>first of all some background. I'm working with Snabb (user-space networking >driver) and we have a special need of running some tests in qemu that >require pci-assign capabilities that can only be done as run. As a result, >we run qemu as root. > >Currently I'm running our tests without chroot (relaxed mode), but I'd like >to go back for determinism and be able to use sudo in chroot builds. > >Has anyone done that yet? Asking not to repeat already done work, my >current plan is trying the following: > >https://github.com/snabblab/snabblab-nixos/issues/33
I would add /var/setuid-wrappers and the sudo store path to the list of chroot directories. You do get some amount of indeterminism in the sense that you use the system sudo instead of buildInput sudo, but I would call that acceptable. _______________________________________________ nix-dev mailing list [email protected] http://lists.science.uu.nl/mailman/listinfo/nix-dev
