From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <guix-patches-bounces+larch=yhetil.org@gnu.org>
Received: from mp2 ([2001:41d0:8:6d80::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by ms0.migadu.com with LMTPS
	id aqgMKjBYpmDingAAgWs5BA
	(envelope-from <guix-patches-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Thu, 20 May 2021 14:38:08 +0200
Received: from aspmx1.migadu.com ([2001:41d0:8:6d80::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by mp2 with LMTPS
	id QCUbJTBYpmBTRAAAB5/wlQ
	(envelope-from <guix-patches-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Thu, 20 May 2021 12:38:08 +0000
Received: from lists.gnu.org (lists.gnu.org [209.51.188.17])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by aspmx1.migadu.com (Postfix) with ESMTPS id E984220552
	for <larch@yhetil.org>; Thu, 20 May 2021 14:38:07 +0200 (CEST)
Received: from localhost ([::1]:40716 helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <guix-patches-bounces+larch=yhetil.org@gnu.org>)
	id 1ljhwF-0007RT-4s
	for larch@yhetil.org; Thu, 20 May 2021 08:38:07 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10]:34898)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1ljhwA-0007RH-Fw
 for guix-patches@gnu.org; Thu, 20 May 2021 08:38:02 -0400
Received: from debbugs.gnu.org ([209.51.188.43]:50001)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1ljhwA-0007IN-8j
 for guix-patches@gnu.org; Thu, 20 May 2021 08:38:02 -0400
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1ljhwA-0006ZZ-5C
 for guix-patches@gnu.org; Thu, 20 May 2021 08:38:02 -0400
X-Loop: help-debbugs@gnu.org
Subject: [bug#47849] [PATCH 1/1] services: Add a service for the Jami daemon.
Resent-From: Maxim Cournoyer <maxim.cournoyer@gmail.com>
Original-Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-CC: guix-patches@gnu.org
Resent-Date: Thu, 20 May 2021 12:38:02 +0000
Resent-Message-ID: <handler.47849.B47849.162151424825211@debbugs.gnu.org>
Resent-Sender: help-debbugs@gnu.org
X-GNU-PR-Message: followup 47849
X-GNU-PR-Package: guix-patches
X-GNU-PR-Keywords: patch
To: Maxime Devos <maximedevos@telenet.be>
Cc: 47849@debbugs.gnu.org
Received: via spool by 47849-submit@debbugs.gnu.org id=B47849.162151424825211
 (code B ref 47849); Thu, 20 May 2021 12:38:02 +0000
Received: (at 47849) by debbugs.gnu.org; 20 May 2021 12:37:28 +0000
Received: from localhost ([127.0.0.1]:33314 helo=debbugs.gnu.org)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
 id 1ljhvc-0006YZ-8Y
 for submit@debbugs.gnu.org; Thu, 20 May 2021 08:37:28 -0400
Received: from mail-qk1-f181.google.com ([209.85.222.181]:44817)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <maxim.cournoyer@gmail.com>) id 1ljhva-0006YM-8r
 for 47849@debbugs.gnu.org; Thu, 20 May 2021 08:37:27 -0400
Received: by mail-qk1-f181.google.com with SMTP id h20so379261qko.11
 for <47849@debbugs.gnu.org>; Thu, 20 May 2021 05:37:26 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; 
 h=from:to:cc:subject:references:date:in-reply-to:message-id
 :user-agent:mime-version;
 bh=pTo0eo+3ZQhMC9qKLLAGKb+pb/tQcVPs+oXF+yzTB98=;
 b=SAnhaxzhGRUlZirgIkeO1nSR2ZIFFXQTSOhDoEJmSpDAIgbKpav5TDnKjJNWZroXlB
 aHQ3Jp/7XR1ggzFdo21tlNxjlalcbSR021SjtItAd4yW2aaZzBQ2EBY3eOVI/+0EsPWh
 5VfqYfc/89eg9HO16VmnpNBB2+XSAj/14toXFVKyX/vZrJoJF4hFVn2s79XiGYQW5kFf
 zpO4XOKV6l4VBUrQPg5akeczTPZVoBDD3KSBFBZ5tQZhN/g+e4h+6xF1HLrj2HKgF5Kj
 wJNfglooVDzvLgGV9to40HbnpYvvku3ZC6wkeHFVMplHuRanz8riWC+CadD3Ujls8axz
 l80Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:from:to:cc:subject:references:date:in-reply-to
 :message-id:user-agent:mime-version;
 bh=pTo0eo+3ZQhMC9qKLLAGKb+pb/tQcVPs+oXF+yzTB98=;
 b=Wz54Mvau/FH82QT7u+Kse7pzSjA6a1hdcdD6qPtBJLMO3/GVAmG/kjMtl3xEgS5wG0
 37anpRwQ6z/yt2HoXNFKJfaFA+hhhtVbhrm0iacJUWbT1/HRZSwwX6sKy//dmSl5ds+Q
 cJr5azMan06R7YqxfBgF3xGQA+OMgK0Xq91ka1V49FA7DjDCROW3OkR+NqsIk5q/tZOg
 RsaiCd5gV1qkIiPWOdYSJuD263HeFKPVNWd2uHgCvEhs8tJ4y9sRlD7SwXVN7J3hXTc2
 Evhp5pIGpItwYyJ77KHCp6apSf4XgG2RvhwU3QLRMAFEzbBcXqzmisB4rbpRhocfN/rh
 xRDg==
X-Gm-Message-State: AOAM533Tuq59cV2fFOQXiOOYVPGVDkFadcfCKC6n82Gv684sF0+n+RO1
 DL4vR/rzNpQkmE7hw8H/lA9IEcJP1XI=
X-Google-Smtp-Source: ABdhPJwlxYQVVYORRG1WyGdxpBJ+tVcnqExEKSExTef1S4748AE3vd0cordjL49SL4ff10chAmnAWA==
X-Received: by 2002:a37:e312:: with SMTP id y18mr4739801qki.39.1621514240620; 
 Thu, 20 May 2021 05:37:20 -0700 (PDT)
Received: from hurd (dsl-150-81.b2b2c.ca. [66.158.150.81])
 by smtp.gmail.com with ESMTPSA id y13sm1836559qkj.84.2021.05.20.05.37.19
 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
 Thu, 20 May 2021 05:37:20 -0700 (PDT)
From: Maxim Cournoyer <maxim.cournoyer@gmail.com>
References: <20210417200414.18050-1-maxim.cournoyer@gmail.com>
 <20210417200617.18182-1-maxim.cournoyer@gmail.com>
 <8f42495246e684121605e7cef2462a068130d5cc.camel@telenet.be>
Date: Thu, 20 May 2021 08:37:19 -0400
In-Reply-To: <8f42495246e684121605e7cef2462a068130d5cc.camel@telenet.be>
 (Maxime Devos's message of "Sun, 18 Apr 2021 13:47:03 +0200")
Message-ID: <87cztl1szk.fsf@gmail.com>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
X-BeenThere: guix-patches@gnu.org
List-Id: <guix-patches.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/guix-patches>,
 <mailto:guix-patches-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/guix-patches>
List-Post: <mailto:guix-patches@gnu.org>
List-Help: <mailto:guix-patches-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/guix-patches>,
 <mailto:guix-patches-request@gnu.org?subject=subscribe>
Errors-To: guix-patches-bounces+larch=yhetil.org@gnu.org
Sender: "Guix-patches" <guix-patches-bounces+larch=yhetil.org@gnu.org>
X-Migadu-Flow: FLOW_IN
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org;
	s=key1; t=1621514288;
	h=from:from:sender:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:cc:mime-version:mime-version:
	 content-type:content-type:resent-cc:resent-from:resent-sender:
	 resent-message-id:in-reply-to:in-reply-to:references:references:
	 list-id:list-help:list-unsubscribe:list-subscribe:list-post:
	 dkim-signature; bh=pTo0eo+3ZQhMC9qKLLAGKb+pb/tQcVPs+oXF+yzTB98=;
	b=RikK3eqT7FOnPxPx2dVKcf5fvMFkFClz0V8XyhRr8lHedao29Nl2Kv65/ZObKVkgEipg/q
	GEJncY+3HbKG1xrIB/HYl1IUJq3ifnfFja2A5I0z9kmZMy5qRSEndN6baqbmzLc+UxZLS2
	jowAP/+Qal1Zix3mW2oKJ9v3vXWJu224CReSbEYAE0+hohFe5PVwKlAAwZVP11KEPzCk97
	uUzyu1UyM9ga7Nl/Ra5mXsE83DtucXEVcwXgF90ABhu2g1nEYccm4fN9Gbu/rZFtgrVel8
	pVu2dzZbupgN29C/+9N471my3iXFSyW/6bPj/7mud8ak2yN2TTUyIlvW66akVw==
ARC-Seal: i=1; s=key1; d=yhetil.org; t=1621514288; a=rsa-sha256; cv=none;
	b=twesPI7/Q++epSixieSG9U+dr92S+qh4FchkGcNjWhC3J19KLleIUUFPw56c5Zt0xziuBe
	ztUq+9lQZmnQsLk1wIQIwyXecfCGlUEqC3R3dHeWkXjQDz4vP/Djx9miEX6C45kA/CoZDe
	LaOy8e6feHwrIKWtneE11vM3TB3VzsEB8YJSETzwYDPyzpmADyziduHF/MmgYhJybSZDEm
	SsxG29Vyi75vMJ37xeuMGT4eiKOjNy+pr0YjVBK2sjNiP7zrMySg6RDR0lhsmNSQ0Il1ot
	CfNUsMJbOB/0IKEihnt4DWD1fMKHZW1vJDfl6cy+kjaKTMZamD2pmQe56Lp2JQ==
ARC-Authentication-Results: i=1;
	aspmx1.migadu.com;
	dkim=fail ("headers rsa verify failed") header.d=gmail.com header.s=20161025 header.b=SAnhaxzh;
	dmarc=fail reason="SPF not aligned (relaxed)" header.from=gmail.com (policy=none);
	spf=pass (aspmx1.migadu.com: domain of guix-patches-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=guix-patches-bounces@gnu.org
X-Migadu-Spam-Score: -1.34
Authentication-Results: aspmx1.migadu.com;
	dkim=fail ("headers rsa verify failed") header.d=gmail.com header.s=20161025 header.b=SAnhaxzh;
	dmarc=fail reason="SPF not aligned (relaxed)" header.from=gmail.com (policy=none);
	spf=pass (aspmx1.migadu.com: domain of guix-patches-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=guix-patches-bounces@gnu.org
X-Migadu-Queue-Id: E984220552
X-Spam-Score: -1.34
X-Migadu-Scanner: scn0.migadu.com
X-TUID: 5nJB6o7a14z+

Hello Maxime.

Maxime Devos <maximedevos@telenet.be> writes:

> Maxim Cournoyer schreef op za 17-04-2021 om 16:06 [-0400]:
>> +                ;; Start the daemon.
>> +                (define daemon-pid
>> +                  (fork+exec-command
>> +                   '#$(jami-daemon-configuration->command-line-arguments config)
>> +                   #:user "jami"
>> +                   #:group "jami"
>> +                   #:environment-variables
>> +                   (list (string-append "DBUS_SESSION_BUS_ADDRESS="
>> +                                        "unix:path=/var/run/jami/bus"))))
>
> It would be nice if this could be run in a container
> that only has access to the relevant parts of the file system
> (and not, say, /run/setuid-programs).  See, e.g., gnu/build/linux-container.scm.

That's now the case in the just-sent v2, both for the D-Bus session
service as well as the Jami process itself :-).  I figured out I could
simply call make-forkexec+constructor/container and execute apply the
resulting procedure.

I've also manage to (with much difficulty!) have the service properly
start, stop or restart without races.  The new tests proved really
useful for the lengthy trial and error process that I had to go through.

Thanks for your patience!

Maxim