From mboxrd@z Thu Jan  1 00:00:00 1970
From: Ricardo Wurmus <rekado@elephly.net>
Subject: bug#37162: =?UTF-8?Q?=E2=80=98guix?= pack -f
 =?UTF-8?Q?docker=E2=80=99?= creates an image without /etc/passwd
Date: Fri, 23 Aug 2019 22:16:08 +0200
Message-ID: <874l27k587.fsf@elephly.net>
References: <87r25c3p0e.fsf@inria.fr>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Return-path: <bug-guix-bounces+gcggb-bug-guix=m.gmane.org@gnu.org>
Received: from eggs.gnu.org ([2001:470:142:3::10]:54987)
 by lists.gnu.org with esmtp (Exim 4.90_1)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1i1Fzb-0007tc-7T
 for bug-guix@gnu.org; Fri, 23 Aug 2019 16:17:04 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1i1Fza-000500-A3
 for bug-guix@gnu.org; Fri, 23 Aug 2019 16:17:03 -0400
Received: from debbugs.gnu.org ([209.51.188.43]:60674)
 by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16)
 (Exim 4.71) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1i1Fza-0004zt-72
 for bug-guix@gnu.org; Fri, 23 Aug 2019 16:17:02 -0400
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1i1Fza-0008Md-1g
 for bug-guix@gnu.org; Fri, 23 Aug 2019 16:17:02 -0400
Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-Message-ID: <handler.37162.B37162.156659138132078@debbugs.gnu.org>
In-reply-to: <87r25c3p0e.fsf@inria.fr>
List-Id: Bug reports for GNU Guix <bug-guix.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/bug-guix>,
 <mailto:bug-guix-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/bug-guix>
List-Post: <mailto:bug-guix@gnu.org>
List-Help: <mailto:bug-guix-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/bug-guix>,
 <mailto:bug-guix-request@gnu.org?subject=subscribe>
Errors-To: bug-guix-bounces+gcggb-bug-guix=m.gmane.org@gnu.org
Sender: "bug-Guix" <bug-guix-bounces+gcggb-bug-guix=m.gmane.org@gnu.org>
To: 37162@debbugs.gnu.org
Cc: ludovic.courtes@inria.fr


Ludovic Court=C3=A8s <ludovic.courtes@inria.fr> writes:

> =E2=80=98guix pack -f docker=E2=80=99 currently creates an image without
> /etc/{passwd,group,shadow}.
[=E2=80=A6]
> Unless there are objections, I=E2=80=99d like to create these with just t=
he
> =E2=80=9Croot=E2=80=9D and =E2=80=9Cnobody=E2=80=9D accounts.  Or should =
we have a regular unprivileged
> account?  But then what should its UID be?

Is there perhaps a configuration that we could add to the Docker image
meta-data to have Docker do the right thing?  The right thing might be
to map these files from the host into the container automatically, or to
instruct Docker to create them when starting the container.

I would prefer to accomplish this via configuration =E2=80=9Chints=E2=80=9D=
 if possible
instead of creating dummy files with specific contents.

(I don=E2=80=99t know if this is at all possible.)

--
Ricardo