From mboxrd@z Thu Jan  1 00:00:00 1970
X-GM-THRID: 7342481464494129152
X-Received: by 2002:a05:6870:220c:b0:220:b839:4bb0 with SMTP id i12-20020a056870220c00b00220b8394bb0mr4298470oaf.19.1709705645584;
        Tue, 05 Mar 2024 22:14:05 -0800 (PST)
X-BeenThere: isar-users@googlegroups.com
Received: by 2002:a05:6870:72c8:b0:220:894d:3e80 with SMTP id
 o8-20020a05687072c800b00220894d3e80ls639534oak.1.-pod-prod-05-us; Tue, 05 Mar
 2024 22:14:04 -0800 (PST)
X-Google-Smtp-Source: AGHT+IE3rzcruFLcRHc6uyFxoV7i0SKFq3NZdLrl+JoZQeRMv4OGQmXo8J0iXkEE37ZQUAl17eY9
X-Received: by 2002:a05:6358:52cf:b0:17c:2b7e:a5df with SMTP id z15-20020a05635852cf00b0017c2b7ea5dfmr3691689rwz.13.1709705644474;
        Tue, 05 Mar 2024 22:14:04 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1709705644; cv=none;
        d=google.com; s=arc-20160816;
        b=Fek/m9UcpeJOu69mKqdzr8QFgrkyps+fpoPoOXUsFMlgJJEEHOaSoEjGfufHjQwrj5
         kGDbbWCN6mJZx0Ex2AC/oypBMbUFVy1i4ZRHgaNwO2aQxKSKIiIXByR4+IRHW8frkYXO
         /AXm/ufkCQVFpvTXBFv5DYn9orBvhGZXjGEiQYanomk4NUbUW/Gus11OLhUmQL6lNdm+
         Az2T7uvWvA7zsR/py69hjDg+gVq07UoHB4w72oAmXXiWY+gPFwYn4KSTLyZkL1zetR1G
         gEZVIARhMl2RiQkFGNucsLgYqldn4Hxc6KCWBebJv1zpwVTIEfil0Zj1ssSFh7Rs5Cv0
         Jmtg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=content-transfer-encoding:mime-version:message-id:date:subject:cc
         :to:from;
        bh=9U1437pEnYgPbADOE5sCjLTiML9B+4mlQbom0CBBTqE=;
        fh=K/mZt3pelG5XhoKo7NmnVKDkBr0U6QSPt5Hs4miWPTI=;
        b=juv6TT0jmXNzO1j1yN3tG+nRAsWD/QISH70blh0tsEe9D4PfPOOPUPPKys5RW2ppxL
         y/XmrOuOn5KSs57uNO0sOVb0wG2l67HlT5oxMgdBNoE+F1dQVz5WrW5khHxDItWlDxmU
         FSfuj82tgvrjlxlhknkcammHn5m/53Tohdbp/UvdWLNEUuUUcD0rdV8CSC/CWDVJgls4
         SfawIqJu6cfNQRkrA5Kew8sHQY2TYwmTfoAEwjDV3DghA0Ysj5DP6xgF8xWOnTqtTlDD
         H+RSlpWP36A+SM4a8pE5MHVK/3vc3Gg5Np8x2erMyDhPgz2eHhBMH9OuIukZCTJXDOMq
         zbrA==;
        dara=google.com
ARC-Authentication-Results: i=1; gmr-mx.google.com;
       spf=pass (google.com: domain of adithya.balakumar@toshiba-tsip.com designates 210.130.202.152 as permitted sender) smtp.mailfrom=Adithya.Balakumar@toshiba-tsip.com
Return-Path: <Adithya.Balakumar@toshiba-tsip.com>
Received: from mo-csw.securemx.jp (mo-csw1802.securemx.jp. [210.130.202.152])
        by gmr-mx.google.com with ESMTPS id el2-20020ad459c2000000b006900279cce5si909998qvb.3.2024.03.05.22.14.03
        for <isar-users@googlegroups.com>
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Tue, 05 Mar 2024 22:14:04 -0800 (PST)
Received-SPF: pass (google.com: domain of adithya.balakumar@toshiba-tsip.com designates 210.130.202.152 as permitted sender) client-ip=210.130.202.152;
Authentication-Results: gmr-mx.google.com;
       spf=pass (google.com: domain of adithya.balakumar@toshiba-tsip.com designates 210.130.202.152 as permitted sender) smtp.mailfrom=Adithya.Balakumar@toshiba-tsip.com
Received: by mo-csw.securemx.jp (mx-mo-csw1802) id 4266E1E43343950; Wed, 6 Mar 2024 15:14:01 +0900
X-Iguazu-Qid: 2yAaYKYb3j55dVW6o4
X-Iguazu-QSIG: v=2; s=0; t=1709705640; q=2yAaYKYb3j55dVW6o4; m=iOTGZuGT+YzTyOOey9fkUDi4mhBizjEJkrTM963cdBY=
Received: from imx2-a.toshiba.co.jp (imx2-a.toshiba.co.jp [106.186.93.35])
	by relay.securemx.jp (mx-mr1800) id 4266E0o43191482
	(version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT);
	Wed, 6 Mar 2024 15:14:00 +0900
From: Adithya Balakumar <Adithya.Balakumar@toshiba-tsip.com>
To: isar-users@googlegroups.com, amikan@ilbers.de
Cc: kazuhiro3.hayashi@toshiba.co.jp, dinesh.kumar@toshiba-tsip.com,
        shivanand.kunijadar@toshiba-tsip.com, sai.sathujoda@toshiba-tsip.com,
        adithya.balakumar@toshiba-tsip.com
Subject: [PATCH v2 0/2] Fix reproducibility of /etc/shadow file when image built on different days
Date: Wed,  6 Mar 2024 11:44:21 +0530
X-TSB-HOP2: ON
Message-Id: <20240306061423.1088541-1-Adithya.Balakumar@toshiba-tsip.com>
X-Mailer: git-send-email 2.39.2
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-OriginalArrivalTime: 06 Mar 2024 06:13:58.0417 (UTC) FILETIME=[79BA3810:01DA6F8D]
X-TUID: xneFHcQt3PvR

The third field in the /etc/shadow file (sp_lstchg) contains the date of
the last password change expressed as the number of days since Jan 1, 1970.
As this is a relative time, creating a user today will result in:

username:17238:0:99999:7:::
whilst creating the same user tomorrow will result in:

username:17239:0:99999:7:::

This impacts reproducibility of images when built on different days.

Since /etc/shadow honours SOURCE_DATE_EPOCH, this patchset makes the
SOURCE_DATE_EPOCH variable available when the /etc/shadow file is
created/modified.

Changes in v2:
- Replaced "! -z" with "-n" while checking for value of SOURCE_DATE_EPOCH
- Handle failure if bitbake var for SOURCE_DATE_EPOCH is empty

Adithya Balakumar (2):
  isar-bootstrap.inc: Export SOURCE_DATE_EPOCH variable
  image-account-extension.bbclass: Export SOURCE_DATE_EPOCH variable

 meta/classes/image-account-extension.bbclass        | 4 ++++
 meta/recipes-core/isar-bootstrap/isar-bootstrap.inc | 4 ++++
 2 files changed, 8 insertions(+)

-- 
2.39.2