From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp2.migadu.com ([2001:41d0:303:e16b::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms8.migadu.com with LMTPS id OCjEAxHD7mXXMQAAe85BDQ:P1 (envelope-from ) for ; Mon, 11 Mar 2024 09:38:41 +0100 Received: from aspmx1.migadu.com ([2001:41d0:303:e16b::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp2.migadu.com with LMTPS id OCjEAxHD7mXXMQAAe85BDQ (envelope-from ) for ; Mon, 11 Mar 2024 09:38:41 +0100 X-Envelope-To: larch@yhetil.org Authentication-Results: aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=gmail.com header.s=20230601 header.b=Cha6HDIY; spf=pass (aspmx1.migadu.com: domain of "guix-devel-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="guix-devel-bounces+larch=yhetil.org@gnu.org"; dmarc=none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org; s=key1; t=1710146321; h=from:from:sender:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type:in-reply-to:in-reply-to: references:references:list-id:list-help:list-unsubscribe: list-subscribe:list-post:dkim-signature; bh=fRebaaFNd1X4Dp4J0zOM0BTWXfN/zzmF2XPIl8hGlD4=; b=Um8mX9rsefKEPWQSFnLMGGQB1O45j46lRk+7ortmbZ7SlFbspXO9xb5A1mWfe6iZwNnbrm CVo7A1FHLOm3HEUvLx4dLY+FxRQCag8I6EMNarxeXRFjOu/HJ3zIzQ0y8axltzK7/E69N8 /d+VpHNdd2FCjazegtjkFOXhJGdCu0q2S+Fyt081NObxiNYLaVPuoVi6KLDwfL0BhumbHZ v4jvEenBPo/eXLkfpwPz1YtKrXe0FYywyWeMPSuLt9hrEaTVf7Yo6PQox8jhJvwVrILEO7 +kI6uNviw2MEwDzscOzOjMNC/VRQ6pIJHbas43t32vpEXZ14t14YCj431bxQPg== ARC-Authentication-Results: i=1; aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=gmail.com header.s=20230601 header.b=Cha6HDIY; spf=pass (aspmx1.migadu.com: domain of "guix-devel-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="guix-devel-bounces+larch=yhetil.org@gnu.org"; dmarc=none ARC-Seal: i=1; s=key1; d=yhetil.org; t=1710146321; a=rsa-sha256; cv=none; b=o6o5fRGXv9C/UUJKBAZNOoHyzkuq6qW7QwXW3knoIUAMp+6GFHYzM3Zjh5nrjPDps7ELMH /yQFOcdMklONqvG+C3qbpcAEljbmCfxrHmfg2Yk74ikAMjqDzLTqubXCZ7koGJhIdhK+ca ymp27otQ9Ac7XmPqSkhZwOmYzO3wugaNwLyuHPswPs2f+zXsZr6CDAsgnKeOOLI/36b58i MMcKEntjvMhToRz5x9K1on6OQY7H7HmDugCwgMEV8APX7/XfsvEdFUt7vmizAgi1cMdJCv +4dWFUQtDGNd8DL41HAUq4P+qCzq5lY4NlMsdcOyU4riHPxTgI/WtsWclDJ/ag== Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 6C64041AAB for ; Mon, 11 Mar 2024 09:38:40 +0100 (CET) Received: from localhost ([::1] helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1rjbAe-0007fF-Pq; Mon, 11 Mar 2024 04:38:09 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1rjbAd-0007f5-2v for guix-devel@gnu.org; Mon, 11 Mar 2024 04:38:07 -0400 Received: from mail-wm1-x330.google.com ([2a00:1450:4864:20::330]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1rjbAa-0002tJ-Qj for guix-devel@gnu.org; Mon, 11 Mar 2024 04:38:06 -0400 Received: by mail-wm1-x330.google.com with SMTP id 5b1f17b1804b1-4132a348546so2929355e9.1 for ; Mon, 11 Mar 2024 01:38:03 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1710146281; x=1710751081; darn=gnu.org; h=in-reply-to:content-disposition:mime-version:references :mail-followup-to:message-id:subject:cc:to:from:date:sender:from:to :cc:subject:date:message-id:reply-to; bh=fRebaaFNd1X4Dp4J0zOM0BTWXfN/zzmF2XPIl8hGlD4=; b=Cha6HDIYNe/kS9WT1QNC1V9UYOmoolYHNHo7uSGXojAEaffiDhErSBnBhvNxEQJUfJ HGA1DmtRCh7XjCS1i3Zrxe2DIuz4Bw9mDawhA9bw7SsLqslU3n60bPBdcD342JKf8O/c aplC7nbQ+Bqxe4YIunsJG6ULm59X2uuMdUuwR7xbh87MEmFpSkvgmkQ14vngFI4M4ZG0 izvQzEbtdrUtgek3ECpHk4ceY1OCAIjWLeqSvGPzZwQK7QElEKWWXLVLaffzBMErfc3t F/uLMU02+eCIWGMc9vR27fJJmF2pNk0ORQq3k16IrmP5FXsTQk1dBsnjxCvXGIZVgMfW qZkg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1710146281; x=1710751081; h=in-reply-to:content-disposition:mime-version:references :mail-followup-to:message-id:subject:cc:to:from:date:sender :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=fRebaaFNd1X4Dp4J0zOM0BTWXfN/zzmF2XPIl8hGlD4=; b=wx5Jo3rzTWj85gCbcZ6bqCFe4gKCsNSFHAxsU7N3LSrfYb1g6YjOgmTnn5dPFaqQn1 Mr8EV3yfffHmzISALBdIxzBU1KtX8RVy6hNFQu3b4HDzG0/DrNjjuJhY5VVT7sLCRuAC o+zZF2f2DM0tBrvAvyi2p0o6SD8lndBqItwwJVuqt7glIVGxZVuXtP4v2fBat0NrI7eo i9FHwom5omn/KwsKK416+QyF2RjV5RAS9p5kzd/T67y+MbTveqKz4Nt+nW+3FDnWHk0z rFP428vWW490UqPcEvE3gUXmbg66Xmv1fEbNw9HP+UKz4cdykEl3/SayF9H6ypZRH5Zw 5fiA== X-Forwarded-Encrypted: i=1; AJvYcCVvqipohgpwcFTO6jsq6tdRmSSLKkbqd2SHxoxf6OTmnqGMIttIVk2jHEkxZ9PwNmhbsWThvymLgCxEISYJvMQCwxs= X-Gm-Message-State: AOJu0YwbLA8x9gZ86aD55vPnvawVKfVhWk17p8/cGMGyWZF6GiT4xysk cQ6tUQ4lQU1HYKQ6sQCgRcnF0LpwAtjKI5Ytgjmq1u45ouCJGGyt X-Google-Smtp-Source: AGHT+IEiwgpW3NWgeZqoaARnuj+ZwEBdisjgNk8lkjeaiXF2IlStWQHJ05sccaUYIWDnloMiFSfp9Q== X-Received: by 2002:a05:600c:1d18:b0:413:1688:2679 with SMTP id l24-20020a05600c1d1800b0041316882679mr5280539wms.41.1710146280990; Mon, 11 Mar 2024 01:38:00 -0700 (PDT) Received: from localhost ([141.226.12.177]) by smtp.gmail.com with ESMTPSA id t10-20020a05600c450a00b004131388d948sm12750050wmo.0.2024.03.11.01.37.59 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Mon, 11 Mar 2024 01:38:00 -0700 (PDT) Date: Mon, 11 Mar 2024 10:37:58 +0200 From: Efraim Flashner To: Steve George Cc: =?utf-8?B?R8OhYm9y?= Boskovits , Guix Devel , pjotr.public12@thebird.nl Subject: Re: GSoC 2024 Message-ID: Mail-Followup-To: Steve George , =?utf-8?B?R8OhYm9y?= Boskovits , Guix Devel , pjotr.public12@thebird.nl References: MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="+4gGIUHguMLe7SVD" Content-Disposition: inline In-Reply-To: X-PGP-Key-ID: 0x41AAE7DCCA3D8351 X-PGP-Key: https://flashner.co.il/~efraim/efraim_flashner.asc X-PGP-Fingerprint: A28B F40C 3E55 1372 662D 14F7 41AA E7DC CA3D 8351 Received-SPF: pass client-ip=2a00:1450:4864:20::330; envelope-from=efraim.flashner@gmail.com; helo=mail-wm1-x330.google.com X-Spam_score_int: -17 X-Spam_score: -1.8 X-Spam_bar: - X-Spam_report: (-1.8 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FORGED_FROMDOMAIN=0.001, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.248, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01 autolearn=no autolearn_force=no X-Spam_action: no action X-BeenThere: guix-devel@gnu.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+larch=yhetil.org@gnu.org Sender: guix-devel-bounces+larch=yhetil.org@gnu.org X-Migadu-Flow: FLOW_IN X-Migadu-Country: US X-Migadu-Spam-Score: -6.88 X-Spam-Score: -6.88 X-Migadu-Queue-Id: 6C64041AAB X-Migadu-Scanner: mx13.migadu.com X-TUID: KdT+VmArHNlp --+4gGIUHguMLe7SVD Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Mar 07, 2024 at 02:09:32PM +0000, Steve George wrote: >=20 > Hi, >=20 > I had a couple of ideas - but would need help from someone to mentor >=20 > 1. Moldable development in Guix > Exploratory REPL experience is one of the hall-marks of 'moldable' system= s. This shortens the development cycle and improves the ability of users to= explore Guix. >=20 > The best REPL experience today is through Emacs. We have a modern nREPL i= mplementation that is compatible with Guile. This needs further development= and the Guix client side improved. >=20 > * Develop a basic CLI Nrepl experience in guile-ares-rs (https://git.sr.h= t/~abcdw/guile-ares-rs) > * Add further CLI REPL functions to Guix=20 > * Stretch goal to add a Guix / Guile Scheme nrepl support to Conjure=20 > (https://github.com/Olical/conjure/issues/549)=20 >=20 > This would need co-ordination with Andrew Tropin (abcw) and Oliver Caldwe= ll (Olical), and some help from a Guix mentor.=20 >=20 > 2. Improving Docker image output (guix pack) > Docker containers are a common deployment method for applications. While = they may be good for deployment, they have weak reproducibilty which Guix s= olves. Docker containers generated by Guix for deployment are large compare= d to similar deployments using Nix or Alpine. The purpose of this project i= s to optimise the build and deployment pipeline in Guix. >=20 > * Examine the current 'guix pack' process for optimisations > * Optimise the build process to add docker specific capabilities like mul= ti-stage builds > * Explore using grafts or masking to reduce final image size >=20 > ** NOTE:** I know this is a bit weak - I don't know enough about this mys= elf yet - is this even a good target - I think it's interesting for scienti= fic computing? This would also be useful for "deploy this guix service as a docker container". > 3. Add sandboxing to guix packages > Improving the security for end-users by implementing optional sandboxing = for desktop applications. The likes of Bubblewrap and Flatseal are availabl= e for Linux. There's some existing Nix prior-art that could be a good start= ing point (https://nixos.wiki/wiki/Firejail) and (https://sr.ht/~fgaz/nix-b= ubblewrap/) >=20 > * Figure out which of the available options is the most sustainable > * Integrate policys and implementation into high-profile packages > * Stretch would be to create a Guile native library / approach >=20 > Anyone interested in these - willing to mentor/co-mentor with me? >=20 > On 4 Mar, G=C3=A1bor Boskovits wrote: > > Hello guix, > >=20 > > I coordinated with the GNU org admins, and we can still do this round, > > but we have to go fast to make this happen. I have already taken the > > initiative to try to get an ideas page up, now I would like to confirm > > if the mentors from last year are still available, and that the ideas > > are still valid. > >=20 > > Hereby I quickly collected the projects with the respective mentors, > > please pm me your availability: > >=20 > > Decentralized substitute distribution > > pukkamustard (pukkamustard [at] posteo [dot] net) > > attila.lendvai (ethswarm.org, scheme) > >=20 > > Robustify long-term support for Reproducible Research > > Simon Tournier (zimoun) > >=20 > > Develop a Web interface to configure Guix System > > Ludovic Court=C3=A8s (civodul) > >=20 > > Trusted computing: Goblins for GNU Guix > > Christopher Webber, Ludovic Court=C3=A8s and Pjotr Prins > >=20 > > Guix Data Service revision processing instrumentation and performance > > Christopher Baines > >=20 > > Guile based build-tool > > Pjotr Prins > >=20 > > GNU Guix system monitor > > Pjotr Prins > >=20 > > Booting via network > > Danny Milosavljevic > >=20 > > Syntax and semantics of systemd units in the Shepherd > > Ludovic Court=C3=A8s (civodul) > >=20 > > GNUnet integration > > no mentor available > >=20 > > Adding modules in support of continuous integration to cuirass > > Ludovic Court=C3=A8s (civodul) > >=20 > > Continue rewrite build daemon in Guile Scheme > > Ludovic Court=C3=A8s (civodul) > >=20 > > I myself am available to co-mentor, and also to be the formal mentor > > in case someone does not feel like doing the official dance with > > Google. Currently I can commit to devoting two hours a week to this. > >=20 > > Regards, > > g_bor > >=20 >=20 --=20 Efraim Flashner =D7=A8=D7=A0=D7=A9=D7=9C=D7=A4 = =D7=9D=D7=99=D7=A8=D7=A4=D7=90 GPG key =3D A28B F40C 3E55 1372 662D 14F7 41AA E7DC CA3D 8351 Confidentiality cannot be guaranteed on emails sent or received unencrypted --+4gGIUHguMLe7SVD Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAABCAAdFiEEoov0DD5VE3JmLRT3Qarn3Mo9g1EFAmXuwuYACgkQQarn3Mo9 g1FoahAAge3w9P0Y1EQQk23tonLSjfXWSuOAQsRiLIaNHnwA0d0frkAQ2wk/eqBc 3Q3PIfWgxJ/XG82LlAcMJLKWz3kUq9gAVCaWC1eajuu9qjyusAgABjA0lv4lBvaN JcB99RBEfmtFZCzBVa2LSNtIim0msJkW86MPEbRSIaL1um6vEstRYIfSVbxvJG7S LRt0Ss5tVcjXwPepIKxRS3WBJ4VKNxzNwl9XGqEZwI5wTfI4c7w1vA+nOnGOTWSA +z5vjZzovNQgwdG3xw7XR/MLAAZw6vrFHnX7vt/giHfF4iAGQitA2E4W2xaf/y3f Jlm9LwC8L4T1TrAbO/SaoCbHv6GOON8kOFG8/v45x1I908HyI+1NPozUQCyNosl3 TPv4JCIt8+ZI6EQXNL4vtjmcrgzU8diNSMICx84NlFnqHE6y+pRQZrXy7yuS7rin vm0ndhy5+O5miYsDpmC5r51Uo+ATvYmkr9d9QBj5Izu16+dPvqe0TrLdYu1a4c5Z X1yiuwOqZtJGWcKayLsm6Ooh/YGKWql9mEH6HqNvvQ7B3xxArfPDkwdl56RHQAhe QAXwMQrsABFVupDqe674u8dQjQSxBe5HvXET+FI+E6F/bxbjQd/nNvvpQyILCakG sYqG+5ljpFt/vjX3DxXLTgmMVIgAXu4NgThg3ZB6AUJmG/NcBB0= =8t+d -----END PGP SIGNATURE----- --+4gGIUHguMLe7SVD--