From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp10.migadu.com ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms5.migadu.com with LMTPS id snwJGxbeAGQlSQAAbAwnHQ (envelope-from ) for ; Thu, 02 Mar 2023 18:34:14 +0100 Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp10.migadu.com with LMTPS id QKWhGRbeAGR8jQAAG6o9tA (envelope-from ) for ; Thu, 02 Mar 2023 18:34:14 +0100 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 302E82FF43 for ; Thu, 2 Mar 2023 18:34:14 +0100 (CET) Received: from localhost ([::1] helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1pXmod-0006t4-QB; Thu, 02 Mar 2023 12:34:03 -0500 Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1pXmoc-0006nw-NT for bug-guix@gnu.org; Thu, 02 Mar 2023 12:34:02 -0500 Received: from debbugs.gnu.org ([209.51.188.43]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1pXmoc-000702-FN for bug-guix@gnu.org; Thu, 02 Mar 2023 12:34:02 -0500 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1pXmoc-0007sK-BJ for bug-guix@gnu.org; Thu, 02 Mar 2023 12:34:02 -0500 X-Loop: help-debbugs@gnu.org Subject: bug#61690: Failure to mount /sys in nested =?UTF-8?Q?=E2=80=98guix_?= =?UTF-8?Q?shell=E2=80=99?= container Resent-From: Josselin Poiret Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Thu, 02 Mar 2023 17:34:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 61690 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Ludovic =?UTF-8?Q?Court=C3=A8s?= Cc: 61690@debbugs.gnu.org, Konrad Hinsen Received: via spool by 61690-submit@debbugs.gnu.org id=B61690.167777840130222 (code B ref 61690); Thu, 02 Mar 2023 17:34:02 +0000 Received: (at 61690) by debbugs.gnu.org; 2 Mar 2023 17:33:21 +0000 Received: from localhost ([127.0.0.1]:58313 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1pXmnw-0007rO-Kx for submit@debbugs.gnu.org; Thu, 02 Mar 2023 12:33:20 -0500 Received: from jpoiret.xyz ([206.189.101.64]:39340) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1pXmnv-0007rF-7h for 61690@debbugs.gnu.org; Thu, 02 Mar 2023 12:33:19 -0500 Received: from authenticated-user (jpoiret.xyz [206.189.101.64]) by jpoiret.xyz (Postfix) with ESMTPA id 8763E184CE0; Thu, 2 Mar 2023 17:33:17 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jpoiret.xyz; s=dkim; t=1677778397; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=yrxbTy6RHJgM3HBs2HuiMgbfjSNl3i2W+nku6qS6hAo=; b=IHccDRiRwHsWZbTE3P9vljhiTb+HZ9FWHlP/Lecwo+WoKS/zpjxnFg9/AhZ/yqYYqTnrdI IkHv9bI1KkWP/mAUczhkre4CBWyusNYSzoFH26lSmC5Vs5/S7iN8d28EjiZBNhdG5noPL1 6eWCGG1EoTCZbjVbJIepNr1gTIpJkpBI1kza1WguKKfG+/1T3HsQHtVaR3VamwwJ7TKjBn 9mejOwVuCgqGfSk+sbtYtEr9BIJMkt8PFGnjmok1azsKFJSWOGCgsgyn5EtmLnfC14o16Z jQinJO2mi9Tx+VQFSM9+Hk1G/VvRdkxYEzznleD/Ui3SrymbZdFXTmZnMSImDw== In-Reply-To: <87wn3z3wp7.fsf@inria.fr> References: <87v8jud4e7.fsf@inria.fr> <878rgflbqb.fsf@jpoiret.xyz> <87wn3z3wp7.fsf@inria.fr> Date: Thu, 02 Mar 2023 18:32:55 +0100 Message-ID: <875ybjrrco.fsf@jpoiret.xyz> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha256; protocol="application/pgp-signature" X-Spamd-Bar: -- X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: bug-guix@gnu.org List-Id: Bug reports for GNU Guix List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-to: Josselin Poiret From: Josselin Poiret via Bug reports for GNU Guix Errors-To: bug-guix-bounces+larch=yhetil.org@gnu.org Sender: bug-guix-bounces+larch=yhetil.org@gnu.org X-Migadu-Country: US X-Migadu-Flow: FLOW_IN ARC-Seal: i=1; s=key1; d=yhetil.org; t=1677778454; a=rsa-sha256; cv=none; b=rHdH+3BDa08fPH1cN2qDwS6EG4WlwkEUB0q2a0PbtL+2242S3sH4r0czNW42uvigpRM7UZ 8+iv0J+gW74BFi74mJBVhNPKq0oiI/P7uD8SdXiw4gpS6/8trcVxfVLpnwHwwAptbcGEad 9s4XAC7TQnz9cgZ6oKL0uWxouqbpUIagVJUj/59U0S0eQ6IitPwdHuJelyun0o+/oj67EZ 0IWjCw8V4XJKQkhx9hmaiE+WQaa8DzYf4de+5l54L9aWbEyprK5+oP7u2kDT9kGygFGH55 QKETyocc7lXsOLodHNDvxP9QK6C8ohnW7nB9JyfNkczuOVKyvyWNlnZySl3hOw== ARC-Authentication-Results: i=1; aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=jpoiret.xyz header.s=dkim header.b=IHccDRiR; spf=pass (aspmx1.migadu.com: domain of "bug-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="bug-guix-bounces+larch=yhetil.org@gnu.org"; dmarc=pass (policy=none) header.from=gnu.org ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org; s=key1; t=1677778454; h=from:from:sender:sender:reply-to:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type:resent-cc:resent-from:resent-sender: resent-message-id:in-reply-to:in-reply-to:references:references: list-id:list-help:list-unsubscribe:list-subscribe:list-post: dkim-signature; bh=yrxbTy6RHJgM3HBs2HuiMgbfjSNl3i2W+nku6qS6hAo=; b=kx5FJTcK6KE5BzMfNumJaMMCe7zFMlY5sBW3fBz8ICki1NkarWKWcBQWxfXhJL+tGJfDQZ tVDzCYcGwRBftHxZtLoTn7gwlX5rGdDmfFqUqzQlKtd1tN2qbFAgh6doO/CKIO+6atKO69 D5Xi0Ne2B9ZHNtJIOnsWPRJZjbQ9aMkJGZNYauGRFmr0ByPiAXNYs9V7j0x0OPe3ckhiHe 5JqkAVVDT8e0zNIUtnr12+JVPYuCC23V6lwWv8a7cGyNOsxZGrrEx288e2udg0GxcGw4Qw fx4ECKbHFGUwFKp8iPXntS1ZsChntmN6GG+9FHu8UMpCcqz//qwISum0k/Sf3w== X-Migadu-Scanner: scn1.migadu.com X-Migadu-Spam-Score: -5.80 X-Spam-Score: -5.80 X-Migadu-Queue-Id: 302E82FF43 Authentication-Results: aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=jpoiret.xyz header.s=dkim header.b=IHccDRiR; spf=pass (aspmx1.migadu.com: domain of "bug-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="bug-guix-bounces+larch=yhetil.org@gnu.org"; dmarc=pass (policy=none) header.from=gnu.org X-TUID: e0AQalTOj08+ --=-=-= Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Hi Ludo, Ludovic Court=C3=A8s writes: > Maybe we could, but I must confess I=E2=80=99m totally clueless on this v= eth > thing. :-) > > What would this entail? Hopefully guile-netlink can help? So, a veth (Virtual Ethernet) device is basically a pipe but for network devices: they're created in pairs, and any packet going through one end is instantly received on the other end. You can then transmit packets between network namespaces. One problem that totally slipped by me is that you need to be root to create a veth device in the original namespace... Rootless containers use slirp4netns, which is basically a userspace TCP/IP stack communicating with a special network device in the new namespace (over which you have complete rights). The situation might thus be a bit more complicated, since we'd need another library/program as a dependency to achieve this. I guess there's no best solution for now then :/ Best, =2D-=20 Josselin Poiret --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQHEBAEBCAAuFiEEOSSM2EHGPMM23K8vUF5AuRYXGooFAmQA3ccQHGRldkBqcG9p cmV0Lnh5egAKCRBQXkC5FhcaikBkC/9eVZ5ipnTG8X//aP+lNFZaz4vpHhQfzkZ8 5TO2T1uJah7fAFbLLTT99fr6TyjkrbjDfoPpJbXmVhbwvYxxTorLVCRG6rVIuxFs s90DalQLdecjD4+IPOvSWoTAlCHZIqQSgxcsuC6YUVTUrLEsy6TMDkRrKpH2DJT9 yB6lV7+dbMqFYhpUMYM9cvIqHLFH9fkPnYT+53zMF+etkgIV2ikAoAV41kV77JeO Q/DCJ0Im1aTR3La4gjcX57fdhQW3/sXBUjrQdvlxbkROvqRQ7un1wEvVbWVAmZvd j/ZuT0yRXAzn0NlH6mWC0Wykv/2BLP9xU/ADZpVONoLnL2zsAj9EZs/akp5l7v8Z UL1lSHYdmntDUUhcgvBmMmvTJyzzUoPrKurNeyWYJJ0Fl79ZAiqmhs3kktU6f66x m48rLFPGnDsCeKkoQz6Rz9BBn/ZtIS8HQoFpfmr9+LAhAgS4d9r27yDzW3iOMZwE Km+wvCjqDBLVnJ/GLh4Lr50B7ticGvE= =5lBa -----END PGP SIGNATURE----- --=-=-=--