| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | pkgs/sandbox: Expose get_mount_target() | aszlig | 2018-07-02 | 1 | -0/+1 |
| | | | | | | | | | I'm going to use the sandboxing implementation as the basis for something else where I'm going to do additional mounts on top of the existing ones. This is just to make it easier to find the mount target. Signed-off-by: aszlig <aszlig@nix.build> | ||||
| * | pkgs/sandbox: Add flag to bind-mount read-only | aszlig | 2018-07-02 | 1 | -1/+1 |
| | | | | | | | | | | | | | | | While the Nix store should be read-only by default, we can't guarantee this as the Nix store could be mounted read-write (for example on non-NixOS systems). For paths other than store directories, I took a conservative approach here where only /etc is mounted read-only, for all the pseudo- filesystems such as /proc, /sys or /dev write access might still be needed, for example to write to a hardware device exposed via /dev (eg. a gamepad with rumble support). Signed-off-by: aszlig <aszlig@nix.build> | ||||
| * | build-sandbox: Move to top-level build-support | aszlig | 2017-11-30 | 1 | -0/+14 |
| This is not only useful for packaging games, so let's make it available from the vuizvui scope, so we can use it from other packages as well. Signed-off-by: aszlig <aszlig@nix.build> | |||||
 |
index : mirror/vuizvui | |
| Nix(OS) expressions used by the OpenLab and its members |
| about summary refs log tree commit diff |