nix 2.0?

Question

nix 2.0?

Closed this issue 7 years ago · 13 comments

This could need an update.

Answer 1 · 2018-03-13T23:54:54.000Z

I ran into some kind of problem with nix-env, didn't look into it any further yet.

building '/nix/store/gn4yxdxzzw6qvmrwfbbd1ql6bv3prsmv-user-environment.drv'...
while setting up the build environment: executing '/nix/store/lg0s7z1bvj2chimz3a4qax3y8ssw45m3-nix-2.0/libexec/nix/buildenv': Permission denied
builder for '/nix/store/gn4yxdxzzw6qvmrwfbbd1ql6bv3prsmv-user-environment.drv' failed with exit code 1
error: build of '/nix/store/gn4yxdxzzw6qvmrwfbbd1ql6bv3prsmv-user-environment.drv' failed

Answer 2 · 2018-03-22T21:20:56.000Z

This looks pretty suspicious to me, but I'm not sure where to go from there.

[pid 13227] seccomp(SECCOMP_SET_MODE_STRICT, 1, NULL) = -1 EINVAL (Invalid argument)

https://gist.github.com/LnL7/e6b613f4016a60c3c478d4c078af8212#file-gistfile1-txt-L27

Answer 3 · 2018-03-22T21:24:50.000Z

@LnL7 do you have branch for, I could try this? I am pretty familiar with linux os sandboxing internals.

Answer 4 · 2018-03-22T21:28:15.000Z

nix-wip or do you want an image?

Answer 5 · 2018-03-22T21:28:42.000Z

that should be ok.

Answer 6 · 2018-03-22T21:35:28.000Z

@LnL7 do your run docker on nixos? Do you have any non-standard options?

Answer 7 · 2018-03-22T21:37:25.000Z

Or does your error happen during docker build?

Answer 8 · 2018-03-22T21:38:37.000Z

Dockerfiles are also working for me.

Answer 9 · 2018-03-22T21:38:52.000Z

Ah, no. Now I can reproduce it.

Answer 10 · 2018-03-22T21:39:27.000Z

Let's get swifty: https://github.com/Mic92/cntr :)

Answer 11 · 2018-03-22T21:48:26.000Z

I first guessed it was a special syscall filter being applied during docker build. But I get the same error when using cntr, so it must be something else. I will digger deeper.

Answer 12 · 2018-03-22T21:53:56.000Z

That seccomp error is not the actual problem.

Answer 13 · 2018-03-23T17:52:13.000Z

Thanks for the help with debugging!