[<<][nixos][>>][..]
Tue Oct 22 17:29:56 EDT 2019

Initial

From mdash at #nixos

https://nixos.org/nixpkgs/manual/#sec-fhs-environments
https://github.com/swift-nav/piksi_buildroot/blob/v2.3.0-release/default.nix

To make this work I probably need a clean nixos machine.
Do I have one that still works?

tom@phoo:~$ nix --version
nix (Nix) 2.0.1

copied default.nix from above

tom@phoo:~/git/nixbr$ nix-shell
...

** Message: Requires Linux version >= 3.19 built with CONFIG_USER_NS
** Message: Run: sudo sysctl -w kernel.unprivileged_userns_clone=1

** (process:3605): ERROR **: main: unshare: Operation not permitted
Trace/breakpoint trap
tom@phoo:~/git/nixbr$ 



https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=923747

> 
> This is resolved by adding CONFIG_USER_NS=y to the kernel configuration.

That option is enabled, but the feature is restricted by a sysctl
(kernel.unprivileged_userns_clone) that is off by default.

(The reason for this is discussed at <https://bugs.debian.org/898446>.)

Ben.

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898446



root@zoo:~# sysctl kernel.unprivileged_userns_clone
kernel.unprivileged_userns_clone = 0

root@zoo:~# sysctl kernel.unprivileged_userns_clone=1
kernel.unprivileged_userns_clone = 1

tom@phoo:~/git/nixbr$ nix-shell
(piksi-nix)tom@phoo:~/git/nixbr$ 




[Reply][About]
[<<][nixos][>>][..]