diff options
| author | Samuel Leathers <disasm@gmail.com> | 2018-05-19 21:11:17 -0400 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2018-05-19 21:11:17 -0400 |
| commit | fef6b9ac0c58e59405023d866dfcccfa4b6fe9a6 (patch) | |
| tree | 56b2e7b622aac7b0cd74df210536abe4394fbdd2 /nixos/modules/services/networking | |
| parent | f4ec18aaaca9e46b4f304d2a7f5f06bd6222c0e5 (diff) | |
| parent | 8dbd8f4d69fc8ed993f6e7798616df4c4dd96765 (diff) | |
| download | nixlib-fef6b9ac0c58e59405023d866dfcccfa4b6fe9a6.tar nixlib-fef6b9ac0c58e59405023d866dfcccfa4b6fe9a6.tar.gz nixlib-fef6b9ac0c58e59405023d866dfcccfa4b6fe9a6.tar.bz2 nixlib-fef6b9ac0c58e59405023d866dfcccfa4b6fe9a6.tar.lz nixlib-fef6b9ac0c58e59405023d866dfcccfa4b6fe9a6.tar.xz nixlib-fef6b9ac0c58e59405023d866dfcccfa4b6fe9a6.tar.zst nixlib-fef6b9ac0c58e59405023d866dfcccfa4b6fe9a6.zip | |
Merge pull request #40801 from xeji/test/dnscrypt-proxy
nixos/dnscrypt-proxy: fix apparmor profile and test
Diffstat (limited to 'nixos/modules/services/networking')
| -rw-r--r-- | nixos/modules/services/networking/dnscrypt-proxy.nix | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/nixos/modules/services/networking/dnscrypt-proxy.nix b/nixos/modules/services/networking/dnscrypt-proxy.nix index 857657eea4db..6f5e7d8d456e 100644 --- a/nixos/modules/services/networking/dnscrypt-proxy.nix +++ b/nixos/modules/services/networking/dnscrypt-proxy.nix @@ -192,6 +192,7 @@ in security.apparmor.profiles = singleton (pkgs.writeText "apparmor-dnscrypt-proxy" '' ${pkgs.dnscrypt-proxy}/bin/dnscrypt-proxy { /dev/null rw, + /dev/random r, /dev/urandom r, /etc/passwd r, @@ -211,6 +212,9 @@ in ${getLib pkgs.gcc.cc}/lib/libssp.so.* mr, ${getLib pkgs.libsodium}/lib/libsodium.so.* mr, ${getLib pkgs.systemd}/lib/libsystemd.so.* mr, + ${getLib pkgs.utillinuxMinimal.out}/lib/libmount.so.* mr, + ${getLib pkgs.utillinuxMinimal.out}/lib/libblkid.so.* mr, + ${getLib pkgs.utillinuxMinimal.out}/lib/libuuid.so.* mr, ${getLib pkgs.xz}/lib/liblzma.so.* mr, ${getLib pkgs.libgcrypt}/lib/libgcrypt.so.* mr, ${getLib pkgs.libgpgerror}/lib/libgpg-error.so.* mr, |