Find a file
Adam Joseph 90830b1074 local-derivation-goal.cc: warn if failing due to max_user_namespaces==0
This commit uses `warn()` to notify the user if sandbox setup fails
with errno==EPERM and /proc/sys/user/max_user_namespaces is missing or
zero, since that is at least part of the reason why sandbox setup
failed.

Note that `echo -n 0 > /proc/sys/user/max_user_namespaces` or
equivalent at boot time has been the recommended mitigation for
several Linux LPE vulnerabilities over the past few years.  Many users
have applied this mitigation and then forgotten that they have done
so.
2022-07-16 19:30:53 -07:00
.github update stale bot per RFC 0124 2022-07-10 16:50:49 -07:00
config Run autoupdate 2021-06-01 11:42:38 +02:00
contrib function-trace: always show the trace 2019-09-18 23:23:21 +02:00
doc/manual Branch 2.10 release notes 2022-07-11 21:10:23 +02:00
m4 autoconf: Fix C++17 detection not working on Ubuntu 16.04. 2019-07-03 04:32:25 +02:00
maintainers Integrate push-docker.sh into the release script 2022-02-18 13:58:01 +01:00
misc nix-daemon.service: sync LimitNOFILE with the nixos service 2022-05-19 21:16:07 +03:00
mk Fix incremental static builds 2022-06-22 17:53:58 +02:00
perl Remove std::string alias (for real this time) 2022-02-25 16:13:02 +01:00
scripts Fix --no-daemon installation 2022-07-12 16:15:21 +02:00
src local-derivation-goal.cc: warn if failing due to max_user_namespaces==0 2022-07-16 19:30:53 -07:00
tests On test failures, print a bash stack trace 2022-07-14 15:07:19 +02:00
.dir-locals.el .dir-locals.el: Set c-block-comment-prefix 2020-07-10 11:21:06 +02:00
.editorconfig Add .editorconfig 2017-06-05 22:57:28 +01:00
.gitignore Add unit tests for libexpr (#5377) 2022-05-06 18:05:27 +02:00
.version Bump version 2022-05-30 21:11:20 +02:00
boehmgc-coroutine-sp-fallback.diff Fix leaking pthread_attr_t 2021-11-03 22:54:16 +01:00
bootstrap.sh bootstrap: Simplify & make more robust. 2011-09-06 12:11:05 +00:00
configure.ac Embed the sandbox shell into the statically linked 'nix' binary 2022-06-23 04:08:28 +02:00
COPYING * Change this to LGPL to keep the government happy. 2006-04-25 16:41:06 +00:00
default.nix Remove url literals 2022-01-24 13:28:21 +01:00
docker.nix Allow specification of extra packages, maxLayers in Docker image 2022-07-01 17:53:14 -04:00
flake.lock curl: patch for netrc regression in Nix 2022-07-14 17:45:02 -05:00
flake.nix curl: patch for netrc regression in Nix 2022-07-14 17:45:02 -05:00
local.mk Remove 'dist' target 2020-12-03 16:17:58 +01:00
Makefile Merge branch 'master' into lto 2022-05-25 11:55:13 +00:00
Makefile.config.in Embed the sandbox shell into the statically linked 'nix' binary 2022-06-23 04:08:28 +02:00
precompiled-headers.h Config: Use nlohmann/json 2020-08-20 11:02:16 +02:00
README.md throw freenode down the memory hole 2021-05-27 21:48:39 +02:00
shell.nix Remove url literals 2022-01-24 13:28:21 +01:00

Nix

Open Collective supporters Test

Nix is a powerful package manager for Linux and other Unix systems that makes package management reliable and reproducible. Please refer to the Nix manual for more details.

Installation

On Linux and macOS the easiest way to install Nix is to run the following shell command (as a user other than root):

$ curl -L https://nixos.org/nix/install | sh

Information on additional installation methods is available on the Nix download page.

Building And Developing

See our Hacking guide in our manual for instruction on how to build nix from source with nix-build or how to get a development environment.

Additional Resources

License

Nix is released under the LGPL v2.1.