diff options
author | Peter Hoeg <peter@hoeg.com> | 2018-07-14 13:25:28 +0800 |
---|---|---|
committer | Peter Hoeg <peter@hoeg.com> | 2018-07-14 20:21:41 +0800 |
commit | 65eb3a590d8d5657e3bf8534ddccc827aefc1862 (patch) | |
tree | b7bed37d317858a21ec0289207ec94e4199ce60b /nixos/doc/manual/release-notes | |
parent | dae9cf6106da19f79a39714f183ed253c62b32c5 (diff) | |
download | nixlib-65eb3a590d8d5657e3bf8534ddccc827aefc1862.tar nixlib-65eb3a590d8d5657e3bf8534ddccc827aefc1862.tar.gz nixlib-65eb3a590d8d5657e3bf8534ddccc827aefc1862.tar.bz2 nixlib-65eb3a590d8d5657e3bf8534ddccc827aefc1862.tar.lz nixlib-65eb3a590d8d5657e3bf8534ddccc827aefc1862.tar.xz nixlib-65eb3a590d8d5657e3bf8534ddccc827aefc1862.tar.zst nixlib-65eb3a590d8d5657e3bf8534ddccc827aefc1862.zip |
firejail: add nixos module
Also add support for wrapping binaries with firejail.
Diffstat (limited to 'nixos/doc/manual/release-notes')
-rw-r--r-- | nixos/doc/manual/release-notes/rl-1809.xml | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/nixos/doc/manual/release-notes/rl-1809.xml b/nixos/doc/manual/release-notes/rl-1809.xml index 13b244e12f8c..7fd6483bca1a 100644 --- a/nixos/doc/manual/release-notes/rl-1809.xml +++ b/nixos/doc/manual/release-notes/rl-1809.xml @@ -19,6 +19,27 @@ <itemizedlist> <listitem> + <para> + Support for wrapping binaries using <literal>firejail</literal> has been + added through <varname>programs.firejail.wrappedBinaries</varname>. + </para> + <para> + For example + </para> +<programlisting> +programs.firejail = { + enable = true; + wrappedBinaries = { + firefox = "${lib.getBin pkgs.firefox}/bin/firefox"; + mpv = "${lib.getBin pkgs.mpv}/bin/mpv"; + }; +}; +</programlisting> + <para> + This will place <literal>firefox</literal> and <literal>mpv</literal> binaries in the global path wrapped by firejail. + </para> + </listitem> + <listitem> <para> User channels are now in the default <literal>NIX_PATH</literal>, allowing users to use their personal <command>nix-channel</command> defined |