From mboxrd@z Thu Jan 1 00:00:00 1970 From: =?UTF-8?B?Q2xhZXMgV2FsbGluICjpn4vlmInoqqAp?= Subject: Re: Running guix-daemon as an unprivileged user (Was: [PATCH] syscalls: setns: Skip binding if there is no such C function.) Date: Mon, 17 Aug 2015 15:42:09 +0200 Message-ID: References: <20150817033358.580a0cdc@openmailbox.org> Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:34153) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1ZRKg7-0006aG-OK for guix-devel@gnu.org; Mon, 17 Aug 2015 09:42:20 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1ZRKg4-0007US-HT for guix-devel@gnu.org; Mon, 17 Aug 2015 09:42:19 -0400 Received: from mail.lysator.liu.se ([130.236.254.3]:38753) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1ZRKg4-0007UD-AN for guix-devel@gnu.org; Mon, 17 Aug 2015 09:42:16 -0400 Received: from mail.lysator.liu.se (localhost [127.0.0.1]) by mail.lysator.liu.se (Postfix) with ESMTP id 6EF2E40025 for ; Mon, 17 Aug 2015 15:42:13 +0200 (CEST) Received: from mail-ob0-f181.google.com (mail-ob0-f181.google.com [209.85.214.181]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.lysator.liu.se (Postfix) with ESMTPSA id BA66D40022 for ; Mon, 17 Aug 2015 15:42:11 +0200 (CEST) Received: by obbhe7 with SMTP id he7so112343303obb.0 for ; Mon, 17 Aug 2015 06:42:10 -0700 (PDT) In-Reply-To: <20150817033358.580a0cdc@openmailbox.org> List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org To: Eric Bavier Cc: guix-devel On Mon, Aug 17, 2015 at 10:33 AM, Eric Bavier wrote: > On Mon, 17 Aug 2015 14:45:28 +0200 > Claes Wallin (=E9=9F=8B=E5=98=89=E8=AA=A0) wrote: >> On Sun, Aug 16, 2015 at 4:01 PM, Claes Wallin (=E9=9F=8B=E5=98=89=E8=AA= =A0) >> wrote: >> > [Reposting with correct sender. Sorry, David.] >> > >> > Great! I ran into this when trying to compile and run guix on a >> > machine at work, where I'm not root. >> > >> > I was planning to run guix as a stow of steroids. But I'm still >> > wondering whether what I'm attempting is even intended to be >> > possible? Of course, I would lose the benefits of user separation, >> > chroot, hydra (because I can't write to /gnu) etc, but is guix even >> > made to be able to downgrade to this situation? >> >> Answering myself: It is there in the Fine Manual. So it's intended to >> work. I will try this and see how far I come. >> >> https://www.gnu.org/software/guix/manual/guix.html#Build-Environment-Set= up >> >> "If you are installing Guix as an unprivileged user, it is still >> possible to run guix-daemon provided you pass --disable-chroot." >> > > I have experimented with this a bit lately. It works to some extent, > but I have had to apply a few patches to some package recipes. Some > packages have failing tests (where presumably they would pass or be > skipped in the chroot), which I have disabled for the time being just > to move along. > > I can post a few of the patches to the ML later. I'm doing this from git now, as opposed to doing it from the tarball earlier, because I want that setns patch. I have compiled gettext, m4, autoconf, automake and guile and its deps, installed in /home/myuser/.local. Rather than run ./bootstrap, I've had to run gettextize, aclocal, autoreconf -vi (no -f!) with CPATH, LIBRARY_PATH and maybe AC_MACRODIR (probably not necessary), and I managed to get a ./configure, but it now tells me: ./configure: line 6782: syntax error near unexpected token `GUILE,' ./configure: line 6782: `PKG_CHECK_MODULES(GUILE, guile-2.0 >=3D 2.0.7)' guile.m4 is there in my .../aclocal/guile.m4. I had to run aclocal manually, because otherwise it would say something about PKG_CHECK_MODULES being undefined. Seems like this little endeavor is hitting a lot of special cases.