public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #102725 from thefloweringash/dockertools-proc

Browse Source 
dockerTools: fix absent /proc during runAsRoot
This commit is contained in:
Jörg Thalheim 2021-04-12 14:14:24 +01:00 committed by GitHub
commit 65a40ca547
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
pkgs/build-support/docker/default.nix
View File

@ -418,7 +418,11 @@ rec {
# details on what's going on here; basically this command # details on what's going on here; basically this command
# means that the runAsRootScript will be executed in a nearly # means that the runAsRootScript will be executed in a nearly
# completely isolated environment. # completely isolated environment.
unshare -imnpuf --mount-proc chroot mnt ${runAsRootScript} #
# Ideally we would use --mount-proc=mnt/proc or similar, but this
# doesn't work. The workaround is to setup proc after unshare.
# See: https://github.com/karelzak/util-linux/issues/648
unshare -imnpuf --mount-proc sh -c 'mount --rbind /proc mnt/proc && chroot mnt ${runAsRootScript}'
# Unmount directories and remove them. # Unmount directories and remove them.
umount -R mnt/dev mnt/sys mnt${storeDir} umount -R mnt/dev mnt/sys mnt${storeDir}