From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp2 ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms11 with LMTPS id KCztNs0gzl/ZVAAA0tVLHw (envelope-from ) for ; Mon, 07 Dec 2020 12:32:13 +0000 Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp2 with LMTPS id aK62Ms0gzl8lLQAAB5/wlQ (envelope-from ) for ; Mon, 07 Dec 2020 12:32:13 +0000 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 7E5069403CB for ; Mon, 7 Dec 2020 12:32:13 +0000 (UTC) Received: from localhost ([::1]:40108 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1kmFgZ-0001HA-20 for larch@yhetil.org; Mon, 07 Dec 2020 07:32:11 -0500 Received: from eggs.gnu.org ([2001:470:142:3::10]:53402) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1kmFeQ-0001EF-33 for guix-devel@gnu.org; Mon, 07 Dec 2020 07:30:03 -0500 Received: from smtp.hosts.co.uk ([85.233.160.19]:48488) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1kmFeJ-0004x3-EZ for guix-devel@gnu.org; Mon, 07 Dec 2020 07:29:56 -0500 Received: from maikeh336.claranet.co.uk ([79.123.23.187] helo=pancake.local) by smtp.hosts.co.uk with esmtpsa (TLS1.2:ECDHE-RSA-AES128-GCM-SHA256:128) (Exim) (envelope-from ) id 1kmFeC-00079Q-4n; Mon, 07 Dec 2020 12:29:44 +0000 Message-ID: <1f56aef4d7b707826f34413672408e33385bbc6a.camel@tourbillion-technology.com> Subject: Re: bug#45069: BUG: Re: guix environment: error: cannot create container: unprivileged user cannot create user namespaces From: Paul Garlick To: Pierre Neidhardt , Jesse Dowell , zimoun Date: Mon, 07 Dec 2020 12:29:42 +0000 In-Reply-To: <87wnxtx1yx.fsf@ambrevar.xyz> References: <20201204185537.qhapfbyaq7cr5lkr@thebird.nl> <4556420c9440a6c34df93213e3934176e214483f.camel@yasuaki.com> <86eek2an53.fsf@gmail.com> <87wnxtx1yx.fsf@ambrevar.xyz> Content-Type: text/plain; charset="UTF-8" X-Mailer: Evolution 3.28.5-0ubuntu0.18.04.2 Mime-Version: 1.0 Content-Transfer-Encoding: 7bit Received-SPF: none client-ip=85.233.160.19; envelope-from=pgarlick@tourbillion-technology.com; helo=smtp.hosts.co.uk X-Spam_score_int: -18 X-Spam_score: -1.9 X-Spam_bar: - X-Spam_report: (-1.9 / 5.0 requ) BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_PASS=-0.001, SPF_NONE=0.001 autolearn=ham autolearn_force=no X-Spam_action: no action X-BeenThere: guix-devel@gnu.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: Guix Devel , 45069@debbugs.gnu.org Errors-To: guix-devel-bounces+larch=yhetil.org@gnu.org Sender: "Guix-devel" X-Migadu-Flow: FLOW_IN X-Migadu-Spam-Score: -0.30 Authentication-Results: aspmx1.migadu.com; dkim=none; dmarc=none; spf=pass (aspmx1.migadu.com: domain of guix-devel-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=guix-devel-bounces@gnu.org X-Migadu-Queue-Id: 7E5069403CB X-Spam-Score: -0.30 X-Migadu-Scanner: ns3122888.ip-94-23-21.eu X-TUID: yMrpeo168Ktz Hi Pierre, Can you try, as root on Guix System: $ echo 1 > /proc/sys/kernel/unprivileged_userns_clone If you could report success or failure that would be helpful; the unprivileged-user-namespace-supported? test in gnu/build/linux- container.scm should be the same irrespective of the underlying distribution (Debian, CentOS, Guix System ...). Best regards, Paul. On Mon, 2020-12-07 at 12:57 +0100, Pierre Neidhardt wrote: > Hi! > > I can reproduce the issue since I 'recondigure'd my Guix System. > I'm on cebfb29abb151ede95696181d2446c63504593d7. > > Guix' bug? > >