GNU bug report logs - #77288
[PATCH 0/6] Rootless guix-daemon on Guix System

Previous Next

Full log

Message #101 received at 77288 <at> debbugs.gnu.org (full text, mbox):

From: Ludovic Courtès <ludo <at> gnu.org>
To: "pelzflorian (Florian Pelz)" <pelzflorian <at> pelzflorian.de>
Cc: 77288 <at> debbugs.gnu.org, Maxim Cournoyer <maxim.cournoyer <at> gmail.com>
Subject: Re: [bug#77288] [PATCH v3 2/8] doc: Document migration to the
 unprivileged daemon.
Date: Sat, 19 Apr 2025 11:07:02 +0200

Hey Florian,

"pelzflorian (Florian Pelz)" <pelzflorian <at> pelzflorian.de> writes:

> Works great now.  I can now with v3 merrily switch back and forth the
> (privileged? #f) on Guix System,

Good, thanks for testing again!

> except ownerships of /gnu/store/ files are funny when I guix system
> roll-back to the time before guix-ownership services existed.

Uh, right.  There’s little we can do here, except perhaps adding a
warning in the doc?

> Then I try the
>
>      chown -R root:root                        \
>        /gnu                                                  \
>        /var/guix/{daemon-socket,db,discover}                 \
>        /var/guix/{gcroots,offload,substitute,temproots}      \
>        /var/log/guix                                         \
>        /etc/guix
>
> from this “Migrating to the Unprivileged Daemon” with root:root instead
> of guix-daemon:guix-daemon.  But it does not work unless I mount -o
> remount,rw /gnu/store (a command from the subsequent SELinux section).
>
> While I have not tested this “Migrating to the Unprivileged Daemon”
> section on a foreign distro, should not etc/gnu-store.mount require
> remounting on foreign distros, too?

Users are invited to stop the daemon before doing that, which should
stop ‘gnu-store.mount’ as well.  Do you think that needs to be
clarified?

Thanks,
Ludo’.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.