From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp1 ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms11 with LMTPS id 6C2fDl3dcl+fGgAA0tVLHw (envelope-from ) for ; Tue, 29 Sep 2020 07:08:13 +0000 Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp1 with LMTPS id mFt6Cl3dcl+aJQAAbx9fmQ (envelope-from ) for ; Tue, 29 Sep 2020 07:08:13 +0000 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id B4D099402B1 for ; Tue, 29 Sep 2020 07:08:12 +0000 (UTC) Received: from localhost ([::1]:55686 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1kN9kB-0005k5-8N for larch@yhetil.org; Tue, 29 Sep 2020 03:08:11 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:54830) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1kN9k3-0005ip-EK for guix-patches@gnu.org; Tue, 29 Sep 2020 03:08:04 -0400 Received: from debbugs.gnu.org ([209.51.188.43]:43268) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1kN9k3-00086V-5j for guix-patches@gnu.org; Tue, 29 Sep 2020 03:08:03 -0400 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1kN9k3-0002N5-1M for guix-patches@gnu.org; Tue, 29 Sep 2020 03:08:03 -0400 X-Loop: help-debbugs@gnu.org Subject: [bug#43650] [PATCH 1/8] services: hurd-vm: Run QEMU as an unprivileged user. Resent-From: Efraim Flashner Original-Sender: "Debbugs-submit" Resent-CC: guix-patches@gnu.org Resent-Date: Tue, 29 Sep 2020 07:08:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 43650 X-GNU-PR-Package: guix-patches X-GNU-PR-Keywords: patch To: Jan Nieuwenhuizen Cc: Ludovic =?UTF-8?Q?Court=C3=A8s?= , 43650@debbugs.gnu.org Received: via spool by 43650-submit@debbugs.gnu.org id=B43650.16013632259024 (code B ref 43650); Tue, 29 Sep 2020 07:08:02 +0000 Received: (at 43650) by debbugs.gnu.org; 29 Sep 2020 07:07:05 +0000 Received: from localhost ([127.0.0.1]:54809 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kN9j6-0002LU-SM for submit@debbugs.gnu.org; Tue, 29 Sep 2020 03:07:05 -0400 Received: from flashner.co.il ([178.62.234.194]:43322) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kN9j4-0002Kx-G6 for 43650@debbugs.gnu.org; Tue, 29 Sep 2020 03:07:03 -0400 Received: from localhost (unknown [31.210.181.177]) by flashner.co.il (Postfix) with ESMTPSA id A52434022E; Tue, 29 Sep 2020 07:06:56 +0000 (UTC) Date: Tue, 29 Sep 2020 10:06:24 +0300 From: Efraim Flashner Message-ID: <20200929070624.GM1386@E5400> References: <20200927153221.9154-1-ludo@gnu.org> <87lfgt4z6r.fsf@gnu.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="pP0ycGQONqsnqIMP" Content-Disposition: inline In-Reply-To: <87lfgt4z6r.fsf@gnu.org> X-PGP-Key-ID: 0x41AAE7DCCA3D8351 X-PGP-Key: https://flashner.co.il/~efraim/efraim_flashner.asc X-PGP-Fingerprint: A28B F40C 3E55 1372 662D 14F7 41AA E7DC CA3D 8351 X-Spam-Score: -0.0 (/) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-Spam-Score: -1.0 (-) X-BeenThere: guix-patches@gnu.org List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-patches-bounces+larch=yhetil.org@gnu.org Sender: "Guix-patches" X-Scanner: scn0 Authentication-Results: aspmx1.migadu.com; dkim=none; dmarc=none; spf=pass (aspmx1.migadu.com: domain of guix-patches-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=guix-patches-bounces@gnu.org X-Spam-Score: 0.69 X-TUID: 0c/747GtbYCe --pP0ycGQONqsnqIMP Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Sep 28, 2020 at 06:57:00PM +0200, Jan Nieuwenhuizen wrote: > Ludovic Court=C3=A8s writes: >=20 > Hello! >=20 > > Until qemu was running as "root", which is unnecessary. >=20 > Well...I can't get this to work; my childhurd does not run. Did you > test it? Any special tricks needed, adding "childhurd" to "kvm" maybe? >=20 > I do like the idea... >=20 > Greetings, > Janneke >=20 Shot in the dark, do the permissions/ownership on /var/empty matter? childhurd is far from the only user claiming /var/empty as home. --=20 Efraim Flashner =D7=90=D7=A4=D7=A8=D7=99=D7=9D = =D7=A4=D7=9C=D7=A9=D7=A0=D7=A8 GPG key =3D A28B F40C 3E55 1372 662D 14F7 41AA E7DC CA3D 8351 Confidentiality cannot be guaranteed on emails sent or received unencrypted --pP0ycGQONqsnqIMP Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAABCgAdFiEEoov0DD5VE3JmLRT3Qarn3Mo9g1EFAl9y3PAACgkQQarn3Mo9 g1E0LxAAoi1qX60Hvx0cY8lnyKjKFjjNDT5RTX/q0bRdoy0+aJRvE0D/PdGZ9LFi oySPSFVwm+m6jRVKRWY6rCEPDwtvNQPWy49j6rQzklJJDUVWWZxG4qSpU/lIhSXe Cq1FpgvGo60S5/jZ6BZDI9hErteyvAKP59q5HPFzuPh+gu/MO3iLmzO1+jcrhsxK 7iT09m4YAZX72zE4hYYirX1hQY+890jPk4LR1Bc4rqzJ6ncmrF7xm7Tl8VAgTmt+ 4Bc6VHnKmRZHN16yuVXnFAAwo8jJyVwTGrQCmiC0A1I8I5EnFiY7ILKT6O8x7rYq yxoDV1LWFavSEbDwlk/5MwIn/3TCff+DlUV6IKMPzb2QMal5t6StLOCh3wtc95h9 W28gtcABok2XzOW3uAIaG1hN53SihPxZpqQQ5OJnmXMHdjSOkqW4h9YxzMgtrIQr etZjj3Mf5zZO2Qd7l8jlpRKz9AMKQX0kT88pmPfnwnoPyu0sfmkg5Hhkv9tAAY7m lJFTwwF4Xq4ZWYRE2HNAZHqZCrrKwdZBls3QOhoqkjSLIpAZh9Pu+oXouLkafMyK mZuxCbFjyFbEe4LXzMD6w4QmTZrQWCDPaGrSTnqq83NeUtufZt4t9ak6t55OsZQ+ f+Ufn9K5CFSmZ2Gq4IZIMLjRd/HlHNywFhJrkZjCM9VzY9yTPr8= =kyQx -----END PGP SIGNATURE----- --pP0ycGQONqsnqIMP--