Ricardo Wurmus skribis:
> Marek Felšöci writes:
>
>> I get an access denied error on the ".guix/channels.scm" file which I
>> own and have access to.
>>
>> I tried to play around with the AppArmor profile, but with no
>> success. Are we still missing something?
>
> Do you see any relevant inform
Marek Felšöci writes:
> I get an access denied error on the ".guix/channels.scm" file which I
> own and have access to.
>
> I tried to play around with the AppArmor profile, but with no
> success. Are we still missing something?
Do you see any relevant information in the AppArmor logs?
I'm not
Hello!
Thank you for taking time with this issue.
After loading the AppArmor profile from your message, I am able to execute “guix
shell -C hello”.
However, when trying to combine the "shell" command with the "time-machine"
command, like so:
"guix time-machine --channels=.guix/channels.scm
Hello!
I believe the attached AppArmor profile should work. You need to:
1. Drop it in /etc/apparmor.d/guix (it’s actually not specific to
‘guix shell -C’ since it matches any ‘guix’ command!).
2. Run “apparmor_parser -rv /etc/apparmor.d/guix”.
And then you can check “guix build whate
Hi Ludovic!
I ran the following Guix command
```
guix shell -C bash -- bash
```
and got these two entries in `dmesg` log.
```
[46999.292835] audit: type=1400 audit(1736460233.024:325): apparmor="AUDIT"
operation="userns_create" class="namespace" info="Userns create - transitioning
profile" pr
Hi Marek!
Marek Felšöci skribis:
> I confirm the issue on my Ubuntu 24.04 installation with Guix coming
> from apt repositories.
>
> I followed the steps from the Ricardo's reply, but the problem
> persists with the same error:
>
> ```
> guix shell: chyba: mount: mount "none" on
> "/tmp/guix-dir
Hello to all,
I confirm the issue on my Ubuntu 24.04 installation with Guix coming from apt
repositories.
I followed the steps from the Ricardo's reply, but the problem persists with the
same error:
```
guix shell: chyba: mount: mount "none" on "/tmp/guix-directory.DFemEr": Prístup
odmietn
On Ubuntu 24.04 I created /etc/apparmor.d/guix-shell-container with the
following contents:
--8<---cut here---start->8---
abi ,
include
/gnu/store/*-guix-*/bin/guix flags=(attach_disconnected) {
include
include
include
capability net_admin, # for
On Ubuntu 24.04, ‘guix shell -C’ has its child process (in a separate
mount namespace) fail to mount a tmpfs:
--8<---cut here---start->8---
294642 clone(child_stack=NULL,
flags=CLONE_NEWNS|CLONE_NEWCGROUP|CLONE_NEWUTS|CLONE_NEWIPC|CLONE_NEWUSER|CLONE_NEWPID|CLO
