From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp1.migadu.com ([2001:41d0:403:58f0::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms13.migadu.com with LMTPS id CH1sEwzH8mbWIAEA62LTzQ:P1 (envelope-from ) for ; Tue, 24 Sep 2024 14:05:00 +0000 Received: from aspmx1.migadu.com ([2001:41d0:403:58f0::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp1.migadu.com with LMTPS id CH1sEwzH8mbWIAEA62LTzQ (envelope-from ) for ; Tue, 24 Sep 2024 16:05:00 +0200 X-Envelope-To: larch@yhetil.org Authentication-Results: aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=debbugs.gnu.org header.s=debbugs-gnu-org header.b=EDoKj3Cz; dkim=fail ("headers rsa verify failed") header.d=xelera.eu header.s=dkim header.b=VzywcbtH; spf=pass (aspmx1.migadu.com: domain of "bug-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="bug-guix-bounces+larch=yhetil.org@gnu.org"; dmarc=pass (policy=none) header.from=gnu.org ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org; s=key1; t=1727186700; h=from:from:sender:sender:reply-to:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type:resent-cc:resent-from:resent-sender: resent-message-id:list-id:list-help:list-unsubscribe:list-subscribe: list-post:dkim-signature; bh=jyW7Duj70OuiaDufhkraPrWbwvuz1clbv7s9TXApv80=; b=KIk/CF6Gp6KWxTv8iF1924PSkiDIiXXmv9z2w43vSwozISMBF/KKicMEBVNvlHb7GYFw50 dCtQcw9qdwOCqAnTOCRG5dvofQ/t5vZEydNyzW9oJerkCrvqrBqopYNOygl+mp2REboV4A lr4kXssXJ7J+IN6dvcBZZ/TA0X0qiYmFTZ6ooLc0apbg+HJ2p/5a5XRm2GUz00BGnfE9oR g2nccV8uToV6YTuu1gk1GGBdDnmJimLuRw+FQrmkOtqcLk7Z32WqHgJ91KJaDEQY7YL6Dg tfeN2oZfKRjigoXC71QCm8EkxC69J14y10e8VkXnRy2bwGR8GGeW0RoUgBJozQ== ARC-Authentication-Results: i=1; aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=debbugs.gnu.org header.s=debbugs-gnu-org header.b=EDoKj3Cz; dkim=fail ("headers rsa verify failed") header.d=xelera.eu header.s=dkim header.b=VzywcbtH; spf=pass (aspmx1.migadu.com: domain of "bug-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="bug-guix-bounces+larch=yhetil.org@gnu.org"; dmarc=pass (policy=none) header.from=gnu.org ARC-Seal: i=1; s=key1; d=yhetil.org; t=1727186700; a=rsa-sha256; cv=none; b=GwbJepdeP3k7TCoap9z7SZw1BXC7ngtndIFim7rrRZzlMBN37bsZ/viUo5pgfyqp8La2X/ zqMvgjNFr+PwXFmdVJxQsMn7Nl84gbu4F4j8vDqttpbMlJlnHbs8861yEEClBG3FGHL1f3 LnW0KYITyQtYchm3APLLue63xV9PA0+ZRiZYpidpaBzOBVa/byPmiqWHCalAU6gh1g7Mbn kN5ALqtAb55qddIOc6CUF5geEqJSE6VlC3cdJuimr5TBTk+SQhWSY3KNDGIIfn5nCX+DLM 9Hpp6aCtgMhoUcTCN674SdF4paoSyOKQ6yhMIh0QJ4IVHS9e9aoS74KNup5rJw== Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 0EA0A78C1E for ; Tue, 24 Sep 2024 16:05:00 +0200 (CEST) Received: from localhost ([::1] helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1st69g-0006DX-Kj; Tue, 24 Sep 2024 10:04:40 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1st69e-000690-Dk for bug-guix@gnu.org; Tue, 24 Sep 2024 10:04:38 -0400 Received: from debbugs.gnu.org ([2001:470:142:5::43]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1st69d-0006cg-Sq for bug-guix@gnu.org; Tue, 24 Sep 2024 10:04:37 -0400 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debbugs.gnu.org; s=debbugs-gnu-org; h=MIME-Version:Date:From:To:Subject; bh=jyW7Duj70OuiaDufhkraPrWbwvuz1clbv7s9TXApv80=; b=EDoKj3CzdPFrec6dnKqOJ1W97LOqodmdXOYi+WOl4g/A2OfvWiucMHfvfGXDy2VFiBPrXyV9sChSzADulZ9Bi3QPw6Ud0Ijj7EC6FmZlM5EKIAeuojHOfVjRH7JRN/G9Q9FBprVzSC4rMQ3C/FXZyaB0wbKtvyu7EfGozGU34ce5mVafj7/rthbRf4ZV2JtZxbbrxabcKnvxykyYn3KoXS/p/nscF8ViaaLEj9+H6zg2AbxyK3vVbZcXaYW/yAirYJW/OeO7DQEdYu1oLdma8jaFo/hpKLcxbV43ksKOupDOw20+BUVTYgs7tCC6ia+FWuypWmhj54tiORh4+n3SgQ==; Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1st6A2-0003QI-76 for bug-guix@gnu.org; Tue, 24 Sep 2024 10:05:02 -0400 X-Loop: help-debbugs@gnu.org Subject: bug#73451: privileged-program - Wrong type argument in position 1 (expecting struct) Resent-From: Giovanni Biscuolo Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Tue, 24 Sep 2024 14:05:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: report 73451 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: 73451@debbugs.gnu.org X-Debbugs-Original-To: bug-guix@gnu.org Received: via spool by submit@debbugs.gnu.org id=B.172718667113089 (code B ref -1); Tue, 24 Sep 2024 14:05:01 +0000 Received: (at submit) by debbugs.gnu.org; 24 Sep 2024 14:04:31 +0000 Received: from localhost ([127.0.0.1]:46521 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1st69W-0003P2-JE for submit@debbugs.gnu.org; Tue, 24 Sep 2024 10:04:31 -0400 Received: from lists.gnu.org ([209.51.188.17]:58604) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1st69T-0003Ou-Ty for submit@debbugs.gnu.org; Tue, 24 Sep 2024 10:04:28 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1st694-00061D-UX for bug-guix@gnu.org; Tue, 24 Sep 2024 10:04:03 -0400 Received: from mx1.meup.it ([162.55.88.253]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1st692-0006WY-Hi for bug-guix@gnu.org; Tue, 24 Sep 2024 10:04:02 -0400 Received: from bourrache.mug.xelera.it (unknown [93.56.171.185]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.meup.it (Postfix) with ESMTPSA id 0D53D812D2 for ; Tue, 24 Sep 2024 16:03:56 +0200 (CEST) Received: from roquette.mug.biscuolo.net (roquette [10.38.2.14]) by bourrache.mug.xelera.it (Postfix) with SMTP id 622A63799382 for ; Tue, 24 Sep 2024 16:03:56 +0200 (CEST) Received: (nullmailer pid 116563 invoked by uid 1000); Tue, 24 Sep 2024 14:03:56 -0000 Organization: Xelera.eu Date: Tue, 24 Sep 2024 16:03:55 +0200 Message-ID: <87cyktgnck.fsf@xelera.eu> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=xelera.eu; s=dkim; t=1727186637; bh=jyW7Duj70OuiaDufhkraPrWbwvuz1clbv7s9TXApv80=; h=From:To:Subject:Date:Message-ID:MIME-Version:Content-Type; b=VzywcbtHinutqDsJTgCDvb0pr4KRyWKg2eN8puhyLTe6ztWJBHdYqkXiaa2hN9EWziX4vQRrE68BTp0Fuk4SfiYN6eaaUUI5GVQNdZZuKHt23LLapK9677OWrjXrtTqZLRzZBNZVaoxU0vf77T2Ql5F4LGzFQnHuy541Aa4IqsE= Received-SPF: pass client-ip=162.55.88.253; envelope-from=g@xelera.eu; helo=mx1.meup.it X-Spam_score_int: -20 X-Spam_score: -2.1 X-Spam_bar: -- X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no X-Spam_action: no action X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: bug-guix@gnu.org List-Id: Bug reports for GNU Guix List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-to: Giovanni Biscuolo From: Giovanni Biscuolo via Bug reports for GNU Guix Errors-To: bug-guix-bounces+larch=yhetil.org@gnu.org Sender: bug-guix-bounces+larch=yhetil.org@gnu.org X-Migadu-Flow: FLOW_IN X-Migadu-Country: US X-Migadu-Queue-Id: 0EA0A78C1E X-Migadu-Scanner: mx11.migadu.com X-Spam-Score: -7.02 X-Migadu-Spam-Score: -7.02 X-TUID: I0C9LayU3z4A --=-=-= Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Hello, is this a bug or I'm using privileged-programs the wrng way? I'm trying to switch from setuid-programs to the new privileged-programs but I get an error trying to reconfigure. =2D-8<---------------cut here---------------start------------->8--- g@ken ~$ guix describe Generation 3 Sep 24 2024 15:42:22 (current) guix 60dfa7f repository URL: https://git.savannah.gnu.org/git/guix.git branch: master commit: 60dfa7f673344f7f81faafc225191c4492f9dd03 =2D-8<---------------cut here---------------end--------------->8--- this is the configuration for privileged-programs: =2D-8<---------------cut here---------------start------------->8--- (operating-system [...] ;; libvirt clients need spice-client-glib-usb-acl-helper suid ;; to be able to selectively share USB devices (privileged-programs (append (list (privileged-program (program (file-append spice-gtk "/libexec/spice-client-glib-usb-acl-help= er")) (setuid? #t)) %default-privileged-programs))) =2D-8<---------------cut here---------------end--------------->8--- I've changed the above code since I was using setuid-programs before [1] and It was running. this is the error I get when trying to reconfigure: =2D-8<---------------cut here---------------start------------->8--- g@ken ~$ sudo guix system reconfigure /etc/config.scm=20 In guix/scripts/system.scm: 1311:4 19 (_) In ice-9/boot-9.scm: 1752:10 18 (with-exception-handler _ _ #:unwind? _ # _) In guix/store.scm: 689:37 17 (thunk) 1330:8 16 (call-with-build-handler # =E2=80=A6) 2210:25 15 (run-with-store # =E2= =80=A6) In guix/scripts/system.scm: 853:2 14 (_ _) 727:8 13 (_ #) In gnu/system.scm: 1323:19 12 (operating-system-derivation _) In gnu/services.scm: 1240:16 11 (_ _) In guix/monads.scm: 487:9 10 (_ _) In gnu/services.scm: 1243:36 9 (_ _) In srfi/srfi-1.scm: 586:29 8 (map1 (#< type: #= =E2=80=A6)) 586:29 7 (map1 (#< type: #= =E2=80=A6)) 586:17 6 (map1 (#< type: #= =E2=80=A6)) In gnu/services.scm: 897:9 5 (privileged-program->activation-gexp _) In srfi/srfi-1.scm: 586:29 4 (map1 (#< program: #= =E2=80=A6)) 586:17 3 (map1 ((#< program: # = =E2=80=A6) =E2=80=A6)) In gnu/services.scm: 899:36 2 (_ (#< program: #= =E2=80=A6)) In ice-9/boot-9.scm: 1685:16 1 (raise-exception _ #:continuable? _) 1685:16 0 (raise-exception _ #:continuable? _) ice-9/boot-9.scm:1685:16: In procedure raise-exception: In procedure struct-vtable: Wrong type argument in position 1 (expecting st= ruct): (#< program: # "/bin/passwd"> setuid?: #t setgi= d?: #f user: 0 group: 0 capabilities: #f> #< program: #= "/bin/chfn"> setuid?: #t setgid?: #f user: 0 group: 0 capabilities: #f> #= < program: # "/bin/sg"> setuid?: #t setgid?: #f user: = 0 group: 0 capabilities: #f> #< program: # "/bin/su"> = setuid?: #t setgid?: #f user: 0 group: 0 capabilities: #f> #< program: # "/bin/newgrp"> setuid?: #t setgid?: #f user: 0 group: 0 = capabilities: #f> #< program: # "/bin/newuidmap"> setu= id?: #t setgid?: #f user: 0 group: 0 capabilities: #f> #< program: # "/bin/newgidmap"> setuid?: #t setgid?: #f user: 0 group: 0 c= apabilities: #f> #< program: # "/bin/ping"> setuid?: = #t setgid?: #f user: 0 group: 0 capabilities: #f> #< pr= ogram: # "/bin/ping6"> setuid?: #t setgid?: #f user: 0 group: 0 capabilit= ies: #f> #< program: # "/bin/sudo"> setuid?: #t setgid= ?: #f user: 0 group: 0 capabilities: #f> #< program: #<= file-append #= "/bin/sudoedit"> setuid?: #t setgid?: #f user: 0 group: 0 capabilities: #f= > #< program: # "/bin/fusermount"> setuid?: #t setgid?:= #f user: 0 group: 0 capabilities: #f> #< program: # "= /bin/fusermount3"> setuid?: #t setgid?: #f user: 0 group: 0 capabilities: #= f> #< program: # "/bin/mount"> setuid?: #t setgi= d?: #f user: 0 group: 0 capabilities: #f> #< program: #= "/bin/umount"> setuid?: #t setgid?: #f user: 0 group: 0 capabilitie= s: #f>) =2D-8<---------------cut here---------------end--------------->8--- Any hint please? Happy hacking! Gio' [1] this is the diff: =2D-8<---------------cut here---------------start------------->8--- =2D (setuid-programs =2D (append (list (setuid-program =2D (program (file-append spice-gtk "/libexec/spice-client-glib-usb-acl-h= elper")))) =2D %setuid-programs)) + (privileged-programs + (append (list (privileged-program + (program (file-append spice-gtk "/libexec/spice-client-glib-usb-acl-hel= per")) + (setuid? #t)) + %default-privileged-programs))) =2D-8<---------------cut here---------------end--------------->8--- =2D-=20 Giovanni Biscuolo Xelera IT Infrastructures --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQJABAEBCgAqFiEERcxjuFJYydVfNLI5030Op87MORIFAmbyxssMHGdAeGVsZXJh LmV1AAoJENN9DqfOzDkSJE0P/3d9sH5HOsxKNKKKmIeMRHJ+WJSjGSpwksdPZUEF jxezgYpP6V8BQwRG939KrfI5HBmGXmmTedyJu9JOOszY8QhnSjHAdBwncKi192hO yO6r4aqVopDiif4Yi5Ab35Q7q9apmqjEk8H5VqE9IJMUhQe9IggXwLb7gW3phyod oB2DAw51atSkyArKQ23tvDgCdCogwNtLtAL/aTZkiqBoMT4wzNq5mP5Apq8JPThY 6IVqehxGv1xylFqCI3eR7Jf6HbQ5OEzjdQitlBLR381W1LGaXvKopiBpkG0RDjFp klGQqzzffy1/Bxx+sii5oogPkt/4jHyxMK2X/qugr30Km352LclfF76xelP3HsU3 3ELKAz3bstKod0Fpt8DcSKeHpRTByWOVp2stWlksSeeMIl9uNDnmgGBNTIbzE3MU d/rdXRohkF76PBkARrfQ6kzSh6PAIJyChaMNxRBEbzbcz6xXa1sYOOpK0JEBJh+O BdssFMeviA2/btDQ3bNY+uFkrxbAy6rH5yaIyklHIdlWBAGLDLT619SOBLqkG/8M jki1BPO8CnDPCvEwfEQDANcz1E3UZORcLagBs0s4CLmkzJonMWfOeWSeejH5p+Jk o6TenxEgCeSYhquSsRa5DSkl/t7BF2JLzYcj1U5VQhxs7bYW8Ou2l48haXGXcXhs DhJc =pFyH -----END PGP SIGNATURE----- --=-=-=--