ilyakooo0/nix-bundle
1
0
Fork 0
mirror of https://github.com/ilyakooo0/nix-bundle.git synced 2024-09-11 06:55:53 +03:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #31 from input-output-hk/unshare-eperm

Browse Source 
give directions on how to fix namespaces when they are disabled
This commit is contained in:
Matthew Justin Bauer 2018-04-04 12:38:10 -05:00 committed by GitHub
commit 496f2b5247
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
nix-user-chroot/main.cpp
View File

@ -112,7 +112,6 @@ int main(int argc, char *argv[]) {
switch (opt) {
case 'c':
clear_env = 1;
puts("clearing env");
break;
case 'n':
// determine absolute directory for nix dir
@ -167,7 +166,12 @@ int main(int argc, char *argv[]) {
// "unshare" into new namespace
if (unshare(CLONE_NEWNS | CLONE_NEWUSER) < 0) {
err_exit("unshare()");
if (errno == EPERM) {
fputs("Run the following as root to enable unprivileged namespace use:\nsysctl -w kernel.unprivileged_userns_clone=1 ; echo kernel.unprivileged_userns_clone=1 > /etc/sysctl.d/nix-user-chroot.conf\n\n", stderr);
exit(EXIT_FAILURE);
} else {
err_exit("unshare()");
}
}
// add necessary system stuff to rootdir namespace