From mboxrd@z Thu Jan 1 00:00:00 1970 From: zimoun Subject: Re: guix pull: error: getting status of /var/guix/gcroots Date: Thu, 6 Feb 2020 15:02:40 +0100 Message-ID: References: Mime-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Return-path: Received: from eggs.gnu.org ([2001:470:142:3::10]:43595) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1izhkC-0005XA-Ji for help-guix@gnu.org; Thu, 06 Feb 2020 09:03:01 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1izhkB-00008v-Fc for help-guix@gnu.org; Thu, 06 Feb 2020 09:03:00 -0500 Received: from mail-qk1-x72e.google.com ([2607:f8b0:4864:20::72e]:33143) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1izhkB-000075-BF for help-guix@gnu.org; Thu, 06 Feb 2020 09:02:59 -0500 Received: by mail-qk1-x72e.google.com with SMTP id h4so5627700qkm.0 for ; Thu, 06 Feb 2020 06:02:59 -0800 (PST) In-Reply-To: List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: help-guix-bounces+gcggh-help-guix=m.gmane-mx.org@gnu.org Sender: "Help-Guix" To: jimmy@thrasibule.mx Cc: help-guix Hi, On Thu, 30 Jan 2020 at 14:11, Jimmy Thrasibule wrote: > I'm building a Docker image in order to get a GuixSD by using the ``guix > system docker-image`` command. See the Dokerfile at: > https://bitbucket.org/x237net/guixsd/src/master/src/Dockerfile. Instead, the issue should come from this file: https://bitbucket.org/x237net/alpine-guix/src/master/src/Dockerfile > guix pull: error: getting status of /var/guix/gcroots: Operation not > permitted I do not have carefully look to your files, but the issue should be: - wrong permission - /var/guix is not exposed > Again, I successfully built the image on different local systems and my > other container [x237net/alpine-guix] which builds successfully on their > platform also calls ``guix pull``. My intuition is that your issue comes from this other container. And it builds, pulls etc because your are inside. However, if something is wrong then the command "FROM x237net/alpine-guix" does not do what you expect. I mean, if the container x237net/alpine-guix is correct, you should be able to just run this simple Dockerfile: FROM x237net/alpine-guix:latest RUN guix pull (modulo set the correct paths and maybe start the daemon) > I guess they are reducing the capabilities allowed to their build platform > but I can really tell what operation is guix pull attempting in this > particular case. Last, aside the "Operation not permitted", check if the network is correctly setup. Hope that helps. All the best, simon