|
|
u @NOBODY_USER_NAME@ 65534 "Nobody" -
|
|
|
|
# Administrator group: can *see* more than normal users
|
|
g adm - - -
|
|
|
|
# Administrator group: can *do* more than normal users
|
|
g wheel - - -
|
|
|
|
# Access to certain kernel and userspace facilities
|
|
g kmem - - -
|
|
g tty @TTY_GID@ - -
|
|
g utmp - - -
|
|
|
|
# Hardware access groups
|
|
g audio - - -
|
|
g cdrom - - -
|
|
g dialout - - -
|
|
g disk - - -
|
|
g input - - -
|
|
g kvm - - -
|
|
g lp - - -
|
|
g render - - -
|
|
g sgx - - -
|
|
g tape - - -
|
|
g video - - -
|
|
|
|
# Default group for normal users
|
|
g users @USERS_GID@ - -
|