Add initial sysusers macros

These are derived from Fedora's systemd-rpm-macros package, adapted
for Debian/Ubuntu and debbuild.

Author: Conan-Kudo

debbuild-macros.spec

@@ -91,17 +91,23 @@ with Debian Policy.
 mkdir -p %{buildroot}%{_debconfigdir}
 cp -av gpgverify %{buildroot}%{_debconfigdir}
 cp -av cmake/cmake-* %{buildroot}%{_debconfigdir}
+cp -av sysusers.generate-pre.sh %{buildroot}%{_debconfigdir}
 mkdir -p %{buildroot}%{_debmacrodir}
 cp -av macros.* %{buildroot}%{_debmacrodir}
 
 %if (0%{?debian} && 0%{?debian} < 8) || (0%{?ubuntu} && 0%{?ubuntu} < 1504)
+rm -fv %{buildroot}%{_debconfigdir}/sysusers.generate-pre.sh
 rm -fv %{buildroot}%{_debmacrodir}/macros.systemd
+rm -fv %{buildroot}%{_debmacrodir}/macros.sysusers
 %endif
 
 %files
 %doc README.md
 %license LICENSE*
 %{_debconfigdir}/gpgverify
+%if !((0%{?debian} && 0%{?debian} < 8) || (0%{?ubuntu} && 0%{?ubuntu} < 1504))
+%{_debconfigdir}/sysusers.generate-pre.sh
+%endif
 %{_debconfigdir}/cmake-*
 %{_debmacrodir}/macros.*
 

macros.sysusers

@@ -0,0 +1,12 @@
+# SPDX-License-Identifier: MIT
+
+# RPM macros for packages creating system accounts
+#
+# Turn a sysusers.d file into macros specified by
+# https://docs.fedoraproject.org/en-US/packaging-guidelines/UsersAndGroups/#_dynamic_allocation
+
+%sysusers_requires_compat Requires(pre): passwd
+
+%sysusers_create_compat() \
+%(%{_debconfigdir}/sysusers.generate-pre.sh %{?*}) \
+%{nil}

sysusers.generate-pre.sh

@@ -0,0 +1,81 @@
+#!/bin/bash
+
+# SPDX-License-Identifier: MIT
+
+# This script turns sysuser.d files into scriptlets mandated by Fedora
+# packaging guidelines. The general idea is to define users using the
+# declarative syntax but to turn this into traditional scriptlets.
+
+user() {
+    user="$1"
+    uid="$2"
+    desc="$3"
+    group="$4"
+    home="$5"
+    shell="$6"
+
+    [ "$desc" = '-' ] && desc=
+    { [ "$home" = '-' ] || [ "$home" = '' ]; } && home=/
+    { [ "$shell" = '-' ] || [ "$shell" = '' ]; } && shell=/sbin/nologin
+
+    if [ "$uid" = '-' ] || [ "$uid" = '' ]; then
+        cat <<EOF
+getent passwd '$user' >/dev/null || \\
+    useradd -r -g '$group' -d '$home' -s '$shell' -c '$desc' '$user'
+EOF
+    else
+        cat <<EOF
+if ! getent passwd '$user' >/dev/null ; then
+    if ! getent passwd '$uid' >/dev/null ; then
+        useradd -r -u '$uid' -g '$group' -d '$home' -s /sbin/nologin -c '$desc' '$user'
+    else
+        useradd -r -g '$group' -d '$home' -s /sbin/nologin -c '$desc' '$user'
+    fi
+fi
+
+EOF
+    fi
+}
+
+group() {
+    group="$1"
+    gid="$2"
+    if [ "$gid" = '-' ]; then
+        cat <<-EOF
+	getent group '$group' >/dev/null || groupadd -r '$group'
+	EOF
+    else
+        cat <<-EOF
+	getent group '$group' >/dev/null || groupadd -f -g '$gid' -r '$group'
+	EOF
+    fi
+}
+
+parse() {
+    while read -r line || [ -n "$line" ] ; do
+        { [ "${line:0:1}" = '#' ] || [ "${line:0:1}" = ';' ]; } && continue
+        line="${line## *}"
+        [ -z "$line" ] && continue
+        eval "arr=( $line )"
+        case "${arr[0]}" in
+            ('u')
+                group "${arr[1]}" "${arr[2]}"
+                user "${arr[1]}" "${arr[2]}" "${arr[3]}" "${arr[1]}" "${arr[4]}" "${arr[5]}"
+                # TODO: user:group support
+                ;;
+            ('g')
+                group "${arr[1]}" "${arr[2]}"
+                ;;
+            ('m')
+                group "${arr[2]}" "-"
+                user "${arr[1]}" "-" "" "${arr[2]}"
+                ;;
+        esac
+    done
+}
+
+for fn in "$@"; do
+    [ -e "$fn" ] || continue
+    echo "# generated from $(basename "$fn")"
+    parse <"$fn"
+done