mirror of
https://github.com/privatevoid-net/nix-super.git
synced 2024-11-23 06:26:15 +02:00
1db38ae81b
In a private PID namespace, processes have PIDs that are separate from the rest of the system. The initial child gets PID 1. Processes in the chroot cannot see processes outside of the chroot. This improves isolation between builds. However, processes on the outside can see processes in the chroot and send signals to them (if they have appropriate rights). Since the builder gets PID 1, it serves as the reaper for zombies in the chroot. This might turn out to be a problem. In that case we'll need to have a small PID 1 process that sits in a loop calling wait(). |
||
---|---|---|
.. | ||
bin2c | ||
boost | ||
bsdiff-4.3 | ||
libexpr | ||
libmain | ||
libstore | ||
libutil | ||
nix-env | ||
nix-hash | ||
nix-instantiate | ||
nix-log2xml | ||
nix-setuid-helper | ||
nix-store | ||
nix-worker | ||
Makefile.am |