From mboxrd@z Thu Jan 1 00:00:00 1970 From: "pelzflorian (Florian Pelz)" Subject: bug#33171: TMPDIR and build containers Date: Sat, 27 Oct 2018 03:23:36 +0200 Message-ID: <20181027012336.glawlvz63m6kiiuu@florianbeaglebone.fritz.box> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:49296) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1gGDKh-0001c7-5O for bug-guix@gnu.org; Fri, 26 Oct 2018 21:24:08 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1gGDKc-0007QC-7y for bug-guix@gnu.org; Fri, 26 Oct 2018 21:24:07 -0400 Received: from debbugs.gnu.org ([208.118.235.43]:40205) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1gGDKc-0007Q8-3Q for bug-guix@gnu.org; Fri, 26 Oct 2018 21:24:02 -0400 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1gGDKb-0002Ry-Uj for bug-guix@gnu.org; Fri, 26 Oct 2018 21:24:01 -0400 Sender: "Debbugs-submit" Resent-Message-ID: Received: from eggs.gnu.org ([2001:4830:134:3::10]:49195) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1gGDKK-0001Za-SY for bug-guix@gnu.org; Fri, 26 Oct 2018 21:23:45 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1gGDKF-0006oi-R6 for bug-guix@gnu.org; Fri, 26 Oct 2018 21:23:44 -0400 Received: from pelzflorian.de ([5.45.111.108]:44182 helo=mail.pelzflorian.de) by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from ) id 1gGDKF-0006o3-G0 for bug-guix@gnu.org; Fri, 26 Oct 2018 21:23:39 -0400 Received: from florianbeaglebone.fritz.box (ip5b434e10.dynamic.kabel-deutschland.de [91.67.78.16]) by mail.pelzflorian.de (Postfix) with ESMTPSA id 0A270360076 for ; Sat, 27 Oct 2018 03:23:37 +0200 (CEST) Content-Disposition: inline List-Id: Bug reports for GNU Guix List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-guix-bounces+gcggb-bug-guix=m.gmane.org@gnu.org Sender: "bug-Guix" To: 33171@debbugs.gnu.org Hello, The manual says that TMPDIR does not leak into the build environment: > You can influence the directory where the daemon stores build trees > via the =E2=80=98TMPDIR=E2=80=99 environment variable. However, the bu= ild tree within > the chroot is always called =E2=80=98/tmp/guix-build-NAME.drv-0=E2=80=99= , where NAME is > the derivation name=E2=80=94e.g., =E2=80=98coreutils-8.24=E2=80=99. Th= is way, the value of > =E2=80=98TMPDIR=E2=80=99 does not leak inside build environments, which= avoids > discrepancies in cases where build processes capture the name of their > build tree. However, later it says: > When the daemon performs a build on behalf of the user, it creates a > build directory under =E2=80=98/tmp=E2=80=99 or under the directory spe= cified by its > =E2=80=98TMPDIR=E2=80=99 environment variable; this directory is shared= with the > container for the duration of the build. Be aware that using a > directory other than =E2=80=98/tmp=E2=80=99 can affect build results=E2= =80=94for example, with a > longer directory name, a build process that uses Unix-domain sockets > might hit the name length limitation for =E2=80=98sun_path=E2=80=99, wh= ich it would > otherwise not hit. This seems like a contradiction, or do I misunderstand? Regards, Florian