From debbugs-submit-bounces@debbugs.gnu.org Sun Mar 04 17:24:32 2018 Received: (at 30256) by debbugs.gnu.org; 4 Mar 2018 22:24:32 +0000 Received: from localhost ([127.0.0.1]:44789 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1esc3U-0000VR-5q for submit@debbugs.gnu.org; Sun, 04 Mar 2018 17:24:32 -0500 Received: from hera.aquilenet.fr ([185.233.100.1]:33164) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1esc3S-0000VJ-9F for 30256@debbugs.gnu.org; Sun, 04 Mar 2018 17:24:30 -0500 Received: from localhost (localhost [127.0.0.1]) by hera.aquilenet.fr (Postfix) with ESMTP id D040B10A74; Sun, 4 Mar 2018 23:24:29 +0100 (CET) X-Virus-Scanned: Debian amavisd-new at aquilenet.fr Received: from hera.aquilenet.fr ([127.0.0.1]) by localhost (hera.aquilenet.fr [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id K1g1RWz8YyVV; Sun, 4 Mar 2018 23:24:28 +0100 (CET) Received: from ribbon (unknown [IPv6:2a01:e0a:1d:7270:af76:b9b:ca24:c465]) by hera.aquilenet.fr (Postfix) with ESMTPSA id 928B26FF0; Sun, 4 Mar 2018 23:24:28 +0100 (CET) From: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) To: Mike Gerwitz Subject: Re: [bug#30256] [PATCH 3/3] scripts: environment: Add --no-cwd. References: <87vag2wopo.fsf@gnu.org> <7bc71eaa3cff48ec7dc0d4fe406dde9482b716a9.1516937216.git.mtg@gnu.org> <87tvtyhhnd.fsf@gnu.org> <877equgxx7.fsf@gnu.org> <87zi3p9q1w.fsf@gnu.org> <87y3j7btwp.fsf@gnu.org> X-URL: http://www.fdn.fr/~lcourtes/ X-Revolutionary-Date: 14 =?utf-8?Q?Vent=C3=B4se?= an 226 de la =?utf-8?Q?R?= =?utf-8?Q?=C3=A9volution?= X-PGP-Key-ID: 0x090B11993D9AEBB5 X-PGP-Key: http://www.fdn.fr/~lcourtes/ludovic.asc X-PGP-Fingerprint: 3CE4 6455 8A84 FDC6 9DB4 0CFB 090B 1199 3D9A EBB5 X-OS: x86_64-pc-linux-gnu Date: Sun, 04 Mar 2018 23:24:27 +0100 In-Reply-To: <87y3j7btwp.fsf@gnu.org> (Mike Gerwitz's message of "Sun, 04 Mar 2018 13:03:02 -0500") Message-ID: <87tvtv32ec.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: 1.0 (+) X-Debbugs-Envelope-To: 30256 Cc: 30256@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 1.0 (+) Heya, Mike Gerwitz skribis: > On Sat, Mar 03, 2018 at 15:44:43 +0100, Ludovic Court=C3=A8s wrote: [...] >> Sure. I think the issue of least-authority execution of programs >> remains open anway. Do we want a =E2=80=98guix run=E2=80=99-like comman= d? Something in >> the shell, but which shell(s) then? Automatically-generated wrappers so >> we don=E2=80=99t depend on specific shells? > > One thing in particular about using `guix environment --ad-hoc' that is > particularly unfortunate with how I'm abusing it is that it will build > new derivations as necessary (as it is supposed to). So "starting > icecat" in a container isn't just that. I recently upgraded Guix, and > icecat isn't available on Hydra yet, so I'm unable to start icecat at > all until it compiles, which is hours on an X200 (though I'm assuming > that reverting ~/.config/guix/latest might allow me to work around it > temporarily with an old version). This would not have been a problem > with a normal icecat installation in my profile. Right. The =E2=80=98guix run=E2=80=99 script I sent doesn=E2=80=99t try to= build things; it just takes whatever is in $PATH (which has to be in the store, ultimately) and runs it. > Obviously the desirable behavior is to just containerize whatever is in > your profile, if possible. Maybe the script you sent me does just > that. I'm excited to play around with it, I just can't atm. :( You still have to explicitly run =E2=80=98guix run icecat=E2=80=99, which i= sn=E2=80=99t great: if you=E2=80=99re using GNOME Shell and clicking on the icon, you don=E2=80= =99t get to run it in a containerized environment. Ludo=E2=80=99.