Allow passwordless login for user "user" (when using 'sudo xl console').

[adrelanos]

QubesOS/qubes-issues#1130

Running sudo usermod --password '' user in debian-10 TemplateVM allowed me to login as user "user" using sudo xl console. While untested, I am pretty sure this would work in the next template build too.

[codecov-io]

Codecov Report

Merging #168 into master will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##           master     #168   +/-   ##
=======================================
  Coverage   65.48%   65.48%           
=======================================
  Files           2        2           
  Lines         394      394           
=======================================
  Hits          258      258           
  Misses        136      136

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update da3c22b...54f94cc. Read the comment docs.

[marmarek]

This is already done in upgrade case below. Maybe it should be unified, like that call below moved outside of if?

[adrelanos]

Yes, better. For simplicity and less bugs (at cost of some more needless output) I think it is always good to avoid using install and upgrade cases.

[marmarek]

Hmm, when I think about it more, it may not be such a good idea to do it this way. It will enable passwordless login to user not only on xl console, but everywhere. User may decide to remove qubes-core-agent-passwordless-root package to have some isolation between accounts (for example sandboxing some services using dedicated users). In that case, having empty password for user would allow anyone to switch to user by calling su - user.
Note the problem apply much less for the qubes-core-agent-passwordless-root case, where user isolation is explicitly not relied upon.

Maybe better do it by configuring PAM to specifically allow passwordless user login on hvc0 console?

[marmarek]

Oh, I see you raised exactly the same concern in QubesOS/qubes-issues#2695 (comment)

[adrelanos]

Answered here: QubesOS/qubes-issues#2695 (comment)

[adrelanos]

Ok, then...

Quote @marmarek QubesOS/qubes-core-agent-linux#168 (comment)

Maybe better do it by configuring PAM to specifically allow passwordless user login on hvc0 console?

Yes.

[adrelanos]

This change is just doing what we are currently doing anyhow. But I can see how my approach can be confusing to break it more visibly before starting to fix it.

[HW42]

Maybe better do it by configuring PAM to specifically allow passwordless user login on hvc0 console?

Depending on how the exact result should look like, it might be easier to just run agetty with --autologin user (or --autologin root). (You probably also want to add --login-pause)

[marmarek]

Autologin idea sounds much better and safer.

[marmarek]

This is handled in #228