aboutsummaryrefslogtreecommitdiff
path: root/nixops/modules/pub/restrict
diff options
context:
space:
mode:
authorIsmaël Bouya <ismael.bouya@normalesup.org>2019-03-17 10:06:12 +0100
committerIsmaël Bouya <ismael.bouya@normalesup.org>2019-03-17 10:06:12 +0100
commit7e5b026095c54a78f94f6c91785c04d9cba1a309 (patch)
tree3a366a114c3b900d310febd006c754fb733dce3c /nixops/modules/pub/restrict
parent76665c9e97449b074bc3c66098ba7185ea807fc2 (diff)
downloadNix-7e5b026095c54a78f94f6c91785c04d9cba1a309.tar.gz
Nix-7e5b026095c54a78f94f6c91785c04d9cba1a309.tar.zst
Nix-7e5b026095c54a78f94f6c91785c04d9cba1a309.zip
Add some "commons" file
Diffstat (limited to 'nixops/modules/pub/restrict')
-rw-r--r--nixops/modules/pub/restrict5
1 files changed, 4 insertions, 1 deletions
diff --git a/nixops/modules/pub/restrict b/nixops/modules/pub/restrict
index 4a3e215..6204aa2 100644
--- a/nixops/modules/pub/restrict
+++ b/nixops/modules/pub/restrict
@@ -44,7 +44,9 @@ rsync*)
44 --ro-bind /run/current-system/sw/bin /bin \ 44 --ro-bind /run/current-system/sw/bin /bin \
45 --ro-bind /etc/profiles/per-user/pub/bin /bin-pub \ 45 --ro-bind /etc/profiles/per-user/pub/bin /bin-pub \
46 --bind /var/lib/pub/$user /var/lib/pub \ 46 --bind /var/lib/pub/$user /var/lib/pub \
47 --ro-bind $TMUX_RESTRICT /var/lib/pub/.tmux.restrict.conf \ 47 --dir /var/lib/commons \
48 --ro-bind $TMUX_RESTRICT /var/lib/commons/tmux.restrict.conf \
49 --file 9 /var/lib/commons/nix-dump \
48 --chdir /var/lib/pub \ 50 --chdir /var/lib/pub \
49 --unshare-all \ 51 --unshare-all \
50 --share-net \ 52 --share-net \
@@ -58,6 +60,7 @@ rsync*)
58 --file 11 /etc/passwd \ 60 --file 11 /etc/passwd \
59 --file 12 /etc/group \ 61 --file 12 /etc/group \
60 -- $orig) \ 62 -- $orig) \
63 9< <(nix-store --dump-db) \
61 10< <(nix_store_paths) \ 64 10< <(nix_store_paths) \
62 11< <(getent passwd $UID 65534) \ 65 11< <(getent passwd $UID 65534) \
63 12< <(getent group $(id -g) 65534) 66 12< <(getent group $(id -g) 65534)
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-13 00:44:00 +0000