From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <bug-guix-bounces+larch=yhetil.org@gnu.org>
Received: from mp0 ([2001:41d0:2:4a6f::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by ms11 with LMTPS
	id 0AX+MJA7d180EAAA0tVLHw
	(envelope-from <bug-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Fri, 02 Oct 2020 14:39:12 +0000
Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by mp0 with LMTPS
	id sD3WLJA7d1+TAwAA1q6Kng
	(envelope-from <bug-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Fri, 02 Oct 2020 14:39:12 +0000
Received: from lists.gnu.org (lists.gnu.org [209.51.188.17])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by aspmx1.migadu.com (Postfix) with ESMTPS id 34AA19402AC
	for <larch@yhetil.org>; Fri,  2 Oct 2020 14:39:12 +0000 (UTC)
Received: from localhost ([::1]:47536 helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <bug-guix-bounces+larch=yhetil.org@gnu.org>)
	id 1kOMDG-0006lY-V2
	for larch@yhetil.org; Fri, 02 Oct 2020 10:39:10 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10]:33162)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1kOMD8-0006jN-7n
 for bug-guix@gnu.org; Fri, 02 Oct 2020 10:39:02 -0400
Received: from debbugs.gnu.org ([209.51.188.43]:58957)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1kOMD7-0003pV-U6
 for bug-guix@gnu.org; Fri, 02 Oct 2020 10:39:01 -0400
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1kOMD7-0003Fa-S5
 for bug-guix@gnu.org; Fri, 02 Oct 2020 10:39:01 -0400
X-Loop: help-debbugs@gnu.org
Subject: bug#43762: =?UTF-8?Q?=E2=80=98guix?= environment
 =?UTF-8?Q?-C=E2=80=99?= containers lack /etc/hosts
Resent-From: Bengt Richter <bokr@bokr.com>
Original-Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-CC: bug-guix@gnu.org
Resent-Date: Fri, 02 Oct 2020 14:39:01 +0000
Resent-Message-ID: <handler.43762.B43762.160164951312454@debbugs.gnu.org>
Resent-Sender: help-debbugs@gnu.org
X-GNU-PR-Message: followup 43762
X-GNU-PR-Package: guix
X-GNU-PR-Keywords: 
To: Ludovic =?UTF-8?Q?Court=C3=A8s?= <ludovic.courtes@inria.fr>
Received: via spool by 43762-submit@debbugs.gnu.org id=B43762.160164951312454
 (code B ref 43762); Fri, 02 Oct 2020 14:39:01 +0000
Received: (at 43762) by debbugs.gnu.org; 2 Oct 2020 14:38:33 +0000
Received: from localhost ([127.0.0.1]:42270 helo=debbugs.gnu.org)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
 id 1kOMCe-0003En-WB
 for submit@debbugs.gnu.org; Fri, 02 Oct 2020 10:38:33 -0400
Received: from imta-38.everyone.net ([216.200.145.38]:44418)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <bokr@oz.net>) id 1kOMCZ-0003Eb-Im
 for 43762@debbugs.gnu.org; Fri, 02 Oct 2020 10:38:31 -0400
Received: from pps.filterd (omta003.sj2.proofpoint.com [127.0.0.1])
 by imta-38.everyone.net (8.16.0.43/8.16.0.43) with SMTP id 092Ec4uM030995;
 Fri, 2 Oct 2020 07:38:26 -0700
X-Eon-Originating-Account: H2CEJMqwiTq-3mBHMAi_JBjSGLJPwPwnZ_mLBl6Ne-o
X-Eon-Dm: m0116953.ppops.net
Received: by m0116953.mta.everyone.net (EON-AUTHRELAY2 - 53b92420)
 id m0116953.5f62b242.15955b; Fri, 2 Oct 2020 07:38:24 -0700
X-Eon-Sig: AQMHrIJfdztgBXe4jgIAAAAC,0daeb90ee6450778e964f080efa126b5
X-Eip: 2Fa5Y9r2Y5cy2VFVsRqezoa6vM23UWuaLAO5M2uDPzA
Date: Fri, 2 Oct 2020 16:38:13 +0200
From: Bengt Richter <bokr@bokr.com>
Message-ID: <20201002143813.GA4900@LionPure>
References: <87a6x4ka36.fsf@inria.fr>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <87a6x4ka36.fsf@inria.fr>
User-Agent: Mutt/1.10.1 (2018-07-13)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.235, 18.0.687
 definitions=2020-10-02_10:2020-10-02,
 2020-10-02 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0
 lowpriorityscore=0 mlxscore=0
 phishscore=0 bulkscore=0 adultscore=0 clxscore=1034 mlxlogscore=946
 suspectscore=0 spamscore=0 impostorscore=0 malwarescore=0
 priorityscore=1501 classifier=spam adjust=0 reason=mlx scancount=1
 engine=8.12.0-2006250000 definitions=main-2010020115
X-Spam-Score: -0.4 (/)
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
X-Spam-Score: -1.4 (-)
X-BeenThere: bug-guix@gnu.org
List-Id: Bug reports for GNU Guix <bug-guix.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/bug-guix>,
 <mailto:bug-guix-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/bug-guix>
List-Post: <mailto:bug-guix@gnu.org>
List-Help: <mailto:bug-guix-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/bug-guix>,
 <mailto:bug-guix-request@gnu.org?subject=subscribe>
Reply-To: Bengt Richter <bokr@bokr.com>
Cc: 43762@debbugs.gnu.org
Errors-To: bug-guix-bounces+larch=yhetil.org@gnu.org
Sender: "bug-Guix" <bug-guix-bounces+larch=yhetil.org@gnu.org>
X-Scanner: scn0
Authentication-Results: aspmx1.migadu.com;
	dkim=none;
	dmarc=none;
	spf=pass (aspmx1.migadu.com: domain of bug-guix-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=bug-guix-bounces@gnu.org
X-Spam-Score: -0.51
X-TUID: e55gI/PRcpkH

Hi Ludo,

On +2020-10-02 15:53:49 +0200, Ludovic Courtès wrote:
> Hi!
> 
> Look:
> 
> --8<---------------cut here---------------start------------->8---
> $ guix environment -C --ad-hoc coreutils -- cat /etc/hosts
> cat: /etc/hosts: No such file or directory
> $ guix describe
> Generacio 162   Oct 01 2020 00:23:38    (nuna)
>   guix 7607ace
>     repository URL: https://git.savannah.gnu.org/git/guix.git
>     branch: master
>     commit: 7607ace5091aea0157ba5c8a508129cc5fc4f931
> --8<---------------cut here---------------end--------------->8---
> 
> I think we should add /etc/hosts with an entry for “localhost”, just
> like libstore/build.cc does.
> 
> Ludo’.
> 

How sensitive is this data? E.g., compared to  /etc/hostname and /etc/machine-id ?

man machine-id says in part
--8<---------------cut here---------------start------------->8---
    This ID uniquely identifies the host. It should be considered "confidential", and must not be exposed in untrusted environments, in particular on
    the network. If a stable unique identifier that is tied to the machine is needed for some application, the machine ID or any part of it must not be
    used directly. Instead the machine ID should be hashed with a cryptographic, keyed hash function, using a fixed, application-specific key. That way
    the ID will be properly unique, and derived in a constant way from the machine ID but there will be no way to retrieve the original machine ID from
    the application-specific one. The sd_id128_get_machine_app_specific(3) API provides an implementation of such an algorithm.
--8<---------------cut here---------------end--------------->8---

And how do you pick an appropriate hostname (which often appears in /etc/hosts)
for an image that could be booted in the clouds, or like a live USB, on any compatible laptop?

-- 
Regards,
Bengt Richter