From unknown Sun Jun 22 22:42:03 2025 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-Mailer: MIME-tools 5.509 (Entity 5.509) Content-Type: text/plain; charset=utf-8 From: bug#30256 <30256@debbugs.gnu.org> To: bug#30256 <30256@debbugs.gnu.org> Subject: Status: [PATCH 3/3] scripts: environment: Add --no-cwd. Reply-To: bug#30256 <30256@debbugs.gnu.org> Date: Mon, 23 Jun 2025 05:42:03 +0000 retitle 30256 [PATCH 3/3] scripts: environment: Add --no-cwd. reassign 30256 guix-patches submitter 30256 Mike Gerwitz severity 30256 normal tag 30256 moreinfo patch thanks From debbugs-submit-bounces@debbugs.gnu.org Thu Jan 25 22:30:50 2018 Received: (at submit) by debbugs.gnu.org; 26 Jan 2018 03:30:50 +0000 Received: from localhost ([127.0.0.1]:43001 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1eeuj4-000231-Bs for submit@debbugs.gnu.org; Thu, 25 Jan 2018 22:30:50 -0500 Received: from eggs.gnu.org ([208.118.235.92]:53154) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1eeuj0-000229-5p for submit@debbugs.gnu.org; Thu, 25 Jan 2018 22:30:47 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1eeuit-0002k4-HH for submit@debbugs.gnu.org; Thu, 25 Jan 2018 22:30:41 -0500 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org X-Spam-Level: X-Spam-Status: No, score=-0.0 required=5.0 tests=BAYES_40,T_RP_MATCHES_RCVD autolearn=disabled version=3.3.2 Received: from lists.gnu.org ([2001:4830:134:3::11]:34647) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from ) id 1eeuit-0002jr-CP for submit@debbugs.gnu.org; Thu, 25 Jan 2018 22:30:39 -0500 Received: from eggs.gnu.org ([2001:4830:134:3::10]:44112) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1eeuir-0001c0-NZ for guix-patches@gnu.org; Thu, 25 Jan 2018 22:30:39 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1eeuiq-0002i5-Ky for guix-patches@gnu.org; Thu, 25 Jan 2018 22:30:37 -0500 Received: from fencepost.gnu.org ([2001:4830:134:3::e]:34351) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1eeuiq-0002hr-Fz for guix-patches@gnu.org; Thu, 25 Jan 2018 22:30:36 -0500 Received: from localhost ([::1]:37485 helo=mikegerwitz-pc.gerwitz.local) by fencepost.gnu.org with esmtps (TLS1.2:DHE_RSA_AES_128_CBC_SHA1:128) (Exim 4.82) (envelope-from ) id 1eeuiq-0007E8-52 for guix-patches@gnu.org; Thu, 25 Jan 2018 22:30:36 -0500 From: Mike Gerwitz To: guix-patches@gnu.org Subject: [PATCH 3/3] scripts: environment: Add --no-cwd. In-Reply-To: Date: Thu, 25 Jan 2018 22:29:45 -0500 References: <87vag2wopo.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) X-From-Line: 7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9 Mon Sep 17 00:00:00 2001 Message-Id: <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6.x X-Received-From: 2001:4830:134:3::11 X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: submit X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -5.0 (-----) --=-=-= Content-Type: text/plain Content-Transfer-Encoding: quoted-printable * doc/guix.texi (Invoking guix environment): Add --no-cwd. * guix/scripts/environment.scm (show-help, %options): Add --no-cwd. (launch-environment/container): Add 'map-cwd?' param; only add mapping for = cwd if #t. Only change to cwd within container if #t, otherwise home. (guix-environment): Error if --no-cwd without --container. Provide '(not no-cwd?)' to launch-environment/container as 'map-cwd?'. * tests/guix-environment.sh: Add test for no-cwd. =2D-- doc/guix.texi | 8 ++++++++ guix/scripts/environment.scm | 33 ++++++++++++++++++++++++--------- tests/guix-environment.sh | 8 ++++++++ 3 files changed, 40 insertions(+), 9 deletions(-) diff --git a/doc/guix.texi b/doc/guix.texi index 8218c6637..ce4545038 100644 =2D-- a/doc/guix.texi +++ b/doc/guix.texi @@ -7209,6 +7209,14 @@ While this will limit the leaking of user identity t= hrough home paths and each of the user fields, this is only one useful component of a broader privacy/anonymity solution---not one in and of itself. =20 +@item --no-cwd +For containers, the default behavior is to share the current working +directory with the isolated container and immediately change to that +directory within the container. If this is undesirable, @code{--no-cwd} +will cause the current working directory to @emph{not} be automatically +shared and will change to the user's home directory within the container +instead. See also @code{--user}. + @item --expose=3D@var{source}[=3D@var{target}] For containers, expose the file system @var{source} from the host system as the read-only file system @var{target} within the container. If diff --git a/guix/scripts/environment.scm b/guix/scripts/environment.scm index f50018faf..6be263a64 100644 =2D-- a/guix/scripts/environment.scm +++ b/guix/scripts/environment.scm @@ -165,6 +165,9 @@ COMMAND or an interactive shell in that environment.\n"= )) -u, --user=3DUSER instead of copying the name and home of the cur= rent user into an isolated container, use the name USER with home directory /home/USER")) + (display (G_ " + --no-cwd do not share current working directory with an + isolated container")) (display (G_ " --share=3DSPEC for containers, share writable host file system according to SPEC")) @@ -251,6 +254,9 @@ COMMAND or an interactive shell in that environment.\n"= )) (lambda (opt name arg result) (alist-cons 'user arg (alist-delete 'user result eq?)))) + (option '("no-cwd") #f #f + (lambda (opt name arg result) + (alist-cons 'no-cwd? #t result))) (option '("share") #t #f (lambda (opt name arg result) (alist-cons 'file-system-mapping @@ -399,7 +405,8 @@ environment variables are cleared before setting the ne= w ones." ((_ . status) status))))) =20 (define* (launch-environment/container #:key command bash user user-mappin= gs =2D profile paths link-profile? netwo= rk?) + profile paths link-profile? network? + map-cwd?) "Run COMMAND within a container that features the software in PROFILE. Environment variables are set according to PATHS, a list of native search paths. The global shell is BASH, a file name for a GNU Bash binary in the @@ -425,11 +432,13 @@ will be used for the passwd entry. LINK-PROFILE? cre= ates a symbolic link from (override-user-mappings user home (append user-mappings =2D ;; Current working directory. =2D (list (file-system-mapping =2D (source cwd) =2D (target cwd) =2D (writable? #t))) + ;; Share current working directory, unless asked not= to. + (if map-cwd? + (list (file-system-mapping + (source cwd) + (target cwd) + (writable? #t))) + '()) ;; When in Rome, do as Nix build.cc does: Automagica= lly ;; map common network configuration files. (if network? @@ -488,8 +497,10 @@ will be used for the passwd entry. LINK-PROFILE? crea= tes a symbolic link from (newline port))) =20 ;; For convenience, start in the user's current working =2D ;; directory rather than the root directory. =2D (chdir (override-user-dir user home cwd)) + ;; directory or, if unmapped, the home directory. + (chdir (if map-cwd? + (override-user-dir user home cwd) + home-dir)) =20 (primitive-exit/status ;; A container's environment is already purified, so no need = to @@ -640,6 +651,7 @@ message if any test fails." (container? (assoc-ref opts 'container?)) (link-prof? (assoc-ref opts 'link-profile?)) (network? (assoc-ref opts 'network?)) + (no-cwd? (assoc-ref opts 'no-cwd?)) (user (assoc-ref opts 'user)) (bootstrap? (assoc-ref opts 'bootstrap?)) (system (assoc-ref opts 'system)) @@ -677,6 +689,8 @@ message if any test fails." (leave (G_ "--link-prof cannot be used without --container~%"))) (when (and (not container?) user) (leave (G_ "--user cannot be used without --container~%"))) + (when (and (not container?) no-cwd?) + (leave (G_ "--no-cwd cannot be used without --container~%"))) =20 (with-store store (set-build-options-from-command-line store opts) @@ -729,7 +743,8 @@ message if any test fails." #:profile profile #:paths paths #:link-profile? link-pro= f? =2D #:network? network?))) + #:network? network? + #:map-cwd? (not no-cwd?)= ))) (else (return (exit/status diff --git a/tests/guix-environment.sh b/tests/guix-environment.sh index a1ce96579..abb019794 100644 =2D-- a/tests/guix-environment.sh +++ b/tests/guix-environment.sh @@ -84,6 +84,14 @@ HOME=3D"$tmpdir" guix environment --bootstrap --containe= r --user=3Dfoognu \ --share=3D"$tmpdir/umock" \ -- guile -c "$usertest" =20 +# if not sharing CWD, chdir home +( + cd "$tmpdir" \ + && guix environment --bootstrap --container --no-cwd --user=3Dfoo \ + --ad-hoc guile-bootstrap --pure \ + -- /bin/sh -c 'test $(pwd) =3D=3D "/home/foo" -a ! -d '"$tmpdi= r" +) + # Make sure '-r' works as expected. rm -f "$gcroot" expected=3D"`guix environment --bootstrap --ad-hoc guile-bootstrap \ =2D-=20 2.15.1 --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCgAGBQJaaqCpAAoJEIyRe39dxRui3kwP/j/g7RtKUhxxh/6OMocxf4KR +4wO+THWCS/eG23gGsEUAQ9llz56BFGBRF0SR2Cz/ldQafUAUmND27ZXjfA/li2M rCBTLnW65NiMJi8YPMGwaVkDvGoN9GDKpsJYQDxISWLNKn7Mb9Cpdjvesop5aE1d mWYK9K3dafGdUyh+gefCo9aXM/6nHURfwHRbQUsw3i+duQkeqBnE+QSjDjhEY6EU vQk0sBVmgrcCyIBsKcCOo3LL++QggZTUa7n+3KQp9mcIb1ruPu8XMZw4gEfLAZaV Qm0pS6CZYy9dX5g8w1Qbh0jenYFeA93QdSA60vPdfx7SUZgVS08BbIV0b+Svr6yu fumyhmFWAAOyMCoYR3ZPBoydqBEQ+0U3ny1O0HIHzshkGOqLQCcbbW98xGNObZLI TCyiBnCMPDPtzyMJ/X8Xet7jrQIF9tfXnXzOCha+uAK2vd8VLl+DIggtb3bImQ/i XE693bTzu+5KVIVeC1Rapup06Vg3GsvdZNFz4QLHy/TTvMrJCF2YKtYDiCZCOMck LV9qA8ZSh4okc11FQqmaGWJ7VA4Pj97wlMm2y16o6gYXt86SSQf9ET69MadawlXP otqpje3AnLpUv4o3Ubvh0RVRiEbW1LRO9swY0fWCbfyq18EtXUE6ARrmANxlZNG0 nKQwafK4qe7JoxCEn5lc =UKN6 -----END PGP SIGNATURE----- --=-=-=-- From debbugs-submit-bounces@debbugs.gnu.org Fri Mar 02 05:54:34 2018 Received: (at 30256) by debbugs.gnu.org; 2 Mar 2018 10:54:34 +0000 Received: from localhost ([127.0.0.1]:40152 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1eriKg-00017A-9F for submit@debbugs.gnu.org; Fri, 02 Mar 2018 05:54:34 -0500 Received: from hera.aquilenet.fr ([185.233.100.1]:44794) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1eriKf-000172-4k for 30256@debbugs.gnu.org; Fri, 02 Mar 2018 05:54:33 -0500 Received: from localhost (localhost [127.0.0.1]) by hera.aquilenet.fr (Postfix) with ESMTP id 5A0F1119E6; Fri, 2 Mar 2018 11:54:32 +0100 (CET) X-Virus-Scanned: Debian amavisd-new at aquilenet.fr Received: from hera.aquilenet.fr ([127.0.0.1]) by localhost (hera.aquilenet.fr [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JkX9vQSvzbzc; Fri, 2 Mar 2018 11:54:31 +0100 (CET) Received: from ribbon (unknown [193.50.110.134]) by hera.aquilenet.fr (Postfix) with ESMTPSA id 48B6940E; Fri, 2 Mar 2018 11:54:31 +0100 (CET) From: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) To: Mike Gerwitz Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. References: <87vag2wopo.fsf@gnu.org> <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> Date: Fri, 02 Mar 2018 11:54:30 +0100 In-Reply-To: <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> (Mike Gerwitz's message of "Thu, 25 Jan 2018 22:29:45 -0500") Message-ID: <87tvtyhhnd.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: 1.0 (+) X-Debbugs-Envelope-To: 30256 Cc: 30256@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 1.0 (+) Mike Gerwitz skribis: > * doc/guix.texi (Invoking guix environment): Add --no-cwd. > * guix/scripts/environment.scm (show-help, %options): Add --no-cwd. > (launch-environment/container): Add 'map-cwd?' param; only add mapping fo= r cwd > if #t. Only change to cwd within container if #t, otherwise home. > (guix-environment): Error if --no-cwd without --container. Provide '(not > no-cwd?)' to launch-environment/container as 'map-cwd?'. > * tests/guix-environment.sh: Add test for no-cwd. This one LGTM as well (with the test moved to guix-environment-container.sh). There=E2=80=99s just a minor issue: > --- a/tests/guix-environment.sh > +++ b/tests/guix-environment.sh > @@ -84,6 +84,14 @@ HOME=3D"$tmpdir" guix environment --bootstrap --contai= ner --user=3Dfoognu \ > --share=3D"$tmpdir/umock" \ > -- guile -c "$usertest" >=20=20 > +# if not sharing CWD, chdir home > +( > + cd "$tmpdir" \ > + && guix environment --bootstrap --container --no-cwd --user=3Dfoo \ > + --ad-hoc guile-bootstrap --pure \ > + -- /bin/sh -c 'test $(pwd) =3D=3D "/home/foo" -a ! -d '"$tmp= dir" > +) > + This test would fail for me because my test store is at ~ludo/src/guix/test-tmp/store and my CWD is ~/src/guix. So when using both --user and --no-cwd, the effect is that ~ludo/src/guix/test-tmp/store is not available at all within the container, and thus execve("/bin/sh") fails with ENOENT: --8<---------------cut here---------------start------------->8--- $ ./test-env guix environment --bootstrap --container --no-cwd --user=3Dfoo= --ad-hoc guile-bootstrap accepted connection from pid 29684, user ludo accepted connection from pid 29695, user ludo ./test-env: line 1: 29683 Terminated "/home/ludo/src/guix/pre-= inst-env" "/home/ludo/src/guix/guix-daemon" --disable-chroot --substitute-u= rls=3D"$GUIX_BINARY_SUBSTITUTE_URL" $ echo $? 1 --8<---------------cut here---------------end--------------->8--- Thoughts? TIA, Ludo=E2=80=99. From debbugs-submit-bounces@debbugs.gnu.org Fri Mar 02 13:02:10 2018 Received: (at 30256) by debbugs.gnu.org; 2 Mar 2018 18:02:10 +0000 Received: from localhost ([127.0.0.1]:41508 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1erp0U-00072f-BV for submit@debbugs.gnu.org; Fri, 02 Mar 2018 13:02:10 -0500 Received: from eggs.gnu.org ([208.118.235.92]:50260) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1erp0S-00072Q-Fw for 30256@debbugs.gnu.org; Fri, 02 Mar 2018 13:02:08 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1erp0M-0001Q7-0K for 30256@debbugs.gnu.org; Fri, 02 Mar 2018 13:02:03 -0500 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,T_RP_MATCHES_RCVD autolearn=disabled version=3.3.2 Received: from fencepost.gnu.org ([2001:4830:134:3::e]:34154) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1erp0J-0001KH-JC; Fri, 02 Mar 2018 13:01:59 -0500 Received: from localhost ([::1]:37287 helo=mikegerwitz-pc.gerwitz.local) by fencepost.gnu.org with esmtps (TLS1.2:DHE_RSA_AES_128_CBC_SHA1:128) (Exim 4.82) (envelope-from ) id 1erp0J-00046p-AK; Fri, 02 Mar 2018 13:01:59 -0500 From: Mike Gerwitz To: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. In-Reply-To: <87tvtyhhnd.fsf@gnu.org> ("Ludovic \=\?utf-8\?Q\?Court\=C3\=A8s\=22'\?\= \=\?utf-8\?Q\?s\?\= message of "Fri, 02 Mar 2018 11:54:30 +0100") Date: Fri, 02 Mar 2018 13:00:36 -0500 Message-ID: <877equgxx7.fsf@gnu.org> References: <87vag2wopo.fsf@gnu.org> <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> <87tvtyhhnd.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) OpenPGP: id=22175B02E626BC98D7C0C2E5F22BB8158EE30EAB MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 2001:4830:134:3::e X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: 30256 Cc: 30256@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -5.0 (-----) --=-=-= Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Hey, Ludo! Sorry I've been silent on the script you provided to me---between my GNU volunteer work and preparing for my LP2018 talk, I've had no free time, so I haven't even looked at it yet. After the conference I'll have the time to collaborate a bit more. Also---I thought the decision was that this patchset was inappropriate for `guix environment`; did I misinterpret? On Fri, Mar 02, 2018 at 11:54:30 +0100, Ludovic Court=C3=A8s wrote: >> --- a/tests/guix-environment.sh >> +++ b/tests/guix-environment.sh >> @@ -84,6 +84,14 @@ HOME=3D"$tmpdir" guix environment --bootstrap --conta= iner --user=3Dfoognu \ >> --share=3D"$tmpdir/umock" \ >> -- guile -c "$usertest" >>=20=20 >> +# if not sharing CWD, chdir home >> +( >> + cd "$tmpdir" \ >> + && guix environment --bootstrap --container --no-cwd --user=3Dfoo \ >> + --ad-hoc guile-bootstrap --pure \ >> + -- /bin/sh -c 'test $(pwd) =3D=3D "/home/foo" -a ! -d '"$tm= pdir" >> +) >> + > > This test would fail for me because my test store is at > ~ludo/src/guix/test-tmp/store and my CWD is ~/src/guix. So when using > both --user and --no-cwd, the effect is that > ~ludo/src/guix/test-tmp/store is not available at all within the > container, and thus execve("/bin/sh") fails with ENOENT: > > $ ./test-env guix environment --bootstrap --container --no-cwd --user=3Df= oo --ad-hoc guile-bootstrap > accepted connection from pid 29684, user ludo > accepted connection from pid 29695, user ludo > ./test-env: line 1: 29683 Terminated "/home/ludo/src/guix/pr= e-inst-env" "/home/ludo/src/guix/guix-daemon" --disable-chroot --substitute= -urls=3D"$GUIX_BINARY_SUBSTITUTE_URL" > $ echo $? > 1 > > Thoughts? I admit that I forgot some of the implementation details of my own patch; I'd have to look at it in more detail. I'll consider it tonight or this weekend. Thanks for taking a look at and applying these. If there are better solutions, I'm fine with that---I just wanted a proof-of-concept to start the discussion. Though, starting the discussion and then ducking out for other obligations wasn't quite what I had in mind... =2D-=20 Mike Gerwitz Free Software Hacker+Activist | GNU Maintainer & Volunteer GPG: D6E9 B930 028A 6C38 F43B 2388 FEF6 3574 5E6F 6D05 https://mikegerwitz.com --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCgAGBQJamZFFAAoJEIyRe39dxRuiRkkQAIqrzkOPRrupZM0e2+w8B207 2Yyd8Fh4kFnis7FBpDJ9kz+FOiD3mpWYzfmCFQr/Z7CrPYVevnNXqS9sYtibKeNu laV9dHt9LtBtWAfmwLu+DAqpOD/SCGZn8fRhWJNBwvYmq+Ojqi2PvLfhsQlXStWL XB4ccwkCd4H+Y9JxXetT3pLQw1xLDAHnphTshU9DQ+E4qfnA5uX/wclwMzwhuYT/ kFvP40fvXVrZMLieAaQNGFNnBfiQy4/iyoOCNWVkSZYUXXflzmROuTkXePxdTtXv JRsOzgVrdQMZoxFhyuwOB+XSq4S9Q1MVE8jeZGZ2ndyx1LLLYlsm8xtcr1W2wG4B xq573Sqn+vvciwhAaRYt9pTIAAPYY2eMJz55rI0TysNbgzwlfJJABqtaytn4NmTL heBEAGPcjmDcWwMkfFz001jA64NuhS0oJMcq2TZ+Zlh8+OqBwO0Ywua1R+8BoprI BRmfJwdTcIAvo1PSPnTcMSLeOBK5s69Y74ibAQlGVxlHpLeCVjC+O3SnuauYNGMg UewzSKOUD0kZ7xePy1Oia0K2VfmNVAH91FivfFvlK2st9gpNVqwj1vT7SQhC2SaG WtMeFA2++ZEnGdpZRg5OjWId9cn1BoJRQHBWfLlq1mBVWA7b+AvEhJgc24DNhz/c gDSoXDkj+c00/ZRtx6CB =JVGH -----END PGP SIGNATURE----- --=-=-=-- From debbugs-submit-bounces@debbugs.gnu.org Sat Mar 03 09:44:47 2018 Received: (at 30256) by debbugs.gnu.org; 3 Mar 2018 14:44:47 +0000 Received: from localhost ([127.0.0.1]:42003 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1es8P1-0007U7-GM for submit@debbugs.gnu.org; Sat, 03 Mar 2018 09:44:47 -0500 Received: from hera.aquilenet.fr ([185.233.100.1]:52552) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1es8Oz-0007U0-V0 for 30256@debbugs.gnu.org; Sat, 03 Mar 2018 09:44:46 -0500 Received: from localhost (localhost [127.0.0.1]) by hera.aquilenet.fr (Postfix) with ESMTP id 5D1C5724F; Sat, 3 Mar 2018 15:44:45 +0100 (CET) X-Virus-Scanned: Debian amavisd-new at aquilenet.fr Received: from hera.aquilenet.fr ([127.0.0.1]) by localhost (hera.aquilenet.fr [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id USMfBOcra-o1; Sat, 3 Mar 2018 15:44:44 +0100 (CET) Received: from ribbon (unknown [IPv6:2a01:e0a:1d:7270:af76:b9b:ca24:c465]) by hera.aquilenet.fr (Postfix) with ESMTPSA id 01F587127; Sat, 3 Mar 2018 15:44:43 +0100 (CET) From: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) To: Mike Gerwitz Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. References: <87vag2wopo.fsf@gnu.org> <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> <87tvtyhhnd.fsf@gnu.org> <877equgxx7.fsf@gnu.org> X-URL: http://www.fdn.fr/~lcourtes/ X-Revolutionary-Date: 13 =?utf-8?Q?Vent=C3=B4se?= an 226 de la =?utf-8?Q?R?= =?utf-8?Q?=C3=A9volution?= X-PGP-Key-ID: 0x090B11993D9AEBB5 X-PGP-Key: http://www.fdn.fr/~lcourtes/ludovic.asc X-PGP-Fingerprint: 3CE4 6455 8A84 FDC6 9DB4 0CFB 090B 1199 3D9A EBB5 X-OS: x86_64-pc-linux-gnu Date: Sat, 03 Mar 2018 15:44:43 +0100 In-Reply-To: <877equgxx7.fsf@gnu.org> (Mike Gerwitz's message of "Fri, 02 Mar 2018 13:00:36 -0500") Message-ID: <87zi3p9q1w.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: 1.0 (+) X-Debbugs-Envelope-To: 30256 Cc: 30256@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 1.0 (+) Hi Mike, Mike Gerwitz skribis: > Sorry I've been silent on the script you provided to me---between my GNU > volunteer work and preparing for my LP2018 talk, I've had no free time, > so I haven't even looked at it yet. After the conference I'll have the > time to collaborate a bit more. Sure, understood! > Also---I thought the decision was that this patchset was inappropriate > for `guix environment`; did I misinterpret? My initial reaction was that we shouldn=E2=80=99t stretch =E2=80=98guix env= ironment=E2=80=99 to do something that=E2=80=99s unrelated to environment management. However as I looked at your patches, I found that the additions you made are useful per se (for instance I=E2=80=99ve been wanting =E2=80=98--link-p= rofile=E2=80=99 on a couple of occasions for reasons like the one you gave, Fontconfig, etc.). And the patches had tests, documentation, and everything, so it seemed more beneficial to include them. :-) > I admit that I forgot some of the implementation details of my own > patch; I'd have to look at it in more detail. I'll consider it tonight > or this weekend. OK! > Thanks for taking a look at and applying these. If there are better > solutions, I'm fine with that---I just wanted a proof-of-concept to > start the discussion. Though, starting the discussion and then ducking > out for other obligations wasn't quite what I had in mind... Sure. I think the issue of least-authority execution of programs remains open anway. Do we want a =E2=80=98guix run=E2=80=99-like command? = Something in the shell, but which shell(s) then? Automatically-generated wrappers so we don=E2=80=99t depend on specific shells? Thanks, Ludo=E2=80=99. From debbugs-submit-bounces@debbugs.gnu.org Sat Mar 03 16:22:12 2018 Received: (at control) by debbugs.gnu.org; 3 Mar 2018 21:22:12 +0000 Received: from localhost ([127.0.0.1]:43109 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1esEbb-0003lQ-0Y for submit@debbugs.gnu.org; Sat, 03 Mar 2018 16:22:11 -0500 Received: from hera.aquilenet.fr ([185.233.100.1]:54462) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1esEbZ-0003lJ-T1 for control@debbugs.gnu.org; Sat, 03 Mar 2018 16:22:10 -0500 Received: from localhost (localhost [127.0.0.1]) by hera.aquilenet.fr (Postfix) with ESMTP id 711BF11D90 for ; Sat, 3 Mar 2018 22:22:09 +0100 (CET) X-Virus-Scanned: Debian amavisd-new at aquilenet.fr Received: from hera.aquilenet.fr ([127.0.0.1]) by localhost (hera.aquilenet.fr [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mUq_T8KZ2NOM for ; Sat, 3 Mar 2018 22:22:09 +0100 (CET) Received: from ribbon (unknown [IPv6:2a01:e0a:1d:7270:af76:b9b:ca24:c465]) by hera.aquilenet.fr (Postfix) with ESMTPSA id BEB1611CE1 for ; Sat, 3 Mar 2018 22:22:08 +0100 (CET) Date: Sat, 03 Mar 2018 22:22:07 +0100 Message-Id: <87efl0am80.fsf@gnu.org> To: control@debbugs.gnu.org From: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) Subject: control message for bug #30256 MIME-version: 1.0 Content-type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Spam-Score: 1.0 (+) X-Debbugs-Envelope-To: control X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 1.0 (+) merge 30256 30254 From debbugs-submit-bounces@debbugs.gnu.org Sun Mar 04 13:03:35 2018 Received: (at 30256) by debbugs.gnu.org; 4 Mar 2018 18:03:35 +0000 Received: from localhost ([127.0.0.1]:44668 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1esXyx-0002iR-1m for submit@debbugs.gnu.org; Sun, 04 Mar 2018 13:03:35 -0500 Received: from eggs.gnu.org ([208.118.235.92]:42694) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1esXyw-0002iF-2s for 30256@debbugs.gnu.org; Sun, 04 Mar 2018 13:03:34 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1esXyp-0006nI-Ue for 30256@debbugs.gnu.org; Sun, 04 Mar 2018 13:03:28 -0500 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org X-Spam-Level: X-Spam-Status: No, score=-0.5 required=5.0 tests=BAYES_05,T_RP_MATCHES_RCVD autolearn=disabled version=3.3.2 Received: from fencepost.gnu.org ([2001:4830:134:3::e]:39999) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1esXyn-0006mR-HY; Sun, 04 Mar 2018 13:03:25 -0500 Received: from localhost ([::1]:43133 helo=mikegerwitz-pc.gerwitz.local) by fencepost.gnu.org with esmtps (TLS1.2:DHE_RSA_AES_128_CBC_SHA1:128) (Exim 4.82) (envelope-from ) id 1esXyn-0007Ud-93; Sun, 04 Mar 2018 13:03:25 -0500 From: Mike Gerwitz To: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. In-Reply-To: <87zi3p9q1w.fsf@gnu.org> ("Ludovic \=\?utf-8\?Q\?Court\=C3\=A8s\=22'\?\= \=\?utf-8\?Q\?s\?\= message of "Sat, 03 Mar 2018 15:44:43 +0100") Date: Sun, 04 Mar 2018 13:03:02 -0500 Message-ID: <87y3j7btwp.fsf@gnu.org> References: <87vag2wopo.fsf@gnu.org> <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> <87tvtyhhnd.fsf@gnu.org> <877equgxx7.fsf@gnu.org> <87zi3p9q1w.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) OpenPGP: id=22175B02E626BC98D7C0C2E5F22BB8158EE30EAB MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 2001:4830:134:3::e X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: 30256 Cc: 30256@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -5.0 (-----) --=-=-= Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable On Sat, Mar 03, 2018 at 15:44:43 +0100, Ludovic Court=C3=A8s wrote: >> Also---I thought the decision was that this patchset was inappropriate >> for `guix environment`; did I misinterpret? > > My initial reaction was that we shouldn=E2=80=99t stretch =E2=80=98guix e= nvironment=E2=80=99 to > do something that=E2=80=99s unrelated to environment management. > > However as I looked at your patches, I found that the additions you made > are useful per se (for instance I=E2=80=99ve been wanting =E2=80=98--link= -profile=E2=80=99 on a > couple of occasions for reasons like the one you gave, Fontconfig, > etc.). And the patches had tests, documentation, and everything, so it > seemed more beneficial to include them. :-) Okay, sounds good. >> Thanks for taking a look at and applying these. If there are better >> solutions, I'm fine with that---I just wanted a proof-of-concept to >> start the discussion. Though, starting the discussion and then ducking >> out for other obligations wasn't quite what I had in mind... > > Sure. I think the issue of least-authority execution of programs > remains open anway. Do we want a =E2=80=98guix run=E2=80=99-like command= ? Something in > the shell, but which shell(s) then? Automatically-generated wrappers so > we don=E2=80=99t depend on specific shells? One thing in particular about using `guix environment --ad-hoc' that is particularly unfortunate with how I'm abusing it is that it will build new derivations as necessary (as it is supposed to). So "starting icecat" in a container isn't just that. I recently upgraded Guix, and icecat isn't available on Hydra yet, so I'm unable to start icecat at all until it compiles, which is hours on an X200 (though I'm assuming that reverting ~/.config/guix/latest might allow me to work around it temporarily with an old version). This would not have been a problem with a normal icecat installation in my profile. Obviously the desirable behavior is to just containerize whatever is in your profile, if possible. Maybe the script you sent me does just that. I'm excited to play around with it, I just can't atm. :( =2D-=20 Mike Gerwitz Free Software Hacker+Activist | GNU Maintainer & Volunteer GPG: D6E9 B930 028A 6C38 F43B 2388 FEF6 3574 5E6F 6D05 https://mikegerwitz.com --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCgAGBQJanDTWAAoJEIyRe39dxRuiNIIQAKoy54MoU3wZHNFAHV+GTOCd SqBikep+B/ER0QAfnF5UodTdAmEQRXV3E5n5MtKuf7erjWRrKuz6x5Bt8mujIFQV bXMDACJCgM3OGLsR/H8paFRcf0o/mTE2sRCTIF/8ayrZHhm1+7v68yOLZYTTJHaa BHtM1hq6TxAtgdKNspZzkIDEmI35J9oJWbybgPQaBY30mG4nyObDzH1f0JeB31HS wlwH2oZjdVOCVHBz7lmqZAE4VIEr1bAfB7WUDSxKxNLcFlkPii+Qd3i/tw0TjENV SLt/OgVYrrrzkywEgOXLB5r4WOeLr/7Mh44pEVI0OntVLABP0ejw+0PoQgu2ZT6+ I5QCpAgnq845bZsb70NRtrxGqyYLDHxcdj63ut9KePJhWDQESGtvoqmD8tMzKFvd LYN0zYtZg6pxi/mebf5pNF5xcN/bclXE8tYIdAP9W4AALB7D6VQZ5wF2HpR8hdnB FBVHWJcQW6g4BnJtMEXaqPAj+xr+t01G6SMurW0oax0DN/BHR1VWVKE1ZCc0Oo4u 283QQPVmj6e1CQLtA/+f/0lmjsh6T0Xdun5mbRSjg/4NCpEgRZDLIQG/aWf0OrKc axr0L2rhaJ3Pk766ZdyRlfmhqJDsHh8684xzwjycOCuDvvlzKipeHiu6p0KnQzg1 EuJ3qqqzoqYtCHnc208e =iXGu -----END PGP SIGNATURE----- --=-=-=-- From debbugs-submit-bounces@debbugs.gnu.org Sun Mar 04 17:24:32 2018 Received: (at 30256) by debbugs.gnu.org; 4 Mar 2018 22:24:32 +0000 Received: from localhost ([127.0.0.1]:44789 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1esc3U-0000VR-5q for submit@debbugs.gnu.org; Sun, 04 Mar 2018 17:24:32 -0500 Received: from hera.aquilenet.fr ([185.233.100.1]:33164) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1esc3S-0000VJ-9F for 30256@debbugs.gnu.org; Sun, 04 Mar 2018 17:24:30 -0500 Received: from localhost (localhost [127.0.0.1]) by hera.aquilenet.fr (Postfix) with ESMTP id D040B10A74; Sun, 4 Mar 2018 23:24:29 +0100 (CET) X-Virus-Scanned: Debian amavisd-new at aquilenet.fr Received: from hera.aquilenet.fr ([127.0.0.1]) by localhost (hera.aquilenet.fr [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id K1g1RWz8YyVV; Sun, 4 Mar 2018 23:24:28 +0100 (CET) Received: from ribbon (unknown [IPv6:2a01:e0a:1d:7270:af76:b9b:ca24:c465]) by hera.aquilenet.fr (Postfix) with ESMTPSA id 928B26FF0; Sun, 4 Mar 2018 23:24:28 +0100 (CET) From: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) To: Mike Gerwitz Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. References: <87vag2wopo.fsf@gnu.org> <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> <87tvtyhhnd.fsf@gnu.org> <877equgxx7.fsf@gnu.org> <87zi3p9q1w.fsf@gnu.org> <87y3j7btwp.fsf@gnu.org> X-URL: http://www.fdn.fr/~lcourtes/ X-Revolutionary-Date: 14 =?utf-8?Q?Vent=C3=B4se?= an 226 de la =?utf-8?Q?R?= =?utf-8?Q?=C3=A9volution?= X-PGP-Key-ID: 0x090B11993D9AEBB5 X-PGP-Key: http://www.fdn.fr/~lcourtes/ludovic.asc X-PGP-Fingerprint: 3CE4 6455 8A84 FDC6 9DB4 0CFB 090B 1199 3D9A EBB5 X-OS: x86_64-pc-linux-gnu Date: Sun, 04 Mar 2018 23:24:27 +0100 In-Reply-To: <87y3j7btwp.fsf@gnu.org> (Mike Gerwitz's message of "Sun, 04 Mar 2018 13:03:02 -0500") Message-ID: <87tvtv32ec.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: 1.0 (+) X-Debbugs-Envelope-To: 30256 Cc: 30256@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 1.0 (+) Heya, Mike Gerwitz skribis: > On Sat, Mar 03, 2018 at 15:44:43 +0100, Ludovic Court=C3=A8s wrote: [...] >> Sure. I think the issue of least-authority execution of programs >> remains open anway. Do we want a =E2=80=98guix run=E2=80=99-like comman= d? Something in >> the shell, but which shell(s) then? Automatically-generated wrappers so >> we don=E2=80=99t depend on specific shells? > > One thing in particular about using `guix environment --ad-hoc' that is > particularly unfortunate with how I'm abusing it is that it will build > new derivations as necessary (as it is supposed to). So "starting > icecat" in a container isn't just that. I recently upgraded Guix, and > icecat isn't available on Hydra yet, so I'm unable to start icecat at > all until it compiles, which is hours on an X200 (though I'm assuming > that reverting ~/.config/guix/latest might allow me to work around it > temporarily with an old version). This would not have been a problem > with a normal icecat installation in my profile. Right. The =E2=80=98guix run=E2=80=99 script I sent doesn=E2=80=99t try to= build things; it just takes whatever is in $PATH (which has to be in the store, ultimately) and runs it. > Obviously the desirable behavior is to just containerize whatever is in > your profile, if possible. Maybe the script you sent me does just > that. I'm excited to play around with it, I just can't atm. :( You still have to explicitly run =E2=80=98guix run icecat=E2=80=99, which i= sn=E2=80=99t great: if you=E2=80=99re using GNOME Shell and clicking on the icon, you don=E2=80= =99t get to run it in a containerized environment. Ludo=E2=80=99. From debbugs-submit-bounces@debbugs.gnu.org Mon Mar 05 13:04:27 2018 Received: (at 30256) by debbugs.gnu.org; 5 Mar 2018 18:04:27 +0000 Received: from localhost ([127.0.0.1]:46170 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1esuTL-0005fK-7M for submit@debbugs.gnu.org; Mon, 05 Mar 2018 13:04:27 -0500 Received: from eggs.gnu.org ([208.118.235.92]:39592) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1esuTJ-0005f4-5X for 30256@debbugs.gnu.org; Mon, 05 Mar 2018 13:04:25 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1esuTD-0003tf-4v for 30256@debbugs.gnu.org; Mon, 05 Mar 2018 13:04:20 -0500 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org X-Spam-Level: X-Spam-Status: No, score=-0.0 required=5.0 tests=BAYES_20,T_RP_MATCHES_RCVD autolearn=disabled version=3.3.2 Received: from fencepost.gnu.org ([2001:4830:134:3::e]:58284) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1esuT9-0003t8-B3; Mon, 05 Mar 2018 13:04:15 -0500 Received: from localhost ([::1]:33184 helo=mikegerwitz-pc.gerwitz.local) by fencepost.gnu.org with esmtps (TLS1.2:DHE_RSA_AES_128_CBC_SHA1:128) (Exim 4.82) (envelope-from ) id 1esuT9-00049E-0R; Mon, 05 Mar 2018 13:04:15 -0500 From: Mike Gerwitz To: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. In-Reply-To: <87tvtv32ec.fsf@gnu.org> ("Ludovic \=\?utf-8\?Q\?Court\=C3\=A8s\=22'\?\= \=\?utf-8\?Q\?s\?\= message of "Sun, 04 Mar 2018 23:24:27 +0100") Date: Mon, 05 Mar 2018 13:03:39 -0500 Message-ID: <87d10ibds4.fsf@gnu.org> References: <87vag2wopo.fsf@gnu.org> <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> <87tvtyhhnd.fsf@gnu.org> <877equgxx7.fsf@gnu.org> <87zi3p9q1w.fsf@gnu.org> <87y3j7btwp.fsf@gnu.org> <87tvtv32ec.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) OpenPGP: id=22175B02E626BC98D7C0C2E5F22BB8158EE30EAB MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 2001:4830:134:3::e X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: 30256 Cc: 30256@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -5.0 (-----) --=-=-= Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable On Sun, Mar 04, 2018 at 23:24:27 +0100, Ludovic Court=C3=A8s wrote: > Right. The =E2=80=98guix run=E2=80=99 script I sent doesn=E2=80=99t try = to build things; it > just takes whatever is in $PATH (which has to be in the store, > ultimately) and runs it. Oh, great! >> Obviously the desirable behavior is to just containerize whatever is in >> your profile, if possible. Maybe the script you sent me does just >> that. I'm excited to play around with it, I just can't atm. :( > > You still have to explicitly run =E2=80=98guix run icecat=E2=80=99, which= isn=E2=80=99t great: > if you=E2=80=99re using GNOME Shell and clicking on the icon, you don=E2= =80=99t get to > run it in a containerized environment. Well, I do everything from a shell, so that works for me personally. :) But yes, what you are describing is important. But, from a security perspective, I'd like for containerization to be _guaranteed_, otherwise a malicious script could just subvert it (e.g. open icecat with an argument to a malicious HTML file). I used `guix environment` not only because of its container support, but because that ensured that icecat wasn't in my profile at all to be invoked by something else. Currently, I'd have to write a package definition to add a wrapper; that wouldn't be done automatically for me. But considering a functional package manager, it'd be an interesting problem to try to get around that. And you don't want containerized versions of _every_ package---that's some serious bloat. Unless maybe they're packages that are generated from existing package definitions (in some yet-to-be-defined manner), and maybe those packages have a special containerized output (in addition to `out', e.g. `icecat:container'). (I suppose short-term, such outputs can be created manually for select packages.) Just spewing thoughts. I'm still not well-versed in Guix. So maybe `guix run` is a good starting point and can be used by a wrapper in the future. It also allows users to containerize something optionally---for example, maybe a user doesn't want to containerize their PDF reader, but if they are opening an untrusted PDF, they'll want to. A GNOME context menu option to say "Open in isolated container" (sorta like Qubes) sounds attractive. =2D-=20 Mike Gerwitz Free Software Hacker+Activist | GNU Maintainer & Volunteer GPG: D6E9 B930 028A 6C38 F43B 2388 FEF6 3574 5E6F 6D05 https://mikegerwitz.com --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCgAGBQJanYZ8AAoJEIyRe39dxRuiv8MP/10bVlqnBbPkk99zpHZODV+v zK/Q/gfv+aXIMzRUC34H/fVfiy2qeyqBeEmPIvOmJRMYQQjMsPaJKiWl3nPCxofd BhKSZmkGc7eEHqFxPUOXWeaS9oKAN4bR31TisPteyQzq2nCaXeynnhntI3Uwnc8n TqjfXO0OMYmXpQAgD4MnOvot84ZJI8sNyd8wiKbrSdThLBsAj49qXrCMRBX67nZ3 aefOQYzcIQknB6ZI+/EcFPV+Hlemswf4fFFUNXJ8aXVzNxY4F4NPQdzdX1mkj1b0 WCeoltkdkQrslNJoE/f5fI+891qpwj0R1ruLXsljasWFxA56MKEwnyGSW+vkJUwb UUhzHvokJVisiPqk3Qe0ZuIdef3xjigxoriQ/3uW0/NjITbI+MZaWL2rYidP/RWs QDljkSr2rXbtb6SfZDa+f3PRWB2SYkAG4Y8tORBaaV/g7pbDQim8FVm2GcD/fo/4 sk7VFISeLlT9FWp/8T3NTIdTLHIcpHPob6ZhfH/L6E3LuVFde49V/77xDrXsDulx sCAh0GtTgMvSK4V7ZQiW+3UKuC7t6kNDqR/V73celO3TvYwVUw8cGgEzEAfwsXKe R6DasyI65kRt/lJNIf0SoW0FJZBJhs5c7q5WJl7lRTdOVq7GlmmfQkkFIF/eQrSE qLS6tM8lqvYw4UKRxjwZ =cVDi -----END PGP SIGNATURE----- --=-=-=-- From debbugs-submit-bounces@debbugs.gnu.org Tue Mar 06 05:20:28 2018 Received: (at 30256) by debbugs.gnu.org; 6 Mar 2018 10:20:28 +0000 Received: from localhost ([127.0.0.1]:46849 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1et9hs-0000OR-IY for submit@debbugs.gnu.org; Tue, 06 Mar 2018 05:20:28 -0500 Received: from hera.aquilenet.fr ([185.233.100.1]:36946) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1et9hq-0000OI-93 for 30256@debbugs.gnu.org; Tue, 06 Mar 2018 05:20:26 -0500 Received: from localhost (localhost [127.0.0.1]) by hera.aquilenet.fr (Postfix) with ESMTP id 31DF910D29; Tue, 6 Mar 2018 11:20:25 +0100 (CET) X-Virus-Scanned: Debian amavisd-new at aquilenet.fr Received: from hera.aquilenet.fr ([127.0.0.1]) by localhost (hera.aquilenet.fr [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZA528GfCLexu; Tue, 6 Mar 2018 11:20:24 +0100 (CET) Received: from ribbon (unknown [193.50.110.134]) by hera.aquilenet.fr (Postfix) with ESMTPSA id B8B5C10437; Tue, 6 Mar 2018 11:20:23 +0100 (CET) From: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) To: Mike Gerwitz Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. In-Reply-To: <87d10ibds4.fsf@gnu.org> (Mike Gerwitz's message of "Mon, 05 Mar 2018 13:03:39 -0500") References: <87vag2wopo.fsf@gnu.org> <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> <87tvtyhhnd.fsf@gnu.org> <877equgxx7.fsf@gnu.org> <87zi3p9q1w.fsf@gnu.org> <87y3j7btwp.fsf@gnu.org> <87tvtv32ec.fsf@gnu.org> <87d10ibds4.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) X-URL: http://www.fdn.fr/~lcourtes/ X-Revolutionary-Date: 16 =?utf-8?Q?Vent=C3=B4se?= an 226 de la =?utf-8?Q?R?= =?utf-8?Q?=C3=A9volution?= X-PGP-Key-ID: 0x090B11993D9AEBB5 X-PGP-Key: http://www.fdn.fr/~lcourtes/ludovic.asc X-PGP-Fingerprint: 3CE4 6455 8A84 FDC6 9DB4 0CFB 090B 1199 3D9A EBB5 X-OS: x86_64-pc-linux-gnu Date: Tue, 06 Mar 2018 11:20:23 +0100 Message-ID: <878tb5zes8.fsf@gnu.org> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: 1.0 (+) X-Debbugs-Envelope-To: 30256 Cc: 30256@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 1.0 (+) Hello, Mike Gerwitz skribis: > On Sun, Mar 04, 2018 at 23:24:27 +0100, Ludovic Court=C3=A8s wrote: [...] >> You still have to explicitly run =E2=80=98guix run icecat=E2=80=99, whic= h isn=E2=80=99t great: >> if you=E2=80=99re using GNOME Shell and clicking on the icon, you don=E2= =80=99t get to >> run it in a containerized environment. > > Well, I do everything from a shell, so that works for me personally. :) > But yes, what you are describing is important. > > But, from a security perspective, I'd like for containerization to be > _guaranteed_, otherwise a malicious script could just subvert it > (e.g. open icecat with an argument to a malicious HTML file). I used > `guix environment` not only because of its container support, but > because that ensured that icecat wasn't in my profile at all to be > invoked by something else. Good point. > Currently, I'd have to write a package definition to add a wrapper; that > wouldn't be done automatically for me. But considering a functional > package manager, it'd be an interesting problem to try to get around > that. And you don't want containerized versions of _every_ > package---that's some serious bloat. Unless maybe they're packages that > are generated from existing package definitions (in some > yet-to-be-defined manner), and maybe those packages have a special > containerized output (in addition to `out', > e.g. `icecat:container'). (I suppose short-term, such outputs can be > created manually for select packages.) I was thinking =E2=80=98guix package=E2=80=99 could create those wrappers a= utomatically based on a number of criteria: a package property could request containerization, command-line options could disable that, and so on. > Just spewing thoughts. I'm still not well-versed in Guix. So maybe > `guix run` is a good starting point and can be used by a wrapper in the > future. It also allows users to containerize something optionally---for > example, maybe a user doesn't want to containerize their PDF reader, but > if they are opening an untrusted PDF, they'll want to. A GNOME context > menu option to say "Open in isolated container" (sorta like Qubes) > sounds attractive. Yeah, though I very much think least authority would be a better default than ambient authority. :-) Ludo=E2=80=99. From debbugs-submit-bounces@debbugs.gnu.org Tue Mar 06 13:16:39 2018 Received: (at 30256) by debbugs.gnu.org; 6 Mar 2018 18:16:40 +0000 Received: from localhost ([127.0.0.1]:47990 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1etH8f-0000t0-Tj for submit@debbugs.gnu.org; Tue, 06 Mar 2018 13:16:38 -0500 Received: from eggs.gnu.org ([208.118.235.92]:46324) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1etH8e-0000sq-AC for 30256@debbugs.gnu.org; Tue, 06 Mar 2018 13:16:36 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1etH8X-0002jN-VC for 30256@debbugs.gnu.org; Tue, 06 Mar 2018 13:16:31 -0500 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,T_RP_MATCHES_RCVD autolearn=disabled version=3.3.2 Received: from fencepost.gnu.org ([2001:4830:134:3::e]:52719) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1etH8V-0002hm-02; Tue, 06 Mar 2018 13:16:27 -0500 Received: from localhost ([::1]:55853 helo=mikegerwitz-pc.gerwitz.local) by fencepost.gnu.org with esmtps (TLS1.2:DHE_RSA_AES_128_CBC_SHA1:128) (Exim 4.82) (envelope-from ) id 1etH8U-0008ST-M9; Tue, 06 Mar 2018 13:16:26 -0500 From: Mike Gerwitz To: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. In-Reply-To: <878tb5zes8.fsf@gnu.org> ("Ludovic \=\?utf-8\?Q\?Court\=C3\=A8s\=22'\?\= \=\?utf-8\?Q\?s\?\= message of "Tue, 06 Mar 2018 11:20:23 +0100") Date: Tue, 06 Mar 2018 13:07:52 -0500 Message-ID: <87efkx84cn.fsf@gnu.org> References: <87vag2wopo.fsf@gnu.org> <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> <87tvtyhhnd.fsf@gnu.org> <877equgxx7.fsf@gnu.org> <87zi3p9q1w.fsf@gnu.org> <87y3j7btwp.fsf@gnu.org> <87tvtv32ec.fsf@gnu.org> <87d10ibds4.fsf@gnu.org> <878tb5zes8.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) OpenPGP: id=22175B02E626BC98D7C0C2E5F22BB8158EE30EAB MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 2001:4830:134:3::e X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: 30256 Cc: 30256@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -5.0 (-----) --=-=-= Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable On Tue, Mar 06, 2018 at 11:20:23 +0100, Ludovic Court=C3=A8s wrote: > Mike Gerwitz skribis: >> Currently, I'd have to write a package definition to add a wrapper; that >> wouldn't be done automatically for me. But considering a functional >> package manager, it'd be an interesting problem to try to get around >> that. And you don't want containerized versions of _every_ >> package---that's some serious bloat. Unless maybe they're packages that >> are generated from existing package definitions (in some >> yet-to-be-defined manner), and maybe those packages have a special >> containerized output (in addition to `out', >> e.g. `icecat:container'). (I suppose short-term, such outputs can be >> created manually for select packages.) > > I was thinking =E2=80=98guix package=E2=80=99 could create those wrappers= automatically > based on a number of criteria: a package property could request > containerization, command-line options could disable that, and so on. Yes, I'd much prefer that. That package definition might not be able to infer certain things, so we'd need to be able to specify e.g. paths to include in the container. Preferably overridable as well---for example, I don't share ~/.cache/mozilla/icecat with the container (I want it to be ephemeral), but other users may prefer to. >> Just spewing thoughts. I'm still not well-versed in Guix. So maybe >> `guix run` is a good starting point and can be used by a wrapper in the >> future. It also allows users to containerize something optionally---for >> example, maybe a user doesn't want to containerize their PDF reader, but >> if they are opening an untrusted PDF, they'll want to. A GNOME context >> menu option to say "Open in isolated container" (sorta like Qubes) >> sounds attractive. > > Yeah, though I very much think least authority would be a better default > than ambient authority. :-) I agree for my needs; I suppose we'd need to see what downsides exist from containerization (if any) that might make the user think otherwise. If containerization by default is suitable, then there may be no need to provide a non-container option, so long as the user can choose paths to share with the container (and network access). This is sounding more like an AppArmor type of permission system. (Without the AppArmor, of course.) =2D-=20 Mike Gerwitz Free Software Hacker+Activist | GNU Maintainer & Volunteer GPG: D6E9 B930 028A 6C38 F43B 2388 FEF6 3574 5E6F 6D05 https://mikegerwitz.com --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCgAGBQJantj5AAoJEIyRe39dxRuiflEQAKYItQrmMaqSrzQG40iELks9 623kK0dFwe/49HHdEDs7qye2u0uSigDrMDR/xMivOFDdbvZ6z+7Jmlg5E0Dhrex6 SSJoQTCKmXcitPRnUXqeVsaj2VN8bcaMxVdzTixxtwHtEKKGfm/503k9K2RxB9o7 1aMgYTMHZPHN8vhCT2EZ4Us1x8RR8TXyjNUpjo989NvoQJxqz33fPjjgUMjrQZE+ aKzCTNKyMrVoU6lzuMsilMvavQ2wfBKv+Z1qOHTo9UDCwvurQe4rAwaUQ+NK0vyH peyiHWFsh7hd9e18hv4GmGWY9kLfclE8guX/tHPmRWElIClkREezpIbGqT7gYdLE 17SZhe1wPORZT5WDEASikYsWVBvFDZRWy2hxP41Xe8K1LaFbwJf+zAcGkxWaJd0F OuLtdOFopWpnNRmiZwzxdkWLaEU+UCoNU5jI2Z/WKenE7+gkikaJkuWlqiB6C1+F XLzwhaQrf2JMzF29Iyg6Z6vDZ03t1aAlTNYCjFZIwupAYY+SXh+YZRkQuChOOx8X gV4WZXg3PidPCZLpol508kXt9KwQPbmp+5qZJaz9rvhNP4Zw2ZoCRPFHUIWHg5Zt lzz1Pt+axRT2Z+sBMmeGiGMeXbMwiS0JYbJNfITj2IKu08xM2yA0A+DrYs66+KfP Gzl0uOYdRxXVcup3oiNy =6Kf3 -----END PGP SIGNATURE----- --=-=-=-- From debbugs-submit-bounces@debbugs.gnu.org Wed Oct 17 08:19:43 2018 Received: (at 30256) by debbugs.gnu.org; 17 Oct 2018 12:19:43 +0000 Received: from localhost ([127.0.0.1]:54481 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1gCknf-0007v8-5C for submit@debbugs.gnu.org; Wed, 17 Oct 2018 08:19:43 -0400 Received: from eggs.gnu.org ([208.118.235.92]:58556) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1gCknd-0007us-9K for 30256@debbugs.gnu.org; Wed, 17 Oct 2018 08:19:41 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1gCknX-0000Wm-0z for 30256@debbugs.gnu.org; Wed, 17 Oct 2018 08:19:35 -0400 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=disabled version=3.3.2 Received: from fencepost.gnu.org ([2001:4830:134:3::e]:35660) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1gCknW-0000WK-Rp; Wed, 17 Oct 2018 08:19:34 -0400 Received: from [2a01:e0a:1d:7270:af76:b9b:ca24:c465] (port=53704 helo=ribbon) by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256) (Exim 4.82) (envelope-from ) id 1gCknW-0007gc-II; Wed, 17 Oct 2018 08:19:34 -0400 From: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) To: Mike Gerwitz Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. References: <87vag2wopo.fsf@gnu.org> <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> <87tvtyhhnd.fsf@gnu.org> Date: Wed, 17 Oct 2018 14:19:33 +0200 In-Reply-To: <87tvtyhhnd.fsf@gnu.org> ("Ludovic \=\?utf-8\?Q\?Court\=C3\=A8s\=22'\?\= \=\?utf-8\?Q\?s\?\= message of "Fri, 02 Mar 2018 11:54:30 +0100") Message-ID: <87murcdaui.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/26.1 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 2001:4830:134:3::e X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: 30256 Cc: 30254@debbugs.gnu.org, 30256@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -6.0 (------) Hello Mike, There=E2=80=99s this last patch from the series you submitted a while back that=E2=80=99s ready modulo an issue with the test. Could you take a look? TIA, Ludo=E2=80=99. ludo@gnu.org (Ludovic Court=C3=A8s) skribis: > Mike Gerwitz skribis: > >> * doc/guix.texi (Invoking guix environment): Add --no-cwd. >> * guix/scripts/environment.scm (show-help, %options): Add --no-cwd. >> (launch-environment/container): Add 'map-cwd?' param; only add mapping f= or cwd >> if #t. Only change to cwd within container if #t, otherwise home. >> (guix-environment): Error if --no-cwd without --container. Provide '(not >> no-cwd?)' to launch-environment/container as 'map-cwd?'. >> * tests/guix-environment.sh: Add test for no-cwd. > > This one LGTM as well (with the test moved to > guix-environment-container.sh). There=E2=80=99s just a minor issue: > >> --- a/tests/guix-environment.sh >> +++ b/tests/guix-environment.sh >> @@ -84,6 +84,14 @@ HOME=3D"$tmpdir" guix environment --bootstrap --conta= iner --user=3Dfoognu \ >> --share=3D"$tmpdir/umock" \ >> -- guile -c "$usertest" >>=20=20 >> +# if not sharing CWD, chdir home >> +( >> + cd "$tmpdir" \ >> + && guix environment --bootstrap --container --no-cwd --user=3Dfoo \ >> + --ad-hoc guile-bootstrap --pure \ >> + -- /bin/sh -c 'test $(pwd) =3D=3D "/home/foo" -a ! -d '"$tm= pdir" >> +) >> + > > This test would fail for me because my test store is at > ~ludo/src/guix/test-tmp/store and my CWD is ~/src/guix. So when using > both --user and --no-cwd, the effect is that > ~ludo/src/guix/test-tmp/store is not available at all within the > container, and thus execve("/bin/sh") fails with ENOENT: > > $ ./test-env guix environment --bootstrap --container --no-cwd --user=3Df= oo --ad-hoc guile-bootstrap > accepted connection from pid 29684, user ludo > accepted connection from pid 29695, user ludo > ./test-env: line 1: 29683 Terminated "/home/ludo/src/guix/pr= e-inst-env" "/home/ludo/src/guix/guix-daemon" --disable-chroot --substitute= -urls=3D"$GUIX_BINARY_SUBSTITUTE_URL" > $ echo $? > 1 > > Thoughts? > > TIA, > Ludo=E2=80=99. From debbugs-submit-bounces@debbugs.gnu.org Wed Nov 07 20:57:02 2018 Received: (at 30256) by debbugs.gnu.org; 8 Nov 2018 01:57:02 +0000 Received: from localhost ([127.0.0.1]:40156 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1gKZZ8-00079Z-2r for submit@debbugs.gnu.org; Wed, 07 Nov 2018 20:57:02 -0500 Received: from eggs.gnu.org ([208.118.235.92]:50749) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1gKZZ6-00079H-2Z for 30256@debbugs.gnu.org; Wed, 07 Nov 2018 20:57:00 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1gKZZ0-0008Qf-A0 for 30256@debbugs.gnu.org; Wed, 07 Nov 2018 20:56:54 -0500 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=disabled version=3.3.2 Received: from fencepost.gnu.org ([2001:4830:134:3::e]:42020) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1gKZYx-0008Oe-Hb; Wed, 07 Nov 2018 20:56:51 -0500 Received: from localhost ([::1]:44866 helo=mikegerwitz-pc.gerwitz.local) by fencepost.gnu.org with esmtps (TLS1.2:DHE_RSA_AES_128_CBC_SHA1:128) (Exim 4.82) (envelope-from ) id 1gKZYx-0006FO-CQ; Wed, 07 Nov 2018 20:56:51 -0500 From: Mike Gerwitz To: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. In-Reply-To: <87murcdaui.fsf@gnu.org> ("Ludovic \=\?utf-8\?Q\?Court\=C3\=A8s\=22'\?\= \=\?utf-8\?Q\?s\?\= message of "Wed, 17 Oct 2018 14:19:33 +0200") Date: Wed, 07 Nov 2018 20:56:34 -0500 Message-ID: <87lg64xrfx.fsf@gnu.org> References: <87vag2wopo.fsf@gnu.org> <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> <87tvtyhhnd.fsf@gnu.org> <87murcdaui.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) OpenPGP: id=22175B02E626BC98D7C0C2E5F22BB8158EE30EAB MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 2001:4830:134:3::e X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: 30256 Cc: 30254@debbugs.gnu.org, 30256@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -6.0 (------) --=-=-= Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Ludo: On Wed, Oct 17, 2018 at 15:19:33 +0200, Ludovic Court=C3=A8s wrote: > There=E2=80=99s this last patch from the series you submitted a while back > that=E2=80=99s ready modulo an issue with the test. Could you take a loo= k? I'm not ignoring this; I'll have time to look over the next couple of weeks. I'll need to research the issue. =2D-=20 Mike Gerwitz --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCgAGBQJb45fSAAoJEIyRe39dxRuisEMQALzkRSbdn1DLakjTK2vMJTMh oNJI00NgVPrmTbCgohtIZCvW9rhdmhgDmWr3gSM1I+3ptMKoN79kQCcT3O/seKWd 1oh1MOswwwzNaZPBuVqq8m8FjE25OmYm4+FAT+KJWV3xBA2t3gUuxWway4OLmL7w wFkMTWUftScog0Aa2BceI56dXT6YmheajMoTjhhc27lnAT71Yf3qPsNfjs7VpGjY Wqz6oC7h3Kv44WNN7KbUV0Zilvfh/zpU8AKeayovd9v4gQUudiCtPEimPi9VPeuZ pvQk412DOfTAZYSCai8y8+2JYsXks+BGXd1+yX/cOqHp7tvAcrDxna96X0H1DS4d +O1srjpEhsb39HvCnya/u6c7ltWNjUAdojksm2KpY5eMjQkvkhV5O6K/0wAZf53l 9jyd4uJ9hLYqKlspbiTvFCAqa3SDp43/deKT3PR1Gd7x04c7R+GtF9PLwvIOSsVY ZUlsujv/YWQqGVt9LJ0XN2ffQ+wyZ8xxIyPQBtnRUHNFlJrOIXxtkuRKdVuSDB4g kZPky1QyBhG9HldJEDyvr3JXeyDxgPGBxpAt0K3vadv+5fL59+7Q59oaSnKkC2ln FpXEw+8cz+93Xjh8N3zybBl9sGfh+LVp87Cjd06Dlw+g/bcCsCoRGV165VHa3kuy bAe5pEu9SpGWVxBcicgv =V7Ay -----END PGP SIGNATURE----- --=-=-=-- From debbugs-submit-bounces@debbugs.gnu.org Mon Feb 04 12:15:52 2019 Received: (at control) by debbugs.gnu.org; 4 Feb 2019 17:15:53 +0000 Received: from localhost ([127.0.0.1]:59683 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1gqhqa-0000i8-Lp for submit@debbugs.gnu.org; Mon, 04 Feb 2019 12:15:52 -0500 Received: from sender-of-o51.zoho.com ([135.84.80.216]:21095) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1gqhqY-0000i0-Hr for control@debbugs.gnu.org; Mon, 04 Feb 2019 12:15:51 -0500 ARC-Seal: i=1; a=rsa-sha256; t=1549286974; cv=none; d=zoho.com; s=zohoarc; b=PPvR5zKdOPA2Tc5VU/45AnQJi9dvjS639YMIDIoR6mTDkw1vEDDz+2Zm/l2/ys3aiHXI2j7Qdnok5+chExCMKgnmht9Gy8/pNPKnP/DbHKYjVq8IIXIb18IOh+B6mawjQEu/seZ9pGzbM+pWNiOfWWlVQlgsLQiRd8aJDavdES4= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zoho.com; s=zohoarc; t=1549286974; h=Date:From:Message-ID:Subject:To:ARC-Authentication-Results; bh=mNSPQp6x585w9isp8gRgmC9ojoMx5vWF+B55NMXGvNs=; b=HsviXEqLq8Y+NTWcs+BnLQhy9sFPZSFb39lZ1JUYTGSyoxb0Dfgz60IdVIs5yQkiR5aBL7frvgxUJrshOz/TVDMZ/hsjXQvq+O3uenIK16Pt5u3jFl/dU6Zm5v0mUF/mu/+92JoYDgfDPxQuGRM+vjtzk9JUTJs2WM/VWPgYzWI= ARC-Authentication-Results: i=1; mx.zoho.com; dkim=pass header.i=elephly.net; spf=pass smtp.mailfrom=rekado@elephly.net; dmarc=pass header.from= header.from= DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; t=1549286974; s=zoho; d=elephly.net; i=rekado@elephly.net; h=Date:To:From:Message-ID:Subject; l=21; bh=mNSPQp6x585w9isp8gRgmC9ojoMx5vWF+B55NMXGvNs=; b=YZMbh9QybSDlDdIjY5mQ1oI0i+ov+fpACFWh+qCf7u+aEav4tHXDvjFq3N2QucRQ 5XSKh8kQS0PbPEiVPVQ3/kEdrxAJlYc508AtO3DX1O/xJWA/Jc6saQqmjMbF9kMZq+B rGBmpR7ThkjgDsV2UFNWbmIgz+F8Czu4wGCjJg+k= Received: from localhost (46.183.103.8 [46.183.103.8]) by mx.zohomail.com with SMTPS id 1549286973170523.7483845000253; Mon, 4 Feb 2019 05:29:33 -0800 (PST) Date: Mon, 04 Feb 2019 14:29:28 +0100 To: control@debbugs.gnu.org From: Ricardo Wurmus Message-ID: <168b8b31ef3.2c1a096-1530070560.2547737053220808969@zoho.com> Subject: control message for bug #30254 X-ZohoMailClient: External X-Spam-Score: -0.0 (/) X-Debbugs-Envelope-To: control X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) tags 30254 moreinfo From debbugs-submit-bounces@debbugs.gnu.org Sat Jun 29 19:27:58 2019 Received: (at 30256) by debbugs.gnu.org; 29 Jun 2019 23:27:58 +0000 Received: from localhost ([127.0.0.1]:45058 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1hhMlC-0007fe-K5 for submit@debbugs.gnu.org; Sat, 29 Jun 2019 19:27:58 -0400 Received: from mail2.protonmail.ch ([185.70.40.22]:52541) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1hhMlA-0007fI-HL for 30256@debbugs.gnu.org; Sat, 29 Jun 2019 19:27:57 -0400 Date: Sat, 29 Jun 2019 23:27:43 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=carldong.me; s=protonmail; t=1561850867; bh=VQNLVUXuMca1loUlCilWUWJNJjFrlnh/ekrQG3xcDTk=; h=Date:To:From:Reply-To:Subject:Feedback-ID:From; b=hnQsui4JGR5OWSBs5NJUCZGs84GKwzpr4Bi703RlYHio5LEZv/RAmKa/DTjHFj8Va /ubC53J4Ok+a4KHAUjX9Q/Tr1aiNU098VS1oYGAyEzSdbNBziVoeKtsfUULEo9hbUJ 07YHYxVfM5iKujnz7l7ZmaVPmZJrY1QeG2VppyQE= To: "30256@debbugs.gnu.org" <30256@debbugs.gnu.org> From: Carl Dong Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. Message-ID: Feedback-ID: a8j8tDUaJ4AYuDVBywMTwsJebN4w8TVXadJLsJb8td3t3dZi9RdXFlPaQvoFKnI9KgXySsPXcRkajVyY0cGTcA==:Ext:ProtonMail MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Spam-Status: No, score=-1.2 required=7.0 tests=ALL_TRUSTED,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF autolearn=ham autolearn_force=no version=3.4.2 X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on mail.protonmail.ch X-Spam-Score: -0.7 (/) X-Debbugs-Envelope-To: 30256 X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: Carl Dong Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.7 (-) Hi Mike and Ludo! I believe I've found a solution to the problem that Ludo was encountering. = The reason why Ludo was having trouble was because when a user specifies `--use= r`, we rewrite the targets of our filesystem mappings so that every instance of `$HOME` (as seen ouside the container) becomes `/home/$USER`. Since this ap= plied to all filesystem mappings, it included our filesystem mappings for inputs = too. However, our symlinks were not updated. My change makes it so that we _only_ update the mappings that are either user-specified, or cwd (if applicable). This solves Ludo's problems. Here's the patch, let me know if it looks good: https://github.com/dongcarl/guix/compare/8e92d5465fc154fed5d06f7e4a64d7dccc= ded74d...2019-06-env-no-cwd-fix.patch Cheers, Carl Dong From debbugs-submit-bounces@debbugs.gnu.org Sun Jul 07 09:18:32 2019 Received: (at 30256) by debbugs.gnu.org; 7 Jul 2019 13:18:32 +0000 Received: from localhost ([127.0.0.1]:56296 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1hk73n-0004DT-Af for submit@debbugs.gnu.org; Sun, 07 Jul 2019 09:18:31 -0400 Received: from eggs.gnu.org ([209.51.188.92]:52465) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1hk73l-0004DA-7X; Sun, 07 Jul 2019 09:18:29 -0400 Received: from fencepost.gnu.org ([2001:470:142:3::e]:41010) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1hk73f-0001lA-J7; Sun, 07 Jul 2019 09:18:23 -0400 Received: from [2a01:e0a:1d:7270:af76:b9b:ca24:c465] (port=55768 helo=ribbon) by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256) (Exim 4.82) (envelope-from ) id 1hk73e-0002a3-Mu; Sun, 07 Jul 2019 09:18:23 -0400 From: =?utf-8?Q?Ludovic_Court=C3=A8s?= To: Carl Dong Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. References: <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> Date: Sun, 07 Jul 2019 15:18:20 +0200 In-Reply-To: (Carl Dong's message of "Sat, 29 Jun 2019 23:27:43 +0000") Message-ID: <87lfxac7ab.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/26.2 (gnu/linux) MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha256; protocol="application/pgp-signature" X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Spam-Score: -2.3 (--) X-Debbugs-Envelope-To: 30256 Cc: Ricardo Wurmus , 30254@debbugs.gnu.org, "30256@debbugs.gnu.org" <30256@debbugs.gnu.org>, Mike Gerwitz X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.3 (---) --=-=-= Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Hi Carl, Carl Dong skribis: > I believe I've found a solution to the problem that Ludo was encountering= . The > reason why Ludo was having trouble was because when a user specifies `--u= ser`, > we rewrite the targets of our filesystem mappings so that every instance = of > `$HOME` (as seen ouside the container) becomes `/home/$USER`. Since this = applied > to all filesystem mappings, it included our filesystem mappings for input= s too. > However, our symlinks were not updated. > > My change makes it so that we _only_ update the mappings that are either > user-specified, or cwd (if applicable). This solves Ludo's problems. > > Here's the patch, let me know if it looks good: > https://github.com/dongcarl/guix/compare/8e92d5465fc154fed5d06f7e4a64d7dc= ccded74d...2019-06-env-no-cwd-fix.patch Good catch! The patches LGTM. (Note: you can use the =E2=80=98Co-authored= -by=E2=80=99 tag for the second patch, I think it=E2=80=99s a more or less common convention.) Speaking of which, could you create an account on Savannah? That way we could grant you commit access to make it more convenient for you and so you can review and apply other people=E2=80=99s patches in your areas of ex= pertise. Please let me know what your account is, and reply with a message signed by the key you=E2=80=99ll use to sign commits. Also please read the =E2=80= =98HACKING=E2=80=99 file for info on the commit =E2=80=9Crules=E2=80=9D. Thanks! Ludo=E2=80=99. --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEPORkVYqE/cadtAz7CQsRmT2a67UFAl0h8RwACgkQCQsRmT2a 67Xc+Q/+Kq8VHJSSLVX8lMtbCNz+PR7fjFXVIou2E81SyQ1RzjeK/Iy0RbwdsOnX 02/GB1+8WK2F4L/j+48DEAzNO9Pg3AMYNITXaCyhxx0uqjhCIgWK5XBfLnjgGGIO e2U2mxRhwCDAK5hbdlJncrtax6rgqouZmUiPkTfJ6cnJRmYAWtl/2zKf7aPxiZ/Z k9k2E4IUcsDrP/tpl6CT8WUiFOBvzudfbFij3PH7a17kzO7TQKJAK7R9R2LdywwC teZ2BYzpqF+eMo1+L13aQpC+Kh58rYDU+DWsIVtm0vnEJqLdkiOZsgIMOlIhuluN gS1RR06af/ayJsxilwS3DUjXKetVo0Dr7EaOyhSzW0UfYepHZQVQDDVu9ELJ2qu5 QaWZGcWqx+tS78JHIO3yHgWisTaB473JroKPJbvCkoDMTXrHoyEoRA9kX4IzPL5N DT+8GcXhn+iAQneZBBxemRZuxVlEMi3lqP5NMLH9bsS7Gm2hCFKCqYoBEGKhgLiQ qEDTJLVrT96f39KxItPrps40qrvPWu3U8vcxf9XIlIHM8yZ1PC44UTViH8aKmq+r YhD+RjsiyYNq2frW7U+Nv7INkyHWujmMFhmhw2rfv9cfU00+Eq/yIqu2dR3B4PiS Ubz0hngpdNh1ySpgoJq0Cgj5hyrcHd6nWsVwhda/rawJp83RWFg= =SlEi -----END PGP SIGNATURE----- --=-=-=-- From debbugs-submit-bounces@debbugs.gnu.org Sun Jul 07 09:53:34 2019 Received: (at 30256) by debbugs.gnu.org; 7 Jul 2019 13:53:34 +0000 Received: from localhost ([127.0.0.1]:56342 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1hk7bi-0007E3-8y for submit@debbugs.gnu.org; Sun, 07 Jul 2019 09:53:34 -0400 Received: from eggs.gnu.org ([209.51.188.92]:59254) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1hk7bg-0007Dq-Lb for 30256@debbugs.gnu.org; Sun, 07 Jul 2019 09:53:32 -0400 Received: from fencepost.gnu.org ([2001:470:142:3::e]:41237) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1hk7ba-0000XI-JB; Sun, 07 Jul 2019 09:53:26 -0400 Received: from localhost ([::1]:38911 helo=mikegerwitz-pc.gerwitz.local) by fencepost.gnu.org with esmtps (TLS1.2:DHE_RSA_AES_128_CBC_SHA1:128) (Exim 4.82) (envelope-from ) id 1hk7ba-0001sB-2f; Sun, 07 Jul 2019 09:53:26 -0400 From: Mike Gerwitz To: Carl Dong Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. In-Reply-To: (Carl Dong's message of "Sat, 29 Jun 2019 23:27:43 +0000") Date: Sun, 07 Jul 2019 09:45:22 -0400 Message-ID: <87zhlqt0ul.fsf@gnu.org> References: <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.0.50 (gnu/linux) OpenPGP: id=D6E9B930028A6C38F43B2388FEF635745E6F6D05 MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Spam-Score: -2.3 (--) X-Debbugs-Envelope-To: 30256 Cc: "30256@debbugs.gnu.org" <30256@debbugs.gnu.org> X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.3 (---) --=-=-= Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Sat, Jun 29, 2019 at 23:27:43 +0000, Carl Dong wrote: > Hi Mike and Ludo! > > I believe I've found a solution to the problem that Ludo was encountering. Thank you for picking this up, and sorry again that I wasn't able to find the time. I'm glad this patch is useful to someone else, and I'm looking forward to seeing it applied. =2D-=20 Mike Gerwitz --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCgAGBQJdIfdyAAoJEIyRe39dxRuiREkP/jTzOmbh5nwphZ+lpGKFEl2z nRCgBvUYpKEXVIrjb0cj2J3dIWQlaNH05b5WMWrNMNZ2yIE7al7g0oyI5eg+LTHZ Pm2clIHzhxobjEOcp2ksIV0QIe9lnivpplhbsfScr9SZjrdWZGswMfSL6L+LaD+x oPlMNx968hWYCBajjVihHfYumyLNaQmNlD25cThI7SREl1F9WZKpsF4yZdt6gksS 8XJFdJWuLLMIizCnDtRyCj8kNNMVeyTqCCftSkIOVAGpPfrMXJ7LKelzmTul/U8F VeuohjR5t01PItXZD5BEeTRryiO1+FMh2egX791zbTnFtCqA3aHYZ6FK5SR0eI+T BrbOQE+Q+uk1sPaAVz4m+2+1RYtFDJ1TQLsfuQFRa7tw/YA2hCdLk9zTRicrTJAu DLEbbIUDQqQfJ1NJJeSj2XXQMnSJ8r3lreEFuCWAEQ/o0wwdbTaPSho6+tPt8L7p lYi3hd/Q5nhGW2RmqA3XGgT7OgKH8qK9bCgBYike18cKaWIT9wWCa0I5tD1iPbiH jOvOchhZb/hhNbAsZhvFlY+yoKu5jFfL5RzHDb5ilVfMO1F1ZHYeUk3bAybJ7Wr1 5GSR0QgQNijWbyAcpcAEthN8jfh9XdE6TugAo2pPWfgZ4VzidS/f33dC5fIiLVKY 5TYNihTK5MWjcxQCOWs7 =yx4h -----END PGP SIGNATURE----- --=-=-=-- From debbugs-submit-bounces@debbugs.gnu.org Sun Jul 07 10:25:03 2019 Received: (at 30256) by debbugs.gnu.org; 7 Jul 2019 14:25:04 +0000 Received: from localhost ([127.0.0.1]:57260 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1hk86B-0008CQ-JY for submit@debbugs.gnu.org; Sun, 07 Jul 2019 10:25:03 -0400 Received: from mail-40132.protonmail.ch ([185.70.40.132]:61387) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1hk868-0008Bf-KC for 30256@debbugs.gnu.org; Sun, 07 Jul 2019 10:25:01 -0400 Date: Sun, 07 Jul 2019 14:24:44 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=carldong.me; s=protonmail; t=1562509491; bh=PG8C13gIvl6Rrw60m8JTFEEzHkiBX4mt9HJOwys9J9k=; h=Date:To:From:Cc:Reply-To:Subject:In-Reply-To:References: Feedback-ID:From; b=aWLWgAKH01CrjFksCOAm7EPU0KKOun2ONSy2xnlBc9PMQtIcQIE1cWX5FKbnDwGQ4 W5IVmlYaZR7KcNF9LFYDqZi1+E1wwVOZJ3N55XbxhVXx+n9Wg54KmddTrQbi0jZkN+ 2vG+nwIoTSsUemUFnLhdMIyQBZIOvy1obtsRZoOg= To: =?UTF-8?Q?Ludovic_Court=C3=A8s?= From: Carl Dong Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. Message-ID: In-Reply-To: <87lfxac7ab.fsf@gnu.org> References: <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> <87lfxac7ab.fsf@gnu.org> Feedback-ID: a8j8tDUaJ4AYuDVBywMTwsJebN4w8TVXadJLsJb8td3t3dZi9RdXFlPaQvoFKnI9KgXySsPXcRkajVyY0cGTcA==:Ext:ProtonMail MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Spam-Status: No, score=-1.2 required=7.0 tests=ALL_TRUSTED,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF autolearn=ham autolearn_force=no version=3.4.2 X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on mail.protonmail.ch X-Spam-Score: -0.7 (/) X-Debbugs-Envelope-To: 30256 Cc: Ricardo Wurmus , Mike Gerwitz , "30256\\@debbugs.gnu.org" <30256@debbugs.gnu.org> X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: Carl Dong Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.7 (-) Hi Ludo! > Good catch! The patches LGTM. (Note: you can use the =E2=80=98Co-authored= -by=E2=80=99 tag for > the second patch, I think it=E2=80=99s a more or less common convention.) Done! Updated at the same link as last time: https://github.com/dongcarl/guix/compare/8e92d5465fc154fed5d06f7e4a64d7dccc= ded74d...2019-06-env-no-cwd-fix.patch > Speaking of which, could you create an account on Savannah? That way we c= ould > grant you commit access to make it more convenient for you and so you can > review and apply other people=E2=80=99s patches in your areas of expertis= e. That's super exciting! :-) > Please let me know what your account is, and reply with a message signed = by > the key you=E2=80=99ll use to sign commits. Here you go! My fingerprint: 0401 7A2A 6D9A 0CCD C81D 8EC2 96AB 007F 1A7E D999 My signed account info: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 My Savannah account as of (Sun 07 Jul 2019 02:06:45 PM UTC) is carl. -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEECc3SW1JEo3Z49u6oDMUhUxl5kaUFAl0h/I8ACgkQDMUhUxl5 kaW7tw//fxTNv+9afaC0QHoos7CQ6zhjVxyRoyGC1b9tYssXA/I/O+vEzthy2T/H FTbJaa5YjTr09AMwKFzxp1yrGh6+yzp5YQF5uGG26N8NGTOHxet43AtMg1c7Cm7H vG2KxQLvpUkmroc7NX+P/BZ5RruN+PJSOpssTB5PrDb3DDUzbMNTTmhWZWdEw6Er 0JIz/zH5iZhcWZZ68EILeI3OXGpgWI8D2MTrBkmgtwwL3/Z9fVDV0ui11KtSV4jK ZTj7SJnHra9HJ6UxO47hs98oTdI1ho7cXFOBQ7GqsBwSzWBCMXaU8VsTtfGdoeMz 2EQQ0NMVOzPIeH4DHnvFLJVuTUS+0wXzmsTVvmq+NASZjZRS7H6xGjunLet/G0wQ WqRA85tpSc6Lvr1Ab/oMRxZZnxeBQ8mJU7Y/ROe6GubdiAT5bdJBTLjeCjbARadp UTbp+WclI0VVD/tPAcOlxJnj0iVEMBRe/hFa2o9Uvv4mZl+3NAlGKRycWXByq+l2 3Fjfqn7aF5a7R9y/itBAGh9fGUShK08Cb8/TfbTH/voX1VIzzXhAjnhBoL2p0Mi8 4l+PUZ7T7Ob5HGaz1VxztWFucXKPXZCOu9Igv1EIirTKbKzsyWZr1OGmDi8YzqHo bD4yP39Buyoj/v/S0OE/ocGidtXx/FGGoR84yWYrx3nLtCWin+E=3D =3DRXBz -----END PGP SIGNATURE----- > Also please read the =E2=80=98HACKING=E2=80=99 file for info on the commi= t =E2=80=9Crules=E2=80=9D. Done! Cheers, Carl Dong contact@carldong.me "I fight for the users" From debbugs-submit-bounces@debbugs.gnu.org Mon Jul 08 05:41:45 2019 Received: (at 30256) by debbugs.gnu.org; 8 Jul 2019 09:41:45 +0000 Received: from localhost ([127.0.0.1]:57751 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1hkQ9Y-0004LR-Qu for submit@debbugs.gnu.org; Mon, 08 Jul 2019 05:41:45 -0400 Received: from eggs.gnu.org ([209.51.188.92]:37995) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1hkQ9W-0004LE-Fn for 30256@debbugs.gnu.org; Mon, 08 Jul 2019 05:41:43 -0400 Received: from fencepost.gnu.org ([2001:470:142:3::e]:53951) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1hkQ9Q-0003lo-VI; Mon, 08 Jul 2019 05:41:37 -0400 Received: from [2001:660:6102:320:e120:2c8f:8909:cdfe] (port=39456 helo=ribbon) by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256) (Exim 4.82) (envelope-from ) id 1hkQ9P-0001b8-Jt; Mon, 08 Jul 2019 05:41:36 -0400 From: =?utf-8?Q?Ludovic_Court=C3=A8s?= To: Carl Dong Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. References: <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> <87lfxac7ab.fsf@gnu.org> X-URL: http://www.fdn.fr/~lcourtes/ X-Revolutionary-Date: 20 Messidor an 227 de la =?utf-8?Q?R=C3=A9volution?= X-PGP-Key-ID: 0x090B11993D9AEBB5 X-PGP-Key: http://www.fdn.fr/~lcourtes/ludovic.asc X-PGP-Fingerprint: 3CE4 6455 8A84 FDC6 9DB4 0CFB 090B 1199 3D9A EBB5 X-OS: x86_64-pc-linux-gnu Date: Mon, 08 Jul 2019 11:41:32 +0200 In-Reply-To: (Carl Dong's message of "Sun, 07 Jul 2019 14:24:44 +0000") Message-ID: <87pnmkhnhv.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/26.2 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Spam-Score: -2.3 (--) X-Debbugs-Envelope-To: 30256 Cc: Ricardo Wurmus , Mike Gerwitz , "30256@debbugs.gnu.org" <30256@debbugs.gnu.org> X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.3 (---) Hello! Carl Dong skribis: >> Good catch! The patches LGTM. (Note: you can use the =E2=80=98Co-authore= d-by=E2=80=99 tag for >> the second patch, I think it=E2=80=99s a more or less common convention.) > > Done! Updated at the same link as last time: > https://github.com/dongcarl/guix/compare/8e92d5465fc154fed5d06f7e4a64d7dc= ccded74d...2019-06-env-no-cwd-fix.patch Alright! >> Speaking of which, could you create an account on Savannah? That way we = could >> grant you commit access to make it more convenient for you and so you can >> review and apply other people=E2=80=99s patches in your areas of experti= se. > > That's super exciting! :-) > >> Please let me know what your account is, and reply with a message signed= by >> the key you=E2=80=99ll use to sign commits. > > Here you go! > > My fingerprint: > > 0401 7A2A 6D9A 0CCD C81D 8EC2 96AB 007F 1A7E D999 > > My signed account info: > > My Savannah account as of (Sun 07 Jul 2019 02:06:45 PM UTC) is carl. Cool, I=E2=80=99ve added you to the Savannah group. You can now push these= two patches to test it. Thank you and welcome on board! :-) Ludo=E2=80=99. From debbugs-submit-bounces@debbugs.gnu.org Wed Jul 14 09:18:53 2021 Received: (at 30256) by debbugs.gnu.org; 14 Jul 2021 13:18:53 +0000 Received: from localhost ([127.0.0.1]:43390 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1m3emr-0000p3-7i for submit@debbugs.gnu.org; Wed, 14 Jul 2021 09:18:53 -0400 Received: from mail-qv1-f52.google.com ([209.85.219.52]:46702) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1m3emp-0000oe-3p; Wed, 14 Jul 2021 09:18:52 -0400 Received: by mail-qv1-f52.google.com with SMTP id w2so949472qvh.13; Wed, 14 Jul 2021 06:18:51 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:cc:subject:references:date:in-reply-to:message-id :user-agent:mime-version:content-transfer-encoding; bh=GDPJd5YcFE1elA0zOAglpP+MfKpxkvfr0x1frL/Sqz8=; b=Rb0AZ9IFpog1Y7lk7l0JyJ33p063zz1NIOo5eWMzNY9RHmUV7PplwWme3v4/wcXO2u VqdFC8clUPVMEmj98X/oqp5qme980e8ijAQ+IPB0IqSSOsawSGzZu2mZvdAGc0KbhDyF 8D9yVeaUFtwQaiEu4Ujszn8mIEDprkVuHidT5PrYhBLEudobiQa4esuw15flyrUsAMvB dG009++DLqX2S3hltexUbdhGptnQio7LD1SMOsSnQ4WJa7X5pTl2pke1wmoclMppo2b4 i+iPUM7i4A8kPlEe4qD+AD8AM5izORmRSWgUHpQ5/WZqvM38BhH2k0vVWzU9s04BLKZU zYPg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:references:date:in-reply-to :message-id:user-agent:mime-version:content-transfer-encoding; bh=GDPJd5YcFE1elA0zOAglpP+MfKpxkvfr0x1frL/Sqz8=; b=nQ94TBgfFq34mOLnbREpp6FzZt8CCRBntFA4DXrU61aluruZXdjNogi89DDIah7S6t 0B0k/RFkmI9VrWjIr/WdTRwN1lXJToYlHGdoN0nBL9ak1wVRqegZ0DbqnkPCld28hq6A tRwqMH2GRt9wSPDvVKTedJSe5W/GSZW/P7Pk+Sld2aXABnH3U9zX6O5f20JwRnwpxDRC 1LErCpbl0XLXu38MOoP9z7dPnFeXkQl5BSAdxlfnk9/realb3cpBWi2VIn693PHUkHzg HD+AxQpy0C5W6uCx4tCYJmHgc/74L8pF+lMlZ0rqIkfA7b3Eo2ChEvDjGPcbGknVS493 rYwQ== X-Gm-Message-State: AOAM53268jK5qIwlSsAINyed/hgySVR5/OkSqSNer3XwkmyKLV5Ejd3s gEctGrRFtTr93Ophf4a6gur83N85UodE1MiU X-Google-Smtp-Source: ABdhPJwT/Fdn3fGro7G37O8cMiKiSYYslcnpFmuy72TCkYTvCb/8n2QEh5x4PSRHFWbsj30LVO2JaQ== X-Received: by 2002:ad4:5ca6:: with SMTP id q6mr10758990qvh.23.1626268725485; Wed, 14 Jul 2021 06:18:45 -0700 (PDT) Received: from hurd (dsl-159-138.b2b2c.ca. [66.158.159.138]) by smtp.gmail.com with ESMTPSA id bk40sm957774qkb.3.2021.07.14.06.18.44 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 14 Jul 2021 06:18:44 -0700 (PDT) From: Maxim Cournoyer To: Ludovic =?utf-8?Q?Court=C3=A8s?= Subject: Re: bug#30254: [PATCH 0/3] guix environment --user, --link-profile, --no-cwd References: <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> <87lfxac7ab.fsf@gnu.org> <87pnmkhnhv.fsf@gnu.org> Date: Wed, 14 Jul 2021 09:18:43 -0400 In-Reply-To: <87pnmkhnhv.fsf@gnu.org> ("Ludovic =?utf-8?Q?Court=C3=A8s=22'?= =?utf-8?Q?s?= message of "Mon, 08 Jul 2019 11:41:32 +0200") Message-ID: <875yxdowy4.fsf_-_@gmail.com> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: 0.0 (/) X-Debbugs-Envelope-To: 30256 Cc: Ricardo Wurmus , Mike Gerwitz , 30254-done@debbugs.gnu.org, "30256-done@debbugs.gnu.org" <30256@debbugs.gnu.org>, Carl Dong X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) Hello, Ludovic Court=C3=A8s writes: > Hello! > > Carl Dong skribis: > >>> Good catch! The patches LGTM. (Note: you can use the =E2=80=98Co-author= ed-by=E2=80=99 tag for >>> the second patch, I think it=E2=80=99s a more or less common convention= .) >> >> Done! Updated at the same link as last time: >> https://github.com/dongcarl/guix/compare/8e92d5465fc154fed5d06f7e4a64d7d= cccded74d...2019-06-env-no-cwd-fix.patch > > Alright! > >>> Speaking of which, could you create an account on Savannah? That way we= could >>> grant you commit access to make it more convenient for you and so you c= an >>> review and apply other people=E2=80=99s patches in your areas of expert= ise. [...] > Cool, I=E2=80=99ve added you to the Savannah group. You can now push the= se two > patches to test it. Seems the patches have indeed been pushed :-). Closing. Maxim From unknown Sun Jun 22 22:42:03 2025 Received: (at fakecontrol) by fakecontrolmessage; To: internal_control@debbugs.gnu.org From: Debbugs Internal Request Subject: Internal Control Message-Id: bug archived. Date: Thu, 12 Aug 2021 11:24:06 +0000 User-Agent: Fakemail v42.6.9 # This is a fake control message. # # The action: # bug archived. thanks # This fakemail brought to you by your local debbugs # administrator