[Nix-dev] Impossible to use Nix + fetchgit on any Linux configured with LDAP authentication /libnss_sss
Eelco Dolstra
eelco.dolstra at logicblox.com
Tue Jun 23 15:38:53 CEST 2015
Hi,
On 23/06/15 14:50, Adrien Devresse wrote:
>> If possible, you could also enable chroot builds. It might be possible to
>> override /etc/nsswitch.conf in the chroot by setting the Nix option
>> "build-chroot-dirs = /etc/nsswitch.conf=/path/to/my-nsswitch.conf" (where
>> my-nsswitch.conf doesn't contain libnss_nss). However, looking at the code, it
>> may not be possible to override /etc/nsswitch.conf at the moment, but fixing
>> that wouldn't be hard.
>
> Would this work as a non-root user ?
No, you need to be root to do chroot builds.
> If the current user is an LDAP-referenced user, this will cause a
> failure too even if sss is not configured through /etc/nsswitch.conf
The user inside the chroot is always called "nixbld" and has an entry in the
chroot's /etc/passwd file, so looking up that user would not require LDAP lookups.
--
Eelco Dolstra | LogicBlox, Inc. | http://nixos.org/~eelco/
More information about the nix-dev
mailing list