Received: (at 55358) by debbugs.gnu.org; 23 May 2023 07:53:46 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Tue May 23 03:53:46 2023 Received: from localhost ([127.0.0.1]:38178 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1q1Mq1-0006UK-IC for submit <at> debbugs.gnu.org; Tue, 23 May 2023 03:53:45 -0400 Received: from wout4-smtp.messagingengine.com ([64.147.123.20]:43499) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <remco@HIDDEN>) id 1q1Mpz-0006Ty-SY for 55358 <at> debbugs.gnu.org; Tue, 23 May 2023 03:53:44 -0400 Received: from compute5.internal (compute5.nyi.internal [10.202.2.45]) by mailout.west.internal (Postfix) with ESMTP id 0FD12320076F; Tue, 23 May 2023 03:53:37 -0400 (EDT) Received: from mailfrontend1 ([10.202.2.162]) by compute5.internal (MEProxy); Tue, 23 May 2023 03:53:38 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=remworks.net; h= cc:cc:content-type:content-type:date:date:from:from:in-reply-to :in-reply-to:message-id:mime-version:references:reply-to:sender :subject:subject:to:to; s=fm3; t=1684828417; x=1684914817; bh=qn n5+u/AEjmvu/91LfjbP81A1jDf5rTKDef1YZG0aco=; b=F/PcOrRmE8U/5v6IRj /1Z62C2P9BreRkShjVryNxROyO02xdRIPaJH9EVYv3lY6bZtFK4cINZAb/leDCZX EC2fOzKa0QgAkU5egRWWv9navgf67j+bF7mtDyp+Osu2bVye93pro9fRfEcawGiF VO+39Pw18B1PXmmHRLeSzamPb26ycUCTUplcPYUfniq+Pv1dYkRJFouPEhrGVg4F N7nTacJTcEtSwtgtsOIDwm4/oeZ57FjpdRxQa9S7VDRR1Sjy1iZqna7PvEjMU0NR 1VbLvEqRP8LqSgB5WtgNsm+6fVmZ1cli0GWzM/Lbl8u1jlTzMn7F11gkqeQW9qhy u4KQ== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-type:content-type:date:date :feedback-id:feedback-id:from:from:in-reply-to:in-reply-to :message-id:mime-version:references:reply-to:sender:subject :subject:to:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm1; t=1684828417; x=1684914817; bh=qnn5+u/AEjmvu /91LfjbP81A1jDf5rTKDef1YZG0aco=; b=CADWn+iOhPCnrE7RE5GIo++z7JiuF yC+8cd+f95EovXx8yGsFD2wkEbQok+ug2Lih3X+lh9DubQ4IkTs9ZZO8IYFPzEnQ lgHM5FphD0f6M4saEHU+jWt9BxVlI/JBkgaH8sp66s2btpFEHnC6lf0lZRjBeZaz Grk9A3clBoujEoLg8JsRiq8g7lOTLENgUKdElMGBRYXmCPFpGwYIZ0DwMvSk55G/ WSxva+AAaojvrSMI+12lWetfHeEedhFlm4W2AdaKkwG+a6bKhoMfalyWaBvwh2Bu zU2seRJbNVO/DOVkwHtKDGVCaNNKo4NP17RGFfoxL7u+OHZFygJZqYeMA== X-ME-Sender: <xms:AXFsZItMn2PN7S7Q9Tznf_OoqwsWAVTLZPtlB_-nzB-EbpNdeYKEMA> <xme:AXFsZFeVsuvNJL0H3gRU5gJn5tc9d8BPDo9w4NqiYlOKn_W5QGAUcZJlpEzVYbtkC 8L-EgJlSKXInFhIPA> X-ME-Received: <xmr:AXFsZDwYyuKyP0rprrLPaEL8Cbn2totH0iqUbiD_YnsfVFGynZlgfT3t95ikOp27e46AP43V9ui8QftbdbXQtXQUAQAtNMxP-FoTqzBytWo> X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvhedrfeejvddguddvjecutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmd enucfjughrpehffgfhvfevufgjfffkgggtsehttdertddtredtnecuhfhrohhmpeftvghm tghouchvrghnucdkthcugggvvghruceorhgvmhgtohesrhgvmhifohhrkhhsrdhnvghtqe enucggtffrrghtthgvrhhnpedtudevhefgueekjedtledvuedugfefvedvfeekjeffkedv tddugfeiuedugfeugeenucffohhmrghinheptghonhhtrghinhgvrhdrihhnpdguohgtkh gvrhdrtghomhdpghhnuhdrohhrghenucevlhhushhtvghrufhiiigvpedtnecurfgrrhgr mhepmhgrihhlfhhrohhmpehrvghmtghosehrvghmfihorhhkshdrnhgvth X-ME-Proxy: <xmx:AXFsZLOlBcY2EzDqO0SpzQAIKkFdFB_6BhxPqxiyU_FuTdooQkbXGA> <xmx:AXFsZI8jjpqDk8qpO9_na4uCj4-K0dOVVH7MYrcpWgSws0L5UoGbMw> <xmx:AXFsZDU6Ms3iLU01pPtlUmPl_CqBOs1cQk5hlMQ3_AMxpHp6ccPdvQ> <xmx:AXFsZHbR8d-If4XMYpr7vkIsyWrGqUQiVxFPE9zGUGDkf1v6UVJUsw> Feedback-ID: i7e59465b:Fastmail Received: by mail.messagingengine.com (Postfix) with ESMTPA; Tue, 23 May 2023 03:53:36 -0400 (EDT) References: <87ilqch79l.fsf@HIDDEN> <87mtde8mrr.fsf@HIDDEN> <87h73m9z3f.fsf@HIDDEN> <875ycb6n3w.fsf@HIDDEN> <878rdk8gm9.fsf@HIDDEN> <87fs7st0m3.fsf@HIDDEN> User-agent: mu4e 1.10.2; emacs 28.2 From: Remco van 't Veer <remco@HIDDEN> To: Csepp <raingloom@HIDDEN> Subject: Re: bug#55358: docker containers stopped when doing guix install or guix shell In-reply-to: <87fs7st0m3.fsf@HIDDEN> Date: Tue, 23 May 2023 09:53:35 +0200 Message-ID: <87ilcjmqkg.fsf@HIDDEN> MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: -0.7 (/) X-Debbugs-Envelope-To: 55358 Cc: guix-devel@HIDDEN, 55358 <at> debbugs.gnu.org, Maxim Cournoyer <maxim.cournoyer@HIDDEN>, zimoun <zimon.toutoune@HIDDEN> X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -1.7 (-) Hi Csepp, 2023/05/20 00:29, Csepp: > Remco van 't Veer <remco@HIDDEN> writes: > >> Hi Maxim and Zimoun, >> >> 2023/02/09 13:26, Remco van 't Veer: >> >>> I think I know what is causing the issue. Both the "standard" mysql and >>> postgres containers use user-id 999 to run the database service (this >>> seems like a common practice because the redis container is configured >>> similarly). That user-id is also configured as guixbuilder01 so I guess >>> the guix daemon is killing those when processes when it finishes doing >>> builds. >> >> I found a solution / workaround for this problem by using >> "userns-remap". This feature allows the remapping of uids and guids to >> different ranges. I tried it by hacking the required files into my >> etc-directory and it works; guix no long kills my database containers. >> >> I'd like to add this feature to docker-service-type having a new >> configuration option named enable-userns-remap? which introduces a new >> user and group (both named dockremap) to do the remapping by adding some >> configurable number to the uids and guids of the running container. In >> /etc/subuid and /etc/subgid it would look like: >> >> dockremap:100000:65536 >> >> See https://docs.docker.com/engine/security/userns-remap/ for >> documentation about this. >> >> WDYT? >> >> Cheers, >> Remco > > The rootless podman example that was shared a few months ago could be > relevant to this, since that also adds a subuid/subgid mapping. Thanks! Borrowed that. For future reference: https://lists.gnu.org/archive/html/guix-devel/2023-03/msg00176.html Cheers, Remco
bug-guix@HIDDEN:bug#55358; Package guix.
Full text available.
Received: (at 55358) by debbugs.gnu.org; 23 May 2023 07:49:35 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Tue May 23 03:49:35 2023
Received: from localhost ([127.0.0.1]:38165 helo=debbugs.gnu.org)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
id 1q1Mlz-0006Mz-7u
for submit <at> debbugs.gnu.org; Tue, 23 May 2023 03:49:35 -0400
Received: from wout4-smtp.messagingengine.com ([64.147.123.20]:41651)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <rwv@HIDDEN>) id 1q1Mlw-0006Mm-Vf
for 55358 <at> debbugs.gnu.org; Tue, 23 May 2023 03:49:34 -0400
Received: from compute3.internal (compute3.nyi.internal [10.202.2.43])
by mailout.west.internal (Postfix) with ESMTP id DF052320095E;
Tue, 23 May 2023 03:49:26 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162])
by compute3.internal (MEProxy); Tue, 23 May 2023 03:49:27 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=remworks.net; h=
cc:cc:content-transfer-encoding:content-type:content-type:date
:date:from:from:in-reply-to:in-reply-to:message-id:mime-version
:references:reply-to:sender:subject:subject:to:to; s=fm3; t=
1684828166; x=1684914566; bh=djE70iYqcK23pNxNm74GYYh+c4Jbchp/vmh
ela8Q/Cc=; b=d7a4AQHi1B4cZ+RlbkeMnkBFobocTevAhC4BP+YbsVPnfpsphPT
wDDDT/6KqllDa6fow8EveIZD1cjdODMnMJwDsp+g3Wx0Mm5TzPpBD2WKl+o+j+Cu
lcny/Dd2dEDhuDLVV4a37DoSsg1zVoLVIvtnxm6I/UJLW+eMlxDfWsMU8sc1o2hH
XqC0ENXoGLEq8TYkv384+zLpfh3qAwJEBtSgKsoYzY+qB5LXLklQirCy75xE00gN
kj3LZkXpL+t4EepvL/WzSXAN/fI1uOvtCrNtA06N6Kdg4vuRh/8vbERp4iRoF9lS
VbG5YkoEy4HW5U842ujcnb0Nv3oqwgY1JXg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=
messagingengine.com; h=cc:cc:content-transfer-encoding
:content-type:content-type:date:date:feedback-id:feedback-id
:from:from:in-reply-to:in-reply-to:message-id:mime-version
:references:reply-to:sender:subject:subject:to:to:x-me-proxy
:x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm1; t=
1684828166; x=1684914566; bh=djE70iYqcK23pNxNm74GYYh+c4Jbchp/vmh
ela8Q/Cc=; b=xC61PPk8FyHRcbsSOm5l7QNPzlu0Dd19mexfyhAcPbIt0REiW5A
AGBBwQdGdz8PCbsd7iUiEhtbchzSVBy3NkXuoLukxzYEeSzQgAADkKAD+sjadlKo
BuQtF7OvELcxk6opJYn0adDKPSYGLvSzv5uz71VCljnsTgOFG/+ROozBNzB0DiKw
IBEefDErLe8p2OZOYI4pNivKRbdj7MKqVHYCeadxxayq4Ji0/xuSOhUrVrmhaPXm
0XlKNh+wQxv1m8fn0qz1ikKQ1HxqRO8pQ32sU6Dk91HyuEwgKMOopDTYFRh+UHfR
lxJkSfHAnqxwwx71TiG4sZoIWULQuhNOaCQ==
X-ME-Sender: <xms:BnBsZEMbz6lop7np4JyxrQvJ18_AxiAzZcLz8e0ywuKDHntGZzJbAw>
<xme:BnBsZK_pZuMO_3AYvushjMn5xYpHiiQgxe9gppx225T6AHVFt6l2aFDyJCKhdyvQ0
dwcnBah-VuvF7WpwQ>
X-ME-Received: <xmr:BnBsZLQReW-JAkivIjSBode_mrCUOL7ITnjF2XUkSJ8my0bLOPWH85Ie2w9XxJxI5BOQUYxTopUaJsDru7oQic7xqKWkzA>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvhedrfeejvddguddvhecutefuodetggdotefrod
ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh
necuuegrihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmd
enucfjughrpefhvfevufffkffojghfgggtgfesthekredtredtjeenucfhrhhomheptfgv
mhgtohcuvhgrnhcukdhtucggvggvrhcuoehrvghmtghosehrvghmfihorhhkshdrnhgvth
eqnecuggftrfgrthhtvghrnhephfetueelgefgvdefledvleekheegtdevgeeljeeihefg
hefhtdeukeduhedvveffnecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrg
hilhhfrhhomheprhifvhesfhgrshhtmhgrihhlrdgtohhm
X-ME-Proxy: <xmx:BnBsZMutR-uBUJ7o0HhilxMNMkkiWyZQFJOi1OWFv8db-KgUd8fRuA>
<xmx:BnBsZMclERFUPPcXB-GumixHz-ZuJyoE6gQ4MPsCnvtNoLEwwvtrIg>
<xmx:BnBsZA18mJL4PTYSOkq26oRgSImiklTAseqsHUtR9foRghlDl53Jpg>
<xmx:BnBsZE52PYFcz5JHPcqeoXtqreOzGPk70sfb6HkPAc5kJwpllWzoBw>
Feedback-ID: i7e59465b:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Tue,
23 May 2023 03:49:25 -0400 (EDT)
From: Remco van 't Veer <remco@HIDDEN>
To: 55358 <at> debbugs.gnu.org
Subject: [PATCH] services: docker: Add 'enable-userns-remap?' argument.
Date: Tue, 23 May 2023 09:49:21 +0200
Message-Id: <de9934e88bf492bc64bd6db330646290eff4fd75.1684828084.git.remco@HIDDEN>
X-Mailer: git-send-email 2.40.1
In-Reply-To: <878rdk8gm9.fsf@HIDDEN>
References: <878rdk8gm9.fsf@HIDDEN>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-Spam-Score: -0.5 (/)
X-Debbugs-Envelope-To: 55358
Cc: guix-devel@HIDDEN, Remco van 't Veer <remco@HIDDEN>,
Maxim Cournoyer <maxim.cournoyer@HIDDEN>, zimoun <zimon.toutoune@HIDDEN>
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -1.5 (-)
* gnu/services/docker.scm (docker-configuration): Define the argument.
* gnu/services/docker.scm (docker-shepherd-service): Use it.
* doc/guix.texi (Docker Service): Document it.
---
doc/guix.texi | 27 ++++++++++++++++++++++++++-
gnu/services/docker.scm | 28 +++++++++++++++++++++++++++-
2 files changed, 53 insertions(+), 2 deletions(-)
diff --git a/doc/guix.texi b/doc/guix.texi
index f4cca66d76..ae185ced61 100644
--- a/doc/guix.texi
+++ b/doc/guix.texi
@@ -100,7 +100,7 @@
Copyright @copyright{} 2021 muradm@*
Copyright @copyright{} 2021, 2022 Andrew Tropin@*
Copyright @copyright{} 2021 Sarah Morgensen@*
-Copyright @copyright{} 2022 Remco van 't Veer@*
+Copyright @copyright{} 2022, 2023 Remco van 't Veer@*
Copyright @copyright{} 2022 Aleksandr Vityazev@*
Copyright @copyright{} 2022 Philip M@sup{c}Grath@*
Copyright @copyright{} 2022 Karl Hallsby@*
@@ -38533,6 +38533,31 @@ Miscellaneous Services
@item @code{enable-iptables?} (default @code{#t})
Enable or disable the addition of iptables rules.
+@item @code{enable-userns-remap?} (default @code{#f})
+Enable remapping and subordinate user and group IDs.
+
+A system user account named @code{dockremap} and user group named
+@code{dockremap} will be created. They must be mapped using the
+@file{/etc/subuid} and @file{/etc/subguid} files otherwise docker fail
+to startup.
+
+Here's an example service to setup both files:
+
+@lisp
+(simple-service
+ 'subuid-subgid etc-service-type
+ (list `("subuid"
+ ,(plain-file "subuid"
+ "dockremap:65536:65536\n"))
+ `("subgid"
+ ,(plain-file "subgid"
+ "dockremap:65536:65536\n"))))
+@end lisp
+
+The above will remap to UID 0 (root) to 65536, UID 1 to 65537 etc. For
+more information regarding the format of these files, consult
+@command{man 5 subuid} and @command{man 5 subgid}.
+
@item @code{environment-variables} (default: @code{()})
List of environment variables to set for @command{dockerd}.
diff --git a/gnu/services/docker.scm b/gnu/services/docker.scm
index 741bab5a8c..e138a6be7e 100644
--- a/gnu/services/docker.scm
+++ b/gnu/services/docker.scm
@@ -5,6 +5,7 @@
;;; Copyright © 2020 Efraim Flashner <efraim@HIDDEN>
;;; Copyright © 2020 Jesse Dowell <jessedowell@HIDDEN>
;;; Copyright © 2021 Brice Waegeneire <brice@HIDDEN>
+;;; Copyright © 2023 Remco van 't Veer <remco@HIDDEN>
;;;
;;; This file is part of GNU Guix.
;;;
@@ -29,6 +30,7 @@ (define-module (gnu services docker)
#:use-module (gnu services shepherd)
#:use-module (gnu system setuid)
#:use-module (gnu system shadow)
+ #:use-module (gnu packages admin)
#:use-module (gnu packages docker)
#:use-module (gnu packages linux) ;singularity
#:use-module (guix records)
@@ -62,6 +64,9 @@ (define-configuration docker-configuration
(enable-iptables?
(boolean #t)
"Enable addition of iptables rules (enabled by default).")
+ (enable-userns-remap?
+ (boolean #f)
+ "Enable remapping and subordinate user and group IDs (disabled by default).")
(environment-variables
(list '())
"Environment variables to set for dockerd")
@@ -107,6 +112,7 @@ (define (docker-shepherd-service config)
(let* ((docker (docker-configuration-docker config))
(enable-proxy? (docker-configuration-enable-proxy? config))
(enable-iptables? (docker-configuration-enable-iptables? config))
+ (enable-userns-remap? (docker-configuration-enable-userns-remap? config))
(environment-variables (docker-configuration-environment-variables config))
(proxy (docker-configuration-proxy config))
(debug? (docker-configuration-debug? config)))
@@ -135,6 +141,9 @@ (define (docker-shepherd-service config)
#~(string-append
"--userland-proxy-path=" #$proxy "/bin/proxy"))
'("--userland-proxy=false"))
+ #$@(if enable-userns-remap?
+ '("--userns-remap=dockremap")
+ '())
(if #$enable-iptables?
"--iptables"
"--iptables=false")
@@ -145,6 +154,18 @@ (define (docker-shepherd-service config)
#:log-file "/var/log/docker.log"))
(stop #~(make-kill-destructor)))))
+(define %docker-remap-user-group
+ (user-group (name "dockremap")
+ (system? #t)))
+
+(define %docker-remap-user-account
+ (user-account (name "dockremap")
+ (group "dockremap")
+ (system? #t)
+ (comment "Docker user namespace remap user")
+ (home-directory "/var/empty")
+ (shell (file-append shadow "/sbin/nologin"))))
+
(define docker-service-type
(service-type (name 'docker)
(description "Provide capability to run Docker application
@@ -161,7 +182,12 @@ (define docker-service-type
(list (containerd-shepherd-service config)
(docker-shepherd-service config))))
(service-extension account-service-type
- (const %docker-accounts))))
+ (lambda (config)
+ (if (docker-configuration-enable-userns-remap? config)
+ (cons* %docker-remap-user-group
+ %docker-remap-user-account
+ %docker-accounts)
+ %docker-accounts)))))
(default-value (docker-configuration))))
base-commit: 849286ba66c96534bddc04df1a47d5692cbc977e
--
2.40.1
bug-guix@HIDDEN:bug#55358; Package guix.
Full text available.Received: (at 55358) by debbugs.gnu.org; 19 May 2023 22:31:13 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Fri May 19 18:31:13 2023 Received: from localhost ([127.0.0.1]:57573 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1q08cy-0001DL-Mq for submit <at> debbugs.gnu.org; Fri, 19 May 2023 18:31:13 -0400 Received: from mx0.riseup.net ([198.252.153.6]:41934) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <raingloom@HIDDEN>) id 1q08cw-0001D8-M7 for 55358 <at> debbugs.gnu.org; Fri, 19 May 2023 18:31:11 -0400 Received: from fews02-sea.riseup.net (fews02-sea-pn.riseup.net [10.0.1.112]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mail.riseup.net", Issuer "R3" (not verified)) by mx0.riseup.net (Postfix) with ESMTPS id 4QNM4n0zzmz9t2P; Fri, 19 May 2023 22:31:05 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1684535465; bh=/GrahwEFf/xXU+h0QcWSRAAVoSFKlAvqnjHAXBNtNgc=; h=References:From:To:Cc:Subject:Date:In-reply-to:From; b=CkHZfHvdgzJgJz2DcA9beLB9VBXv/7n6SFIFjw9TUMdGyEA0B/qLtL+4CtVkbmcpT pFCalbAnq9O6b6RNm4WsPZYgiwWQ7wsx8FV6zNDcucFxvkGxdcqmERY5FySvdTylBX Ana65Z3Zxqgl0ONkOvvdeI9XDxA06OnGRN+Q0Zn4= X-Riseup-User-ID: AAACF75D1959359CD356FC6D12B7D9C47D3CB43CF624C75D57AC60D846449D43 Received: from [127.0.0.1] (localhost [127.0.0.1]) by fews02-sea.riseup.net (Postfix) with ESMTPSA id 4QNM4m1JhdzFqhy; Fri, 19 May 2023 22:31:03 +0000 (UTC) References: <87ilqch79l.fsf@HIDDEN> <87mtde8mrr.fsf@HIDDEN> <87h73m9z3f.fsf@HIDDEN> <875ycb6n3w.fsf@HIDDEN> <878rdk8gm9.fsf@HIDDEN> From: Csepp <raingloom@HIDDEN> To: Remco van 't Veer <remco@HIDDEN> Subject: Re: bug#55358: docker containers stopped when doing guix install or guix shell Date: Sat, 20 May 2023 00:29:04 +0200 In-reply-to: <878rdk8gm9.fsf@HIDDEN> Message-ID: <87fs7st0m3.fsf@HIDDEN> MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: -0.7 (/) X-Debbugs-Envelope-To: 55358 Cc: guix-devel@HIDDEN, 55358 <at> debbugs.gnu.org, Maxim Cournoyer <maxim.cournoyer@HIDDEN>, zimoun <zimon.toutoune@HIDDEN> X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -1.7 (-) Remco van 't Veer <remco@HIDDEN> writes: > Hi Maxim and Zimoun, > > 2023/02/09 13:26, Remco van 't Veer: > >> I think I know what is causing the issue. Both the "standard" mysql and >> postgres containers use user-id 999 to run the database service (this >> seems like a common practice because the redis container is configured >> similarly). That user-id is also configured as guixbuilder01 so I guess >> the guix daemon is killing those when processes when it finishes doing >> builds. > > I found a solution / workaround for this problem by using > "userns-remap". This feature allows the remapping of uids and guids to > different ranges. I tried it by hacking the required files into my > etc-directory and it works; guix no long kills my database containers. > > I'd like to add this feature to docker-service-type having a new > configuration option named enable-userns-remap? which introduces a new > user and group (both named dockremap) to do the remapping by adding some > configurable number to the uids and guids of the running container. In > /etc/subuid and /etc/subgid it would look like: > > dockremap:100000:65536 > > See https://docs.docker.com/engine/security/userns-remap/ for > documentation about this. > > WDYT? > > Cheers, > Remco The rootless podman example that was shared a few months ago could be relevant to this, since that also adds a subuid/subgid mapping.
bug-guix@HIDDEN:bug#55358; Package guix.
Full text available.Received: (at 55358) by debbugs.gnu.org; 19 May 2023 15:51:07 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Fri May 19 11:51:07 2023 Received: from localhost ([127.0.0.1]:57205 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1q02Nm-0001fN-Jx for submit <at> debbugs.gnu.org; Fri, 19 May 2023 11:51:07 -0400 Received: from wout3-smtp.messagingengine.com ([64.147.123.19]:37147) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <remco@HIDDEN>) id 1q02Nk-0001eF-Eu for 55358 <at> debbugs.gnu.org; Fri, 19 May 2023 11:51:05 -0400 Received: from compute4.internal (compute4.nyi.internal [10.202.2.44]) by mailout.west.internal (Postfix) with ESMTP id 1549B3200909; Fri, 19 May 2023 11:50:58 -0400 (EDT) Received: from mailfrontend1 ([10.202.2.162]) by compute4.internal (MEProxy); Fri, 19 May 2023 11:50:58 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=remworks.net; h= cc:cc:content-type:content-type:date:date:from:from:in-reply-to :in-reply-to:message-id:mime-version:references:reply-to:sender :subject:subject:to:to; s=fm3; t=1684511457; x=1684597857; bh=rJ Rzx1Gl3VTBb7SXYGoXFc+pgPYeksTMBswG4Qk8Afo=; b=S86rLJlJEjJi1ecqhm oSzSLTyUOPORoYzwYWLS9kYf2/fT6L90FVzziBYDQPkePjKTGXulWJK2TqsaXSCW Q/UDEb9SZ1tL7AZcTXwuEKROvZaJy+Xe19+S1sQ76CRz55qb/dhiuE8NC/Gm/Iij T3tfhOkPs+WIRDp81hY/a5pzDT0HYMofGVnCEHZEH9z52rvmF3OYVnyovHbKsCrc D6nucCWHYMuVENeNqnx/ZH+nB3rPxzQb8pX+HyLFyjSeBTT001fQf79ZcsYc8mJo kiZi7RrG4jWVNuKM0JurBPyNn/kLNuVsLqDNJYJUQPPHhw2Rt259B/IY5Q5Y+JF/ wXHA== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-type:content-type:date:date :feedback-id:feedback-id:from:from:in-reply-to:in-reply-to :message-id:mime-version:references:reply-to:sender:subject :subject:to:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm1; t=1684511457; x=1684597857; bh=rJRzx1Gl3VTBb 7SXYGoXFc+pgPYeksTMBswG4Qk8Afo=; b=PdAiQm97GKiRaP5kPHUsxanOPxi0i ZHQ2GhSeVZIEnpGEVZptO8CvSzqpRGQvaK9jiy3U5MzN0EgJcLM9RhKqexQ/0Fdm SRKNJYzXuALLCLMKWCXcBra1kWxRQ6LdDXuK4bP7HZvZtZu6W10a0+NOYsi1CTH5 rKTBG/2+iPvU0xoA8xkzI9PJi0GX6Weh12egrbwGVX0IJWjcpFemxKj+mmQWnmlb KRV+02gMrTA88Ai172y2Terid6CP6tWBZb5yyckpfsgCw9FL+5+5VQD04nYEKryJ HNd4CSnnlZiAz9//wgRZyfQS+vJ7p3Uj8DuLqIS5lqAwep2qEg5gADRyg== X-ME-Sender: <xms:4ZpnZInGfra5W_KvqMpQcEXUbvZ8-qUiclL6FKqCyEZTqLuxpN8kvw> <xme:4ZpnZH26m7ZUZoA3k2WXksI6EVS_yX-Av7tpUnH4kmmKFzt01GDY6t6hhqQuEbV3B ysDMlDRyo97gMoiig> X-ME-Received: <xmr:4ZpnZGoNd_Ib1DA5tK3eDoANBSd575kCX_tBTxd-iCMxUUkyTR6DuO9jfOIlcM0cycS70xFjob14FEspY5iE4Zgma7-m4Z2O9QYByn7Ay2Y> X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvhedrfeeihedgleegucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurhepfhgfhffvvefujgffkfggtgesthdtredttdertdenucfhrhhomheptfgvmhgt ohcuvhgrnhcukdhtucggvggvrhcuoehrvghmtghosehrvghmfihorhhkshdrnhgvtheqne cuggftrfgrthhtvghrnheptdduveehgfeukeejtdelvdeuudfgfeevvdefkeejffekvddt udfgieeuudfgueegnecuffhomhgrihhnpegtohhnthgrihhnvghrrdhinhdpughotghkvg hrrdgtohhmpdhgnhhurdhorhhgnecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghm pehmrghilhhfrhhomheprhgvmhgtohesrhgvmhifohhrkhhsrdhnvght X-ME-Proxy: <xmx:4ZpnZEleWcFTz1KkJHcuLR3QBar04ypJ8Tru0-n8yLFdFjgyeS96vA> <xmx:4ZpnZG1_UhOcDQiLrkgda2jTu4si4uCL9guFHYwLYu-CZiZ1OJmHZw> <xmx:4ZpnZLvL_tdO7S2jq1Q2HkKLaIRRGfUBRlHuweROMzACkHCFy5uJkw> <xmx:4ZpnZEAtU5VblI6te4iZCtpF5ZihSi6Mn0JzqOpEsdOBqjkxMBIQfQ> Feedback-ID: i7e59465b:Fastmail Received: by mail.messagingengine.com (Postfix) with ESMTPA; Fri, 19 May 2023 11:50:56 -0400 (EDT) References: <87ilqch79l.fsf@HIDDEN> <87mtde8mrr.fsf@HIDDEN> <87h73m9z3f.fsf@HIDDEN> <875ycb6n3w.fsf@HIDDEN> User-agent: mu4e 1.10.2; emacs 28.2 From: Remco van 't Veer <remco@HIDDEN> To: 55358 <at> debbugs.gnu.org Subject: Re: bug#55358: docker containers stopped when doing guix install or guix shell In-reply-to: <875ycb6n3w.fsf@HIDDEN> Date: Fri, 19 May 2023 17:50:54 +0200 Message-ID: <878rdk8gm9.fsf@HIDDEN> MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: -0.7 (/) X-Debbugs-Envelope-To: 55358 Cc: guix-devel@HIDDEN, Maxim Cournoyer <maxim.cournoyer@HIDDEN>, zimoun <zimon.toutoune@HIDDEN> X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -1.7 (-) Hi Maxim and Zimoun, 2023/02/09 13:26, Remco van 't Veer: > I think I know what is causing the issue. Both the "standard" mysql and > postgres containers use user-id 999 to run the database service (this > seems like a common practice because the redis container is configured > similarly). That user-id is also configured as guixbuilder01 so I guess > the guix daemon is killing those when processes when it finishes doing > builds. I found a solution / workaround for this problem by using "userns-remap". This feature allows the remapping of uids and guids to different ranges. I tried it by hacking the required files into my etc-directory and it works; guix no long kills my database containers. I'd like to add this feature to docker-service-type having a new configuration option named enable-userns-remap? which introduces a new user and group (both named dockremap) to do the remapping by adding some configurable number to the uids and guids of the running container. In /etc/subuid and /etc/subgid it would look like: dockremap:100000:65536 See https://docs.docker.com/engine/security/userns-remap/ for documentation about this. WDYT? Cheers, Remco -- https://debbugs.gnu.org/cgi/bugreport.cgi?bug=55358
bug-guix@HIDDEN:bug#55358; Package guix.
Full text available.
Received: (at 55358) by debbugs.gnu.org; 9 Feb 2023 12:26:55 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Thu Feb 09 07:26:55 2023
Received: from localhost ([127.0.0.1]:57789 helo=debbugs.gnu.org)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
id 1pQ60s-0006IC-Ls
for submit <at> debbugs.gnu.org; Thu, 09 Feb 2023 07:26:55 -0500
Received: from out4-smtp.messagingengine.com ([66.111.4.28]:40105)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <remco@HIDDEN>) id 1pQ60q-0006Hy-CF
for 55358 <at> debbugs.gnu.org; Thu, 09 Feb 2023 07:26:53 -0500
Received: from compute2.internal (compute2.nyi.internal [10.202.2.46])
by mailout.nyi.internal (Postfix) with ESMTP id F16295C007D;
Thu, 9 Feb 2023 07:26:46 -0500 (EST)
Received: from mailfrontend1 ([10.202.2.162])
by compute2.internal (MEProxy); Thu, 09 Feb 2023 07:26:46 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=remworks.net; h=
cc:cc:content-transfer-encoding:content-type:date:date:from:from
:in-reply-to:in-reply-to:message-id:mime-version:references
:reply-to:sender:subject:subject:to:to; s=fm3; t=1675945606; x=
1676032006; bh=V9cpWk88+UXVw8tRRojYSrTJRogDIWeGynNGDsI0vjA=; b=Y
MUI3eZloRzHMHiDS9CehzqSKFLBeFzrkObl8sKxx3Hk0N7ivyNXaAjIreqSmWs3+
kMOwwZMkfIiJcGd8POzU8PSF/9yFmq5JhjT51ndlrHQCtDvDNFAU++ULpTqHbQo7
9D1nHaikP2dUCj8o91qTgi/4BkRFjBwh7bsxJm5xKm+hR2bAzSwZueDT26LOP90b
/fek80aCdxwnutHSaSRD8H8CX+rTe3R/lvnjVkh+xsStwmtwXk619hSIL0WcqtNV
YImmhZ6xDMj3sjPayqydeEuTRkQNhIe4Dy4N+MzvHPDooXU9fQ0/44FFe3FNy+Fb
p1YKQy1mHVlx98dTvTw0Q==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=
messagingengine.com; h=cc:cc:content-transfer-encoding
:content-type:date:date:feedback-id:feedback-id:from:from
:in-reply-to:in-reply-to:message-id:mime-version:references
:reply-to:sender:subject:subject:to:to:x-me-proxy:x-me-proxy
:x-me-sender:x-me-sender:x-sasl-enc; s=fm1; t=1675945606; x=
1676032006; bh=V9cpWk88+UXVw8tRRojYSrTJRogDIWeGynNGDsI0vjA=; b=c
WIsXbqqAZPC2e9Z9u6TQshK+GVC5eI504UHd/XP/K/GQn1RnwzLu7NAkF9EiykS9
hhShT+x2qZQq+uuiFPc8lUIbZt5ZVRZnrthw3s7HIEA2lXdKOy+DkAjKRtvL5FVh
/AToHCFNkHcxJpwkz4NTaxRQgPUlnz7HaMLUCwPTsF9rdeL9Tm2GVW5BYUdLM6I1
WkMVLQzgg/S+kXW0ar+7496UT1UHkLjkrdweYXPFSqneMc1fBEGmuLPnmTNexEOM
vTAyVgiF7HjFbjfIGWp5h2eQVNVQhkR8Irr4gZUX3y+Pq9NZLulRm/Ar5zGhU38R
Eifp1MUeY9Yf+MlT4hIpg==
X-ME-Sender: <xms:hubkY-8FCY9kR5aWnEKBTUXDlS-_dW1-Twp7gjXguo12yIbBhq7mQQ>
<xme:hubkY-tcdgR-QRETjlPQYraBYDkhMY1SOf11lJXYopSCuL0L_6CgVJP68DOuYtsdW
e4a-mlNDPeC0rphmg>
X-ME-Received: <xmr:hubkY0AK5adrTtuGJkx3gP2fzDW-rTQ8QAG_5B4DKKgW6PXJz-zjX5_HML7UH-uW2UJSa8vnDvwTCWtz1560njmNHQNc-RYnWIx6NbElGgM>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvhedrudehfedgfeekucetufdoteggodetrfdotf
fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen
uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne
cujfgurhepfhgfhffvvefujgffkfggtgfgsehtqhertddtreejnecuhfhrohhmpeftvghm
tghouchvrghnucdkthcugggvvghruceorhgvmhgtohesrhgvmhifohhrkhhsrdhnvghtqe
enucggtffrrghtthgvrhhnpeehvdffteetffdtheekgfegjeffvdfhvddugeeffffggffg
keeivdekleefvdfggeenucffohhmrghinhepghhnuhdrohhrghenucevlhhushhtvghruf
hiiigvpedtnecurfgrrhgrmhepmhgrihhlfhhrohhmpehrvghmtghosehrvghmfihorhhk
shdrnhgvth
X-ME-Proxy: <xmx:hubkY2dJnnt_JgnP7QahaZ7eICTCOs2IRvKJAraUV9hqfHsVfxeQQg>
<xmx:hubkYzOPjxF1pTQF_G8aRfDkn8XYIg9mI5jNjCv84p-sX7XIRJDA5w>
<xmx:hubkYwlnsjIYS8xawH9DcV_nf0LbjqMOK2EW7QvWVRH1nMUIQ8XfgA>
<xmx:hubkY516OO_CJ0-5irXbv0TdIqUdl9bIE2CXOnAANq5eOEtQxHhzKQ>
Feedback-ID: i568842cc:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Thu,
9 Feb 2023 07:26:46 -0500 (EST)
References: <87ilqch79l.fsf@HIDDEN> <87mtde8mrr.fsf@HIDDEN>
<87h73m9z3f.fsf@HIDDEN>
User-agent: mu4e 1.8.13; emacs 28.2
From: Remco van 't Veer <remco@HIDDEN>
To: Maxim Cournoyer <maxim.cournoyer@HIDDEN>
Subject: Re: bug#55358: docker containers stopped when doing guix install or
guix shell
In-reply-to: <87h73m9z3f.fsf@HIDDEN>
Date: Thu, 09 Feb 2023 13:26:43 +0100
Message-ID: <875ycb6n3w.fsf@HIDDEN>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
X-Spam-Score: -0.7 (/)
X-Debbugs-Envelope-To: 55358
Cc: 55358 <at> debbugs.gnu.org, zimoun <zimon.toutoune@HIDDEN>
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -1.7 (-)
I think I know what is causing the issue. Both the "standard" mysql and
postgres containers use user-id 999 to run the database service (this
seems like a common practice because the redis container is configured
similarly). That user-id is also configured as guixbuilder01 so I guess
the guix daemon is killing those when processes when it finishes doing
builds.
Does that make sense? If so can guix daemon be fixed to be a tad more
gentile to the processes not spawned on its behalf?
2022/07/12 16:37, Remco van 't Veer:
> 2022/07/12 09:48, Maxim Cournoyer:
>
>> Hi,
>>
>> Remco van 't Veer <remco@HIDDEN> writes:
>>
>>> On a Guix system host, some running docker containers are stopped when
>>> doing guix install or other guix operations like shell. I noticed this
>>> happing to mysql and postgres containers but an elasticsearch container
>>> just keeps running.
>>>
>>> Here's an example session:
>>>
>>> $ docker ps
>>> CONTAINER ID IMAGE COMMAND CREATED =
STATUS PORTS NAMES
>>> $ docker run -d postgres:10.10
>>> ..
>>> 2b52ee072b1f5584cae597afb033cdcc0e560bbe9145b17b41502c204034e60b
>>> $ docker ps
>>> CONTAINER ID IMAGE COMMAND CREATED =
STATUS PORTS NAMES
>>> 2b52ee072b1f postgres:10.10 "docker-entrypoint.s=E2=80=A6" 2 secon=
ds ago Up 1 seconds 5432/tcp blah_blah
>>> $ guix shell xeyes -- xeyes
>>> substitute: updating substitutes from 'https://ci.guix.gnu.org'... 10=
0.0%
>>> 0.0 MB will be downloaded
>>> xeyes-1.1.2 11KiB =
613KiB/s 00:00 [##################] 100.0%
>>> The following derivation will be built:
>>> /gnu/store/xc002hxl4g8mskqmpm0grsk8s45m91gz-profile.drv
>>>
>>> applying 4 grafts for xeyes-1.1.2 ...
>>> building CA certificate bundle...
>>> listing Emacs sub-directories...
>>> building fonts directory...
>>> building directory of Info manuals...
>>> building profile with 1 package...
>>> $ docker ps
>>> CONTAINER ID IMAGE COMMAND CREATED =
STATUS PORTS NAMES
>>> $ exit
>>>
>>> First we see no docker containers are running, then we start postgres-10
>>> from docker hub, we see its container is running, then we do something
>>> using guix-shell on an application *not already available on this
>>> system*, and now the container died. This does not work the second time
>>> when the "derivation" is already "built".
>>
>> Are you still able to reproduce this using the new version of docker
>> packaged in Guix?
>
> Yes, same problem after a guix pull and guix system reconfigure just now.
>
> $ guix describe
> Generation 72 Jul 12 2022 16:11:38 (current)
> guix 9173cb5
> repository URL: https://git.savannah.gnu.org/git/guix.git
> branch: master
> commit: 9173cb522ddc4f31f21948cee3fb214fd67ef616
>
> Cheers,
> Remco
bug-guix@HIDDEN:bug#55358; Package guix.
Full text available.
Received: (at 55358) by debbugs.gnu.org; 12 Jul 2022 14:37:24 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Tue Jul 12 10:37:24 2022
Received: from localhost ([127.0.0.1]:43408 helo=debbugs.gnu.org)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
id 1oBH0u-0002jC-Fp
for submit <at> debbugs.gnu.org; Tue, 12 Jul 2022 10:37:24 -0400
Received: from out4-smtp.messagingengine.com ([66.111.4.28]:51579)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <remco@HIDDEN>) id 1oBH0s-0002iy-Cq
for 55358 <at> debbugs.gnu.org; Tue, 12 Jul 2022 10:37:23 -0400
Received: from compute5.internal (compute5.nyi.internal [10.202.2.45])
by mailout.nyi.internal (Postfix) with ESMTP id 32DF85C0136;
Tue, 12 Jul 2022 10:37:15 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162])
by compute5.internal (MEProxy); Tue, 12 Jul 2022 10:37:15 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=remworks.net; h=
cc:cc:content-transfer-encoding:content-type:date:date:from:from
:in-reply-to:in-reply-to:message-id:mime-version:references
:reply-to:sender:subject:subject:to:to; s=fm2; t=1657636635; x=
1657723035; bh=xEMRWMh9/iBcQyrjb6nYU1LRHhTJAI7P+p6QomdQ1wk=; b=R
mypFoG39GySqgxWaB3JJzyZFL08C1wu3XyCvgiuRGbN5JcxegLKeTZ1dCv7sTPW7
+dr1t6nFCyHNfTw1nSxUXBthm6EhC4g0px831DSu6rcMTbSpwGSacRUkZmZ2ezBV
7GSUtRAeILi9rYHvnTAhLSPp0q+hNw8YkCC4LBIyDvrmEbZMmOdce2oBO5kYKqD1
hAXJ42IN9S4rWt02bqAjhyZ8DAF4DPGyieNswEMfPjpMjDL7ZpFwax+RQAu9mzAp
/brIfNENhzdXYwd0GtOjrTZdbGBq9D9kb+LWKx5Ii8H4FcDwTRj0Xe4d9IGwzvfA
/0K2dvZwBzlLEE+ZW00Tw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=
messagingengine.com; h=cc:cc:content-transfer-encoding
:content-type:date:date:feedback-id:feedback-id:from:from
:in-reply-to:in-reply-to:message-id:mime-version:references
:reply-to:sender:subject:subject:to:to:x-me-proxy:x-me-proxy
:x-me-sender:x-me-sender:x-sasl-enc; s=fm3; t=1657636635; x=
1657723035; bh=xEMRWMh9/iBcQyrjb6nYU1LRHhTJAI7P+p6QomdQ1wk=; b=C
SPSLUUN9BKrD6u9HGfdF+8OSd/kddFFgPedoLf07ZUhKt0ETeIR8Lxo/KkY4v25z
7HhSyBr801TOXYQ1CkhivhEQxqRQtyoafU9kSa/r1H1jfNF6C1IJ/rnc2ScA0CZt
7ou5FoSas/Jc9eeYK/W54SD/B9/C47fMMLKDTz6YCJpFWEtapnuT/i8tPPVyJV/t
/oEVl3VIeAWR4Jrj2fCkaiqJO/odmceEDl6b1+X3iFBC5PftZ4Ap8i8NmzE2yPKT
lyVjTXC/aqgVMxyHa8wolEGlRoCYknrJjP9u0gADhciZIIK50sRFp6gj82vo8MM8
S1kjCb7PE6g62H2NcG4qw==
X-ME-Sender: <xms:GofNYnOq1IP7vrKdF3KV97UQ7unUErEftmqhUwcNwaSEBPqdEDo9qg>
<xme:GofNYh8BqlZ4okAKPrUsd_w0eiNpyjz7IgcrPyBFq8p9jZPdsG53Yv-bj459JrOvw
IDAxBmZg9p16CeZhw>
X-ME-Received: <xmr:GofNYmSsWIVzlMQUqpEbjaCs4KuMu8VHhTvi8oP9P9Jd9DXQUVWwq9GGEObqQLoNfV4NpLQVI2CxNkEaFWlNyVGtT_z9h5qFzAtPjfAQXgs>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvfedrudejhedgjeekucetufdoteggodetrfdotf
fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen
uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne
cujfgurhepfhgfhffvvefujgffkfggtgfgsehtqhertddtreejnecuhfhrohhmpeftvghm
tghouchvrghnucdkthcugggvvghruceorhgvmhgtohesrhgvmhifohhrkhhsrdhnvghtqe
enucggtffrrghtthgvrhhnpeehvdffteetffdtheekgfegjeffvdfhvddugeeffffggffg
keeivdekleefvdfggeenucffohhmrghinhepghhnuhdrohhrghenucevlhhushhtvghruf
hiiigvpedtnecurfgrrhgrmhepmhgrihhlfhhrohhmpehrvghmtghosehrvghmfihorhhk
shdrnhgvth
X-ME-Proxy: <xmx:GofNYruqtloADAgvDxuqpzOBBYvWBlKwUeS717rgxYIyhAU9hiAQog>
<xmx:GofNYvd30of-N_jWyHK90Z7X9YiSdilxBv3hZ84ClwN2cdDOGcxgIA>
<xmx:GofNYn2a_zaTzBBNpeioGbRw7X0hC1u5CA1azj1msVjvMmuCiN9pnA>
<xmx:G4fNYnEy9BIX6lt0KqRsbnN5Md8951y3hreybjG88FllQBso_N08Qg>
Feedback-ID: i568842cc:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Tue,
12 Jul 2022 10:37:14 -0400 (EDT)
References: <87ilqch79l.fsf@HIDDEN> <87mtde8mrr.fsf@HIDDEN>
User-agent: mu4e 1.6.11; emacs 28.1
From: Remco van 't Veer <remco@HIDDEN>
To: Maxim Cournoyer <maxim.cournoyer@HIDDEN>
Subject: Re: bug#55358: docker containers stopped when doing guix install or
guix shell
In-reply-to: <87mtde8mrr.fsf@HIDDEN>
Date: Tue, 12 Jul 2022 16:37:08 +0200
Message-ID: <87h73m9z3f.fsf@HIDDEN>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
X-Spam-Score: -0.7 (/)
X-Debbugs-Envelope-To: 55358
Cc: 55358 <at> debbugs.gnu.org, zimoun <zimon.toutoune@HIDDEN>
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -1.7 (-)
2022/07/12 09:48, Maxim Cournoyer:
> Hi,
>
> Remco van 't Veer <remco@HIDDEN> writes:
>
>> On a Guix system host, some running docker containers are stopped when
>> doing guix install or other guix operations like shell. I noticed this
>> happing to mysql and postgres containers but an elasticsearch container
>> just keeps running.
>>
>> Here's an example session:
>>
>> $ docker ps
>> CONTAINER ID IMAGE COMMAND CREATED =
STATUS PORTS NAMES
>> $ docker run -d postgres:10.10
>> ..
>> 2b52ee072b1f5584cae597afb033cdcc0e560bbe9145b17b41502c204034e60b
>> $ docker ps
>> CONTAINER ID IMAGE COMMAND CREATED =
STATUS PORTS NAMES
>> 2b52ee072b1f postgres:10.10 "docker-entrypoint.s=E2=80=A6" 2 second=
s ago Up 1 seconds 5432/tcp blah_blah
>> $ guix shell xeyes -- xeyes
>> substitute: updating substitutes from 'https://ci.guix.gnu.org'... 100=
.0%
>> 0.0 MB will be downloaded
>> xeyes-1.1.2 11KiB =
613KiB/s 00:00 [##################] 100.0%
>> The following derivation will be built:
>> /gnu/store/xc002hxl4g8mskqmpm0grsk8s45m91gz-profile.drv
>>
>> applying 4 grafts for xeyes-1.1.2 ...
>> building CA certificate bundle...
>> listing Emacs sub-directories...
>> building fonts directory...
>> building directory of Info manuals...
>> building profile with 1 package...
>> $ docker ps
>> CONTAINER ID IMAGE COMMAND CREATED =
STATUS PORTS NAMES
>> $ exit
>>
>> First we see no docker containers are running, then we start postgres-10
>> from docker hub, we see its container is running, then we do something
>> using guix-shell on an application *not already available on this
>> system*, and now the container died. This does not work the second time
>> when the "derivation" is already "built".
>
> Are you still able to reproduce this using the new version of docker
> packaged in Guix?
Yes, same problem after a guix pull and guix system reconfigure just now.
$ guix describe
Generation 72 Jul 12 2022 16:11:38 (current)
guix 9173cb5
repository URL: https://git.savannah.gnu.org/git/guix.git
branch: master
commit: 9173cb522ddc4f31f21948cee3fb214fd67ef616
Cheers,
Remco
bug-guix@HIDDEN:bug#55358; Package guix.
Full text available.
Received: (at 55358) by debbugs.gnu.org; 12 Jul 2022 13:48:49 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Tue Jul 12 09:48:49 2022
Received: from localhost ([127.0.0.1]:42068 helo=debbugs.gnu.org)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
id 1oBGFt-0007GI-0c
for submit <at> debbugs.gnu.org; Tue, 12 Jul 2022 09:48:49 -0400
Received: from mail-qv1-f43.google.com ([209.85.219.43]:37760)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <maxim.cournoyer@HIDDEN>) id 1oBGFr-0007Fq-7K
for 55358 <at> debbugs.gnu.org; Tue, 12 Jul 2022 09:48:47 -0400
Received: by mail-qv1-f43.google.com with SMTP id m10so1307805qvu.4
for <55358 <at> debbugs.gnu.org>; Tue, 12 Jul 2022 06:48:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112;
h=from:to:cc:subject:references:date:in-reply-to:message-id
:user-agent:mime-version:content-transfer-encoding;
bh=8gcO2B/XDxQLW6u/AJJxIVJz/rpn2kb9Tn/JCPt3KQw=;
b=hvRkTrzQaB6xWszFwRXytiuWVua+porQUw9D6adfBrkHZd524WU/itfq9WXQEcatq1
kI940nzj3/2nBR13tkmvK9AO/DtEg3aoqvB7iJczmx0dk78F9DoGeOrYGS/ojBtmM6k/
9EAMC38bl2S0g+yj156KIcKZ4DXhFyaSLoANwEydM1p2QPn7Sxf1tnaD3APZ4K3cJiND
JnFr+BY0F0mbnsxhA9GGYsbuyxR53eIdpg68sqmwtxYFjpbOimd1b5HbnEiKOdAlRMCA
kjaIpRgl0ZQUkXT1zVAhZ+vxPDwEkaxedRRqwSJSDeFl2kieIz0QAdT6EpH0FlCU+3GL
QsBA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20210112;
h=x-gm-message-state:from:to:cc:subject:references:date:in-reply-to
:message-id:user-agent:mime-version:content-transfer-encoding;
bh=8gcO2B/XDxQLW6u/AJJxIVJz/rpn2kb9Tn/JCPt3KQw=;
b=FFxmlJkBVnRg+yU0SanbGXfSASBepFqI3uSexJYEh180CHNXm+ww9rhgfgzMmxeglc
T5LrZ121Lsh7L0jmt3oM3wYUVeJJs8ffsEZ/vwk3paUC4I15LPqWNsiLd2KYGDiHMqAV
uZvitRgGWRZvCqmTZEbVuoK5CNPofBSlV32BBjnnkt1S4ARCgW3qrRQDBrtQv3XuHAks
dyBk7+ZeVJFM1gOXq6xoT/aBC1lmXghmWfSLh6QWagg+punIyrQDZlbXoF+ZzcKTU9VC
ZB13rnaibmGjcaGxzDPLrxsrwetgdYy2xQvds5JmFBmT3CtmHt7uVuCHobC99KN4vpCd
XZ7g==
X-Gm-Message-State: AJIora+NpO5OEnQwgs8O18wNMSZpjeRzp2wFz1K/+dIgzQsf30XZBAVn
yIP8Vx/TJN1uCvUa9o+Z637ZvfcHBXhYp8W/
X-Google-Smtp-Source: AGRyM1sSVtzWBGmsvpSVjMP5VHGgfc4/5T+D1HbPzZWPitUNDlhMqz6+ilafGEyEPoS97lZASiNWCw==
X-Received: by 2002:a05:6214:1d08:b0:473:3a2e:588f with SMTP id
e8-20020a0562141d0800b004733a2e588fmr17507377qvd.114.1657633721684;
Tue, 12 Jul 2022 06:48:41 -0700 (PDT)
Received: from hurd (dsl-155-226.b2b2c.ca. [66.158.155.226])
by smtp.gmail.com with ESMTPSA id
7-20020a370307000000b006b47dc92e15sm8820306qkd.36.2022.07.12.06.48.40
(version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
Tue, 12 Jul 2022 06:48:41 -0700 (PDT)
From: Maxim Cournoyer <maxim.cournoyer@HIDDEN>
To: Remco van 't Veer <remco@HIDDEN>
Subject: Re: bug#55358: docker containers stopped when doing guix install or
guix shell
References: <87ilqch79l.fsf@HIDDEN>
Date: Tue, 12 Jul 2022 09:48:40 -0400
In-Reply-To: <87ilqch79l.fsf@HIDDEN> (Remco van t. Veer's message of
"Wed, 11 May 2022 09:12:54 +0200")
Message-ID: <87mtde8mrr.fsf@HIDDEN>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/28.1 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
X-Spam-Score: -0.0 (/)
X-Debbugs-Envelope-To: 55358
Cc: 55358 <at> debbugs.gnu.org, zimoun <zimon.toutoune@HIDDEN>
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -1.0 (-)
Hi,
Remco van 't Veer <remco@HIDDEN> writes:
> On a Guix system host, some running docker containers are stopped when
> doing guix install or other guix operations like shell. I noticed this
> happing to mysql and postgres containers but an elasticsearch container
> just keeps running.
>
> Here's an example session:
>
> $ docker ps
> CONTAINER ID IMAGE COMMAND CREATED =
STATUS PORTS NAMES
> $ docker run -d postgres:10.10
> ..
> 2b52ee072b1f5584cae597afb033cdcc0e560bbe9145b17b41502c204034e60b
> $ docker ps
> CONTAINER ID IMAGE COMMAND CREATED =
STATUS PORTS NAMES
> 2b52ee072b1f postgres:10.10 "docker-entrypoint.s=E2=80=A6" 2 seconds=
ago Up 1 seconds 5432/tcp blah_blah
> $ guix shell xeyes -- xeyes
> substitute: updating substitutes from 'https://ci.guix.gnu.org'... 100.=
0%
> 0.0 MB will be downloaded
> xeyes-1.1.2 11KiB =
613KiB/s 00:00 [##################] 100.0%
> The following derivation will be built:
> /gnu/store/xc002hxl4g8mskqmpm0grsk8s45m91gz-profile.drv
>
> applying 4 grafts for xeyes-1.1.2 ...
> building CA certificate bundle...
> listing Emacs sub-directories...
> building fonts directory...
> building directory of Info manuals...
> building profile with 1 package...
> $ docker ps
> CONTAINER ID IMAGE COMMAND CREATED =
STATUS PORTS NAMES
> $ exit
>
> First we see no docker containers are running, then we start postgres-10
> from docker hub, we see its container is running, then we do something
> using guix-shell on an application *not already available on this
> system*, and now the container died. This does not work the second time
> when the "derivation" is already "built".
Are you still able to reproduce this using the new version of docker
packaged in Guix?
Thanks,
Maxim
bug-guix@HIDDEN:bug#55358; Package guix.
Full text available.
Received: (at submit) by debbugs.gnu.org; 11 May 2022 07:13:06 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Wed May 11 03:13:06 2022
Received: from localhost ([127.0.0.1]:35826 helo=debbugs.gnu.org)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
id 1nogWw-0005gg-G2
for submit <at> debbugs.gnu.org; Wed, 11 May 2022 03:13:06 -0400
Received: from lists.gnu.org ([209.51.188.17]:51520)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <remco@HIDDEN>) id 1nogWu-0005gY-QT
for submit <at> debbugs.gnu.org; Wed, 11 May 2022 03:13:05 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10]:41130)
by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
(Exim 4.90_1) (envelope-from <remco@HIDDEN>)
id 1nogWu-00017Q-K5
for bug-guix@HIDDEN; Wed, 11 May 2022 03:13:04 -0400
Received: from out4-smtp.messagingengine.com ([66.111.4.28]:41135)
by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
(Exim 4.90_1) (envelope-from <remco@HIDDEN>)
id 1nogWq-000321-Ss
for bug-guix@HIDDEN; Wed, 11 May 2022 03:13:02 -0400
Received: from compute5.internal (compute5.nyi.internal [10.202.2.45])
by mailout.nyi.internal (Postfix) with ESMTP id 569C15C00F3;
Wed, 11 May 2022 03:12:57 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162])
by compute5.internal (MEProxy); Wed, 11 May 2022 03:12:57 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=remworks.net; h=
cc:cc:content-transfer-encoding:content-type:date:date:from:from
:in-reply-to:message-id:mime-version:reply-to:sender:subject
:subject:to:to; s=fm3; t=1652253177; x=1652339577; bh=loE5vFK9un
FzlnPdZgbEvMM3cEbsDNmtQsPhkoZZyp4=; b=NJeaST9NfekGnlVdyO2FGPsKdu
EDzlhH4ph453RCPawJEBtLn5JlR9pXUcpvF75tnaYYNGHR3rNTSe2Pju7dFEfhHH
zo+garGvKAaplp0Q7anmAaMZcv3Ro/4Nw6myO3eF4UACD600eQOUAJRquzRRAeTw
1I/2NCHK5OHQUBJ9R/pkIHq5OD0XGyn0NZm6bXOjIliPmSbzLnwG5hOYY6U7ENAE
JfOpXk3gfPRlbrcjtB0ZBzgYy53KgU5arzxdmvzaGM0xKAsMxsB6KP6qY/dyKcq8
x31EHXaA2OziLYdCr1oJ+Qo2bUlGlbm0Z3EZK0DzaSM1yln7LNH8F57rlqnw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=
messagingengine.com; h=cc:cc:content-transfer-encoding
:content-type:date:date:from:from:in-reply-to:message-id
:mime-version:reply-to:sender:subject:subject:to:to:x-me-proxy
:x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm1; t=
1652253177; x=1652339577; bh=loE5vFK9unFzlnPdZgbEvMM3cEbsDNmtQsP
hkoZZyp4=; b=NiA/IcW2L9wr9EHAr0eSwEaTI1Wfh1XNSYWALWPIKOp0KQAxHue
4kRuFCSs11jR+savsrnPlRjB6y6j19G4k+9d6p12vS7EwLiGFe60Cy5n1YT/CF9h
hZbRbUAH6dMA7lYrIg56aT66fQezj3ExtdMQyfsyTI+WXQyoTxiKls5RqdyuZkUD
frjv1faq7bBdq1m1cJEfapWxNnIqSZrND6bhg3k0OnWSkABJcqf4HuIJJfBg3nmY
KHojikMgp/eOVPKSjuwpWlMJfk2KDmebYgrybJLDQFLz7Tz1OJsoWSQwFnrXUnFf
twj6xAd9OG4ReHcL9O0ozkqA/tHYoAlaSUg==
X-ME-Sender: <xms:-GF7YoXujJn8fyk5zbfT-Sb1hQX5PLa6snEAH6F_GcmCR67ExcY3xQ>
<xme:-GF7Ysko33-ppCDuNfkAuN1dPXqNqyYWZnvSEjr2rrAr2ULfbmICbWne_QAh_BzMm
U9bTRlQMUNuOMzk4Q>
X-ME-Received: <xmr:-GF7YsZLVc_llLe5tDMafo9D35SLgUKXlKqvqaHSxcqbC25ycZ5wFPpAw6-7WaykUFvSL6Y4FPNf42y00jFpymyuJ4h2lM_QIYrGjk5bSco>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvfedrgeeggdduudegucetufdoteggodetrfdotf
fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen
uceurghilhhouhhtmecufedttdenucenucfjughrpegfhffvvefufffkgggtgfesthhqre
dttderjeenucfhrhhomheptfgvmhgtohcuvhgrnhcukdhtucggvggvrhcuoehrvghmtgho
sehrvghmfihorhhkshdrnhgvtheqnecuggftrfgrthhtvghrnhepkeevgedujeefhfehle
evtedutdeufffgkeekgedtledtheevteeftddvhedvjeejnecuffhomhgrihhnpehgnhhu
rdhorhhgnecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomh
eprhgvmhgtohesrhgvmhifohhrkhhsrdhnvght
X-ME-Proxy: <xmx:-GF7YnWT0LwZ_amtMR3ehOIzU9FDCGPJjCVApXMCj3EK_9tjVDqRIA>
<xmx:-GF7YimraWuFONrpwg7vxe6KMA5aue-9R2GBRPSwqBNI11HLfTeN1g>
<xmx:-GF7YsdSd4RnWkAHu9nujp9Wpc6Sby5qb10XINOpfzCtPPsekQNlbg>
<xmx:-WF7Ypvb-cmN-vAjYjC3gY33761Gq9nILdAbEiZhzUyzFvZagiTBYQ>
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Wed,
11 May 2022 03:12:56 -0400 (EDT)
User-agent: mu4e 1.6.10; emacs 27.2
From: Remco van 't Veer <remco@HIDDEN>
To: bug-guix@HIDDEN
Subject: docker containers stopped when doing guix install or guix shell
Date: Wed, 11 May 2022 09:12:54 +0200
Message-ID: <87ilqch79l.fsf@HIDDEN>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Received-SPF: pass client-ip=66.111.4.28; envelope-from=remco@HIDDEN;
helo=out4-smtp.messagingengine.com
X-Spam_score_int: -27
X-Spam_score: -2.8
X-Spam_bar: --
X-Spam_report: (-2.8 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1,
DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1,
RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001,
SPF_HELO_PASS=-0.001, SPF_PASS=-0.001,
T_SCC_BODY_TEXT_LINE=-0.01 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-Spam-Score: -1.7 (-)
X-Debbugs-Envelope-To: submit
Cc: zimoun <zimon.toutoune@HIDDEN>
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -2.7 (--)
On a Guix system host, some running docker containers are stopped when
doing guix install or other guix operations like shell. I noticed this
happing to mysql and postgres containers but an elasticsearch container
just keeps running.
Here's an example session:
$ docker ps
CONTAINER ID IMAGE COMMAND CREATED ST=
ATUS PORTS NAMES
$ docker run -d postgres:10.10
..
2b52ee072b1f5584cae597afb033cdcc0e560bbe9145b17b41502c204034e60b
$ docker ps
CONTAINER ID IMAGE COMMAND CREATED ST=
ATUS PORTS NAMES
2b52ee072b1f postgres:10.10 "docker-entrypoint.s=E2=80=A6" 2 seconds a=
go Up 1 seconds 5432/tcp blah_blah
$ guix shell xeyes -- xeyes
substitute: updating substitutes from 'https://ci.guix.gnu.org'... 100.0%
0.0 MB will be downloaded
xeyes-1.1.2 11KiB =
613KiB/s 00:00 [##################] 100.0%
The following derivation will be built:
/gnu/store/xc002hxl4g8mskqmpm0grsk8s45m91gz-profile.drv
applying 4 grafts for xeyes-1.1.2 ...
building CA certificate bundle...
listing Emacs sub-directories...
building fonts directory...
building directory of Info manuals...
building profile with 1 package...
$ docker ps
CONTAINER ID IMAGE COMMAND CREATED ST=
ATUS PORTS NAMES
$ exit
First we see no docker containers are running, then we start postgres-10
from docker hub, we see its container is running, then we do something
using guix-shell on an application *not already available on this
system*, and now the container died. This does not work the second time
when the "derivation" is already "built".
Cheers,
Remco
Remco van 't Veer <remco@HIDDEN>:bug-guix@HIDDEN.
Full text available.bug-guix@HIDDEN:bug#55358; Package guix.
Full text available.
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997 nCipher Corporation Ltd,
1994-97 Ian Jackson.