colin/nix-files
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity

forkstat: document sandbox limitations

Browse Source
This commit is contained in:
Colin
2024-09-03 02:54:27 +00:00
parent 9050d8979e
commit 2d5cb84eef
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
hosts/common/programs/assorted.nix
View File

@@ -598,7 +598,7 @@ in
withWebkit = false; withWebkit = false;
}); });
forkstat.sandbox.method = "landlock"; #< doesn't seem to support bwrap forkstat.sandbox.method = "landlock"; #< doesn't support bwrap unless i do `--sanebox-keep-namespace pid --sanebox-keep-namespace net`
forkstat.sandbox.isolatePids = false; forkstat.sandbox.isolatePids = false;
forkstat.sandbox.extraPaths = [ forkstat.sandbox.extraPaths = [
"/proc" "/proc"