Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Cannot install in an LXD container without workarounds: error: mounting /proc: Operation not permitted #5460

Open
andersk opened this issue Nov 2, 2021 · 6 comments
Open

Cannot install in an LXD container without workarounds: error: mounting /proc: Operation not permitted #5460

andersk opened this issue Nov 2, 2021 · 6 comments
Labels
bug

Comments

@andersk
Copy link
Contributor

andersk commented Nov 2, 2021 

$ lxc exec test -- sudo -iu ubuntu
To run a command as administrator (user "root"), use "sudo <command>".
See "man sudo_root" for details.

ubuntu@test:~$ curl -L https://nixos.org/nix/install | sh

2021-11-02 06:38:07 (12.5 MB/s) - ‘/tmp/nix-binary-tarball-unpack.RHCMdZKCUs/nix-2.4-x86_64-linux.tar.xz’ saved [28432840/28432840]

Note: a multi-user installation is possible. See https://nixos.org/nix/manual/#sect-multi-user-installation
performing a single-user installation of Nix...
directory /nix does not exist; creating it by running 'mkdir -m 0755 /nix && chown ubuntu /nix' using sudo
copying Nix to /nix/store...

installing 'nix-2.4'
error: mounting /proc: Operation not permitted
(use '--show-trace' to show detailed location information)
/tmp/nix-binary-tarball-unpack.RHCMdZKCUs/unpack/nix-2.4-x86_64-linux/install: unable to install Nix into your default profile

I am aware of two workarounds:

  • It works if I first sudo umount /proc/sys/fs/binfmt_misc /proc/sys/kernel/random/boot_id in the container.
  • Alternatively, it works if I create the container with lxc launch -c security.nesting=true.

These workarounds should not be necessary. The installer should detect this problem and either correct it or print a helpful message.
@andersk andersk added the bug label Nov 2, 2021
@andersk andersk changed the title Cannot install in an LXD container without workarounds Cannot install in an LXD container without workarounds: error: mounting /proc: Operation not permitted Nov 2, 2021
@stale
Copy link

stale bot commented May 1, 2022

I marked this as stale due to inactivity. → More info

@stale stale bot added the stale label May 1, 2022
@andersk
Copy link
Contributor Author

andersk commented May 2, 2022

Still an issue in 2.8.0.

@stale stale bot removed the stale label May 2, 2022
@andronat
Copy link

andronat commented Sep 9, 2022

Still an issue in 2.11.0. I'm trying to install Nix in mcr.microsoft.com/vscode/devcontainers/base:0-jammy the official MS container for vscode.

@domenkozar
Copy link
Member

Same issue on RHEL

@matthewparkinsondes matthewparkinsondes mentioned this issue Nov 30, 2022
Open
@zephyros-dev zephyros-dev mentioned this issue Dec 7, 2022
Open
@toraritte
Copy link
Contributor

toraritte commented Feb 20, 2023
edited

Tried installing Nix in an Ubuntu LXD container on a Ubuntu host, but got the same issue. Is this even a NixOS issue? (edit: Nonetheless, the workaround works: lxc config set <instance_name> security.nesting=true.)

@nixos-discourse
Copy link

This issue has been mentioned on NixOS Discourse. There might be relevant details there:

https://discourse.nixos.org/t/how-to-run-the-nix-installer-silently-from-a-shell-script/25633/1

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@andersk @domenkozar @andronat @toraritte @nixos-discourse