e0d3bc292c
The problem with stacking chrootenv before was that CLONE_NEWUSER cannot be used when a child uses chroot. So instead of that we use pivot_root which replaces root in the whole namespace. This requires our new root to be an actual fs so we mount tmpfs. |
||
---|---|---|
.. | ||
chrootenv | ||
default.nix | ||
env.nix |