GNU bug report logs - #18994
Daemon does not preserve supplementary groups of build users

Previous Next

Package: guix;

Reported by: ludo <at> gnu.org (Ludovic Courtès)

Date: Sat, 8 Nov 2014 14:03:01 UTC

Severity: normal

Fixed in version 0.8.3

Done: ludo <at> gnu.org (Ludovic Courtès)

Bug is archived. No further changes may be made.

Full log

Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):

From: ludo <at> gnu.org (Ludovic Courtès)
To: bug-guix <at> gnu.org
Subject: Daemon does not preserve supplementary groups of build users
Date: Sat, 08 Nov 2014 15:01:43 +0100

Currently, the build environment made by the daemon does not preserve
supplementary groups of the build users.

Thus, even though the standalone Guix system sets /dev/kvm 660, owned by
root:kvm, and adds the build users to the kvm group, build users are
unable to access it.

This can be see with:

  (gexp->derivation "foo"
    #~(begin (mkdir #$output)(pk (stat:gid (stat "/dev/kvm")) (getgroups))))

The workaround for now is to make /dev/kvm 666.

Ludo’.

This bug report was last modified 9 years and 330 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #18994 Daemon does not preserve supplementary groups of build users

GNU bug report logs - #18994
Daemon does not preserve supplementary groups of build users