Merge pull request #102725 from thefloweringash/dockertools-proc

dockerTools: fix absent /proc during runAsRoot
2021-04-12 14:14:24 +01:00 · 2021-04-12 14:14:24 +01:00 · 65a40ca547
commit 65a40ca547
parent 56d3864ef5 5b82b8d094
1 changed files with 5 additions and 1 deletions
--- a/pkgs/build-support/docker/default.nix
+++ b/pkgs/build-support/docker/default.nix
@ -418,7 +418,11 @@ rec {
        # details on what's going on here; basically this command
        # means that the runAsRootScript will be executed in a nearly
        # completely isolated environment.
-        unshare -imnpuf --mount-proc chroot mnt ${runAsRootScript}
+        #
+        # Ideally we would use --mount-proc=mnt/proc or similar, but this
+        # doesn't work. The workaround is to setup proc after unshare.
+        # See: https://github.com/karelzak/util-linux/issues/648
+        unshare -imnpuf --mount-proc sh -c 'mount --rbind /proc mnt/proc && chroot mnt ${runAsRootScript}'

        # Unmount directories and remove them.
        umount -R mnt/dev mnt/sys mnt${storeDir}