From: "Jim Newsome" <jim@sporksmith.net>
To: "John Kehayias" <john.kehayias@protonmail.com>
Cc: help-guix@gnu.org, guix-devel@gnu.org
Subject: Re: Drafting a Guix blog post on the FHS container
Date: Wed, 04 Jan 2023 18:07:18 +0000 [thread overview]
Message-ID: <ed277b25-f3d5-4336-8d17-6d0d0cfa649d@app.fastmail.com> (raw)
In-Reply-To: <87fscqjioe.fsf@protonmail.com>
On Wed, Jan 4, 2023, at 5:47 PM, John Kehayias wrote:
> Hi Jim,
>
> On Fri, Dec 16, 2022 at 05:39 PM, Jim Newsome wrote:
>
> > Sorry for (presumably) breaking threading; I came across this online and
> > don't see a way to set my in-reply-to-email header properly.
> >
> > Anyways just thought I'd mention that I recently learned about this
> > feature, and was able to use it to get a downloaded [Tor Browser Bundle]
> > running with:
> >
> >
> > ```
> > guix shell \
> > --container \
> > --network \
> > --emulate-fhs \
> > --preserve='^DISPLAY$'
> > --share=/run/user/$(id -u)/gdm \
> > openssl@1 \
> > libevent \
> > pciutils \
> > dbus-glib \
> > bash \
> > libgccjit \
> > libcxx \
> > gtk+ \
> > coreutils \
> > grep \
> > sed \
> > file \
> > alsa-lib \
> > -- \
> > ./start-tor-browser.desktop -v
> > ```
> >
> > `--preserve='^DISPLAY$'` and `--share=/run/user/$(id -u)/gdm` are to get
> > access to the display. I'm not sure the second parameter is universally
> > correct; I reverse-engineered it via roughly `ps aux | grep -- -auth`.
> >
> > The `-v` parameter to the browser script keeps it from trying to
> > background itself, which otherwise causes the container and browser to
> > terminate.
> >
> > It'd ultimately be nice to package the Tor Browser Bundle properly for
> > guix, but it's nice to be able to use it this way in the meantime.
>
> Thanks again for this! I slightly modified it for the blog post, which you can see in draft form at <https://issues.guix.gnu.org/60112>. I used 'gcc:lib' instead of 'libgccjit' as it is smaller, and changed the needed display options to be like the previous ones I had. Yours didn't work for me since it looks like it relies on sharing something from GDM, which I don't use. But do let me know if my version doesn't work for you.
>
> Also gave you credit for this example; if you prefer not to be mentioned by name/link to the mailing list for any reason, just let me know.
>
> Oh, and we do have some (older) patches for building the Tor Browser from source, but I don't know if they currently work: <https://issues.guix.gnu.org/42380> Your example was great though, something very useful!
>
> John
Thanks, looks good, and the command in your patch also works for me.
I agree that passing and exposing XAUTHORITY seems better. Experimentally, sharing the directory read-only also works (using `--expose` instead of `--share`) also works, but I'm not familiar enough with this mechanism to be confident that'll work for everyone, or whether making it read-only is worth the fuss.
Btw it turns out that `libevent` and `openssl@1` can be dropped; they're already bundled. All together, here's my current "best" version:
```
guix shell --container --network --emulate-fhs \
--preserve='^DISPLAY$' --preserve='^XAUTHORITY$' --expose=$XAUTHORITY \
alsa-lib bash coreutils dbus-glib file gcc:lib grep gtk+ \
libcxx pciutils sed \
-- ./start-tor-browser.desktop -v
```
next prev parent reply other threads:[~2023-01-04 18:08 UTC|newest]
Thread overview: 19+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-12-16 23:39 Drafting a Guix blog post on the FHS container Jim Newsome
2022-12-19 21:28 ` Ludovic Courtès
2022-12-23 2:04 ` Csepp
2022-12-26 5:36 ` John Kehayias
2023-01-04 17:47 ` John Kehayias
2023-01-04 18:07 ` Jim Newsome [this message]
2023-01-04 18:16 ` John Kehayias
2023-01-04 18:18 ` [bug#60112] " jman via Guix-patches via
2023-01-05 21:00 ` [bug#60112] [PATCH] website: Add post about guix shell fhs option Ludovic Courtès
2023-01-05 21:03 ` John Kehayias via Guix-patches via
-- strict thread matches above, loose matches on Subject: below --
2022-12-05 2:32 Drafting a Guix blog post on the FHS container John Kehayias
2022-12-05 6:51 ` Wojtek Kosior via
2022-12-12 5:46 ` John Kehayias
2022-12-06 10:41 ` Ludovic Courtès
2022-12-12 6:33 ` John Kehayias
2022-12-15 14:53 ` Ludovic Courtès
2022-12-16 7:35 ` John Kehayias
2022-12-09 17:56 ` zimoun
2022-12-12 5:49 ` John Kehayias
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=ed277b25-f3d5-4336-8d17-6d0d0cfa649d@app.fastmail.com \
--to=jim@sporksmith.net \
--cc=guix-devel@gnu.org \
--cc=help-guix@gnu.org \
--cc=john.kehayias@protonmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this external index
https://git.savannah.gnu.org/cgit/guix.git
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.