GNU bug report logs - #78363
Home is read-only in guix shell container

Previous Next

Package: guix;

Reported by: keinflue <keinflue <at> posteo.net>

Date: Sat, 10 May 2025 23:00:02 UTC

Severity: normal

Merged with 78440

Done: Ludovic Courtès <ludo <at> gnu.org>

Bug is archived. No further changes may be made.

Full log

Message #20 received at 78363 <at> debbugs.gnu.org (full text, mbox):

From: Tomas Volf <~@wolfsden.cz>
To: Ludovic Courtès <ludo <at> gnu.org>
Cc: keinflue <keinflue <at> posteo.net>, 78363 <at> debbugs.gnu.org
Subject: Re: bug#78363: Home is read-only in guix shell container
Date: Sun, 11 May 2025 22:26:12 +0200

Ludovic Courtès <ludo <at> gnu.org> writes:

> keinflue <keinflue <at> posteo.net> writes:
>
>> I am not sure whether this is intended behavior, but it seems weird to
>> me. Inside e.g.
>>
>> guix shell -Cu test coreutils
>>
>> /home/test is mounted read-only and I do not see any way to make it
>> writable without sharing a host directory.
>
> As noted in the ‘guix pull’ news, you can use ‘--writable-root’.
> Otherwise, everything but the current directory and /tmp is read-only.

Does that make sense though?  You have already made an exception for
/tmp, I would argue that ~ is another candidate for special-casing.

I think people would reasonably expect that touching a file in your own
home should work.  But it does not:

--8<---------------cut here---------------start------------->8---
$ guix shell --no-cwd -C coreutils bash -- sh -c 'touch ~/foo'
touch: cannot touch '/home/user/foo': Read-only file system
--8<---------------cut here---------------end--------------->8---

Some software just fails to start in the container:

--8<---------------cut here---------------start------------->8---
$ guix shell --no-cwd -C deluge -- deluged
20:22:20 [ERROR   ][deluge.common:136 ] Unable to use default config directory, exiting... ([Errno 30] Read-only file system: '/home/user/.config')
--8<---------------cut here---------------end--------------->8---

Sure, I *can* use --writable-root, but I agree that root being read-only
is a good idea.  Maybe --writable-home, which would default to #t, would
be a good addition?

Tomas

-- 
There are only two hard things in Computer Science:
cache invalidation, naming things and off-by-one errors.
This bug report was last modified 2 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.