From unknown Fri Aug 15 18:13:59 2025 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-Mailer: MIME-tools 5.509 (Entity 5.509) Content-Type: text/plain; charset=utf-8 From: bug#64105 <64105@debbugs.gnu.org> To: bug#64105 <64105@debbugs.gnu.org> Subject: Status: [PATCH] linux-container: Pass '--disable-chroot' to 'guix-daemon'. Reply-To: bug#64105 <64105@debbugs.gnu.org> Date: Sat, 16 Aug 2025 01:13:59 +0000 retitle 64105 [PATCH] linux-container: Pass '--disable-chroot' to 'guix-dae= mon'. reassign 64105 guix-patches submitter 64105 Ludovic Court=C3=A8s severity 64105 normal tag 64105 patch thanks From debbugs-submit-bounces@debbugs.gnu.org Fri Jun 16 04:55:22 2023 Received: (at submit) by debbugs.gnu.org; 16 Jun 2023 08:55:22 +0000 Received: from localhost ([127.0.0.1]:48596 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1qA5En-00080p-PI for submit@debbugs.gnu.org; Fri, 16 Jun 2023 04:55:22 -0400 Received: from lists.gnu.org ([209.51.188.17]:34802) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1qA5El-00080e-C4 for submit@debbugs.gnu.org; Fri, 16 Jun 2023 04:55:20 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1qA5El-000777-05 for guix-patches@gnu.org; Fri, 16 Jun 2023 04:55:19 -0400 Received: from fencepost.gnu.org ([2001:470:142:3::e]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1qA5Ek-0007Qf-Nk; Fri, 16 Jun 2023 04:55:18 -0400 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=gnu.org; s=fencepost-gnu-org; h=MIME-Version:Date:Subject:To:From:in-reply-to: references; bh=EXERqSpPP/8J8nRA2TzJ4mzPCK9ax51l4WyAjZo3DV0=; b=prpCsjnNvxQLdN jNlqzaM9sMKF9mqLWWXy/ZM3qIXkGq6tWxQSrUTI9bbdrBaj3RazJ2KbgmsPGlM3NsvLdIJhuzSui h4Feh5wlUUYiUJ/PcUEilepTpQRrlVm3CD0xTPlQBaZbhWM9ZQcKSp3lQQcpuA1cjqa2HWl9f9Tt6 IzF6i1ztCJiRvhntP9J+rd/pzfmtnVblK3ixbugbqsKxdt0B9zXCOyD8Z7Han00zGWVfVUJfSeTsV mpueX8H5AePpoLhmCHR6Pp5D+ecvsG0TlRUXtjxFKHnlb+JUTwp21yHiIygKAFsfbm0/BhiHqGgbK VB4w2i1AW8R3si0VLfww==; Received: from [2001:660:6102:320:e120:2c8f:8909:cdfe] (helo=gnu.org) by fencepost.gnu.org with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1qA5Ek-00076T-9f; Fri, 16 Jun 2023 04:55:18 -0400 From: =?UTF-8?q?Ludovic=20Court=C3=A8s?= To: guix-patches@gnu.org Subject: [PATCH] linux-container: Pass '--disable-chroot' to 'guix-daemon'. Date: Fri, 16 Jun 2023 10:55:08 +0200 Message-Id: X-Mailer: git-send-email 2.40.1 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Spam-Score: -2.3 (--) X-Debbugs-Envelope-To: submit Cc: =?UTF-8?q?Ludovic=20Court=C3=A8s?= X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.3 (---) This allows for the use of Guix within a non-privileged Docker container produced by 'guix system image -t docker'. * gnu/system/linux-container.scm (containerized-operating-system): Change 'guix-configuration' to add "--disable-chroot". --- gnu/system/linux-container.scm | 13 ++++++++++++- 1 file changed, 12 insertions(+), 1 deletion(-) diff --git a/gnu/system/linux-container.scm b/gnu/system/linux-container.scm index 7c45dbccaf..485baea4c5 100644 --- a/gnu/system/linux-container.scm +++ b/gnu/system/linux-container.scm @@ -1,6 +1,6 @@ ;;; GNU Guix --- Functional package management for GNU ;;; Copyright © 2015 David Thompson -;;; Copyright © 2016-2017, 2019-2022 Ludovic Courtès +;;; Copyright © 2016-2017, 2019-2023 Ludovic Courtès ;;; Copyright © 2019 Arun Isaac ;;; Copyright © 2020 Efraim Flashner ;;; Copyright © 2020 Google LLC @@ -160,6 +160,17 @@ (define* (containerized-operating-system os mappings (nscd-configuration (inherit (service-value s)) (caches %nscd-container-caches)))) + ((eq? guix-service-type (service-kind s)) + ;; Pass '--disable-chroot' so that + ;; guix-daemon can build thing even in + ;; Docker without '--privileged'. + (service guix-service-type + (guix-configuration + (inherit (service-value s)) + (extra-options + (cons "--disable-chroot" + (guix-configuration-extra-options + (service-value s))))))) (else s))) (operating-system-user-services os)))) (file-systems (append (map mapping->fs base-commit: 31336e9f5d68512a9c1c6826bce9f17c892a2125 -- 2.40.1 From debbugs-submit-bounces@debbugs.gnu.org Sat Jun 24 10:25:00 2023 Received: (at control) by debbugs.gnu.org; 24 Jun 2023 14:25:00 +0000 Received: from localhost ([127.0.0.1]:41187 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1qD4CC-0001Xi-7M for submit@debbugs.gnu.org; Sat, 24 Jun 2023 10:25:00 -0400 Received: from mail2-relais-roc.national.inria.fr ([192.134.164.83]:5754) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1qD4CA-0001XJ-02 for control@debbugs.gnu.org; Sat, 24 Jun 2023 10:24:58 -0400 Authentication-Results: mail2-relais-roc.national.inria.fr; dkim=none (message not signed) header.i=none; spf=SoftFail smtp.mailfrom=ludo@gnu.org; dmarc=fail (p=none dis=none) d=gnu.org X-IronPort-AV: E=Sophos;i="6.01,155,1684792800"; d="scan'208";a="114481569" Received: from 91-160-117-201.subs.proxad.net (HELO ribbon) ([91.160.117.201]) by mail2-relais-roc.national.inria.fr with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 24 Jun 2023 16:24:51 +0200 Date: Sat, 24 Jun 2023 16:24:48 +0200 Message-Id: <87jzvt0wgf.fsf@gnu.org> To: control@debbugs.gnu.org From: =?utf-8?Q?Ludovic_Court=C3=A8s?= Subject: control message for bug #64105 MIME-version: 1.0 Content-type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Spam-Score: -1.3 (-) X-Debbugs-Envelope-To: control X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -2.3 (--) close 64105 quit From unknown Fri Aug 15 18:13:59 2025 Received: (at fakecontrol) by fakecontrolmessage; To: internal_control@debbugs.gnu.org From: Debbugs Internal Request Subject: Internal Control Message-Id: bug archived. Date: Sun, 23 Jul 2023 11:24:04 +0000 User-Agent: Fakemail v42.6.9 # This is a fake control message. # # The action: # bug archived. thanks # This fakemail brought to you by your local debbugs # administrator