[Nix-dev] error in unpack-bootstrap-tools.sh
Ericson, John
john_ericson at brown.edu
Fri Oct 30 16:56:29 CET 2015
`unshare -urm` should do the trick if you have it. Also check if `man 2
unshare` describes a CLONE_NEWUSR flag. `man 7 user_namespaces` is also a
good resource.
Root has been able to make containers for far longer on Linux, so the
availability of LXC does not mean so much.
Sorry for not CC'ing the list in my initial reply.
John
On Fri, Oct 30, 2015 at 7:41 AM, Matei David <matei at cs.toronto.edu> wrote:
> On Wed, 28 Oct 2015 20:56:18 -0700
> "Ericson, John" <john_ericson at brown.edu> wrote:
>
> > I assume your kernel is too old for this if you are on Debian
> > squeeze, but just in case I am wrong, have you looked at unshare/user
> > namespaces? Basically you can do things the easy way way, and use
> > unshare to give you a new virtual filesystem where you have
> > permission to mount /nix, rather than using proot.
>
> Hi,
>
> Thanks for your suggestion. I checked, and unshare indeed exists. I've
> never used it so I'm not sure how it works. Wouldn't I still need root
> to mount /my-home/nix to /nix?
>
> The unshare man page only mentions mount namespaces, I'm less sure about
> user namespaces, I mean I don't know if they are implemented in the
> squeeze kernel. According to this
> https://wiki.debian.org/LXC
> LXC is supported, but I don't know to what extent. It's definitely not
> installed yet, but I can see a package being available.
>
> I googled a bit but I can't find a relevant howto about these things,
> do you know of any good reference?
>
> Thanks,
> Matei
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.science.uu.nl/pipermail/nix-dev/attachments/20151030/b042766c/attachment.html
More information about the nix-dev
mailing list