From 6abde2074e89e86b22e68f1a48dc143ff23275a4 Mon Sep 17 00:00:00 2001
From: Emilien Macchi <emilien@redhat.com>
Date: Thu, 3 Mar 2016 23:09:40 -0500
Subject: [PATCH] login.defs/redhat: set SYS_UID_MIN and SYS_GID_MIN

According to [1], UIDs and GIDs between 0 and 200 are reserved for some
services, including OpenStack services.

Puppet OpenStack is deploying OpenStack using RDO packaging and there is
currently a race condition where sometimes RabbitMQ is installed
*before* Keystone and steals its UID, Keystone fails to be installed,
and CI job is failing.

This patch prevents this situation by setting both SYS_UID_MIN and
SYS_GID_MIN ti 201, so packages using dynamic UID/GID won't steal
reserved ones.

[1] https://git.fedorahosted.org/cgit/setup.git/tree/uidgid

Change-Id: I7cc41adc7e6070c32d9a56940a67640ab4419e7e
---
 modules/openstack_project/files/login.defs.redhat | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/modules/openstack_project/files/login.defs.redhat b/modules/openstack_project/files/login.defs.redhat
index dad679c651..8538c20734 100644
--- a/modules/openstack_project/files/login.defs.redhat
+++ b/modules/openstack_project/files/login.defs.redhat
@@ -30,6 +30,7 @@ PASS_WARN_AGE	7
 #
 # Min/max values for automatic uid selection in useradd
 #
+SYS_UID_MIN		  201
 SYS_UID_MAX		  499
 UID_MIN			 3000
 UID_MAX			60000
@@ -37,6 +38,7 @@ UID_MAX			60000
 #
 # Min/max values for automatic gid selection in groupadd
 #
+SYS_GID_MIN		  201
 SYS_GID_MAX		  499
 GID_MIN			 3000
 GID_MAX			60000