From mboxrd@z Thu Jan  1 00:00:00 1970
From: Eric Bavier <ericbavier@openmailbox.org>
Subject: Re: Running guix-daemon as an unprivileged user (Was: [PATCH]
	syscalls: setns: Skip binding if there is no such C function.)
Date: Mon, 17 Aug 2015 03:33:58 -0500
Message-ID: <20150817033358.580a0cdc@openmailbox.org>
References: <CAGv_=BpttjfOoLxnox7UsU+gDoZo8+vKDhiXuCyxZLhat0Jcjw@mail.gmail.com>
	<CAGv_=BoHVrMPeMw8WsOkRSW1_+n_EioxSHL6NSXkL-Pbopo+kQ@mail.gmail.com>
	<CAGv_=BrsFUpTWA9bHOE44mXPyOsQc0p8bjc9_D6PCK529Y96hQ@mail.gmail.com>
	<CAGv_=BoXi4EYw_1cYrqXAMdmh0U3bQXwfNbBGxdP73B6dQAYoA@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
Return-path: <guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org>
Received: from eggs.gnu.org ([2001:4830:134:3::10]:58199)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <ericbavier@openmailbox.org>) id 1ZRKQy-0006yY-6m
	for guix-devel@gnu.org; Mon, 17 Aug 2015 09:26:41 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <ericbavier@openmailbox.org>) id 1ZRKQu-0006lG-PF
	for guix-devel@gnu.org; Mon, 17 Aug 2015 09:26:40 -0400
Received: from smtp13.openmailbox.org ([62.4.1.47]:44563)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <ericbavier@openmailbox.org>) id 1ZRKQu-0006kB-HY
	for guix-devel@gnu.org; Mon, 17 Aug 2015 09:26:36 -0400
In-Reply-To: <CAGv_=BoXi4EYw_1cYrqXAMdmh0U3bQXwfNbBGxdP73B6dQAYoA@mail.gmail.com>
List-Id: "Development of GNU Guix and the GNU System distribution."
	<guix-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/guix-devel>,
	<mailto:guix-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/guix-devel>
List-Post: <mailto:guix-devel@gnu.org>
List-Help: <mailto:guix-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/guix-devel>,
	<mailto:guix-devel-request@gnu.org?subject=subscribe>
Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org
Sender: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org
To: "Claes Wallin (=?UTF-8?B?6Z+L5ZiJ6Kqg?=)" <gnu@clacke.user.lysator.liu.se>
Cc: guix-devel <guix-devel@gnu.org>, David Thompson <davet@gnu.org>

On Mon, 17 Aug 2015 14:45:28 +0200
Claes Wallin (=E9=9F=8B=E5=98=89=E8=AA=A0) <gnu@clacke.user.lysator.liu.se>=
 wrote:

> On Sun, Aug 16, 2015 at 4:01 PM, Claes Wallin (=E9=9F=8B=E5=98=89=E8=AA=
=A0)
> <gnu@clacke.user.lysator.liu.se> wrote:
> > [Reposting with correct sender. Sorry, David.]
> >
> > Great! I ran into this when trying to compile and run guix on a
> > machine at work, where I'm not root.
> >
> > I was planning to run guix as a stow of steroids. But I'm still
> > wondering whether what I'm attempting is even intended to be
> > possible? Of course, I would lose the benefits of user separation,
> > chroot, hydra (because I can't write to /gnu) etc, but is guix even
> > made to be able to downgrade to this situation?
>=20
> Answering myself: It is there in the Fine Manual. So it's intended to
> work. I will try this and see how far I come.
>=20
> https://www.gnu.org/software/guix/manual/guix.html#Build-Environment-Setup
>=20
> "If you are installing Guix as an unprivileged user, it is still
> possible to run guix-daemon provided you pass --disable-chroot."
>=20

I have experimented with this a bit lately.  It works to some extent,
but I have had to apply a few patches to some package recipes.  Some
packages have failing tests (where presumably they would pass or be
skipped in the chroot), which I have disabled for the time being just
to move along.

I can post a few of the patches to the ML later.

`~Eric