From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Leo Prikler Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Fri, 12 Mar 2021 17:45:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: report 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: 47106@debbugs.gnu.org X-Debbugs-Original-To: bug-guix@gnu.org Received: via spool by submit@debbugs.gnu.org id=B.16155710536799 (code B ref -1); Fri, 12 Mar 2021 17:45:01 +0000 Received: (at submit) by debbugs.gnu.org; 12 Mar 2021 17:44:13 +0000 Received: from localhost ([127.0.0.1]:58283 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lKlpd-0001lb-HW for submit@debbugs.gnu.org; Fri, 12 Mar 2021 12:44:13 -0500 Received: from lists.gnu.org ([209.51.188.17]:46320) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lKlpb-0001lT-DN for submit@debbugs.gnu.org; Fri, 12 Mar 2021 12:44:12 -0500 Received: from eggs.gnu.org ([2001:470:142:3::10]:35410) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1lKlpY-0000oA-AR for bug-guix@gnu.org; Fri, 12 Mar 2021 12:44:09 -0500 Received: from mailrelay.tugraz.at ([129.27.2.202]:14318) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1lKlpT-0000NF-9c for bug-guix@gnu.org; Fri, 12 Mar 2021 12:44:07 -0500 Received: from nijino.local (217-149-164-20.nat.highway.telekom.at [217.149.164.20]) by mailrelay.tugraz.at (Postfix) with ESMTPSA id 4DxtTn08LHz1LBCr for ; Fri, 12 Mar 2021 18:43:56 +0100 (CET) DKIM-Filter: OpenDKIM Filter v2.11.0 mailrelay.tugraz.at 4DxtTn08LHz1LBCr DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tugraz.at; s=mailrelay; t=1615571037; bh=85T5Fpvy2hrtWXC+3OIVaqci6beWKTAD74RWgYfPnE0=; h=Subject:From:To:Date:From; b=T+CRMWvSRkUFA8+AonWyMIb2ojrkIsFFiU3B7hW/lD4DJErCWG0oRMs+zdY1nFP/l /Bpp9NqSGGJLcmGrOw1THa6GOoKPYTlw9V5dLw0pyQ8PmKLGsXGcJpL9xNRTBqdKcC pxLBDCkqJ+UQw7kZ4oL/xz6rSvmNq/svlusXyOEk= Message-ID: From: Leo Prikler Date: Fri, 12 Mar 2021 18:43:55 +0100 Content-Type: text/plain; charset="UTF-8" User-Agent: Evolution 3.34.2 MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-TUG-Backscatter-control: bt4lQm5Tva3SBgCuw0EnZw X-Spam-Scanner: SpamAssassin 3.003001 X-Spam-Score-relay: -1.9 X-Scanned-By: MIMEDefang 2.74 on 129.27.10.117 Received-SPF: pass client-ip=129.27.2.202; envelope-from=leo.prikler@student.tugraz.at; helo=mailrelay.tugraz.at X-Spam_score_int: -42 X-Spam_score: -4.3 X-Spam_bar: ---- X-Spam_report: (-4.3 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no X-Spam_action: no action X-Spam-Score: -1.3 (-) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -2.3 (--) Hi Guix, both Epiphany and Eolie (post fixing #47097; will submit patch shortly) fail inside Guix containers with the suggested incantation. After getting the environment to no longer complain about $DISPLAY by adding `--preserve="XAUTHORITY" --expose=$XAUTHORITY', it repeatedly outputs lines like bwrap: Can't find source path /sys/class: No such file or directory before closing the process altogether. Regards, Leo From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Ludovic =?UTF-8?Q?Court=C3=A8s?= Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Sat, 13 Mar 2021 10:50:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Leo Prikler Cc: 47106@debbugs.gnu.org Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.161563254221757 (code B ref 47106); Sat, 13 Mar 2021 10:50:02 +0000 Received: (at 47106) by debbugs.gnu.org; 13 Mar 2021 10:49:02 +0000 Received: from localhost ([127.0.0.1]:59137 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lL1pN-0005eh-T1 for submit@debbugs.gnu.org; Sat, 13 Mar 2021 05:49:02 -0500 Received: from eggs.gnu.org ([209.51.188.92]:50732) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lL1pL-0005eN-Je for 47106@debbugs.gnu.org; Sat, 13 Mar 2021 05:49:00 -0500 Received: from fencepost.gnu.org ([2001:470:142:3::e]:60535) by eggs.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1lL1pE-0001fL-EI; Sat, 13 Mar 2021 05:48:52 -0500 Received: from [2a01:e0a:1d:7270:af76:b9b:ca24:c465] (port=35676 helo=ribbon) by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256) (Exim 4.82) (envelope-from ) id 1lL1pD-00013C-R1; Sat, 13 Mar 2021 05:48:52 -0500 From: Ludovic =?UTF-8?Q?Court=C3=A8s?= References: Date: Sat, 13 Mar 2021 11:48:50 +0100 In-Reply-To: (Leo Prikler's message of "Fri, 12 Mar 2021 18:43:55 +0100") Message-ID: <87r1kjpbvx.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: -0.7 (/) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.7 (-) Hi! Leo Prikler skribis: > both Epiphany and Eolie (post fixing #47097; will submit patch shortly) > fail inside Guix containers with the suggested incantation. After > getting the environment to no longer complain about $DISPLAY by adding > `--preserve=3D"XAUTHORITY" --expose=3D$XAUTHORITY', it repeatedly outputs > lines like > bwrap: Can't find source path /sys/class: No such file or directory > before closing the process altogether. What is =E2=80=98bwrap=E2=80=99 looking for? /sys is mounted inside =E2=80= =98guix environment -C=E2=80=99, but perhaps it needs something special? I suggest running these things (or =E2=80=98bwrap=E2=80=99 directly) in =E2= =80=98strace -f -o log=E2=80=99 inside the container to see. Thanks, Ludo=E2=80=99. From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Leo Prikler Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Sat, 13 Mar 2021 11:09:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Ludovic =?UTF-8?Q?Court=C3=A8s?= Cc: 47106@debbugs.gnu.org Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.161563368223621 (code B ref 47106); Sat, 13 Mar 2021 11:09:01 +0000 Received: (at 47106) by debbugs.gnu.org; 13 Mar 2021 11:08:02 +0000 Received: from localhost ([127.0.0.1]:59171 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lL27l-00068k-Lb for submit@debbugs.gnu.org; Sat, 13 Mar 2021 06:08:02 -0500 Received: from mailrelay.tugraz.at ([129.27.2.202]:10851) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lL27f-00068O-CI for 47106@debbugs.gnu.org; Sat, 13 Mar 2021 06:08:00 -0500 Received: from nijino.local (217-149-164-20.nat.highway.telekom.at [217.149.164.20]) by mailrelay.tugraz.at (Postfix) with ESMTPSA id 4DyKfJ1Y7qz3xrS; Sat, 13 Mar 2021 12:07:51 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tugraz.at; s=mailrelay; t=1615633672; bh=ApR0+zkLF+XtV5bI0Cbk4PWZqoas3plWSCKKuzkRBcQ=; h=Subject:From:To:Cc:Date:In-Reply-To:References; b=vAipQzpzQNNPrFwgASVbLtWxsHMbm+0b6sGzxkyncurWDqr3MZW9oZkPdjt1dtbq4 9ZDS4T8b5wXWSzYYm9KnYyRxrs/Iw8/lEV/SvXTMSYgZ3RJFpI5KQzt1MBRE8hZhxx +ukIAftmb2lN5wpmhyrzcnbnTwxOHi8J+6V+Q66Q= Message-ID: <2922127e61435e64f95d3d398ef6932a02336188.camel@student.tugraz.at> From: Leo Prikler Date: Sat, 13 Mar 2021 12:07:51 +0100 In-Reply-To: <87r1kjpbvx.fsf@gnu.org> References: <87r1kjpbvx.fsf@gnu.org> Content-Type: text/plain; charset="UTF-8" User-Agent: Evolution 3.34.2 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-TUG-Backscatter-control: bt4lQm5Tva3SBgCuw0EnZw X-Spam-Scanner: SpamAssassin 3.003001 X-Spam-Score-relay: -1.9 X-Scanned-By: MIMEDefang 2.74 on 129.27.10.116 X-Spam-Score: -2.3 (--) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.3 (---) Hi! Am Samstag, den 13.03.2021, 11:48 +0100 schrieb Ludovic Courtès: > Hi! > > Leo Prikler skribis: > > > both Epiphany and Eolie (post fixing #47097; will submit patch > > shortly) > > fail inside Guix containers with the suggested incantation. After > > getting the environment to no longer complain about $DISPLAY by > > adding > > `--preserve="XAUTHORITY" --expose=$XAUTHORITY', it repeatedly > > outputs > > lines like > > bwrap: Can't find source path /sys/class: No such file or directory > > before closing the process altogether. > > What is ‘bwrap’ looking for? /sys is mounted inside ‘guix > environment -C’, > but perhaps it needs something special? > > I suggest running these things (or ‘bwrap’ directly) in ‘strace -f -o > log’ inside the container to see. It seems to be > openat(AT_FDCWD, "/sys/class/dmi/id/chassis_type", O_RDONLY) = -1 > ENOENT (No such file or directory) > openat(AT_FDCWD, "/sys/firmware/acpi/pm_profile", O_RDONLY) = -1 > ENOENT (No such file or directory) I haven't repeated that for all warnings of similar kind, but if I add `--expose=/sys/block --expose=/sys/class --expose=/sys/bus -- expose=/sys/dev --expose=/sys/devices` to the invocation, I instead get a warning, that the WebKitWebProcess can't open $DISPLAY. I'm not sure how to resolve that one, given that I already had to sneak DISPLAY and XAUTHORITY into the container, but it's a start. Regards, Leo From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Bengt Richter Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Sat, 13 Mar 2021 12:28:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Leo Prikler Cc: 47106@debbugs.gnu.org, Ludovic =?UTF-8?Q?Court=C3=A8s?= Reply-To: Bengt Richter Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.161563846132268 (code B ref 47106); Sat, 13 Mar 2021 12:28:01 +0000 Received: (at 47106) by debbugs.gnu.org; 13 Mar 2021 12:27:41 +0000 Received: from localhost ([127.0.0.1]:59247 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lL3Mi-0008OG-Ga for submit@debbugs.gnu.org; Sat, 13 Mar 2021 07:27:41 -0500 Received: from imta-36.everyone.net ([216.200.145.36]:52862 helo=imta-38.everyone.net) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lL3Mg-0008O7-DH for 47106@debbugs.gnu.org; Sat, 13 Mar 2021 07:27:31 -0500 Received: from pps.filterd (m0004960.ppops.net [127.0.0.1]) by imta-38.everyone.net (8.16.0.43/8.16.0.43) with SMTP id 12DCM1qQ003009; Sat, 13 Mar 2021 04:27:29 -0800 X-Eon-Originating-Account: XGDhnEnpFR5j842qCs84PT4-xpOtTMZz8asKZ7sCaqk X-Eon-Dm: m0116787.ppops.net Received: by m0116787.mta.everyone.net (EON-AUTHRELAY2 - 5a81c7fd) id m0116787.603eb1d4.9b34e; Sat, 13 Mar 2021 04:27:27 -0800 X-Eon-Sig: AQMHrIJgTK+vrehdZAIAAAAD,a6f384750298bba74f2adcb1b5d29a54 X-Eip: 7Xk1DqOGza4ZCgUrKELYY7oqCNz1nJNruonUu7owmSM Date: Sat, 13 Mar 2021 13:27:18 +0100 From: Bengt Richter Message-ID: <20210313122718.GA11708@LionPure> References: <87r1kjpbvx.fsf@gnu.org> <2922127e61435e64f95d3d398ef6932a02336188.camel@student.tugraz.at> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <2922127e61435e64f95d3d398ef6932a02336188.camel@student.tugraz.at> User-Agent: Mutt/1.10.1 (2018-07-13) X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.369, 18.0.761 definitions=2021-03-13_05:2021-03-12, 2021-03-13 signatures=0 X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 lowpriorityscore=0 bulkscore=0 suspectscore=0 priorityscore=1501 spamscore=0 mlxscore=0 mlxlogscore=999 adultscore=0 malwarescore=0 impostorscore=0 phishscore=0 clxscore=1034 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2009150000 definitions=main-2103130092 X-Spam-Score: 0.3 (/) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -0.7 (/) Hi, On +2021-03-13 12:07:51 +0100, Leo Prikler wrote: > Hi! > Am Samstag, den 13.03.2021, 11:48 +0100 schrieb Ludovic Courtès: > > Hi! > > > > Leo Prikler skribis: > > > > > both Epiphany and Eolie (post fixing #47097; will submit patch > > > shortly) > > > fail inside Guix containers with the suggested incantation. After > > > getting the environment to no longer complain about $DISPLAY by > > > adding > > > `--preserve="XAUTHORITY" --expose=$XAUTHORITY', it repeatedly > > > outputsn > > > lines like > > > bwrap: Can't find source path /sys/class: No such file or directory > > > before closing the process altogether. > > > > What is ‘bwrap’ looking for? /sys is mounted inside ‘guix > > environment -C’, > > but perhaps it needs something special? > > > > I suggest running these things (or ‘bwrap’ directly) in ‘strace -f -o > > log’ inside the container to see. > It seems to be > > openat(AT_FDCWD, "/sys/class/dmi/id/chassis_type", O_RDONLY) = -1 > > ENOENT (No such file or directory) > > openat(AT_FDCWD, "/sys/firmware/acpi/pm_profile", O_RDONLY) = -1 > > ENOENT (No such file or directory) > > I haven't repeated that for all warnings of similar kind, but if I add > `--expose=/sys/block --expose=/sys/class --expose=/sys/bus -- > expose=/sys/dev --expose=/sys/devices` to the invocation, I instead get > a warning, that the WebKitWebProcess can't open $DISPLAY. I'm not sure > how to resolve that one, given that I already had to sneak DISPLAY and > XAUTHORITY into the container, but it's a start. > > Regards, > Leo > Does $DISPLAY mean ":0" and does the Wayland server answer that with its XWayland X-interface? I am wonderering how that is resolved inside a container. HTH with the detective work ;) -- Regards, Bengt Richter From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Leo Prikler Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Sat, 13 Mar 2021 14:44:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Bengt Richter Cc: 47106@debbugs.gnu.org, Ludovic =?UTF-8?Q?Court=C3=A8s?= Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.161564660228262 (code B ref 47106); Sat, 13 Mar 2021 14:44:02 +0000 Received: (at 47106) by debbugs.gnu.org; 13 Mar 2021 14:43:22 +0000 Received: from localhost ([127.0.0.1]:59376 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lL5UA-0007Lm-GJ for submit@debbugs.gnu.org; Sat, 13 Mar 2021 09:43:22 -0500 Received: from mailrelay.tugraz.at ([129.27.2.202]:25627) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lL5U7-0007Lb-V8 for 47106@debbugs.gnu.org; Sat, 13 Mar 2021 09:43:21 -0500 Received: from nijino.local (217-149-164-20.nat.highway.telekom.at [217.149.164.20]) by mailrelay.tugraz.at (Postfix) with ESMTPSA id 4DyQQr3yvHz3wZs; Sat, 13 Mar 2021 15:43:16 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tugraz.at; s=mailrelay; t=1615646596; bh=Kb6R8bC1dm//a85gyhcSx4DBi4EOdL7Pigq0Ro2VEPI=; h=Subject:From:To:Cc:Date:In-Reply-To:References; b=amSPIaLDeMym8FQTQHb67+gSorpETGnpB8+D8Kd039vE8aL3mDRQtmc8OA1HiC6wg hUgQseqWBcnZO7ejKFgJQL4d60G1jmSnliB6NX0V+p2Cesd5OTN/561tsANOSueTOk T897tIRwUDpaIDHL5usvR+T3W3xKKIlBEaHA+qSs= Message-ID: From: Leo Prikler Date: Sat, 13 Mar 2021 15:43:15 +0100 In-Reply-To: <20210313122718.GA11708@LionPure> References: <87r1kjpbvx.fsf@gnu.org> <2922127e61435e64f95d3d398ef6932a02336188.camel@student.tugraz.at> <20210313122718.GA11708@LionPure> Content-Type: text/plain; charset="UTF-8" User-Agent: Evolution 3.34.2 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-TUG-Backscatter-control: bt4lQm5Tva3SBgCuw0EnZw X-Spam-Scanner: SpamAssassin 3.003001 X-Spam-Score-relay: -1.9 X-Scanned-By: MIMEDefang 2.74 on 129.27.10.116 X-Spam-Score: -2.3 (--) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.3 (---) Am Samstag, den 13.03.2021, 13:27 +0100 schrieb Bengt Richter: > Hi, > > On +2021-03-13 12:07:51 +0100, Leo Prikler wrote: > > Hi! > > Am Samstag, den 13.03.2021, 11:48 +0100 schrieb Ludovic Courtès: > > > Hi! > > > > > > Leo Prikler skribis: > > > > > > > both Epiphany and Eolie (post fixing #47097; will submit patch > > > > shortly) > > > > fail inside Guix containers with the suggested > > > > incantation. After > > > > getting the environment to no longer complain about $DISPLAY by > > > > adding > > > > `--preserve="XAUTHORITY" --expose=$XAUTHORITY', it repeatedly > > > > outputsn > > > > lines like > > > > bwrap: Can't find source path /sys/class: No such file or > > > > directory > > > > before closing the process altogether. > > > > > > What is ‘bwrap’ looking for? /sys is mounted inside ‘guix > > > environment -C’, > > > but perhaps it needs something special? > > > > > > I suggest running these things (or ‘bwrap’ directly) in ‘strace > > > -f -o > > > log’ inside the container to see. > > It seems to be > > > openat(AT_FDCWD, "/sys/class/dmi/id/chassis_type", O_RDONLY) = -1 > > > ENOENT (No such file or directory) > > > openat(AT_FDCWD, "/sys/firmware/acpi/pm_profile", O_RDONLY) = -1 > > > ENOENT (No such file or directory) > > > > I haven't repeated that for all warnings of similar kind, but if I > > add > > `--expose=/sys/block --expose=/sys/class --expose=/sys/bus -- > > expose=/sys/dev --expose=/sys/devices` to the invocation, I instead > > get > > a warning, that the WebKitWebProcess can't open $DISPLAY. I'm not > > sure > > how to resolve that one, given that I already had to sneak DISPLAY > > and > > XAUTHORITY into the container, but it's a start. > > > > Regards, > > Leo > > > Does $DISPLAY mean ":0" and does the Wayland server answer that with > its XWayland X-interface? In my setup $DISPLAY=:1, but obviously the exact value depends on other circumstances (i.e. if there's already an open session belonging to another user it'd be :2, :3, ...). I'm not sure how X vs. Wayland plays out here, but I'm still using Gnome on X, so that should hopefully not be an issue here. > I am wonderering how that is resolved inside a container. Well, for X you'd usually preserve DISPLAY and XAUTHORITY and also expose $XAUTHORITY or something along those lines. Not sure how you Wayland folk do that. Regards, Leo From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Bengt Richter Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Sat, 13 Mar 2021 17:08:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Leo Prikler Cc: 47106@debbugs.gnu.org, Ludovic =?UTF-8?Q?Court=C3=A8s?= Reply-To: Bengt Richter Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.16156552459945 (code B ref 47106); Sat, 13 Mar 2021 17:08:02 +0000 Received: (at 47106) by debbugs.gnu.org; 13 Mar 2021 17:07:25 +0000 Received: from localhost ([127.0.0.1]:60599 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lL7jY-0002aK-QB for submit@debbugs.gnu.org; Sat, 13 Mar 2021 12:07:25 -0500 Received: from imta-36.everyone.net ([216.200.145.36]:38396 helo=imta-38.everyone.net) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lL7jW-0002aB-GU for 47106@debbugs.gnu.org; Sat, 13 Mar 2021 12:07:23 -0500 Received: from pps.filterd (omta002.sj2.proofpoint.com [127.0.0.1]) by imta-38.everyone.net (8.16.0.43/8.16.0.43) with SMTP id 12DH2u6x023173; Sat, 13 Mar 2021 09:07:21 -0800 X-Eon-Originating-Account: ghZWNUNKa9UxsgdRue6yNm7cAUbYpj1vhKAcdIrq82A X-Eon-Dm: m0116953.ppops.net Received: by m0116953.mta.everyone.net (EON-AUTHRELAY2 - 5a81c7fd) id m0116953.603eb1da.e9dde; Sat, 13 Mar 2021 09:07:18 -0800 X-Eon-Sig: AQMHrIJgTPFGCoIIYQIAAAAD,7f400721e11077ea3c60ccac62cac415 X-Eip: ze_byNXqiGUsfe3aOGxYYkbOO4EJm3tfCLKmgNRDkos Date: Sat, 13 Mar 2021 18:07:04 +0100 From: Bengt Richter Message-ID: <20210313170704.GA3712@LionPure> References: <87r1kjpbvx.fsf@gnu.org> <2922127e61435e64f95d3d398ef6932a02336188.camel@student.tugraz.at> <20210313122718.GA11708@LionPure> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: User-Agent: Mutt/1.10.1 (2018-07-13) X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.369, 18.0.761 definitions=2021-03-13_06:2021-03-12, 2021-03-13 signatures=0 X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 lowpriorityscore=0 adultscore=0 malwarescore=0 clxscore=1034 bulkscore=0 mlxlogscore=999 suspectscore=0 priorityscore=1501 spamscore=0 mlxscore=0 phishscore=0 impostorscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2009150000 definitions=main-2103130133 X-Spam-Score: 0.3 (/) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -0.7 (/) Hi again, On +2021-03-13 15:43:15 +0100, Leo Prikler wrote: > Am Samstag, den 13.03.2021, 13:27 +0100 schrieb Bengt Richter: > > Hi, > > > > On +2021-03-13 12:07:51 +0100, Leo Prikler wrote: > > > Hi! > > > Am Samstag, den 13.03.2021, 11:48 +0100 schrieb Ludovic Courtès: > > > > Hi! > > > > > > > > Leo Prikler skribis: > > > > > > > > > both Epiphany and Eolie (post fixing #47097; will submit patch > > > > > shortly) > > > > > fail inside Guix containers with the suggested > > > > > incantation. After > > > > > getting the environment to no longer complain about $DISPLAY by > > > > > adding > > > > > `--preserve="XAUTHORITY" --expose=$XAUTHORITY', it repeatedly > > > > > outputsn > > > > > lines like > > > > > bwrap: Can't find source path /sys/class: No such file or > > > > > directory > > > > > before closing the process altogether. > > > > > > > > What is ‘bwrap’ looking for? /sys is mounted inside ‘guix > > > > environment -C’, > > > > but perhaps it needs something special? > > > > > > > > I suggest running these things (or ‘bwrap’ directly) in ‘strace > > > > -f -o > > > > log’ inside the container to see. > > > It seems to be > > > > openat(AT_FDCWD, "/sys/class/dmi/id/chassis_type", O_RDONLY) = -1 > > > > ENOENT (No such file or directory) > > > > openat(AT_FDCWD, "/sys/firmware/acpi/pm_profile", O_RDONLY) = -1 > > > > ENOENT (No such file or directory) > > > > > > I haven't repeated that for all warnings of similar kind, but if I > > > add > > > `--expose=/sys/block --expose=/sys/class --expose=/sys/bus -- > > > expose=/sys/dev --expose=/sys/devices` to the invocation, I instead > > > get > > > a warning, that the WebKitWebProcess can't open $DISPLAY. I'm not > > > sure > > > how to resolve that one, given that I already had to sneak DISPLAY > > > and > > > XAUTHORITY into the container, but it's a start. > > > > > > Regards, > > > Leo > > > > > Does $DISPLAY mean ":0" and does the Wayland server answer that with > > its XWayland X-interface? > In my setup $DISPLAY=:1, but obviously the exact value depends on other > circumstances (i.e. if there's already an open session belonging to > another user it'd be :2, :3, ...). I'm not sure how X vs. Wayland > plays out here, but I'm still using Gnome on X, so that should > hopefully not be an issue here. > > > I am wonderering how that is resolved inside a container. > Well, for X you'd usually preserve DISPLAY and XAUTHORITY and also > expose $XAUTHORITY or something along those lines. Not sure how you > Wayland folk do that. > I am not a Wayland developer, if that's what you mean by "Wayland folk" :) But I have been experimenting with writing my own text and graphics widget, poking 32-bit pixels into buffers for display by the Wayland compositor, so I've learned a little :) I am using the linux kernel's sun12x22 bitmap font to do text at a low level. Idk much about containers yet, but I imagine using lowlevel stuff to make images for a trivial web server running in a container could be interesting. > Regards, > Leo > I am curious what the commands below would show inside your container. "pidparents" [1] is a little script I find handy, which would have to be accessible in your container of course. Idk how you put local bash scripts in your container. I assume it's possible :) I did these commands in a debian gnome terminal window, where pidparents[1] showed (timetagged later, since I just went back to do that) this context: --8<---------------cut here---------------start------------->8--- [17:29 ~/bs]$ pidparents pidparents pts/1 5800 S+ /usr/bin/bash /home/bokr/bin/pidparents bash pts/1 5711 Ss /bin/bash tilix ? 2007 Sl /usr/bin/tilix --gapplication-service systemd ? 1308 Ss /lib/systemd/systemd --user systemd ? 1 Ss /sbin/init splash --8<---------------cut here---------------end--------------->8--- ;;;; First I just look for processes with X11 or way in their names, ;;;; then I use pidparents to see how they are started. [17:18 ~/bs]$ ps af|egrep -i 'x11|way' 5741 pts/1 S+ 0:00 \_ grep -E -i x11|way 1329 tty2 Ssl+ 0:00 /usr/lib/gdm3/gdm-wayland-session /usr/bin/gnome-session 1433 tty2 Sl+ 0:13 | \_ /usr/bin/Xwayland :0 -rootless -terminate -accessx -core -listen 4 -listen 5 -displayfd 6 1468 tty2 Sl 0:00 /usr/lib/ibus/ibus-x11 --kill-daemon [17:21 ~/bs]$ pidparents 1329 gdm-wayland-ses tty2 1329 Ssl+ /usr/lib/gdm3/gdm-wayland-session /usr/bin/gnome-session gdm-session-wor ? 1304 Sl gdm-session-worker [pam/gdm-password] gdm3 ? 711 Ssl /usr/sbin/gdm3 systemd ? 1 Ss /sbin/init splash ;;;; this one might be the most interesting in your container ;;;; can you SSH into it to do these things? [17:22 ~/bs]$ pidparents 1433 Xwayland tty2 1433 Sl+ /usr/bin/Xwayland :0 -rootless -terminate -accessx -core -listen 4 -listen 5 -displayfd 6 gnome-shell tty2 1408 Rl+ /usr/bin/gnome-shell gnome-session-b tty2 1333 Sl+ /usr/lib/gnome-session/gnome-session-binary gdm-wayland-ses tty2 1329 Ssl+ /usr/lib/gdm3/gdm-wayland-session /usr/bin/gnome-session gdm-session-wor ? 1304 Sl gdm-session-worker [pam/gdm-password] gdm3 ? 711 Ssl /usr/sbin/gdm3 systemd ? 1 Ss /sbin/init splash ;;;; not really sure what this one does [17:22 ~/bs]$ pidparents 1468 ibus-x11 tty2 1468 Sl /usr/lib/ibus/ibus-x11 --kill-daemon systemd ? 1 Ss /sbin/init splash ;;;; [1] here is pidparents -- pretty short, so you could manually ;;;; enter it if necessary :) [17:22 ~/bs]$ cat $(which pidparents)|gxsnip --8<---------------cut here---------------start------------->8--- #!/usr/bin/bash # ~/bin/pidparents pid=${1:-$$} #this process if no pid specified as $1 while [ $(($pid)) -gt 0 ]; do ps h -p $pid -o comm,tt,pid,stat,args pid=$(ps -q $pid -o ppid=) done --8<---------------cut here---------------end--------------->8--- [17:24 ~/bs]$ Hopefully this would reveal a little more about what $DISPLAY means in your container. WDYT? -- Regards, Bengt Richter From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Leo Prikler Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Sat, 13 Mar 2021 18:02:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Bengt Richter Cc: 47106@debbugs.gnu.org, Ludovic =?UTF-8?Q?Court=C3=A8s?= Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.161565849814880 (code B ref 47106); Sat, 13 Mar 2021 18:02:02 +0000 Received: (at 47106) by debbugs.gnu.org; 13 Mar 2021 18:01:38 +0000 Received: from localhost ([127.0.0.1]:60644 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lL8a1-0003ro-Hf for submit@debbugs.gnu.org; Sat, 13 Mar 2021 13:01:38 -0500 Received: from mailrelay.tugraz.at ([129.27.2.202]:56189) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lL8Zy-0003rc-9i for 47106@debbugs.gnu.org; Sat, 13 Mar 2021 13:01:35 -0500 Received: from nijino.local (217-149-164-20.nat.highway.telekom.at [217.149.164.20]) by mailrelay.tugraz.at (Postfix) with ESMTPSA id 4DyVqZ4BbGz3xnS; Sat, 13 Mar 2021 19:01:30 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tugraz.at; s=mailrelay; t=1615658490; bh=5DraWiv4Sfuim/cpx0QHGFR/L5YMj1we2s43GgvXBbI=; h=Subject:From:To:Cc:Date:In-Reply-To:References; b=cJsE7NlLFVjuCrAiE2hFwXJOUj88lYtMxZTSGyYn3lBJKf741mN+vJk42hBZmNmNz 7jKoMXqTXRZ8iWTEXxVk3SgMAONX6Bu7r8LtSZamauyEvaatd9MximUwfj7dPzgDZt mvgCAcR+wKM+OoELcfDTout9wpJABaqnnj9E2S8c= Message-ID: From: Leo Prikler Date: Sat, 13 Mar 2021 19:01:29 +0100 In-Reply-To: <20210313170704.GA3712@LionPure> References: <87r1kjpbvx.fsf@gnu.org> <2922127e61435e64f95d3d398ef6932a02336188.camel@student.tugraz.at> <20210313122718.GA11708@LionPure> <20210313170704.GA3712@LionPure> Content-Type: text/plain; charset="UTF-8" User-Agent: Evolution 3.34.2 MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-TUG-Backscatter-control: bt4lQm5Tva3SBgCuw0EnZw X-Spam-Scanner: SpamAssassin 3.003001 X-Spam-Score-relay: -1.9 X-Scanned-By: MIMEDefang 2.74 on 129.27.10.116 X-Spam-Score: -2.3 (--) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.3 (---) Am Samstag, den 13.03.2021, 18:07 +0100 schrieb Bengt Richter: > I am not a Wayland developer, if that's what you mean by "Wayland > folk" :) I meant it as "folk using Wayland in their display manager". > I am curious what the commands below would show inside your > container. > "pidparents" [1] is a little script I find handy, which would have to > be > accessible in your container of course. Idk how you put local bash > scripts > in your container. I assume it's possible :) Far from getting a script into my container, I can't even really get into my container through means like `guix container exec`, so I simply bloated it with screen and pstree. The result: --8<---------------cut here---------------start------------->8--- sh-+-dbus-daemon |-dbus-launch `-screen---screen-+-sh---.epiphany-real-+-WebKitNetworkPr--- 11*[{WebKitNetworkPr}] | |-bwrap---bwrap--- WebKitWebProces | `-18*[{.epiphany-real}] `-sh---pstree --8<---------------cut here---------------end--------------->8--- I think these processes are created and die too quickly for me to reliably extract PIDs. Regards, Leo From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Bengt Richter Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Sun, 14 Mar 2021 17:47:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Leo Prikler Cc: 47106@debbugs.gnu.org, Ludovic =?UTF-8?Q?Court=C3=A8s?= Reply-To: Bengt Richter Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.161574396419175 (code B ref 47106); Sun, 14 Mar 2021 17:47:01 +0000 Received: (at 47106) by debbugs.gnu.org; 14 Mar 2021 17:46:04 +0000 Received: from localhost ([127.0.0.1]:34147 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lLUoV-0004zD-Ny for submit@debbugs.gnu.org; Sun, 14 Mar 2021 13:46:03 -0400 Received: from imta-37.everyone.net ([216.200.145.37]:46914 helo=imta-38.everyone.net) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lLUoT-0004ya-Rj for 47106@debbugs.gnu.org; Sun, 14 Mar 2021 13:46:02 -0400 Received: from pps.filterd (localhost.localdomain [127.0.0.1]) by imta-38.everyone.net (8.16.0.43/8.16.0.43) with SMTP id 12EHgd05015767; Sun, 14 Mar 2021 10:46:00 -0700 X-Eon-Originating-Account: 3cLtK-juvhbCCNNW9BvWGNaf00VE6aQIx-kIYqhUXLQ X-Eon-Dm: m0117124.ppops.net Received: by m0117124.mta.everyone.net (EON-AUTHRELAY2 - 5a81ca92) id m0117124.603eb1e9.fb848; Sun, 14 Mar 2021 10:45:53 -0700 X-Eon-Sig: AQMHrIJgTkvRwqqdbwIAAAAD,791728d8ef958c1f93894fb60abbc5a5 X-Eip: dglXpDcTS_SW7v8OTp-l8DbEGFfVCWdCWnb6YvE8jnI Date: Sun, 14 Mar 2021 18:45:39 +0100 From: Bengt Richter Message-ID: <20210314174539.GA10548@LionPure> References: <87r1kjpbvx.fsf@gnu.org> <2922127e61435e64f95d3d398ef6932a02336188.camel@student.tugraz.at> <20210313122718.GA11708@LionPure> <20210313170704.GA3712@LionPure> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.10.1 (2018-07-13) X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.369, 18.0.761 definitions=2021-03-14_09:2021-03-12, 2021-03-14 signatures=0 X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 bulkscore=0 adultscore=0 spamscore=0 priorityscore=1501 mlxlogscore=999 impostorscore=0 mlxscore=0 malwarescore=0 phishscore=0 suspectscore=0 clxscore=1034 lowpriorityscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2009150000 definitions=main-2103140138 X-Spam-Score: 0.2 (/) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -0.8 (/) Hi again^2, On +2021-03-13 19:01:29 +0100, Leo Prikler wrote: > Am Samstag, den 13.03.2021, 18:07 +0100 schrieb Bengt Richter: > > I am not a Wayland developer, if that's what you mean by "Wayland > > folk" :) > I meant it as "folk using Wayland in their display manager". > > > I am curious what the commands below would show inside your > > container. > > "pidparents" [1] is a little script I find handy, which would have to > > be > > accessible in your container of course. Idk how you put local bash > > scripts > > in your container. I assume it's possible :) > Far from getting a script into my container, I can't even really get > into my container through means like `guix container exec`, so I simply > bloated it with screen and pstree. The result: > > --8<---------------cut here---------------start------------->8--- > sh-+-dbus-daemon > |-dbus-launch > `-screen---screen-+-sh---.epiphany-real-+-WebKitNetworkPr--- > 11*[{WebKitNetworkPr}] > | |-bwrap---bwrap--- > WebKitWebProces > | `-18*[{.epiphany-real}] > `-sh---pstree > --8<---------------cut here---------------end--------------->8--- > > I think these processes are created and die too quickly for me to > reliably extract PIDs. > > Regards, > Leo > Maybe pstree -at would show a little more? Also, ls -lr /sys/class/drm if that's accessible -- I'm wondering if the version of screen in the container is built with libdrm and is bypassing X or ?? Do you have a makefile or a guix something.scm defining what's built/packed into your container? Sorry if my curiosity is making work for you, but I'd like to try containers down the road -- tho right now I'm taking a break from events IRL, so I may disappear for a while... -- Regards, Bengt Richter From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Leo Prikler Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Sun, 14 Mar 2021 18:06:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Bengt Richter Cc: 47106@debbugs.gnu.org, Ludovic =?UTF-8?Q?Court=C3=A8s?= Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.161574513020998 (code B ref 47106); Sun, 14 Mar 2021 18:06:01 +0000 Received: (at 47106) by debbugs.gnu.org; 14 Mar 2021 18:05:30 +0000 Received: from localhost ([127.0.0.1]:34174 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lLV7K-0005Sc-BQ for submit@debbugs.gnu.org; Sun, 14 Mar 2021 14:05:30 -0400 Received: from mailrelay.tugraz.at ([129.27.2.202]:24319) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lLV7I-0005ST-HQ for 47106@debbugs.gnu.org; Sun, 14 Mar 2021 14:05:29 -0400 Received: from nijino.local (217-149-164-20.nat.highway.telekom.at [217.149.164.20]) by mailrelay.tugraz.at (Postfix) with ESMTPSA id 4Dz6sc712rz3xmf; Sun, 14 Mar 2021 19:05:24 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tugraz.at; s=mailrelay; t=1615745125; bh=fMQnoVe24+ivB4ucJ8nNvZ/p7vOPPEUXW6rQDjOJ5lo=; h=Subject:From:To:Cc:Date:In-Reply-To:References; b=rbw8RjU0LJFGlLv3JqFDtyp2IfVl4tiA+VRtG2LhHEgARKsgRG28TEfP6gxCNfhJR 9N+0kxNoClbEORAHF/EAz/BjZFzms0ZUC5EYTJaj/xW3TM/WM+RJcP0GYHI8yrXlI8 IYbcVJkbCS5YO0d6EDLpUtjqIbfGOpWHbDXXdK9E= Message-ID: From: Leo Prikler Date: Sun, 14 Mar 2021 19:05:24 +0100 In-Reply-To: <20210314174539.GA10548@LionPure> References: <87r1kjpbvx.fsf@gnu.org> <2922127e61435e64f95d3d398ef6932a02336188.camel@student.tugraz.at> <20210313122718.GA11708@LionPure> <20210313170704.GA3712@LionPure> <20210314174539.GA10548@LionPure> Content-Type: text/plain; charset="UTF-8" User-Agent: Evolution 3.34.2 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-TUG-Backscatter-control: bt4lQm5Tva3SBgCuw0EnZw X-Spam-Scanner: SpamAssassin 3.003001 X-Spam-Score-relay: -1.9 X-Scanned-By: MIMEDefang 2.74 on 129.27.10.116 X-Spam-Score: -2.3 (--) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.3 (---) Hi again³ Am Sonntag, den 14.03.2021, 18:45 +0100 schrieb Bengt Richter: > Hi again^2, > > Maybe > pstree -at > would show a little more? sh |-dbus-daemon --syslog-only --fork --print-pid 5 --print-address 7 --sess |-dbus-launch --autolaunch=fa7a4d52637958ddd37547bb5d8bd9d2--binary- synt `-screen `-screen |-sh | `-.epiphany-real | |-WebKitNetworkPr 3 21 | | |-{BMScavenger} | | |-{ReceiveQueue} | | |-{StorageTask} | | |-{Storage} | | |-{WebStorage} | | |-{background} | | |-{dconf worker} | | |-{erialBackground} | | |-{gdbus} | | `-{gmain} | |-bwrap --args 37 -- /gnu/store/hqhxgw0i8xh38h6kwmyrkywcd24q5f1z-webk | | `-bwrap --args 37 -- /gnu/store/hqhxgw0i8xh38h6kwmyrkywcd24q5f1z-webk | | `-WebKitWebProces 1277 28 | |-{.epiphany-real} | |-{BMScavenger} | |-{HashSaltStorage} | |-{IconDatabase} | |-{PressureMonitor} | |-2*[{ReceiveQueue}] | |-{dconf worker} | |-{e Compile Queue} | |-{ebsiteDataStore} | |-{gdbus} | |-{gmain} | |-{re Remove Queue} | `-{tore Read Queue} `-sh `-pstree -at > Also, > ls -lr /sys/class/drm total 0 -r--r--r-- 1 65534 overflow 4096 Mar 14 17:59 version lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:58 ttm -> ../../devices/virtual/drm/ttm lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:59 renderD128 -> ../../devices/pci0000:00/0000:00:02.0/0000:01:00.0/drm/renderD128 lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:59 card0-VGA-1 -> ../../devices/pci0000:00/0000:00:02.0/0000:01:00.0/drm/card0/card0-VGA- 1 lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:59 card0-HDMI-A-1 -> ../../devices/pci0000:00/0000:00:02.0/0000:01:00.0/drm/card0/card0- HDMI-A-1 lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:58 card0-DVI-D-1 -> ../../devices/pci0000:00/0000:00:02.0/0000:01:00.0/drm/card0/card0-DVI- D-1 lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:58 card0 -> ../../devices/pci0000:00/0000:00:02.0/0000:01:00.0/drm/card0 > if that's accessible -- I'm wondering if the version of screen > in the container is built with libdrm and is bypassing X or ?? I doubt it is being built differently than screen normally is. > Do you have a makefile or a guix something.scm defining > what's built/packed into your container? Nah, it's a rather ad-hoc definition grown from what should be an Eolie container from the cookbook (also refer to #47097). guix environment --preserve='^DISPLAY$' --preserve=XAUTHORITY \ --preserve=TERM \ --expose=$XAUTHORITY \ --expose=/etc/machine-id \ --expose=/etc/ssl/certs/ \ --expose=/sys/block --expose=/sys/class --expose=/sys/bus \ --expose=/sys/dev --expose=/sys/devices \ --ad-hoc epiphany nss-certs dbus procps coreutils psmisc screen Given that I expose most of /sys explicitly, you should take the above with a grain of salt. > Sorry if my curiosity is making work for you, but I'd like to > try containers down the road -- tho right now I'm taking a break > from events IRL, so I may disappear for a while... I'm not personally impacted by this bug or anything, it's much rather a follow-up to my attempted fix of #47097. I think there might be some flaw in trying to run a sandbox inside a sandbox (like bubblewrap inside `guix container`), that doesn't actually improve security in any meaningful way. Regards, Leo From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Ludovic =?UTF-8?Q?Court=C3=A8s?= Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Sun, 14 Mar 2021 20:33:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Leo Prikler Cc: 47106@debbugs.gnu.org, Bengt Richter Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.16157539515488 (code B ref 47106); Sun, 14 Mar 2021 20:33:01 +0000 Received: (at 47106) by debbugs.gnu.org; 14 Mar 2021 20:32:31 +0000 Received: from localhost ([127.0.0.1]:34269 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lLXPb-0001QS-Be for submit@debbugs.gnu.org; Sun, 14 Mar 2021 16:32:31 -0400 Received: from eggs.gnu.org ([209.51.188.92]:56744) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lLXPZ-0001QF-D6 for 47106@debbugs.gnu.org; Sun, 14 Mar 2021 16:32:29 -0400 Received: from fencepost.gnu.org ([2001:470:142:3::e]:59215) by eggs.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1lLXPS-0007IW-41; Sun, 14 Mar 2021 16:32:22 -0400 Received: from [2a01:e0a:1d:7270:af76:b9b:ca24:c465] (port=40488 helo=ribbon) by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256) (Exim 4.82) (envelope-from ) id 1lLXPR-0003rR-8W; Sun, 14 Mar 2021 16:32:21 -0400 From: Ludovic =?UTF-8?Q?Court=C3=A8s?= References: <87r1kjpbvx.fsf@gnu.org> <2922127e61435e64f95d3d398ef6932a02336188.camel@student.tugraz.at> <20210313122718.GA11708@LionPure> <20210313170704.GA3712@LionPure> <20210314174539.GA10548@LionPure> X-URL: http://www.fdn.fr/~lcourtes/ X-Revolutionary-Date: 24 =?UTF-8?Q?Vent=C3=B4se?= an 229 de la =?UTF-8?Q?R=C3=A9volution?= X-PGP-Key-ID: 0x090B11993D9AEBB5 X-PGP-Key: http://www.fdn.fr/~lcourtes/ludovic.asc X-PGP-Fingerprint: 3CE4 6455 8A84 FDC6 9DB4 0CFB 090B 1199 3D9A EBB5 X-OS: x86_64-pc-linux-gnu Date: Sun, 14 Mar 2021 21:32:19 +0100 In-Reply-To: (Leo Prikler's message of "Sun, 14 Mar 2021 19:05:24 +0100") Message-ID: <87sg4xlbn0.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: -0.7 (/) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.7 (-) Hi Leo, Leo Prikler skribis: > Nah, it's a rather ad-hoc definition grown from what should be an Eolie > container from the cookbook (also refer to #47097). > > guix environment --preserve=3D'^DISPLAY$' --preserve=3DXAUTHORITY \ > --preserve=3DTERM \ > --expose=3D$XAUTHORITY \ > --expose=3D/etc/machine-id \ > --expose=3D/etc/ssl/certs/ \ > --expose=3D/sys/block --expose=3D/sys/class --expose=3D/sys/bus \ > --expose=3D/sys/dev --expose=3D/sys/devices \ > --ad-hoc epiphany nss-certs dbus procps coreutils psmisc screen I=E2=80=99m not sure I follow; does it work when you do this? /sys is already mounted inside =E2=80=98guix environment -C=E2=80=99 contai= ners so I don=E2=80=99t see what difference it would make. But wait, the example above lacks =E2=80=98-C=E2=80=99; a mistake? Thanks, Ludo=E2=80=99. From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Leo Prikler Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Sun, 14 Mar 2021 20:45:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Ludovic =?UTF-8?Q?Court=C3=A8s?= Cc: 47106@debbugs.gnu.org, Bengt Richter Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.16157546446532 (code B ref 47106); Sun, 14 Mar 2021 20:45:02 +0000 Received: (at 47106) by debbugs.gnu.org; 14 Mar 2021 20:44:04 +0000 Received: from localhost ([127.0.0.1]:34289 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lLXam-0001hH-DA for submit@debbugs.gnu.org; Sun, 14 Mar 2021 16:44:04 -0400 Received: from mailrelay.tugraz.at ([129.27.2.202]:24962) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lLXak-0001gi-9l for 47106@debbugs.gnu.org; Sun, 14 Mar 2021 16:44:03 -0400 Received: from nijino.local (217-149-164-20.nat.highway.telekom.at [217.149.164.20]) by mailrelay.tugraz.at (Postfix) with ESMTPSA id 4DzBNZ6J3fz3xm8; Sun, 14 Mar 2021 21:43:58 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tugraz.at; s=mailrelay; t=1615754639; bh=gT5Fr9o0EmxTYR0v3N9bfvjnpU39C3GqoiPRU0nX6Ho=; h=Subject:From:To:Cc:Date:In-Reply-To:References; b=DzaMRcBUjEEWJ01FuDG6ojuVGAfXTm8YPsK+ZH1EvoHDjgDhPEDDnjsLooc1K6KnP vZYKjcipoCMfRQqybVEOn7uEO9oyOkjKDTo87ulNqvlUOMxkqcQTletkv+/SrhV01W nxkkCoeUoEXSJ+RruoQLbKetvnlumoAEzITR7VT0= Message-ID: <6c6b39f495962ec906255cac212b66962d549eab.camel@student.tugraz.at> From: Leo Prikler Date: Sun, 14 Mar 2021 21:43:57 +0100 In-Reply-To: <87sg4xlbn0.fsf@gnu.org> References: <87r1kjpbvx.fsf@gnu.org> <2922127e61435e64f95d3d398ef6932a02336188.camel@student.tugraz.at> <20210313122718.GA11708@LionPure> <20210313170704.GA3712@LionPure> <20210314174539.GA10548@LionPure> <87sg4xlbn0.fsf@gnu.org> Content-Type: text/plain; charset="UTF-8" User-Agent: Evolution 3.34.2 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-TUG-Backscatter-control: bt4lQm5Tva3SBgCuw0EnZw X-Spam-Scanner: SpamAssassin 3.003001 X-Spam-Score-relay: -1.9 X-Scanned-By: MIMEDefang 2.74 on 129.27.10.116 X-Spam-Score: -2.3 (--) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.3 (---) Am Sonntag, den 14.03.2021, 21:32 +0100 schrieb Ludovic Courtès: > Hi Leo, > > Leo Prikler skribis: > > > Nah, it's a rather ad-hoc definition grown from what should be an > > Eolie > > container from the cookbook (also refer to #47097). > > > > guix environment --preserve='^DISPLAY$' --preserve=XAUTHORITY \ > > --preserve=TERM \ > > --expose=$XAUTHORITY \ > > --expose=/etc/machine-id \ > > --expose=/etc/ssl/certs/ \ > > --expose=/sys/block --expose=/sys/class --expose=/sys/bus \ > > --expose=/sys/dev --expose=/sys/devices \ > > --ad-hoc epiphany nss-certs dbus procps coreutils psmisc > > screen > > I’m not sure I follow; does it work when you do this? It does work insofar as I don't get any warnings about resources missing from /sys, but the bubblewrapped WebKit processes don't have access to $DISPLAY even though epiphany itself has. While they don't crash the browser itself and just infinitely respawn, that's still far from usable. > /sys is already mounted inside ‘guix environment -C’ containers so I > don’t see what difference it would make. I think I've been told this several times, but I don't believe it. Not adding all these expose=/sys lines triggers the "warnings" in the original post. (Okay, perhaps one of /sys/dev and /sys/devices is superfluous, I would need to check.) > But wait, the example above lacks ‘-C’; a mistake? Indeed, -CN should also be given, but I hastily edited the command line inside the email to make it appear more beautiful than it actually is, thereby deleting it. I'm sorry. The preserves and exposes should be the same list as I'm actually using however. Regards, Leo From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Ludovic =?UTF-8?Q?Court=C3=A8s?= Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Mon, 15 Mar 2021 09:53:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Leo Prikler Cc: 47106@debbugs.gnu.org, Bengt Richter Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.161580194828837 (code B ref 47106); Mon, 15 Mar 2021 09:53:01 +0000 Received: (at 47106) by debbugs.gnu.org; 15 Mar 2021 09:52:28 +0000 Received: from localhost ([127.0.0.1]:34904 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lLjtk-0007V3-EG for submit@debbugs.gnu.org; Mon, 15 Mar 2021 05:52:28 -0400 Received: from eggs.gnu.org ([209.51.188.92]:54114) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lLjtj-0007Up-02 for 47106@debbugs.gnu.org; Mon, 15 Mar 2021 05:52:27 -0400 Received: from fencepost.gnu.org ([2001:470:142:3::e]:37709) by eggs.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1lLjtY-0004wV-Tv; Mon, 15 Mar 2021 05:52:19 -0400 Received: from [2a01:e0a:1d:7270:af76:b9b:ca24:c465] (port=43478 helo=ribbon) by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256) (Exim 4.82) (envelope-from ) id 1lLjtV-0003L1-U1; Mon, 15 Mar 2021 05:52:15 -0400 From: Ludovic =?UTF-8?Q?Court=C3=A8s?= References: <87r1kjpbvx.fsf@gnu.org> <2922127e61435e64f95d3d398ef6932a02336188.camel@student.tugraz.at> <20210313122718.GA11708@LionPure> <20210313170704.GA3712@LionPure> <20210314174539.GA10548@LionPure> <87sg4xlbn0.fsf@gnu.org> <6c6b39f495962ec906255cac212b66962d549eab.camel@student.tugraz.at> X-URL: http://www.fdn.fr/~lcourtes/ X-Revolutionary-Date: 25 =?UTF-8?Q?Vent=C3=B4se?= an 229 de la =?UTF-8?Q?R=C3=A9volution?= X-PGP-Key-ID: 0x090B11993D9AEBB5 X-PGP-Key: http://www.fdn.fr/~lcourtes/ludovic.asc X-PGP-Fingerprint: 3CE4 6455 8A84 FDC6 9DB4 0CFB 090B 1199 3D9A EBB5 X-OS: x86_64-pc-linux-gnu Date: Mon, 15 Mar 2021 10:52:12 +0100 In-Reply-To: <6c6b39f495962ec906255cac212b66962d549eab.camel@student.tugraz.at> (Leo Prikler's message of "Sun, 14 Mar 2021 21:43:57 +0100") Message-ID: <87pn00iw1f.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: -0.7 (/) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.7 (-) Hi Leo, Leo Prikler skribis: >> /sys is already mounted inside =E2=80=98guix environment -C=E2=80=99 con= tainers so I >> don=E2=80=99t see what difference it would make. > I think I've been told this several times, but I don't believe it. Not > adding all these expose=3D/sys lines triggers the "warnings" in the > original post. (Okay, perhaps one of /sys/dev and /sys/devices is > superfluous, I would need to check.) It would be great if you could pinpoint which of these --expose=3D/sys/xyz makes a difference. From there we could compare the output of =E2=80=98find /sys/xyz=E2=80=99 inside and outside the container, without --expose. Thanks, Ludo=E2=80=99. From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Leo Prikler Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Mon, 15 Mar 2021 10:15:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Ludovic =?UTF-8?Q?Court=C3=A8s?= Cc: 47106@debbugs.gnu.org, Bengt Richter Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.161580326030860 (code B ref 47106); Mon, 15 Mar 2021 10:15:02 +0000 Received: (at 47106) by debbugs.gnu.org; 15 Mar 2021 10:14:20 +0000 Received: from localhost ([127.0.0.1]:34913 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lLkEu-00081g-G8 for submit@debbugs.gnu.org; Mon, 15 Mar 2021 06:14:20 -0400 Received: from mailrelay.tugraz.at ([129.27.2.202]:43179) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lLkEq-00081T-Bc for 47106@debbugs.gnu.org; Mon, 15 Mar 2021 06:14:18 -0400 Received: from nijino.local (217-149-164-20.nat.highway.telekom.at [217.149.164.20]) by mailrelay.tugraz.at (Postfix) with ESMTPSA id 4DzXMS74RTz1LZ3K; Mon, 15 Mar 2021 11:14:12 +0100 (CET) DKIM-Filter: OpenDKIM Filter v2.11.0 mailrelay.tugraz.at 4DzXMS74RTz1LZ3K DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tugraz.at; s=mailrelay; t=1615803253; bh=EOaG+LN6PE0xPrZwwhxpbrQIEUASi8l5Qlp+VW/EoAw=; h=Subject:From:To:Cc:Date:In-Reply-To:References:From; b=Ht55gR9+fQ6Ehfn+CuUhbIJss6ogoWUoKO4VHE6UCjw8jhtYwji4DR1NPbzRnQlVd pUZiR2xfU9mQAf5JfwpZiYUA8GBC4NFthzqTOTfUI9uEwFMUccPWdm6LBS8TLDpIg1 46V4Dbigerx0wtblpTsNZQD1Xoukv8wqj9EgScek= Message-ID: From: Leo Prikler Date: Mon, 15 Mar 2021 11:14:11 +0100 In-Reply-To: <87pn00iw1f.fsf@gnu.org> References: <87r1kjpbvx.fsf@gnu.org> <2922127e61435e64f95d3d398ef6932a02336188.camel@student.tugraz.at> <20210313122718.GA11708@LionPure> <20210313170704.GA3712@LionPure> <20210314174539.GA10548@LionPure> <87sg4xlbn0.fsf@gnu.org> <6c6b39f495962ec906255cac212b66962d549eab.camel@student.tugraz.at> <87pn00iw1f.fsf@gnu.org> Content-Type: text/plain; charset="UTF-8" User-Agent: Evolution 3.34.2 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-TUG-Backscatter-control: bt4lQm5Tva3SBgCuw0EnZw X-Spam-Scanner: SpamAssassin 3.003001 X-Spam-Score-relay: -1.9 X-Scanned-By: MIMEDefang 2.74 on 129.27.10.116 X-Spam-Score: -2.3 (--) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.3 (---) Am Montag, den 15.03.2021, 10:52 +0100 schrieb Ludovic Courtès: > Hi Leo, > > Leo Prikler skribis: > > > > /sys is already mounted inside ‘guix environment -C’ containers > > > so I > > > don’t see what difference it would make. > > I think I've been told this several times, but I don't believe > > it. Not > > adding all these expose=/sys lines triggers the "warnings" in the > > original post. (Okay, perhaps one of /sys/dev and /sys/devices is > > superfluous, I would need to check.) > > It would be great if you could pinpoint which of these -- > expose=/sys/xyz > makes a difference. From there we could compare the output of ‘find > /sys/xyz’ inside and outside the container, without --expose. Okay, so here's my basic workflow: Starting with an empty set of -- expose: bwrap: Can't find source path /sys/block: No such file or directory repeated a few times along with warnings, that the web process crashed until finally Epiphany itself crashes. I add /sys/block, and Epiphany miraculously doesn't crash, but bwrap still complains and the web processes still crash, so we march on. I'll abbreviate it a little and only show the error messages. bwrap: Can't find source path /sys/bus: No such file or directory bwrap: Can't find source path /sys/class: No such file or directory bwrap: Can't find source path /sys/dev: No such file or directory bwrap: Can't find source path /sys/devices: No such file or directory After exposing all of the above, I get Unable to init server: Could not connect: Connection refused (WebKitWebProcess:2): Gtk-WARNING **: 10:09:01.497: cannot open display: :1 Using --share instead of --expose for the final set does not seem to change anything. For /sys/block, the find inside the container is empty before exposing it and non-empty on the host. I assume the same holds for the others. Regards, Leo From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Ludovic =?UTF-8?Q?Court=C3=A8s?= Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Mon, 15 Mar 2021 13:30:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Leo Prikler Cc: 47106@debbugs.gnu.org, Bengt Richter Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.161581497026418 (code B ref 47106); Mon, 15 Mar 2021 13:30:02 +0000 Received: (at 47106) by debbugs.gnu.org; 15 Mar 2021 13:29:30 +0000 Received: from localhost ([127.0.0.1]:35082 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lLnHm-0006s2-7n for submit@debbugs.gnu.org; Mon, 15 Mar 2021 09:29:30 -0400 Received: from eggs.gnu.org ([209.51.188.92]:48302) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lLnHj-0006rl-Jl for 47106@debbugs.gnu.org; Mon, 15 Mar 2021 09:29:28 -0400 Received: from fencepost.gnu.org ([2001:470:142:3::e]:40363) by eggs.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1lLnHc-0004mR-N9; Mon, 15 Mar 2021 09:29:20 -0400 Received: from [2a01:e0a:1d:7270:af76:b9b:ca24:c465] (port=45590 helo=ribbon) by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256) (Exim 4.82) (envelope-from ) id 1lLnHb-0007Pr-Nq; Mon, 15 Mar 2021 09:29:20 -0400 From: Ludovic =?UTF-8?Q?Court=C3=A8s?= References: <87r1kjpbvx.fsf@gnu.org> <2922127e61435e64f95d3d398ef6932a02336188.camel@student.tugraz.at> <20210313122718.GA11708@LionPure> <20210313170704.GA3712@LionPure> <20210314174539.GA10548@LionPure> <87sg4xlbn0.fsf@gnu.org> <6c6b39f495962ec906255cac212b66962d549eab.camel@student.tugraz.at> <87pn00iw1f.fsf@gnu.org> X-URL: http://www.fdn.fr/~lcourtes/ X-Revolutionary-Date: 25 =?UTF-8?Q?Vent=C3=B4se?= an 229 de la =?UTF-8?Q?R=C3=A9volution?= X-PGP-Key-ID: 0x090B11993D9AEBB5 X-PGP-Key: http://www.fdn.fr/~lcourtes/ludovic.asc X-PGP-Fingerprint: 3CE4 6455 8A84 FDC6 9DB4 0CFB 090B 1199 3D9A EBB5 X-OS: x86_64-pc-linux-gnu Date: Mon, 15 Mar 2021 14:29:17 +0100 In-Reply-To: (Leo Prikler's message of "Mon, 15 Mar 2021 11:14:11 +0100") Message-ID: <87sg4wh7f6.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: -0.7 (/) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.7 (-) Hi, Leo Prikler skribis: > Okay, so here's my basic workflow: Starting with an empty set of -- > expose: > bwrap: Can't find source path /sys/block: No such file or directory > repeated a few times along with warnings, that the web process crashed > until finally Epiphany itself crashes.=20 > I add /sys/block, and Epiphany miraculously doesn't crash, but bwrap > still complains and the web processes still crash, so we march on.=20 > I'll abbreviate it a little and only show the error messages. > bwrap: Can't find source path /sys/bus: No such file or directory > bwrap: Can't find source path /sys/class: No such file or directory=20 > bwrap: Can't find source path /sys/dev: No such file or directory=20 > bwrap: Can't find source path /sys/devices: No such file or directory OK. Additional data points from my Guix System laptop: --8<---------------cut here---------------start------------->8--- $ guix environment -C --ad-hoc findutils -- find /sys |wc -l 37575 $ find /sys | wc -l find: =E2=80=98/sys/kernel/debug=E2=80=99: Mankas permeso 38026 $ guix environment -C --ad-hoc findutils -- find /sys/block |wc -l 27 $ find /sys/block | wc -l 27 --8<---------------cut here---------------end--------------->8--- The offending Bubblewrap code is: --8<---------------cut here---------------start------------->8--- static void resolve_symlinks_in_ops (void) { SetupOp *op; for (op =3D ops; op !=3D NULL; op =3D op->next) { const char *old_source; switch (op->type) { case SETUP_RO_BIND_MOUNT: case SETUP_DEV_BIND_MOUNT: case SETUP_BIND_MOUNT: old_source =3D op->source; op->source =3D realpath (old_source, NULL); if (op->source =3D=3D NULL) { if (op->flags & ALLOW_NOTEXIST && errno =3D=3D ENOENT) op->source =3D old_source; else die_with_error("Can't find source path %s", old_source); } break; default: break; } } } --8<---------------cut here---------------end--------------->8--- I wonder how =E2=80=98realpath=E2=80=99 can fail here. In fact, it Works F= or Me: --8<---------------cut here---------------start------------->8--- $ cat realpath.scm (use-modules (system foreign)) (define realpath (let ((proc (pointer->procedure '* (dynamic-func "realpath" (dynamic-link= )) '(* *)))) (lambda (path) (let ((result (proc (string->pointer path) %null-pointer))) (and (not (null-pointer? result)) (pointer->string result)))))) (pk 'realpath-> (realpath "/sys/block")) $ guix environment -C --ad-hoc guile -- guile -s realpath.scm ;;; note: auto-compilation is enabled, set GUILE_AUTO_COMPILE=3D0 ;;; or pass the --no-auto-compile argument to disable. ;;; compiling /home/ludo/src/guix-debugging/realpath.scm ;;; compiled /home/ludo/.cache/guile/ccache/3.0-LE-8-4.4/home/ludo/src/guix= -debugging/realpath.scm.go ;;; (realpath-> "/sys/block") --8<---------------cut here---------------end--------------->8--- So I presume bwrap does something else before it reaches that warning. We should really strace it. Thanks, Ludo=E2=80=99. From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Bengt Richter Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Tue, 16 Mar 2021 10:56:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Leo Prikler Cc: 47106@debbugs.gnu.org, Ludovic =?UTF-8?Q?Court=C3=A8s?= Reply-To: Bengt Richter Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.16158921027086 (code B ref 47106); Tue, 16 Mar 2021 10:56:02 +0000 Received: (at 47106) by debbugs.gnu.org; 16 Mar 2021 10:55:02 +0000 Received: from localhost ([127.0.0.1]:38290 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lM7Lq-0001q3-1c for submit@debbugs.gnu.org; Tue, 16 Mar 2021 06:55:02 -0400 Received: from imta-38.everyone.net ([216.200.145.38]:39154) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lM7Ln-0001ph-ID for 47106@debbugs.gnu.org; Tue, 16 Mar 2021 06:55:00 -0400 Received: from pps.filterd (omta003.sj2.proofpoint.com [127.0.0.1]) by imta-38.everyone.net (8.16.0.43/8.16.0.43) with SMTP id 12GAqYbI022416; Tue, 16 Mar 2021 03:54:57 -0700 X-Eon-Originating-Account: PWA8kbIySTUxJ6dzi1ZYH4BQ7FXTSavK3r6B33nlqms X-Eon-Dm: m0116787.ppops.net Received: by m0116787.mta.everyone.net (EON-AUTHRELAY2 - 5a81cfb8) id m0116787.603eb1d4.c9f2e; Tue, 16 Mar 2021 03:54:56 -0700 X-Eon-Sig: AQMHrIJgUI6AfXZsnwIAAAAD,b83093b5dea7232fc859ca7f427bda9f X-Eip: YnAcN7gtBeI2ArwYFoYcxeXAwCoAc6_gE8YjC0Jqixg Date: Tue, 16 Mar 2021 11:54:42 +0100 From: Bengt Richter Message-ID: <20210316105442.GA3903@LionPure> References: <87r1kjpbvx.fsf@gnu.org> <2922127e61435e64f95d3d398ef6932a02336188.camel@student.tugraz.at> <20210313122718.GA11708@LionPure> <20210313170704.GA3712@LionPure> <20210314174539.GA10548@LionPure> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: User-Agent: Mutt/1.10.1 (2018-07-13) X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.369, 18.0.761 definitions=2021-03-16_03:2021-03-16, 2021-03-16 signatures=0 X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 adultscore=0 priorityscore=1501 lowpriorityscore=0 spamscore=0 mlxlogscore=999 bulkscore=0 clxscore=1034 impostorscore=0 malwarescore=0 suspectscore=0 mlxscore=0 phishscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2009150000 definitions=main-2103160075 X-Spam-Score: 0.3 (/) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -0.7 (/) Hi Leo, One more favor? ;) On +2021-03-14 19:05:24 +0100, Leo Prikler wrote: > Hi again³ > > Am Sonntag, den 14.03.2021, 18:45 +0100 schrieb Bengt Richter: > > Hi again^2, > > > > Maybe > > pstree -at > > would show a little more? > sh > |-dbus-daemon --syslog-only --fork --print-pid 5 --print-address 7 > --sess > |-dbus-launch --autolaunch=fa7a4d52637958ddd37547bb5d8bd9d2--binary- > synt > `-screen > `-screen > |-sh > | `-.epiphany-real > | |-WebKitNetworkPr 3 21 > | | |-{BMScavenger} > | | |-{ReceiveQueue} > | | |-{StorageTask} > | | |-{Storage} > | | |-{WebStorage} > | | |-{background} > | | |-{dconf worker} > | | |-{erialBackground} > | | |-{gdbus} > | | `-{gmain} > | |-bwrap --args 37 -- > /gnu/store/hqhxgw0i8xh38h6kwmyrkywcd24q5f1z-webk > | | `-bwrap --args 37 -- > /gnu/store/hqhxgw0i8xh38h6kwmyrkywcd24q5f1z-webk > | | `-WebKitWebProces 1277 28 > | |-{.epiphany-real} > | |-{BMScavenger} > | |-{HashSaltStorage} > | |-{IconDatabase} > | |-{PressureMonitor} > | |-2*[{ReceiveQueue}] > | |-{dconf worker} > | |-{e Compile Queue} > | |-{ebsiteDataStore} > | |-{gdbus} > | |-{gmain} > | |-{re Remove Queue} > | `-{tore Read Queue} > `-sh > `-pstree -at > > Also, > > ls -lr /sys/class/drm > total 0 > -r--r--r-- 1 65534 overflow 4096 Mar 14 17:59 version > lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:58 ttm -> > ../../devices/virtual/drm/ttm > lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:59 renderD128 -> > ../../devices/pci0000:00/0000:00:02.0/0000:01:00.0/drm/renderD128 > lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:59 card0-VGA-1 -> > ../../devices/pci0000:00/0000:00:02.0/0000:01:00.0/drm/card0/card0-VGA- > 1 > lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:59 card0-HDMI-A-1 -> > ../../devices/pci0000:00/0000:00:02.0/0000:01:00.0/drm/card0/card0- > HDMI-A-1 > lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:58 card0-DVI-D-1 -> > ../../devices/pci0000:00/0000:00:02.0/0000:01:00.0/drm/card0/card0-DVI- > D-1 > lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:58 card0 -> > ../../devices/pci0000:00/0000:00:02.0/0000:01:00.0/drm/card0 > > if that's accessible -- I'm wondering if the version of screen > > in the container is built with libdrm and is bypassing X or ?? > I doubt it is being built differently than screen normally is. > > > Do you have a makefile or a guix something.scm defining > > what's built/packed into your container? > Nah, it's a rather ad-hoc definition grown from what should be an Eolie > container from the cookbook (also refer to #47097). > > guix environment --preserve='^DISPLAY$' --preserve=XAUTHORITY \ > --preserve=TERM \ > --expose=$XAUTHORITY \ > --expose=/etc/machine-id \ > --expose=/etc/ssl/certs/ \ > --expose=/sys/block --expose=/sys/class --expose=/sys/bus \ > --expose=/sys/dev --expose=/sys/devices \ > --ad-hoc epiphany nss-certs dbus procps coreutils psmisc screen > > Given that I expose most of /sys explicitly, you should take the above > with a grain of salt. > > > Sorry if my curiosity is making work for you, but I'd like to > > try containers down the road -- tho right now I'm taking a break > > from events IRL, so I may disappear for a while... > I'm not personally impacted by this bug or anything, it's much rather a > follow-up to my attempted fix of #47097. I think there might be some > flaw in trying to run a sandbox inside a sandbox (like bubblewrap > inside `guix container`), that doesn't actually improve security in any > meaningful way. > > Regards, > Leo > If you can run this inside your container, I think it will be interesting: lsof -U|grep -i wayland The above ought to show quickly if wayland is running. lsof -U shows the open sockets. If the above shows nothing, try lsof -U|grep -i x11 or lsof -U|grep X finally, it is interesting to see lsof -U|less but on my laptop I just got lsof -U|wc 403 3760 34643 so its a lot to look at. Hopefully less in a container ;) -- Regards, Bengt Richter From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Leo Prikler Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Tue, 16 Mar 2021 11:14:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Bengt Richter Cc: 47106@debbugs.gnu.org, Ludovic =?UTF-8?Q?Court=C3=A8s?= Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.16158931969174 (code B ref 47106); Tue, 16 Mar 2021 11:14:02 +0000 Received: (at 47106) by debbugs.gnu.org; 16 Mar 2021 11:13:16 +0000 Received: from localhost ([127.0.0.1]:38324 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lM7dT-0002Nt-PU for submit@debbugs.gnu.org; Tue, 16 Mar 2021 07:13:16 -0400 Received: from mailrelay.tugraz.at ([129.27.2.202]:18685) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lM7dS-0002Nl-5y for 47106@debbugs.gnu.org; Tue, 16 Mar 2021 07:13:15 -0400 Received: from nijino.local (217-149-164-20.nat.highway.telekom.at [217.149.164.20]) by mailrelay.tugraz.at (Postfix) with ESMTPSA id 4F09d24vNDz1LBRw; Tue, 16 Mar 2021 12:13:10 +0100 (CET) DKIM-Filter: OpenDKIM Filter v2.11.0 mailrelay.tugraz.at 4F09d24vNDz1LBRw DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tugraz.at; s=mailrelay; t=1615893191; bh=vQ4FzedacoiPN54T91fdSO6VVFyp5VyAe9AwNNUADio=; h=Subject:From:To:Cc:Date:In-Reply-To:References:From; b=q39sBAv4NmGtcG/9e4yjPIZY4fcaLuV16XChLALduGdrd1Mdzw3+HzzRvxbV9r20Z XMe8dbkjI6e9FJdWg6McAfu4orHrFyP1wd65AWYpjrr9D3eZkjh6hZ/5BJZU+c1YBy 72DdSVzf9rbHZ0B0HKoXGUOoyZKGQgO/P3ZKP1eo= Message-ID: <65e3ddcc4b625ed496222f6072542cd250b08a76.camel@student.tugraz.at> From: Leo Prikler Date: Tue, 16 Mar 2021 12:13:10 +0100 In-Reply-To: <20210316105442.GA3903@LionPure> References: <87r1kjpbvx.fsf@gnu.org> <2922127e61435e64f95d3d398ef6932a02336188.camel@student.tugraz.at> <20210313122718.GA11708@LionPure> <20210313170704.GA3712@LionPure> <20210314174539.GA10548@LionPure> <20210316105442.GA3903@LionPure> Content-Type: text/plain; charset="UTF-8" User-Agent: Evolution 3.34.2 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-TUG-Backscatter-control: bt4lQm5Tva3SBgCuw0EnZw X-Spam-Scanner: SpamAssassin 3.003001 X-Spam-Score-relay: -1.9 X-Scanned-By: MIMEDefang 2.74 on 129.27.10.116 X-Spam-Score: -2.3 (--) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.3 (---) Hi, Am Dienstag, den 16.03.2021, 11:54 +0100 schrieb Bengt Richter: > Hi Leo, > One more favor? ;) > > On +2021-03-14 19:05:24 +0100, Leo Prikler wrote: > > Hi again³ > > > > Am Sonntag, den 14.03.2021, 18:45 +0100 schrieb Bengt Richter: > > > Hi again^2, > > > > > > Maybe > > > pstree -at > > > would show a little more? > > sh > > |-dbus-daemon --syslog-only --fork --print-pid 5 --print-address > > 7 > > --sess > > |-dbus-launch --autolaunch=fa7a4d52637958ddd37547bb5d8bd9d2 > > --binary- > > synt > > `-screen > > `-screen > > |-sh > > | `-.epiphany-real > > | |-WebKitNetworkPr 3 21 > > | | |-{BMScavenger} > > | | |-{ReceiveQueue} > > | | |-{StorageTask} > > | | |-{Storage} > > | | |-{WebStorage} > > | | |-{background} > > | | |-{dconf worker} > > | | |-{erialBackground} > > | | |-{gdbus} > > | | `-{gmain} > > | |-bwrap --args 37 -- > > /gnu/store/hqhxgw0i8xh38h6kwmyrkywcd24q5f1z-webk > > | | `-bwrap --args 37 -- > > /gnu/store/hqhxgw0i8xh38h6kwmyrkywcd24q5f1z-webk > > | | `-WebKitWebProces 1277 28 > > | |-{.epiphany-real} > > | |-{BMScavenger} > > | |-{HashSaltStorage} > > | |-{IconDatabase} > > | |-{PressureMonitor} > > | |-2*[{ReceiveQueue}] > > | |-{dconf worker} > > | |-{e Compile Queue} > > | |-{ebsiteDataStore} > > | |-{gdbus} > > | |-{gmain} > > | |-{re Remove Queue} > > | `-{tore Read Queue} > > `-sh > > `-pstree -at > > > Also, > > > ls -lr /sys/class/drm > > total 0 > > -r--r--r-- 1 65534 overflow 4096 Mar 14 17:59 version > > lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:58 ttm -> > > ../../devices/virtual/drm/ttm > > lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:59 renderD128 -> > > ../../devices/pci0000:00/0000:00:02.0/0000:01:00.0/drm/renderD128 > > lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:59 card0-VGA-1 -> > > ../../devices/pci0000:00/0000:00:02.0/0000:01:00.0/drm/card0/card0- > > VGA- > > 1 > > lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:59 card0-HDMI-A-1 -> > > ../../devices/pci0000:00/0000:00:02.0/0000:01:00.0/drm/card0/card0- > > HDMI-A-1 > > lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:58 card0-DVI-D-1 -> > > ../../devices/pci0000:00/0000:00:02.0/0000:01:00.0/drm/card0/card0- > > DVI- > > D-1 > > lrwxrwxrwx 1 65534 overflow 0 Mar 14 17:58 card0 -> > > ../../devices/pci0000:00/0000:00:02.0/0000:01:00.0/drm/card0 > > > if that's accessible -- I'm wondering if the version of screen > > > in the container is built with libdrm and is bypassing X or ?? > > I doubt it is being built differently than screen normally is. > > > > > Do you have a makefile or a guix something.scm defining > > > what's built/packed into your container? > > Nah, it's a rather ad-hoc definition grown from what should be an > > Eolie > > container from the cookbook (also refer to #47097). > > > > guix environment --preserve='^DISPLAY$' --preserve=XAUTHORITY \ > > --preserve=TERM \ > > --expose=$XAUTHORITY \ > > --expose=/etc/machine-id \ > > --expose=/etc/ssl/certs/ \ > > --expose=/sys/block --expose=/sys/class --expose=/sys/bus \ > > --expose=/sys/dev --expose=/sys/devices \ > > --ad-hoc epiphany nss-certs dbus procps coreutils psmisc > > screen > > > > Given that I expose most of /sys explicitly, you should take the > > above > > with a grain of salt. > > > > > Sorry if my curiosity is making work for you, but I'd like to > > > try containers down the road -- tho right now I'm taking a break > > > from events IRL, so I may disappear for a while... > > I'm not personally impacted by this bug or anything, it's much > > rather a > > follow-up to my attempted fix of #47097. I think there might be > > some > > flaw in trying to run a sandbox inside a sandbox (like bubblewrap > > inside `guix container`), that doesn't actually improve security in > > any > > meaningful way. > > > > Regards, > > Leo > > > > If you can run this inside your container, I think it will be > interesting: > lsof -U|grep -i wayland > > The above ought to show quickly if wayland is running. > > lsof -U shows the open sockets. > > If the above shows nothing, try > lsof -U|grep -i x11 > or > lsof -U|grep X Nothing showed up for either, but this got me thinking. Exposing /tmp/.X11-unix/X1 did do away with the warning, now it's unexposed dbus, missing icons, etc. etc. Exposing all of /tmp instead yields ** (epiphany:2): ERROR **: 11:11:28.855: Failed to start embed shell D- Bus server on unix:dir=(null): Error binding to address: No such file or directory I still think that exposing all of that is perhaps not the wisest idea, but eh… Regards, Leo From debbugs-submit-bounces@debbugs.gnu.org Wed Mar 24 05:28:12 2021 Received: (at control) by debbugs.gnu.org; 24 Mar 2021 09:28:13 +0000 Received: from localhost ([127.0.0.1]:33970 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lOzoC-0007nN-EQ for submit@debbugs.gnu.org; Wed, 24 Mar 2021 05:28:12 -0400 Received: from mail-wm1-f41.google.com ([209.85.128.41]:38658) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lOzo9-0007n4-Ob for control@debbugs.gnu.org; Wed, 24 Mar 2021 05:28:10 -0400 Received: by mail-wm1-f41.google.com with SMTP id m20-20020a7bcb940000b029010cab7e5a9fso746473wmi.3 for ; Wed, 24 Mar 2021 02:28:09 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:mime-version; bh=ixXAKG8eBkBleJy00pKBs4FMTdtJs8Qi2sAbh5WwWLs=; b=R+GYDtKQ2n4e6DmUWsMRM8zKa2Fgf2ufK8y4ysIL6ahcsKGvZw1MlbHB2IOqe2sH8j YuoGmhRDCBd95Fdcy/69zGpJVbhZ0VdheSsPxSV+DmHM19kAcdPPZvPURp+PWDouxXh9 T5oEXonxuxrjrsN1mv+V+QFeu1J79I36IIJFc9xm1ZoCoibNqfkrchV16FHZ39gnUpWE +NC06Nh7Y8QsFCUEJZeGbQrQ+VJuh6ZCUOPaBLcXoHTxTEF8Zyi5OLF4wjhPhQdYc8dT HhPMLnUB27b6irw9KsZ2qzuLEa1P9Jr9hNvYwUxfBXXXFWRVgj7ilaDeLoozn0sm0xH0 Si3g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:mime-version; bh=ixXAKG8eBkBleJy00pKBs4FMTdtJs8Qi2sAbh5WwWLs=; b=JYFuCgmQVffcDkofx6qClkdftzexLqVuj60KMzt9FT5ytPsYaQmK6IDd5fYCp1BR5H FSKPVAvdkS2ioydAU7Wlk50Zbj9t/lnBZFYv3KEuoUibd/rKJkD3UhObknYYY/oeK70W Gb1iD5VclqZWzsUQZFHV4NNM5I3HSIOdUCXEeBdKFgG4Nx6MwFc/7q+AmfRtNVVvnsQZ +bbwa6BIaGCfzwqltFBLo25AeMZxS2p3XTygCdzr3U6rpeYd2mV6vefprhBrBHdRpl8f REbOpj0R2+bU8spFymEUMkDhqq+ldLbuEFIhZm26gYXrOv1lD20+Uwf7sOs+S5CbSA6u TR0Q== X-Gm-Message-State: AOAM530zR8k88OxYbNlv0zcFW0VqFZb3Fsvn7w96+u1X4HxRGI7245Vi EEwjBEVct58HDhQAOA10Bd8U742iFXY= X-Google-Smtp-Source: ABdhPJxSG3eNe3WomUOYCbvJLtfskkPrqXvLFhbppHL+AY0+9djFKnPFLxClUfxZSVNypXAIFfenjA== X-Received: by 2002:a05:600c:22c7:: with SMTP id 7mr1970257wmg.85.1616578084321; Wed, 24 Mar 2021 02:28:04 -0700 (PDT) Received: from lili ([2a01:e0a:59b:9120:65d2:2476:f637:db1e]) by smtp.gmail.com with ESMTPSA id n23sm2417077wra.71.2021.03.24.02.28.03 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 24 Mar 2021 02:28:04 -0700 (PDT) From: zimoun To: control@debbugs.gnu.org Subject: block 47297 by 47097 and 47106 Date: Wed, 24 Mar 2021 10:23:32 +0100 Message-ID: <86mtushpm3.fsf@gmail.com> MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: 0.0 (/) X-Debbugs-Envelope-To: control X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) block 47297 by 47097 block 47297 by 47106 thanks From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Leo Famulari Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Wed, 14 Apr 2021 20:08:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Leo Prikler Cc: 47106@debbugs.gnu.org Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.161843085122027 (code B ref 47106); Wed, 14 Apr 2021 20:08:01 +0000 Received: (at 47106) by debbugs.gnu.org; 14 Apr 2021 20:07:31 +0000 Received: from localhost ([127.0.0.1]:35818 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lWlnP-0005jD-9z for submit@debbugs.gnu.org; Wed, 14 Apr 2021 16:07:31 -0400 Received: from out4-smtp.messagingengine.com ([66.111.4.28]:43525) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lWlnN-0005iz-PB for 47106@debbugs.gnu.org; Wed, 14 Apr 2021 16:07:30 -0400 Received: from compute2.internal (compute2.nyi.internal [10.202.2.42]) by mailout.nyi.internal (Postfix) with ESMTP id 775065C0118; Wed, 14 Apr 2021 16:07:24 -0400 (EDT) Received: from mailfrontend2 ([10.202.2.163]) by compute2.internal (MEProxy); Wed, 14 Apr 2021 16:07:24 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=famulari.name; h=date:from:to:cc:subject:message-id:references:mime-version :content-type:in-reply-to; s=mesmtp; bh=f6Mbw3Lo373sHn7JSBLajZ5b 0yXFvcw4hGA8OSNXrYw=; b=RC3dXK5l8GTLx9z4TlagWDhtTUuvfNKFO6tcqro9 I9zlsLTKPMzRmMeQOyUAHeHIqfv5UGHRrswTD2YBJKDPX48HEkiqkRfrKnYV+7jg cPk4kvv8N8hacMR/jiovWgY21fHvI482Lh4nd4kI3y8OcbNOHAoXapebBXMwX6sh awY= DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm2; bh=f6Mbw3 Lo373sHn7JSBLajZ5b0yXFvcw4hGA8OSNXrYw=; b=P/iJHyt2ncQnefXNl28CJq x1Qe5xVdcD8+bBYpjwnej4FO6qrk3zosgj0k9u8xd/38dNdBzdwsF+k2dEbfse5x safkwsY3xKWno7NLdCeJKQ1Q1i810hlEDFz3fLcP0MmLfbXKb6lrzH0B65QH3PHu tfkNEhRGgja7LHPqEFefp7FoBdISngV/uNQJKDaTABuSPPPRnx1XLBgIk9GHfx4P TtlcY2V2vzx1fJRKU8TM6e+U7caQPIf/njqUhZKHVKiWTc+BD/IwD4CGe5Z7zVSa CSh6CepxQ8lvqzJZ7NwPSrYWeBGk1vCtxzOOWSUGrRhvIx/0iCBCuisrsnC2I3Pw == X-ME-Sender: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduledrudeluddgudegjecutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmd enucfjughrpeffhffvuffkfhggtggujgesthdtredttddtvdenucfhrhhomhepnfgvohcu hfgrmhhulhgrrhhiuceolhgvohesfhgrmhhulhgrrhhirdhnrghmvgeqnecuggftrfgrth htvghrnhepueekkedtffdvtddugeejgedtvefhueefiedvjeeitdeigedtveejvdejheff vefgnecukfhppedutddtrdduuddrudeiledruddukeenucevlhhushhtvghrufhiiigvpe dtnecurfgrrhgrmhepmhgrihhlfhhrohhmpehlvghosehfrghmuhhlrghrihdrnhgrmhgv X-ME-Proxy: Received: from localhost (pool-100-11-169-118.phlapa.fios.verizon.net [100.11.169.118]) by mail.messagingengine.com (Postfix) with ESMTPA id 057AC1080066; Wed, 14 Apr 2021 16:07:23 -0400 (EDT) Date: Wed, 14 Apr 2021 16:07:21 -0400 From: Leo Famulari Message-ID: References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: X-Spam-Score: -0.7 (/) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.7 (-) This bug is registered as "blocking" the upcoming release. Is there any chance it will be closed in the next 3 days? Or should I "unblock"? From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Leo Prikler Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Wed, 14 Apr 2021 21:24:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Leo Famulari Cc: 47106@debbugs.gnu.org Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.16184354175110 (code B ref 47106); Wed, 14 Apr 2021 21:24:02 +0000 Received: (at 47106) by debbugs.gnu.org; 14 Apr 2021 21:23:37 +0000 Received: from localhost ([127.0.0.1]:35908 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lWmz3-0001KM-9R for submit@debbugs.gnu.org; Wed, 14 Apr 2021 17:23:37 -0400 Received: from mailrelay.tugraz.at ([129.27.2.202]:39979) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lWmyz-0001K9-GN for 47106@debbugs.gnu.org; Wed, 14 Apr 2021 17:23:35 -0400 Received: from nijino.local (194-96-13-79.adsl.highway.telekom.at [194.96.13.79]) by mailrelay.tugraz.at (Postfix) with ESMTPSA id 4FLFns64fsz3x6y; Wed, 14 Apr 2021 23:23:29 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tugraz.at; s=mailrelay; t=1618435410; bh=KzGEbRMegLnq5VWUtUH2DwYB0iiKlukUWHxCakA3EJk=; h=Subject:From:To:Cc:Date:In-Reply-To:References; b=rXhtV0GxlB7rlwYQSTgUF+hk6+eVacqSfXCxXqi+q7Vx4TVjNYhQV0R+/Wi8zitTA 15gyHHlgMdrr8p8pap8cUDZrLEF7pn291wAXwyzifQjA1zrv1qn4sa1d2636DZ4dKk zGLn2Ljqds5hXxwKOoY7YsLbnlAk47bsNXXWiZ8o= Message-ID: From: Leo Prikler Date: Wed, 14 Apr 2021 23:23:28 +0200 In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" User-Agent: Evolution 3.34.2 MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-TUG-Backscatter-control: bt4lQm5Tva3SBgCuw0EnZw X-Spam-Scanner: SpamAssassin 3.003001 X-Spam-Score-relay: -1.9 X-Scanned-By: MIMEDefang 2.74 on 129.27.10.117 X-Spam-Score: -2.3 (--) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.3 (---) Am Mittwoch, den 14.04.2021, 16:07 -0400 schrieb Leo Famulari: > This bug is registered as "blocking" the upcoming release. > > Is there any chance it will be closed in the next 3 days? Or should I > "unblock"? There is a slim chance, that someone might fix it "by accident", but I'm personally not diving that deep into bubblewrap, so I don't even have an estimate of how much we would need to change. I think unblocking is the wiser choice here; we can update the manual post string freeze. Regards, Leo From debbugs-submit-bounces@debbugs.gnu.org Wed Apr 14 17:59:48 2021 Received: (at control) by debbugs.gnu.org; 14 Apr 2021 21:59:48 +0000 Received: from localhost ([127.0.0.1]:35978 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lWnY3-0002Hj-IZ for submit@debbugs.gnu.org; Wed, 14 Apr 2021 17:59:48 -0400 Received: from out2-smtp.messagingengine.com ([66.111.4.26]:56649) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lWnY1-0002HW-NH for control@debbugs.gnu.org; Wed, 14 Apr 2021 17:59:46 -0400 Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.nyi.internal (Postfix) with ESMTP id 836235C00DE; Wed, 14 Apr 2021 17:59:40 -0400 (EDT) Received: from mailfrontend2 ([10.202.2.163]) by compute3.internal (MEProxy); Wed, 14 Apr 2021 17:59:40 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=famulari.name; h=date:from:to:message-id:mime-version:content-type; s=mesmtp; bh=6O1g3MX+K1+bpy+vlr7s8DUIMFGAYHCgXinaniOfLGo=; b=nPX3uufH3rgf kKcXcIMA8oJyxnoq64l4lrXW0I2YEoE80DZsn58bmLxxxqbLOAY1zPGiShJxP0YJ z2p+UY69Mk4ln0CzZsI0hkmlJAqYqbA2vYmj0YhA73iPppNws7Uw2teNqJDG6rFY W0yiNr0/vfmt+Wxy8zyH5afiXmn5DGY= DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:date:from:message-id :mime-version:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm2; bh=6O1g3MX+K1+bpy+vlr7s8DUIMFGAYHCgXinaniOfL Go=; b=JAg0X/6I42HngXLVKXs74qiYvcBzZc9Cmhve+uoa1sFE/O3BO7r9ZXFHq NO70jTkIuX8EiPaKwKIE0BxGq7FygeNoImgw+uoHn2RSK7Pib7AehtKPhpafkb2b pTH0RsqLb+bNtiWfa/hT2pmcgaQKiE1lWoYoN/vUTyLDAZKU7R/NAJteTiKMkbrN 5ftaaEr2YrcO0QBW35ZMw5t75wamOxjq5K+Ico8vNuku+LWzig38Tu7s0RKgjzgq qd2t+udnd6lQ7nVLa7ea3Zplx0XnpBrfIX2tClM9vRRL3bRAGexQs7W3ePa62BWP NSE6rEMiNzeyAyabzt8QvsRI0BhIA== X-ME-Sender: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduledrudelvddgtdefucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucfgmhhpthihuchsuhgsjhgvtghtucdluddtmdenuc fjughrpeffhffvkfggtggusehttdertddttddvnecuhfhrohhmpefnvghoucfhrghmuhhl rghrihcuoehlvghosehfrghmuhhlrghrihdrnhgrmhgvqeenucggtffrrghtthgvrhhnpe fhjeeigfefvedvfeetheegledtkeevuddtgedtudeiteehteegvdefffduffefffenucfk phepuddttddruddurdduieelrdduudeknecuvehluhhsthgvrhfuihiivgeptdenucfrrg hrrghmpehmrghilhhfrhhomheplhgvohesfhgrmhhulhgrrhhirdhnrghmvg X-ME-Proxy: Received: from localhost (pool-100-11-169-118.phlapa.fios.verizon.net [100.11.169.118]) by mail.messagingengine.com (Postfix) with ESMTPA id BAF91108005F for ; Wed, 14 Apr 2021 17:59:39 -0400 (EDT) Date: Wed, 14 Apr 2021 17:59:38 -0400 From: Leo Famulari To: control@debbugs.gnu.org Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline X-Spam-Score: 1.3 (+) X-Spam-Report: Spam detection software, running on the system "debbugs.gnu.org", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: unblock 47297 with 47106 Content analysis details: (1.3 points, 10.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- -0.7 RCVD_IN_DNSWL_LOW RBL: Sender listed at https://www.dnswl.org/, low trust [66.111.4.26 listed in list.dnswl.org] -0.0 SPF_PASS SPF: sender matches SPF record -0.0 SPF_HELO_PASS SPF: HELO matches SPF record 0.0 RCVD_IN_MSPIKE_H3 RBL: Good reputation (+3) [66.111.4.26 listed in wl.mailspike.net] 0.0 RCVD_IN_MSPIKE_WL Mailspike good senders 1.8 MISSING_SUBJECT Missing Subject: header 0.2 NO_SUBJECT Extra score for no subject X-Debbugs-Envelope-To: control X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 0.3 (/) unblock 47297 with 47106 From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: Bubblewrap hates Guix containers =?UTF-8?Q?=F0=9F=98=9E?= Resent-From: Leo Famulari Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Wed, 14 Apr 2021 22:01:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Leo Prikler Cc: 47106@debbugs.gnu.org Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.16184376159839 (code B ref 47106); Wed, 14 Apr 2021 22:01:01 +0000 Received: (at 47106) by debbugs.gnu.org; 14 Apr 2021 22:00:15 +0000 Received: from localhost ([127.0.0.1]:35984 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lWnYV-0002YM-CP for submit@debbugs.gnu.org; Wed, 14 Apr 2021 18:00:15 -0400 Received: from out2-smtp.messagingengine.com ([66.111.4.26]:48843) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lWnYT-0002PW-CE for 47106@debbugs.gnu.org; Wed, 14 Apr 2021 18:00:13 -0400 Received: from compute4.internal (compute4.nyi.internal [10.202.2.44]) by mailout.nyi.internal (Postfix) with ESMTP id 3C5185C011B; Wed, 14 Apr 2021 18:00:08 -0400 (EDT) Received: from mailfrontend2 ([10.202.2.163]) by compute4.internal (MEProxy); Wed, 14 Apr 2021 18:00:08 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=famulari.name; h=date:from:to:cc:subject:message-id:references:mime-version :content-type:in-reply-to; s=mesmtp; bh=RQTmlHXbI2ktihXty3/+nqQV ebqeUyzEjTEU7s+qwm4=; b=kxA7R8K0XCpsvjFAj6LFC+gzlF6d79riemg7O5JX X68qY18UPuBR4Ng7qiUYfgjUDZyVFz833vUwbb0oDDovUWan02Pyc4Y2M2A+Hr0q X34V4M7nZQEqJkwSkRKaJ45Ire6d67iiHwAg4lRSRla6FLum0ZfOtUwZcEWDwD1L tm4= DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm2; bh=RQTmlH XbI2ktihXty3/+nqQVebqeUyzEjTEU7s+qwm4=; b=kQsnrcfmxlwWfFhmNbIKt7 JVLtHfIgyATAQhs/+236o0J7uNBdBRpL7f5GZvnOk30/YZaH+h2trvqJjpD5R26Q Qa21ytGTpObpKLxWMeuvKDZzyhVMToxYteYbGJxFespjyioAtTSfb5pyEYZ+vwzO uEPPnf71780IJne5FtRLXsEfP+BA8T4YxBaU7f68MRWlOOyJQDTxQbh1NLP0zq3j Qc9Re4clYSLsYXNKQUgMAOFzeJptV8c50WKQUu0m13kh3lWfpQuhv3dxercV3tkt jTBYLTWos8b1xN1hdN2dh2Aw+l6zZ5PkqFujTbuSXC5EUYBAhzDEFn5z74zyoBrA == X-ME-Sender: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduledrudelvddgtdefucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurhepfffhvffukfhfgggtuggjsehttdertddttddvnecuhfhrohhmpefnvghoucfh rghmuhhlrghrihcuoehlvghosehfrghmuhhlrghrihdrnhgrmhgvqeenucggtffrrghtth gvrhhnpeeukeektdffvddtudegjeegtdevhfeufeeivdejiedtieegtdevjedvjeehffev gfenucfkphepuddttddruddurdduieelrdduudeknecuvehluhhsthgvrhfuihiivgeptd enucfrrghrrghmpehmrghilhhfrhhomheplhgvohesfhgrmhhulhgrrhhirdhnrghmvg X-ME-Proxy: Received: from localhost (pool-100-11-169-118.phlapa.fios.verizon.net [100.11.169.118]) by mail.messagingengine.com (Postfix) with ESMTPA id 9DCED1080069; Wed, 14 Apr 2021 18:00:06 -0400 (EDT) Date: Wed, 14 Apr 2021 18:00:02 -0400 From: Leo Famulari Message-ID: References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: X-Spam-Score: -0.7 (/) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.7 (-) On Wed, Apr 14, 2021 at 11:23:28PM +0200, Leo Prikler wrote: > Am Mittwoch, den 14.04.2021, 16:07 -0400 schrieb Leo Famulari: > > This bug is registered as "blocking" the upcoming release. > > > > Is there any chance it will be closed in the next 3 days? Or should I > > "unblock"? > There is a slim chance, that someone might fix it "by accident", but > I'm personally not diving that deep into bubblewrap, so I don't even > have an estimate of how much we would need to change. I think > unblocking is the wiser choice here; we can update the manual post > string freeze. Alright, thanks for explaining. I've done the "unblocking". From unknown Fri Jun 13 11:18:36 2025 X-Loop: help-debbugs@gnu.org Subject: bug#47106: bug#61101: Graphical container examples forget to expose things. Resent-From: Maxime Devos Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Fri, 27 Jan 2023 19:45:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 47106 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: 47106@debbugs.gnu.org, Simon Tournier Received: via spool by 47106-submit@debbugs.gnu.org id=B47106.167484869519116 (code B ref 47106); Fri, 27 Jan 2023 19:45:02 +0000 Received: (at 47106) by debbugs.gnu.org; 27 Jan 2023 19:44:55 +0000 Received: from localhost ([127.0.0.1]:38538 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1pLUed-0004yE-BB for submit@debbugs.gnu.org; Fri, 27 Jan 2023 14:44:55 -0500 Received: from michel.telenet-ops.be ([195.130.137.88]:35912) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1pLUeY-0004y3-US for 47106@debbugs.gnu.org; Fri, 27 Jan 2023 14:44:54 -0500 Received: from [IPV6:2a02:1811:8c09:9d00:5dba:d409:33f7:a16] ([IPv6:2a02:1811:8c09:9d00:5dba:d409:33f7:a16]) by michel.telenet-ops.be with bizsmtp id Dvkn2900220ykKC06vkn66; Fri, 27 Jan 2023 20:44:49 +0100 Message-ID: Date: Fri, 27 Jan 2023 20:44:47 +0100 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.6.0 Content-Language: en-US References: <5160c9d6-4d88-7271-5291-ee760d208781@telenet.be> <87lelnop9x.fsf@gmail.com> From: Maxime Devos In-Reply-To: <87lelnop9x.fsf@gmail.com> Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="------------i0VJVYDoaYFbcSzpaEy1G2Xt" DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=telenet.be; s=r23; t=1674848689; bh=HEl+LBYhs5W8L5WCKEDFjGZcLdi1/BvVmCS+Io/gXmA=; h=Date:References:From:To:Subject:In-Reply-To; b=ffa0I6U+jUiq6KpmlAp1J6SIjOx1QSWKahH96HVDAgzLsLOF9WZIX+u7Y04jAz7s6 aatRZ3tKRoVf0j+3SHOjwgVz/WAFpMZw3TJe+FlcZvxk0vvH6SQxxawqdBt63S2xZ+ dRku+C7IE/F5kAj0XRonoZ60xAJnKUHPcRxdLAAoARCTI65SArgW1wWpesrktOrGMN 1l3DGsthIg+mhlS/Yh4oHRxQFrdVR22iY7Vl9DhOPOwLZXwxsSmBq0uj/gxZUHd5qV cRQBDi9OaRPMU1U5/q02T8fNKhK5mg6JXXypbBrufqJjijV4qGMbstX6ES4oWGJgoe SkMFbPbW9VRFQ== X-Spam-Score: -1.1 (-) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -2.1 (--) This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --------------i0VJVYDoaYFbcSzpaEy1G2Xt Content-Type: multipart/mixed; boundary="------------UtIoi2JhxnyB7fO5pPWGJbLM"; protected-headers="v1" From: Maxime Devos To: 47106@debbugs.gnu.org, Simon Tournier Message-ID: Subject: Re: bug#61101: Graphical container examples forget to expose things. References: <5160c9d6-4d88-7271-5291-ee760d208781@telenet.be> <87lelnop9x.fsf@gmail.com> In-Reply-To: <87lelnop9x.fsf@gmail.com> --------------UtIoi2JhxnyB7fO5pPWGJbLM Content-Type: multipart/mixed; boundary="------------RYRr0x9Zfio40vM2tAC5GaGE" --------------RYRr0x9Zfio40vM2tAC5GaGE Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: base64 DQoNCk9uIDI3LTAxLTIwMjMgMTg6MzQsIFNpbW9uIFRvdXJuaWVyIHdyb3RlOg0KPiBIaSwN Cj4gDQo+IE9uIHZlbi4sIDI3IGphbnYuIDIwMjMgYXQgMTc6NTAsIE1heGltZSBEZXZvcyA8 bWF4aW1lZGV2b3NAdGVsZW5ldC5iZT4gd3JvdGU6DQo+PiBNYW55IG9mIHRoZSBncmFwaGlj YWwgY29udGFpbmVyIGV4YW1wbGVzIGRvbid0IHdvcmsuDQo+IA0KPiBJIHRoaW5rIGl0IGlz IHJlbGF0ZWQgdG8gIzQ3MDk3IFsxXS4NCj4gDQo+IDE6IDxodHRwOi8vaXNzdWVzLmd1aXgu Z251Lm9yZy9pc3N1ZS80NzA5Nz4NCg0KDQpSaWdodCwgZGlkbid0IG5vdGljZSB0aGF0IG9u ZS4NClRoYXQgb25lIGFwcGVhcnMgdG8gYmUgbW9zdGx5IGFib3V0IGlucHV0cyB0aG91Z2gs IG5vdCBhYm91dCBYQVVUSE9SSVRZIA0KYW5kIC90bXAvLlgxMS11bml4IHN0dWZmLg0KDQpJ IHRoaW5rIDxodHRwczovL2RlYmJ1Z3MuZ251Lm9yZy9jZ2kvYnVncmVwb3J0LmNnaT9idWc9 NDcxMDY+IGlzIGNsb3Nlcg0KPGh0dHBzOi8vaXNzdWVzLmd1aXguZ251Lm9yZy80NzEwNj4s IGJlaW5nIGFib3V0IFhBVVRIT1JJVFkgYW5kIC9zeXMgLS0gDQphbmQgaW4gPGh0dHBzOi8v ZGViYnVncy5nbnUub3JnL2NnaS9idWdyZXBvcnQuY2dpP2J1Zz00NzEwNiM1MD4sIGFib3V0 IA0KL3RtcC8uWDExLXVuaXguDQoNCkl0J3MgYSBtb3JlIGdlbmVyYWwgaXNzdWUgdGhvdWdo LCBub3Qgb25seSB0aGUgZW9saWUgZXhhbXBsZSBpcyBhZmZlY3RlZC4NCg0KR3JlZXRpbmdz LA0KTWF4aW1lLg0K --------------RYRr0x9Zfio40vM2tAC5GaGE Content-Type: application/pgp-keys; name="OpenPGP_0x49E3EE22191725EE.asc" Content-Disposition: attachment; filename="OpenPGP_0x49E3EE22191725EE.asc" Content-Description: OpenPGP public key Content-Transfer-Encoding: quoted-printable -----BEGIN PGP PUBLIC KEY BLOCK----- xjMEX4ch6BYJKwYBBAHaRw8BAQdANPb/d6MrGnGi5HyvODCkBUJPRjiFQcRU5V+m xvMaAa/NL01heGltZSBEZXZvcyA8bWF4aW1lLmRldm9zQHN0dWRlbnQua3VsZXV2 ZW4uYmU+wpAEExYIADgWIQTB8z7iDFKP233XAR9J4+4iGRcl7gUCX4ch6AIbAwUL CQgHAwUVCgkICwUWAgMBAAIeAQIXgAAKCRBJ4+4iGRcl7japAQC3opZ2KGWzWmRc /gIWSu0AAcfMwyinFEEPa/QhUt2CogD/e2RdF4CYAgaRHJJmZ9WU7piKbLZ7llB4 LzgezVDHggzNJU1heGltZSBEZXZvcyA8bWF4aW1lZGV2b3NAdGVsZW5ldC5iZT7C kAQTFggAOBYhBMHzPuIMUo/bfdcBH0nj7iIZFyXuBQJf56ycAhsDBQsJCAcDBRUK CQgLBRYCAwEAAh4BAheAAAoJEEnj7iIZFyXujpQBAKV1SwDDl4f24rXciDlB9L8W ycZt30CgbewMSRQk4mvbAP9dFMbVVixYBd6C8cfhR+NsOBGiOJnQABlUmgNuqGFJ Dc44BF+HIegSCisGAQQBl1UBBQEBB0BOlzIWiJzgobMF6/cqwLaLk7jIcFSZ++c0 k9cCNT6YXwMBCAfCeAQYFggAIBYhBMHzPuIMUo/bfdcBH0nj7iIZFyXuBQJfhyHo AhsMAAoJEEnj7iIZFyXuMr0BAJc8cl5PGvVmVuSQVKjleNl4DK1/XAaPAYPe34AE fZJPAP9IqLCQhH/FeJanHqBP8gNdGNI2qn8RnnLVfRJgUjZ1BA=3D=3D =3DOVqp -----END PGP PUBLIC KEY BLOCK----- --------------RYRr0x9Zfio40vM2tAC5GaGE-- --------------UtIoi2JhxnyB7fO5pPWGJbLM-- --------------i0VJVYDoaYFbcSzpaEy1G2Xt Content-Type: application/pgp-signature; name="OpenPGP_signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="OpenPGP_signature" -----BEGIN PGP SIGNATURE----- wnsEABYIACMWIQTB8z7iDFKP233XAR9J4+4iGRcl7gUCY9QprwUDAAAAAAAKCRBJ4+4iGRcl7gyn AP9OFy+2dCre4lQ0KmHVj1BNVSO6mlKaIZltq+fi7bWyewEAj7mA8a89uPSc9ZuaphA9ZDXAFd0S 1XtE2nMx+CldDwk= =+cd3 -----END PGP SIGNATURE----- --------------i0VJVYDoaYFbcSzpaEy1G2Xt--