From b1adfeb23d956908a10b0e628790c8cc689defbb Mon Sep 17 00:00:00 2001 From: Luca Bruno Date: Tue, 10 Mar 2015 18:11:25 +0100 Subject: [PATCH] fhs-userenv: Make it work on kernel < 3.19 cc @abbradar It may not be very secure, but I think it's better to make it work with older kernel since 3.19 is not the default on nixos. --- pkgs/build-support/build-fhs-userenv/chroot-user.rb | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/pkgs/build-support/build-fhs-userenv/chroot-user.rb b/pkgs/build-support/build-fhs-userenv/chroot-user.rb index 35608bd3eb6..3e140fac97e 100755 --- a/pkgs/build-support/build-fhs-userenv/chroot-user.rb +++ b/pkgs/build-support/build-fhs-userenv/chroot-user.rb @@ -79,7 +79,11 @@ if $cpid == 0 $unshare.call CLONE_NEWNS | CLONE_NEWUSER # Map users and groups to the parent namespace - write_file '/proc/self/setgroups', 'deny' + begin + # setgroups is only available since Linux 3.19 + write_file '/proc/self/setgroups', 'deny' + rescue + end write_file '/proc/self/uid_map', "#{uid} #{uid} 1" write_file '/proc/self/gid_map', "#{gid} #{gid} 1"